Author Topic: Microsoft whistleblower about Golden SAML and the SolarWinds hack  (Read 373 times)

0 Members and 1 Guest are viewing this topic.

Offline madiresTopic starter

  • Super Contributor
  • ***
  • Posts: 8283
  • Country: de
  • A qualified hobbyist ;)
Microsoft Chose Profit Over Security and Left U.S. Government Vulnerable to Russian Hack, Whistleblower Says: https://www.propublica.org/article/microsoft-solarwinds-golden-saml-data-breach-russian-hackers

TL;DR: MS knew about Golden SAML in 2016 but didn't fix the security issue because money comes first. As the US government went cloud a known major security issue would be bad for business. Then the supply chain attack via SolarWinds happened in 2020 (utilizing Golden SAML).
 


Share me

Digg  Facebook  SlashDot  Delicious  Technorati  Twitter  Google  Yahoo
Smf