Microsoft's cyber security fails as per federal report findings. | Cyber Security Peek

Cyber Security Peek

April 4, 2024

by

TLDR:

A federal report criticized Microsoft for poor cyber security practices, allowing Chinese hackers to breach US official emails
The report called for significant security improvements and a cultural overhaul at Microsoft

A Biden administration-appointed Cyber Safety Review Board released a report slamming Microsoft’s corporate security and transparency. The report highlighted a “cascade of errors” that led to state-backed Chinese hackers breaching the email accounts of US officials, including Commerce Secretary Gina Raimondo. The panel called for an overhaul of Microsoft’s security culture, halting the addition of features to its cloud computing environment until significant security improvements are made, and rapid cultural change within the company.

The board also expressed concern about another hack disclosed by Microsoft in January, attributed to state-backed Russian hackers. Microsoft responded by thanking the board for its investigation and pledging to strengthen its systems against attacks, referring to the hackers as “well-resourced nation-state threat actors.”

Post Views: 65

Priya Patel

Previous Story

Feds demand Microsoft improves cloud security immediately

Next Story

Microsoft Exchange hacked Weak security culture blamed, says Cyber Safety Review Board

Latest from News

OpenStack Nova flaw lets hackers infiltrate cloud servers without permission

TLDR: A vulnerability in OpenStack’s Nova component, tracked as CVE-2024-40767, allows hackers to gain unauthorized access to cloud servers. The vulnerability affects multiple versions

CrowdStrike alert: New phishing scam targets German customers

TLDR: – CrowdStrike warns of a new phishing scam targeting German customers. – Malicious installers distributed via a fake website impersonating a German entity.

Beware: NKorea Cyber Op Targets Military, Nuclear Secrets in UK, US, SKorea

Article Summary TLDR: UK, US, and S. Korea issued a warning about a North Korea-backed cyber espionage campaign The group Andariel has been targeting

Security leaders weigh in on SEC cyber disclosure ruling one year later

TLDR: One year after the SEC cyber disclosure ruling, security leaders weigh in on its impact. Security professionals reflect on the lack of significant

Viettel Cyber Security and Banbros Commercial Inc tackle emerging cyber threats

TLDR: Viettel Cyber Security and Banbros Commercial Inc. addressed emerging cyber threats in the Philippines at a launching event. The event focused on discussing