In a swift and dramatic reversal, Microsoft has announced it will cease using China-based engineers for technical support of its cloud computing systems serving the U.S. military. This significant policy shift comes in the wake of an explosive investigative report and immediate, forceful action from newly appointed Secretary of Defense Pete Hegseth. The Pentagon has simultaneously launched an urgent two-week review of all its cloud service contracts to ensure no similar vulnerabilities exist.
The controversy ignited earlier this week following a ProPublica investigation that revealed Microsoft’s practice of utilizing engineers located in China to maintain highly sensitive Department of Defense (DoD) computer systems. The report highlighted concerns that these China-based personnel, while ostensibly supervised by U.S. “digital escorts” with security clearances, often possessed greater technical expertise than their American counterparts, potentially leaving critical defense data vulnerable to espionage or cyberattacks from a leading adversary.
Secretary of Defense Pete Hegseth, who assumed his role in January 2025, wasted no time in addressing the revelations. In a video statement released Friday, Hegseth decried the arrangement as “unacceptable, especially in today’s digital threat environment.” He characterized the system as a “legacy system created over a decade ago, during the Obama administration,” and emphasized the immediate need to ensure the digital systems used by the Defense Department are “ironclad and impenetrable.”
“I’m announcing that China will no longer have any involvement whatsoever in our cloud services, effective immediately,” Hegseth declared. He further confirmed that the DoD would initiate an expedited two-week review to uncover any other instances where foreign-based engineers, particularly those from China, might be involved in sensitive defense cloud contracts across the department. “We will continue to monitor and counter all threats to our military infrastructure and online networks,” he added.
Microsoft’s response was swift. Frank Shaw, Microsoft’s Chief Communications Officer, confirmed on social media that the company had “made changes to our support for US Government customers to assure that no China-based engineering teams are providing technical assistance for DoD Government cloud and related services.” The company’s statement reiterated its commitment to providing the most secure services possible to the U.S. government and pledged to work with national security partners to evaluate and adjust security protocols.
The practice of using foreign-based engineers, even with U.S. oversight, has been a contentious issue. Critics, including Senator Tom Cotton (R-AR), who chairs the Senate Intelligence Committee, have long warned about the inherent risks of such arrangements. Senator Cotton had reportedly sent a letter to Secretary Hegseth seeking a full list of contractors employing Chinese personnel and details on the training and capabilities of the “digital escorts.” He underscored that China’s cyber capabilities represent “one of the most aggressive and dangerous threats to the United States.”
This episode casts a renewed spotlight on the complex intersection of globalized tech operations and national security. While tech giants like Microsoft rely on a vast global workforce, the sensitive nature of U.S. military data demands unwavering vigilance against potential threats within the supply chain. The swift actions by both Microsoft and the Pentagon signal a growing recognition of these evolving cyber challenges and a commitment to fortifying the nation’s digital defenses. The outcome of the Pentagon’s review will be closely watched, potentially shaping future guidelines for how technology companies contract with the U.S. government on critical national security infrastructure.