The U.S. Department of Homeland Security’s Cyber Safety Review Board (CSRB) has released a scathing report on how Microsoft handled its 2023 Exchange Online attack, warning that the company needs to do better at securing data and be more truthful about how threat actors stole an Azure signing key.

  • treadful@lemmy.zip
    link
    fedilink
    English
    arrow-up
    2
    ·
    8 months ago

    Creating the “Big Yellow Taxi” rule was possible because the U.S. State Department purchased a Microsoft 365 Government G5 license that comes with enhanced logging through the premium tier of Microsoft’s Purview Audit service.

    Barf

    • Kit
      link
      fedilink
      English
      arrow-up
      1
      ·
      8 months ago

      Whats barf worthy about that?