The review by the Cyber Safety Review Board will look at the malicious targeting of cloud computing environments
Issues relating to cloud-based identity and authentication infrastructure will be reviewed by a US cyber safety body. The issues will include an assessment of a recent Microsoft breach that led to the theft of emails from U.S. government agencies, the Department of Homeland Security (DHS) said on Friday.
The DHS said in a statement that the review by the Cyber Safety Review Board will look at the malicious targeting of cloud computing environments.
“Organisations of all kinds are increasingly reliant on cloud computing to deliver services to the American people, which makes it imperative that we understand the vulnerabilities of that technology,” DHS Secretary Alejandro Mayorkas said in the statement.
The review comes after U.S. Senator Ron Wyden in July asked the Federal Trade Commission, the Cybersecurity and Infrastructure Security Agency, and the Justice Department to “take action” against Microsoft following the hack.
To gain sweeping access to the company’s cloud email platform, hackers allegedly operating on Beijing’s behalf got hold of one of its cryptographic keys and took advantage of a coding flaw, following which Microsoft has been under increasing scrutiny.
To help organisations protect against malicious access to cloud-based accounts, the Cyber Safety Review Board’s review will provide recommendations, DHS said.
CIO News, a proprietary of Mercadeo, produces award-winning content and resources for IT leaders across any industry through print articles and recorded video interviews on topics in the technology sector such as Digital Transformation, Artificial Intelligence (AI), Machine Learning (ML), Cloud, Robotics, Cyber-security, Data, Analytics, SOC, SASE, among other technology topics