What’s New in the Hybrid Data Center & Microsoft | July 2025

General availability of Copilot Search and scheduled prompts, plus voice and vision capabilities across platforms.

• Copilot Search: GA rollout of the AI-powered search experience that integrates with the Microsoft 365 Copilot app, delivering contextual answers using Microsoft Graph and third-party connectors.
• Scheduled Prompts Without Power Automate: Users can now schedule recurring prompts without requiring Power Automate licenses or DLP configuration changes.
• Realtime Voice Interaction (July–Sept 2025): Voice input is coming to Copilot Chat and iOS apps, enabling users to interact with Copilot by speaking—no admin action required.
• Vision Support: Users can ask Copilot to interpret or describe images in Word, PowerPoint, and other apps.
• PowerPoint Enhancements: Users can generate slides or add new topics within existing decks across Windows, Mac, and web platforms.
• Cross-Tenant Recaps: Multi-tenant orgs can now view meeting recaps from the hosting tenant.
• Custom Engine Agents: Organizations can now build Copilot agents using external LLMs and custom toolchains.
• Facilitator Agent: Introduced for real-time meeting note-taking (off by default), requires Copilot license.
• Interpreter Agent: Real-time translation of spoken content during Teams meetings with language and voice settings.
• SharePoint Agents: Users can reopen recently used Copilot agents hosted on SharePoint. Admins can disable by deleting the .agent file.
• Copilot Actions: Copilot can now perform built-in automations like booking meetings or reordering supplies.
• New File Format (.page): All content generated by Copilot now uses a new file format that supports DLP, eDiscovery, and sensitivity labels.
• Word Enhancements: Enhanced writing tools now include inline citations, summaries, and coaching feedback.
• Developer Controls: Declarative agent control allows devs to prioritize curated sources in Agent Builder or Teams Toolkit.
• SSO for External Sources: Devs can now build agents that connect to external data sources via Single Sign-On.
• PowerShell Agent Blocking: Admins can restrict the creation of agents in Copilot Studio using PowerShell.
• Copilot for Government: GCC High and DoD-compatible versions launching this summer.
• Agent Orchestration (Preview): Microsoft is testing new capabilities like Tenant Copilot and Agent Factory to coordinate multiple AI agents in an enterprise.

Improved App Discovery and Risk Scoring
This month, admins will notice improvements to app discovery and risk scoring, including more accurate categorization of apps based on region, compliance, and usage patterns.

Tighter Defender XDR Integration
If you’re using Defender XDR, Cloud Apps now integrates more tightly into the broader incident and investigation workflows, reducing context switching and helping security teams consolidate views across multiple platforms.

Clarified Licensing Guidance
Microsoft has updated documentation to emphasize that Defender for Cloud Apps is not automatically included with Defender for Endpoint. Organizations expanding coverage should confirm that users are properly licensed via Microsoft 365 E5 or a standalone plan.

New Session Policies in Preview
Session control policies now in preview allow real-time responses to risky behavior, such as blocking uploads or downloads based on device posture. These policies support Conditional Access and DLP enforcement across apps like Dropbox, Box, and Salesforce.

Smarter “Report” Buttons in Outlook
Microsoft enhanced the “Report Phishing” and “Report Junk” buttons, allowing users to provide more detailed context when submitting messages. This improves both detection accuracy and SOC response.

Threat Explorer Improvements
Threat Explorer now includes more granular filters and export options for campaigns, URLs, and payloads, making it easier to investigate advanced threats and generate detailed reports.

Impersonation Protections for Teams Notifications
New safeguards have been added to detect and block phishing attempts that spoof Teams notifications or meeting invites, addressing cross-app impersonation vectors.

Integration with Copilot Security Stack
Defender for Office 365 plays a key role in securing Microsoft 365 Copilot by scanning real-time messages and files in Exchange and Teams to prevent data exposure.

Mail Bombing Detection
A new feature detects and mitigates email bombing attacks by sending those messages to the Junk folder automatically– no manual configuration needed.

Overview Dashboard Update
The updated Defender for Office 365 Overview dashboard displays key protection metrics, security opportunities, and industry comparisons to help gauge your security posture.

Expanded Attack Simulation Templates
Microsoft has added new real-world phishing scenarios to its simulation library, making training more relevant and engaging for users.

Outlook Unsubscribe Integration
Users can now unsubscribe from emails flagged as junk, provided the sender supports the option, streamlining mailbox hygiene and reducing spam complaints.

AI-Guided Response Enhancements
Microsoft added AI-powered guided responses and improved triage capabilities, enabling security teams to respond to incidents more quickly and accurately.

New Visualizations and Reporting Options
Defender XDR now offers better visuals for attack paths and supports exporting incidents as PDFs—helpful for reporting and compliance documentation.

Improved Cloud App Controls
The Applications Inventory and Cloud App Catalog have been enhanced to provide more detailed visibility into both sanctioned and unsanctioned applications.

Advanced Hunting Improvements
New support for Azure Data Explorer syntax, including adx() and arg() functions, gives analysts deeper insights and more flexibility in querying Defender data for custom threat detection and analysis.

Price Increases Effective July 1
Microsoft has increased pricing by 10% for Exchange Server Subscription Edition, SharePoint, and Skype. Organizations still relying on on-prem Exchange should account for the impact on budgeting and consider modernization options.

Critical Patch Updates for On-Prem Servers
Admins managing Exchange Server 2016/2019 should apply the June Patch Tuesday updates, which address several high-severity CVEs to secure mail environments against known vulnerabilities.

Use Microsoft 365 Groups for Workspace Management
By late July, users will be able to assign new Loop workspaces to existing Microsoft 365 Groups, aligning workspace governance with existing group policies, similar to SharePoint Team Sites.

Loop Admin Usage Reports Coming Soon
Admin usage reports for Loop will be available by late October 2025, integrated into the Microsoft 365 admin dashboard, enabling insight into adoption, collaboration, and activity across Loop workspaces.

DLP for Copilot is GA
Data Loss Prevention (DLP) for Microsoft 365 Copilot is now generally available. Organizations can now apply DLP policies to monitor sensitivity labels and prevent Copilot from surfacing or generating sensitive content.

Simplified Sensitivity Labeling Scheme
Purview is consolidating labeling structures into a flat model using only labels and label groups (removing sublabels and standalone types). Migration tools will assist admins during rollout, completing in August.

Improved File-Type Detection in Exchange Online DLP
Purview DLP will evaluate the actual contents of files (not just extensions), allowing more accurate detection in Exchange Online. Rollout begins mid-October—no admin action required for existing policies.

New Script for Physical Badge Connector
Organizations using the physical badging connector for Insider Risk Management must use a new script to integrate building access logs (e.g., access points, timestamps, user IDs), enabling more contextual insider threat analytics.

Improved Diagnostics for MIP and DLP
A new diagnostics tool will help admins identify and troubleshoot issues related to Microsoft Information Protection and DLP more easily, previously only available via PowerShell.

Expanded Global Exclusions in Insider Risk Management
Admins can now define keyword and file path exclusions globally, reducing false positives and improving alert accuracy across Insider Risk Management detections.

AI App Protection in Edge for Business
Purview DLP will now provide inline protection for AI apps used within Microsoft Edge for Business. This feature prevents sensitive data from leaking via browser-based Copilot or AI interactions, complementing Endpoint DLP.

Stream Classic Retirement Timeline Accelerated
Stream (Classic) will stop accepting uploads starting August 15, 2025, and will be fully retired by February 15, 2026. Organizations should migrate content to Stream (on SharePoint) to maintain access and playback.

Copilot-Generated Video Chapters
Stream now uses Microsoft Copilot to auto-generate chapters for recorded meetings and uploaded videos, improving navigation for longer content.

New Embedded Player Experience
The new video player offers faster load times, responsive design, and searchable transcripts, enhancing the viewing experience across all devices.

Enhanced Transcripts and Captions
Admins can now edit AI-generated transcripts and support multiple caption languages per video, improving accessibility and search functionality for diverse audiences.

Upgraded Analytics & Engagement Metrics
Stream now provides richer analytics—such as views, watch time, and retention—available both in Microsoft 365 Usage Analytics and the Stream web app.

Check Meeting Recording Storage Settings
Some tenants now store Teams recordings in OneDrive or SharePoint instead of Stream Classic. Admins should verify settings to avoid confusion or disruptions in access.

Retirement of Add-Ins and 2013 Workflows by April 2026
SharePoint Add-Ins and 2013 workflows will retire by April 2, 2026. Admins must transition to SharePoint Framework (SPFx) and Power Automate, notifying developers and updating internal processes accordingly.

Password-Protect PDF Files in OneDrive/SharePoint
Users can now secure PDFs with open or owner-set passwords before sharing. Files can be saved without overwriting the originals, helping preserve access control.

Classic Alerts Feature Phased Out
New SharePoint alerts can no longer be created starting July 2025. The full retirement of classic alerts is set for July 2026. Power Automate is the recommended alternative for notifications and workflows.

Upgraded Page Analytics
Site owners can now view and export long-term page performance data, making it easier to measure content effectiveness and report trends.

Modern Header and Footer Designs Rolling Out
UI updates for SharePoint Online include refreshed header and footer elements, streamlining the appearance across modern pages. No admin action is required, but informing users is advised.

Secure Hero Links for Easier Sharing
Users can now generate secure, single-use links for files and documents, improving collaboration while enforcing access protections.

• Classic Teams Desktop App Retired
  As of July 1, 2025, the Classic Teams desktop app is no longer supported. Users must transition to the new Teams client or use the web version to maintain compatibility and receive updates.
• Peripheral Enhancements
  More USB devices now support the Teams button, enabling smoother call control and meeting joins with hardware-integrated functionality.
• App and Agent Sharing
  Users will soon be able to share Teams apps or agents directly from their profile or side panel in Teams for Windows, Mac, and web—improving discoverability and user engagement.
• External File Sharing in Chats
  Teams will support file attachments in external 1:1 and group chats, expanding collaboration across organizations. Admins must enable this using the FileSharingInChatsWithExternalUsers policy via PowerShell.

• Threaded Conversation Layout for Channels
  A new layout allows users to reply to specific messages and create side-threaded conversations within channels. Admin controls will be available in the Teams Admin Center by August 2025.
• Compact Toast Notifications
  Teams is introducing a compact version of toast (popup) notifications on Windows. Users can enable this via Settings → Notifications → Choose Compact.

• Speaker Coach (Preview) Retirement
  Microsoft will retire the Teams Speaker Coach (Preview) feature by late August 2025. Users relying on coaching prompts should prepare alternative training methods.
• PowerPoint Slide Control Sharing
  Presenters can delegate slide control in meetings and webinars by September 2025. The feature is enabled for internal users and disabled for externals by default.
• Network Strength Indicator
  A new 3-bar visual indicator will show real-time network quality during Teams meetings. Rollout is expected by end of August to help users diagnose connection issues.
• Town Hall Attendee Preview Mode
  Organizers, co-organizers, and presenters in Teams Town Halls will be able to preview the event exactly as attendees see it, improving quality control and pre-event adjustments.
• Manage What Attendees See
  Teams will add a new setting—Off, On, and On with Preview—allowing presenters to control and preview attendee-visible content during live events and town halls.
• Meeting Audio Overview (Copilot AI)
  A new feature summarizes key meeting topics in audio format using Microsoft Copilot. Available across Windows, macOS, web, iOS, and Android for licensed users.
• Collaborative Annotations During Screen Sharing
  Participants will soon be able to request real-time collaborative annotations in screen share sessions, streamlining in-meeting brainstorming and feedback.
• Role-Specific Invites
  When sending Teams meeting invites, emails will now distinguish between Attendee, Presenter, and Co-organizer roles for clearer access and expectations.

Silent Test Calls for Network Readiness
IT administrators with a Teams Premium license will soon be able to run silent test calls on Teams for Windows and Mac. This proactive testing can identify network issues before users report problems.

Meeting Issue Diagnostics (DNS/Proxy)
A new diagnostic tool in the Teams Admin Center will provide visibility into DNS and proxy failures that may affect meeting performance, allowing faster troubleshooting.

ULL Streaming Experience for Town Halls
Starting late August, Teams Premium will offer ultra-low latency (ULL) town hall experiences. Delays will be reduced significantly from 20–30 seconds, improving interactivity. Available with or without Microsoft eCDN.

July 2025 Security Update Available
Microsoft has released security updates for all supported Windows versions. Admins should prioritize rollout to maintain compliance and threat coverage.

EDR and Antivirus Kernel Separation (Private Preview)
Microsoft is decoupling antivirus and endpoint detection tools from the Windows kernel to reduce system crash risks. This could impact third-party vendors like CrowdStrike.

Quick Recovery for Boot Failures
A new Windows feature will help machines recover automatically after boot failures, reducing downtime and IT intervention for endpoint remediation.

Black Screen of Death (Visual Update)
The infamous Blue Screen of Death (BSOD) is getting a cosmetic refresh—it will now appear black by default, with no functional changes.

Retirement of Semi-Annual Enterprise Channels
Microsoft will phase out the Semi-Annual Enterprise Channel Preview and Extended by 2025 and 2026, respectively. Organizations should migrate to other update channels and prepare for a twice-yearly cadence.