- cross-posted to:
- [email protected]
- [email protected]
- cross-posted to:
- [email protected]
- [email protected]
Microsoft is pivoting its company culture to make security a top priority, President Brad Smith testified to Congress on Thursday, promising that security will be “more important even than the company’s work on artificial intelligence.”
Satya Nadella, Microsoft’s CEO, “has taken on the responsibility personally to serve as the senior executive with overall accountability for Microsoft’s security,” Smith told Congress.
His testimony comes after Microsoft admitted that it could have taken steps to prevent two aggressive nation-state cyberattacks from China and Russia.
According to Microsoft whistleblower Andrew Harris, Microsoft spent years ignoring a vulnerability while he proposed fixes to the “security nightmare.” Instead, Microsoft feared it might lose its government contract by warning about the bug and allegedly downplayed the problem, choosing profits over security, ProPublica reported.
This apparent negligence led to one of the largest cyberattacks in US history, and officials’ sensitive data was compromised due to Microsoft’s security failures. The China-linked hackers stole 60,000 US State Department emails, Reuters reported. And several federal agencies were hit, giving attackers access to sensitive government information, including data from the National Nuclear Security Administration and the National Institutes of Health, ProPublica reported. Even Microsoft itself was breached, with a Russian group accessing senior staff emails this year, including their “correspondence with government officials,” Reuters reported.
You must log in or register to comment.
Again, just install Linux.
Dump your windows, install Linux, be done with this nonsense.
You switching is like turning around a rowboat.
Them switching is like turning around a cruise ship.
Sadly, I cannot do this for my work computer.
According to Microsoft whistleblower Andrew Harris, Microsoft spent years ignoring a vulnerability while he proposed fixes to the “security nightmare.” Instead, Microsoft feared it might lose its government contract by warning about the bug and allegedly downplayed the problem, choosing profits over security, ProPublica reported.
And this is exactly the problem. You STILL cannot trust them, fool me once, fool me twice?
This entire “weeewweeee sowwwyyy” bullshit excuse completely ignored the fact that they purposefully allowed the US government to be attacked because money is their bottom line. If it were a person (and aren’t companies persons now in the US?) they would have been jailed for treason. Jail these assholes already and switch ALL your computers to Linux
fucking seriously! Reading this absolutely disgusted me.
There needs to be a fine far larger than the contract to have any hope of curtailing this behavior.
The people making the decisions should be in jail. I don’t know if this is fraud in the legal sense but this is literally fraudulent behavior.
Rather than driving the industry forward with leadership and vision Microsoft is being driven by AI and Advertising fads that are self destructing facebook and google.
Its clear its too late for Microsoft to do anything but lose trust at this point. If the outlook hacks and US government didnt cause them to rethink these terrible anti-privacy ideas then a bit of AI backlash won’t either. As soon as people look away they’ll start stuffing the OS with snoopware again.
no they won’t. these pricks literally fired their entire AI Ethics team… that tells you everything you need to know about where their priorities are.
the only thing they are gonna do about this is figure out a way to make people not angry, but continue to fo as much shady shit as they can.
Definitely wasn’t aware of that…
literally fired their entire AI Ethics team
https://www.theverge.com/2023/3/13/23638823/microsoft-ethics-society-team-responsible-ai-layoffs
It’s always one of the first things to get cut when companies try to save money.
Well I know companies are willing to terminate employees for the sake of keeping up profits or preventing the loss of a company, no doubt. But the fact that they terminated an entire department - AI Ethics. Which I have to only assume is not a good idea when you’re implementing a new technology that can definitely go out of control.
ai ethics teams are a joke. They deserve to get fired.
Microsoft uses damage control.
fancy animation
It was not effective.
Microsoft is confused.
It hurt itself in it’s confusion.
So we start…click on the paint brush icon…that tiny colourful thing right under the big ass “W” Icon. Now hit agree on the window asking if you’re secure. Wait a few moments and agree you your 2FA app on your phone. You might have to ask your wife to agree if you are married and bought the license for your spouse only. Cheapskate! Now stay here for a few minutes, we’ve called the 🚓🚨 police.
To reinforce the shift in company culture toward “empowering and rewarding every employee to find security issues, report them,” and “help fix them,” Smith said that Nadella sent an email out to all staff urging that security should always remain top of mind.
Yeah that ought to do it.
Same energy as “You have unlimited PTO here, but we also have this nifty little thing called performance metrics”
"Of course, fixing these kinds of issues won’t push your product deadlines back at all. But we’ll be thankful to you! "
That’s just barely thoughts-and-prayers level. They could at least schedule a mandatory meeting that interrupts everyone’s day for half an hour.
Usually they set up a hotline which may or may not get you fired.
Happy cake day!
Using the hotline won’t get you fired, but somehow - for totally unrelated reasons - after using it you’ll end up on a PIP with untenable goals, and that will get you fired.
“Next week to improve employee morale we will have a pizza party” - Nadella, probably
they could throw a pizza party for their government clients. Less work than fixing the problem
Lol. Considering it was senior management that ignored staff, this statement is even fucking dumber than it sounds.
Until next week when they change their mind again
I doubt MS even knows what security means
Oh they know, Azure is running on Linux
Lol, Microsoft will focus on profits and shareholders, and shareholders want AI cramed into everything.
Too late, my office just switched to Linux.
…what? What kind of office do you work in that understands linux??? Most offices I’ve worked in don’t even understand the copier.
Software.
This statement, from the company that looked at Recall and collectively said “yeah, this is a good idea”.
Well recall is why they’re so focused on security now. They want to host every detail of your life. They can’t do that now because their platform is a tire fire.
their platform is a tire fire.
Always has been
Eh…Windows 3.1, 95, 98SE, XP, and 7 were all pretty great.
They HAVE released some hot trash. I don’t even remember Vista. I just remember it’s trash.
Eh…Windows 3.1, 95, 98SE, XP, and 7 were all pretty great.
From a user interface perspective, they were okay, perhaps because by the time people got to XP they’d had a decade of a consistent interface and were just used to its quirks.
From a security context they were not ok. Not ok at all.
I genuinely don’t know if I left my firewall on or off the last time I fiddled with it, on my Windows 7 machine.
That was like 10 years ago. It’s still my daily use pc. Zero antivirus. Just firefox which was installed 10 years ago. And ad block orgin which was also installed 10 years ago but updated over the years.
Oddly enough, the only website I have issue with is lemmy.
There’s security people retching around the world and they’re not sure why.
Was it 95 that you could hit cancel at the log in screen and it would let you skip putting in a password?
Sure it looked pretty, but security was a disaster.
In 98 you could use the accessibility settings in the login page to bypass account password too!
I just pressed cancel. Who needs network shares.
On XP you could start the On Screen Keyboard, open the help for that and then open the explorer by browsing for a different help file.MS has a history of security first.
Oh, lemmy has cakes. Happy cake day.
That password was only for network shares/NT domains. 95 didn’t have any concept of users, like DOS.
Nope, always garbage. It did get worse with vista and 11 though
Happy cake day!
three trillion dollars and they basically can’t do it
Microsoft is pivoting its company culture
Oh yes, the thing they’re well known for succeeding at.
They excel at pivots
That is basically the biggest fuck up you could make as a government contracted technology provider. They even let it happen and hid it deliberately.
That is basically the biggest fuck up you could make as a government contracted technology provider. They even let it happen and hid it deliberately.
Big paydays incoming for certain senators.
