The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an emergency directive following a significant cyberattack by Russian government-backed hackers, known as Midnight Blizzard. The hackers exploited Microsoft's email system to steal emails from several U.S. federal agencies, presenting "a grave and unacceptable risk" to national security. CISA's directive orders impacted agencies to mitigate risks by analyzing compromised emails, resetting credentials, and securing Microsoft cloud accounts. This breach also involved the theft of login credentials and potentially allowed access to further sensitive government communications.