Alternate title: Microsoft closes barn door after last horse seen leaving and starting a bot farm.

Microsoft is now announcing a huge cybersecurity effort, dubbed the Secure Future Initiative (SFI). This new approach is designed to change the way Microsoft designs, builds, tests, and operates its software and services today. It’s the biggest change to security efforts inside Microsoft since the company announced its Security Development Lifecycle (SDL) in 2004 after Windows XP fell victim to a huge Blaster worm attack that knocked PCs offline in 2003.

  • @Contend6248@feddit.de
    link
    fedilink
    English
    10
    edit-2
    1 year ago

    I mean, they centralized essentially any modern companies data. Nobody thinks that’s a good idea, but money rules the world.

    They will find out how big of a target you have to paint on your back to get rolled.

  • @Knusper@feddit.de
    link
    fedilink
    English
    91 year ago

    Maybe they should have gotten started on that before they refreshed their image from 20 years ago…

  • AutoTL;DRB
    link
    English
    51 year ago

    This is the best summary I could come up with:


    It comes just months after Microsoft was accused of “blatantly negligent” cybersecurity practices related to a major breach that targeted its Azure platform.

    “Satya Nadella, Rajesh Jha, Scott Guthrie, and I have put significant thought into how we should respond to the increasingly more sophisticated threats,” explains Charlie Bell, head of Microsoft security, in an internal memo distributed today.

    “As a company, we are committed to building an AI-based cyber shield that will protect customers and countries around the world,” explains Brad Smith, Microsoft vice chair and president, in a blog post today.

    Part of the criticism leveled at Microsoft in recent months has been focused on the amount of time it takes the company to respond to major security vulnerabilities.

    “We should all abhor determined nation state efforts that seek to install malware or create or exploit other cybersecurity weaknesses in the networks of critical infrastructure providers,” says Smith in his blog post today.

    “These bear no connection to the espionage efforts that governments have pursued for centuries and instead appear designed to threaten the lives of innocent civilians in a future crisis or conflict.”


    The original article contains 1,112 words, the summary contains 186 words. Saved 83%. I’m a bot and I’m open source!