Zero Trust
The latest Zero Trust coverage — news, analysis, and updates from the WindowsNews.AI desk.
AI Agents Get Corporate IDs: Inside Microsoft and Workday’s Landmark Integration
Enterprise AI agents are about to get their own set of corporate credentials. Microsoft and Workday have quietly stitched together a system that assigns verified, directory-backed identities to...
Windows 10’s October 2025 Deadline Is Firm: Here Are the Only 5 Ways to Stay Secure
Windows 10 will receive its final free security patches on October 14, 2025. When that date passes, any PC still running the operating system without a paid extension or a workaround will be...
Microsoft Engineers to Field Windows 11, Zero-Trust Questions in Sept 18 Live Q&A
Microsoft’s Windows engineering team is opening its (virtual) doors for a live, chat-based Office Hours session on September 18, 2025, where IT pros can quiz product experts on everything from...
Windows RRAS Out-of-Bounds Read Flaw Exposes Memory to Remote Attackers
Microsoft has confirmed a memory disclosure vulnerability in the Windows Routing and Remote Access Service (RRAS) that could allow unauthenticated attackers to extract sensitive information from...
Critical RRAS Flaw Exposes VPN Gateways to Remote Memory Leaks — Patch Immediately
A remote information-disclosure vulnerability in the Windows Routing and Remote Access Service (RRAS) received an out-of-band advisory from Microsoft this week, warning that attackers can siphon...
Only 17% of Organizations Have Technical Controls for AI Data, Survey Finds, as Third-Party Risks Spiral
A staggering 83% of organizations lack the technical controls needed to stop employees from feeding sensitive data into public AI tools, according to a new survey from Kiteworks. The 2025 report,...
Copilot Studio Now Intercepts Agent Actions for Real-Time Security Vetoes
Microsoft has shifted the security model for its Copilot Studio from passive guardrails to active, inline enforcement. Organizations can now route an AI agent’s planned actions—including prompts,...
Your Next PC Upgrade: How Windows 12's AI Features and Security Demands Are Redefining Compatibility
Microsoft’s next major Windows release—widely referred to as Windows 12—is taking shape around three pillars: artificial intelligence, modular architecture, and hardened security. The biggest...
Palo Alto's Prisma SASE 4.0 Targets AI-Driven Browser Attacks and Rogue SaaS Agents
Palo Alto Networks has drawn a clear line in the SASE arms race. On September 4, 2025, the company launched Prisma SASE 4.0, a major platform refresh that frames the next phase of enterprise security...
Private Connector Enables UK Government to Run Power Platform and Copilot on AWS Data Without Duplication
A proof-of-concept led by Hitachi Solutions Europe has demonstrated that UK government departments can securely operate Microsoft Power Platform, Dynamics 365, and Microsoft Copilot on live data...
Microsoft Copilot’s EchoLeak Flaw Proves GenAI Must Embrace Zero Trust — Or Risk Catastrophic Data Leaks
A zero-click prompt injection flaw in Microsoft 365 Copilot, discovered in January by security researchers at Aim Labs, allowed attackers to trick the AI assistant into silently exfiltrating...
How Microsoft Moved 98% of Its IT to Azure — And What It Learned
Microsoft has completed one of the most audacious cloud migrations in corporate history: moving 98% of its internal IT infrastructure—serving more than 200,000 employees and 750,000 managed...