I bet my name that the hack involved negligence or social engineering. Nobody today is crazy enough to try to hack some high-tech AI-managed firewall.
People on the other hand are the most critical and vulnerable asset, and awareness the least invested in.

I just found another interesting perspective I shared on observing the startup environment from security perspective:

https://medium.com/trying2understand/startups-and-the-fish-pond-analogy-38b12560ba6f