Quartz: Microsoft’s ‘corporate culture’ deprioritized security before China’s ‘preventable’ hack, DHS says

The U.S. Cyber Safety Review Board found that Microsoft could have stopped Chinese state actors from hacking government emails in 2023


Microsoft sign shown on top of the Microsoft Theatre
Photo: Mike Blake/File Photo (Reuters)

Microsoft could have prevented Chinese state actors from hacking U.S. government emails last year, a new federal government report found, in an incident it called a “cascade of security failures.”

The report from the U.S. Cyber Safety Review Board (CSRB) found that Chinese hackers, known as Storm-0558, compromised the Microsoft Exchange Online emails of 22 organizations and more 500 people around the world, including senior U.S. government officials working on national security matters. Commerce Secretary Gina Raimondo and R. Nicholas Burns, the American ambassador to China, were among the U.S. government officials who were hacked.

Read full article: https://qz.com/microsoft-china-hack-dhs-report-security-1851383631