Ars Technica

Microsoft finally explains cause of Azure breach: An engineer’s account was hacked

Microsoft said the corporate account of one of its engineers was hacked by a highly skilled threat actor that acquired a signing key used to hack dozens of Azure and Exchange accounts belonging to ...
TechCrunch

Microsoft lost its keys, and the government got hacked

Microsoft still doesn’t know — or want to share — how China-backed hackers stole a key that allowed them to stealthily break into dozens of email inboxes, including those belonging to several federal ...
Bleeping Computer

Microsoft still unsure how hackers stole Azure AD signing key

Microsoft says it still doesn't know how Chinese hackers stole an inactive Microsoft account (MSA) consumer signing key used to breach the Exchange Online and Azure AD accounts of two dozen ...
HotHardware

Microsoft Gave BitLocker Encryption Keys To The FBI, Report Claims

Microsoft has confirmed that it provided BitLocker recovery keys to the FBI in response to a valid legal order, giving investigators the ability to decrypt hard drives that would otherwise have been ...
Ars Technica

How to encrypt your PC’s disk without giving the keys to Microsoft

In early 2025, Forbes reports, investigators at the FBI served Microsoft with a warrant seeking the BitLocker encryption recovery keys for several laptops it believed held evidence of fraud in Guam’s ...
HotHardware

Microsoft Amps Up War On Passwords With A Key Change To New Accounts

Nefarious hackers have figured out many ways to circumvent 2FA restrictions and harvest passwords with sophisticated phishing traps. Many of these bad actors, however, will soon be looking for new ...