Microsoft made over 100 updates and announcements in June 2025 for the Microsoft 365 platform. Don’t have time to read them all? We’ve gone through all of them and put together what we feel are the most important updates for you to be aware of.
Microsoft details how Microsoft Defender for Endpoint achieved success in passing the AV-Comparatives 2025 Anti-Tampering Test, demonstrating its robust anti-tampering capabilities. The blog explains that tampering attacks involve unauthorized modifications to security systems, which can lead to further exploitation and persistence within an environment. Microsoft Defender for Endpoint effectively thwarts these attacks by preventing changes to critical security settings, even by privileged users. The blog also mentions that in May 2024 alone, over 176,000 tampering incidents were detected, impacting more than 5,600 organizations. The certification by AV-Comparatives validates the effectiveness of Defender for Endpoint's advanced tampering and defense evasion controls, reinforcing its position as a leader in endpoint detection and response.
Microsoft has announced new features for Windows Autopatch, including improved data sharing control and hotpatch updates. Starting in June 2025, users will have enhanced control over data sharing preferences, with better reporting and troubleshooting capabilities. The blog also introduces hotpatch updates, which install critical security updates without requiring a restart, ensuring minimal disruption to workflows. These updates are available to devices running Windows 11, version 24H2, with specific prerequisites. The blog provides detailed instructions on enabling these features and emphasizes that users retain complete control over their data sharing settings.
Microsoft has announced the limited public preview of Windows Backup for Organizations, a new feature designed to simplify the transition from Windows 10 to Windows 11 by allowing organizations to back up and restore settings on Microsoft Entra joined devices. This feature, first introduced at Microsoft Ignite in November 2024, aims to reduce troubleshooting time, minimize user disruption, and enhance device resilience. It supports devices running current versions of Windows 10 or Windows 11 and requires Microsoft Intune service administrator permissions and membership in the Microsoft Management Customer Connection Program (CCP). The blog encourages organizations to prepare for the Windows 10 end of support on October 14, 2025, and to participate in the preview to provide feedback and help shape future enhancements.
At Build 2025, Microsoft introduced powerful new updates to Microsoft 365 Copilot. Key highlights include Copilot Tuning—a low-code tool to tailor AI to your business needs—and Multi-Agent Orchestration, where AI agents collaborate on complex workflows. Copilot Studio now supports Azure AI Foundry integrations, and the Copilot Wave 2 release brings new tools like Create Experience and Copilot Notebooks. These updates push AI deeper into productivity, making Copilot more flexible, intelligent, and business-ready.
Microsoft has launched the public preview of Data Loss Prevention (DLP) for Microsoft 365 Copilot in Word, Excel, and PowerPoint. This builds on existing protections in Copilot Chat, ensuring that AI-powered actions like rewriting, summarizing, and generating content follow organizational data security policies.
Copilot now respects sensitivity labels and blocks risky actions automatically. Admins can manage these settings in the Microsoft Purview compliance portal, and existing DLP policies for Copilot Chat will carry over.
This update brings stronger, built-in safeguards to everyday productivity tools.
Microsoft Entra Internet Access now offers TLS Inspection in public preview, enabling real-time decryption and inspection of HTTPS traffic without additional hardware. This feature enhances security by allowing granular, identity-centric policy enforcement and improved web categorization, ensuring a seamless user experience.
On May 23rd, Microsoft announced that they are rolling out the recording and transcription defaults for Calling Policies. This setting will allow users to enable recording or transcribing in Teams calls placed by a user.
Copilot users across the globe have been requesting this feature endlessly, as it is one of the key features required to use Copilot to the fullest. Microsoft shares that the main driver was feature parity for Meetings policies, and to enhance AI-Powered features through Copilot licensing.
This feature is rolling out starting in July to tenants without customized global policies and new tenants going forward.
Late May, Microsoft announced a series of enhancements to PDF files stored in SharePoint and OneDrive, reinforcing their commitment to streamlining document management across Microsoft 365. These updates include the ability to navigate PDFs using a table of contents, apply watermarks for added document control, export files directly as PDFs, and compress PDFs to reduce file size. Additionally, users can now password-protect their PDF files, adding a critical layer of security for sensitive content.
These features are part of a broader trend of monthly updates aimed at enriching the Microsoft 365 collaborative experience. By integrating advanced PDF functionality directly into SharePoint and OneDrive, Microsoft is reducing the need for third-party tools and enabling users to manage documents more efficiently within the ecosystem they already use. Whether it's securing a contract with a password or compressing a large file for easier sharing, these tools are designed to meet the evolving needs of modern workplaces.
For organizations leveraging Microsoft 365, these enhancements represent a significant step forward in productivity and compliance. As businesses work to catch up to modern work practices such as automated workflows and AI augmentation, having robust, native PDF capabilities is a necessity. AdaptivEdge is here to help you make the most of these new features and ensure your team is equipped to work smarter, not harder. We offer a variety of services to help your organization catch up to the AI boom, or make sure your organization is secure enough to adopt AI intelligently.
Microsoft has announced the private preview of Windows 365 Cloud Apps, a new feature that allows administrators to securely deliver individual apps hosted on a Cloud PC without needing a dedicated Cloud PC for each user. This feature aims to streamline app delivery for various worker types, simplify management through integration with Microsoft Intune, and support migration from on-premises VDI to the cloud. The setup involves creating a provisioning policy with an "app-only" experience type, allowing shared use of Cloud PCs among users. During the preview, apps can be streamed from the Start menu of gallery or custom images, with more sources to be supported later.
Microsoft highlights the importance of resilience in modern work environments and introduces several new features to enhance business continuity and security. Key updates include Windows 365 Reserve, which provides instant access to a temporary Cloud PC during device disruptions, and Windows 365 Cloud Apps, allowing secure app streaming without a full desktop. Additionally, Windows 365 Link offers improved multi-monitor support and NFC reader integration, while Cross-region Disaster Recovery ensures robust protection against regional outages. These innovations aim to streamline IT management, support flexible work, and safeguard business operations.
The Microsoft Defender for Endpoint service now offers the general availability of behavior monitoring for macOS, enhancing early detection and prevention of suspicious and malicious activities. This feature extends Defender's protection beyond static signatures by observing software behavior in real-time, improving the ability to detect complex threats like the Atomic macOS Stealer (AMOS). Behavior monitoring is now available on macOS Ventura, Sonoma, and Sequoia, and will be enabled by default following a phased rollout. This update aims to provide consistent protection across all devices and introduces new telemetry for advanced threat protection.
Microsoft has introduced three new enhancements to Entra Conditional Access policies aimed at improving security and management. These include Per-Policy Reporting for detailed insights into policy impacts, the What-If Evaluation API for simulating policy effects before enforcement, and the Sign-in Frequency control for requiring reauthentication every time users access sensitive resources. These tools help administrators plan, monitor, and optimize access policies more effectively, ensuring robust protection against sophisticated identity-based attacks.
Access recently used SharePoint agents directly within the Microsoft 365 Copilot app, starting mid-July 2025. This feature aims to reduce context switching and improve productivity. Admins can manage agents by deleting the corresponding .agent files. Update training materials and review SharePoint agent management practices.
Microsoft has added new capabilities in Microsoft Purview designed to enhance data security in the AI era. Features like on-demand classification for endpoints, expanded protection for Microsoft 365 Copilot, and automated investigation workflows with Alert Triage Agents. These updates aim to uncover data blind spots, strengthen protection across data flows, and respond faster with automation, ultimately helping organizations improve their data security posture and manage sensitive data more effectively.
