Microsoft president asks Congress to force private-sector orgs to publicly admit when they’ve been hacked

The private sector should be legally obliged to disclose any major hacks of their systems, says Microsoft’s president and top lawyer Brad Smith. Speaking at a Senate Intelligence Committee hearing on Tuesday regarding the SolarWinds backdoor, through which suspected Russian agents infiltrated the computers of US government departments and Fortune 500 companies, Smith argued it was “time not only to talk about but to find a way to take action to impose in an appropriate manner some kind of notification obligation on entities in the private sector.” He noted it was “not a typical step” for a company to ask the United States Congress to “place a new law on ourselves and on our customers, but I think it’s the only way we’re going to protect our country and I think it’s the only way we’re going to protect the world.” I think it’s the only way we’re going to protect our country and I think it’s the only way we’re going to protect the world The invitation was certainly unusual but it was notably not challenged by the other panelists at the hearing:

Read full article on The Register