Microsoft Announces New Agentic AI Tools for Security Copilot

Microsoft has expanded its AI-powered cybersecurity platform, introducing a suite of autonomous agents to help organizations counter rising threats and manage the growing complexity of cloud and AI security.

The update marks the next phase for Microsoft Security Copilot, launched a year ago, as the company adds 11 AI-powered agents to automate tasks like phishing detection, data protection, vulnerability management, and threat analysis. The move underscores Microsoft's strategy to use AI not only as a target for protection, but also as a frontline defense against increasingly sophisticated cyber attacks.

"With over 30 billion phishing e-mails detected in 2024 alone and cyber attacks now exceeding human capacity to respond, agent-based AI security has become an imperative," said Vasu Jakkal, corporate vice president for Microsoft's Security Group, in a blog post.

Six of the new AI agents are developed in-house and five are built by Microsoft'’s security partners, including OneTrust, Aviatrix, and Tanium. The tools will begin rolling out in preview starting April 2025.

"An agentic approach to privacy will be game-changing for the industry," said Blake Brannon, chief product and strategy officer, OneTrust, in a statement. "Autonomous AI agents will help our customers scale, augment, and increase the effectiveness of their privacy operations. Built using Microsoft Security Copilot, the OneTrust Privacy Breach Response Agent demonstrates how privacy teams can analyze and meet increasingly complex regulatory requirements in a fraction of the time required historically."

Among the new additions is a Phishing Triage Agent in Microsoft Defender, designed to filter and prioritize phishing alerts, providing explanations and improving with user feedback. Another, the Conditional Access Optimization Agent, monitors identity systems to spot policy gaps and recommend fixes. Microsoft is also debuting an AI-powered Threat Intelligence Briefing Agent that curates threat insights tailored to each organization's risk profile.

The release comes amid surging global interest in generative AI and a parallel rise in what Microsoft calls "shadow AI" — unauthorized AI use within organizations, often outside of IT oversight. Microsoft estimates that 57% of enterprises have seen an uptick in security incidents tied to AI, even as 60% admit they have not implemented adequate controls.

To address this, Microsoft is extending its AI security posture management across multiple clouds and models. Starting May 2025, Microsoft Defender will support AI security visibility across Azure, AWS, and Google Cloud, including models like OpenAI's GPT, Meta's Llama, and Google's Gemini.

Other new safeguards include browser-based data loss prevention (DLP) tools to block sensitive information from being entered into generative AI apps like ChatGPT and Google Gemini, as well as enhanced phishing protection in Microsoft Teams — long a target of e-mail-like attacks.

"The rise of AI has introduced new cyber risk vectors, but it's also our greatest ally," said Alexander Stojanovic, vice president of Microsoft Security AI Applied Research, in a statement. "This is just the beginning of what security agents can do."

For more information, read the Microsoft blog post.

About the Author

John K. Waters is the editor in chief of a number of Converge360.com sites, with a focus on high-end development, AI and future tech. He's been writing about cutting-edge technologies and culture of Silicon Valley for more than two decades, and he's written more than a dozen books. He also co-scripted the documentary film Silicon Valley: A 100 Year Renaissance, which aired on PBS.  He can be reached at [email protected].

Featured

  • group of elementary school students designing video games on computers in a modern classroom with a teacher, depicted in a geometric and abstract style

    Using Video Game Design to Teach Literacy Skills

    The Max Schoenfeld School, a public school in the Bronx serving one of the poorest communities in the nation, is taking an innovative approach to improving student literacy.

  • computer screen displaying a landline phone being unplugged from a single cord, with a modern office desk, keyboard, and subtle lighting in the background

    Microsoft Shutting Down Skype

    Microsoft has announced that it will discontinue service for its Skype telecommunications and video calling services on May 5, 2025.

  • repeating abstract pattern featuring cloud icons, neural network shapes, data streams, and circuit-like elements in muted tones

    Report: Infrastructure Is the Missing Piece in Gen AI Strategy

    While generative AI has become central to digital transformation strategies, a new report from Google Cloud reveals most organizations aren't yet equipped to support it at scale.

  • students using digital devices, surrounded by abstract AI motifs and soft geometric design

    Ed Tech Startup Kira Launches AI-Native Learning Platform

    A new K-12 learning platform aims to bring personalized education to every student. Kira, one of the latest ed tech ventures from Andrew Ng, former director of Stanford's AI Lab and co-founder of Coursera and DeepLearning.AI, "integrates artificial intelligence directly into every educational workflow — from lesson planning and instruction to grading, intervention, and reporting," according to a news announcement.