WASHINGTON (Realist English). Microsoft announced Friday it has revised its internal protocols to ensure that no engineers based in China provide technical support for U.S. defense clients using the company’s cloud infrastructure. The policy change affects services under the Azure cloud division and was implemented in response to national security concerns raised earlier this week.
“In response to concerns raised earlier this week about U.S.-supervised foreign engineers, Microsoft has made changes to our support for U.S. Government customers to assure that no China-based engineering teams are providing technical assistance for DoD Government cloud and related services,” wrote Frank Shaw, Microsoft’s chief communications officer, in a post on X.
The announcement came shortly after ProPublica published an investigative report detailing how engineers in China were involved in supporting U.S. Department of Defense (DoD) systems operated through Microsoft’s cloud. According to the report, Chinese employees were technically supervised by U.S.-based “digital escorts” — a security protocol that ProPublica characterized as insufficient and potentially exposing U.S. infrastructure to cyber risk.
The decision to restructure Azure’s government client support highlights Microsoft’s growing sensitivity to cybersecurity vulnerabilities in its public sector operations. Azure, now responsible for more than 25% of the company’s total revenue, ranks as the second-largest cloud service globally after Amazon Web Services, surpassing Google Cloud. More than half of Microsoft’s $70 billion in Q1 revenue came from U.S.-based clients, with government contracts making up a significant portion, according to the company’s latest earnings report.
Defense Secretary Pete Hegseth responded sharply to the ProPublica findings, calling the situation “unacceptable” in light of current digital threats. “This architecture is a legacy system created over a decade ago, during the Obama administration,” Hegseth said in a video posted Friday. He confirmed the Department of Defense will review all cloud systems to identify similar vulnerabilities.
Microsoft, in its response to ProPublica, initially maintained that its staff and contractors operated in compliance with U.S. government regulations. In Friday’s statement, Shaw emphasized that Microsoft “remains committed to providing the most secure services possible to the U.S. government,” adding that the company would continue to “evaluate and adjust our security protocols as needed” in cooperation with national security agencies.
The incident underscores the challenges global technology firms face in balancing operational efficiency with geopolitical risk, particularly when government clients are involved.
