Security News > 2023 > August > Microsoft hits back at Tenable criticism of its infosec practices

Microsoft hits back at Tenable criticism of its infosec practices
2023-08-07 05:40

Microsoft has explained why it seemingly took its time to fix a flaw reported to it by infosec intelligence vendor Tenable.

On July 10, Tenable again contacted Microsoft to reports its findings on what it regarded as a dangerously incomplete fix.

Then last week Tenable CEO Amit Yoran gave Microsoft a lashing on LinkedIn over its handling of the flaw, arguing that Microsoft's response was too little, too late, because it did not completely address the issue.

On Friday, Microsoft responded with a post explaining that it investigated Tenable's July 10 report and found "a very small subset" of code and customers were at risk.

Customers were notified in the Microsoft 365 Admin Center.

Tenable clearly didn't understand Microsoft's process - or think it appropriate.


News URL

https://go.theregister.com/feed/www.theregister.com/2023/08/07/microsoft_power_platform_tenable_criticism/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Microsoft 701 775 4527 4650 3617 13569
Tenable 14 18 71 42 13 144