Google says ditch Microsoft for security

May 21, 2024
1 min read

“`html



Article Summary

TLDR:

  • Google urges federal agencies to ditch Microsoft over security concerns.
  • Google offers a safer alternative with comprehensive work and collaboration apps.

Google has published a white paper titled “A More Secure Alternative” targeting Microsoft’s recent high-profile breaches. The paper highlights the security challenges affecting Microsoft, especially after a compromise by the Chinese threat actor Storm-0558 in 2023. Google recommends a shift to its Workspace suite of apps for a safer alternative. While acknowledging the significant reliance on Microsoft across federal agencies, Google argues for a multi-vendor strategy and promotion of open standards to ensure interoperability and enhance security. The paper emphasizes the importance of security considerations in procurement. Google also signed a “secure by design” pledge with the Cybersecurity and Infrastructure Security Agency, calling for improved security culture and infrastructure restructuring by Microsoft.

The Cyber Safety Review Board highlighted preventable errors leading to the compromise of Microsoft Exchange Online by Chinese hackers, resulting in breaches affecting top U.S. officials. Amid growing concerns, Microsoft announced updates to its security operations, including enhanced encryption and post-quantum cryptography strategies. Federal government reports raised issues regarding the procurement of Microsoft products without meaningful competition, prompting calls for legislation to enhance cybersecurity and reduce vendor dependence. Google’s push to displace Microsoft reflects the changing dynamics of the technology space, with a focus on security and diversification for greater resilience.



“`

Latest from Blog

EU push for unified incident report rules

TLDR: The Federation of European Risk Management Associations (FERMA) is urging the EU to harmonize cyber incident reporting requirements ahead of new legislation. Upcoming legislation such as the NIS2 Directive, DORA, and