{"id":1524,"date":"2023-08-11T15:38:00","date_gmt":"2023-08-11T15:38:00","guid":{"rendered":"https:\/\/cyberscoop.com\/?p=76299"},"modified":"2023-08-11T15:38:00","modified_gmt":"2023-08-11T15:38:00","slug":"cyber-safety-review-board-to-analyze-cloud-security-in-wake-of-microsoft-hack","status":"publish","type":"post","link":"https:\/\/ddi.mohflo.net\/index.php\/2023\/08\/11\/cyber-safety-review-board-to-analyze-cloud-security-in-wake-of-microsoft-hack\/","title":{"rendered":"Cyber Safety Review Board to analyze cloud security in wake of Microsoft hack"},"content":{"rendered":"<p><head> <meta charset=\"UTF-8\"> <meta name=\"viewport\" content=\"width=device-width, initial-scale=1\"> <meta name=\"robots\" content=\"index, follow, max-image-preview:large, max-snippet:-1, max-video-preview:-1\"> <!-- This site is optimized with the Yoast SEO Premium plugin v20.5 (Yoast SEO v20.5) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ --> <title>Cyber Safety Review Board to analyze cloud security in wake of Microsoft hack | CyberScoop<\/title> <meta name=\"description\" content=\"The decision comes in the wake of a high-profile Chinese breach of U.S. officials' Microsoft email accounts.\"> <link rel=\"canonical\" href=\"https:\/\/cyberscoop.com\/cyber-safety-review-board-microsoft-cisa-dhs\/\"> <meta property=\"og:locale\" content=\"en_US\"> <meta property=\"og:type\" content=\"article\"> <meta property=\"og:title\" content=\"Cyber Safety Review Board to analyze cloud security in wake of Microsoft hack\"> <meta property=\"og:description\" content=\"The decision comes in the wake of a high-profile Chinese breach of U.S. officials' Microsoft email accounts.\"> <meta property=\"og:url\" content=\"https:\/\/cyberscoop.com\/cyber-safety-review-board-microsoft-cisa-dhs\/\"> <meta property=\"og:site_name\" content=\"CyberScoop\"> <meta property=\"article:published_time\" content=\"2023-08-11T15:38:00+00:00\"> <meta property=\"article:modified_time\" content=\"2023-08-11T15:38:01+00:00\"> <meta property=\"og:image\" content=\"https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/08\/cyber-safety-review-board-to-analyze-cloud-security-in-wake-of-microsoft-hack-1.jpg\"> <meta property=\"og:image:width\" content=\"1920\"> <meta property=\"og:image:height\" content=\"1280\"> <meta property=\"og:image:type\" content=\"image\/jpeg\"> <meta name=\"author\" content=\"AJ Vicens\"> <meta name=\"twitter:card\" content=\"summary_large_image\"> <meta name=\"twitter:creator\" content=\"@AJVicens\"> <!-- \/ Yoast SEO Premium plugin. --> <link rel=\"dns-prefetch\" href=\"\/\/cdn.parsely.com\">\n<link rel=\"dns-prefetch\" href=\"\/\/securepubads.g.doubleclick.net\">\n<link rel=\"dns-prefetch\" href=\"\/\/use.typekit.net\">\n<link rel=\"alternate\" type=\"application\/rss+xml\" title=\"CyberScoop \u00bb Feed\" href=\"https:\/\/cyberscoop.com\/feed\/\">\n<link rel=\"alternate\" type=\"application\/rss+xml\" title=\"CyberScoop \u00bb Comments Feed\" href=\"https:\/\/cyberscoop.com\/comments\/feed\/\"> <link rel=\"stylesheet\" id=\"all-css-0\" href=\"https:\/\/cyberscoop.com\/wp-includes\/css\/dist\/block-library\/style.min.css?m=1691523982g\" type=\"text\/css\" media=\"all\"> <link rel=\"stylesheet\" id=\"all-css-4\" href=\"https:\/\/cyberscoop.com\/wp-content\/mu-plugins\/search\/elasticpress-next\/dist\/css\/related-posts-block-styles.min.css?m=1690881885g\" type=\"text\/css\" media=\"all\"> <link rel=\"stylesheet\" id=\"all-css-6\" href=\"https:\/\/cyberscoop.com\/wp-content\/themes\/scoopnewsgroup\/dist\/css\/frontend.css?m=1690549404g\" type=\"text\/css\" media=\"all\">\n<link rel=\"stylesheet\" id=\"typekit-css\" href=\"https:\/\/use.typekit.net\/itk2qbh.css?ver=008d053dcbaaeb47b822\" media=\"all\"> <link rel=\"https:\/\/api.w.org\/\" href=\"https:\/\/cyberscoop.com\/wp-json\/\"><link rel=\"alternate\" type=\"application\/json\" href=\"https:\/\/cyberscoop.com\/wp-json\/wp\/v2\/posts\/76299\"><link rel=\"EditURI\" type=\"application\/rsd+xml\" title=\"RSD\" href=\"https:\/\/cyberscoop.com\/xmlrpc.php?rsd\">\n<meta name=\"generator\" content=\"WordPress 6.3\">\n<link rel=\"shortlink\" href=\"https:\/\/cyberscoop.com\/?p=76299\">\n<link rel=\"alternate\" type=\"application\/json+oembed\" href=\"https:\/\/cyberscoop.com\/wp-json\/oembed\/1.0\/embed?url=https%3A%2F%2Fcyberscoop.com%2Fcyber-safety-review-board-microsoft-cisa-dhs%2F\">\n<link rel=\"alternate\" type=\"text\/xml+oembed\" href=\"https:\/\/cyberscoop.com\/wp-json\/oembed\/1.0\/embed?url=https%3A%2F%2Fcyberscoop.com%2Fcyber-safety-review-board-microsoft-cisa-dhs%2F&amp;format=xml\"> <!-- Google Tag Manager --> <!-- End Google Tag Manager --> <link rel=\"icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=32\" sizes=\"32x32\">\n<link rel=\"icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=192\" sizes=\"192x192\">\n<link rel=\"apple-touch-icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=180\">\n<meta name=\"msapplication-TileImage\" content=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=270\"> <\/head><body class=\"post-template-default single single-post postid-76299 single-format-standard\" id=\"readabilityBody\"> <a href=\"https:\/\/cyberscoop.com\/cyber-safety-review-board-microsoft-cisa-dhs\/#main\" class=\"skip-to-content-link visually-hidden-focusable\">Skip to main content<\/a> <\/p>\n<div class=\"ad ad--top ad--top-desktop\">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p> <main id=\"main\" role=\"main\" tabindex=\"-1\"> <\/p>\n<div class=\"ad ad--top ad--top-mobile\">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<section id=\"stickybar\" class=\"stickybar stickybar--newsletter js-stickybar\" readability=\"0.82\"> <button class=\"stickybar__close js-stickybar-close\" aria-controls=\"stickybar\"> <svg class=\"icon icon--close\" width=\"21\" height=\"22\" viewBox=\"0 0 21 22\" fill=\"none\"><path d=\"m.822.518-.805.805L9.695 11 .017 20.678l.805.805 9.678-9.678 9.677 9.678.806-.805L11.305 11l9.678-9.677-.806-.805-9.677 9.677L.822.518Z\" fill=\"currentColor\" \/><\/svg> <span class=\"visually-hidden\">Close<\/span> <\/button> <\/section>\n<article class=\"single-article content\">\n<div class=\"single-article__container js-single-article-content\">\n<header class=\"single-article__header \" readability=\"25.195595854922\">\n<div class=\"single-article__header-content\" readability=\"30.225663716814\">\n<ul class=\"single-article__eyebrow\">\n<li class=\"single-article__category\"> <a class=\"single-article__category-link\" href=\"https:\/\/cyberscoop.com\/news\/government\/\"> <span>Government<\/span> <\/a> <\/li>\n<\/ul>\n<p> The decision comes in the wake of a high-profile Chinese breach of U.S. officials&#8217; Microsoft email accounts. <\/p>\n<\/p><\/div>\n<div class=\"single-article__cover-wrap\">\n<figure class=\"single-article__cover\"> <img data-recalc-dims=\"1\" fetchpriority=\"high\" width=\"640\" height=\"426\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/08\/cyber-safety-review-board-to-analyze-cloud-security-in-wake-of-microsoft-hack.jpg?resize=640%2C426&#038;ssl=1\" class=\"single-article__cover-image wp-post-image\" alt=\"The logo of Microsoft is seen at the 2023 Hannover Messe industrial trade fair on April 17, 2023 in Hanover, Germany. (Photo by Alexander Koerner\/Getty Images)\" decoding=\"async\" fetchpriority=\"high\" srcset=\"https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/08\/cyber-safety-review-board-to-analyze-cloud-security-in-wake-of-microsoft-hack-1.jpg 1920w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/08\/cyber-safety-review-board-to-analyze-cloud-security-in-wake-of-microsoft-hack-1.jpg?resize=300,200 300w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/08\/cyber-safety-review-board-to-analyze-cloud-security-in-wake-of-microsoft-hack-1.jpg?resize=768,512 768w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/08\/cyber-safety-review-board-to-analyze-cloud-security-in-wake-of-microsoft-hack-1.jpg?resize=1024,683 1024w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/08\/cyber-safety-review-board-to-analyze-cloud-security-in-wake-of-microsoft-hack-1.jpg?resize=1536,1024 1536w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/08\/cyber-safety-review-board-to-analyze-cloud-security-in-wake-of-microsoft-hack-1.jpg?resize=600,400 600w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/08\/cyber-safety-review-board-to-analyze-cloud-security-in-wake-of-microsoft-hack-1.jpg?resize=252,168 252w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/08\/cyber-safety-review-board-to-analyze-cloud-security-in-wake-of-microsoft-hack-1.jpg?resize=506,337 506w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/08\/cyber-safety-review-board-to-analyze-cloud-security-in-wake-of-microsoft-hack-1.jpg?resize=1013,675 1013w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/08\/cyber-safety-review-board-to-analyze-cloud-security-in-wake-of-microsoft-hack-1.jpg?resize=1265,843 1265w\" sizes=\"(max-width: 1013px) 100vw, 1013px\"><figcaption> The logo of Microsoft is seen at the 2023 Hannover Messe industrial trade fair on April 17, 2023 in Hanover, Germany. (Photo by Alexander Koerner\/Getty Images) <\/figcaption><\/figure>\n<\/p><\/div>\n<\/header>\n<div class=\"single-article__content\">\n<div class=\"single-article__content-inner has-drop-cap\"> <html readability=\"32.503793626707\"><body readability=\"65.444563470809\"><\/p>\n<p>A U.S. government review board will examine the suspected-Chinese cyberespionage operation that breached Microsoft\u2019s email authentication system and nabbed American officials\u2019 emails, the Department of Homeland Security announced Friday. <\/p>\n<p>The Cyber Safety Review Board&nbsp;\u2014 a public\/private entity <a href=\"https:\/\/cyberscoop.com\/cyber-safety-review-board-dhs-federal-register\/\">established<\/a> via presidential executive order in 2021 in the <a href=\"https:\/\/www.bloomberg.com\/news\/newsletters\/2022-11-16\/us-cyber-review-punts-on-russian-hack-hinting-at-limitations\">wake of the SolarWinds breach<\/a> and launched in early 2022 \u2014&nbsp;will review the incident as part of a broader look at the \u201cmalicious targeting of cloud computing environments\u201d and \u201cfocus on approaches government, industry, and Cloud Service Providers (CSPs) should employ to strengthen identity management and authentication in the cloud,\u201d the <a href=\"https:\/\/www.dhs.gov\/news\/2023\/08\/11\/department-homeland-securitys-cyber-safety-review-board-conduct-review-cloud\">agency said in a statement<\/a>.<\/p>\n<p>The <a href=\"https:\/\/cyberscoop.com\/china-hackers-email-us-government\/\">operation targeting top U.S. officials\u2019 emails<\/a>, announced in July but detected in June by security staff at the U.S. State Department, spurred heavy criticism of Microsoft, particularly because evidence of the breach was only apparent if customers paid for a premium logging tier. Microsoft has <a href=\"https:\/\/cyberscoop.com\/microsoft-logging-china-hacking\/\">since announced<\/a> that customers will have access to expanded logging and storage capability at no additional cost.<\/p>\n<p>\u201cWe must as a country acknowledge the increasing criticality of cloud infrastructure in our daily lives and identify the best ways to secure that infrastructure and the many businesses and consumers that rely on it,\u201d<strong> <\/strong>CSRB Chair and DHS Under Secretary for Policy Rob Silvers<strong> <\/strong>said in the agency\u2019s statement.<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>Jen Easterly, director of the Cybersecurity and Infrastructure Security Agency, said in the statement that an \u201ceffective shared responsibility model requires a persistent focus on potential systemic risks in cloud environments,\u201d and that the board\u2019s findings will \u201cadvance cybersecurity practices across cloud environments and ensure that we can collectively maintain trust in these critical systems.\u201d<\/p>\n<p>Sen. Ron Wyden, D-Ore., <a href=\"https:\/\/www.wyden.senate.gov\/imo\/media\/doc\/wyden_letter_to_cisa_doj_ftc_re_2023_microsoft_breach.pdf\">urged<\/a> DHS and CISA to use the CSRB to examine how Microsoft\u2019s approach to storing authentication keys contributed to the breach. Wyden also called for the Department of Justice to review whether Microsoft\u2019s \u201cnegligent practices\u201d violated federal law, and asked for the Federal Trade Commission to analyze whether Microsoft\u2019s privacy and data practices violated federal law. <\/p>\n<p>\u201cI applaud President Biden and CISA Director Easterly for acting on my request for the board to review this recent espionage campaign, including cybersecurity negligence by Microsoft that enabled it,\u201d Wyden told CyberScoop in an email Friday.<\/p>\n<p>Microsoft did not immediately respond to a request for comment.<\/p>\n<p>The CSRB on Thursday released its report on <a href=\"https:\/\/www.cisa.gov\/resources-tools\/resources\/review-attacks-associated-lapsus-and-related-threat-groups-report\">attacks associated with Lapsus$<\/a>, a <a href=\"https:\/\/cyberscoop.com\/tag\/lapsus\/\">cybercrime group<\/a> that included teenagers that managed to infiltrate and extort some of the biggest and most well resourced companies on the planet. A previous report <a href=\"https:\/\/www.cisa.gov\/resources-tools\/resources\/csrb-review-december-2021-log4j-event\">focused on the Log4j vulnerability<\/a>.<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>Critics of the CSRB\u2019s approach to its mission have <a href=\"https:\/\/twitter.com\/arekfurt\/status\/1689970030522351617?s=20\">pointed out<\/a> that the board\u2019s policy of not \u201cfinger-pointing\u201d diminishes the potential for true accountability, and <a href=\"https:\/\/www.cfr.org\/blog\/cyber-safety-review-board-should-investigate-major-historical-incidents\">others have noted<\/a> that the board is inherently hamstrung because of confidentiality concerns from private vendors and conflicts of interest. <\/p>\n<p>\u201cHad the board studied the 2020 SolarWinds hack, as President Biden originally directed, its findings might have been able to shore up federal cybersecurity in time to stop hackers from exploiting a similar vulnerability in the most recent incident,\u201d Wyden said in his email. \u201cThe government will only be able to protect federal systems against cyberattacks by getting to the bottom of what went wrong. Ignoring problems is both a waste of taxpayer dollars and a massive gift to America\u2019s adversaries.\u201d<\/p>\n<p><\/body> <\/p>\n<footer class=\"single-article__footer\" readability=\"1.2328767123288\">\n<div class=\"author-card\" readability=\"8\">\n<p><h4 class=\"author-card__name\">Written by AJ Vicens<\/h4>\n<p> AJ covers nation-state threats and cybercrime. He was previously a reporter at Mother Jones. Get in touch via Signal\/WhatsApp: (810-206-9411). <\/p>\n<\/p><\/div>\n<div class=\"single-article__tags-container\">\n<h4 class=\"single-article__tags-title\">In This Story<\/h4>\n<\/p><\/div>\n<\/footer>\n<p> <\/html><\/div>\n<\/p><\/div>\n<\/p><\/div>\n<div class=\"single-article__ads js-single-article-sidebar\">\n<div class=\"ad ad--sidebar js-single-article-sidebar-5 ad--rightrail_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div class=\"ad ad--sidebar js-single-article-sidebar-4 ad--rightrail_2 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div class=\"ad ad--sidebar js-single-article-sidebar-3 ad--rightrail_3 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div><\/div>\n<\/article>\n<div class=\"popular-stories popular-stories--single-post\">\n<div class=\"popular-stories__container\">\n<h2 class=\"popular-stories__title\"> More Scoops <\/h2>\n<p> <!-- .popular-stories__stories --> <\/div>\n<p><!-- .popular-stories__inner -->\n<\/div>\n<p><!-- .popular-stories --> <\/p>\n<section class=\"latest-podcasts\">\n<h2 class=\"latest-podcasts__title\"> Latest Podcasts\t<\/h2>\n<\/section>\n<div class=\"top-categories\">\n<div class=\"top-categories__container\">\n<h3 class=\"top-categories__category-title\">Technology<\/h3>\n<\/p><\/div>\n<div class=\"top-categories__container\">\n<h3 class=\"top-categories__category-title\">Government<\/h3>\n<\/p><\/div>\n<\/p><\/div>\n<p> <\/main> <\/p>\n<div class=\"ad ad--bottom \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div id=\"interstitial\" class=\"welcome__container\"> <button id=\"close-modal-1\" class=\"welcome__clickable_area\"><\/button> <\/p>\n<div class=\"welcome__ad_wrapper\">\n<p> <button id=\"close-modal-3\" class=\"welcome__continue-button\">Continue to CyberScoop<\/button> <\/p>\n<\/p><\/div>\n<\/p><\/div>\n<p> <!-- Start of HubSpot Embed Code --> <!-- End of HubSpot Embed Code --> <\/body> <a href=\"https:\/\/cyberscoop.com\/cyber-safety-review-board-microsoft-cisa-dhs\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Cyber Safety Review Board to analyze cloud security in wake<\/p>\n","protected":false},"author":11,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[757,117,625,288,758],"tags":[759,119,630,294,760],"class_list":["post-1524","post","type-post","status-publish","format-standard","hentry","category-cyber-safety-review-board","category-government","category-microsoft","category-threats","category-wyden","tag-cyber-safety-review-board","tag-government","tag-microsoft","tag-threats","tag-wyden"],"featured_image_urls":{"full":"","thumbnail":"","medium":"","medium_large":"","large":"","1536x1536":"","2048x2048":"","chromenews-featured":"","chromenews-large":"","chromenews-medium":""},"author_info":{"display_name":"Cyber Scoop","author_link":"https:\/\/ddi.mohflo.net\/index.php\/author\/cyberscoop\/"},"category_info":"<a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/cyber-safety-review-board\/\" rel=\"category tag\">Cyber Safety Review Board<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/government\/\" rel=\"category tag\">Government<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/microsoft\/\" rel=\"category tag\">Microsoft<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/threats\/\" rel=\"category tag\">Threats<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/wyden\/\" rel=\"category tag\">Wyden<\/a>","tag_info":"Wyden","comment_count":"0","jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/1524","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/users\/11"}],"replies":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/comments?post=1524"}],"version-history":[{"count":0,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/1524\/revisions"}],"wp:attachment":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/media?parent=1524"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/categories?post=1524"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/tags?post=1524"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}