A dense week. Both monthly roundups landed inside it - the Sentinel June recap on
30 Jun and the Defender monthly on 1 Jul - and
Wednesday 1 Jul was enforcement day for two breaking changes plus a
schema-table cutoff. If your rules, playbooks, or hunting queries went quiet or noisy midweek,
start with the three items in the strip below.
⚠ enforcement dates that hit this week
01 Jul 2026enforced
Account-entity naming standardization. Sentinel now resolves Account
Name by precedence, defaulting to the UPN prefix (the part before "@"). Analytics rules,
automation rules, playbooks, workbooks and hunting queries relying on strict full-UPN matching
are broken as of this week if not refactored. Symptom to hunt for: entity-match conditions
silently failing, automation not triggering, or duplicate entities.
automationueba
01 Jul 2026enforced
AIAgentsInfo → AgentsInfo table cutoff. The AIAgentsInfo advanced
hunting table was accessible only until 1 Jul; queries must use the unified AgentsInfo table,
which covers agent inventory and governance across Copilot Studio, Foundry, M365 Copilot,
third-party and endpoint-discovered agents. Any saved hunts, custom detections, or workbooks
still referencing the old table stopped returning results this week.
huntingai-agents
01 Jul 2026groundwork
URBAC migration checkpoint. Practitioner guidance treats this date as
the go/no-go for Unified RBAC groundwork, since legacy Sentinel Azure roles do not carry into
the Defender portal. The headline portal retirement itself remains 31 Mar 2027 after the
January extension - the redirect did not flip this week, but the governance work is now on
the critical path.rbacmigration
Defender monthly · 1 Jul · GA
Custom Detections join Sentinel Repositories (detections-as-code)
Custom Detections can now be managed as code in Sentinel Repositories alongside analytics
rules, playbooks, parsers and workbooks. Connect a GitHub or Azure DevOps repo to the
workspace and detections in the repo are reconciled on every commit. A standalone Bicep path
via the Microsoft Security Bicep extension supports deployment from any CI/CD pipeline -
ADO Pipelines, GitHub Actions, or custom runners.
detection engineering angleThis closes the content-as-code gap for
Defender-portal custom detections - the same PR-reviewed, versioned workflow you already run
for analytics rules now covers the whole detection estate. Pairs with the 15 Jun repositories
API-version floor.
Defender monthly · 1 Jul · GA
CloudAuditEvents and CloudDnsEvents hunting tables go GA
Two advanced hunting schema tables reached general availability: CloudAuditEvents (cloud
audit events across platforms protected by Defender for Cloud) and CloudDnsEvents (DNS
activity from cloud infrastructure). Useful raw material for cloud-control-plane and
DNS-exfiltration hunts without custom ingestion.
Defender monthly · 1 Jul · previews
Local AI agent discovery and runtime protection on endpoints
Defender now automatically discovers supported local AI agents on onboarded Windows devices,
surfacing them in the AI agent inventory, exposure map, and advanced hunting. A second public
preview adds runtime protection: Defender inspects the agent loop - prompts, tool calls, tool
responses - and can block risky activity before execution, targeting prompt injection and
unsafe agent actions at device level, with blocked/audited events raised as alerts.
relevant to your SOC agent workAgent-loop inspection at the endpoint is
the defensive mirror of the adversarial-prompt-injection scenarios in your triage-agent test
bank - worth watching what telemetry these alerts expose for correlation.
Defender monthly · 1 Jul · advisory
Salesforce connector upgraded in response to ShinyHunters OAuth abuse
Recent ShinyHunters attacks on Salesforce weaponize OAuth tokens and connected apps to bypass
MFA at scale. The upgraded Salesforce connector for Defender for Cloud Apps adds richer
connected-app context and investigation-ready signals; existing connector users are advised to
enable the additional events in the Salesforce console, and eligible non-users to connect.
Defender monthly · 1 Jul · threat insights
Three actionable threat reports flagged for the SOC
The monthly highlighted current campaigns: AI tools shifting from reading to acting as an
agent-security concern; a Chromium extension using AI-related branding to hijack browser
search; and a "photo ZIP" campaign against the hospitality industry delivering a Node.js
implant for persistent access. Each carries hunting guidance in the linked insights.
Sentinel blog · 30 Jun · recap
June "What's new in Sentinel" recap lands
The official June recap (published 30 Jun) consolidates the month: ASIM normalization
broadened with two new schemas for asset inventory and AI-agent telemetry; the Agent
Identities Asset Connector added four asset tables forming an owner-to-permissions agent
identity graph in the data lake; and graph tools arrived in the Sentinel MCP server for
unified relationship investigation across identities, devices, alerts and signals. It also
flags the 29 Jul "Into the Breach" Security Immersion Event.
Learn what's new · late Jun · previews
UEBA behaviors link to incidents; MCP graph reasoning
Fresh entries on the Learn changelog straddling the window: behavior-based query results from
the BehaviorInfo table can now be linked to new or existing incidents in advanced hunting,
with the wizard auto-populating alert metadata and entities; the MCP graph tool collection
adds reasoning over Sentinel graphs; and custom graphs support GQL queries, schema views,
tabular results and click-to-traverse hops in the Defender portal.
Governance
Governance blog rounds out the migration series
The "governance shift" installment of the Sentinel-to-Defender series (part 4, refreshed in
this period) details the URBAC mechanics that matter before cutover: the import wizard
migrates classic roles, URBAC becomes the source of truth once enabled (with Azure-side sync
caveats), row-level scoping requires URBAC first and tags only newly ingested data, and
automation roles (playbook Operator, automation Contributor) plus service principals still
live in Azure RBAC - do not enable URBAC yet if service principals hold Sentinel permissions.
Calendar
Next on the clock
29 Jul: "Into the Breach" Security Immersion Event. 14 Sep: legacy Data Collection API
deprecation - DCR migration deadline. 30 Sep: containerized SAP connector end of support
(agentless is GA at the same price). 31 Mar 2027: Azure-portal Sentinel retirement.