PSA: Microsoft Outlook Breach Worse Than Expected, Hackers Could Read Emails of 6% of Affected Users

Discussion in 'Mac Blog Discussion' started by MacRumors, Apr 15, 2019.

  1. MacRumors macrumors bot

    MacRumors

    Joined:
    Apr 12, 2001
    #1
    [​IMG]


    Microsoft has revealed that one of its support agent's credentials were compromised, enabling unauthorized parties to access information from a "limited subset" of users, including e-mail addresses, folder names, subject lines, and the names of recent recipients, between January 1 and March 28 of 2019.

    [​IMG]

    It gets worse, unfortunately. In a statement issued to The Verge, Microsoft said that the unauthorized parties had access to the actual content of roughly six percent of affected email accounts, as exposed by Motherboard.

    In an email to affected users shared by TechCrunch, Microsoft said it has now blocked this unauthorized access, disabled the passwords of compromised accounts, and increased detection and monitoring to further protect users. Microsoft recommends users change their passwords out of an abundance of caution.

    The breach affected a "limited subset" of Microsoft-managed email accounts, including Outlook, MSN, and Hotmail email addresses. No enterprise customers are believed to be affected, according to TechCrunch.

    Microsoft told affected users that it has no indication why the information was viewed or how it may have been used. The company has yet to reveal how it discovered the breach, how the support agent's credentials were compromised, or if the agent was a Microsoft employee, according to TechCrunch.

    Article Link: PSA: Microsoft Outlook Breach Worse Than Expected, Hackers Could Read Emails of 6% of Affected Users
     
  2. ArtOfWarfare macrumors G3

    ArtOfWarfare

    Joined:
    Nov 26, 2007
    #2
    And this is why I always say - never write anything down that you wouldn't want everyone to know. I'm sure the hackers will sell the email content to someone who will blackmail the victims.
     
  3. GeoStructural macrumors member

    GeoStructural

    Joined:
    Oct 8, 2016
    Location:
    Colombia
    #3
    I am pretty sure I am one of the affected users, I could see weird stuffs last month with my email, I even received a notification of an app permission granted, something I don’t even use.
    --- Post Merged, Apr 15, 2019 ---
    I get your point but it is not just about that. Your work, research, sales, etc. may rely on email and you don’t want unauthorized access to it.
     
  4. jk1211 macrumors 6502

    Joined:
    Sep 13, 2018
    #4
    Because missing from the story per other news outlets is that the hacker hacked the MS EMPLOYEE, a help agent or something like that, who would have access to review email issues. I guess a support agent type thing? (the arent specific regarding their position) Since only limited data was viewed and not the full email content.

    So it wouldn't have looked like anything was wrong.

    To be fair no mail servers were hacked here or anything, the employee was. Or just straight careless with their login, we dont know that part; that is why Im not quite ready to hang Microsoft for this
     
  5. nouveau_redneck macrumors 6502a

    nouveau_redneck

    Joined:
    Sep 16, 2017
    #5
    These breeches are typically not about finding users to blackmail. These are typically done to gain access to ones credentials or learn about users for informed phishing attempts.
     
  6. justperry macrumors G3

    justperry

    Joined:
    Aug 10, 2007
    Location:
    In the core of a black hole.
  7. nouveau_redneck macrumors 6502a

    nouveau_redneck

    Joined:
    Sep 16, 2017
    #7
    It's high time for companies to be held accountable for breeches in a severe monetary fashion.

    The only way they are going to get better at security, or take security seriously, is if it affects their bottom line in a big way if they don't.
     
  8. justperry macrumors G3

    justperry

    Joined:
    Aug 10, 2007
    Location:
    In the core of a black hole.
    #8
    That won't be sufficient, a "internet reboot" 2.0 would be much better.

    For instance, your private information stays on your device, end to end full encryption mandatory for the whole internet.
    Keys are in your possession, not anywhere else.
    Standard opt-out for everything.
     
  9. jk1211 macrumors 6502

    Joined:
    Sep 13, 2018
    #9
    Except this was a support agent employee's credentials that were hacked and used to get in, so how do you fine a company or hold them responsible for what someone was loose with potentially out of the work environment? Other than fire the person what more can the company do? There is always that human aspect that is the weak link.

    Its hard to say what more they could have done here without facts; did the employee have it written on a sticky note at lost it being completely negligent? We simply dont have the facts
     
  10. nouveau_redneck macrumors 6502a

    nouveau_redneck

    Joined:
    Sep 16, 2017
    #10
    So some techs account was "hacked". Does that mean unsafe use of a computer and picking up malware? Does it mean weak password or not changing passwords frequently? Or some other stupid usage.

    From my experience the weakest security link in corporate environments are typically ill-informed users or just plain stupid people. Anyone with privileged access should be locked down and audited, single purpose accounts, etc.
    --- Post Merged, Apr 15, 2019 ---
    Intel communities would never allow that to happen.
    --- Post Merged, Apr 15, 2019 ---
    Yes, agreed it is usually stupid employees. There is much that can be done to make such people less harmful. See my above post. And yes, the companies need to take responsibility for employees.
     
  11. jk1211 macrumors 6502

    Joined:
    Sep 13, 2018
    #11
    Im not saying they shouldnt be responsible, but what MORE can you reasonably do when there is a human aspect involved? Sure you can make a new login every day, etc etc etc. But then how efficient is that.

    And phishing or something like that would not change the end result of getting in for at least some amount of time; maybe enough to build in a back door way to login.

    So then what, a new login every hour? 10 minutes? What is good enough to balance getting work done vs security.

    It's a circular argument that could go on forever really.
     
  12. JetTester macrumors 6502

    Joined:
    Feb 12, 2014
    #12
    Yet another huge company gets hacked and loses customer data. Is there no accountability anywhere now?
     
  13. nouveau_redneck macrumors 6502a

    nouveau_redneck

    Joined:
    Sep 16, 2017
    #13
    What I meant by single usage account, is an account with privileged access to perform actions that affect business such as access customer email data or other responsibilities on servers or business applications. These activities are typically of a limited scope.

    A separate account/machine for day to day stuff like internal email, internet, group chat, calendar, etc. This account/machine does not have access to the business critical duties.
     
  14. justperry macrumors G3

    justperry

    Joined:
    Aug 10, 2007
    Location:
    In the core of a black hole.
    #14
    The EU/some countries might be closer than you think, and internet 2.0 will come.
     
  15. macduke macrumors G4

    macduke

    Joined:
    Jun 27, 2007
    Location:
    Central U.S.
    #15
    Good thing nobody uses Outlook.com for anything serious, lol.
     
  16. Rigby macrumors 601

    Joined:
    Aug 5, 2008
    Location:
    San Jose, CA
    #16
    The linked Motherboard article mentions that some of the hacked accounts were used to reset iCloud passwords (presumably the affected iCloud accounts were using outlook.com addresses as rescue email addresses) ...
     
  17. canadianreader macrumors 6502a

    canadianreader

    Joined:
    Sep 24, 2014
  18. Mr. Heckles macrumors 6502

    Mr. Heckles

    Joined:
    Mar 20, 2018
    Location:
    Around
    #18
    I like outlook.com WAY more than gmail. Just because you don't, so that means no one uses outlook.com :rolleyes:
     
  19. macduke macrumors G4

    macduke

    Joined:
    Jun 27, 2007
    Location:
    Central U.S.
    #19
    It was a joke about how few people use it. BTW I don't use Gmail.
     
  20. NachoGrande macrumors 6502a

    Joined:
    Mar 30, 2010
    #20
    :rolleyes: thousands of companies use it. Including the company I work for with 25,000 users. but yeah few people use it.
     
  21. Solomani macrumors 68040

    Solomani

    Joined:
    Sep 25, 2012
    Location:
    Alberto, Canado
    #21
    I've used Hotmail (personal use), and also am forced to use Outlook Email (for work). Anyone know a good lawyer? Microsoft has a ton of money.
     
  22. elvisimprsntr macrumors 6502

    Joined:
    Jul 17, 2013
    Location:
    Florida
    #22
    Since when has M$ ever been known for quality software and robust security that this is a surprise to anyone?
     
  23. Rigby macrumors 601

    Joined:
    Aug 5, 2008
    Location:
    San Jose, CA
    #23
    Actually Microsoft's newer cloud services, particularly Office 365 (which is used by many large corporations and government agencies), have a good track record and have undergone extensive audits. The consumer Outlook.com service has been migrated to the same software platform a couple of years ago, so you'd expect a similar level of security. But according to the Motherboard article it seems they apply laxer administrative policies to the consumer accounts (granting access to a wider circle of support personnel), which is why enterprise accounts weren't affected. Hopefully they'll rethink that.
     
  24. C DM macrumors Sandy Bridge

    Joined:
    Oct 17, 2011
    #24
    Was there something mentioned about there being no accountability?
    --- Post Merged, Apr 15, 2019 ---
    Seems like the issue is somewhat different in this case, going by actual details of what was involved. (And that's not to say that even the most robust secure companies can run into a security issue of one kind or another at some point.)
     
  25. pweicks macrumors regular

    pweicks

    Joined:
    Dec 23, 2016
    Location:
    USA
    #25
    If I started receiving a ton more spam on my outlook as of a couple months ago, does that mean I’m affected by this?
     

Share This Page

31 April 15, 2019