SolarWinds hacking campaign puts Microsoft in the hot seat

The campaign’s “hallmark” was the intruders’ ability to impersonate legitimate users and create counterfeit credentials that let them grab data stored remotely by Microsoft Office, the acting director of the Cybersecurity Infrastructure and Security Agency, Brandon Wales, told a mid-March congressional hearing. “It was all because they compromised those systems that manage trust and identity on networks,” he said.

“Microsoft chooses the default settings in the software it sells, and even though the company knew for years about the hacking technique used against U.S. government agencies, the company did not set default logging settings to capture information necessary to spot hacks in progress,” Wyden said. He was not the only federal lawmaker who complained.for which it normally charges a premium, Wyden was not appeased.

Even the highest level of logging doesn't prevent break-ins, though. It only makes it easier to detect them. by the SolarWinds intruders, who got access to some of its source code — its crown jewels. Microsoft’s full suite of security products — and some of the industry's most skilled cyber-defense practitioners — had failed to detect the ghost in the network. It was alerted to its own breach by FireEye, the cybersecurity firm that first detected the hacking campaign in mid-December.

“The crux of it is that Microsoft is selling you the disease and the cure,” said Marc Maiffret, a cybersecurity veteran who built a career finding vulnerabilities in Microsoft products and has a new startup in the works called BinMave. In the budget year ending in September, the federal government spent more than half a billion dollars on Microsoft software and services.

'... without fleecing taxpayers.' So guessing this isn't considered a military project.. 😏

microsoft and security in the same sentence? lol

United States Latest News, United States Headlines

Similar News:You can also read news stories similar to this one that we have collected from other news sources.

Gucci's New Campaign Is A Fake Talk Show, Starring Harry Styles, Awkwafina, & MoreHarry Styles, Awkwafina, and more guest star in 'The Beloved Show,' a late-night talk show conjured up by Gucci's Alessandro Michele and hosted by James Corden.
Source: NylonMag - 🏆 697. / 51 Read more »

Harry Styles Finds Himself in the Hot Seat of Gucci's Beloved Campaign With James CordenLate night, but make it Gucci. Harry_Styles is on the hot seat for the brand's Beloved campaign and its latest promotional video that was released on April 22. harrysbrasil Harry_Styles proud to be able to see you so happy and fulfilled I vote Juice for BestCoverSong at the iHeartAwards harrysbrasil Harry_Styles You are more than amazing in this campaign I vote WatermelonSugar for BestMusicVideo at the iHeartAwards harrysbrasil Harry_Styles miss seeing your face more often I vote AdoreYou for BestLyrics at the iHeartAwards
Source: billboard - 🏆 112. / 63 Read more »

Facebook says Palestinian spies behind hacking campaignFacebook says it has disrupted a long-running cyberespionage campaign run by Palestinian intelligence which features spies posing as journalists and the deployment of a booby-trapped app for submitting human rights stories.
Source: Reuters - 🏆 2. / 97 Read more »

Put five more hot sauces on your radarHerbaceous. Fermented. Inspired by a decades-old recipe. Here are five local hot sauce varieties heating things up. I can’t! There’s just no more room in the hot sauce cabinet!
Source: latimesfood - 🏆 699. / 51 Read more »

How to Watch Today's Senate Hearing on App Store FairnessApple and Google take the hot seat at a Senate Judiciary antitrust subcommittee hearing examining the companies' app stores today.
Source: billboard - 🏆 112. / 63 Read more »