Microsoft lost its keys, and the government got hacked | TechCrunch
China hacked dozens of email accounts, including in government. Microsoft opens up, slightly, about how the hackers pulled off the heist.
Hasnain says:
Yikes
“With the immediate threat thought to be over, Microsoft now faces scrutiny for its handling of the incident, thought to be the biggest breach of unclassified government data since the Russian espionage campaign that hacked SolarWinds in 2020.
As noted by Ars Technica’s Dan Goodin, Microsoft went to great lengths to do damage control in its blog post, avoiding terms like “zero-day,” referring to when a software maker has zero days notice to fix a vulnerability that has already been exploited. Whether or not the bug or its exploitation fits everyone’s definition of a zero-day, Microsoft went out of its way to avoid describing it as such, or even to call it a vulnerability.”
Posted on 2023-07-18T15:55:08+0000