In its report published this week, the Cyber Safety Review Board (CSRB) says that the June 2023 online breach by Chinese threat actors who accessed U.S. government emails right before Secretary of State Anthony Blinken was to visit China, was “preventable”.

“[The report] identified a series of Microsoft operational and strategic decisions that collectively pointed to a corporate culture that deprioritized enterprise security investments and rigorous risk management, at odds with the company’s centrality in the technology ecosystem and the level of trust customers place in the company to protect their data and operations,” the report says.

The CSRB urges Microsoft to develop and “publicly share” a plan with specific timelines to make fundamental, security-focused reforms across the company and its suite of products.

  • spider@lemmy.nz
    link
    fedilink
    arrow-up
    0
    ·
    9 months ago

    and the level of trust customers place in the company to protect their data and operations

    Is this a belated April Fool’s Day joke?

    Microsoft practically pioneered bundled virus gateways.

    • The Doctor@beehaw.org
      link
      fedilink
      English
      arrow-up
      0
      ·
      9 months ago

      Nope. The publication date aside (2 April), DHS is not known for its sense of humor in any context.

    • Ephera@lemmy.ml
      link
      fedilink
      arrow-up
      0
      ·
      9 months ago

      Unfortunately, many, many users exist, for which trust is a function of “Have I heard of this company before?”…

      • spider@lemmy.nz
        link
        fedilink
        arrow-up
        0
        ·
        9 months ago

        for which trust is a function of “Have I heard of this company before?”

        …which, for the most part, explains the aversion towards desktop Linux.