Chairman Green, Ranking Member Thompson Announce Microsoft President Will Testify on Company’s Security Shortcomings Following Hack of Government Accounts

(WASHINGTON) - Today, House Committee on Homeland Security Chairman Mark E. Green, MD (R-TN) and Ranking Member Bennie G. Thompson (D-MS) announced that Microsoft Vice Chairman and President Brad Smith will testify before the Committee on June 13, at 2pm ET. The hearing will examine the company’s security shortcomings, challenges encountered in preventing significant cyber intrusions, and its plans to strengthen security measures following the Cyber Safety Review Board’s (CSRB) report on the Microsoft Online Exchange 2023 cyber intrusion by threat actors affiliated with the People’s Republic of China (PRC). 
 
The group, known as Storm-0558, successfully compromised 22 enterprise organizations and over 500 individuals globally due to what the CSRB described as “a cascade of failures” by Microsoft. The incident compromised numerous federal government accounts, putting sensitive data at risk. Chairman Green and Ranking Member Thompson formally requested testimony from Microsoft on May 9. 

“We are pleased that Microsoft will appear before the Committee to inform lawmakers and the American people of the company’s response to the grave homeland security threats identified in the recent CSRB report.

“Given the Microsoft Exchange Online incident and other recent major cyberattacks experienced by the company, the Committee is also deeply concerned about the continued integrity of U.S. government data, networks, and information––especially considering Microsoft’s role as a trusted vendor and dominant supplier of information technology for the federal government.

“We look forward to Mr. Smith’s testimony and anticipate a productive discussion that advances our shared goal of strengthening cybersecurity practices for the cloud and addressing any vulnerabilities in the company’s security culture. This includes building confidence about a path forward to enhance the collective cyber defense of federal civilian networks and the private sector as threats rise from nefarious nation-state actors and opportunistic cybercriminals. It is our hope that Microsoft plays a leading role in accomplishing this mission.”

DETAILS:
What: A House Committee on Homeland Security entitled “A Cascade of Security Failures: Assessing Microsoft Corporation’s Cybersecurity Shortfalls and the Implications for Homeland Security.”
When: Thursday, June 13, 2024, at 2:00 PM ET
Where: 310 Cannon House Office Building
 
WITNESS:
Brad Smith, Vice Chairman and President, Microsoft 
 
Witness testimony will be added here. The hearing will be livestreamed on YouTube and will be open to the public and press. Press must be congressionally credentialed and should RSVP by Wednesday, June 12, at 6:00 PM ET.

#  #  #

• Print
• Email
• Tweet