Late last week, Microsoft announced it had been a victim of the same kind of hacking attacks reported recently by Apple and Facebook, and earlier this month by Twitter.
No Customer Data Compromised
In a public statement on Friday on its Security Response Center blog, Microsoft insisted the scope of the attack was fairly limited.
Matt Thomlinson, General Manager of Trustworthy Computing Security, wrote:
“During our investigation, we found a small number of computers, including some in our Mac business unit, that were infected by malicious software using techniques similar to those documented by other organizations. We have no evidence of customer data being affected and our investigation is ongoing.”
While Microsoft, Apple and Facebook insist no customer data was accessed during recent attacks, Twitter cannot make that claim. And last year, social networking giant LinkedIn experienced a highly publicized hacking in which millions of user passwords were potentially leaked.
A Wake Up Call
We’ve reported recently about the potential security dangers small businesses face online. One of the greatest of these may be the compromise of company data when passwords held by third parties are accessed.
For small business owners and staff who may have literally dozens of accounts ranging from social media to cloud apps, to PayPal to bank accounts, examples like these breaches should be a wake-up call. Why? Because of the dangers of something far too many users do: reuse of the same password across multiple accounts.
As Tom Espiner explained on ZDNet last July after a similar hack of Yahoo exposed the details of about 400,000 users, the real danger is how many other business accounts the hackers may have access to.
According to Espiner, 20 percent or one in five accounts compromised in the Yahoo breach matched the users’ Microsoft accounts — all thanks to password reuse. So in other words, when one account’s login information is revealed, it is as if the cyber attacker suddenly has a key to get inside other accounts.
If your business maintains multiple sensitive accounts, be sure they do not use the same passwords and other login information. Also, change passwords regularly.
Intruders gaining entrance to one account could gain entrance to your financial accounts and cloud apps containing your customer data. That’s a more dire consequence for your business than a single social media account being hacked.
About Shawn Hessinger
Shawn is a journalist and social media networker with more than a decade of experience in the traditional newspaper business before moving to the digital world. He was the former community manager of BizSugar and the former community editor at AllAnalytics, a site dedicated to professionals in the business intelligence and analytics community. 
Scary stuff Shawn.
It is easy to think that big companies like this are super-secure, but I guess this reminds us that they are not.
Generally the damage by this sort of attack should be limited; it’s if you have the same password for all of your various accounts that you need to be worried.
[...] Microsoft and Twitter. As we wrote earlier this week about the Microsoft hacking, it’s dangerous to reuse passwords. Why? Simply put, if a cyber attacker gets access to login data at one service or app, and you [...]
[...] steps can be taken to at least reduce your vulnerability to a hacker. For example, avoid reusing passwords on your sites and other accounts, including online banking. This way, if a hacker obtains access to [...]