UK and chums call out Chinese Ministry of State Security for Hafnium Microsoft Exchange Server attacks

>They will respect nothing else.

We should send a gunboat

"The Chinese Communist Party (CPP) will continue to flaunt international law as it is in their best interest to do so."

Well I mean when you consider America, the UK, Israel etc and how they treat international law, I'd say they're in good company wouldn't you?

Anybody for a game of stuxnet?

flaunt international law

Um, I think, from context, that you mean "flout"

Only indirectly related, but the Chinese market comprises ~2% (2 billion USD) of Microsofts' revenue. MS also has several research campuses in four different Chinese cities.

> Microsoft Asia-Pacific Research and Development Group (ARD) is a complete innovation chain of fundamental research, technology incubation, product development, and strategic partnerships. It is the largest and most comprehensive R&D base for Microsoft outside of the United States. At ARD, over 3000 scientists and engineers work at the cutting-edge of technology, innovating solutions that impact millions of people around the world on a daily basis. With campuses in major urban centers across the region, our engineers and researchers span Microsoft’s major engineering divisions, including Cloud and Enterprise, Search Technology Center (Bing), Microsoft Office Division, Microsoft Research, and hardware for products like Xbox and PCs (Microsoft Asia Center for Hardware).

[1] Qualcomm veteran to replace Alain Crozier as Microsoft Greater China boss, Tech Crunch

[2] Microsoft Asia-Pacific R&D - web page

Not a hope

The ruins of the Wests appetite for cheap anything, (toys, IT,services) and idiots elected mean the world depends on China. The cost of rebuilding industries is not acceptable to anyone. However, what can be done is basic IT security. Governments and businesses can isolate their networks. Those devices that need internet access should be standalone within the organisation or dedicated dumb as possible hardware. Think POS that can only connect to its bank server. Seen it done in large government department that had massive external traffic.

As for Exchange software, horse bolted 30 years ago. Anyone else remember trying to secure Sendmail ? Nearest thing to human readable line noise someone said. At least it worked, but newer MTAs springing up suggest its weaknesses were recognised and something possibly better tried, unlike now where corporate Alzheimers means no other option are remembered, let alone thought of.

"The CPP is power hungry, unapologetic and oppression personified. They should not be encouraged or coddled. Every free nation on Earth needs to say "No, stop." and turn off the economic pipeline to the Chinese economy until they play fairly. "

Look, I don't want to be 'that guy', buuuut, swap out China in this paragraph for another certain country, and it sounds pretty much the same. Hell, if you swapped in that same country for the stuff China did, nobody would be surprised.

Unless we hold ALL countries economically responsible, it doesn't really matter what people do to China. It's just weird red-scare craziness, a handy target to make everybody feel better because there's an easy target.

It'd be a lot healthier if we all just accept that China, Russia, Israel, the USA, Australia, et al will be doing this always and for forever and we all just have to get used to that.

re: The CPP is power hungry, unapologetic and oppression personified.

Like that hasn't been western international policy for the last 100 years.

Still, nothing like a bit of xenophobia to keep the plebs in line.

Of course, this is absolutely nothing to do with trying to distract from the bad news that's likely to roll out of the NSO debacle

Re: Who's really at fault ?

Spot on, those organizations losing "Intellectual property" have too little of themselves when they choose using the Emmental Cheese from Redmond and expect their information to be safe.

The MS marketing machine is truly brilliant, they get away with anything without ever getting sued for selling subpar products against high prices.

Re: How did they find out it was China?

Just a process of elimination, we have some embarrassing news coming, so what can we give to the press that would distract the public - need to have something that was dangerous but thwarted - but don't want to suggest its a country that we've painted as inferior to the choices were Russia or China - now, as Russia has already been accused of cybercrime, to accuse again would imply we are somewhat incompetent at combating them so China is the obvious choice.

Far more fun looking for the news that this announcement is designed to distract from

Re: How's this...

"Since China built a physical wall to keep out the rest of the world, why not enforce it to keep them inside it?"

Because the goal is to punish China, and the people who care most about what enters and leave China aren't the chinese. They're fine without us in comparison to everybody else without them.