-
Microsoft Moves Up Quantum Safe Security Timeline
Microsoft is accelerating its quantum-safe security timeline, saying advances in quantum computing and new federal requirements have turned post-quantum cryptography into an immediate engineering priority.
-
How GitHub used secret scanning to reach inbox zero
GitHub cut over 20,000 secret scanning alerts to zero in nine months, bulk-closing roughly 18,000 inactive test secrets, enforcing scanning and push protection everywhere, and validating which credentials were still live.
-
Behind the Build with Gigamon: Enriching Microsoft Sentinel with Network-Derived Telemetry
Gigamon and Microsoft integrated network telemetry into Sentinel to enhance security investigations with real-time context and AI insights.
-
Protect sensitive data in motion across SaaS and AI apps with Microsoft Purview and Microsoft Entra
Microsoft extends data security to the network layer in public preview, combining Purview classification with Entra identity-aware enforcement to detect and block sensitive data flowing to shadow AI, unmanaged SaaS, and personal cloud in real time.
-
Advanced Microsoft Intune capabilities now available in Microsoft 365 E3 and E5
As of July 1, advanced Microsoft Intune Suite capabilities are included in Microsoft 365 E5 with select capabilities in E3, spanning Endpoint Privilege Management, Cloud PKI, Remote Help, Advanced Analytics, and Security Copilot.
-
Microsoft named a leader in the Frost Radar for cloud and application runtime security
Microsoft is positioned as a visionary leader in Frost & Sullivan's 2026 Frost Radar for Cloud/Application Runtime Security, reflecting its hyperscale ecosystem, Defender for Cloud integration with Defender XDR, and large customer base.
-
Monthly news - July 2026
The July 2026 Defender roundup brings Workbooks Advanced Hunting and workspace-filter capabilities to GA, adds MTO Tenant Groups, new cloud audit hunting tables, and local AI agent discovery and runtime protection.
-
AI-Accelerated Supply Chain Attacks with Mackenzie Jackson
Mackenzie Jackson discusses AI-accelerated software supply-chain attacks, the risk of highly privileged developer accounts and exposed secrets, and why waiting 48 hours before installing newly released packages reduces malware exposure.
-
Accelerating the quantum-safe timeline
Microsoft is accelerating its Quantum Safe Program to transition critical products to post-quantum cryptography by 2029, prioritizing network cryptography upgrades, crypto-agility for stored data, and modernized cryptographic trust chains.
-
What’s new in Microsoft Sentinel: June 2026
Microsoft Sentinel's June updates make expanded ASIM parsers and two new schemas generally available, add the Agent Identities Asset Connector in preview, and introduce Sentinel MCP graph tools for investigating entity relationships.
-
The AI-first SOC: Copilot, UEBA, threat intelligence, and SOC optimization
This series finale explains how moving Sentinel into Defender unlocks Security Copilot, a unified UEBA experience with new data sources, native MDTI convergence, and cross-service SOC optimization recommendations, most of which activate once a workspace is connected.
-
What’s new in Microsoft Security: June 2026
June's Microsoft Security updates include the codename MDASH agentic vulnerability scanning system, Defender protection for local AI agents, Entra Backup and Recovery reaching GA, database protection for AWS RDS, and expanded multicloud coverage.
-
Securing AI agents: When AI tools move from reading to acting
Microsoft Incident Response walks through an MCP tool-poisoning attack where a silently modified tool description redirects a Copilot Studio agent to exfiltrate data, and maps Microsoft controls for detecting and preventing it.
-
Azure Defender vs Azure Security Center
The guide traces how Azure Security Center's posture management and Azure Defender's workload protection merged into Microsoft Defender for Cloud, where foundational CSPM remains free and Cloud Workload Protection plans are paid.
-
Understand your Sentinel tables at a glance: Monitor with table insights
Table insights is a new panel on the Sentinel Tables page showing 30-day ingestion volume per tier, top five tables by volume, last-data-received, estimated daily cost, and volume anomalies so teams can spot silent connectors and cost spikes.
-
Chromium extension uses AI‑related branding to redirect browser search
The malicious Chromium extension pretends to be Perplexity AI to steal user search data via MV3 and DNR rules.
-
Secure containers from code to runtime | Microsoft Defender
Matt McSpirit demonstrates how Microsoft Defender for Cloud detects container hijacking through binary drift, contains threats with Security Copilot-guided pod isolation, blocks vulnerable images, and pushes CVE fixes to GitHub and back.
-
Workspace Outbound Access Protection (OAP) for Real-Time Intelligence (Preview)
Workspace Outbound Access Protection in Microsoft Fabric blocks data exfiltration risks with real-time intelligence while preserving common workflows.
-
Securing zero-copy distribution patterns with OneLake security and shortcuts
Onelake boosts zero-copy data sharing with fine-grained security and fast transfer paths for optimal performance and safety.