2026-06
2026-06
This release tracker is LLM-curated and based on the official Microsoft product sources listed below. It provides an architect-grade summary of recent features, changes, and announcements. Always verify critical details against the official documentation. List of all raw markdown files for the releases are at https://github.com/pisinger/pisinger.github.io/tree/main/_ms_release_radar
Microsoft Security Release Radar - June 2026
π Microsoft Sentinel
| Indicator | Feature | Type | Description |
|---|---|---|---|
| π‘ | Reason over Microsoft Sentinel graphs with graph tool | Preview | Visual graph-based exploration of relationships across identities, devices, threats, and signals to assess coverage, dependencies, and configuration gaps via the MCP server. |
π‘οΈ Microsoft Defender Cloud
| Indicator | Feature | Type | Description |
|---|---|---|---|
| π’ | API security posture management for Function Apps and Logic Apps | GA | API discovery and security posture management extended to serverless and workflow APIs beyond Azure API Management. |
| π΅ | Expanded container support for cloud scopes | Update | Cloud scopes now support K8s namespace, K8s cluster, multi-cloud registry, and multi-cloud repository environment types. |
| π‘ | New multicloud security recommendations (60+) | Preview | Adds coverage across AWS services (AppFlow, AppStream, Cognito, Kinesis, etc.) and GCP networking recommendations. |
| π’ | SQL VA Express Configuration for Azure SQL MI and Synapse | GA | SQL Vulnerability Assessment Express Configuration now GA for Azure SQL Managed Instance and Azure Synapse Analytics; automatic enablement rolling out at subscription level. |
| π‘ | Discovery and posture for serverless container workloads | Preview | Inventory visibility, security recommendations, and attack path analysis for Azure Container Apps and Azure Container Instances. |
| π‘ | Kubernetes misconfiguration enforcement in Defender for Containers | Preview | Audit or block mode at admission time for Kubernetes resource configurations, preventing risky deployments before production. |
| π‘ | Vulnerability assessment extended to runtime-discovered container images on EKS and GKE | Preview | VA now covers images discovered at runtime on EKS and GKE that were not previously scanned from a registry. |
| π‘ | Kubernetes node vulnerability assessment extended to EKS and GKE | Preview | OS-level vulnerability detection for Kubernetes node VMs across EKS and GKE, with unified remediation guidance. |
| π’ | Microsoft Defender for Open-Source Relational Databases on AWS RDS | GA | Database threat protection and sensitive data discovery for Aurora PostgreSQL/MySQL, PostgreSQL, MySQL, and MariaDB on AWS RDS. |
| π‘ | Container-level misconfiguration recommendations for Kubernetes | Preview | Agentless, container-level KSPM recommendations replacing cluster-level findings; cluster-level recommendations set for deprecation at GA. |
| π‘ | New recommendation to upgrade AKS for system pod vulnerabilities | Preview | Actionable βUpgrade Azure Kubernetes Service Versionβ recommendation replacing previous non-actionable guidance. |
| π’ | Serverless protection for Azure and AWS | GA | Discovery and assessment of serverless resources for misconfigurations, vulnerabilities, and insecure dependencies across Azure Web Apps, Functions, and AWS Lambda. |
π― Microsoft Defender XDR
| Indicator | Feature | Type | Description |
|---|---|---|---|
| π‘ | Identity Security dashboard - Human identities card | Preview | New card showing human identities by source (Entra ID, SaaS, on-premises) in a single view. |
| π‘ | Coverage and maturity - Observed column for SaaS Identities | Preview | New Observed column and Show Only Observed Applications toggle on the Review and improve coverage side panel. |
| π‘ | Local AI agent discovery on Windows endpoints | Preview | Automatic discovery of supported local AI agents (coding agents, IDE extensions, desktop assistants, runtimes) on Windows devices. |
| π‘ | Local AI agent runtime protection on Windows endpoints | Preview | Runtime inspection of agent loop (prompts, tool calls, responses) with block capability for prompt injection and unsafe actions. |
| π’ | CloudAuditEvents, CloudDnsEvents, CloudProcessEvents advanced hunting tables | GA | Three new advanced hunting schema tables for multicloud audit, DNS, and process events now generally available. |
| π‘ | AgentsInfo table in advanced hunting | Preview | Unified schema for agent inventory and governance replacing AIAgentsInfo; AIAgentsInfo accessible until July 1, 2026. |
π Microsoft Defender Endpoint
| Indicator | Feature | Type | Description |
|---|---|---|---|
| π‘ | Local AI agent discovery - macOS support and new agents | Preview | Discovery extended to macOS endpoints; adds support for Junie CLI, Kiro CLI, Warp, Hermes Agent, Goose Desktop, Perplexity Desktop, Kiro IDE, Devin Desktop, and QClaw. |
| π’ | Enhanced Defender deployment tool for Windows | GA | Bundles onboarding package into executable, adds deployment key and expiry date, centralized package management page in Defender portal. |
| π’ | Selective Response Actions | GA | Tailor high-impact security operations on Tier-0 systems and high-value assets during onboarding with precise response action controls. |
| π’ | Enhanced exposure score in Defender Vulnerability Management | GA | New exposure score model incorporating EPSS exploit prediction data and asset context (internet-facing status, criticality). |
| π’ | Windows Defender Antivirus Platform 4.18.26050.15 / Engine 1.1.26050.11 | GA | Platform and engine update for Windows Defender Antivirus. |
| π’ | New Microsoft Secure Score recommendation - Reduce unnecessary inbound internet exposure | GA | Identifies internet-facing devices that may represent unnecessary attack surface, enabling validation and remediation of unintended exposure. |
| π‘ | Local AI agent discovery | Preview | Automatic discovery of supported local AI agents on Windows endpoints for AI agent inventory, exposure map, and advanced hunting. |
| π‘ | Local AI agent runtime protection | Preview | Runtime protection inspecting agent loop with block capability for risky activity at the device level. |
πΏ MDE Detailed Releases
Windows
| Indicator | Feature | Type | Description |
|---|---|---|---|
| π’ | Windows Defender Antivirus: Platform 4.18.26050.15 / Engine 1.1.26050.11 | GA | Platform and engine update for Windows Defender Antivirus with enhancements and features. |
macOS
| Indicator | Feature | Type | Description |
|---|---|---|---|
| π΅ | macOS 11 (Big Sur) and 12 (Monterey) no longer supported | Update | Defender for Endpoint now requires macOS 15.0.1 or newer; Big Sur and Monterey are end-of-life. |
Linux
| Indicator | Feature | Type | Description |
|---|---|---|---|
| π΅ | Monthly security fixes included in regular releases | Update | Security fixes are included as part of monthly releases; refer to Microsoft Security Update Guide for details. |
π‘οΈ Microsoft Defender Unified SecOps
No new updates for June 2026.
π Microsoft Defender Identity
| Indicator | Feature | Type | Description |
|---|---|---|---|
| π΅ | New Entra ID security alerts (7 alerts) | Update | Alerts for anomalous activity after Global Admin elevation, reciprocal TAP creation, suspicious service principal sign-in, bulk user deletion, privileged app role removal, spike in account updates, and spike in app-resource access. |
| π΅ | New Active Directory security alerts (2 alerts) | Update | DCSync attack detection and suspicious Entra Connect account authentication alerts. |
| π΅ | New SailPoint ISC security alert | Update | Suspected brute-force attack detection for SailPoint Identity Security Cloud. |
π’ Microsoft Entra ID
No new updates for June 2026.
βοΈ Microsoft Defender Cloud Apps
| Indicator | Feature | Type | Description |
|---|---|---|---|
| π‘ | Salesforce connector enhancements | Preview | Real-time event monitoring for OAuth abuse, session hijacking, credential stuffing; OAuth app governance for Connected Apps and ECAs; highly privileged and unused app insights. |
π§ Microsoft Defender Office 365
No new updates for June 2026.
π¨ Microsoft Defender XSPM
| Indicator | Feature | Type | Description |
|---|---|---|---|
| π΄ | New predefined SaaS application classifications (15 classifications) | Security | Critical asset classification rules for Entra ID, Azure, M365 Defender, Intune, Dynamics 365, Purview, SharePoint, Teams, Exchange Online, OneDrive, Office Online, Power Apps, Power Automate, Power BI, and Universal Print. |
β΅ AKS
No new updates for June 2026.
π¦ Azure Container Apps
| Indicator | Feature | Type | Description |
|---|---|---|---|
| π‘ | Microsoft Defender for Cloud support for Azure Container Apps (Serverless Containers Posture) | Preview | Extend posture management to ACA environments within Defender for Cloudβs Serverless Containers Posture experience. |
| π’ | Confidential Compute support on Azure Container Apps | GA | Run regulated containerized workloads with hardware-based trusted execution environments for data-in-use protection. |
| π’ | Monitor HTTP traffic in Azure Container Apps | GA | Dedicated Azure Monitor diagnostic setting category (ContainerAppHTTPLogs) for detailed HTTP access logs. |
| π’ | Additional OpenTelemetry destinations (New Relic, Dynatrace, Elastic) | GA | Expanded third-party observability platform support via OpenTelemetry endpoints. |
| π’ | Override Scale Rules in Azure Functions on Azure Container Apps | GA | New allowScalingRuleOverride property to override platform-managed KEDA scale rules. |
| π‘ | Azure Container Apps Sandboxes | Preview | Managed sandboxed environments for running untrusted code safely in agentic applications and multi-tenant platforms. |
π Azure Monitor
| Indicator | Feature | Type | Description |
|---|---|---|---|
| π‘ | Multi-stage transformations for data collection rules | Preview | Filter, parse, aggregate, and enrich logs at the agent or during ingestion using a pipeline of declarative processors. |
π¬ Defender Container Sensor
| Indicator | Feature | Type | Description |
|---|---|---|---|
| π‘ | Sensor v0.11.3 - EKS/GKE Private clusters support | Preview | Public Preview of support for EKS and GKE private clusters in Defender Container Sensor. |
π€ Microsoft Security Copilot
No new updates for June 2026.
π Microsoft Purview
| Indicator | Feature | Type | Description |
|---|---|---|---|
| π’ | Data security and compliance protections for Microsoft 365 Copilot Cowork | GA | Data security and compliance protections now generally available for M365 Copilot Cowork. |
| π΅ | Access Endpoint DLP device attribute data using Advanced Hunting | New | Query Endpoint DLP device configuration and policy sync attributes through DeviceInfo tableβs DlpInfo column in Advanced Hunting. |
| π΅ | Create a DLP policy that uses device scoping | New | Scope Endpoint DLP policies to specific device groups using dynamic device groups defined in Entra ID. |
| π‘ | External email blocking condition for Copilot DLP | Preview | New βEmail is received from > External usersβ condition to prevent Copilot from using external email as grounding data. |
| π‘ | Enhanced matched conditions for Exchange DLP events | Preview | Detailed non-sensitive information type condition matches surfaced in DLP alerts and Activity Explorer for Exchange Online. |
| π΅ | Monitor device health with device health reports dashboard | New | Dashboard for monitoring device onboarding status, policy update readiness, and feature readiness for Endpoint DLP. |
| π’ | Email and portal notifications for Data Security Investigations | GA | Investigators receive notifications through Purview Notification Center and email when investigations are ready. |
| π΅ | Automatic data preparation in Data Security Investigations | Update | Data preparation now runs automatically in the background as items are added to scope. |
| π΅ | Convert supported file formats to HTML in eDiscovery | New | Cloud-native file formats (.loop, .page) converted to HTML for indexing and keyword searchability in review sets. |
| π‘ | View and label files with Information Protection client on macOS | Preview | Information Protection client now supports viewing and labeling files on macOS. |
| π΅ | New sensitive information types (9 types) | New | Added definitions for China, Colombia, Greenland, Russia, Singapore, South Africa, and Ukraine physical addresses; Colombia national ID and tax ID; Russia taxpayer ID. |
ποΈ Microsoft Foundry
| Indicator | Feature | Type | Description |
|---|---|---|---|
| π’ | Microsoft Agent Framework stable release | GA | Agent harness with skills, memory, middleware; integrations with GitHub Copilot SDK and Claude Agent SDK; multi-agent orchestration patterns. |
| π’ | Foundry Toolkit for VS Code | GA | Create agents from templates, debug with trace visualization, connect to Toolboxes, deploy to Foundry Agent Service. |
| π’ | Voice Live prompt agents | GA | Real-time voice paths with speech recognition, text-to-speech, turn detection, interruption handling, and avatars. |
| π’ | Foundry agents publish to Microsoft Teams and M365 Copilot | GA | Agents can publish to Microsoft Teams and Microsoft 365 Copilot. |
| π‘ | Hosted agents in Foundry Agent Service | Preview | Managed sandboxed sessions, state, filesystem access, and framework flexibility; expected GA by early July 2026. |
| π‘ | Toolboxes in Foundry | Preview | One governed endpoint for tools, skills, MCP clients, and enterprise data. |
| π‘ | Routines | Preview | Timer or schedule-based agent execution for overnight triage or daily reporting. |
| π‘ | Memory in Foundry Agent Service | Preview | Procedural, user, and session memory for agents. |
| π‘ | Foundry IQ knowledge bases | Preview | SLA-backed retrieval and MCP access without custom indexing glue. |
| π‘ | ASSERT, ACS, Rubric | Preview | Policy-driven evaluations, deterministic runtime controls, and generated scoring criteria for agent safety. |
| π‘ | Fireworks AI on Foundry | Preview | Additional model options through Azure endpoints with enterprise controls. |
| π‘ | File system tools, memory tools, deep research agent | Preview | New agent capabilities in public preview. |
π§ Microsoft Copilot Studio
No new updates for June 2026.
π Microsoft Fabric
| Indicator | Feature | Type | Description |
|---|---|---|---|
| π’ | Real-Time Dashboards Live Refresh | GA | Push-based data refresh replacing periodic polling for always-current visualizations. |
| π’ | Eventstream streaming connectors for Apache Kafka and Azure Service Bus | GA | Hardened reliability, broader authentication (SASL_SSL, SASL_PLAINTEXT, Entra ID), production-ready throughput. |
| π’ | Business Events Capacity Consumption | GA | Business events metered through standard Fabric capacity model with no separate license. |
| π’ | Fabric Graph | GA | Scalable, enterprise-grade graph modeling and analysis for complex relationships. |
| π’ | Data agents in Microsoft 365 Copilot | GA | Business users discover and chat with governed Fabric data sources inside M365 Copilot. |
| π‘ | Real-Time Dashboards powered by AI | Preview | AI-first tile editor with natural language visualization generation. |
| π‘ | Time Series Visualization in Real-Time Dashboards | Preview | Dedicated time-based data navigation, comparison, and customization capabilities. |
| π‘ | Secure MQTT broker and Eventstream connector with mTLS | Preview | Mutual TLS authentication for secure IoT data ingestion across untrusted networks. |
| π‘ | Extended IoT Hub source Eventstream connector | Preview | Preserves all event metadata including system and user-defined application properties. |
| π‘ | Pagination support for Eventstream HTTP connector | Preview | Page-based and cursor-based pagination for REST API ingestion. |
| π‘ | Activator as business events publisher | Preview | No-code business event publishing from Activator into Real-Time hub. |
| π‘ | Business events persisted into Eventhouse | Preview | Automatic ingestion and retention of business events in dedicated KQL tables. |
| π‘ | Activator rule actions: Copy job and Publish a business event | Preview | New actions for data copying and downstream event triggering. |
| π‘ | Activator rules for OneLake items | Preview | Automate actions based on file creation, deletion, and process status for OneLake items. |
| π‘ | Analyze Business Events in Eventhouse and Real-Time Dashboards | Preview | Historical KQL queries and live operational monitoring for business events. |
| π‘ | Observability for Fabric Data Agent in Microsoft Foundry | Preview | Telemetry for every Data Agent call including latency, status, and error details. |
| π‘ | Creator Agent for SQL and Eventhouse sources in Fabric Data Agent | Preview | AI-assisted creation experience for Fabric Data Agent configurations. |
| π‘ | Improved NL2SQL Engine for Fabric Data Agent | Preview | Improved accuracy and transparency for natural language to SQL translation. |
| π‘ | Code Interpreter Tool for Fabric Data Agent | Preview | Python execution inside agent workflows for statistical analysis and visualization. |
Top 5 Action Items
| Priority | Action | Due | Affected Product(s) |
|---|---|---|---|
| π΄ | Migrate advanced hunting queries from AIAgentsInfo to AgentsInfo table | July 1, 2026 | Defender XDR |
| π΄ | Review and validate new SaaS application critical asset classifications in Defender Exposure Management | Immediate | Defender XSPM |
| π΄ | Enable SQL VA Express Configuration automatic rollout or validate existing configuration | Within 30 days | Defender Cloud |
| π‘ | Enable Salesforce Real-Time Event Monitoring for enhanced OAuth and identity threat detection | As soon as possible | Defender Cloud Apps |
| π‘ | Review new Defender for Identity security alerts and tune SOAR playbooks for Entra ID and AD detections | This month | Defender Identity |
Security Architect Observations
- Defense-in-depth for AI agents: The introduction of local AI agent discovery and runtime protection across Windows and macOS endpoints represents a new attack surface that must be incorporated into endpoint security baselines and zero-trust architectures. Agent loop inspection (prompts, tool calls, responses) adds a critical runtime control layer.
- Multicloud container security parity: Defender for Cloud now provides near-feature-parity for container vulnerability assessment, node scanning, and misconfiguration enforcement across AKS, EKS, and GKE. Architects should standardize on a single Defender CSPM plan for multicloud Kubernetes estates.
- Identity detection expansion: Seven new Entra ID alerts and two new AD alerts (including DCSync detection) significantly improve coverage for identity-based attacks. The new SailPoint ISC brute-force alert extends identity threat protection to third-party IdPs, reducing blind spots in hybrid identity architectures.
- API security posture expansion: GA of API security for Function Apps and Logic Apps extends the API security perimeter beyond API Management. Attack path analysis now covers serverless APIs, requiring updated threat models for event-driven and workflow-based architectures.
- Compliance and data governance: New sensitive information types across 9 geopolitical regions and macOS Information Protection client support expand DLP coverage. The Copilot Cowork data security protections and external email grounding controls address prompt injection risks in AI-assisted workflows.
Security Operations Observations
- SOC workflow changes for AI agent monitoring: New alerts from AI agent runtime protection and AI agent inventory in advanced hunting require new detection rules and incident response playbooks. SOC teams should familiarize themselves with the AgentsInfo schema before the AIAgentsInfo deprecation on July 1.
- New identity alert tuning required: Seven new Entra ID alerts and DCSync detection will generate new signal volume. SOC teams should establish baselines for anomalous Global Admin elevation, reciprocal TAP creation, and service principal sign-in patterns to manage false positive risk.
- Container security alert consolidation: Container-level KSPM recommendations replace cluster-level findings. SOC teams should prepare for transitional duplicate alerts and update automation rules once cluster-level recommendations are deprecated at GA.
- Expanded multicloud monitoring scope: 60+ new multicloud security recommendations across AWS and GCP services expand the monitoring surface. SOC teams should prioritize enabling these recommendations and integrating findings into existing ticketing and remediation workflows.
- DLP investigation improvements: Advanced Hunting access to Endpoint DLP device attributes and enhanced Exchange DLP event matching provide richer investigation context. SOC analysts can now query DLP policy sync status at scale without portal exports.
References
This post is licensed under CC BY 4.0 by the author.