The report cites issues with Microsofts corporate culture around security that led to this attack.
The email accounts of Commerce Secretary Gina Raimondo, the U.S.
Ambassador to China R. Nicholas Burns, and Congressman Don Bacon were compromised.
Photo: Deb Cohn-Orbach/UCG/Universal Images Group (Getty Images)
The threat actor downloaded over 60,000 emails from the State Department alone, according to the report.
The damning report paints a picture of an internal mess behind the scenes at Microsoft.
Microsoft did not immediately respond to Gizmodos request for comment.
A hacker group affiliated with the Peoples Republic of China, Storm-0558, was responsible for the attack.
This allowed Storm-0558 full access to essentially any Exchange Online account, Microsofts hosted messaging platform.
On June 15, the State Department detected a data breach and notified Microsoft.
By June 24, Microsoft was able to invalidate the stolen key Storm-0558 was using.
The government review says these security risks should be appropriately addressed before new features are deployed.
News from the future, delivered to your present.
Two banks say Amazon has paused negotiations on some international data centers.
