US cyber board to investigate Microsoft hack of government emails


Share post:

A U.S. review board tasked with investigating major cybersecurity incidents said it will begin looking at the recent intrusion of U.S. government email systems provided by Microsoft, whose handling of the incident drew ire and scrutiny from federal lawmakers and the wider security community.

The Cyber Security Review Board, or CSRB, said Friday that its latest investigation will include a “broader review of issues relating to cloud-based identity and authentication infrastructure.”

The board said it began considering an investigation after learning of the Microsoft cloud breach, which saw China state-backed hackers break into government email accounts, including the inbox of U.S. Commerce Secretary Gina Raimondo, several officials at the U.S. State Department, and other organizations not yet publicly named.

According to the slow-drip of information about the incident, Microsoft said China-backed hackers stole a sensitive signing key that allowed unauthorized access to enterprise and government email inboxes hosted by the technology giant. That stolen key, coupled with a flaw that Microsoft has since patched, allowed the forging of authentication tokens that the hackers used to access the target’s email accounts as if they were the rightful owners.

The intrusions began in mid-May but were not detected until a month later, when State Department officials detected the breach and notified Microsoft. It was only because the State Department used a higher-paid tier account that allowed access to logs that Microsoft keeps, which first revealed the hacks. Other departments with a lower paid tier were not given access to logs that may have spotted the intrusions sooner.

Following criticism, Microsoft capitulated soon after, saying it would make logs available for customers at no additional cost from September.

Ron Wyden, a Democratic lawmaker on the Senate Intelligence Committee, blasted Microsoft in a scathing letter to government agencies requesting an investigation into whether “lax cybersecurity practices” enabled Chinese hackers to spy on high-ranking federal government officials.

Wyden also called on the CSRB to investigate the incident.

In carrying out a post-mortem of the hack, Homeland Security secretary Alejandro Mayorkas said in remarks it was “imperative” to understand the vulnerabilities in cloud technologies that are relied on by U.S. organizations.

“Actionable recommendations from the CSRB will help all organizations better secure their data and further cyber resilience,” said Mayorkas.

This is the CSRB’s third investigation since it was founded by executive order in 2021 by President Biden. The board, which includes representatives from government and cybersecurity experts in the private sector, serves to review major cybersecurity events and identify recommendations to prevent future incidents.

The CSRB’s first investigation looked at the fallout from the Log4j vulnerability in 2020, and its second — published this week — examined recent attacks by the Lapsus$ hacking group,

Source link

Lisa Holden
Lisa Holden
Lisa Holden is a news writer for LinkDaddy News. She writes health, sport, tech, and more. Some of her favorite topics include the latest trends in fitness and wellness, the best ways to use technology to improve your life, and the latest developments in medical research.

Recent posts

Related articles

Kick streamers consider leaving over CEO’s comments in a sex worker ‘prank’ stream

Streamers are leaving Kick en masse in protest of the platform’s lack of safety guidelines, after a...

VW bails on its plan for a $2.1B EV plant in Germany

Volkswagen’s $2.1 billion plan to launch a dedicated electric-vehicle factory in Wolfsburg, Germany is kaput.  The automaker instead...

When predatory investors damage your chances of success

Welcome to Startups Weekly. Sign up here to get it in your inbox every Friday. You know what...

Pudgy Penguins’ approach may be the answer to fixing NFTs’ revenue problems

Pudgy Penguins was once solely known for its 8,888 NFT collection. But ever since 24-year-old Luca Netz...

VC Office Hours: How data can help improve social impact investing

Erin Harkless Moore was always interested in math. So she headed to Wall Street. “It was intoxicating...

Two large equity funds launched this week. What gives?

Two large equity funds came out of the gate this week. So, what gives? Earlier this year...

TechCrunch+ Roundup: How to pitch 7 VCs, building AI moats, immigration law Q&A

Last week at TechCrunch Disrupt (recaps coming soon), I spent less time than usual in the green...

Startups may have trouble finding their enterprise footing

The software spend squeeze is lessening, new data from Battery Ventures indicates. According to the venture capital...