Skip to main content

Microsoft latest firm to notify users of state-sponsored hacks

microsoft latest firm to notify users of state sponsored hacks
Image used with permission by copyright holder
Falling in line with other tech firms, Microsoft says it’ll also start warning users of its Web-based email service of any suspected state-sponsored hacks on their accounts.

The company has been issuing alerts about potential security breaches for the last two years, though the warnings have never offered any detailed information as to who might be behind the attacks. That’s now changing.

“As the threat landscape has evolved, our approach has too, and we’ll now go beyond notification and guidance to specify if we reasonably believe the attacker is ‘state-sponsored’,” Microsoft said in a statement to Reuters outlining its new alert procedure.

The computer giant said the alerts will go to users of, the Web-based email service that emerged from Microsoft’s old Hotmail interface.

The move by Microsoft follows similar action taken in recent months by the likes of Facebook, Twitter, and most recently Yahoo.

Google, meanwhile, has been issuing such warnings to Gmail users for the last three years. Asked how it knows whether a hack is the work of a government-backed agent or some guy in his pajamas working out of his bedroom (couldn’t they be the same person?), a spokesperson for the Mountain View company said “detailed analysis and victim reports” often pointed to the perpetrators, adding that he couldn’t give more specific information on its procedures “without giving away information that would be helpful” to the hackers.

Several former Microsoft employees told Reuters that known attacks carried out on Hotmail users several years ago “targeted diplomats, media workers, human rights lawyers, and others in sensitive positions inside China,” indicating the kind of people likely to be of interest to state-sponsored actors and who could therefore reasonably expect to receive one of these specialized alerts somewhere down the road.

Such warnings usually come with a recommended plan of action, such as using a more sophisticated password, enabling two-step verification if it hasn’t already been set up, and using up-to-date anti-virus software.

The move by Microsoft and others to warn of suspected state-sponsored hacks follows recent discussions between President Obama and Chinese president Xi Jinping on the issue of espionage in cyberspace, with Obama cautiously optimistic that an effective solution can eventually be found.

Trevor Mogg
Contributing Editor
Not so many moons ago, Trevor moved from one tea-loving island nation that drives on the left (Britain) to another (Japan)…
Microsoft Edge’s latest feature keeps you even more secure when browsing
Microsoft Edge browser on a computer screen.

The latest version of Microsoft Edge has a new hidden feature to keep you secure when browsing online. Known as "Super Duper Secure Mode," the feature improves the performance of websites and disables a browser engine commonly abused by hackers.

According to Microsoft, Super Duper Secure Mode works in two ways, balanced and strict. Balanced will learn what websites you use and trust them to use Just in Time Engine (JIT), which speeds up tasks in JavaScript. Strict, meanwhile, can break some websites, but will disable the Just in Time Engine for better security. Edge users can also add their own exceptions as they see fit.

Read more
Microsoft warns of latest malware attack, explains how to avoid secret backdoor
Privacy security stock photo.

Microsoft has recently discovered another type of malware, named FoggyWeb by Microsoft, that hackers are currently using to remotely steal network admin credentials. The credentials allow the attacker group, which the company has called Nobelium, to hack into admin accounts of the Active Directory Federation Services' (AD FS) servers and control users’ access to various resources.

Microsoft claims that this is the same group behind the SolarWinds software supply chain attack that was revealed in December.

Read more
Latest Windows 11 build includes the new built-in Microsoft Teams experience
Laptop sitting on a desk showing Windows 11's built-in Microsoft Teams experience

Windows Insiders who are testing Microsoft's Windows 11 -- which has been announced but not yet available for consumers -- are getting an update that brings a new experience to Microsoft Teams. With the update, Microsoft is focused on transforming Teams from an enterprise tool into an accessible experience where all PC owners can stay connected with loved ones through chat and video calls. Part of this transformation includes a new fly-out Chat experience from the taskbar and an overall redesign of the Teams desktop experience that makes it feel more like a natural extension of the Windows 11 operating system, the company said.

With the new chat experience on Teams, Microsoft announced that you can now start a chat from the Chat icon in the taskbar, which can also be accessed via keyboard shortcuts. If you'd rather not hover over the icon, you can alternatively use the Win + C shortcut, Microsoft said. From the fly-out window, you can view recent chats or group conversations, and you can also reply or start a new chat.

Read more