SharePointMicrosoft has expanded Copilot in SharePoint with new content creation, file management, automation, and skills capabilities, while also making the experience on by default for Microsoft 365 Copilot licensed users. The July 2026 updates matter because they help teams turn SharePoint content into documents, dashboards, and workflows faster, with stronger governance and a more transparent chat experience.
3 min read · Jul 17, 2026
SecurityMicrosoft used Black Hat USA 2026 to spotlight how attackers are abusing trusted software, identities, cloud services, and AI systems to scale attacks. The company also highlighted ongoing npm supply chain investigations, new Microsoft Defender Experts capabilities, and research sessions that give security teams practical guidance for defending trust paths.
3 min read · Jul 17, 2026
SecurityMicrosoft reports increased ACR Stealer activity targeting enterprises through ClickFix social engineering, with two intrusion chains using WebDAV, Python loaders, MSHTA, obfuscated PowerShell, and steganography. The campaigns focus on stealing browser credentials, session tokens, and sensitive documents, making early detection and user awareness critical for defenders.
3 min read · Jul 17, 2026
SecurityMicrosoft is urging organizations to treat AI agents as first-class identities with tightly scoped access, explicit role assignments, and controlled tool bindings. The guidance matters because agentic workflows can span multiple systems, increasing the blast radius of misconfigured permissions, weak audit trails, and unclear accountability.
3 min read · Jul 16, 2026
Entra IDMicrosoft is urging organizations to treat AI agent governance as an immediate identity and access problem, not a future concern. Based on feedback from identity professionals at Identiverse 2026, the company highlights unmanaged agent sprawl, orphaned agents, and weak agent-to-agent controls, while positioning Microsoft Entra Agent ID and Agent 365 as the foundation for inventory, ownership, and policy enforcement.
3 min read · Jul 16, 2026
AzureMicrosoft says a new Forrester Total Economic Impact study found Azure Databricks delivered a modeled 331% three-year ROI, $58.1 million in net present value, and payback in under six months. The findings matter for Azure customers evaluating data and AI platforms because they tie Microsoft’s first-party integrations, governance, and performance claims to measurable business outcomes.
3 min read · Jul 16, 2026
SecurityMicrosoft Threat Intelligence uncovered a coordinated compromise of the AsyncAPI npm organization that republished five package versions with malicious code that runs when packages are imported, not just installed. The incident matters because common mitigations like npm install --ignore-scripts do not stop this technique, putting developer workstations, CI/CD pipelines, and production services at risk if they resolved the affected versions.
3 min read · Jul 16, 2026
SecurityMicrosoft has launched Defender Experts Threat Intelligence and expanded Defender Experts MDR with third-party and multi-cloud coverage powered by Microsoft Sentinel. The update helps security teams turn threat intelligence into action faster by combining expert-led guidance, unified Defender portal workflows, and broader cross-platform incident response.
3 min read · Jul 15, 2026
SecurityMicrosoft detailed how threat activity associated with ShinyHunters abused trusted OAuth relationships in Salesforce to gain persistent access, exfiltrate CRM data, and evade traditional sign-in detections. The company also announced improved Salesforce telemetry and near-real-time detection in Defender for Cloud Apps, giving security teams better visibility into connected apps, OAuth scopes, and suspicious SaaS activity.
3 min read · Jul 13, 2026
SecurityMicrosoft will make passkeys the default authentication experience in Entra ID starting September 1, 2026, automatically prompting users currently using SMS or voice MFA to register a passkey. The change matters because Microsoft-provided SMS and voice authentication will be retired on February 1, 2027, pushing organizations toward phishing-resistant authentication and requiring admins to plan migrations now.
3 min read · Jul 13, 2026
AzureMicrosoft has announced major Microsoft Foundry updates, including general availability of the GPT-5.6 model family, the Asia-Pacific Data Zone, and hosted agents in Foundry Agent Service. These changes matter because they help organizations build, govern, and deploy production AI agents on a single Azure-based platform with stronger regional compliance and Microsoft 365 distribution options.
3 min read · Jul 12, 2026
SecurityMicrosoft’s July 2026 Secure Future Initiative progress report highlights major security gains across identity, cloud resource isolation, vulnerability remediation, and AI-driven defense. The update matters to IT and security teams because it pairs measurable hardening progress with practical guidance on phishing-resistant MFA, secure defaults, composite attack paths, and post-quantum readiness.
3 min read · Jul 10, 2026