Quartz: Microsoft’s ‘corporate culture’ deprioritized security before China’s ‘preventable’ hack, DHS says

Off Cyber Policy in the News, Featured,

The U.S. Cyber Safety Review Board found that Microsoft could have stopped Chinese state actors from hacking government emails in 2023

By

Britney Nguyen
Microsoft sign shown on top of the Microsoft Theatre
Microsoft.
Photo: Mike Blake/File Photo (Reuters)

Microsoft could have prevented Chinese state actors from hacking U.S. government emails last year, a new federal government report found, in an incident it called a “cascade of security failures.”

The report from the U.S. Cyber Safety Review Board (CSRB) found that Chinese hackers, known as Storm-0558, compromised the Microsoft Exchange Online emails of 22 organizations and more 500 people around the world, including senior U.S. government officials working on national security matters. Commerce Secretary Gina Raimondo and R. Nicholas Burns, the American ambassador to China, were among the U.S. government officials who were hacked.

Read full article: https://qz.com/microsoft-china-hack-dhs-report-security-1851383631 

About The Author

Hugh Taylor is a Certified Information Security Manager (CISM). In addition to editing Journal of Cyber Policy, he writes about cybersecurity, compliance and enterprise technology for such clients as Microsoft, IBM, SAP, HPE, Oracle, Google and Advanced Micro Devices. Prior to launching his freelance writing career, he served in executive roles at Microsoft, IBM and several venture-backed technology startups.

Privacy Policy