secwatch.observer — SEC 8-K summary
======================================

Issuer:     MICROSOFT CORP (MSFT)
CIK:        0000789019
Form:       8-K
Filed at:   2024-01-19T23:59:59+00:00
Accession:  0001193125-24-011295
Event type: cyber
Sentiment:  negative
Materiality: 0.75
Item codes: 1.05, 7.01, 9.01
LLM model:  deepseek-v4-flash:cloud@v2

Microsoft detects nation-state attack on corporate email; exfiltrated data from senior leadership accounts
--------------------------------------------------------------------------------

- Threat actor Midnight Blizzard (Nobelium) accessed a very small percentage of employee email accounts via password spray on a legacy test tenant.
- Exfiltrated emails and attachments from senior leadership, cybersecurity, legal, and other functions; no customer or production system access.
- Access discovered Jan 12, 2024; removed Jan 13; investigation ongoing; company cooperating with law enforcement.
- Microsoft says incident has not had a material impact on operations; financial impact not yet determined.
- Company pledges to accelerate security standards for legacy systems, may cause disruption to existing business processes.

Source:
  EDGAR index:    https://www.sec.gov/Archives/edgar/data/789019/000119312524011295/0001193125-24-011295-index.htm
  Primary doc:    https://www.sec.gov/Archives/edgar/data/789019/000119312524011295/d708866d8k.htm
  HTML page:      https://secwatch.observer/filing/0001193125-24-011295

License: Source filings: public domain (SEC EDGAR). Summaries (headline + bullets): CC-BY-4.0; attribute https://secwatch.observer