Microsoft’s cyber summit all talk, no transparency?
Why is Microsoft's Cyber Summit happening behind closed doors?
· TechRadarNews By Eric O'Neill published 3 October 2024
On September 10, Microsoft hosted a Cyber Summit that could have far-reaching implications for the future of cybersecurity. Unfortunately, while this summit could be a game changer, it was behind closed doors—leaving many of us on the outside looking in. We’ve seen this pattern before: a breach happens, Microsoft apologizes, promises to do better, and then... not much changes. If the tech giant really wants to make meaningful strides, it’s going to have to change not just its security practices, but also how it engages with the broader community.
Eric O'Neill
Founder of The Georgetown Group and NeXasure AI.
The transparency dilemma: come on, Microsoft—let us in!
First things first: Transparency. Microsoft’s refusal to invite both the press and the public to this Cyber Summit raises eyebrows, if not alarms. Sure, we can appreciate the need for candid discussions behind closed doors, but this summit wasn’t just a boardroom briefing—it’s a conversation that impacts millions of users. After all, breaches don’t discriminate between corporations, governments, or everyday consumers.
Microsoft has an enormous opportunity here, but it seems more interested in controlling the narrative than engaging in open dialogue. If the summit is all about polishing its image rather than tackling real issues, that’s a problem. Security isn’t something you sweep under the rug, especially not when your mistakes have affected millions of Windows devices, like the CrowdStrike update debacle earlier this year.
Bring in the experts: why diverse collaboration matters
In cybersecurity, diversity of thought is crucial. And no, I’m not talking about diversity in a corporate HR sense (though that’s important too). I’m talking about bringing together diverse security perspectives—white-hat hackers, pentesters, and researchers—who can test the strength of Microsoft’s systems in ways that in-house teams simply can’t. The more eyes on the problem, the better the chances of finding vulnerabilities before the bad guys do.
Microsoft should be actively collaborating with these experts, not just keeping them at arm’s length. Let’s be real here: The stakes are too high to let pride get in the way of progress. Closed-door summits limit the scope of collaboration, which is not what the cybersecurity community needs. Microsoft owes it to their user base, and to the entire tech world, to listen to those outside voices.
The kernel conundrum: explaining the tech in simple terms
Here’s where things get a little technical. But stay with me—I promise it’s worth it.
The kernel is like the beating heart of your computer’s operating system. It controls everything, from how apps interact with your hardware to how secure your system is. In essence, if the kernel is compromised, your entire system is vulnerable. And here’s the kicker: Microsoft currently allows third-party access to the kernel for certain applications (think of it like giving the keys to your house to the plumber). While this access can be necessary for security software, it also opens the door to a slew of potential security risks.
Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
Contact me with news and offers from other Future brandsReceive email from us on behalf of our trusted partners or sponsors