The Azure Security Podcast  

In this episode Michael and Sarah talk with guest Amanda Minnich  ( ) about securing agentic AI systems, and the new security challenges they face.
We also discuss Azure Security news about Azure File Sync, Docker support in Azure and a new series of Secure Future Initiative videos with appearances from Michael, Sarah, and various guests.

Links

• Transcript
• Secure Future Initiative: Tech Tips
• Azure File Sync support for managed identities
• Retirement: Docker Content Trust on March 31, 2028
• Michael joking about Bogosort
• Zero Trust Agent (ZTA) Framework for Multi-Agent Collaboration
• AI Agents Under Threat: A Survey of Key Security Challenges and Future Pathways
• Security of AI Agents
• Context is Key for Agent Security
• AGENTPOISON: Red-teaming LLM Agents via Poisoning Memory or Knowledge Bases
• Technical Blog: Strengthening AI Agent Hijacking Evaluations
• Agentic AI - Threats and Mitigations
• Microsoft Responsible AI Standard, v2
• Agentic Autonomy Levels and Security
• MemGPT: Towards LLMs as Operating Systems
• Magma: A Foundation Model for Multimodal AI Agents
• Magentic-One: A Generalist Multi-Agent System for Solving Complex Tasks
• AgentPoison: Red-teaming LLM Agents via Poisoning Memory or Knowledge Bases
• Agentic Systems: A Guide to Transforming Industries with Vertical AI Agents

In this episode Michael and Gladys talk with guest Sharon Chahal  ( ) about monitoring and auditing when building GenAI applications. We also cover other related topics.
We also discuss Azure Security news about API Security Posture Management, Azure Key Vault in China, Azure Data Studio retirement, new least privilege permissions in Graph and more.

Links

• Transcript
• Boost Security with API Security Posture Management
• Azure Key Vault Premium, featuring FIPS 140 Level 3 Hardware Security Modules (HSMs), is accessible in China.
• Service principal support for Fabric Data Warehouse
• Azure Data Studio Retirement
• Avoid granting super privileges like Directory.ReadWrite.All and User.ReadWrite.All to apps
• Block Device Code Flow in Microsoft Entra ID Conditional Access
• Azure Updates for TLS
• DNSSEC overview
• February 2025: A look at the latest Microsoft Entra key feature releases, announcements, and updates

In this episode Michael, Gladys and Mark talk with guest Bailey Bercik  ( ) about how to use Microsoft Entra Permissions Management to identify and manage over-permissioned identities in multi-cloud environments to reduce security risks.
We also discuss Azure Security news about Lessons from AI red-teaming, Azure Confidential Ledger, Star Blizzard treat actor, and the CISA Zero Trust Maturity Model.

Links

• Transcript
• 3 takeaways from red teaming 100 generative AI products
• Enhanced Server Audit for Azure SQL Database: Greater Performance, Availability and Reliability
• Azure - Compliance Offerings (January 2025)
• New Star Blizzard spear-phishing campaign targets WhatsApp accounts
• New Microsoft guidance for the CISA Zero Trust Maturity Model
• Secure Generative AI with Microsoft Entra
• Least Privilege in 2025 with Bailey Bercik

In this episode Michael, Gladys, Mark and Sarah talk to guest Diana Vicezar ( ) from the Microsoft Entra team about security Generative AI applications.
Note, this is a short, simple intro episode to introduce three follow-on episodes.
We also cover security news about TLS 1.3 and Azure Event Grid, big updates to Microsoft Defender for Cloud, Azure Database for MySQL, SQL Managed Instance and Confidential Ledger. about
We also cover security news about TLS 1.3 and Azure Event Grid, big updates to Microsoft Defender for Cloud, Azure Database for MySQL, SQL Managed Instance and Confidential Ledger.

Links

• Transcript
• Configure the minimum TLS version for an Event Grid topic or domain
• Accelerated logs feature in Azure Database for MySQL - Flexible Server
• Service endpoint policies for Azure Storage now generally available in SQL Managed Instance subnets
• Still doing 'scan and shame' vulnerability management?
• Azure Confidential Ledger is now SOC 2 Type II compliant
• What's new in Defender for Cloud features
• Secure Generative AI with Microsoft Entra

Happy New Year! In this episode Michael, Sarah, and Mark talk with guests Maxime Bombardier  ( ) and Emily Blundo ( ) about the Secure by default and Copilot overshare blueprints
We also cover news about Always Encrypted Assessment in SQL Server Management Studio, MVP Summit, mapping Entra to the Open Group standard for Adaptive Access, and various CISO Workshop topics!

Links

• Transcript
• MVP Global Summit 2024: Learn, Connect, and Share
• Purview deployment models
• Address internal oversharing concerns in Microsoft 365 Copilot deployment blueprint
• Zero Trust Reference Model
• Asset-Centric Security Operations
• Security metrics
• Maturity models

In this episode Michael, Sarah, and Mark talk about the latest security news from Microsoft Ignite. We each go through items that we found of interest in the Book of News. about
We also discuss Azure Security news about:

Links

• Transcript
• MICROSOFT IGNITE 2024 BOOK OF NEWS
• Securing AI and Cloud with the Zero Day Quest
• Microsoft Ignite 2024: Embracing the future of Windows at work
• Security Innovation to Strengthen Cyber Defense in the Age of AI
• Prepare your data for Microsoft Copilot with new tools
• What's New in Windows Security Productivity and Cloud
• Inside Azure innovations with Mark Russinovich
• /hotpatch (Create Hotpatchable Image)
• Announcing Zero Trust DNS Private Preview
• Zero Trust Overview and Playbook Introduction: Guidance for business, security, and technology leaders and practitioners
• Making Zero Trust Real: Top 10 Security Controls you can implement now

In this episode Michael, Sarah, and Mark talk with guest Merill Fernando  ( ) who is a Principal Product Manager at Microsoft about Entra ID and some of the tools he has worked on over the years.
We also discuss Azure Security news about:

Links

• APIs for Managed Private Endpoint are now available
• Retirement: Support for TLS 1.0/1.1 in Application Insights Availability Tests will be retired
• Retirement: Update on retirement of TLS 1.0 and TLS 1.1 versions for Azure Services
• Transcript
• Microsoft Zero Trust Workshop
• Maester
• akaSearch
• Microsoft 365 Message Center Archive
• Refined Microsoft Learn
• Entra.News - Your weekly dose of Microsoft Entra
• Graph X-Ray :Beta
• MSIdentityTools
• idPowerApp
• Azure AD Assessment Guide
• EntraExporter
• Microsoft Graph Permissions Explorer
• Microsoft Ignite
• Support for FIDO2 authentication with Microsoft Entra ID
• Public Preview: Confidential Containers now in preview on Azure Red Hat OpenShift
• Making Zero Trust Real: Top 10 Security Controls you can implement now
• SECURITY PRINCIPLES FOR ARCHITECTURE
• ZERO TRUST COMMANDMENTS
• Zero Trust Overview and Playbook Introduction: Guidance for business, security, and technology leaders and practitioners

In this special episode Michael talks with guest Nic Filinghamm  ( ) about what went down at the recent Microsoft Bluehat conference in Redmond, WA.
We also discuss how to tell the NZ and Australian accents apart. This alone is worth listening to :)
This is a follow-on from episode 103 when we talked about what was coming up for Bluehat.
No news, as this is a special, smaller episode. It's also the least edited; other than some ums and ers getting removed and a small retake, the result is as was recorded. Let us know what you think, this feels a little more 'chatty' and personable.

Links

• Transcript
• BLUEHAT 2024
• Bluehat on Youtube
• The BlueHat Podcast (Apple)
• The Bluehat Podcast (Spotify)

In this episode Michael and Sarah talk with guest Nic Filinghamm  ( ) about some of the most important security conferences around the globe with a special focus on Microsoft's annual Bluehat conference.
We also discuss Azure Security news about Azure PostgreSQL, Cosmos DB, IP address management, containers and AI Studio.

Links

• Transcript
• Public Preview: Azure Database for PostgreSQL – Flexible Server—support for postgresql_anonymizer extension version 1.3.2
• Generally Available: Dedicated gateway RBAC support and a new request option
• Public Preview: Azure Virtual Network IP address management
• Announcing Text PII Redaction Container Release
• Public Preview: Evaluations for indirect prompt injection attacks in Azure AI Studio
• Public Preview: Evaluations for protected material (text) in Azure AI Studio
• Youtube: Microsoft Security Response Center (MSRC)
• BlueHat Oct 23. S22: Security Content: Stop Flexing and Start Helping

In this episode Michael and Sarah talk with guest Dr. Nestori Syynimaa [Dr Azure AD]  ( ) about Entra ID security and his purple-team tool, AADInternals.
We also discuss Azure Security news about Secure Future Initiative (SFI), MFA for Azure Portal, Playright, WordPress, NSG, Bastion, Azure Functions, MS Ignite, App Service, Defender for Cloud, Containers, Azure Monitor, AKS, Trustworthy AI and Azure AI Content Safety.

Links

• Transcript
• Securing our future: September 2024 progress update on Microsoft’s Secure Future Initiative (SFI)
• Announcing mandatory multi-factor authentication for Azure sign-in
• Microsoft Entra Internet Access now generally available
• Managed Identity support for WordPress on App Service
• Manage NSG association on Subnets via Azure Policy
• Retirement: SQL Insights (preview)
• Public Preview: Entra ID support for SSH connections in portal
• Secure & scalable quick starts for Azure Functions using Azure Developer CLI
• Microsoft Ignite Sold Out? Not for Security Professionals! Secure Your Spot
• Build and secure your apps with Azure App Service and Defender for Cloud
• Public Preview: Advanced Container Networking Services: Enhancing security and observability in AKS
• Public Preview: Announcing Azure Monitor Metrics Export in public preview
• Generally Available: FIPS mutability support in AKS
• Microsoft Trustworthy AI
• Announcing the public preview of Hybrid Azure AI Content Safety (AACS)
• AADInternals

In this episode Michael, Sarah, Gladys and Mark talk with guests Waymon Ho ( ) and Matt Zorich  ( ) about the GHOST team at Microsoft and how they help protect Microsoft and Microsoft customers from attacks.
We also discuss Azure Security news about Azure Event Grid, AKS, Azure NetApps, and Chaos Studio. Mark mentions more about Zero Trust.

Links

• Transcript
• Retirement: Upcoming TLS changes for Azure Event Grid
• Generally Available: Double encryption at-rest for Azure NetApp Files
• Generally Available: Azure Chaos Studio supports a new Network Isolation fault for virtual machines
• Public Preview: FIPS mutability support in AKS
• Security Principles for Architecture
• Zero Trust Commandments
• Zero Trust Overview and Playbook Introduction: Guidance for business, security, and technology leaders and practitioners
• GHOST jobs

In this episode Michael, Sarah, Gladys and Mark talk about our careers so far, explain some funny stories and our wishes for a more secure future.

Our Stories

Mark at the start

Sarah 4m 5s

Gladys 6m 50s

Michael 12m 22s

Funny Stories

Mark 19m 31s

Sarah 20m 33s

Gladys 22m 46s

Michael 24m 39s

Career Advice

Mark 26m 58s

Sarah 29m 18s

Gladys 31m 48s

Michael 34m 40s

Future

Mark 36m 27s

Sarah 38m 33s

Gladys 40m 34s

Michael 42m 24s

Behind the Scenes

43m 36s

BLOOPER: Not Michael's proudest moment!

Links

• Transcript

In this (late) episode Michael, Sarah, Gladys and Mark talk with guest Andrew McMurray  ( ) a Principal Product Manager at Microsoft about securing Copilot AI data and the role Purview can play for end-to-end protection.
We also cover news about MFA access to the Azure Portal (Important), PostgreSQL, Entra ID and Windows authn metadata, Backup Vaults, Conditional Access Policy, ADFS, and Azure Container Apps.

Links

• Transcript
• Update on MFA requirements for Azure sign-in
• Azure Policy Support is Generally Available for PostgreSQL Flexible Server
• Authenticating Microsoft Entra ID using windows principal metadata - Public Preview
• Generally Available: Encryption using Customer Managed Keys for Backup Vaults
• Common Conditional Access policy: Block access for users with insider risk
• Use AD FS application migration to move AD FS apps to Microsoft Entra ID
• Generally Available: Support for Azure Key Vault certificates in Azure Container Apps
• Public Preview: Managed identity support for scaling rules in Azure Container Apps

In this episode Michael and Gladys talk with guest Dave Weston  ( ) about Secure Future Initiative and the growing use of the Rust programming language at Microsoft. On the topic of Rust, Michael and Dave nerd out, and we make no apologies! Rust conversation starts at 13m:30s.

We also discuss Azure Security news about Defender for Cloud, Azure Bastion and Log Search.

Links

• Transcript
• Analyze recommendations with Copilot for Security
• Public preview: Azure Bastion Premium
• Log search alert rules using linked storage will require using a managed identity starting July 2024
• Security above all else—expanding Microsoft’s Secure Future Initiative
• Open-source Rust driver development platform
• Rust support for UEFI development through Project Mu
• Rust: Surface UEFI - Evolution in boot, security & device management to build an industry leading secure PC
• Microsoft Pluton Firmware ported to Rust @ TockWorld 7
• Comprehensive Rust
• The Rust Programming Language
• Circle Compiler
• C++ Safety with Herb Sutter
• Keynote: Safety, Security, Safety[sic] and C/C++[sic] - C++ Evolution - Herb Sutter - ACCU 2024
• C++ safety, in context
• David Weston Posts
• Arm memory tagging extension

In this episode Michael and Sarah talk with guest Richard Diver  ( ) about securing solutions that use AI and LLMs. Richard also talks about his new book on AI Security, and Michael and Richard talk about what it takes to write a book.
We also discuss Azure Security news about Chaos Studio, API Management, Azure Bastion, Front Door, AKS and Copilot for Security and lots more!

Links

• Transcript
• Generally Available: Azure Chaos Studio supports a new Pause Process fault for Windows virtual machines
• API Management: Circuit breaker
• General availability: Azure Bastion Developer SKU
• Azure Front Door log scrubbing of sensitive data is generally available
• Draft now supports best practices via deployment safeguards
• GA: Support for disabling Windows outboundNAT in AKS
• Public preview: Azure Firewall integration in Microsoft Copilot for Security
• Public preview: Azure Web Application Firewall (WAF) integration in Microsoft Copilot for Security
• Guardians of AI: Building innovation with safety and security (Richard's Book)
• Drawing Cybersecurity (Richard's Newsletter)
• Microsoft Security Development Lifecycle (SDL)
• Microsoft Build 2024 Session catalog
• Inside AI Security with Mark Russinovich
• Secure your AI application transformation with Microsoft Security
• Data Security Considerations for AI Adoption
• Fundamentals of AI safety and security
• How Microsoft Approaches AI Red Teaming

In this episode Michael, Sarah, and Mark talk with guest (and good friend of the podcast) Yuri Diogenes  ( ) about CNAPP - Cloud Native Applications Protection Platform and announce the release of a CNAPP e-book.
We also discuss Azure Security news about Azure SQL DB, Defender for Cloud, Data Box and Trusted Signing.

Links

• Transcript
• Public preview: Label-based access control for Azure SQL Database using Microsoft Purview policies
• Microsoft Defender for Cloud Adds Full Coverage for Azure Open-Source Relational Databases
• Azure Data Box Disk is now available with hardware encryption
• Trusted Signing is in Public Preview
• Introducing our CNAPP mastery e-book!
• Planning and Operationalizing Microsoft CNAPP

In this episode Michael, Sarah and Mark talk with guest Sherrod DeGrippo  ( ) Director of Threat Intelligence Strategy at Microsoft about the current state of Threat Intelligence.
We also discuss Azure Security news about Tampa BSides, Virtual Networks, Azure Database for MySQL and PostgreSQL, and SQL Server on Linux.

Links

• Transcript
• Tampa BSides - The No BS SOC (slides from April 6, 2024 talk)
• Azure Virtual Network Manager Security Admin Rule generally available in 45 regions
• Public Preview: Long-term retention for Azure Database for MySQL - Flexible Server
• General Availability: Azure Database for PostgreSQL - Flexible Server networking with Azure Private Link
• Enabling Azure Key Vault for SQL Server on Linux
• General availability: Azure Virtual Network encryption availability in all regions
• The Microsoft Threat Intelligence Podcast
• How Microsoft names threat actors
• Threat Intelligence Blog

In this episode Michael, Sarah and Mark talk with guest Ryan Munsch  ( ) about the newly released Copilot for Security.
We also discuss Azure Security news about Azure SQL DB, SSMS 20, Change Actor, Copilot for Azure SQL DB, Azure Container Apps, AI Prompt Shields, AI Groundedness Detection and BlueHat India and Israel.

Links

• Transcript
• Advance notifications for planned maintenance events in Azure SQL Database
• Introducing database watcher for Azure SQL
• Upcoming changes for SQL Server Management Studio (SSMS)
• Announcing the Public Preview of Change Actor
• Introducing Copilot in Azure SQL Database (Private Preview) | Data Exposed
• Public preview: Support for Key Vault Certificates in Azure Container Apps
• Generally Available: Free managed certificates on Azure Container Apps
• BlueHat Israel
• Application to Attend BlueHat India, May 16-17, 2024
• Quickstart: Prompt Shields (preview)
• Quickstart: Groundedness detection (preview)
• Microsoft Copilot for Security
• Get started with Microsoft Copilot for Security
• Copilot for Security Technical Resources
• Intro to Microsoft Copilot for Security webinar series
• Microsoft Copilot for Security - Videos
• The Shift from Models to Compound AI Systems

In this episode Michael, Sarah and Mark talk with guests Tony Rice  ( ) and David Ornstein about advances in Continuous SDL (Security Development Lifecycle).
We also discuss Azure Security news about Azure Key Vault, Cloud PKI, OAuth2, updated SQL Server password verifiers, Memory Safety and Azure SQL DB.

Links

• Transcript
• RSA Conference: You're Doing It Wrong! Common Security Anti Patterns
• BSides Tampa Agenda
• BSides Tampa Training & Workshops (Friday April 5th)
• Trusted launch (preview) for Azure Kubernetes Service (AKS)
• General availability: Improvements in Azure Key Vault
• Microsoft Cloud PKI launches as a new addition to the Microsoft Intune Suite
• Microsoft Cloud PKI
• Run a quick OAuth app audit of your tenant using this command and protect yourself
• MSIdentityTools
• Support for Iterated and Salted Hash Password Verifiers in SQL Server 2022 CU12
• Memory safety discussion
• C++ creator rebuts White House warning
• Microsoft Entra logins and users with nonunique display names (preview)
• Evolving Microsoft Security Development Lifecycle (SDL)

In this episode Michael and Sarah talk with guest Martin Abbott  ( ) about the Global Azure event that starts soon, https://globalazure.net/. We talk about how to successfully fill out a Call for Papers (CFP) so YOU can present to a global audience about security topics that interest you.
We also cover security news AI security, SQL Always Encrypted, SymCrypt and Rust, SQL Security Fundamentals, and free Security 101 material.

Links

• Transcript
• Global Azure 2024
• Global Azure Blog
• Global Azure Communities
• Always Encrypted with secure enclaves - Intel SGX vs VBS
• Rust crates for SymCrypt
• (Preview) Defender for Cloud Compliance standards added to compliance dashboard
• Join us in 2024 — events to get your teams AI-ready
• Security-101
• Copilot L33t Sp34k
• Smashing The Stack For Fun And Profit

In this episode Michael talks with guest Rigel Carlson   ( ) about Azure Chaos Studio.
We also discuss Azure Security news about Midnight Blizzard and Michael has some advice about using Azure's DefaultAzureCredential()

Links

• Transcript
• Using DefaultAzureCredential() 1 of 2
• Using DefaultAzureCredential() 2 of 2
• Optimize app reliability with automated Load and Chaos testing
• Azure Chaos Studio
• Azure Chaos Studio fault and action library
• John Savill's Technical Training: Azure Chaos Studio
• Conf42 Chaos Engineering 2023 - Online
• Virtual network injection in Azure Chaos Studio
• Contoso Traders - Cloud testing tools demo app
• Continuously validate your mission-critical workload
• Recommendations for designing a reliability testing strategy
• PRINCIPLES OF CHAOS ENGINEERING
• Security Chaos Engineering

In this episode Michael, Sarah and Mark talk with guests Dr. Amanda Minnich ( ) and Pete Bryan ( ) about AI Red Teaming.
We also discuss Azure Security news about Azure SQL DB, Trusted VMs, NetApp Files, Azure Load Testing and Front Door. Mark covers further details about Zero Trust and the CISO Workshop.

Links

• Transcript
• What's new in security for Azure SQL and SQL Server
• Private Preview: Upgrade existing Azure Gen1 VMs to Gen2-Trusted launch
• General Availability: Premium SSD v2 and Ultra disks support with Trusted launch
• General Availability: Azure Virtual Network encryption
• General Availability: Customer-managed keys for Azure NetApp Files volume encryption
• Azure Load Testing supports fetching secrets from Azure Key Vault with access restrictions (private AKV)
• General availability: Security Update for Azure Front Door WAF CVE-2023-50164
• Security Adoption Resources
• New Microsoft Incident Response guides help security teams analyze suspicious activity
• Frequently asked questions about Microsoft Copilot for Azure in Cosmos DB (preview)
• Exam AI-900: Microsoft Azure AI Fundamentals
• Microsoft Responsible AI Standard, V2
• Microsoft AI Red Team building future of safer AI
• Planning red teaming for large language models (LLMs) and their applications
• MITRE ATLAS™ (Adversarial Threat Landscape for Artificial-Intelligence Systems)
• How Johnny Can Persuade LLMs to Jailbreak Them
• Microsoft’s AI Red Team Has Already Made the Case for Itself
• Researchers Discover New Vulnerability in Large Language Models
• Embrace The Red
• Prompt Engineering Guide
• NIST Identifies Types of Cyberattacks That Manipulate Behavior of AI Systems
• Tree of Attacks: Jailbreaking Black-Box LLMs Automatically
• LLM Data Security Best Practices
• Comprehensive Guide to Large Language Model (LLM) Security
• Make Gandalf reveal the secret password
• Jailbreak Chat