Microsoft Announces Security AI Agents To Help Overwhelmed Humans 23
Microsoft is expanding its Security Copilot platform with six new AI agents designed to autonomously assist cybersecurity teams by handling tasks like phishing alerts, data loss incidents, and vulnerability monitoring. There are also five third-party AI agents created by its partners, including OneTrust and Tanium. The Verge reports: Microsoft's six security agents will be available in preview next month, and are designed to do things like triage and process phishing and data loss alerts, prioritize critical incidents, and monitor for vulnerabilities. "The six Microsoft Security Copilot agents enable teams to autonomously handle high-volume security and IT tasks while seamlessly integrating with Microsoft Security solutions," says Vasu Jakkal, corporate vice president of Microsoft Security.
Microsoft is also working with OneTrust, Aviatrix, BlueVoyant, Tanium, and Fletch to enable some third-party security agents. These extensions will make it easier to analyze data breaches with OneTrust or perform root cause analysis of network outages and failures with Aviatrix. [...] While these latest AI agents in the Security Copilot are designed for security teams to take advantage of, Microsoft is also improving its phishing protection in Microsoft Teams. Microsoft Defender for Office 365 will start protecting Teams users against phishing and other cyberthreats within Teams next month, including better protection against malicious URLs and attachments.
Microsoft is also working with OneTrust, Aviatrix, BlueVoyant, Tanium, and Fletch to enable some third-party security agents. These extensions will make it easier to analyze data breaches with OneTrust or perform root cause analysis of network outages and failures with Aviatrix. [...] While these latest AI agents in the Security Copilot are designed for security teams to take advantage of, Microsoft is also improving its phishing protection in Microsoft Teams. Microsoft Defender for Office 365 will start protecting Teams users against phishing and other cyberthreats within Teams next month, including better protection against malicious URLs and attachments.
Making it exponentially easier to generate data (Score:5, Insightful)
1) Make computing ever cheaper .... ... somewhere in the future the realization that more data, more metrics and more analysis of said data has gone ten standard deviations beyond the usefulness point.
2) Make every system generate lots of metric data
3) Sell data processing and storage services for the explosion of data
4) Sell tools to manage the flood of data
5) Sell AI tools to further manage the flood of data
Re: (Score:2)
It's curious to consider the implications, if information can neither be created nor destroyed.
Maybe someone else can articulate it better than I can.
Re: (Score:1)
Interesting, and valid, but my mind just jumps to Shadowrun flashbacks and the inevitable invention of Black ICE.
In future AI news ... (Score:5, Funny)
AI Agents To Help Overwhelmed Humans
AI agents drop the trailing "ed".
Re: (Score:2)
This was modded "funny" but it's also "accurate".
Information wants to be free, so keeping secrets will always be an uphill battle.
It's easier to flood people with useless information, than it is to keep information from them.
Re: (Score:2)
It's a mental DDOS. You cause the thing to stop functioning by making it choke on mountains of triviality.
Re: (Score:2)
Whataboutism is both a cause and a symptom of this information environment. Once the attention span has been shortened and deep thought rendered obsolete, one can't help but jump to the next random topic when an idea gets too uncomfortable.
That will go well... (Score:2)
Crappy MS stuff not only in the attacked systems but also in the "defenses". Yep, exactly what I would do...
Re: That will go well... (Score:1)
Re: (Score:3)
Ahahahahahahahahahaha, best joke of the month! MS? Credible? In the fucking _security_ space? Hahahhahhahahhahhah!
In actual reality, MS is the village-idiot in that space. Try reading that one here:
https://www.cisa.gov/sites/def... [cisa.gov]
I was unable to find _anything_ else they could have done wrong here without that being immediately obvious. And that is the area they are betting their future on.
MS "engineers" are too stupid to find their ass with both hands and a map and their production security people are not
Re: (Score:2)
Re: That will go well... (Score:2)
A new approach with AI abstracts the details even further away from understanding and manual intervention. Keep your damn dirty hands off the controls . Which tier of support do you want to pay for ?
can i have an AI agent to monitor my AI agents? (Score:2)
Re: (Score:2)
abandon the cloud, be safe.
Microsoft Security Copilot :o (Score:2)
Another over hyping of "AI" (Score:2)
Multiple tools?
Surely only
echo "You're using Windows"
would be sufficient.
Have they contacted the Trump administration? (Score:2)
Microsoft is expanding its Security Copilot platform with six new AI agents designed to autonomously assist cybersecurity teams
There's a government Signal group that is a bit leaky [washingtonpost.com] that could do with some help...
It's in the wrong place (Score:2)
They're trying to fix the wrong things. Copilot is only of value to newblets. There is nothing the agent can do that an experienced engineer can't do, faster ,with greater accuracy and appropriate scope.
We need the agent on the endpoint - to foribly punch the user in the face whenever they engage in stupid behaviour. The end user is the *primary* attack vector. Always has been.
We need to give Clippy a rusty blade and let him go to town on *everyone* engaging with obvious phishing, drive-by and similar attac
Microsoft IS the Security Problem (Score:2)