Microsoft warns 10,000 users nation-state cyber attack

According to Tom Burt, Corporate Vice President for Consumer Security and Trust at Microsoft, 84%of these attacks targeted its enterprise customers, and about 16% targeted consumer personal email accounts.

"While many of these attacks are unrelated to the democratic process, this data demonstrates the significant extent to which nation-states continue to rely on cyber attacks as a tool to gain intelligence, influence geopolitics or achieve other objectives," Burt said in a blog post late on Wednesday.

The company has seen extensive activity from the actors it calls Holmium and Mercury operating from Iran, Thallium operating from North Korea, and two actors operating from Russia it calls Yttrium and Strontium.

"This data has been compiled by the Microsoft Threat Intelligence Center which works every day to track these global threats," said Burt.

Since the launch of Microsoft "AccountGuard" last August, the company has uncovered attacks specifically targeting organisations that are fundamental to democracy.

"We have steadily expanded AccountGuard, our threat notification service for political campaigns, parties, and democracy-focused non-governmental organisations (NGOs), to include 26 countries across four continents."

This data shows that democracy-focused organisations in the US should be particularly concerned as 95 per cent of these attacks have targeted US-based organisations. Many of the democracy-focused attacks target NGOs and think tanks.

"As we head into the 2020 elections, we anticipate that we will see attacks targeting US election systems, political campaigns or NGOs that work closely with campaigns," warned Microsoft.

The company demonstrated the first voting system running Microsoft ElectionGuard technology at the Aspen Security Forum in Aspen, Colorado, on Wednesday.

"ElectionGuard" is free and open-source and will be available through the repository GitHub as a software development kit (SDK) later this year.