Words of Wisdom:
“When introduced to someone, make eye contact with them and count to 4. You’ll both remember each other”
“Average returns sustained over an above-average period of time yield extraordinary results. Buy and Hold!
General
Monthly news – April 2026 | Microsoft Defender XDR Blog
Monthly news – March 2026 | Microsoft Defender XDR Blog
What’s new in Microsoft Defender XDR | Microsoft Learn
AI Security
Incident response for AI: Same fire, different fuel | Microsoft Security Blog
Secure agentic AI end-to-end | Microsoft Security Blog
Secure agentic AI for your Frontier Transformation | Microsoft Security Blog
What’s new in Microsoft AI security | Microsoft Learn
Agent365
Microsoft Agent 365: The Control Plane for Agents | Microsoft Official Page
Secure AI agents at scale using Microsoft Agent 365 | Microsoft Learn
Overview of Microsoft Agent 365 | Microsoft Learn
Microsoft Agent 365 documentation hub | Microsoft Learn
Azure Security & Defender for Cloud News
What’s new in Defender for Cloud features (April 2026 updates) | Microsoft Learn
Threat Intelligence
Inside an AI‑enabled device code phishing campaign | Microsoft Security Blog
Microsoft Entra
Microsoft Entra agents for identity security | Microsoft Learn
Device Management & Protection (Intune)
What’s new in Microsoft Intune (April 2026) | Microsoft Learn
Defender XDR & Sentinel
Monthly news – April 2026 | Microsoft Defender XDR Blog
What’s new in Microsoft Sentinel | Microsoft Learn
What’s New in Microsoft Sentinel: March 2026 | Microsoft Community Hub
Best practices for Microsoft Sentinel | Microsoft Learn
Defender XDR + Sentinel integration guide | Microsoft Learn
Copilot for Security
Microsoft Security Copilot overview | Microsoft Learn
Security Copilot agents overview | Microsoft Learn
Purview – Compliance & Governance
Microsoft Purview protections for generative AI & Copilot | Microsoft Learn
Use Microsoft Purview to manage data security for Microsoft 365 Copilot | Microsoft Learn
Purview for AI agents & Agent 365 | Microsoft Learn
Featured Resources & Deep Dives
What’s New in Defender (March & April 2026)
What’s new in Microsoft Defender XDR | Microsoft Learn (Official Reference)
March 2026: New identity security capabilities for human and non-human identities
April 2026:
(Preview) View current status of automatic attack disruption and predictive shielding actions in the Activities tab of incidents
(Preview) Enhanced AIAgentsInfo table with broader visibility into all AI agents
(GA) Built-in alert tuning rules now generally available for Defender for Endpoint and Defender for Office 365
New Defender Experts navigation entry in the Microsoft Defender portal
Featured Items This Week:
General Availability: Microsoft Entra passkeys on Windows
ID: MC1282568 | Service: Microsoft Entra | Tags: Feature update, User impact, Admin impact
Microsoft Entra passkeys on Windows will be generally available from late April 2026, enabling passwordless, phishing-resistant sign-in on Windows dev...
Message center post structure updates may require admin script changes
ID: MC1282308 | Service: Microsoft 365 suite | Tags: Feature update, Admin impact
Microsoft 365 Message center post headings will be standardized starting May 16, 2026, affecting admins using scripts or automation based on old headi...
Modernized Change Management for Microsoft 365
ID: MC1282306 | Service: Microsoft 365 suite | Tags: New feature, User impact, Admin impact
Microsoft 365 introduces a modernized change management model with flexible release audiences (Frontier, Standard, Deferred), enhanced Message center ...
Microsoft Purview: Data Lifecycle Management- Azure PST Import
New Roadmap Items:
Outlook: ICS Preview experience
ID: 560534 | Product: Outlook | Status: In development
Users can now seamlessly import calendar events from ICS files & preview them before importing in three cases: when dragging ICS files directly into t...
Microsoft Purview: Insider Risk Management – Viewing AI interaction messages for anonymized users in IRM
ID: 560599 | Product: Microsoft Purview | Status: In development
Customers can now access and review the underlying risky prompt and response interactions generated by users during AI usage, even when user anonymiza...
Microsoft Viva: Viva Glint - Configure data retention policy for Viva Glint
ID: 560551 | Product: Microsoft Viva | Status: In development
This feature will introduce the capability for Glint service administrators to configure a data retention policy for their Glint instances based on th...
Microsoft Viva: Viva Glint - Configure user and survey data retention for deleted users in Viva Glint
ID: 560548 | Product: Microsoft Viva | Status: In development
With the new control in Viva Glint, service administrators can now configure whether to retain or delete survey and relevant indefinable user data for...
Microsoft Teams: Report external users for security concerns in Teams
ID: 560547 | Product: Microsoft Teams | Status: In development
Users can now report suspicious external users directly within Teams, alongside existing block actions. Reports are surfaced in the Teams admin center...
Updated Roadmap Items:
Microsoft 365: Modernized Access Denied Web Experience
ID: 553214 | Product: Microsoft 365, OneDrive, SharePoint | Status: Rolling out
We’re introducing a visual refresh of the Access Denied web experience across Microsoft 365, where users can request access to files, sites, and meeti...
Microsoft Teams: Create workflows with slash commands
ID: 558544 | Product: Microsoft Teams | Status: Rolling out
Now you can create workflows quickly and easily using slash commands directly from the Teams compose box.
Microsoft 365: The Next Generation of File & Folder Sharing
ID: 492622 | Product: Excel, Microsoft 365, OneDrive, PowerPoint, SharePoint, Word | Status: In development
We’re now introducing the third generation of the Microsoft 365 sharing experience designed to make collaboration simpler, smarter, and more secure by...
Microsoft 365 app: Microsoft Loop - Departed user content workflows for user-owned Loop workspaces
ID: 421612 | Product: Microsoft 365 app | Status: Rolling out
Manage retention and deletion workflows for user-owned Loop workspaces like Copilot Pages when users leave the organization. Notify and provide tempor...
Microsoft Purview: Data Security Posture Management for AI: Fabric integration in Data Risk Assessment
ID: 553217 | Product: Microsoft Purview | Status: Launched
Within Purview’s Data Security Posture Management (preview), Data Risk Assessment now supports scanning all Fabric workspaces for potentially oversharing
