CrowdStrike’s chief executive George Kurtz said the hackers were able to exploit Microsoft’s overly complicated and „antiquated“ architecture.
“The threat actor took advantage of systemic weaknesses in the Windows authentication architecture, allowing it to move laterally within the network” and reach the cloud environment while bypassing multifactor authentication, said Kurtz.
https://www.infosecurity-magazine.com/news/crowdstrike-slams-microsoft-over/