September 28, 2023
Chinese hackers stole tens of thousands of emails from U.S. State Department accounts after breaching Microsoft's cloud-based Exchange email platform in May.
During a recent Senate staff briefing, U.S. State Department officials disclosed that the attackers stole at least 60,000 emails from Outlook accounts belonging to State Department officials stationed in East Asia, the Pacific, and Europe, as Reuters first reported.
Additionally, the hackers managed to obtain a list containing all of the department's email accounts. The compromised State Department personnel primarily focused on Indo-Pacific diplomacy efforts.
"We need to harden our defenses against these types of cyberattacks and intrusions in the future, and we need to take a hard look at the federal government's reliance on a single vendor as a potential weak point," Senator Eric Schmitt said in a statement.
"I will continue to lead my colleagues in pushing for more answers to ensure China and other nefarious actors do not gain access to the federal government's most sensitive information."
In July, Microsoft revealed that beginning on May 15, 2023, threat actors successfully breached Outlook accounts associated with approximately 25 organizations. The compromised organizations include the U.S. State and Commerce Departments and certain consumer accounts presumably linked to them.
Microsoft did not disclose specific details regarding the affected organizations, government agencies, or countries impacted by this email breach.
National Security Council spokesperson Adam Hodge confirmed the incident in July, saying that the attackers only gained access to unclassified systems.
"Last month, US government safeguards identified an intrusion in Microsoft's cloud security, which affected unclassified systems," Hodge said.
"Officials immediately contacted Microsoft to find the source and vulnerability in their cloud service. We continue to hold the procurement providers of the US Government to a high security threshold."
