administrators Archives

Winsage

March 21, 2026

Microsoft will no longer auto-install M365 Copilot app on Windows PCs

Microsoft has temporarily suspended the automatic installation of the Microsoft 365 Copilot app on Windows PCs equipped with M365 applications due to user resistance. The rollout, which began in December, was intended to integrate AI functionalities across tools like Word, Excel, and PowerPoint. Users in the European Economic Area were excluded by default, and IT administrators had the option to opt out. Existing installations of the app will not be removed, and users can choose to uninstall it if desired. Microsoft plans to provide further updates before any future rollout.

Winsage

March 19, 2026

AI Fatigue: Microsoft Pulls Back on Putting Microsoft Copilot Everywhere in Windows 11

Microsoft has decided to abandon plans to integrate Copilot more deeply into Windows 11 following user complaints. Features that would have introduced AI-driven notifications and enhancements are no longer being pursued. The company acknowledged user pain points and is shifting focus towards core stability fixes scheduled for 2026. Additionally, the launch of Windows Recall in 2024 faced privacy issues, leading to a revised version that includes data encryption and user authentication. Microsoft has also allowed administrators on Pro and Enterprise systems to uninstall the Copilot app under certain conditions, reflecting a response to user feedback and past update failures.

Winsage

March 19, 2026

Windows 11 is quietly testing 10 upgrades you’ll actually notice

Microsoft has introduced several enhancements to Windows 11 through its Windows Insider Program in March 2026. Key updates include: - Users can now customize the profile folder name during the initial setup process. - The debloat policy for Enterprise and Education editions has been improved, allowing administrators to remove additional apps using MSIX and APPX packages. - The Point-in-time restore feature has been updated to allow users to view and edit restore point settings and specify reserved storage for restore points. - A new enforcement policy in the kernel will no longer trust cross-signed drives by default, enhancing security by ensuring only verified drivers are trusted. - An upgrade option for Microsoft 365 Family subscribers has been added to the Accounts page, which can be disabled if desired. - The Drag Tray feature has been renamed to "Drop Tray" and relocated within the "Multitasking" settings, with improvements to the peek view. - Pen settings now include an option for the pen tail button to launch the same app as the "Copilot" key. - The Administrator Protection feature has been re-enabled, creating a temporary, isolated account for elevation requests to enhance security. - File Explorer now supports Voice Typing for renaming files. - The "Cameras" settings have been updated in the Canary Channel to include new controls for pan and tilt, along with performance improvements.

TrendTechie

March 18, 2026

Энтузиасты сохранили архив ретро-игр Myrient

The Save Myrient community has completed the transfer of a 385 terabyte retro gaming archive, which is now operational as a mirror. The original gaming archive will close on March 31, 2026, due to rising server maintenance costs and limited funding. A comprehensive backup has been secured, and the community is generating torrents to maintain access to the archive temporarily. Myrient has been a repository for ROM files used in video game emulation, catering to users seeking verified downloads for retro consoles, including PlayStation 3, Xbox 360, and Nintendo Wii U.

Winsage

March 18, 2026

Microsoft says it won’t auto install Microsoft 365 Copilot app on Windows 11, likely due to outrage over ‘Microslop’

Microsoft has announced a temporary halt to the automatic installation of the Microsoft 365 Copilot app on Windows 11 due to feedback from commercial customers. Initially, the company planned to auto-install the app starting in September 2025, but as of October 2025, it decided to pause this process after receiving negative feedback. Existing installations will remain unaffected, and administrators can still deploy the app through other methods. The Microsoft 365 Copilot app is designed to enhance productivity by optimizing Office applications using AI. Microsoft justified the automatic installation by highlighting the app's potential benefits, but user dissatisfaction led to the reassessment of this strategy. The company is also facing criticism for its aggressive promotion of the Copilot app, which has impacted its reputation in the AI landscape. In response, Microsoft is reevaluating its integration of Copilot within Windows 11 to address user concerns and improve the overall experience.

Winsage

March 18, 2026

Researchers Reveal ‘RegPwn,’ a Windows Registry Vulnerability That Granted SYSTEM Privileges

A Windows vulnerability named "RegPwn" (CVE-2026-24291) allows low-privileged users to elevate their access to full SYSTEM privileges. Discovered by the MDSec red team, it has been in use since January 2025 and was addressed in a recent Microsoft Patch Tuesday update. The vulnerability exploits the management of Windows accessibility features, which generate a registry key that grants full control to low-privileged users. When a user activates an accessibility tool, the configurations are copied into the local machine registry hive, which remains writable by the logged-in user. This creates an opportunity for manipulation, especially when user-controlled settings interact with the Windows Secure Desktop environment. An attacker can exploit this by modifying their user-level accessibility registry key and using an oplock on a system file, allowing them to replace the local machine registry key with a symbolic link to an arbitrary system registry key. This process operates under SYSTEM privileges, enabling the attacker to write arbitrary values to restricted areas of the Windows registry. MDSec demonstrated this technique to gain access to a SYSTEM-level command prompt. Microsoft has released security updates to address this vulnerability, and MDSec has made the exploit code available on GitHub for research purposes.

Winsage

March 17, 2026

Microsoft to Block Windows 11 and Server 2025 Automated Installation After Critical RCE Vulnerability

Microsoft is implementing a two-phase initiative to disable the hands-free deployment feature in Windows Deployment Services (WDS) due to a critical remote code execution vulnerability (CVE-2026-0386) identified on January 13, 2026. This vulnerability arises from improper access control related to the Unattend.xml file, which is transmitted over an unauthenticated RPC channel, allowing attackers on the same network segment to exploit it. Successful exploitation could grant SYSTEM-level privileges and compromise OS deployment images. The initiative includes: - Phase 1 (January 13, 2026): The hands-free deployment feature will remain operational but can be disabled. New Event Log alerts and registry key controls will be introduced to enforce secure practices. - Phase 2 (April 2026): The hands-free deployment feature will be completely disabled by default for administrators who have not modified registry settings. Administrators can temporarily re-enable the feature by setting AllowHandsFreeFunctionality = 1, but this is not secure. Recommendations include reviewing WDS configurations, applying security updates, setting registry keys for secure behavior, monitoring Event Viewer for alerts, and considering alternative deployment methods. Microsoft’s KB article 5074952 provides further guidance for impacted organizations.

Winsage

March 14, 2026

Announcing Windows 11 Insider Preview Build 26220.8062 (Beta Channel)

Windows 11 Insider Preview Build 26220.8062 (KB 5079458) has been released to the Beta Channel, introducing various changes and improvements. 1. Policy-Based Removal of Preinstalled Microsoft Apps: IT administrators can now use a dynamic app removal list to remove MSIX/APPX apps by adding their package family names through Group Policy. The dynamic list is not yet available in Intune CSP. 2. Windows Setup Experience: Users can select a custom name for their user folder during the Windows setup process, which must adhere to standard naming conventions. 3. Windows Driver Policy Update: A new policy removes default trust for cross-signed drivers, allowing third-party drivers from the Windows Hardware Compatibility Program (WHCP) by default. The feature will initially operate in audit mode for at least 100 hours. 4. Point-in-Time Restore Updates: Local administrators will see a settings dialog to view or modify default restore settings, including a list of available restore points. Updated messaging has been added to the restore experience. 5. Drag Tray Rebranding: The Drag Tray has been rebranded as Drop Tray, with settings relocated to System > Multitasking. 6. Pen Settings: Refinements have been made to the Pen settings page, including an option for the pen tail button to launch the same app as the Copilot key. 7. File Explorer and Other Enhancements: Improvements have been made to the reliability of setting the preferred display language, and unexpected errors from the sfc/scannow command have been removed. Updates are gradually rolled out to Insiders who opt in via Settings > Windows Update, and features may evolve or be removed based on feedback.

Winsage

March 13, 2026

Announcing Windows 11 Insider Preview Build 26300.8068 (Dev Channel)

Windows 11 Insider Preview Build 26300.8068 (KB 5079464) has been released to the Dev Channel. Key changes include: - Enhanced policy for removing preinstalled Microsoft Store apps for Windows ENT/EDU, allowing IT administrators to use a dynamic app removal list via Group Policy. - Users can now select a custom name for their user folder during the Windows setup process. - A new policy removes default trust for cross-signed drivers, allowing third-party drivers from the Windows Hardware Compatibility Program (WHCP) by default, initially operating in audit mode. - Point-in-time restore now includes a settings dialog for local administrators and displays available restore points. - Microsoft 365 Family subscribers can upgrade their plan directly from the Accounts page in Settings. - The Drag Tray feature has been rebranded to Drop Tray, with settings relocated. - Updates to Pen settings include a new option for the pen tail button. - Enhanced reliability for preferred display language settings and removal of an unexpected error from sfc/scannow. Updates are gradually rolled out to users who opt in through the Settings menu under Windows Update.

Winsage

March 13, 2026

Microsoft is Rebranding Windows 11’s Drag Tray Feature to ‘Drop Tray’

Microsoft has released three new preview builds of Windows 11 for Insiders in the Canary, Dev, and Beta Channels. - Canary Build 28020.1737: Introduces a feature allowing male users to configure their pen tail button to launch the same application as the Copilot keyboard key, also present in the 25H2 build 26100.8106 and the 24H2 build 26200.8106. - Dev Channel (26300.8068) and Beta Channel (26220.8062) Updates: - The Drag Tray feature has been rebranded as the Drop Tray, with settings moved to System > Multitasking. - Pen users can set their pen tail button to launch the same application as the Copilot keyboard key. - Users can now select a custom name for their user folder during Windows setup, adhering to standard naming conventions. - A new interface for point-in-time restore allows local administrators to view or modify default restore settings and see available restore points.