Chinese hackers steal Azure AD signing keys
Microsoft launched an investigation into unauthorized access to the Exchange Online email services of several US government agencies. The experts found that the hack was successful with the help of vulnerabilities, stolen keys and an Azure AD signing key. But where the hackers got the keys from is probably still a mystery. Two dozen organizations, including US government agencies, were recently hacked. Chinese hackers stole a consumer signing key for an inactive Microsoft account (MSA). The incident was reported by US government officials after several government agencies discovered unauthorized access to Exchange Online email services. Action by Chinese professional hackers Microsoft…