Skip to content
Chimera readability score 75 out of 100, Expert reading level.

Security is never finished. That conviction is where the Secure Future Initiative (SFI) started two years ago and continues to guide us today. AI is reshaping cybersecurity. Cyberattackers can discover vulnerabilities, chain attack paths, and scale exploitation faster than manual approaches allow. Defenders can use the same advances to identify risk, strengthen protections, and accelerate response. As the threat landscape evolves, security must evolve with it.
This latest SFI progress report shows how Microsoft is adapting to that reality: strengthening security foundations for an AI-accelerated cyberthreat landscape, applying AI to improve security outcomes at scale, and preparing for future challenges such as scalable quantum computing.
This report organizes our progress into three outcome-driven themes—secure foundations, proactive defense, and future-ready security—and shares lessons learned, practical guidance, and deeper insights across the culture, governance, principles, and engineering pillars that underpin security at Microsoft.
Secure foundations
The most consequential security failures rarely come from a single missing control. They come from environments where identity gaps, unmanaged assets, and inconsistent configurations sit side by side, creating composite attack paths that determined threat actors can chain together. SFI addresses this systemically, strengthening security across our environment. The results show the progress:
- Phishing-resistant multifactor authentication now protects 99.97% of user/device pairs at Microsoft.
- More than 732,000 resources have had public access revoked, with network isolation scaling across 1 million resources.
- 1.4 million unused apps were decommissioned and cross-boundary credential isolation reached 98.7%.
- Engineering defaults now prevent 83% of pipelines from accessing unapproved package endpoints.
These controls form reinforcing layers: identity feeds access governance, access governance feeds segmentation, segmentation contains blast radius, and engineering defaults reduce what enters production in the first place. One of the lessons we have learned is that foundations are durable only when they’re continuously validated, not periodically audited.
Proactive defense
Secure foundations reduce the attack surface. Proactive defense builds on that foundation to find and fix weaknesses quickly. Traditional practices like code review and penetration testing remain essential. The difference now is that frontier AI can discover vulnerabilities and chain exploit paths faster than manual review can keep up. That’s a threat and, when used well, an advantage. We’ve leaned into that advantage to find real risk earlier and close it before a cyberattacker can act.
- We built a multi-agent AI system that delivers proactive assessment of a cloud service’s source code, identity configurations, network topology, and runtime state to surface composite vulnerabilities that a single-layer review could not catch. More than 90% of findings confirmed by our security engineers, enabling proactive actions to improve security posture.
- This system builds on other tools in our security portfolio—such as the Microsoft Security multi-model agentic scanning system (codename MDASH), which scans source code to identify, validate, and prioritize vulnerabilities at scale—and adds configuration, identity, network, and runtime context to comprehensively assess the service.
- More than 100 new detections were added this year (more than 350 total), shifting from signature-based to behavior- and baseline-driven detection.
- More than 550,000 critical and high-risk open-source vulnerabilities were remediated, with about 3 million container vulnerabilities patched per month through automation.
Future-ready security
Some risks have not fully arrived yet, but waiting for them is not an option. The most urgent example is the transition to post-quantum cryptography. The threat is already here in the form of “harvest now, decrypt later”: data encrypted today could be captured and decrypted once quantum capability matures.
- We are accelerating the Microsoft Quantum Safe Program (QSP) timeline, with the goal of transitioning to post-quantum cryptography (PQC) in critical products and services by 2029.
- PQC is now an SFI-measured engineering requirement, with workstreams advancing across network traffic, data-at-rest protection, and trust chain modernization.
- Quantum-safe algorithms (ML-KEM, ML-DSA) are available today across major platforms.
- Read more in the recent blog: Accelerating quantum-safe readiness.
Governance, culture, and principles
Foundational progress like this is only possible because of the people committed to making it possible. Security is a core responsibility for every employee at Microsoft: mandatory Trust Code training was completed by more than 99% of full-time employees. Governance is what makes it scale, with accountability driven through our Deputy Chief Information Security Officer (CISO) structure and a centralized risk register. And our principles—secure by design, secure by default, secure in operations—are what turn intent into product, like Microsoft 365 Baseline Security Mode. Tools alone don’t create durable security; culture, accountability, and secure defaults do.
What you can do today
Throughout the report, we share actionable guidance for organizations at any stage of their security journey. A few starting points:
- Enforce phishing-resistant multifactor authentication and eliminate legacy authentication protocols.
- Inventory every tenant and classify it. Apply secure-by-default provisioning with drift detection.
- Evaluate how identity, code, configuration, and network relationships interact in production. Prioritize composite attack paths over isolated findings.
- Inventory your cryptographic dependencies now and establish transition plans for post-quantum readiness.
- Enable Baseline Security Mode in Microsoft 365 for secure-by-default configuration at no additional cost.
Read the full SFI report, including detailed pillar-level progress and additional customer guidance.
Each hardening action changes the cyberattacker’s approach. The compounding effect of SFI is that attackers face a shrinking set of viable paths, while defenders gain better telemetry, stronger defaults, and sharper prioritization for the paths that remain.
Security is a team sport. We are grateful for the partnership of our customers, security researchers, and the broader industry as we work together to make the world a safer place for all.
Learn more
To learn more about Microsoft Security solutions, visit our website. Bookmark the Security blog to keep up with our expert coverage on security matters. Also, follow us on LinkedIn (Microsoft Security) and X (@MSFTSecurity) for the latest news and updates on cybersecurity.

Facts Only

* Phishing-resistant multifactor authentication protects 99.97% of user/device pairs at Microsoft.
* More than 732,000 resources had public access revoked, with network isolation scaling across 1 million resources.
* 1.4 million unused applications were decommissioned, and cross-boundary credential isolation reached 98.7%.
* Engineering defaults prevent 83% of pipelines from accessing unapproved package endpoints.
* A multi-agent AI system assesses cloud service source code, identity configurations, network topology, and runtime state to surface composite vulnerabilities.
* More than 90% of findings from the AI assessment were confirmed by security engineers, enabling proactive actions.
* More than 100 new detections were added this year, shifting detection methods from signature-based to behavior- and baseline-driven.
* More than 550,000 critical and high-risk open-source vulnerabilities were remediated, with about 3 million container vulnerabilities patched per month through automation.
* The Microsoft Quantum Safe Program (QSP) timeline is being accelerated to transition to post-quantum cryptography (PQC) in critical products and services by 2029.
* Quantum-safe algorithms, such as ML-KEM and ML-DSA, are available across major platforms.

Executive Summary

Security evolution is guided by the Secure Future Initiative (SFI), adapting to an AI-accelerated threat landscape where attackers operate faster than manual defense methods. Microsoft is addressing this by strengthening security foundations, applying AI for scaled risk management, and preparing for future challenges like quantum computing. Progress is structured around three themes: secure foundations, proactive defense, and future-ready security, incorporating lessons across governance, culture, principles, and engineering. Foundational work includes implementing phishing-resistant multi-factor authentication, revoking public access to resources, decommissing unused applications, and establishing default engineering controls to limit access and prevent entry into production environments. Proactive defense leverages AI to assess source code, configurations, and runtime states to find composite vulnerabilities, complementing traditional testing by shifting detection to behavior- and baseline-driven methods. Furthermore, preparation for future risks involves accelerating the transition to post-quantum cryptography by establishing it as an engineering requirement. This progress is underpinned by a cultural commitment where security accountability is embedded across all employees through training and governance structures.

Full Take

The narrative frames security advancement not as a collection of isolated controls, but as a systemic feedback loop where foundational stability enables proactive risk mitigation, which in turn prepares the organization for emergent threats. The shift from periodic auditing to continuous validation of foundations—recognizing that composite attack paths arise from gaps across identity, access, segmentation, and engineering defaults—suggests a transition from perimeter defense to intrinsic architectural integrity. The application of multi-agent AI exemplifies a potential paradigm shift: moving beyond discrete vulnerability scanning to holistic contextual awareness, where the value lies not just in finding flaws but in understanding the systemic interaction between code, identity, and runtime state. This reflects an implicit acknowledgment that speed of attack requires commensurate speed in defense, justifying the integration of advanced tooling into core engineering practices. The focus on post-quantum readiness demonstrates a long-term, forward-looking commitment against latent, high-impact risks that materialize over extended timelines, contrasting with immediate tactical fixes. The challenge lies in ensuring that cultural principles and governance structures do not become static overlays on rapidly evolving technical capabilities but remain dynamic mechanisms for continuous adaptation to novel threat vectors. What is unstated is the ongoing tension between centralized, scaled engineering efforts and decentralized operational autonomy, and how this balance impacts accountability when AI systems generate high-level risk assessments that demand immediate, cross-domain remediation across disparate organizational units.

Sentinel — Human

Confidence

The text reads like an official corporate progress report or high-level whitepaper adapted for public consumption, exhibiting strong internal coherence and specific terminology.

Signals Detected
low severity: Moderate sentence length variance; professional tone maintained but with some emphatic phrasing.
low severity: Strong flow between thematic sections (Foundations, Defense, Future), characteristic of structured organizational reporting.
low severity: Uses specific internal metrics and program names (SFI, MDASH, QSP) suggesting insider knowledge or direct source material, rather than generalized reporting.
low severity: Claims about specific percentages (e.g., 99.97% MFA protection) and internal process details suggest reliance on verifiable organizational data, reducing fabrication risk.
Human Indicators
The text successfully transitions between high-level strategic vision (AI reshaping security) and granular operational metrics (decommissioned apps, vulnerability patching), which requires a specific organizational perspective.
The concluding call to action is framed as actionable guidance for the reader, blending advocacy with technical instruction in a way that feels context-specific.
Securing our future: July 2026 progress report on Microsoft’s Secure Future Initiative — Arc Codex