Nation state cybersecurity threats are a big deal, and heavily targeting Microsoft is definitely part of a larger game plan by Russia.
If Microsoft is struggling, imagine how helpless “smaller” corporations (Even 10/100’s of billion $ corps) would be.
I’m interested in how this plays out, and the kinds of postmortems we’ll get from this. Will we see any shift in security culture and best practices?
Smaller corporations have it easier, IF they took IT Security serious. For the simple fact, that there are just a lot less entry points and way less whack amole playing.
And Microsoft never took security as serious as they should have.
Edith: And I highly doubt, we’ll see a substantial change on Microsoft’s side. 1.: There’s less Money to be made. 2.: In some ways, their hands are tied because of the still ongoing Patriot Act/USA Freedom Act (which is a bullshit name) or rather the safe harbor stuff.
Can we now call Microsoft software compromised?
I’ve seen them owned by the RSS functionality. So many little hidey holes. I can’t imagine how diverse their infrastructure is.
W10 EOL news and compromised news at the same time.
I’m certainly no Microsoft fanboy, but if they decided to respond to the hack by devoting their resources to taking down the Russian government, Vladimir Putin would be dead within two months.
Securing a general purpose operating system seems like the Dutch boy with his finger in the dike. It doesn’t matter if its Windows, Linux, or Mac OS X. Lots of little leaks, not enough fingers to plug them.
