14 DAY TRIAL // Microsoft has fallen victim to hacker attacks for several times this year, with social media, emails, and blogs getting compromised by the Syrian Electronic Army.
Redmond has refused to talk about these attacks until now, saying that no user information was compromised as part of the hacks, and working to restore access to all attacked accounts.
In a blog post today, however, Microsoft confirms that most hacks have been based on phishing attacks and some compromised information on employees’ computers, such as law enforcement inquiries.
“Recently, a select number of Microsoft employees’ social media and email accounts were subjected to targeted phishing attacks. This type of attack is not uncommon, and many companies grapple with phishing attempts from cybercriminals,” the company explained.
“While our investigation continues, we have learned that there was unauthorized access to certain employee email accounts, and information contained in those accounts could be disclosed. It appears that documents associated with law enforcement inquiries were stolen.”
While the company initially stated that no customer information has been compromised in the attacks, an updated statement released by Adrienne Hall, General Manager, Trustworthy Computing Group, now explains that Microsoft is still looking into the matter to determine whether such data has been reached or not.
“If we find that customer information related to those requests has been compromised, we will take appropriate action. Out of regard for the privacy of our employees and customers – as well as the sensitivity of law enforcement inquiries – we will not comment on the validity of any stolen emails or documents.”
Of course, Microsoft has also stated that it’s working to enhance security of all its accounts and prevent further hacks from happening, but the Syrian Electronic Army has already announced that more attacks aimed at the Redmond-based tech giant are prepared in the near future.