02/26/2021
Microsoft s Active Directory authentication solution got notably skewered during a Feb. 23 U.S. Senate hearing on the SolarWinds Orion software hack.
The hearing by the Senate Select Committee on Intelligence focused on how a software implant and other methods went undetected, enabling an espionage campaign that affected nine federal agencies and 100 companies, per a White House estimate. The hearing included testimony from four software company heads, who also answered senators questions about the attack.
A common theme associated with the comments was whether software security breaches should be legally mandatory for organizations.
A video recording of the hearing is available on demand at this page.