No one is immune from cybersecurity attacks, it seems. Just days ago, several senior Microsoft executives fell victim to a "password spray attack" coming from Russia. Did the company downplay how serious this was? And did it fail to use some basic best practices?