
M365 Roundup, May 2026: Teams Gets Its Own Threat Reports
May 2026 in Microsoft 365: Teams adds external user reporting and a Security Detection Report, SharePoint starts enforcing storage quotas, and Entra locks new app instances by default.
Microsoft product

May 2026 in Microsoft 365: Teams adds external user reporting and a Security Detection Report, SharePoint starts enforcing storage quotas, and Entra locks new app instances by default.

Entra passkey profiles auto-enable in March 2026, Teams gains four security features, and standalone SharePoint and OneDrive plans head for retirement. The January 2026 changes, sorted by what to do.

Intune Suite capabilities fold into E3 and E5 ahead of July 2026 pricing, Outlook gets DLP Wait on Send, and cross-tenant migration goes first-party. December 2025's M365 changes, sorted by impact.

Windows 10 reached end of support in October 2025. Plus GPT-5 becomes Copilot's default model, Authenticator gets jailbreak detection, and Teams adds audio-only recording.

New Defender and Purview add-on SKUs for Business Premium, Anthropic models in Copilot, an auto-installing Copilot app, and a browser policy that needs action now.

GPT-5 rolls into Copilot Chat, Intune adds two-admin approval for destructive actions, Autopilot patches during setup, and Windows 10 ESU hits the CSP price list.

Nathan Taylor runs a Microsoft Center of Excellence at SourcePass that books 4 to 5 posture reviews weekly. His playbook: narrow scope, nail the fundamentals, and sell outcomes, not settings.

The Microsoft 365 E5 Security add-on brings five standalone security products to Business Premium for $12 per user. Six business scenarios show where the value lands.

Token protection reaches Entra ID P1, Defender gains mail-bombing detection, the Conditional Access Optimization Agent hits GA, and Intune ships LAPS for macOS.

Token theft via AiTM phishing hit 51% of webinar respondents in the past year. Five layered controls, from Defender tuning to attack disruption, break the kill chain at each stage.

Microsoft blocks legacy browser auth and requires admin consent by default, Safe Attachments loses Monitor mode, passkey profiles go per-group, and Teams channels learn to thread.

GCS Technologies replaced point solutions with the Microsoft 365 security stack and built a practice around proactive improvement. Five lessons MSPs can borrow, from engagement model to pricing.