"Microsoft Expands Cloud Logging to Counter Rising Nation-State Cyber Threats"

After facing criticism following a recent espionage attack campaign aimed at its email infrastructure, Microsoft has announced that it will expand cloud logging capabilities to help organizations investigate cybersecurity incidents and gain more visibility. The company noted that the change directly responds to the increasing frequency and evolution of cyber threats from nation-states. The rollout is expected to begin in September 2023 for all government and commercial customers. Microsoft will provide its customers access to wider cloud security logs at no additional cost. The US Cybersecurity and Infrastructure Security Agency (CISA) applauded the action, emphasizing that having access to key logging data is essential for quickly mitigating cyber intrusions and that this is a major step forward in advancing security by design principles. The development follows disclosures that a China-based threat actor named Storm-0558 compromised 25 organizations by exploiting a validation error in the Microsoft Exchange environment. This article continues to discuss Microsoft expanding cloud logging capabilities, what prompted this move, and the response to this decision. 

THN reports "Microsoft Expands Cloud Logging to Counter Rising Nation-State Cyber Threats"