identity governance

Microsoft’s Copilot Connectors promise to end years of frantic context‑switching by letting Copilot read, index, and reason over data that lives outside the Microsoft 365 bubble, and they do it while keeping access tied to the tenant’s identity and permissions model. Background / Overview...

Digital identity has quietly moved from an abstract security concept to the plumbing of everyday life — and with that elevation has come a stark trade‑off: convenience versus control. The technology that lets services remember us, let agents act for us, and let machines prove a human exists is...

Microsoft’s Copilot Studio can be weaponized to steal OAuth tokens — an attack chain Datadog Security Labs has dubbed “CoPhish” — by hosting malicious agents on Microsoft domains and using the agents’ built‑in sign‑in workflows to deliver convincing OAuth consent prompts that exfiltrate tokens...

Microsoft has quietly added a new, no-cost layer to its Entra identity stack: Microsoft Entra ID Free, a tenant-level subscription that appears in billing accounts to surface tenant ownership, simplify tenant inventory, and provide an additional way to demonstrate and recover administrative...

Microsoft’s “Agent Factory” blueprint reframes the wave of agentic AI from a set of experimental point-solutions into a repeatable, enterprise-grade stack—one built around identity, open protocols, observability, and multi-agent orchestration—and proposes Azure AI Foundry as the practical...

Workday and Microsoft’s new integration aims to let organisations manage human employees and AI agents from a single, auditable plane — registering Copilot Studio and Azure AI Foundry agents into Workday’s Agent System of Record (ASOR) and giving each agent a verifiable Microsoft Entra Agent ID...

Bonfy.AI’s latest update to its Adaptive Content Security platform lands squarely in the intersection of AI adoption and enterprise security, expanding native integrations across Microsoft 365 and positioning an AI-first approach to Data Loss Prevention that specifically targets risks introduced...

Workday’s alignment with Microsoft marks a pragmatic shift from pilot-era AI experiments toward a governed, identity-first model for scaling agentic automation inside the enterprise, giving organizations a single plane to register, manage, and measure both human workers and AI agents across HR...

Workday and Microsoft have quietly stepped into the next phase of enterprise automation: they’re building the plumbing to let agentic AI workers — digital agents created in Microsoft’s developer ecosystem — obtain verified identities, join a corporate directory, and be managed alongside human...

Microsoft’s new Access Review Agent for Entra ID promises to turn one of the most tedious and error-prone identity-governance chores into a guided, AI-assisted workflow inside Microsoft Teams — but the convenience comes with clear prerequisites, operational trade-offs, and governance...

Palo Alto Networks has pushed a clear marker in the SASE arms race with the launch of Prisma SASE 4.0, a major platform refresh that explicitly frames the next phase of enterprise security as AI versus AI — protecting organizations not only from AI-augmented attackers, but from the uncontrolled...

Microsoft and the U.S. General Services Administration have struck a sweeping OneGov agreement that puts Microsoft’s cloud and AI stack — including Microsoft 365 Copilot, Azure services, Dynamics 365, and security tooling — on preferential terms for federal agencies, with Microsoft and GSA...

Microsoft’s deputy CISO for Identity lays out a clear warning: autonomous agents are moving from experiments to production, and without new identity, access, data, and runtime controls they will create risks that are fundamentally different from those posed by traditional users and service...

Azure’s new “Agent Factory” argument reframes the enterprise AI conversation: move beyond retrieval and chat to agents that reason, act, reflect, and collaborate—and use that capability to complete end-to-end business outcomes, not just return answers. The announcement and technical framing...

Identity research published in July surfaces two sobering truths for Windows shops: attackers can now bypass dMSA authentication in Windows Server 2025 to mass‑generate service account passwords for lateral movement, and misgoverned first‑party apps in Microsoft Entra ID can be abused to...

Microsoft has taken a significant step toward modernizing hybrid identity management with the introduction of the Group Source of Authority (SOA) feature in Entra ID, now available in public preview. This eagerly anticipated capability unlocks a new era of flexibility for IT administrators...

In today’s rapidly evolving digital landscape, enterprise IT and security teams are experiencing immense pressure: responding to never-ending threats, keeping up with device compliance, juggling complex configurations, and above all, maintaining efficient operations in a world where every second...

In an enterprise technology landscape undergoing rapid change, Microsoft’s unveiling of Entra Agent ID at the Build 2025 conference marks both a pivotal advance in secure AI adoption and a symbolic inflection point for digital workforce transformation. As autonomous agents proliferate in...

The unveiling of Microsoft Entra Agent ID at Microsoft Build 2025 marks a pivotal moment in the evolving landscape of digital identity management for AI-powered workplaces. This latest addition to Microsoft’s security portfolio signals a clear response to the growing demand for visibility...

Artificial intelligence agents have rapidly evolved from experimental novelties to essential digital teammates across industries, and Microsoft’s Build 2025 developer event emphatically confirmed their central role in the future of enterprise IT. Held at Microsoft’s Redmond campus, the annual...