Chinese hackers breached State, Commerce Depts, Microsoft and US say

WASHINGTON/LONDON��–����󾱲Ա������state-linked���󲹳���������since May have secretly accessed email accounts at around 25 organizations, including at least two US government agencies, Microsoft�����Ի���US officials said on Wednesday.

The United�����ٲ��ٱ�s detected a breach of federal government accounts “fairly rapidly”�����Ի���managed to prevent further breaches, White House national security adviser Jake Sullivan said in an interview with ABC’s “Good Morning America” program.

The US�����ٲ��ٱ� and����dz������������Departments said in�����ٲ��ٱ�ments that they were among the affected agencies.

The email accounts of Secretary of����dz������������Gina Raimondo�����Ի���Department of�����ٲ��ٱ� officials were also hacked, The Washington Post reported, citing US officials familiar with the matter.

Raimondo is the only known Cabinet-level official to have their account�������𲹳�������in the incident.

A senior U.S. government official told reporters it would be unfair to compare it to the SolarWinds compromise, a sweeping set of digital break-ins that were disclosed in late 2020�����Ի���blamed on Russian cyberspies.

“This intrusion should not be compared to SolarWinds,” the official said, calling the recently discovered campaign “much narrower.”

The US official said he could not comment on���Ѿ������Dz��Ǵڳ�‘s decision to attribute the hack to China.

�Ѿ������Dz��Ǵڳ���said in a�����ٲ��ٱ�ment that the hacking group – which it dubbed Storm-0558 – forged digital authentication tokens to access webmail accounts running on the firm’s Outlook service. The activity began in May,���Ѿ������Dz��Ǵڳ� said.

“As with any observed nation-���ٲ��ٱ���actor activity,���Ѿ������Dz��Ǵڳ� has contacted all targeted or compromised organizations directly via their tenant admins�����Ի���provided them with important information to help them investigate�����Ի���respond,” the company added.

�Ѿ������Dz��Ǵڳ���did not����������which organizations or governments had been affected, but added that the hacking group involved primarily targets entities in Western Europe.

China’s embassy in London called the accusation “disinformation”�����Ի���called the US government “the world’s biggest hacking empire�����Ի���global cyber thief.” China routinely denies involvement in hacking operations regardless of the available evidence or context.

White House National Security Council spokesman Adam Hodge said an intrusion in���Ѿ������Dz��Ǵڳ�‘s cloud security “affected unclassified systems,” without elaborating.

“Officials immediately contacted���Ѿ������Dz��Ǵڳ� to find the source�����Ի���vulnerability in their cloud service,” Hodge added.

The�����ٲ��ٱ� Department “detected anomalo�ܲ���activity”�����Ի���“took immediate steps to secure our systems,” a department spokesperson said in a�����ٲ��ٱ�ment. The����dz������������Department said it took “immediate action” after���Ѿ������Dz��Ǵڳ� notified it of a compromise.

Private sector cybersecurity experts have said newly discovered hacking activity shows how ��󾱲Ա������groups are improving their cyber capabilities.

“��󾱲Ա������cyber espionage has come a long way from the smash-and-grab tactics many of �ܲ���are familiar with,” said John Hultquist, chief analyst for US cybersecurity firm Mandiant. – Reuters