Security experts and the office of U.S. Senator Ron Wyden said Microsoft’s failure to fix the known vulnerability with its cloud software made it easy for the SolarWind hackers to target the nine federal agencies and 100 other firms. The vulnerability, known since 2017, allowed hackers to fake the identity of authorized employees to gain access to customers’ cloud services and was one of the techniques used in the SolarWinds hack.

Click here to read the full story