Microsoft Sentinel · weekly | scope: SOC + Security | updated 2026-07-07
Security operations weekly brief

The week the July 1
changes went live.

window: 29 Jun 202606 Jul 2026  ·  7-day lookback

A dense week. Both monthly roundups landed inside it - the Sentinel June recap on 30 Jun and the Defender monthly on 1 Jul - and Wednesday 1 Jul was enforcement day for two breaking changes plus a schema-table cutoff. If your rules, playbooks, or hunting queries went quiet or noisy midweek, start with the three items in the strip below.

01

What fired on 1 July

⚠ enforcement dates that hit this week
01 Jul 2026enforced
Account-entity naming standardization. Sentinel now resolves Account Name by precedence, defaulting to the UPN prefix (the part before "@"). Analytics rules, automation rules, playbooks, workbooks and hunting queries relying on strict full-UPN matching are broken as of this week if not refactored. Symptom to hunt for: entity-match conditions silently failing, automation not triggering, or duplicate entities. automationueba
01 Jul 2026enforced
AIAgentsInfo → AgentsInfo table cutoff. The AIAgentsInfo advanced hunting table was accessible only until 1 Jul; queries must use the unified AgentsInfo table, which covers agent inventory and governance across Copilot Studio, Foundry, M365 Copilot, third-party and endpoint-discovered agents. Any saved hunts, custom detections, or workbooks still referencing the old table stopped returning results this week. huntingai-agents
01 Jul 2026groundwork
URBAC migration checkpoint. Practitioner guidance treats this date as the go/no-go for Unified RBAC groundwork, since legacy Sentinel Azure roles do not carry into the Defender portal. The headline portal retirement itself remains 31 Mar 2027 after the January extension - the redirect did not flip this week, but the governance work is now on the critical path.rbacmigration
02

Published this week

all detections-as-code ai agents hunting threat intel
Defender monthly · 1 Jul · GA

Custom Detections join Sentinel Repositories (detections-as-code)

Custom Detections can now be managed as code in Sentinel Repositories alongside analytics rules, playbooks, parsers and workbooks. Connect a GitHub or Azure DevOps repo to the workspace and detections in the repo are reconciled on every commit. A standalone Bicep path via the Microsoft Security Bicep extension supports deployment from any CI/CD pipeline - ADO Pipelines, GitHub Actions, or custom runners.

detection engineering angleThis closes the content-as-code gap for Defender-portal custom detections - the same PR-reviewed, versioned workflow you already run for analytics rules now covers the whole detection estate. Pairs with the 15 Jun repositories API-version floor.
Defender monthly · 1 Jul · GA

CloudAuditEvents and CloudDnsEvents hunting tables go GA

Two advanced hunting schema tables reached general availability: CloudAuditEvents (cloud audit events across platforms protected by Defender for Cloud) and CloudDnsEvents (DNS activity from cloud infrastructure). Useful raw material for cloud-control-plane and DNS-exfiltration hunts without custom ingestion.

Defender monthly · 1 Jul · previews

Local AI agent discovery and runtime protection on endpoints

Defender now automatically discovers supported local AI agents on onboarded Windows devices, surfacing them in the AI agent inventory, exposure map, and advanced hunting. A second public preview adds runtime protection: Defender inspects the agent loop - prompts, tool calls, tool responses - and can block risky activity before execution, targeting prompt injection and unsafe agent actions at device level, with blocked/audited events raised as alerts.

relevant to your SOC agent workAgent-loop inspection at the endpoint is the defensive mirror of the adversarial-prompt-injection scenarios in your triage-agent test bank - worth watching what telemetry these alerts expose for correlation.
Defender monthly · 1 Jul · advisory

Salesforce connector upgraded in response to ShinyHunters OAuth abuse

Recent ShinyHunters attacks on Salesforce weaponize OAuth tokens and connected apps to bypass MFA at scale. The upgraded Salesforce connector for Defender for Cloud Apps adds richer connected-app context and investigation-ready signals; existing connector users are advised to enable the additional events in the Salesforce console, and eligible non-users to connect.

Defender monthly · 1 Jul · threat insights

Three actionable threat reports flagged for the SOC

The monthly highlighted current campaigns: AI tools shifting from reading to acting as an agent-security concern; a Chromium extension using AI-related branding to hijack browser search; and a "photo ZIP" campaign against the hospitality industry delivering a Node.js implant for persistent access. Each carries hunting guidance in the linked insights.

Sentinel blog · 30 Jun · recap

June "What's new in Sentinel" recap lands

The official June recap (published 30 Jun) consolidates the month: ASIM normalization broadened with two new schemas for asset inventory and AI-agent telemetry; the Agent Identities Asset Connector added four asset tables forming an owner-to-permissions agent identity graph in the data lake; and graph tools arrived in the Sentinel MCP server for unified relationship investigation across identities, devices, alerts and signals. It also flags the 29 Jul "Into the Breach" Security Immersion Event.

Learn what's new · late Jun · previews

UEBA behaviors link to incidents; MCP graph reasoning

Fresh entries on the Learn changelog straddling the window: behavior-based query results from the BehaviorInfo table can now be linked to new or existing incidents in advanced hunting, with the wizard auto-populating alert metadata and entities; the MCP graph tool collection adds reasoning over Sentinel graphs; and custom graphs support GQL queries, schema views, tabular results and click-to-traverse hops in the Defender portal.

03

Context & week ahead

Governance

Governance blog rounds out the migration series

The "governance shift" installment of the Sentinel-to-Defender series (part 4, refreshed in this period) details the URBAC mechanics that matter before cutover: the import wizard migrates classic roles, URBAC becomes the source of truth once enabled (with Azure-side sync caveats), row-level scoping requires URBAC first and tags only newly ingested data, and automation roles (playbook Operator, automation Contributor) plus service principals still live in Azure RBAC - do not enable URBAC yet if service principals hold Sentinel permissions.

Calendar

Next on the clock

29 Jul: "Into the Breach" Security Immersion Event. 14 Sep: legacy Data Collection API deprecation - DCR migration deadline. 30 Sep: containerized SAP connector end of support (agentless is GA at the same price). 31 Mar 2027: Azure-portal Sentinel retirement.