A very common phishing technique is to use Azure instances with their Microsoft issued SSL certificates to host Office / Windows credential phishing pages. End users are very easily fooled by these URL's because of the Windows.net domain name.

Microsoft has a very difficult time policing this type of abuse, and will will be issuing a Warning for all windows.net urls that are protected by phishing protection.