Chinese hack of US emails attributed to Microsoft’s security deprioritization

CyberScoop reports that Chinese advanced persistent threat group Storm-0558’s compromise of email accounts belonging to Commerce Secretary Gina Raimondo and other high-level officials was blamed by the Cyber Safety Review Board on Microsoft’s inadequate enterprise security and risk management efforts. High-profile email accounts were infiltrated by Storm-0558 through a signing key that had been exfiltrated from a “crash dump,”

Source: SC Magazine