The Federal Office for Information Security (BSI) initiated administrative proceedings against Microsoft at the beginning of the year in order to legally compel it to release security-relevant information. Microsoft has not yet fully complied with this request. The dispute concerns information related to the cyber attack group "Storm 0558". They had used stolen crypto keys to gain access to email accounts of at least 25 organizations, including the US Department of State and the US Department of Commerce. A similar attack could be prevented in the future by double key encryption. However, Microsoft does not provide its customers or the BSI with the information required for this. The BSI has announced that the order is not about clarifying the attacks, but about providing the necessary details so that customers can use the security function correctly now and in the future. In addition, the EU Commission is threatening Microsoft with a fine if the company does not provide information about risks associated with the use of artificial intelligence in its services. The focus is on the spread of false information and deep fakes through Microsoft's search engine Bing.
- MW IT Solution GmbH
Comments