Chinese government-backed hackers steal 60,000 emails from State Department employees by exploiting a Microsoft engineer’s device
09/29/2023 // Arsenio Toledo // Views

Hackers linked to the Chinese communist government have exploited a Microsoft engineer's device to breach the inboxes of at least 10 Department of State employees, stealing around 60,000 emails as part of a high-profile hack earlier this summer.

The hacking incident is already well known as it even impacted Commerce Secretary Gina Raimondo's emails. The additional information comes from a member of Republican Sen. Eric Schmitt of Missouri's staff, who attended a briefing by State Department IT officials who told lawmakers about the stolen 60,000 emails. (Related: Chinese hackers exploit Microsoft cloud bug to raid US government email accounts, including the Commerce Secretary's.)

Government officials alleged that in July, Chinese state-backed hackers were able to breach the email accounts of around 25 organizations, including government agencies and officials back in May. The extent of the compromise remains unclear.

Nine of the staffers whose emails were stolen were working in the State Department's Bureau of East Asian and Pacific Affairs, and the 10th was working on European and Eurasian Affairs.

The latest revelation that most of the targets of the May hack were working on issues in East Asia and the Pacific region lends more credence to United States government allegations that the Chinese communist government in Beijing was behind the hack – an accusation that Chinese Communist Party officials have denied.

State Department Chief Information Officer Kelly Fletcher noted in her debrief that the hack focused on retrieving information on Indo-Pacific diplomatic efforts. Among the most sensitive information stolen were the travel itineraries and diplomatic deliberations of the 10 victims. Fletcher added that the hackers could have even viewed the Social Security numbers of the 10 individuals.

Emails breached through Microsoft vulnerability

The State Department officials further noted that the hackers were able to access the 10 accounts by compromising the device of a Microsoft engineer, allowing them to breach the 10 email accounts and giving them access to at least 15 other entities.

Microsoft earlier in September admitted that the July hack of senior State and Commerce Department officials stemmed from the compromise of a Microsoft engineer's corporate account. The new information provided by the State Department has refocused attention on the outsized role Microsoft plays in providing information technology services to the U.S. government.

"We need to harden our defenses against these types of cyberattacks and intrusions," said Schmitt. "We need to take a hard look at the federal government's reliance on a single vendor as a potential weak point."

Since discovering the hack, the State Department has begun moving to "hybrid" environments by contracting other vendor companies to provide I.T. services. Multi-factor authentication is also being used more widely as part of improved measures to protect the department's systems.

A State Department spokesperson also said in a statement that the agency takes seriously its responsibility to safeguard its information and continuously takes steps to ensure information is protected. "Like every large organization with a global presence, we closely monitor cybersecurity conditions," the spokesperson said.

Learn more about Chinese-backed cyberattacks at CyberWar.news.

Watch this Fox News report in July describing how the Chinese-backed cyberattack stole "super private" information from the government and private companies.

This video is from the News Clips channel on Brighteon.com.

More related stories:

Pentagon report warns of China's cyber preparations for war following hacking of U.S. military bases.

REPORT: Chinese operatives use AI-generated images to spread disinformation and provoke discussion on divisive political issues targeting America.

Popular China-made shopping app Temu likely being used by the CCP for DATA COLLECTION.

Cybersecurity official warns: Americans must prepare for CYBERATTACKS from Chinese hackers.

More sophisticated Chinese cyberattacks target US firms, government agencies, defense contractors.

Sources include:

Politico.com

Reuters.com

Brighteon.com



Take Action:
Support Natural News by linking to this article from your website.
Permalink to this article:
Copy
Embed article link:
Copy
Reprinting this article:
Non-commercial use is permitted with credit to NaturalNews.com (including a clickable link).
Please contact us for more information.
Free Email Alerts
Get independent news alerts on natural cures, food lab tests, cannabis medicine, science, robotics, drones, privacy and more.
App Store
Android App
eTrust Pro Certified

This site is part of the Natural News Network © 2022 All Rights Reserved. Privacy | Terms All content posted on this site is commentary or opinion and is protected under Free Speech. Truth Publishing International, LTD. is not responsible for content written by contributing authors. The information on this site is provided for educational and entertainment purposes only. It is not intended as a substitute for professional advice of any kind. Truth Publishing assumes no responsibility for the use or misuse of this material. Your use of this website indicates your agreement to these terms and those published here. All trademarks, registered trademarks and servicemarks mentioned on this site are the property of their respective owners.

This site uses cookies
Natural News uses cookies to improve your experience on our site. By using this site, you agree to our privacy policy.
Learn More
Close
Get 100% real, uncensored news delivered straight to your inbox
You can unsubscribe at any time. Your email privacy is completely protected.