Microsoft began notifying some Outlook.com users that a hacker had been able to access accounts since months earlier this year. The software giant discovered that the credentials of a support agent were compromised for its webmail service, allowing unauthorized access to certain accounts between January 1 and March 28, 2019. Microsoft indicates that hackers could have displayed account email addresses, folder names, and subject lines for these accounts. emails, but not the contents of emails or attachments.
It is unclear how many users were affected by the breach or who was involved in gaining access to Outlook.com email accounts. "Our data indicates that account information (but not the content of any email) could have been accessed, but Microsoft does not know why it was accessed or how it was used," says Microsoft in a report. email to affected users.
Hackers could not steal login information or other personal information, but for the sake of caution, Microsoft recommends that affected users reset their passwords. "Microsoft regrets all the inconvenience caused by this problem," says the security notification. "Rest assured that Microsoft takes data protection very seriously and has engaged its internal security and privacy teams in the investigation and resolution of the problem, as well as in the strengthening of systems and processes in order to avoid such recurrence. "
This security incident comes just weeks after a former security researcher pleaded guilty to hacking Microsoft and Nintendo servers. Microsoft's Windows development servers were violated for several weeks in January 2017, allowing hackers from all over Europe to access the preliminary versions of Windows.
The edge has contacted Microsoft to confirm the number of accounts affected by this recent violation of Outlook.com, but the company has not responded in time for publication.