Security News > 2023 > August > US government to investigate China's Microsoft email breach
Infosec in brief The July breach of Microsoft Exchange Online by suspected Chinese hackers is the next topic up for review by the Department of Homeland Security's Cyber Safety Review Board.
The decision to investigate the July Outlook intrusion, and cloud security more broadly, was welcomed by senator Ron Wyden, who last week blamed Microsoft for its failure to protect cloud accounts belonging to US government officials and called for the CSRB to investigate the incident.
"I applaud president Biden and CISA director Easterly for acting on my request for the board to review this recent espionage campaign, including cyber security negligence by Microsoft that enabled it," Wyden said.
"The government will only be able to protect federal systems against cyber attacks by getting to the bottom of what went wrong. Ignoring problems is both a waste of taxpayer dollars and a massive gift to America's adversaries."
CISA director Jen Easterly said the CSRB's findings would help advance cyber security across the cloud - both government and enterprise.
The Government Accountability Office said that it has made more than 4,000 recommendations to federal agencies to address cyber security issues, and as of December 2022 more than 880 had yet to be fully implemented.
News URL
Related news
- Microsoft breach allowed Russian spies to steal emails from US government (source)
- U.S. Cyber Safety Board Slams Microsoft Over Breach by China-Based Hackers (source)
- New Zealand to world: China attacked us, too! (source)
- US House of Reps tells staff: No Microsoft Copilot for you! (source)
- Microsoft warns Gmail blocks some Outlook email as spam, shares fix (source)
- Microsoft slammed for lax security that led to China's cyber-raid on Exchange Online (source)
- Microsoft slammed for lax security that led to China's cyber-raid on Exchange Online (source)
- US cancer center data breach exposes info of 827,000 patients (source)
- US government excoriates Microsoft for 'avoidable errors' but keeps paying for its products (source)
- US Cyber Safety Review Board on the 2023 Microsoft Exchange Hack (source)