Chinese Hackers Target US Emails

Chinese cyberspies exploited a vulnerability in Microsoft's cloud infrastructure, allowing them to conduct a targeted hack on unclassified U.S. email accounts. The security flaw was discovered by the U.S. government, prompting immediate contact with Microsoft to address the issue. While the number of affected email accounts is limited and the attack seemed focused, an FBI investigation is ongoing. The Pentagon, intelligence community, and military email accounts appear unaffected, and Microsoft has mitigated the attack. The recent attack used a stolen key that Microsoft's design failed to validate correctly. Microsoft has faced criticism for its security issues, including poor validation procedures and manipulating its software validation process.