A Russian state-sponsored actor called Midnight Blizzard, also known as Nobelium, has been identified as the group responsible for a recent cyber attack on Microsoft. The hackers used a password spray attack to gain access to a small percentage of Microsoft corporate email accounts, including those of senior leadership and employees in cybersecurity, legal, and other functions. Some emails and attached documents were exfiltrated.
Microsoft detected the attack on January 12 and is in the process of notifying affected employees