City
Epaper

Microsoft takes control of websites used by China-backed hackers

By IANS | Updated: December 7, 2021 10:30 IST

San Francisco, Dec 7 Microsoft has disrupted the activities of a China-based hacking group, gaining control of the ...

Open in App

San Francisco, Dec 7 Microsoft has disrupted the activities of a China-based hacking group, gaining control of the malicious websites the group used to attack organisations in the US and 28 other countries around the world.

The Microsoft Digital Crimes Unit (DCU) said in a statement that a federal court in Virginia granted its request to seize websites of the hacking group called 'Nickel', enabling the company to cut off Nickel's access to its victims and prevent the websites from being used to execute attacks.

"We believe these attacks were largely being used for intelligence gathering from government agencies, think tanks and human rights organisations," said Tom Burt, Corporate Vice President, Customer Security and Trust at Microsoft.

Obtaining control of the malicious websites and redirecting traffic from those sites to Microsoft's secure servers will help the company protect existing and future victims while learning more about Nickel's activities.

"Our disruption will not prevent Nickel from continuing other hacking activities, but we do believe we have removed a key piece of the infrastructure the group has been relying on for this latest wave of attacks," Burt said late on Monday.

To date, in 24 lawsuits - five against nation-state actors Microsoft has taken down more than 10,000 malicious websites used by cybercriminals and nearly 600 sites used by nation-state actors.

"We have also successfully blocked the registration of 600,000 sites to get ahead of criminal actors that planned to use them maliciously in the future," the tech giant informed.

In some observed activity, Nickel malware used exploits targeting unpatched on-premises Exchange Server and SharePoint systems.

"However, we have not observed any new vulnerabilities in Microsoft products as part of these attacks. Microsoft has created unique signatures to detect and protect from known Nickel activity through our security products, like Microsoft 365 Defender," the company noted.

Nickel has targeted organisations in both the private and public sectors, including diplomatic organisations and ministries of foreign affairs in North America, Central America, South America, the Caribbean, Europe and Africa.

Disclaimer: This post has been auto-published from an agency feed without any modifications to the text and has not been reviewed by an editor

Tags: DECusmicrosoftSan FranciscoTom BurtSan francisco bayJose d'sa
Open in App

Related Stories

InternationalEarthquake in Russia: Quake of Magnitude 8.0 Strikes Kamchatka Peninsula; Tsunami Warning Issued

InternationalNASA Layoffs: 20% or 3,870 Employees to Exit US Space Agency

InternationalMichigan Plane Crash: 2 Killed After Small Aircraft Crashes Into Storage Facility Near Lowell City Airport in US

International'System-Wide Ground Stop': Alaska Airlines Grounded Over 200 Planes Due to IT Outage

International‘This Might Hit You Hard’: NATO Chief Mark Rutte's Warning to India, China, and Brazil Over Russia Ties Amid Ukraine War

Technology Realted Stories

TechnologySouth Korean President Lee calls for measures to curb fake news on YouTube

TechnologyDPIIT ieam visits Bengaluru to boost IoT and Deep-Tech innovation

TechnologyIndia's smartphone exports hit record $7.72 billion in Q1FY26, Apple leads with $6 billion

TechnologyIndia’s chip market poised to scale $110 billion by 2030

TechnologyQ1 Earnings Review: Brokerages give mixed outlook, earnings downgrade ratio drops