Results of Major Technical Investigations for Storm-0558 Key Acquisition
Has anyone here been using outlook.com? All your emails may be in the hand of a Chinese threat actor now. https://msrc.microsoft.com/blog/2023/09/results-of-major-technical-investigations-for-storm-0558-key-acquisition/ Thank you Microsoft for finally shedding some light upon the Storm-0558 Key Acquisition, but holy cow what a series of vulnerabilities and flaws that allowed this breach to happen. A compromised engineer's corporate account, exposed signing keys in crash dumps, inaccurate key validation in the mail system - a number of serious deficiencies were revealed in this article. Whether the threat actor had a lucky day or knew something beforehand remains a mystery, but it doesn't really matter anymore. I really want to share my thoughts on this: - It's remarkable we didn't read more about this incident in the mainstream news - As skill and resources of those adversaries grow, there should be better controls in place - There is no reason to believe that the proba