Hackers stole information on Windows vulnerabilities from Microsoft in 2013

TEC Ransomware Evolves

Hacking happens all the time, and when it affects a large number of people, companies typically disclose the breach. The company never fully disclosed the extent of that hack despite the potential risks it posed to users, Reuters reported.

One ex-employee told Reuters: "They absolutely discovered that bugs had been taken".

"Our security teams actively monitor cyber threats to help us prioritize and take appropriate action to keep customers protected", Microsoft said in a statement.

"Bad guys with inside access to that information would literally have a "skeleton key" for hundreds of millions of computers around the world", Eric Rosenbach, who was USA deputy assistant secretary of defense for cyber at the time of the breach, told Reuters.

While Microsoft failed to disclose the breach and had reportedly fixed the flaws "within months of the attack", three of the ex-employees interviewed by Reuters said that the stolen bugs may have been used in attacks following the breach. The group behind the attack, referred to as Morpho, Butterfly, or Wild Neutron, managed to break into Mac computers used by employees, leveraging them to move on to Microsoft's company networks.

The theft occurred in early 2013 amid a string of attacks on other big tech companies like Apple and Facebook.

The report is embarassing for Microsoft, which a year ago criticised the US' National Security Administration (NSA) for "hoarding" secret vulnerabilities so that it could use them to infiltrate computer systems. "We have no evidence of customer data being affected, and our investigation is ongoing", the company said at the time. In 2015, the nonprofit Mozilla Foundation - which develops the Firefox web browser - said an attacker had gotten access to a database that included 10 severe and unpatched flaws.

Nigeria state erects Jacob Zuma statue, road named after SA leader
Still others questioned why the Imo State governor chose to erect a statue of a South African leader rather than a notable Nigerian.

Like the Pentagon's Rosenbach, Weatherford said he had not known of the Microsoft attack.

Inside the company, alarm spread as officials realised the database for tracking patches had been compromised, according to the five former security employees. And it was poorly protected, the former employees said, with only a simple password locking it down.

They determined that while those bugs had in fact been used to carry out attacks, the hackers involved could have learned of the vulnerabilities from elsewhere - there was no evidence linking the other attacks to the Microsoft breach.

The attack was particularly troublesome, not simply because the details were not publicly disclosed but because the hackers who carried out the breach were in possession of information about vulnerabilities that plagued millions of machines around the world.

In the wake of the attack, the former employees are still mixed in the reactions to the way Microsoft responded.

The possibility could not be ruled out, however, as Microsoft relied on automated reports from crashes to track attacks, according to Reuters.

Related News:



Most liked

Canada and Mexico will reportedly reject America's demands on NAFTA
Trump, however, has frequently blamed NAFTA for the decline in American manufacturing and flight of jobs and production to Mexico. Mexico's Economy Minister Ildefonso Guajardo, left, looks on as Canada's Foreign Minister Chrystia Freeland, center, and U.S.

Garmin launches vehicle navigation device with Amazon Alexa
Want to stream the newest song from your favorite artist? You can ask Alexa to search music by artist, title, or genre. Garmin serves five primary business units, including automotive, aviation, fitness, marine, and outdoor recreation.

Philippine military pushes to defeat last Marawi fighters
Since then more than 1,000 people have been killed and 400,000 residents displaced. "So, it's huge money", the defense chief said. Ano said troops are focused on rescuing the remaining hostages, which number around 22.