Security News US cyber expert: Microsoft is a national security risk

Gandalf_The_Grey

Level 78
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
6,749
Lousy security culture, products as full of holes as a Swiss cheese, but "to big to fail and everyone is dependent". That's a description of Microsoft – not mine, but the tenor of the statements made by the former White House Director of Cyber Policy, Andrew J. Grotto, in an interview with the British newspaper The Register.

In terms of marketing, Redmond is at the top of its game, with a new pig being driven through the village every week: Cloud, Mobile First and now AI using Copilot. On the other hand, Microsoft has been conspicuous for years for its poor software quality and buggy updates, which then have to be corrected at great expense. And then there are the security incidents with Microsoft's cloud services, which are making Microsoft's customers nervous.
In the last 24 months, further security incidents have become known in which Microsoft servers were unprotected and accessible via the internet. I discussed the last case in the article Unsecured Microsoft Azure Server exposes passwords etc. of Microsoft systems (Feb. 2024)).

Basically, the Microsoft Cloud is considered "compromised" and major customers in the US government are looking at how to reduce their dependencies on Microsoft. The US cyber security authority CISA has also issued an order requiring US authorities to check their systems for risks resulting from the Midnight Blizzard hack by the end of April 2024 (see US CISA orders admins in authorities to mitigate the cyber risks of the Microsoft Cloud).
 

Victor M

Level 9
Verified
Well-known
Oct 3, 2022
449
If you watch the video : Why Microsoft is a national security threat . The ex Director of Cyber Policy did not say 'Microsoft is a national security risk' himself, but only agreed to it when prompted by the interviewer.

The interviewer was citing another interview where Adam Meyers, head of Counter Adversary Operations at CrowdStrike seems to have said that. US government keeps paying Microsoft despite infosec errors

But the director does espouse that more competition is good. And that diversification has a security resilience benefit. So users here at MT should try that and try other OS's.

There is a thread here on MT discussing security at the Linux front: Advice Request - The future of security on Linux .

Most people think they are locked in to Windows because of the availability of games. But Steam is available on Linux too. Here are the simple instructions to install Steam on Ubuntu : How to install Steam on any Ubuntu-based Linux distro so you can play a world of games

The UnReal engine is also availble for Ubuntu. https://www.unrealengine.com/en-US/download
 
Last edited:

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top