Microsoft responded quietly after detecting secret database hack in 2013
NEW YORK: Microsoft Corp´s secret internal database for tracking bugs in its own software was broken into by a highly sophisticated hacking group more than four years ago, according to five former employees, in only the second known breach of such a corporate database.
The company did not disclose the extent of the attack to the public or its customers after its discovery in 2013, but the five former employees described it to Reuters in separate interviews. Microsoft declined to discuss the incident.
The database contained descriptions of critical and unfixed vulnerabilities in some of the most widely used software in the world, including the Windows operating system. Spies for governments around the globe and other hackers covet such information because it shows them how to create tools for electronic break-ins.
The Microsoft flaws were fixed likely within months of the hack, according to the former employees. Yet speaking out for the first time, these former employees as well as U.S. officials informed of the breach by Reuters said it alarmed them because the hackers could have used the data at the time to mount attacks elsewhere, spreading their reach into government and corporate networks.
“Bad guys with inside access to that information would literally have a ´skeleton key´ for hundreds of millions of computers around the world,” said Eric Rosenbach, who was U.S. deputy assistant secretary of defense for cyber at the time.
Companies of all stripes now are ramping up efforts to find and fix bugs in their software amid a wave of damaging hacking attacks.
Many firms, including Microsoft, pay security researchers and hackers “bounties” for information about flaws â increasing the flow of bug data and rendering efforts to secure the material more urgent than ever.
In an email responding to questions from Reuters, Microsoft said: “Our security teams actively monitor cyber threats to help us prioritize and take appropriate action to keep customers protected. “Sometime after learning of the attack, Microsoft went back and looked at breaches of other organizations around then, the five ex-employees said.
-
Leonardo DiCaprio's Co-star Reflects On His Viral Moment At Golden Globes -
SpaceX Pivots From Mars Plans To Prioritize 2027 Moon Landing -
J. Cole Brings Back Old-school CD Sales For 'The Fall-Off' Release -
King Charles Still Cares About Meghan Markle -
GTA 6 Built By Hand, Street By Street, Rockstar Confirms Ahead Of Launch -
Funeral Home Owner Sentenced To 40 Years For Selling Corpses, Faking Ashes -
Why Is Thor Portrayed Differently In Marvel Movies? -
Dutch Seismologist Hints At 'surprise’ Quake In Coming Days -
Australia’s Liberal-National Coalition Reunites After Brief Split Over Hate Laws -
DC Director Gives Hopeful Message As Questions Raised Over 'Blue Beetle's Future -
King Charles New Plans For Andrew In Norfolk Exposed -
What You Need To Know About Ischemic Stroke -
Shocking Reason Behind Type 2 Diabetes Revealed By Scientists -
SpaceX Cleared For NASA Crew-12 Launch After Falcon 9 Review -
Meghan Markle Gives Old Hollywood Vibes In New Photos At Glitzy Event -
Simple 'finger Test' Unveils Lung Cancer Diagnosis