Threat Management, Threat Management

Microsoft refutes Anonymous Sudan’s massive data breach claims

Share

BleepingComputer reports that Microsoft has quashed claims by Killnet-linked hacktivist operation Anonymous Sudan alleging the theft of a database with more than 30 million customer accounts, email addresses, and passwords, after admitting that outages and service disruptions impacting its Azure, OneDrive, and Outlook services earlier last month have been caused by the threat group's distributed denial-of-service attacks. Access to the stolen database is being sold by Anonymous Sudan for $50,000, with interested buyers advised to communicate with the group's Telegram bot, as well as given access to a sample of 100 credential pairs allegedly stolen from Microsoft but found to have an unverifiable origin. Anonymous Sudan also noted in its Telegram post that Microsoft would deny any breach assertions. However, Microsoft has regarded Anonymous Sudan's leaks as a mere "aggregation of data." "We have seen no evidence that our customer data has been accessed or compromised," a Microsoft spokesperson said.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy.