-
Bayern sign Germany defender Brown until 2031
-
Police hunt for Ukrainian woman over Monaco bomb attack
-
MEXC's June Highlights: $437 Billion in Trading Volume, Offering Access to 7,000+ US Stocks and ETFs
-
Kenya's abortion taboo is killing thousands of women
-
Stocks mostly rise as beaten-down tech stocks enjoy bounce
-
Madonna returns to form with dancefloor filler "Confessions II"
-
Iranian leaders pay respects to supreme leader as Tehran prepares for funeral
-
Dean says Australia final a 'fresh start' for England
-
Doubles not a 'carnival sideshow' say players amid schedule row
-
Wimbledon giving Serena 'as much time' as possible for doubles
-
Klopp in 'talks' for Germany job after Nagelsmann exit: federation
-
Chinese investors flock to Hong Kong as trading curbs tighten
-
Surging real estate development divides opinion on Athens' riviera
-
Projected 'super typhoon' heads for US Pacific islands
-
Move over, Messi! Robot footballers thrill crowds in South Korea
-
UN warns of strong looming El Nino
-
France deaths rose by 30% during heatwave
-
Hunt for last signs of life in Venezuela quake zone
-
Drones spot sharks 73 times in two days off Sydney beaches
-
Asian markets rise as beaten-down tech stocks enjoy bounce
-
Supreme leader's body arrives at Tehran religious complex for funeral
-
David v Goliath as Cape Verde face Messi's Argentina at World Cup
-
Mbappe's French juggernaut face Paraguay, eye World Cup quarter-finals
-
Nagelsmann quits as Germany coach after World Cup exit: reports
-
Wallabies riding wave of patriotic support against Ireland
-
All Blacks return to Christchurch 'a blessing', says Savea
-
Belgium opens up Congo archives amid global minerals race
-
'Not a museum': Slovak UNESCO village strains under tourism
-
Wimbledon clings onto fashion traditions, with a twist
-
DR Congo opposition builds against presidential third-term bid
-
Death toll from massive strikes on Kyiv rises to 30
-
China sports brands score NBA stars to assist global ambitions
-
El Nino set to be strong, UN warns
-
Man dies after setting self ablaze outside UN in New York: police
-
'Inspired millions': Modric praised as World Cup career appears at end
-
VAR 'taking joy' from football says Croatia coach Dalic after loss
-
Death toll hits 10 in Thai monk procession crash
-
Afghans come home but risk exclusion without any ID
-
Asian markets rise as beaten tech stocks enjoy respite from selling
-
'Coincidence of life' says Ronaldo after Jota tribute a year from death
-
'Royal wedding': Swift and Kelce kick off star-studded celebrations
-
Japan face Italy without banned coach Jones
-
Tajik names for Tajik babies: strict rules leave parents stranded
-
Ronaldo, Portugal advance after VAR drama to set up Spain showdown
-
From ketchup to car parts, Cuba gets private sector makeover
-
AI romance scam impersonating Dubai prince ensnares victims
-
'Not easy, but not impossible': Iraq's film industry sees slow revival
-
Portugal advance in World Cup thanks to last-gasp Ramos winner
-
Farrell flattery primes Ireland for Australia clash
-
Mission impossible? England take the World Cup high road against Mexico
Microsoft faces heat from US Congress over cybersecurity
Members of US Congress on Thursday pressed Microsoft to explain a "cascade of avoidable errors" that allowed a Chinese hacking group to breach emails of senior US officials.
Microsoft President Brad Smith spent more than three hours answering questions from members of the House Committee on Homeland Security in Washington, assuring them cybersecurity is being woven more deeply into the technology company's culture.
"Microsoft accepts responsibility for each and every one of the issues cited" in a scathing US government report about the breach "without equivocation or hesitation," Smith told the committee.
The Cyber Safety Review Board (CSRB), led by the US Department of Homeland Security, conducted a seven-month investigation into the incident last year that involved the China-affiliated cyberespionage actor Storm-0558.
"Microsoft has an enormous footprint in both government and critical infrastructure networks," US congressman and committee member Bennie Thompson said to Smith as the hearing opened.
"It is our shared interest that the security issues raised by the (report) be addressed quickly."
The operation, which was first discovered by the US State Department in June 2023, included hacks on the official and personal mailboxes of Commerce Secretary Gina Raimondo and US Ambassador to China Nicholas Burns.
Microsoft's core business is to provide cloud computing services, such as Azure or Office360, that host sensitive data and power business and government operations across major sectors of the economy.
The report criticized a Microsoft corporate culture that was "at odds with... the level of trust customers place in the company."
The review identified a series of operational and strategic decisions by Microsoft that opened the door to the breach, including the failure to identify a new employee's compromised laptop following a corporate acquisition in 2021.
It also found that Microsoft fell short of safety standards seen at competing cloud companies, including Google, Amazon and Oracle.
"The Board finds that this intrusion was preventable and should never have occurred," the review said, pinpointing "the cascade of Microsoft's avoidable errors that allowed this intrusion to succeed."
- 'Lasting change' -
The report also recommended that Microsoft develop and publicly release a plan with timelines to enact wide-ranging security reforms across its products and practices.
"The real challenge is how you achieve effective lasting cultural change," Smith said, noting Microsoft has nearly 226,000 employees.
Smith said Microsoft has the equivalent of 34,000 engineers working full time on answering the security shortcomings in "the largest engineering project focused on cybersecurity in the history of digital technology."
Microsoft's board on Wednesday approved a change that will tie cybersecurity accomplishments with annual bonuses for senior executives and make it part of every employee's annual review, according to Smith.
Microsoft detects some 300 million cyberattacks on its customers daily, with most of those coming from China, Iran, Korea, Russia, or ransomware operations, Smith told the committee.
"We're dealing with four formidable foes in China, Russia, North Korea and Iran, and they are getting better," Smith said.
"We should expect them to work together; they're waging attacks at an extraordinary rate."
While it is inevitable that adversaries will use artificial intelligence for increasingly sophisticated attacks, the technology is already being used to strengthen cyber defenses, Smith added.
H.Kuenzler--VB