FedRAMP Authorizes Microsoft's GCC High Despite Flaws
ProPublica reports that in late 2024 FedRAMP authorized Microsoft's Government Community Cloud High despite persistent gaps in encryption documentation and security evidence. Reviewers found missing diagrams and unresolved doubts dating to 2020, yet authorization proceeded as GCC High was already widely deployed across federal agencies. The findings highlight FedRAMP understaffing, a $10 million annual budget, and risks to federal cloud-security assurance.
Scoring Rationale
ProPublica's exclusive reporting using internal memos reveals a significant procedural failure with broad federal impact, giving high novelty, scope, and credibility. The score is boosted by authoritative sourcing and same-day publication; limited technical remediation details prevent a slightly higher score.
Practice interview problems based on real data
1,500+ SQL & Python problems across 15 industry datasets — the exact type of data you work with.
Try 250 free problemsStep-by-step roadmaps from zero to job-ready — curated courses, salary data, and the exact learning order that gets you hired.
Sources
- Read OriginalFederal Cyber Experts Thought Microsoft’s Cloud Was “A Pile Of Shit.” They Approved It Anyway.techdirt.com
