Microsoft has denied the claims of the so-called hacktivists “Nameless Sudan” that they breached the corporate’s servers and stole credentials for 30 million buyer accounts.
Nameless Sudan is understood for debilitating distributed denial-of-service (DDoS) assaults towards Western entities in current months. The group has confirmed their affiliation with pro-Russian hacktivists like Killnet.
Final month, Microsoft admitted that Nameless Sudan was chargeable for service disruptions and outages originally of June that impacting a number of of its providers, together with Azure, Outlook, and OneDrive.
Yesterday, the hacktivists alleged that they’d “efficiently hacked Microsoft” and “accessed a big database containing greater than 30 million Microsoft accounts, emails, and passwords.”
Nameless Sudan provided to promote this database to events for $50,000 and urged patrons to interact involved with their Telegram bot to rearrange the acquisition of the info.
(BleepingComputer)
The publish even features a pattern of the info they provided (allegedly stolen from Microsoft) as proof of the breach and warned that Microsoft would deny these claims.
The group supplied 100 credential pairs however their origin couldn’t be verified (outdated knowledge, the results of a breach at third-party service supplier, stolen from Microsoft’s techniques).
BleepingComputer has contacted Microsoft to request a touch upon the validity of Nameless Sudan’s saying and an organization spokesperson flatly denied any knowledge breach claims.
“Right now, our evaluation of the info exhibits that this isn’t a authentic declare and an aggregation of knowledge,” an organization consultant advised BleepingComputer.
“We’ve got seen no proof that our buyer knowledge has been accessed or compromised” – Microsoft spokesperson
It’s unclear in the meanwhile if Microsoft’s investigation is full or it is ongoing. Additionally, the corporate’s response to the potential public launch of the info stays to be seen.