"US Report Blames Microsoft for Security Failures in Chinese Hacks"
Originally Published 1 year ago — by Ars Technica
A federal Cyber Safety Review Board report has blamed Microsoft for "a cascade of security failures" that led to the 2023 Exchange breach, citing inadequate security culture and preventable errors. The report details critical failures in Microsoft's response to the breach and highlights inaccurate public statements and unsolved mysteries. Microsoft has acknowledged the need to adopt a new culture of engineering security and plans to review the report for additional recommendations.