Probably to have something out there so that when they admit it was a foreign actor who deleted them, it won't seem like big news that it is. That's typical for MSFT and how they handle these things.
It is always a "foreign actor". I bet that all bullshit implemented in Windows in the last years (telemetry, spying, dumbed down UI) was also from a "foreign actor". /s
they got called out for hiding the reporting of it in tooling that can't be accessed by most security teams.
and they have some large contracts to which they are legally obligated to disclose it, maybe why they tried to hide it
Probably to have something out there so that when they admit it was a foreign actor who deleted them, it won't seem like big news that it is. That's typical for MSFT and how they handle these things.
[dead]
> when they admit it was a foreign actor
It is always a "foreign actor". I bet that all bullshit implemented in Windows in the last years (telemetry, spying, dumbed down UI) was also from a "foreign actor". /s