Microsoft President Brad Smith testified before Congress, acknowledging the company's responsibility for security failures highlighted in a recent government advisory board report. The testimony follows revelations from a ProPublica investigation that Microsoft ignored warnings about critical vulnerabilities, leading to significant breaches, including the 2020 SolarWinds attack, the 2023 Exchange hack, and a recent China-linked hack that compromised 60,000 U.S. Senate Dept e-mails. Smith stated that Microsoft 'accepts responsibility for each and every one of the issues' identified. Former employee Andrew Harris claimed Microsoft dismissed his warnings about a flaw exploited by Russian hackers to breach the National Nuclear Security Administration. Lawmakers, including those from the House Homeland Security Committee, expressed concerns over Microsoft's prioritization of profit over security and its impact on national security.
Brad Smith tells a US House committee that Microsoft "accepts responsibility" for security errors, its business in China served US interests, and more (@josephmenn / Washington Post) https://t.co/DmUlD6FXLV 📫 Subscribe: https://t.co/OyWeKSRpIM https://t.co/wBZShHUXXQ
Microsoft’s Brad Smith acknowledges past security failures, outlines new initiatives https://t.co/ewI5QR9mJc
'I just don’t trust what you’re saying': Lawmakers grill Microsoft executive on cyber lapses https://t.co/qZMKBzL9VE
Microsoft president Brad Smith told lawmakers today that the company's new internal security plans will address problems raised by a whistleblower in a new ProPublica investigation. https://t.co/Scf0LupL6Q
Microsoft seeks to ease government scrutiny in House hot seat https://t.co/5AlwEKfFNY
Microsoft faces heat from US Congress over cybersecurity https://t.co/2GYmjH9hSb
Congress Seeks Answers From Microsoft Boss After a 'Cascade' of Security Errors https://t.co/W49NBy6oBQ
Microsoft Ignored Whistleblower Warnings Before SolarWinds Attack https://t.co/40zHPqEj3L
Today's hearing with Microsoft highlighted how serious the cyber threat has become. The federal government must step up assistance to help protect not just big companies but also small businesses and regular Americans. https://t.co/MnfYYBOYCn
Microsoft President Brad Smith just testified to the US House that Recall is a good example of Secure By Design, and that they have the time to get it right (it’s supposed to launch in 3 working days). https://t.co/voUrKzPsoL
In the wake of intrusions by nation-state actors, it's critical to restore the trust of Americans—who depend upon Microsoft products—and address broader questions regarding the: 🛡️Cyber workforce gap 🛡️Role of public & private sector entities 🛡️Economic incentives for security https://t.co/bGn3qIWTQ8
Following the 2023 cyber intrusion, Microsoft did not correct, in a timely manner, its inaccurate public statements about this incident. This is alarming, considering the level of trust the federal government has placed in the company to protect its data. Watch @RepClayHiggins: https://t.co/5vpM67lWkw
Microsoft’s Brad Smith should prepare for ‘ritual punishment’ before House hearing https://t.co/RQWsU2BWKL https://t.co/fsLHECPTOd
"Microsoft is deeply integrated into our nation's digital infrastructure—a presence that carries heightened respect, and heightened responsibility." More from @RepMarkGreen's opening statement ⬇️ https://t.co/jcLekjPc4M
Microsoft has raised concerns about the increasing aggressiveness of Russian cyberattacks and the potential for Moscow to strengthen partnerships with America's adversaries in the digital realm, posing challenges in preventing unauthorized access. https://t.co/xCiLdKzmCt
We must restore the trust of the American people, who depend upon Microsoft products every day. My opening statement at @HomelandGOP’s hearing: https://t.co/KjllqS0OVB
Microsoft neglected a critical vulnerability for years, paving the way for the SolarWinds cyberattack, one of the largest ever experienced by the US. https://t.co/bLPEGqkyhr
While the House Homeland Security Committee questions Microsoft president Brad Smith about cybersecurity, read this new ProPublica investigation into Microsoft and the massive SolarWinds hack: https://t.co/vzUWEEOKdL
$MSFT going to testify in front of congress about how China-linked hackers stole 60,000 U.S. Senate Dept e-mails last year, by breaking into the tech company's systems
.@Renee_Dudley reveals the deficiencies in Microsoft's security culture that let a major vulnerability fester until the SolarWinds hackers used it to devastating effect: https://t.co/kHcjd8lVfD More unflattering revelations for PR-focused @BradSmi ahead of today's hearing. https://t.co/1h4N5EYMMd
.@HomelandGOP is giving Microsoft the chance to explain their lack of proactiveness and reactiveness to the hack. Robust cybersecurity for sensitive data must be a top priority to prevent future breaches from nefarious actors. https://t.co/z1ittCl3UR
NEW: @POLITICOPro on TODAY's hearing with Microsoft. The 2023 Exchange hack was preventable, but it is our hope Congressional oversight & a "shift" in accountability plays a huge role in ensuring a more secure future for federal civilian networks and the private sector. https://t.co/9Cn8mLiggl
Microsoft Chose Profit Over Security and Left US Government Vulnerable To Russian Hack, Whistleblower Says https://t.co/krVuRofIXI
After Russian hackers breached U.S. government agencies, Microsoft downplayed its culpability in the disaster. But a former employee of the tech giant reveals that Microsoft was warned years earlier of a weakness those hackers exploited. https://t.co/Ee1bvV9Q8N
Microsoft Recall's security issues weren't anomalies but symptoms of a culture prioritizing cool features over protecting users. A former employee has revealed how the company refused to fix the security hole that led to hacks of the Treasury, NIH, and nuclear secrets. https://t.co/IAkyj0tRlh
A Microsoft engineer warned the company in 2017 of a flaw in one of its products that could expose customers to hackers. Microsoft did nothing. In 2020, news broke that Russian hackers exploited that flaw to access the U.S. nuclear agency. https://t.co/Wdjmd4OXIl
Former Microsoft employee Andrew Harris says the company dismissed his warnings about a critical flaw that led to the 2021 SolarWinds hack; Harris left in 2020 (ProPublica) https://t.co/0sfnLlNRLw 📫 Subscribe: https://t.co/OyWeKSRpIM https://t.co/1yRDqvIyQ5
Microsoft has long downplayed its role in the 2020 "SolarWinds" attack -- one of the largest cyberattacks in US history -- but a new ProPublica investigation reveals that the tech giant ignored warnings that could have stemmed the damage... 🧵 https://t.co/ayjqEpNC7M
Inside SolarWinds: How Microsoft imperiled national security in its race to dominate a 'cloud-first world.' A whistleblower engineer warned MSFT of a security flaw, but the tech giant dismissed his warnings. Then Russian hackers breached a nuclear agency https://t.co/RoX08HRvpn
NEW: Microsoft Chose Profit Over Security and Left U.S. Government Vulnerable to Russian Hack, Whistleblower Says https://t.co/nhbxZdbQtK
New: Former employee says software giant dismissed his warnings about a critical flaw because it feared losing government business. Russian hackers later used the weakness to breach the National Nuclear Security Administration, among others. https://t.co/PjAaJKqdnJ
Microsoft president Brad Smith will tell lawmakers that the company is responsible for "each and every one of the issues" that a government advisory board uncovered while investigating a recent China hack. https://t.co/uQAisCJj7q
Microsoft’s Brad Smith should prepare for "ritual punishment" before House hearing, @timstarks writes. https://t.co/OM2WFssT3o
Microsoft president Brad Smith will tell lawmakers that the company is responsible for "each and every one of the issues" that a government advisory board uncovered while investigating a recent China hack, according to prepared remarks. https://t.co/pMPpA6bCK7
In April, a Microsoft exec told me MSFT disputed CSRB's characterizations of its failures. https://t.co/ckMUvY6AKN Tomorrow, MSFT President Brad Smith will tell Congress MSFT "accepts responsibility for each and every one of the issues" in CSRB report. 🤔 https://t.co/9BrZlqQ1Tq https://t.co/QTS2wuY6uW
Microsoft’s Recall puts the Biden administration’s cyber credibility on the line https://t.co/3KakSvV7BX https://t.co/VqvaZONXIx