A report issued earlier this month by Vice News’ Motherboard has uncovered several Microsoft Outlook emails were hacked or otherwise compromised. The true nature of the attack is now starting to be understood, as numerous victims are claiming that due to the hack they lost some or all of their cryptocurrency.
In fact, Motherboard‘s first report stated that the attack was only able to steal user’s metadata, however, it now appears certain that email content was also targetted and acquired. Whilst it is unclear whether this was a coordinated attacked by multiple hackers or the work of just one individual, the attack continues to expose the vulnerabilities of Microsoft Outlook.
The person(s) responsible was able to obtain highly classified the login credentials of a Microsoft customer support employee. With these credentials, non-corporate email content on Hotmail, Outlook, and MSN became easily accessible.
Over the past few days, several victims approached Vice News and other news agencies reporting the real reasons behind the attack; stealing cryptocurrency. One of these victims, Jevon Ritmeester, told Motherboard that the hackers had gained access to his email content and were able to reset the password of his Kraken wallet and withdraw Bitcoin. This claim was backed by correspondence which Ritmeester provided Motherboard and which appear to come directly from Microsoft. They include a rule which the attacker supposedly set up, where each email which contains the term “Kraken” is automatically forwarded to a separate Gmail account.
Once the email was forwarded the hacker would delete it from the victim’s Outlook inbox. Ritmeester finally realised what was going on when he checked his trash folder, but by then the hackers had already managed to take over 1 Bitcoin, or approximately $5,000. Unfortunately, Ritmeester is far from the only victim of this attack.
Ritmeester admits that his Kraken account did not have two-factor authentication enabled. Had this been active, the hackers would have also needed to steal his phone, making the success of the attack less probable. All users are highly recommended to activate this feature immediately to protect against possible future attacks.
Some users are feeling let down by Microsoft, stating that the company is not taking this attack as seriously as it should be. From its part, the company has altered its original statement, admitting that email content was potentially exposed, and urging victims to get in touch and report their claims.
Ritmeester also shares this sentiment and says that he plans to file a police report, hoping that this will force Microsoft to take this issue seriously and also be liable for any damages caused by the system’s vulnerabilities. He also worries that other sensitive and personal data stored in his inbox could eventually be leaked or used for other illegal purposes.
The Motherboard reports other users who claim that their Outlook inbox was hacked through posts on Reddit. In one particular comment, a user claims that 25,000 in crypto was lost, though it’s unclear whether this is digital or fiat currency.
After the reveal of three separate promotions this time last week, CoinEX are back again with a brand-new promotion that allows users to borrow their first trade free of charge for 30 days. Now in its second month of existence, CoinEx’s margin trading service has been quite a hit amongst users and with new updates […]
In 10 days, Exmo will be offering the latest token on their platform for trading, ROOBEE. In anticipation of this, they have released important details for traders who are looking to take advantage of the new listing early on. What is most unique about this latest listing is that it will coincide with the listing […]
Following the acquisition of Xapo, a bitcoin wallet and cold storage location, Coinbase Custody is now the world’s largest crypto custodian. After the completion of the deal, Coinbase Custody officially surpassed $7 billion in assets, which saw them reach the highest volume of assets in the business. Officially making them the most popular choice for […]
EXMO has made new changes to the minimum withdrawals of bitcoin from their platform. The platform informed users on Tuesday, 13th August, that the limit would come into immediate effect. With the new limit for withdrawals being set at 0.002 BTC, which sees a decrease by 5 times. Users have been told to consider this […]
Ethfinex has announced that it is set to close down its existing operations in order to rebrand itself under the title, De-fi. The news was announced via a blog post where it described the plan as its “biggest milestone yet.” The aim of the rebrand is to move towards a more decentralised exchange platform. Feeling […]
Monday saw the launch of CoinEx’s new options trading service. We took a look at what it promises users of the service. Following the launch of their accelerator programs, futures trading and margin trading on their platform, CoinEx latest new options trading service is the latest in the line of new products from the platform. But, […]
CEX.io have confirmed that new tokens will be available for trading on their platform, ONT and ONG, both of which are part of the Ontology Project, a public blockchain protocol with high performance. While part of the same project, the two coins are unique in their purpose and function. ONG operates as a utility token […]
KuCoin has released news of their second new listing in a week, Enecuum. Following the listing of the security firm Fortnoxer’s token last week, KuCoin has followed it up directly with the release of Enecuum for trading on their platform. While Enecum may have had a lower profile than its predecessor, following a private sale […]