Skip to main content

Microsoft wins court case against Russian hackers, can take over their servers

A hand on a laptop in a dark surrounding.
Microsoft scored a major legal victory that will hopefully allow it to take better care of its users’ online safety. A group of Russian hackers called Fancy Bear has been hit with a court injunction that forbids it from using the company’s trademarks or hacking systems running Windows.

The U.S. District Court for the Eastern District of Western Virginia will enforce a permanent ban on the group’s use of malicious software or code to infect the company or its users’ systems, according to MSPowerUser. This is not just a case of hackers being given a slap on the wrist, as Microsoft is being empowered with special permissions to address the situation proactively.

Related Videos

Fancy Bear — otherwise known as Strontium, among other monikers — used several sites that purported themselves as official Microsoft domains, including www.microsoftinfo365.com and www.livemicrosoft.net. The company is being given legal permission to take “command and control” of these sites, in order to scrub them from the internet.

The sites were commonly used in phishing attacks that would attempt to procure the user’s personal credentials or install malicious software on their PC. By taking control of these domains, Microsoft should be able to make it much more difficult for Fancy Bear to carry out its illegal activities.

“Any time an infected computer attempts to contact a command and control server through one of the domains, it will instead be connected to a Microsoft-controlled, secure server,” explained Microsoft threat intelligence manager Jason Norton in a court filing submitted in August 2016. “While it is not possible to rule out the possibility that the Strontium defendants could use fallback mechanisms to evade the requested relief, redirecting this core subset of Strontium domains will directly disrupt current Strontium infrastructure, mitigating risk and injury to Microsoft and its customers.”

Work has already begun to get rid of these predatory sites, with more than 70 different command and control points being seized this month. However, this is a massive undertaking that will take some time to complete — Microsoft has identified thousands of domains that need to be addressed.

This is not the first time that Microsoft has had to deal with the actions of Fancy Bear. In November, the company accused the group of having taken advantage of a zero-day Flash and Windows kernel vulnerability to prey on its users.

Editors' Recommendations

Microsoft won’t have to turn over emails from servers in Ireland, court rules
microsoft sues us government gag orders 2

Microsoft prevailed in a Thursday court decision in preventing the U.S. government from obtaining emails stored on a server in Ireland, in a case that is said to have important ramifications for privacy in general. The government was attempting to seize emails of a suspected drug trafficker, but Microsoft claimed granting access could set a dangerous legal precedent and a "legal free-for-all."

The government argued that barring access would create a legal loophole that would allow fraudsters, hackers, and drug traffickers to operate without the fear of prosecution. Microsoft countered by saying ruling for the government could open the doors for other foreign courts to demand access to servers on American soil.

Read more
Microsoft takes a stance against terrorism on its consumer services
machine learning v for victory terrorist identification sign

The free domain of the internet has quickly presented itself as a double-edged sword, with a growing number of terrorist organizations taking to web to organize and communicate. But now, one major tech company is taking a stance against this trend. In a blog post published Friday, Microsoft unveiled a series of new policies designed to combat "terrorist content" across its consumer services. From Xbox Live to its Outlook email service, the company plans on purging as much extremist content as possible.

"We have a responsibility to run our various Internet services so that they are a tool to empower people, not to contribute, however indirectly, to terrible acts," Microsoft wrote in its blog post. "We also have a responsibility to run our services in a way that respects timeless values such as privacy, freedom of expression and the right to access information." As such, the company said that it's looking to crack down on terrorist content while maintaining fundamental respect for freedom of expression.

Read more
Julie Larson-Green rumored to take over as head of Microsoft Office
Office 2016

It's fair to say that Microsoft Office is very different today from what it once was. And with its drive toward subscription-based software, perhaps Microsoft feels that it needs a new set of hands on the reins, as rumors abound that it may be set to appoint current CXO (that's Chief Experience Officer) Julie Larson-Green as the new head of the enterprise software.

As with all rumors, this one comes from sources described by Recode as "familiar with the company's plans," so take what they say with a dash of salt, but there would certainly some sense behind the move. Larson-Green was once a top executive of the Office unit and has previously headed up the Windows engineering team -- becoming the first woman ever to do so.

Read more