Does default azure policy pose any security issues? I see that most engineers prefer using default policies rather than custom. Whenever there is a cyber attack at Microsoft, it will hit these default policies first. What are your thoughts? Thanks in advance!