Microsoft openly admitting they have not(!) had MFA, network segmentation, least privilege, software lifecycle, jump-servers, asset- and software-inventory etc for Azure PROD for years and they are not there yet.
This whole report is just so scary. At the same time, good that they are finally working on it and making it transparent.