In November 2023, Microsoft announced our strategy to unify security operations by bringing the best of XDR and SIEM together. Our first step was bringing Microsoft Sentinel into the Defender portal, giving teams a single, comprehensive view of incidents, reducing queue management, enriched threat intel, streamlining response and[…]
Read More
DLP (Data Loss Prevention) for Power Automate enables administrators to manage data access from both cloud and desktop Power Automate flows, as well as agent flows in Copilot Studio. Administrators configure Data policies to permit or restrict connectors and actions from being accessed by flows. We are thrilled[…]
Read More
Since 2024, Microsoft Threat Intelligence has observed remote information technology (IT) workers deployed by North Korea leveraging AI to improve the scale and sophistication of their operations, steal data, and generate revenue for the Democratic People’s Republic of Korea (DPRK). Among the changes noted in the North Korean[…]
Read More
Today, Microsoft Threat Intelligence Center is excited to announce the release of RIFT, a tool designed to assist malware analysts automate the identification of attacker-written code within Rust binaries. Known for its efficiency, type safety, and robust memory safety, Rust has increasingly become a tool for creating malware,[…]
Read More
In this blog you will hear directly from Microsoft’s Deputy Chief Information Security Officer (CISO) for Azure and operating systems, Mark Russinovich, about how Microsoft operationalized security durability at scale. This blog is part of an ongoing series where our Deputy CISOs share their thoughts on what is[…]
Read More
Managing multiple websites across environments can be overwhelming, especially when trying to stay on top of expiring sites, performance gaps, and security configurations. This is where the Action Center in Power Pages Home comes in. It offers a streamlined, centralized experience to help makers and site owners take[…]
Read MoreThe cloud-native application protection platform (CNAPP) market continues to evolve rapidly as organizations look to secure increasingly complex cloud environments. In the recently published 2025 IDC MarketScape for Worldwide CNAPP, Microsoft has been recognized as a Leader, reaffirming its commitment to delivering comprehensive, AI-powered, and integrated security solutions[…]
Read More
What is a security operations center? Learn more ↗ Microsoft is proud to be named a Leader in The Forrester Wave™: Security Analytics Platforms, Q2 2025—which we believe reflects our deep investment in innovation and commitment to support security operations centers (SOCs)’s critical mission. This strong result underscores[…]
Read More
We’re excited to announce the public preview of two powerful new capabilities in Microsoft Power Apps: Agent APIs and Agent response component. These features were shown in the Microsoft Build session Extend your Copilot Agent in Power Apps with Copilot Studio and new SDK’s. With them, you unlock new ways[…]
Read More
Imagine steering a vessel through Arctic waters where 90% of iceberg mass lies hidden beneath the surface; your lookouts equipped only with telescopes and blind to the submerged threats. This parallels today’s cybersecurity landscape: According to the Microsoft Digital Defense Report 2024, nearly 80% organizations have attack paths[…]
Read More