Microsoft 365 roadmap roundup – 8th August 2022

Use the links below to switch between each product’s roadmap updates:

SharePoint
Teams
OneDrive
Microsoft Information Protection

Microsoft Information Protection

Updates listed under this heading combines the following products: Azure Information Protection, Microsoft compliance center, Information Protection, Microsoft Defender, Microsoft Intune, Security & Compliance center and Cloud App Security:

  • Launched (10)
  • Rolling out (2)
  • In development (21)

🍾 LAUNCHED

  • Microsoft 365 compliance center: Microsoft Purview | eDiscovery (Premium) – Support Teams reactions – Discover Teams reactions (heart, thumbs up, thumbs down, laugh, surprised, angry) in eDiscovery (Premium). Roadmap ID:65130
  • Microsoft 365 compliance center: Microsoft Purview | Data Lifecycle Management – Allow record label to start “unlocked” for manual records declaration – Organizations sometimes need the ability to declare a file as a record after a period of collaboration. This update allows records managers to apply a record label to content but allow collaboration. Users can then toggle a switch when ready to lock the file and prevent edits.   Roadmap ID:88509
  • Microsoft Information Protection: Microsoft Purview | Advanced Message Encryption – Office 365 Message Encryption portal access logs – This feature will enable logging of external user activities accessing the Office 365 Message Encryption Portal to retrieve encrypted mail. The logs can be retrieved using the Audit Logs functionality in the Microsoft Purview compliance portal. Roadmap ID:88914
  • Microsoft Information Protection | Microsoft Purview: Advanced Message Encryption (DoD)  – With Microsoft Purview Advanced Message Encryption, you can control sensitive emails shared outside the organization with automatic policies. You configure these policies to identify sensitive information types such as PII, Financial, or Health IDs, or you can use keywords to enhance protection. Once configured, you can pair policies with custom branded email templates and then add an expiration date for extra control of emails that fit the policy. Also, admins can further control encrypted emails accessed externally through a secure web portal by revoking access to the mail at any time. Roadmap ID:93349
  • Microsoft 365 compliance center: Microsoft Purview | Communication Compliance – Expanded Optical Character Recognition to support handwritten and printed text – Expanding optical character recognition beyond text extracted from images or PDFs to include handwritten and printed text, which will then be evaluated against the customers policy conditions (such as keywords matches for threatening language), further reducing an organizations policy violation risk. Microsoft Purview Communication Compliance helps organizations detect explicit code of conduct and regulatory compliance violations, such as harassing or threatening language, sharing of adult content, and inappropriate sharing of sensitive information. Roadmap ID:88920
  • Microsoft 365 compliance center: Microsoft Purview | Communication Compliance – Expanded Optical Character Recognition to support handwritten and printed text (US Government clouds) – Expanding optical character recognition beyond text extracted from images or PDFs to include handwritten and printed text, which will then be evaluated against the customers policy conditions (such as keywords matching for threatening language), further reducing an organizations policy violation risk. Microsoft Purview Communication Compliance helps organizations detect explicit code of conduct and regulatory compliance violations, such as harassing or threatening language, sharing of adult content, and inappropriate sharing of sensitive information. Roadmap ID:93194
  • Microsoft Defender for Office 365: Alert policies – We are enhancing the existing Microsoft Defender for Office 365 alert policy (A potentially malicious URL click was detected). Roadmap ID:93211
  • Microsoft 365 compliance center: Microsoft Purview | Insider Risk Management – Sequence detection – The chronological order of risky activities is an important aspect of risk investigation and identifying these related activities can help to better identify which activities pose a bigger risk.  In Insider Risk Management, you can detect these activities with a sequence detection. Microsoft Purview Insider Risk Management correlates various signals to identify potential malicious or inadvertent insider risks, such as IP theft, security and policy violations, and more. Roadmap ID:93319
  • Microsoft 365 compliance center: Microsoft Purview | Compliance Manager Recommendation wizard for bulk assessment creation (US Government clouds) – Compliance Manager can indicate which assessments may be most relevant to your organization. When you provide basic information about your organization’s industry and locations, we’ll recommend which templates to use from our library of over 300 templates. Simply choose among the recommended templates for quick setup of multiple assessments all at once. Roadmap ID:88966
  • Microsoft Information Protection: Microsoft Purview | Apply default label policies to existing documents being edited (WXP on Web) – Users with default labeling policies will now support applying that default to any supported document they edit. Previously this only applied to new documents. This update applies to Word, Excel, and PowerPoint (WXP) on the Web. To track status of this feature for Word, Excel, and PowerPoint on PC and Mac, see roadmap item 93209.   Roadmap ID:88515

🚂 ROLLING OUT

  • Microsoft 365 compliance center: Microsoft Purview | Endpoint DLP – Restrict egress activities when accessing sensitive websites in Microsoft Edge  – This capability allows restricting common egress activities as users navigate protected sites or access sensitive content via Microsoft Edge. With this new capability, organizations will be able to designate groups of protected sites and apply different restrictions; and monitor or restrict common egress activities when users visit protected sites with audit, block, and block override controls. Roadmap ID:93415
  • Microsoft Defender for Office 365: Recipient Block using Tenant Allow/Block List Senders – Today the Tenant Allow Block List is used to prevent users from receiving email from select senders. However, users are still able to send emails to that same address or domain. With this new feature, the Tenant Allow Block List will be extended to prevent users from sending emails to addresses and domains that are added to the Allow/Block list. Roadmap ID:93363

⌛ IN DEVELOPMENT

Release – August 2022

  • Microsoft Defender for Office 365: Custom organization branding for quarantine notification (custom sender address and Custom subject) – We are adding capabilities to making it possible for SecOps to customize end user quarantine notifications with their respective organization sender address and custom subject. Doing so helps ensure that users have safe and secure access to their quarantined messages and trains them to recognize legitimate notifications. Roadmap ID:93301
  • Microsoft Defender for Office 365: Expansion for URL Click Alert policy – We are expanding coverage of the malicious URL click alert. The alert will now include any clicks in the past 48 hours (for emails) from the time the malicious URL verdict is identified. Roadmap ID:93300
  • Microsoft Defender for Office 365: Actions from the email entity page – We are adding the ability to take actions from the email entity page. You can take email purge actions, create submissions, tenant level block actions (block sender/domain/file/URLs), investigative actions from email entity page. Roadmap ID:93295
  • Microsoft 365 compliance center: Microsoft Purview | Exact Data Match updated UI wizard – An updated Exact Data Match (EDM) UI wizard will supplement the current wizard in the Microsoft Purview compliance portal, offering both an improved manual configuration as well as a new guided experience. Roadmap ID:88895

Release – September 2022

  • Microsoft Defender for Office 365: Redirecting users to Microsoft 365 Defender (GCC, GCC High, DoD) – We will begin automatically redirecting users in government cloud environments accessing the security-related capabilities in the Office 365 Security and Compliance center to Microsoft 365 Defender. These include capabilities in the Threat Management section, Alerts, Threat Management dashboard and Reports. Items in the Office 365 Security and Compliance Center that are not related to security are not redirected to Microsoft 365 Defender. Customers are able to turn off automatic redirection.   Roadmap ID:93418
  • Microsoft 365 compliance center: Microsoft Purview | New cmdlet for exporting Activity Explorer logs – Export feature of Activity Explorer has limitation of 10,000 rows. Our new feature will allow users to use cmdlet and export all the rows for all the data up to 30 days. Roadmap ID:93281
  • Microsoft Defender for Office 365: Alert policies – We are enhancing the existing Microsoft Defender for Office 365 alert policy (A potentially malicious URL click was detected). Roadmap ID:93432
  • Microsoft Defender for Office 365: Anti-malware policy notifications – The anti-malware policy can be configured with recipient and sender notifications when a message is quarantined. We are redesigning this notifications option and delivery. Roadmap ID:93433
  • Microsoft Defender for Office 365: Updates to the common attachment filter in the anti-malware policy – We are enhancing the common attachments filter (Anti-malware policy) to expand list of available file types and also manage custom file types in the portal.  Roadmap ID:93431

Release – October 2022

  • 🆕 Microsoft Compliance center: Microsoft Purview | Data Loss Prevention: Decoupling the User Notifications and Policy Tips on Exchange DLP – With this update you will be able to configure policy tips and email notifications in your Microsoft Purview Data Loss Prevention (DLP) policies for Exchange Online independently for more granular control. Roadmap ID:93429
  • Microsoft Compliance center: Microsoft Purview | Endpoint DLP – Restrict copying sensitive files to remote desktop (RDP) sessions (U.S. Government clouds) – With this update, you will be able to create Microsoft Purview Data Loss Prevention policies to regulate the sharing of sensitive data over an RDP session. DLP controls for RDP include support for deploying DLP policies in Audit mode, Block with Override mode, and Block mode. Roadmap ID:93428
  • Microsoft 365 compliance center: Microsoft Purview | Endpoint DLP – Archived file support (U.S. Government clouds) – Support the scanning for sensitive content in ZIP and ARJ archive files in Windows devices.   Roadmap ID:93353
  • Microsoft 365 compliance center: Microsoft Purview | Endpoint DLP – Contextual policy conditions (U.S. Government clouds) – Support to identify when a file is sensitive based upon the file type or extension in Windows devices. Extend your Endpoint DLP policy controls to detect and protect even more content types such as CAD drawing files, video and audio files, and custom file types used in your specific industry. Roadmap ID:93354
  • Microsoft 365 compliance center: Microsoft Purview | Endpoint DLP – Classification globalization support (CCJK) (U.S. Government clouds) – Microsoft Endpoint DLP will support content authored using double-byte character sets in Windows devices (including Simplified Chinese, Traditional Chinese, and Japanese) in service workloads. Roadmap ID:93355
  • Microsoft 365 compliance center: Microsoft Purview | Endpoint DLP – Restrict copying sensitive files to Bluetooth on endpoints (U.S. Government clouds) – Microsoft Endpoint DLP provides customers the ability to create and enforce DLP policies that regulate the sharing of sensitive data to Bluetooth devices using the same DLP policy creation and management solution they currently use to support DLP across Microsoft’s fully unified DLP offering with the experience their users are already familiar with. Roadmap ID:93377
  • Microsoft 365 compliance center: Microsoft Purview | Endpoint DLP – Improved classification accuracy (U.S. Government clouds) – Availability of high/medium/low confidence levels to fine tune the match condition for any Sensitive Info Type in your Endpoint data loss prevention policies. Roadmap ID:93378
  • Microsoft 365 compliance center: Microsoft Purview | eDiscovery (Premium) – Support Teams reactions (US Government clouds) – Discover Teams reactions (heart, thumbs up, thumbs down, laugh, surprised, angry) in eDiscovery (Premium). Roadmap ID:88922

Release – December 2022

  • 🆕 Microsoft 365 compliance center: Microsoft Purview | Endpoint DLP – Detect sensitive files that are encrypted, or password protected – With this capability, your Microsoft Purview Data Loss Prevention (DLP) policies will be able to detect the presence of, and prevent password protected Microsoft Office, PDF, and archive files on Windows endpoint devices from unauthorized use. Roadmap ID:93416
  • Microsoft 365 compliance center | Microsoft Purview: Insider Risk Management – Policy wizard enhancements – Updates are being made to the Insider Risk Management policy wizard. We are splitting our Indicators step of the wizard into two steps (step 1- indicators, step 2- sequence detection, cumulative exfiltration detection, and risk score boosters) to enable an easier experience. Roadmap ID:93356

Release – March 2023

  • 🆕 Microsoft 365 compliance center: Microsoft Purview | Communication Compliance – Gain context around ML model policy matches – Make more informed remediation actions with machine learning (ML) model highlighting. This feature gives investigators greater context around which word or key phrase triggered an ML model policy match and caused a classifier to catch a message. Microsoft Purview Communication Compliance helps organizations detect explicit code of conduct and regulatory compliance violations, such as harassing or threatening language, sharing of adult content, and inappropriate sharing of sensitive information. Roadmap ID:88917
  • Microsoft 365 Compliance center: Microsoft Purview | Communication Compliance – Recommended policy scope – Leverage policy scope insights to understand the aggregated volume of policy violations that are missed from users that are not currently scoped into the policy. Microsoft Purview Communication Compliance helps organizations detect explicit code of conduct and regulatory compliance violations, such as harassing or threatening language, sharing of adult content, and inappropriate sharing of sensitive information. Roadmap ID:93260

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s