Microsoft BreachDate: March 2022

What Was the Breach?

The software giant, Microsoft, was hacked by the online criminal collective known as the Lapsus Hackers. Lapsus took to social media to post a screen capture of the attack, making it clear that its team was deserving of what it considers to be acclaim. The hack is one of several inflicted on Microsoft in recent years.

How Did the Breach Occur?

The hackers used Azure DevOps, an abbreviation short for development operations, to take the screen capture. However, the use of the DevOps software made by Microsoft is only the tip of the iceberg regarding the magnitude of the offensive. There are also signs that Cortana, Bing, and additional projects were also manipulated during the attack. The extent of the hackers' database access is unknown.

When Did This Breach Occur?

This breach occurred in March 2022.

Who Does the Breach Impact?

The breach impacts Microsoft, yet the software giant insists hackers did not access its customer data. If the company is telling the truth, the threat actors controlled only one account. The question is how much information was accessed before the threat was identified. If the infiltration reached the depth where it caused significant harm, it will manifest as identity theft in the ensuing months.

How Many Files Does the Breach Affect?

Microsoft has not revealed the full extent of the access, likely because it is attempting to save face in the aftermath of this embarrassing breach. If the hackers delved deeply into the company’s internal databases, they likely accessed the information of thousands of Microsoft customers. To read more about this breach, read Microsoft Has Patched an Azure AD Vulnerability.

Other Breaches by Microsoft Breach

Recent Breaches

Free Identity Threat Scan
Instantly Check if Your Personal Information is Exposed
All fields below are required
Please enter first name
Please enter last name
Please enter a city
Please select a state
Please enter an email address