{"id":36640,"date":"2024-12-17T17:26:53","date_gmt":"2024-12-17T16:26:53","guid":{"rendered":"http:\/\/159.69.82.204\/win\/?p=36640"},"modified":"2024-12-17T17:26:55","modified_gmt":"2024-12-17T16:26:55","slug":"amazon-pauses-microsoft-365-rollout-due-to-security-concerns-after-hack","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2024\/12\/17\/amazon-pauses-microsoft-365-rollout-due-to-security-concerns-after-hack\/","title":{"rendered":"Amazon pauses Microsoft 365 rollout due to security concerns after hack"},"content":{"rendered":"

\"Amazon\"[German<\/a>]In 2023, Microsoft had to admit to hacks of its Exchange Online and Azure services. Bloomberg is now reporting that Amazon has paused its plans to roll out Microsoft 365 in the company. This is due to security concerns following the hack by the alleged Russian group Midnight Blizzard.<\/p>\n

<\/p>\n

Amazon has security concerns<\/h2>\n

\"\"I already came across this topic via this post<\/a> on BlueSky, which Bloomberg took up in an article (behind registration). Amazon wants to invest around one billion US dollars over five years to use Microsoft 365 in the cloud across the entire group with around 1.5 million workstations. However, this has been put on hold for the time being.<\/p>\n

\"Amazon<\/a><\/p>\n

The short version: As a major customer, Amazon uses Microsoft 365 with the Office applications Word, Excel etc., but has hosted these on its own servers up to now. Now the rollout of Microsoft 365 was supposed to take place, but the project has been halted for at least a year. According to Bloomberg, Amazon's security concerns are the reason why the rollout has been paused.<\/p>\n

Amazon has provided Microsoft with a list of changes that must be met before Office 365 applications are deemed safe for the company to use. This also includes features in the productivity software that make it easier to track user activity for security purposes.<\/p>\n

\u00a0Background: Midnight Blizzard hack<\/h2>\n

In January 2024, it became known that hackers from the state group Midnight Blizzard Hackers were able to penetrate Microsoft's email system and read targeted messages from executives or security experts. The hackers had been in the system since November 2023, as I noted in the blog post Microsoft hacked by Russian Midnight Blizzard; emails exfiltrated since Nov. 2023<\/a>.<\/p>\n

In the blog post How Midnight Blizzard hackers were able to penetrate Microsoft's email system<\/a>, I traced the hackers' attack path. It points to a chain of omissions on Microsoft's part. But Redmond played it down and said \"danger recognized, danger averted, the hackers from Midnight Blizzard have been successfully locked out\". Microsoft later had to admit that the attacks by Midnight Blizzard were continuing – but it remained unclear whether the attackers were still able to access Microsoft's systems.<\/p>\n

I traced the hackers' attack path in the blog post. It points to a chain of omissions on Microsoft's part. But Redmond played it down and said \"Danger recognized, danger averted, the hackers from Midnight Blizzard have been successfully locked out\". Microsoft later had to admit that the attacks by Midnight Blizzard were continuing – but it remained unclear whether the attackers were still able to access Microsoft's systems.<\/p>\n

Microsoft later had to admit that customers were also affected by this hack (see Microsoft: News from the Midnight Blizzard hack \u2013 customers may also be affected<\/a>). The attackers were able to read emails from Microsoft employees to customers. There is a risk that the emails could contain information for the attackers that could put customers at risk.\u00a0This information has led US authorities and major customers to look for alternatives. I think the above situation falls exactly into this category. I find it very surprising – I hear from some IT managers that there is no alternative to Microsoft 365 and that there is little questioning of it.<\/p>\n

Similar articles:<\/strong>
\nChina hacker (Storm-0558) accessed Outlook accounts in Microsoft's cloud<\/a>
\nFollow-up to the Storm-0558 cloud hack: Microsoft is still in the dark<\/a>
\nAfter CISA report on Storm-0558 hack, Microsoft provides customers with enhanced cloud logging<\/a>
\nStolen AAD key allowed (Storm-0558) wide-ranging access to Microsoft cloud services<\/a>
\nMicrosoft's Storm-0558 cloud hack: US senator among the victims<\/a>
\nMicrosoft's Storm-0558 cloud hack: MSA key comes from Windows crash dump of a PC<\/a>
\nMicrosoft extends Purview logging (after Storm-0558 hack)<\/a>
\nMicrosoft hacked by Russian Midnight Blizzard; emails exfiltrated since Nov. 2023<\/a>
\nHow Midnight Blizzard hackers were able to penetrate Microsoft's email system<\/a>
\nMicrosoft confirms: Russian spies (Midnight Blizzard) stole source code while accessing systems<\/a>
\nMicrosoft: News from the Midnight Blizzard hack \u2013 customers may also be affected<\/a>
\nHewlett Packard Enterprise (HPE) hacked by Midnight Blizzard since May 2023<\/a><\/p>\n

Microsoft as a Security Risk? U.S. senator calls for Microsoft to be held accountable over Azure cloud hack<\/a>\u2013 Part 1
\nMicrosoft as a Security Risk? Azure vulnerability unpatched since March 2023, heavy criticism from Tenable<\/a>\u00a0\u2013 Part 2
\nWhistleblower: Microsoft ignored warnings about AD bug; was exploited in 2020 SolarWinds hack<\/a>
\nMicrosoft engages in damage limitation at congressional hearing (13.6.2024): Safety takes priority over AI<\/a>
\nMidnight Blizzard hack: Microsoft sends notification to customers by email that ends up in SPAM folders<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

[German]In 2023, Microsoft had to admit to hacks of its Exchange Online and Azure services. Bloomberg is now reporting that Amazon has paused its plans to roll out Microsoft 365 in the company. This is due to security concerns following … Continue reading →<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[63,580],"tags":[2158,64,125,69],"class_list":["post-36640","post","type-post","status-publish","format-standard","hentry","category-cloud","category-security","tag-amazon","tag-cloud","tag-office","tag-security"],"_links":{"self":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/36640","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/comments?post=36640"}],"version-history":[{"count":1,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/36640\/revisions"}],"predecessor-version":[{"id":36642,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/36640\/revisions\/36642"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/media?parent=36640"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/categories?post=36640"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/tags?post=36640"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}