It seems that when it comes to Microsoft, there is no love lost between the company and the Syrian Electronic Army. The hacker group has targeted Microsoft’s Twitter accounts not too long ago, and they were back at it again just a couple of days ago. Now according to Microsoft, the company has confirmed that the Syrian Electronic Army has somehow managed to gain access to employee email accounts whereby they posted three internal emails sent from employees at Microsoft. Microsoft reassures users that no customer information has been compromised and we certainly hope so too, for everyone’s sake.
According to a Microsoft spokesperson, “A social engineering cyberattack method known as phishing resulted in a small number of Microsoft employee social media and email accounts being impacted […] These accounts were reset and no customer information was compromised.” If you’re wondering how these hackers managed to hack Microsoft, who would admittedly have better security, it seems that their security is only as strong as its weakest link. According to the hackers, one of the email accounts’ password was that of “Microsoft3”. “A Microsoft employee wanted to make his password more stronger, so he changed it from ‘Microsoft2’ to ‘Microsoft3’ #happened.” Well, that’s embarrassing.
However it seems that is not the end as the hackers have claimed on their Twitter that they are not done with Microsoft yet, and that there are more attacks planned in the very near future. “We didn’t finish our attack on @Microsoft yet, stay tuned for more! #SEA”