Recently Microsoft had announced that a security breach had taken place on its Outlook.com site, in which hackers were able to access user accounts, essentially allowing cybercriminals to view email messages, email addresses, and folder names.
According to Microsoft, a support agent’s web mail service was compromised, allowing hackers to access user accounts from January 1st to March 28th, 2019. Once the issue was discovered, the support account was taken down.
Vice’s Motherboard claims that the hackers had access to users’ accounts for six months, to which Microsoft had refuted and stated that the breach occurred within the three month period as mentioned in their notification message to its users. The compromise allowed hackers to even access iCloud accounts to remove the Activation Lock feature on stolen iPhones – a feature that would prevent thieves from factory resetting the devices to sell for profit.
Microsoft had notified those consumers – around six percent – who had their email contents potentially breached by the hackers. The total number of consumers affected by this breach has not been revealed by Microsoft.