Microsoft warns Russian hackers have expanded their attacks - The Washington Post

"It's clear that authentication is a mess within Microsoft," said Adam Meyers, senior vice president at CrowdStrike, which like SentinelOne competes in the security business with Microsoft. Meyers said it was dangerous that many government customers rely on Microsoft not only for word processing and email, but also authentication and security...

https://www.washingtonpost.com/technology/2024/03/08/microsoft-hack-email-russia/