all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

CSRB Report on Microsoft Exchange Online Intrusion at US govt depts last year

Add to bookmarks
April 5, 2024, 11:07 a.m. | /u/arunsivadasan

cybersecurity www.reddit.com

Report link: [https://www.cisa.gov/sites/default/files/2024-04/CSRB\_Review\_of\_the\_Summer\_2023\_MEO\_Intrusion\_Final\_508c.pdf](https://www.cisa.gov/sites/default/files/2024-04/CSRB_Review_of_the_Summer_2023_MEO_Intrusion_Final_508c.pdf)

Whats your take on the review? I personally was quite shocked that Microsoft made amateurish mistakes that I would expect in smaller less security aware companies.

Perhaps this was a driver for giving one of their SVPs charge of Security: [https://www.linkedin.com/in/charlie--bell/](https://www.linkedin.com/in/charlie--bell/)

They also launched something called the Secure Future Initiative

[https://blogs.microsoft.com/on-the-issues/2023/11/02/secure-future-initiative-sfi-cybersecurity-cyberattacks/](https://blogs.microsoft.com/on-the-issues/2023/11/02/secure-future-initiative-sfi-cybersecurity-cyberattacks/)



aware called companies cybersecurity expect future initiative microsoft mistakes review security

Visit resource

More from www.reddit.com / cybersecurity

Terrible interview process 5 hours ago | www.reddit.com
architect cutting cybersecurity endpoint +13
Is the CIA Triad created equal in practice? 8 hours ago | www.reddit.com
aspect availability cia confidentiality +10
How do you address your EDR platform when you aren’t receiving many true positives? 9 hours ago | www.reddit.com
address alerts behavior cybersecurity +8
What are some popular news or security content creators you guys follow to keep up … 9 hours ago | www.reddit.com
articles content creators creators cybersecurity +5
Looking for con suggestions that are mostly for skilled people not for vendors/management 11 hours ago | www.reddit.com
con corporate cybersecurity doing +7
How to effectively track security exceptions in mid-sized startup? 11 hours ago | www.reddit.com
aws basic cybersecurity database +19
Latrodectus Malware Analysis Part 2 feat Hashdb and IDA Scripting 14 hours ago | www.reddit.com
analysis cybersecurity ida latrodectus +3
Nasty bug with very simple exploit hits PHP just in time for the weekend 17 hours ago | www.reddit.com
bug cybersecurity exploit php +2
Encryption At Rest: Whose Threat Model Is It Anyway? 18 hours ago | www.reddit.com
cybersecurity encryption rest threat +1

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Senior Security Researcher - Linux MacOS EDR (Cortex)

@ Palo Alto Networks | Tel Aviv-Yafo, Israel
View on infosec-jobs.com

Sr. Manager, NetSec GTM Programs

@ Palo Alto Networks | Santa Clara, CA, United States
View on infosec-jobs.com

SOC Analyst I

@ Fortress Security Risk Management | Cleveland, OH, United States
View on infosec-jobs.com