Welcome to WarBulletin - your new best friend in the world of gaming. We're all about bringing you the hottest updates and juicy insights from across the gaming universe. Are you into epic RPG adventures or fast-paced eSports? We've got you covered with the latest scoop on everything from next-level PC gaming rigs to the coolest game releases. But hey, we're more than just news! Ever wondered what goes on behind the scenes of your favorite games? We're talking exclusive interviews with the brains behind the games, fresh off-the-press photos and videos straight from gaming conventions, and, of course, breaking news that you just can't miss. We know you love gaming 24/7, and that's why we're here round the clock, updating you on all things gaming. Whether it's the lowdown on a new patch or the buzz about the next big gaming celeb, we're on it.

Contacts

  • Owner: SNOWLAND s.r.o.
  • Registration certificate 06691200
  • 16200, Na okraji 381/41, Veleslavín, 162 00 Praha 6
  • Czech Republic

US Gov report slams Microsoft over email hack—'The Board finds that this intrusion was preventable and should never have occurred'

Last year, Microsoft disclosed that a Chinese hacking group referred to as «Storm-0558» was responsible for a security breach that led to the access of the email accounts of around 25 organisations, including some US government agencies. The federal Cyber Safety Review Board has just released its report on the incident, identifying a «cascade of Microsoft's avoidable errors that allowed this intrusion to succeed». Ouch.

The Cyber Safety Review Board is composed of multiple officials from several US government departments including the Department of Homeland Security, the NSA and the FBI (via Ars Technica) and several industry leaders, and was tasked with creating the report [pdf] under a mandate from President Biden in response to the attack. 

In a somewhat scathing review, the board found that not only were Microsoft's security practices «lacking» in comparison to other cloud providers, but that public statements released surrounding the attack were «inaccurate» and not corrected in a timely manner. 

Microsoft said at the time that a consumer signing key was acquired by Storm-0558 which was used to forge tokens for the cloud service that stores login keys, and that this was caused by a validation error in its codebase, later changing this explanation to a claim that an engineers account was hacked, and that «human errors» were to blame for allowing an expired signing key to be used to forge tokens.

However, the report revealed that Microsoft has still yet to determine the exact root cause of the breach, and noted that the company only updated its blog posts discussing the attack in March of this year, roughly at the same time the board was concluding its review and «only after the Boards repeated questioning about Microsoft's plan to issue a correction».

The attack itself was originally detected by State Department officials in June of last year, who then went on to notify Microsoft about the breach. The report cites that this was only possibly because the

Read more on pcgamer.com
Prev Post
Ubisoft confirms Forward showcase for June

Related News

Latest Posts
An AI-controlled F16 has performed its first ever dogfight with a human pilot, coming within 2,000 feet of each other at 1,200 miles per hour
  • By pcgamer.com

An AI-controlled F16 has performed its first ever dogfight with a human pilot, coming within 2,000 feet of each other at 1,200 miles per hour

Dead Boy Detectives creators tease plans for multiple seasons of The Sandman spin-off: "This is the kind of show that could go on forever"
  • By gamesradar.com

Dead Boy Detectives creators tease plans for multiple seasons of The Sandman spin-off: "This is the kind of show that could go on forever"

Tom Hiddleston reveals that his Loki was inspired by an iconic Die Hard character
  • By gamesradar.com

Tom Hiddleston reveals that his Loki was inspired by an iconic Die Hard character

Rayman: The Board Game is coming this year
  • By videogameschronicle.com

Rayman: The Board Game is coming this year

I've waited over a decade for the Star Wars Lego sets coming May 4
  • By gamesradar.com

I've waited over a decade for the Star Wars Lego sets coming May 4

Transformers #7 packs in the cameos as Starscream and Soundwave go to war over who will lead the Decepticons
  • By gamesradar.com

Transformers #7 packs in the cameos as Starscream and Soundwave go to war over who will lead the Decepticons