Congressional Hearing on Microsoft’s Security Culture Post-SolarWinds Breach

Congressional Hearing on Microsoft’s Security Culture Post-SolarWinds Breach

First seen 28 Apr 2026, 16:38 UTC Cyberscoopfedscoop.comramirez.house.govwww.propublica.orghomeland.house.gov+1 87% similarity 75.0

Article Content

Browse articles
ThreatCluster

During a House Homeland Security Committee hearing on April 28, 2026, Microsoft faced scrutiny over its handling of security vulnerabilities that contributed to the SolarWinds cyberattack. A ProPublica investigation revealed that Microsoft ignored warnings from an engineer about a critical flaw that left millions, including federal employees, vulnerable. The breach, attributed to Russian hackers, is considered one of the largest in U.S. history. Microsoft President Brad Smith acknowledged the need for cultural change within the company, stating that security would now be a part of employee performance reviews. The Cyber Safety Review Board criticized Microsoft's security culture as 'inadequate,' prompting the company to tie executive bonuses to cybersecurity improvements. Meanwhile, Rep. Delia Ramirez criticized the Trump administration's cybersecurity policies and the impact of personnel cuts at the Cybersecurity and Infrastructure Security Agency (CISA). The hearing highlighted ongoing concerns about national cybersecurity and the effectiveness of current measures against sophisticated threats.

Key Points: • Microsoft faced congressional criticism for its inadequate response to security vulnerabilities. • The SolarWinds breach, exploited by Russian hackers, affected millions of users, including federal employees. • Microsoft is implementing changes to prioritize security in its corporate culture and employee evaluations.

ThreatCluster AI

Timeline

2017-01-01
Microsoft engineer warns about critical security flaw.
2020-12-01
SolarWinds cyberattack occurs, exploiting the identified flaw.
2026-04-28
Congressional hearing held to address Microsoft's security practices.

Community

Browse all →