The heads of the Justice Department, the Cybersecurity and Infrastructure Security Agency, and the Federal Trade Commission received a letter on July 27 from US Sen. Ron Wyden (D-Ore.) asking them to hold Microsoft responsible for “negligent security practices.”
This comes after a Microsoft 365 breach where Chinese government hackers were able to access the email accounts of 25 organizations. Microsoft asserted that the compromise occurred due to three exploited vulnerabilities from its Exchange Online email service and Azure Active Directory.