Syrian Electronic Army shanghais Microsoft's Twitter account, blog

Saturday's hack follows hijack of Skype's social media channels two weeks ago
  • Gregg Keizer (Computerworld (US))
  • — 13 January, 2014 14:22

A group that bills itself as the Syrian Electronic Army (SEA) claimed credit for grabbing control of a pair of Microsoft company Twitter accounts and the firm's primary blog for a short time Saturday.

Microsoft regained control of the Twitter accounts within hours, deleting the rogue tweets and scrubbing the unauthorized posts from its blog.

It was the second successful attack against Microsoft's social media presence this month. Two weeks ago the SEA hacked Skype's Twitter account, blog and Facebook page. Skype, a popular video calling, instant messaging and Internet phone service, was acquired by Microsoft in 2011 for $8.5 billion.

The SEA is a loose collective of hackers who profess loyalty to the government of Syrian President Bashar al-Assad, which is conducting a brutal war to suppress opposition groups. The group regularly targets Western websites, companies and human rights organizations with site defacements and redirects, denial-of-service attacks, and embarrassing commentary from shanghaied social media accounts.

Although some believe the SEA is supported or even controlled by Assad and his government, security researchers have found no smoking gun to connect the two. Assad has praised the SEA's work in the past, however.

Most of the SEA's hacking activity has been rapidly corrected by their victims, but the defacements and unauthorized tweets have been embarrassing, if only because they point to security issues. It's believed that the SEA gain access to websites and social media accounts by tricking employees into divulging credentials with phishing campaigns.

"Don't use Microsoft emails (hotmail, outlook)," the SEA wrote on the hijacked Microsoft News account, one of two the group controlled Saturday. "They are monitoring your accounts and selling the data to the governments."

The SEA also posted images it claimed were of Microsoft internal emails related to the weekend attack, including one allegedly from Steve Clayton, the Microsoft manager of its official blog and Twitter account, to several Microsoft public relations staffers, including Frank Shaw, who heads all corporate communication at the Redmond, Wash. company.

In the purported email, Clayton named bitly, the URL shortening service, as the "backdoor that has been found."

It's unclear how the SEA was able to access the emails it claimed were from Microsoft employees.

According to the RSS feed of Microsoft's blog, the SEA published 20 posts before Microsoft regained control. All read, "Syrian Electronic Army was here," much like the WWII-era graffiti "Kilroy was here" once proclaimed.

Gregg Keizer covers Microsoft, security issues, Apple, Web browsers and general technology breaking news for Computerworld. Follow Gregg on Twitter at @gkeizer, or subscribe to Gregg's RSS feed . His email address is gkeizer@computerworld.com.

> >

Read more about security in Computerworld's Security Topic Center.

Tags: Cybercrime and Hacking, skype, security, Microsoft, twitter, Facebook, privacy

Michaels says breach at its stores affected nearly 3M payment cards

READ THIS ARTICLE
DO NOT SHOW THIS BOX AGAIN [ x ]
Comments are now closed.
CSO Corporate Partners
  • Webroot
  • Trend Micro
  • NetIQ
rhs_login_lockGet exclusive access to CSO, invitation only events, reports & analysis.
CSO Directory

Webroot Web Security

Proactive web security that blocks threats in the cloud before they reach users’ machines, or enter customers’ networks.

Latest Jobs
Security Awareness Tip

Incident handling is a vast topic, but here are a few tips for you to consider in your incident response. I hope you never have to use them, but the odds are at some point you will and I hope being ready saves you pain (or your job!).


  1. Have an incident response plan.

  2. Pre-define your incident response team 

  3. Define your approach: watch and learn or contain and recover.

  4. Pre-distribute call cards.

  5. Forensic and incident response data capture.

  6. Get your users on-side.

  7. Know how to report crimes and engage law enforcement. 

  8. Practice makes perfect.

For the full breakdown on this article

Security ABC Guides

Warning: Tips for secure mobile holiday shopping

I’m dating myself, but I remember when holiday shopping involved pouring through ads in the Sunday paper, placing actual phone calls from tethered land lines to research product stock and availability, and actually driving places to pick things up. Now, holiday shoppers can do all of that from a smartphone or tablet in a few seconds, but there are some security pitfalls to be aware of.