Conversation

Notices

1. lnxw48a1 (lnxw48a1@nu.federati.net)'s status on Friday, 25-Dec-2020 01:00:57 EST lnxw48a1
   https://nu.federati.net/url/279062 [www washingtonpost com]
   
   #Microsoft cloud customers breached, company denies that its systems were the vector
   1. lnxw48a1 (lnxw48a1@nu.federati.net)'s status on Friday, 25-Dec-2020 10:48:56 EST lnxw48a1

      in reply to
      Also important in the article: in a lawsuit about a past breach of Amazon cloud customers, the court refused to drop Amazon from the case, because their negligence may have been involved.
      1. GeniusMusing (geniusmusing@nu.federati.net)'s status on Friday, 25-Dec-2020 11:37:26 EST GeniusMusing

         in reply to
         @lnxw48a1
         Looks like they got in through a non direct vector.
         
         Russians Are Believed To Have Used Microsoft Resellers in Cyberattacks Slashdot
         https://nu.federati.net/url/279066
         1. lnxw48a1 (lnxw48a1@nu.federati.net)'s status on Friday, 25-Dec-2020 13:58:18 EST lnxw48a1

            in reply to
            > Companies can track phishing attacks and malware all they want, but as long as they are blindly trusting vendors and cloud services like Microsoft, Salesforce Google's G-Suite, Zoom, Slack, SolarWinds and others -- and giving them broad access to employee email and corporate networks -- they will never be secure, cybersecurity experts say.
            
            Truer words have never been spoken.