The 2023 Microsoft email hack carried out by the China-linked group Storm-0558 was preventable, according to a new report from the US Cyber Security Review Board (CSRB).
The CSRB is a forum of government and industry experts tasked with reviewing major cybersecurity events and providing recommendations to the President and the Director of the Cybersecurity and Infrastructure Security Agency (CISA) .
The hack was discovered by Microsoft during an internal investigation in mid-June, but it remained undetected for a month, according to a 2023 report. Approximately 25 government employees and agencies were affected by this breach.
According to the CSRB review, a series of decisions made by Microsoft created a corporate culture that did not prioritize cybersecurity, allowing the hack to occur.
CSRB Chairman Robert Silvers spoke about the importance of security in cloud computing.
“Cloud computing is one of the most critical infrastructures we have because it hosts sensitive data and powers business operations across the economy. Cloud service providers prioritize security and ensure security by design. Embedding is essential,” he said.
Access the most comprehensive company profiles on the market with GlobalData. Save research time. Increase competitiveness.
Company Profile – Free Sample
thank you!
You will receive a download email shortly
We are confident in the unique quality of our company profile. However, we want you to make the decision that is most beneficial for your business, so we are offering free samples that you can download by submitting the form below.
by global data
In the future, the CSRB recommends that Microsoft develop a public plan for security-focused reforms. The CSRB said Microsoft was in compliance with its review.
After a seven-month review, the CSRB also made a set of recommendations for all cloud providers. This includes implementing modern control mechanisms, adopting minimum standards for audit logs, and creating vulnerability disclosure practices.
CISA Director Jen Easterly said she believes the CSRB report serves as a call to action for cloud providers.
“I am confident that the findings and recommendations from the board's report will serve as a call to action to reduce risks to the critical infrastructure that Americans rely on every day,” Easterly said. said.
The cloud is rapidly becoming the mainstream of business around the world.
According to research and analysis firm GlobalData's 2024 Cloud Thematic Intelligence Report, the overall cloud market is expected to reach a value of $1.4 trillion worldwide by 2027, with SaaS accounting for 40% of the largest segment of the market. I am.
