1. Skip to content
  2. Skip to main menu
  3. Skip to more DW sites
Live TV
Latest audioLatest videos
In focus
Israel-Hamas warUkraineEurovision
TechnologyUnited States of America

Microsoft: Chinese group hacked government email accounts

July 12, 2023

China-based hackers have accessed email accounts of several organizations including some US and Western European government agencies. The breach was reportedly detected only weeks after the activity began.

https://p.dw.com/p/4Tmcd
Illustration photo of Microsoft Logo and Open Locks
Microsoft said it would continue to monitor Storm-0558's activities.Image: Andre M. Chang/ZUMA Wire/picture alliance

Chinese state-linked hackers have secretly accessed email accounts at about 25 organizations, including government agencies, Microsoft said on Wednesday. 

Microsoft did not say which organizations or governments had been affected, but added that the hacking group primarily targets entities in Western Europe.

"Microsoft has contacted all targeted or compromised organizations directly via their tenant admins and provided them with important information to help them investigate and respond," the statement on the company's website said. 

What we know about the hack

Microsoft said the group, which it identified as Storm-0558, forged digital authentication tokens to access webmail accounts running on the firm's Outlook service. 

It is reported that the activity began in May. However, the breach was detected weeks later when customers complained to Microsoft about abnormal mail activity.

Citing a statement from US officials, the Washington Post reported that Storm-0558 also breached unclassified email accounts linked to the US government.

The US had detected the breach of federal government accounts "fairly rapidly" and had managed to prevent further breaches, White House national security adviser Jake Sullivan said in an interview with ABC television. 

China denies US accusations

China called the Microsoft report  "disinformation," saying that the accusation was meant to divert attention from US cyber activities.

"No matter which agency issued this information, it will never change the fact that the United States is the world's largest hacker empire conducting the most cyber theft," Chinese foreign ministry spokesperson Wang Wenbin said during his routine briefing. 

"Since last year, the cybersecurity organizations of China and other countries have issued many reports exposing cyberattacks on China by the US Government over a long period of time, but the US has not made a response so far," he further added. 

Hackers threaten critical infrastructure

Last month, Google-owned cybersecurity firm Mandiant said it suspected state-backed Chinese hackers of having broken into the networks of hundreds of public and private sector organizations globally by using a security hole in a popular email security tool.

Earlier this year, Microsoft said state-backed Chinese hackers were targeting US critical infrastructure.

It added that China could be laying the technical groundwork to disrupt critical communications between the US and Asia during future crises. 

 ara/ab (AP, Reuters)