Emails were stolen from 10 State Department accounts...
Chinese hackers managed to steal tens of thousands of emails from US State Department accounts, a Senate staffer told Reuters on Wednesday. The staffer, who attended a briefing by State Department IT officials, said the officials told lawmakers that 60,000 emails were stolen from 10 State Department accounts. Nine of those victims were working on East Asia and the Pacific and one worked on Europe, according to the briefing details shared via email by the staffer, who declined to be named.
In July, U S officials and Microsoft said that Chinese state-linked hackers since May had accessed email accounts at around 25 organizations, including the U.S. Commerce and State Departments. The extent of the compromise remains unclear.
US allegations that China was behind the breach have strained an already tense relationship between the countries, however, Beijing has denied the charges.
The State Department individuals whose accounts were compromised mostly focused on Indo-Pacific diplomacy efforts, and the hackers also obtained a list containing all of the department's emails, according to the Wednesday briefing.
The sweeping hack has refocused attention on Microsoft's outsize role in providing IT services to the US government. The State Department has begun moving to "hybrid" environments with multiple vendor companies and improved uptake of multi-factor authentication, as part of measures to protect its systems, according to the officials at the briefing.
The hackers compromised a Microsoft engineer's device, which allowed them to breach the State Department's email accounts, according to the briefing.
Microsoft earlier this month said that a hack of senior officials at the US State and Commerce Departments stemmed from the compromise of a Microsoft engineer's corporate account. "We need to harden our defenses against these types of cyber-attacks and intrusions," Schmitt said in a statement shared by the staffer in an email to Reuters following the briefing. "We need to take a hard look at the federal government's reliance on a single vendor as a potential weak point," he said.
The Brief. Sign up to receive the top stories you need to know right now.