Slashdot: Microsoft Used China-Based Engineers to Support Product Recently Hacked by China

Aug 4, 2025

—

Source URL: https://it.slashdot.org/story/25/08/04/1429251/microsoft-used-china-based-engineers-to-support-product-recently-hacked-by-china?utm_source=rss1.0mainlinkanon&utm_medium=feed
Source: Slashdot
Title: Microsoft Used China-Based Engineers to Support Product Recently Hacked by China

Feedly Summary:

AI Summary and Description: Yes

Summary: The text reports on a security breach involving Chinese state-sponsored hackers exploiting SharePoint vulnerabilities, impacting numerous organizations, including U.S. government agencies. Notably, it mentions that this software, maintained by China-based engineers, raises concerns about the supervision and operational integrity surrounding sensitive applications.

Detailed Description:

The incident highlighted in the text reveals critical aspects concerning IT security vulnerabilities in popular software frameworks, particularly those prevalent in cloud and infrastructure environments. Key points include:

– **Security Breach**: Chinese state-sponsored hackers leveraged vulnerabilities in Microsoft’s SharePoint, breaching hundreds of companies and U.S. government entities, particularly high-stakes agencies such as the National Nuclear Security Administration and the Department of Homeland Security.

– **Operational Oversight**: Microsoft disclosed that SharePoint support and maintenance were conducted by a team based in China, which raises questions about the adequacy of supervision and security protocols in place for sensitive governmental IT infrastructure.

– **Omission of Information**: There is a critical note that Microsoft did not initially communicate the involvement of China-based engineers in the SharePoint maintenance, which could indicate a potential gap in transparency regarding the security measures surrounding the software.

– **Response Action**: In light of the breach, Microsoft announced plans to relocate this SharePoint support work to possibly mitigate risks associated with foreign maintenance teams.

Implications for security and compliance professionals:
– this incident underscores the need for robust **vulnerability management** and a thorough understanding of supply chain risks related to software developers, especially those based in states known for cyber espionage.

– Digital governance frameworks like Zero Trust may need to be reevaluated and enforced more rigorously to ensure sensitive data are shielded from external threats, particularly when involving third-party contractors.

– Professionals should reassess their incident response plans and ensure they have strict oversight of any third-party services involved in maintaining sensitive software systems.

This incident serves as a reminder of the continually evolving landscape of cybersecurity threats and the necessary vigilance required to protect critical infrastructure and national security interests.

1 2 4 5 a Act administration age AI and app Application applications art as at ated based Bi breach by C CERN chain chain risk chain risks China Chinese CI CIA CleaR closed Cloud co Col companies compliance compliance professionals concerns contract Contractors core critical critical infrastructure cyber cybersecurit Cybersecurity cybersecurity threat cybersecurity threats D data de Department of Homeland Security developer developers digital digital governance digital governance frameworks DoT e Engineer engineers environment espionage exp exploit External for framework frameworks g Gen git Go governance governance framework governance frameworks government government agencies government entities H hack hacker hackers high Highlight Homeland Security HR http HTTPS implications implications for security in incident incident response incident response plan incident response plans information infrastructure integrity inter io Iron k Key l Lance land led Li Link M maintenance man management measures Micro Microsoft mini mission N nation national security national security interests NIST no non nuclear Nuclear Security o of on ons operation operational operational integrity organization organizations ory oS out over oversight party party services per point potential pre pro product professionals protocol protocols ps Q question R Ractors rag Raise RCE re red report response Response Plan Risk risks Ro RoT Rust s sec security security and compliance security breach security measure security measures security protocols security threat security threats Security Vulnerabilities sensitive applications sensitive data service services SHA SharePoint Sig SoC software software developers software systems source sponsored sponsored hackers SSE SSO state state-sponsored state-sponsored hackers states supply supply chain supply chain risks support system systems T team Teams ted text the third third-party threat threats to Tor TP transparency trust U.S. U.S. government UI under up US use V val vigilance Vision vulnerabilities vulnerability Vulnerability Management Ware Wi x z zero Zero Trust