SharePoint: SharePoint agents are available in Teams app Store

🚨 The Signal: SharePoint agents are now available in the Teams app store. This expands the attack surface for agentic AI, requiring immediate governance and security review of agent deployment and permissions.

The Impact

Security teams and tenant admins are affected by new AI agent identities and potential data access risks.

• Security Teams: Risk of unmanaged AI agents accessing sensitive data.
• Tenant Admins: Need to control which SharePoint agents can be installed.
• Compliance Officers: New AI agents require data governance and audit trails.
• End Users: May inadvertently install agents with broad permissions.

The Action

1. Review and update Teams app permission policies to restrict unapproved AI agent installations: Teams admin center > Teams apps > Manage apps > Org-wide app settings.
2. Implement or refine App Control policies for AI agents within Microsoft Entra ID and Microsoft Purview.
3. Establish a clear approval process for all AI agent deployments, including SharePoint agents.
4. Monitor audit logs for new AI agent installations and permission grants.
5. Educate users on the risks of installing unapproved AI agents and the importance of data handling.

Domain: Agentic-AI · Impact: high · Workload: Teams · Essential Eight: Application Control, Restrict Administrative Privileges · ISM: ISM-0445, ISM-0843, ISM-1175, ISM-1380, ISM-1490, ISM-1507, ISM-1508, ISM-1509, ISM-1544, ISM-1582, ISM-1647, ISM-1648, ISM-1650, ISM-1656, ISM-1657, ISM-1658, ISM-1659, ISM-1660, ISM-1686, ISM-1688, ISM-1689, ISM-1870, ISM-1871, ISM-1883, ISM-1897, ISM-1898