Microsoft has revealed that one of its support agent's credentials were compromised, enabling unauthorized parties to access information from a "limited subset" of users, including e-mail addresses, folder names, subject lines, and the names of recent recipients, between January 1 and March 28 of 2019.
It gets worse, unfortunately. In a statement issued to The Verge, Microsoft said that the unauthorized parties had access to the actual content of roughly six percent of affected email accounts, as exposed by Motherboard.
In an email to affected users shared by TechCrunch, Microsoft said it has now blocked this unauthorized access, disabled the passwords of compromised accounts, and increased detection and monitoring to further protect users. Microsoft recommends users change their passwords out of an abundance of caution.
The breach affected a "limited subset" of Microsoft-managed email accounts, including Outlook, MSN, and Hotmail email addresses. No enterprise customers are believed to be affected, according to TechCrunch.
Microsoft told affected users that it has no indication why the information was viewed or how it may have been used. The company has yet to reveal how it discovered the breach, how the support agent's credentials were compromised, or if the agent was a Microsoft employee, according to TechCrunch.
It gets worse, unfortunately. In a statement issued to The Verge, Microsoft said that the unauthorized parties had access to the actual content of roughly six percent of affected email accounts, as exposed by Motherboard.
In an email to affected users shared by TechCrunch, Microsoft said it has now blocked this unauthorized access, disabled the passwords of compromised accounts, and increased detection and monitoring to further protect users. Microsoft recommends users change their passwords out of an abundance of caution.
The breach affected a "limited subset" of Microsoft-managed email accounts, including Outlook, MSN, and Hotmail email addresses. No enterprise customers are believed to be affected, according to TechCrunch.
Microsoft told affected users that it has no indication why the information was viewed or how it may have been used. The company has yet to reveal how it discovered the breach, how the support agent's credentials were compromised, or if the agent was a Microsoft employee, according to TechCrunch.
Tags: Microsoft, Microsoft Outlook
31 comments
Early reports from 16-inch MacBook Pro owners who have installed the macOS Catalina 10.15.2 update suggest that the new software fixes some of the speaker popping issues that were plaguing these...
With the new 2019 Mac Pro now available for purchase, Apple has begun sharing support documents and tutorial videos covering the new high-end machine that's designed for professional users.
...
Apple's new Pro Display XDR comes with an optional nano-texture glass, which is etched at the nanometer level to cut down on reflectivity and glare for a matte look.
The nano-texture glass...
There was a serious AirDrop bug in iOS 13.2.3 that let attackers overwhelm nearby iPhones with files, causing them to lock up, reports TechCrunch. Apple addressed the bug in the iOS 13.3 update, and...
Ahead of the release of the Mac Pro and Pro Display XDR, Apple gave several of the machines to prominent tech YouTubers to test out, and their first impressions, overviews, and unboxings of the Mac...
Executives from Apple and Facebook were grilled over their encryption policies in a U.S. Senate Judiciary Committee hearing, with senators threatening encryption regulation.
According to...
Apple today released the Mac Pro, its high-end modular desktop machine designed for professional users. While the base Mac Pro machine is priced starting at $5,999, there are many other upgrade...
Along with the new Mac Pro and Pro Display XDR, Apple has added a variety of related accessories to its online store.
The new Mac Pro accessories include Apple's Afterburner card,...
