Microsoft hosts a security summit but no press, public allowed
Microsoft will host a closed security summit on September 10, 2024, focusing on security improvements post-CrowdStrike outage, raising transparency concerns due to exclusion of press and independent oversight.
Read original article
Microsoft is set to host a closed security summit on September 10, 2024, at its headquarters in Redmond, Washington, focusing on improving security and resiliency for customers. The event will include key partners like CrowdStrike, particularly in light of a recent outage affecting millions of Windows machines. However, the summit will not be open to the press or the public, raising concerns about transparency. Microsoft has stated that the discussions will center on lessons learned from the CrowdStrike incident and strategies for enhancing security practices. Critics, including U.S. Senator Ron Wyden, have pointed out the lack of transparency, noting that while government representatives will be present, those who could provide critical oversight, such as the press, have been excluded. This closed-door approach follows a pattern where Microsoft has faced scrutiny over its security practices, particularly after significant breaches attributed to nation-state hackers. The company has previously promised transparency and accountability but has resisted calls for independent audits and minimum cybersecurity standards. The upcoming summit is seen as another instance where Microsoft may prioritize internal discussions over public accountability.
- Microsoft will host a closed security summit on September 10, 2024.
- The event will focus on improving security practices following a recent CrowdStrike outage.
- No press or public will be allowed, raising transparency concerns.
- Critics highlight the exclusion of independent oversight from the discussions.
- Microsoft has faced ongoing scrutiny over its security practices and transparency commitments.
Related
Microsoft a national security threat says ex-White House cyber policy director
A former White House cyber policy director raises national security concerns over Microsoft's control in US government IT. Calls for diversification and enhanced cybersecurity amid debates on tech companies' role in national security.
Windows: Insecure by Design
The article discusses ongoing security issues with Microsoft Windows, including recent vulnerabilities exploited by a Chinese hacking group, criticism of continuous patch releases, concerns about privacy invasion with Recall feature, and frustrations with Windows 11 practices. It advocates for considering more secure alternatives like Linux.
Microsoft's global sprawl under fire from regulators after Windows outage
A global Microsoft Windows outage, caused by a defective update from CrowdStrike, disrupted various sectors worldwide. Regulators urge vendor diversification to reduce reliance on Microsoft, sparking debates on tech monopolies and antitrust enforcement.
Microsoft calls for Windows changes and resilience after CrowdStrike outage
Microsoft is reconsidering security vendor access to the Windows kernel after a CrowdStrike update outage affected 8.5 million PCs, emphasizing the need for improved resilience and collaboration in security practices.
Every Microsoft employee is now being judged on their security work
Microsoft has prioritized security for all employees, affecting performance evaluations, promotions, and bonuses. Employees must integrate security into their work, while the Secure Future Initiative enhances overall security measures.
13 commentsSometimes the message you need your 'partners' to receive is: "Yes, we fucked up 3 times, but over the same period you lot fucked up 100 times so we're going to severely curtail what you can do, if you don't like it tough"
And if you're Linus Torvalds you can just say that in public.
But if you're a business with a PR department and lawyers, and some of these partners are actually important to your business and you want to maintain a good relationship with them?
Then it's probably a lot easier for you to deliver the message clearly and frankly if you do it behind closed doors.
Just like you never, ever see a meeting/phone call between Biden and Xi livestreamed on YouTube in full detail. They may give you a summary but that's it.
I don't see there is anything worth reporting about.
https://www.microsoft.com/en-us/microsoft-cloud/resources/se...
Unless that was the intent of the meeting.
Related
Microsoft a national security threat says ex-White House cyber policy director
A former White House cyber policy director raises national security concerns over Microsoft's control in US government IT. Calls for diversification and enhanced cybersecurity amid debates on tech companies' role in national security.
Windows: Insecure by Design
The article discusses ongoing security issues with Microsoft Windows, including recent vulnerabilities exploited by a Chinese hacking group, criticism of continuous patch releases, concerns about privacy invasion with Recall feature, and frustrations with Windows 11 practices. It advocates for considering more secure alternatives like Linux.
Microsoft's global sprawl under fire from regulators after Windows outage
A global Microsoft Windows outage, caused by a defective update from CrowdStrike, disrupted various sectors worldwide. Regulators urge vendor diversification to reduce reliance on Microsoft, sparking debates on tech monopolies and antitrust enforcement.
Microsoft calls for Windows changes and resilience after CrowdStrike outage
Microsoft is reconsidering security vendor access to the Windows kernel after a CrowdStrike update outage affected 8.5 million PCs, emphasizing the need for improved resilience and collaboration in security practices.
Every Microsoft employee is now being judged on their security work
Microsoft has prioritized security for all employees, affecting performance evaluations, promotions, and bonuses. Employees must integrate security into their work, while the Secure Future Initiative enhances overall security measures.