Most MSPs can tell you which Azure VMs are running. Fewer can tell you which ones stopped sending Defender telemetry last week. A new Logic App automation from Microsoft closes that gap daily — and it is a compliance-monitoring service waiting to happen.
Security
The Invisible Workforce Is Non-Human — Why MSPs Need NHI Governance Now
Most MSPs can’t answer which service principals are active in a client tenant, let alone which are over-privileged. Microsoft Defender now surfaces NHI inventory and governance—and that is a recurring-service opportunity hiding in plain sight.
VS Code Extension Policies Existed for 18 Months — GitHub Didn’t Use Them. Will Your Clients?
VS Code’s AllowedExtensions policy shipped in November 2024. GitHub — a Microsoft subsidiary — wasn’t enforcing it when a poisoned Nx Console extension walked out with 3,800 internal repos in 11 minutes. The policy framework was never missing. The enforcement was. Here’s the Intune remediation script and the Copilot/MCP guardrails that close the exact attack path TeamPCP used.
Security: Managing Shadow Tenants with Microsoft Entra Governance
If you manage Microsoft Entra for clients, shadow tenants are now easier to spot with related-tenant discovery signals (B2B, multitenant apps, and shared billing). The practical playbook is straightforward: enable continuous discovery, triage unknown tenants, and quarantine untrusted ones until assessed. Also plan now for the August 15, 2026 retirement of the legacy workforce tenant creation flow.
