Jack PollerMicrosoft wants to coin the term "vibe hunting" for threat hunting using Security Copilot AI agents and capabilities.
Is that good or bad?
Security Copilot example: The graph database exposes the (potential) blast radius of an event
Microsoft Sentinal/Security Platform provides capabilities across the security domains, but different user personas access the capabilities via defender, entra, purview, ... portals.
No #single-pane-of-glass (yet?!?)
JPI'm not sure where to do my usual livetoot/notetaking stuff. Here or some other place. If I decide on here, I'll tag it #TFDx so set up your filters (or just mute me for a few hours). Maybe #TFDxMSSec25 but that's too long and unwieldy so probably not.