Microsoft 365 roadmap roundup – 27th June 2022

Use these buttons to switch between each product’s roadmap updates.

Microsoft Information Protection

Updates listed under this heading combines the following products: Azure Information Protection, 365 compliance center, Information Protection, Office 365 Advanced Threat Protection, Microsoft Defender, Microsoft Intune, Office 365 Data Loss Prevention and Security and Compliance center.

  • Launched (3)
  • Rolling out (3)
  • In development (25)

๐Ÿพ LAUNCHED

  • Microsoft Defender for Office 365: Configurable impersonation protection sender and domain lists and scoping in Preset Security policy – We’re adding capabilities within preset security policies (Strict and Standard) to configure custom users and custom domains for impersonation protection. Additionally, within the preset security policy, you will also be able to apply the policy to all recipients instead of selected users, groups, and domains. You will still be able to exclude selected recipients. Roadmap ID:93262
  • Microsoft Defender for Office 365: Priority Account Protection for Government clouds – We’re extending Priority Account Protection to cover customers in government clouds. With Priority Account Protection in Defender for Office 365, security teams can now prioritize focus on critical individuals within the organization, offer them differentiated protection and thwart costly breaches in the process. These Priority account tags and filters will surface throughout the product, including in alerts, Threat Explorer, Campaign Views, and reports. Roadmap ID:93291
  • Microsoft Defender for Office 365: Automatically allow Spoofing and Impersonation related messages directly using Admin Submissions – Today security administrators can use the Submissions page in the Microsoft 365 Defender portal to submit email messages, URLs, and attachments to Microsoft for scanning. We are enhancing this capability with an option to automatically allow Spoofing and Impersonation related emails from senders/infrastructure that were classified as legitimate by the admin, despite being initially blocked by the system. This will help mitigate false positives while the system continues to learn. Roadmap ID:93366

๐Ÿš‚ ROLLING OUT

  • Microsoft 365 compliance center: Microsoft Purview | eDiscovery (Premium) – Case limit enhancements (US Government clouds) – eDiscovery (Premium) is expanding the limits for collection size, review set volume, and export. The limits expansion increases the collection size from 300GB currently to 1TB and expands the review set capacity as well to accommodate large case volumes. Export limits will be increased to 5M documents or 500GB, whichever is smaller. This update will help ensure organizations are able to manage their eDiscovery process across very large data sets effectively with eDiscovery (Premium).Roadmap ID:85631
  • Microsoft 365 compliance center: Microsoft Purview | eDiscovery (Premium) – Collection of Teams conversation as transcript (US Government clouds) – eDiscovery managers will soon have the flexibility to collect Teams messages as transcript items. Transcripts will aggregate and thread messages in the same Teams conversations into a single HTML file that is available for review and export. Customers will continue to have the ability to collect Teams messages as individual items as offered today.ย  Roadmap ID:88896
  • Microsoft Defender for Office 365: Alert policies – we are enhancing the existing Microsoft Defender for Office 365 alert policy (A potentially malicious URL click was detected). Roadmap ID:93211

โŒ› IN DEVELOPMENT

Release – July 2022

  • ๐Ÿ†• Microsoft Defender for Office 365: Recipient Block using Tenant Allow/Block List Senders – Today the Tenant Allow Block List is used to prevent users from receiving email from select senders. However, users are still able to send emails to that same address or domain. With this new feature, the Tenant Allow Block List will be extended to prevent users from sending emails to addresses and domains that are added to the Allow/Block list. Roadmap ID:93363
  • Microsoft Information Protection: Microsoft Purview | Advanced Message Encryption – Office 365 Message Encryption portal access logs – This feature will enable logging of external user activities accessing the Office 365 Message Encryption Portal to retrieve encrypted mail. The logs can be retrieved using the Audit Logs functionality in the Microsoft Purview compliance portal. Roadmap ID:88914
  • Microsoft 365 compliance center: Microsoft Purview | Communication Compliance – Accelerate onboarding with step-by-step guidance – This feature will provide step-by-step guidance on how to properly configure, triage, and remediate policies, highlighting tasks that are heavily leveraged by a user’s role group. Microsoft Purview Communication Compliance helps organizations detect explicit code of conduct and regulatory compliance violations, such as harassing or threatening language, sharing of adult content, and inappropriate sharing of sensitive information. Roadmap ID:88919
  • Microsoft 365 compliance center: Microsoft Purview | Exact Data Match updated UI wizard – An updated Exact Data Match (EDM) UI wizard will replace the current wizard in the Microsoft Purview compliance portal, offering both an improved manual configuration as well as a new guided experience. Roadmap ID:88895
  • Microsoft Defender for Office 365: Updates to the common attachment filter in the anti-malware policy – We are enhancing the common attachments filter (Anti-malware policy) to expand list of available file types and also manage custom file types in the portal. Roadmap ID:85611
  • Microsoft 365 compliance center: Microsoft Purview | eDiscovery (Premium) – Support Teams reactions – Discover Teams reactions (heart, thumbs up, thumbs down, laugh, surprised, angry) in eDiscovery (Premium). Roadmap ID:65130

Release – August 2022

  • ๐Ÿ†• Microsoft 365 compliance center: Microsoft Purview | Endpoint DLP – Archived file support (U.S. Government clouds) – Support the scanning for sensitive content in ZIP and ARJ archive files in Windows devices.ย ย  Roadmap ID:93353
  • ๐Ÿ†• Microsoft 365 compliance center: Microsoft Purview | Endpoint DLP – Contextual policy conditions (U.S. Government clouds) – Support to identify when a file is sensitive based upon the file type or extension in Windows devices. Extend your Endpoint DLP policy controls to detect and protect even more content types such as CAD drawing files, video and audio files, and custom file types used in your specific industry. Roadmap ID:93354
  • ๐Ÿ†• Microsoft 365 compliance center: Microsoft Purview | Endpoint DLP – Classification globalization support (CCJK) (U.S. Government clouds) – Microsoft Endpoint DLP will support content authored using double-byte character sets in Windows devices (including Simplified Chinese, Traditional Chinese, and Japanese) in service workloads. Roadmap ID:93355
  • Microsoft 365 compliance center: Microsoft Purview | Endpoint DLP – Advanced classification scanning and protection (U.S. Government clouds) – Advanced classification scanning and protection allows the Microsoft 365 cloud-based data classification service to scan items, classify them, and return the results to the endpoint device. This enables admins to include more advanced classification techniques, such as exact data match, into data loss prevention policies. Admins will also have the flexibility to set a per-device bandwidth limit for a 24-hour period to regulate bandwidth usage.ย  Roadmap ID:93275
  • ๐Ÿ†• Microsoft 365 compliance center: Microsoft Purview | Data loss prevention โ€“ Customizable DLP policy violation justification (U.S. Government clouds) – You can customize and replace the out-of-the-box justifications with your organization’s own text to better define the type and scope override. Roadmap ID:93376
  • ๐Ÿ†• Microsoft 365 compliance center: Microsoft Purview | Endpoint DLP โ€“ Restrict copying sensitive files to Bluetooth on endpoints (U.S. Government clouds) – Microsoft Endpoint DLP provides customers the ability to create and enforce DLP policies that regulate the sharing of sensitive data to Bluetooth devices using the same DLP policy creation and management solution they currently use to support DLP across Microsoft’s fully unified DLP offering with the experience their users are already familiar with. Roadmap ID:93377
  • ๐Ÿ†• Microsoft 365 compliance center: Microsoft Purview | Endpoint DLP โ€“ Improved classification accuracy (U.S. Government clouds) – Availability of high/medium/low confidence levels to fine tune the match condition for any Sensitive Info Type in your Endpoint data loss prevention policies. Roadmap ID:93378
  • Microsoft 365 compliance center: Microsoft Purview | Insider Risk Management – Noisy signal management – File path exclusions – Define specific file paths to manage user activity signals that may be considered noisy. Microsoft Purview Insider Risk Management correlates various signals to identify potential malicious or inadvertent insider risks, such as IP theft, security and policy violations, and more. Roadmap ID:88903
  • Microsoft 365 compliance center: Microsoft Purview | Insider Risk Management – Noisy signal management – Site URL and keyword exclusions – Define specific site URLs and keywords to manage user activity signals that may be considered noisy. Microsoft Purview Insider Risk Management correlates various signals to identify potential malicious or inadvertent insider risks, such as IP theft, security and policy violations, and more. Roadmap ID:88904

Release – September 2022

  • Microsoft Information Protection: Microsoft Purview | Information Protection โ€“ Manually apply and edit sensitivity labels on PDFs in Adobe Acrobat – Microsoft Purview Information Protection sensitivity labels are natively integrated into Adobe Acrobat, enabling users to manually label files in Acrobat on the desktop (Windows and macOS). Roadmap ID:93331
  • Microsoft Defender for Office 365: Hourly option for notifications – We are adding a new hourly option to end user notifications, allowing users to be able to rely on prompt notification about quarantined items when appropriate. With this feature users can be rest assured that they will be updated frequently once new items lands on their quarantine folder. Roadmap ID:93304
  • Microsoft 365 compliance center: Microsoft Purview | eDiscovery (Premium) – Support Teams reactions (US Government clouds) – Discover Teams reactions (heart, thumbs up, thumbs down, laugh, surprised, angry) in eDiscovery (Premium). Roadmap ID:88922
  • Microsoft 365 compliance center: Microsoft Purview | Insider Risk Management – Enhancements to Security Policy Violation template – Leverage risky browsing activity on known hacking, malware, keylogger, and other risky websites to identify security policy violations by insiders. Microsoft Purview Insider Risk Management correlates various signals to identify potential malicious or inadvertent insider risks, such as IP theft, security and policy violations, and more. Roadmap ID:82144

Release – November 2022

  • Microsoft 365 Compliance center: Microsoft Purview | Data loss prevention (DLP) support for complex conditions – Complex condition support in Data Loss Prevention (DLP) rule authoring experience will enable Admins to create advanced rules using a combination of AND/OR/NOT operators. Roadmap ID:93274

Release – December 2022

  • ๐Ÿ†• Microsoft Information Protection: Microsoft Purview | Application of a โ€œdefault labelโ€ to an unlabeled file uploaded to a SharePoint Online document library (U.S. Government clouds) – With this update, all newly uploaded documents to a document library can “inherit” the configured label for the document library (if not already labeled). Roadmap ID:93362
  • Microsoft 365 compliance center: Microsoft Purview | Insider Risk Management – Enhancements to Cumulative exfiltration anomaly detector (CEAD) – CEAD will include experience enhancements to make it easier to evaluate the risk as well as leverage priority content and document sensitivities to further prioritize alerts. Microsoft Purview Insider Risk Management correlates various signals to identify potential malicious or inadvertent insider risks, such as IP theft, security and policy violations, and more. Roadmap ID:88908
  • Microsoft 365 compliance center: Microsoft Purview | Insider Risk Management – Alert triage improvements – Various experience improvements based on feedback to accelerate time-to-action including ability to further drill into Sequences within Activity Explorer, new filtering capability as well as enhanced User Activity Timeline view which includes a richer alert history. Microsoft Purview Insider Risk Management correlates various signals to identify potential malicious or inadvertent insider risks, such as IP theft, security and policy violations, and more. Roadmap ID:88899
  • Microsoft 365 compliance center: Microsoft Purview | Insider Risk Management – Enhancements to Sequence detector – Sequence detector will include new Sequences that start with activity on the device, as well as additional obfuscation and exfiltration coverage. Microsoft Purview Insider Risk Management correlates various signals to identify potential malicious or inadvertent insider risks, such as IP theft, security and policy violations, and more. Roadmap ID:82145

Release – June 2023

  • Microsoft 365 Compliance center: Microsoft Purview | Insider Risk Management โ€“ Integration with Communication Compliance – Enrich Insider Risk Management signals by integrating a Communication Compliance triggering event during policy configuration. Microsoft Purview Insider Risk Management correlates various signals to identify potential malicious or inadvertent insider risks, such as IP theft, security and policy violations, and more. Roadmap ID:93259

One thought on “Microsoft 365 roadmap roundup – 27th June 2022

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s