Microsoft hacked by the Syrian Electronic Army for a second time in 2014, MSFTNews Twitter account hijacked, sends out SEA messages.
Again Syrian Electronic Army, the popular group of Hackers this time hacked the Microsoft News Twitter account — @MSFTNews. The Syrian Electronic Army (SEA) has compromised early 2014 the Skype‘s Twitter account and blog to protest against the support provided to the NSA surveillance program.
Microsoft has immediately removed the tweets, it took about an hour to delete the evidences of the attack, but Syrian Electronic Army in that interval of time tweeted a series of messages that is possible to read in the below snapshots.
The first message was a retweet from the SEA official account used in the last attack against Skype @Official_SEA16:
“Don’t use Microsoft emails (hotmail,outlook), They are monitoring your accounts and selling the data to the governments.”
The same message was also sent with the hacked @MSFTNews account, meanwhile a successive tweet show the message
“Syrian Electronic Army was here”.
In time I’m writing, there are no news on how the hackers have compromised the Microsoft account, also for the cause of Skype hijack is still a mystery, but it is likely that attackers have attacked a user allowed to manage the hacked accounts (e.g. via Spear Phishing attack or using any other form of social engineering)
The hack of an official account of a big Enterprise or Media Agency could have serious repercussion, the attacker could use it to make propaganda or worst to spread links to compromised server used to serve a malware.
The attack occurred to Associated Press demonstrated the disastrous effect of misinformation, also is made for a limited interval of time.
Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer.
Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US.
Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines.
Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.