Microsoft says it is still trying to evict the elite Russian government hackers who broke into the email of senior company executives in November and have since been trying to breach customer networks with stolen access data.
Smaller corporations have it easier, IF they took IT Security serious. For the simple fact, that there are just a lot less entry points and way less whack amole playing.
And Microsoft never took security as serious as they should have.
Nation state cybersecurity threats are a big deal, and heavily targeting Microsoft is definitely part of a larger game plan by Russia.
If Microsoft is struggling, imagine how helpless “smaller” corporations (Even 10/100’s of billion $ corps) would be.
I’m interested in how this plays out, and the kinds of postmortems we’ll get from this. Will we see any shift in security culture and best practices?
Smaller corporations have it easier, IF they took IT Security serious. For the simple fact, that there are just a lot less entry points and way less whack amole playing.
And Microsoft never took security as serious as they should have.
I don’t think we’ll get the post mortems you ate imagining.
Microsoft has typically been extremely vague - famously vague, even - about any details.