Microsoft Emails That Warned Customers of Russian Hacks Criticized For Looking Like Spam And Phishing – Slashdot

Microsoft is under fire for its handling of customer notifications following a data breach by Russian state-sponsored hackers. The tech giant confirmed in March that the group known as Midnight Blizzard had accessed its systems, potentially compromising customer data. Cybersecurity experts, including former Microsoft employee Kevin Beaumont, have raised concerns about the notification process. Beaumont warned on social media that the company’s emails may be mistaken for spam or phishing attempts due to their format and the use of unfamiliar links. “The notifications aren’t in the portal, they emailed tenant admins instead,” Beaumont stated, adding that the emails could be easily overlooked. Some recipients have reported confusion over the legitimacy of the notifications, with many seeking confirmation through support channels and account managers.