Cybersecurity has reached an inflection point. Attackers are weaponizing AI to launch more sophisticated campaigns at unprecedented scale. Meanwhile, the attack surface is expanding as organizations rely more heavily on cloud and identity services provided by platforms like Microsoft 365 for their core business operations.

In response to evolving threats, Abnormal continues to launch new solutions powered by our Behavioral Intelligence, designed to predict and prevent the attacks others miss. Our accelerating growth and global expansion enable us to make these investments while protecting a growing base of enterprise customers.

Today, I’m excited to announce:

• Security Posture Management for Microsoft 365, now Generally Available

• Six no-cost enhancements to our core platform

• Expanded global operations and continued momentum: Abnormal now protects 25% of the Fortune 500

New Product | Generally Available Today

Why It Matters

Attacks often start by targeting the inbox, but they don’t stop there. Microsoft 365 is the cornerstone of email and identity infrastructure, and threat actors are increasingly exploiting misconfigured settings, excessive administrative privileges, and complex policies to move laterally, undetected. These misconfigurations create entry points that attackers exploit, but traditional security solutions weren’t designed to detect them.

Solution

Abnormal’s new Security Posture Management product automatically assesses the security posture of your Microsoft 365 environment to help you identify and prioritize gaps that need to be addressed.

Using Behavioral Intelligence from across our customer base, the solution continuously monitors for the misconfigurations that bad actors are looking to exploit. It prioritizes risks based on actual attack patterns we observe and block daily.

When a novel technique targeting misconfigurations is detected in any Abnormal customer environment, all other users are proactively alerted and given remediation guidance, without sharing any customer data or identifying details.

Key Capabilities:

• Continuous monitoring (replacing manual audits, which become outdated as soon as they're completed)

• Emerging attack-based prioritization (to pinpoint misconfigurations attackers are exploiting now)

• Extensive Microsoft 365 coverage across identity, apps, data sharing, and admin accounts

• Simple remediation with clear instructions anyone can follow

Customer Impact:

• Help prevent breaches before they happen by fixing the misconfigurations attackers are targeting

• Prioritize risks based on a unique smart scoring system and threat intelligence from real-world attacks

• Reduce security team workload with step-by-step remediation that eliminates manual effort

• Accelerate response to misconfiguration risks with continuous visibility into changes

Security Posture Management for Microsoft 365 is now available as an add-on to Inbound Email Security. Request a demo to see it in action.

Free Upgrades for All Customers | Generally Available Today

Abnormal never stops enhancing the core detection and response engine that fuels our platform. In recent months, our engineering teams, using AI-assisted tools within a secure and governed environment, have delivered dozens of platform enhancements.

Below are some of the most impactful additions.

1. Email Bombing Protection
   
   Email threats are growing in sophistication and scale as attackers flood inboxes with high-volume, low-signal messages. These attacks create explosions of security events that are unsustainable for security analysts to manage. In response, our detection engineering team released enhanced behavioral detectors to stop email bombing campaigns that inundate inboxes to hide malicious messages. By modeling normal communication patterns, Abnormal detects unusual volume spikes and remediates spam bombing messages.
   
   

2. Account Takeover Threat Hunting
   
   Behavioral Intelligence now powers past login analysis to uncover subtle indicators of account compromise. When historical patterns match emerging behavioral IOCs from across our customer base, we automatically update case confidence levels and enrich the timeline view.
   

3. Four Meaningful Analyst Experience Upgrades

• One-click bulk remediation from Search & Respond

• The ability to upload aggregate missed attack CSVs for detection tuning with zero coding

• Customization of gen AI phishing report responses with branding and images

• Automatic scheduling of autonomously delivered AI Data Analyst value reports

Customer Impact:

• Email bombing protection blocks spam campaigns that mask malicious messages

• Continuous threat hunting and bulk operations handle threats with minimal tuning

• Branded gen AI phishing responses and autonomous dashboards designed to significantly reduce analyst overhead

These enhancements are available immediately to all Inbound Email Security customers at no additional cost. Visit your Abnormal portal to explore them today.

These announcements prove what’s possible when AI is built from the ground up to solve real security challenges—not retrofitted to mask the limitations of outdated architectures.

Our Security Posture Management solution doesn't just scan for generic vulnerabilities; it learns from real attacks across our entire customer base to predict what threat actors will target next. Our email platform enhancements don’t just detect more threats; they also eliminate the manual busywork that overwhelms security analysts.

To me, the growth we’re experiencing is a powerful signal that our strategy is resonating as more of the world’s leading organizations choose Abnormal as their trusted partner. Our global expansion efforts continue to accelerate, with new operations launched in Japan and additional international markets planned for later this year. Earlier this year, we announced that we had achieved FedRAMP Moderate and added support for the German language.

We now protect 25% of the Fortune 500, received recognition from Gartner and Forrester as a Customers' Choice and Leader, respectively, and earned a spot at No. 25 on the 2025 CNBC Disruptor 50.

These launches reflect our belief that security must extend beyond email, and that AI, when purpose-built for defense, can be your most powerful ally in that mission. Whether it's hardening Microsoft 365 or stopping emerging threats in real time, we're focused on helping you stay ahead of today’s—and tomorrow’s—adversaries.

To see these new capabilities in action, request a demo or visit us at Black Hat 2025.