Microsoft reported a breach by Russian group ‘Midnight Blizzard,’ which accessed internal systems and source code using stolen authentication secrets from a January cyberattack. The unauthorized access was facilitated by a compromised non-production test account lacking multi-factor authentication and linked to an OAuth app with elevated privileges. Microsoft is contacting affected customers and has ramped up security measures to counter the persistent threat.
0 points
*
Oh, no. Imagine all the havoc that could be wrought if the source code for an operating system was released onto the internet /s
That’s why you should never rely on security through obscurity.
– Sent from my Linux desktop
