Microsoft Builds Multi-Agent AI to Harden Cloud Security in Hours, Confirming Over 90% of Findings
Updated
Updated · Microsoft · Jul 8
Microsoft Builds Multi-Agent AI to Harden Cloud Security in Hours, Confirming Over 90% of Findings
3 articles · Updated · Microsoft · Jul 8
Summary
Microsoft said it has deployed an internal multi-agent AI system that continuously evaluates and hardens its cloud services, turning security reviews that once took weeks into analyses completed in hours.
The system was built because AI models now show expert-level skill in finding vulnerabilities and chaining exploits, pushing Microsoft to test live services at machine speed against its Secure Future Initiative requirements.
Its agents profile each service, verify controls across code, identity, network, configuration and runtime, then reason about composite attack paths and defense-in-depth gaps that isolated scans can miss.
Within a few months, more than 90% of the system’s findings were confirmed by Microsoft security engineers as genuine issues, with many involving cross-domain weaknesses spanning code, cloud resources and configurations.
Microsoft said the tool is for internal use rather than a customer product, though lessons from it will feed into broader security offerings and guidance for organizations facing AI-accelerated threats.