Sarah Young
@_sarahyo
Principal Security Advocate @microsoft | Co-host of @AzureSecPod | Mother of shibes | Mostly dogs, carbs & security posts | Opinions mine
Couple of security talks for you to check out online if you weren't able to make it to #MSBuild last week, the talk with @pamelafox and I about deploying an E2E secure application and @michael_howard 's talk on secure coding: Deploying an end-to-end secure AI application -…
.@shanselman and Mark took time out of their busy schedules to chat to @michael_howard and myself at #MSBuild to answer developer security questions. The answer to keeping code secure? 🦀 is a hint... youtube.com/watch?v=TuJw4s…
Proud dog mum moment: Mina went to the vets for teeth cleaning. She was the goodest girl and got a certificate.
Microsoft has released security updates that fully protect customers using all supported versions of SharePoint affected by CVE-2025-53770 and CVE-2025-53771. These vulnerabilities apply to on-premises SharePoint Servers only. Customers should apply these updates immediately to…
These were awesome and fun to record, we have lots more coming! Rust or C#? : Developer Security Quick Fire Questions @ MS Build youtube.com/shorts/VdlsiBj… @_sarahyo BTW, the correct answer is "it depends" - my rule of thumb is Rust for systems code, where you cannot risk perf…
Episode #115 is out! We talk to Den Delimarksy about the current posture of Model Context Protocol (MCP). Den serves on the committee that oversees MCP. Also, the news!
Taking a couple of weeks off. Going to try and actually stay mostly offline and no doom scrolling. Wish me luck!
Congrats new and renewed MVPs! #MVPBuzz
The 2025 MVP Annual Review results are in! 🎉 To everyone joining us for another year—welcome back! We’re excited to keep building with you. 🚀 Your passion, expertise, and community leadership continue to shape the future of tech. 🙌 And to those who were part of last year’s…
Do you want to learn how to red team AI? Of course you do! The amazing Amanda and Gary have recorded their AI red team 101 training for you to enjoy! You can then use our AI red team labs to practice what you learned. aka.ms/AIRT101 youtu.be/DwFVhFdD2fs?si…
There’s a Rubik’s cube world championship in Seattle this weekend 👀
The first day of the winter school holidays is an awful day to travel 🫠
Omg I could go see Backstreet Boys at the Sphere whilst at Hacker Summer Camp 😬
My baby is all grown up 🥲
🚨 Heads-up, Microsoft Sentinel admins! The Azure portal experience is retiring on July 1, 2026. 🛠️ Don’t wait! Start your transition to the Microsoft Defender portal today to unlock your Security team's full potential. 🔗 Learn more: msft.it/6018S2jsC #MicrosoftSecurity…
From MS-DOS to Copilot, we’ve come a long way. This year, in honor of Microsoft’s 50th anniversary, MSRC is throwing it back (way back) with a "Microsoft Through the Decades" security researcher celebration during Black Hat. 🗓 August 7, 2025 📍Skyfall Lounge, W Las Vegas This…
I judge my level of stress based on how many stroopwafels I have eaten in the past 24 hours. Currently up to 7.
The Cloud Village @defcon 33 schedule is LIVE! ☁ Explore a stacked lineup of comprehensive talks, lightning talks, and tool demos; all focused on real-world cloud security. Line Up: cloud-village.org/dc33#schedule #CloudVillage #DC33 #DEFCON33 #HackerSummerCamp
Today, Microsoft Threat Intelligence Center is proud to announce the release of RIFT, an open-source tool designed to assist malware analysts automate the identification of attacker-written code within Rust binaries. msft.it/6014SLaEK