Skip to main content
close search
site logo
Dive Brief

Top US senator calls out supply-chain risk with DoD contractors

The Senate Intelligence Committee chairman questioned the security of Microsoft’s “digital escort” arrangement with its Chinese employees.

Published July 18, 2025
Eric Geller's headshot
Senior Reporter
Microsoft, antitrust, Alaily, FTC. Google
A logo outside the Microsoft booth at the GSMA Mobile World Congress in Barcelona, Spain. A Republican senator is asking the U.S. Department of Defense about Microsoft's use of Chinese employees to maintain military computer networks. David Ramos via Getty Images
This audio is auto-generated. Please let us know if you have feedback.

Dive Brief:

  • Senate Intelligence Committee Chairman Tom Cotton, R-Ark., wants the Defense Department to investigate its contractors’ reliance on Chinese workers following a report about Microsoft’s use of engineers in China to perform sensitive tasks.
  • “DoD must guard against all potential threats within its supply chain, including those from subcontractors,” Cotton wrote in a Wednesday letter to Secretary of Defense Pete Hegseth.
  • Cotton’s inquiry reflects deep unease within Congress about the security of military computer systems, given Microsoft’s unusual arrangement with its Chinese engineers.

Dive Insight:

Cotton’s letter came in response to a July 15 ProPublica story that exposed how Microsoft has been using Chinese employees to “escort” its American workers through the process of making changes to the Pentagon’s computer systems. “We’re trusting that what they’re doing isn’t malicious, but we really can’t tell,” one “digital escort” told ProPublica, which described the arrangement as “critical to Microsoft winning the federal government’s cloud computing business a decade ago.”

Cotton asked Hegseth for a list of all military contractors that “hire Chinese personnel to provide maintenance or other services on DoD systems,” as well as a list of subcontractors that hire digital escorts for Microsoft and other contractors. He also requested information about the hiring and training protocols for those escorts.

“While this arrangement technically meets the requirement that U.S. citizens handle sensitive data,” Cotton wrote, “digital escorts often do not have the technical training or expertise needed to catch malicious code or suspicious behavior.”

The congressional oversight suggests that Microsoft and other high-profile government contractors with large Chinese businesses are likely to face intense scrutiny over their supply-chain security practices.

Microsoft in particular has been in the U.S. government’s crosshairs for years because of how its lax security practices have enabled massive cyberattacks on federal systems. One of those attack campaigns, which targeted Microsoft Exchange servers through a zero-day vulnerability, began with activity by Chinese government-linked hackers, according to federal prosecutors.

Microsoft did not immediately respond to a request for comment about Cotton’s letter.

Editors' picks

Company Announcements

View all | Post a press release
Lab 1 unveils industry-first capability to safely preview exposed files from data breaches
From Lab 1
July 10, 2025
Lab 1 logo
Miggo Redefines Vulnerability Management with Launch of VulnDB
From McKinsey Next Trend Cyber News
July 15, 2025
Anne Arundel Dermatology Data Breach Investigation
From Migliaccio & Rathod LLP
July 17, 2025
Editors' picks
Latest in Vulnerability
Industry Dive is an Informa TechTarget business.
© 2025 TechTarget, Inc. or its subsidiaries. All rights reserved. | View our other publications | Privacy policy | Terms of use | Take down policy.
Cookie Preferences / Do Not Sell
This website is owned and operated by Informa TechTarget, part of a global network that informs, influences and connects the world's technology buyers and sellers. All copyright resides with them. Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. TechTarget, Inc.'s registered office is 275 Grove St. Newton, MA 02466.