Microsoft Security

From graph-based context to build-your-own Microsoft Security Copilot agents, we're introducing a new AI-ready security platform and innovations to empower defenders in the era of agentic AI: msft.it/6010sQNtI #MSSecure

Zero Trust for AI, now a formal part of our Zero Trust strategy. Because AI stopped being "the next thing” and started becoming scalable infrastructure. Explore the evolution and get practical guidance for implementing your Zero Trust for AI strategy. Plus, you can assess your AI security and next steps with our updated Zero Trust Workshop: msft.it/6013QqKmb

Securing AI is foundational to what comes next. 🚀 Hear from Rohan Kumar, CVP of Security, at #M365Con26 on how Microsoft is building trust, protection, and governance for AI. Read the blog: msft.it/6014QlwRY Register: msft.it/6011QlwR9 msft.it/6012QlwRi

Our latest email security benchmarking data is out, revealing how modern email threats are detected and stopped by Microsoft Defender, SEG providers, and ICES solutions. Learn how this data can inform your security decisions: msft.it/6012Ql8aj

Generally available on May 1, Agent 365 is the control plane for all your managed AI agents, giving you visibility, governance, and security control—for teams that are already juggling enough. Learn more: msft.it/6013QiocR

|￣￣￣￣￣￣￣￣￣￣￣ | | sign up for our Pre-Day | | event at #RSAC | |＿____＿＿＿＿＿＿＿＿_| \ (•◡•) / \ / --- | | msft.it/6018Q5hQ6

We can’t predict every way AI will break or be abused. But we can identify what could go wrong, understand the impact, and design systems that mitigate risk. That’s what threat modeling looks like—and in the age of AI, it looks very different from traditional systems. Learn how threat modeling needs to evolve: msft.it/6013QbICD

@MSCloud Can't wait!

Join Microsoft at #MWC to see how intelligence and trust are transforming telco. Find us in Hall 3, Booth 3H30. msft.it/6013QXDMx

Microsoft Security Experts were able to recognize, investigate, and stop this attack by turning subtle signals into decisive action. They could help your org too: msft.it/6015QZU4t

3️⃣ Rapid copy/paste execution and unusual PowerShell activity.​ What attack could be happening?

Test your knowledge: Three clues. Three attacks. Can you recognize the threats? Microsoft Security Experts did.​ Reply with your guesses 🧵

@RealityPrimero You got it!

@msftsecurity Either it is OpenClaw gone crazy or "Living Off the Land, LOL" and "Superhuman Behavior." So some type of LOL binary.

@RealityPrimero Correct! Two logins, thousands of miles apart = possible fake employee infiltration; no time travel needed.

@msftsecurity Likely either a FTL time machine is involved. But since those don't exist, it is "impossible travel." Credential compromise.

@StormyCloudInc Well said!

@msftsecurity Exposure management is leadership responsibility.

NEW guide available to put you on the path to proactive defense. This guide breaks down five levels of exposure management maturity, measuring how organizations identify, prioritize, and act on risk. Which level are you? Learn more: msft.it/6011QnAZW

@PreambleAI Great insight!

@msftsecurity Runtime checks are a good start. The gap we keep seeing: most teams test for expected misuse but not adversarial manipulation. Prompt injection, confused deputy attacks, tool chain hijacking. These need red teaming, not just monitoring. You have to think like the attacker.

Are you pressure-testing your AI agents? Verifying and controlling agent behavior during runtime matters. Here are 3 scenarios where threat actors attempt to manipulate agents... and how webhook-based runtime checks catch it: msft.it/6011QMXC7

@theghostme Threat‑Informed Defense fits right into this!

@msftsecurity What about Threat-Informed Defense?

Have modern SOCs reached a breaking point? 🛠️ NEW report identifies five operational pressures that are putting the burden on security teams. To navigate these shifts, security leaders should prioritize identity, endpoint, and unified environments. Get details in the State of the SOC report: msft.it/6016QV66s

In the market for an AI‑ready security platform? Just released: our buyers guide with practical tips on what to look for in a SIEM when modernizing your SOC. Get it here: msft.it/6015QrzYh