Threat actors downloaded some Microsoft Exchange and Azure code repositories during the SolarWinds supply-chain attack. Microsoft completed its investigation into the attack, which was discovered in December. Threat actors accessed and downloaded source code from a small number of repositories, the tech giant said. Microsoft s existing in-depth protections prevented the threat actor from gaining access to privileged credentials or leveraging the techniques used in the attack against its corporate domains, the company said in a blog post.
Source: https://threatpost.com/microsoft-solarwinds-azure-exchange-code/164104/