According to the office of U.S. Senator Ron Wyden and a number of American security experts, Microsoft could have prevented some of the damage caused by the SolarWinds hack had they fixed known problems in the cloud software that facilitated the hack. As these issues were not fixed it resulted in at least nine federal government agencies being compromised.
The vulnerability allowed hackers to fake the identity of government employees in order to gain access to cloud services and was first publically revealed in 2017, but it was left unpatched, resulting in a hack in 2020. Senator Wyden has a history of faulting technology companies on their many technical, privacy and security issues as a member of the Senate Intelligence Committee. He has now scolded Microsoft for not doing more to prevent the hack.