deployment Archives

Winsage

March 19, 2026

Windows 11 is quietly testing 10 upgrades you’ll actually notice

Microsoft has introduced several enhancements to Windows 11 through its Windows Insider Program in March 2026. Key updates include: - Users can now customize the profile folder name during the initial setup process. - The debloat policy for Enterprise and Education editions has been improved, allowing administrators to remove additional apps using MSIX and APPX packages. - The Point-in-time restore feature has been updated to allow users to view and edit restore point settings and specify reserved storage for restore points. - A new enforcement policy in the kernel will no longer trust cross-signed drives by default, enhancing security by ensuring only verified drivers are trusted. - An upgrade option for Microsoft 365 Family subscribers has been added to the Accounts page, which can be disabled if desired. - The Drag Tray feature has been renamed to "Drop Tray" and relocated within the "Multitasking" settings, with improvements to the peek view. - Pen settings now include an option for the pen tail button to launch the same app as the "Copilot" key. - The Administrator Protection feature has been re-enabled, creating a temporary, isolated account for elevation requests to enhance security. - File Explorer now supports Voice Typing for renaming files. - The "Cameras" settings have been updated in the Canary Channel to include new controls for pan and tilt, along with performance improvements.

AppWizard

March 18, 2026

Belgium launches secure messaging app for government staff

Belgium has introduced Beam, a secure messaging application developed by Belgian Secure Communications (BSC), intended to replace platforms like WhatsApp and Messenger for public sector communications. It will serve around 750,000 civil servants and military personnel, with an initial deployment among defence and intelligence staff. Beam is designed to safeguard sensitive information by limiting access to verified government personnel and storing data on servers in Belgium. The application has been rigorously tested for security and is part of Belgium's effort to enhance official communication safeguards following the 2016 terrorist attacks.

Winsage

March 17, 2026

Microsoft to Block Windows 11 and Server 2025 Automated Installation After Critical RCE Vulnerability

Microsoft is implementing a two-phase initiative to disable the hands-free deployment feature in Windows Deployment Services (WDS) due to a critical remote code execution vulnerability (CVE-2026-0386) identified on January 13, 2026. This vulnerability arises from improper access control related to the Unattend.xml file, which is transmitted over an unauthenticated RPC channel, allowing attackers on the same network segment to exploit it. Successful exploitation could grant SYSTEM-level privileges and compromise OS deployment images. The initiative includes: - Phase 1 (January 13, 2026): The hands-free deployment feature will remain operational but can be disabled. New Event Log alerts and registry key controls will be introduced to enforce secure practices. - Phase 2 (April 2026): The hands-free deployment feature will be completely disabled by default for administrators who have not modified registry settings. Administrators can temporarily re-enable the feature by setting AllowHandsFreeFunctionality = 1, but this is not secure. Recommendations include reviewing WDS configurations, applying security updates, setting registry keys for secure behavior, monitoring Event Viewer for alerts, and considering alternative deployment methods. Microsoft’s KB article 5074952 provides further guidance for impacted organizations.

Tech Optimizer

March 17, 2026

How PostgreSQL on Azure helps modernize legacy databases

Microsoft is enhancing PostgreSQL to establish it as a high-performance, scalable, and enterprise-ready open database platform, addressing the limitations of legacy systems like Oracle. Many Oracle customers face rising licensing costs, performance bottlenecks, and scalability issues, prompting them to consider migration. Apollo Hospitals successfully migrated from Oracle to Azure Database for PostgreSQL, achieving a 60% reduction in operational costs and a threefold improvement in system performance. Microsoft has introduced an AI-assisted migration tool to simplify the transition from Oracle to PostgreSQL, automating the conversion of schemas and application code. Azure Database for PostgreSQL offers high performance, scalability, and security, with features like v6-series compute SKUs and SSD v2 storage. Azure HorizonDB, a new cloud-native PostgreSQL service, supports extreme performance demands and is designed for real-time analytics. Microsoft is committed to enhancing PostgreSQL as an open-source database for enterprise workloads, enabling organizations to innovate and become more agile.

Tech Optimizer

March 17, 2026

EDB Accelerates Postgres for the Agentic Workforce Era with NVIDIA AI Infrastructure and Interactive Analytics

EnterpriseDB (EDB) has advanced its integration with NVIDIA's cuDF for Apache Spark to enhance Postgres® performance on NVIDIA AI infrastructure, achieving analytics capabilities up to 100 times faster than traditional methods. EDB emphasizes the need for a real-time analytics framework to address challenges posed by fragmented data silos and inefficient analytics processes. Key features of EDB Postgres AI include GPU-acceleration for interactive analytics, NVIDIA NIM model serving, fully air-gapped support for private registries, and high-speed retrieval with NVIDIA NeMo Retriever. Research indicates only 13% of enterprises have transitioned to production-scale agentic deployments, which report five times higher ROI. The EDB PG AI Analytics Engine can achieve 50–100x faster analytics on large datasets, supports lakehouse architectures, and ensures workload isolation and governance. EDB PG AI is positioned as a secure, compliant, and scalable platform for operationalizing data and AI workloads.

Winsage

March 15, 2026

Microsoft Releases Emergency Windows 11 Hotpatch to Fix Remote Code Execution Flaw

Microsoft has released an out-of-band hotpatch update, KB5084597, to address three critical remote code execution vulnerabilities (CVE-2026-25172, CVE-2026-25173, CVE-2026-26111) in the Windows Routing and Remote Access Service (RRAS) management tool. This update is specifically for Windows 11 Enterprise devices in the hotpatch program that did not receive fixes during the March 2026 Patch Tuesday. The vulnerabilities can be exploited by an authenticated attacker within the domain, potentially leading to remote code execution. Hotpatch updates apply fixes through in-memory patching without requiring a device reboot, making them suitable for mission-critical devices. The update is applicable to Windows 11 versions 24H2, 25H2, and Windows 11 Enterprise LTSC 2024, and will be automatically installed on enrolled devices without a restart. Non-enrolled devices received the fix via the standard March 10 Patch Tuesday update.

Winsage

March 14, 2026

Announcing Windows 11 Insider Preview Build 26220.8062 (Beta Channel)

Windows 11 Insider Preview Build 26220.8062 (KB 5079458) has been released to the Beta Channel, introducing various changes and improvements. 1. Policy-Based Removal of Preinstalled Microsoft Apps: IT administrators can now use a dynamic app removal list to remove MSIX/APPX apps by adding their package family names through Group Policy. The dynamic list is not yet available in Intune CSP. 2. Windows Setup Experience: Users can select a custom name for their user folder during the Windows setup process, which must adhere to standard naming conventions. 3. Windows Driver Policy Update: A new policy removes default trust for cross-signed drivers, allowing third-party drivers from the Windows Hardware Compatibility Program (WHCP) by default. The feature will initially operate in audit mode for at least 100 hours. 4. Point-in-Time Restore Updates: Local administrators will see a settings dialog to view or modify default restore settings, including a list of available restore points. Updated messaging has been added to the restore experience. 5. Drag Tray Rebranding: The Drag Tray has been rebranded as Drop Tray, with settings relocated to System > Multitasking. 6. Pen Settings: Refinements have been made to the Pen settings page, including an option for the pen tail button to launch the same app as the Copilot key. 7. File Explorer and Other Enhancements: Improvements have been made to the reliability of setting the preferred display language, and unexpected errors from the sfc/scannow command have been removed. Updates are gradually rolled out to Insiders who opt in via Settings > Windows Update, and features may evolve or be removed based on feedback.

Winsage

March 13, 2026

Announcing Windows 11 Insider Preview Build 26300.8068 (Dev Channel)

Windows 11 Insider Preview Build 26300.8068 (KB 5079464) has been released to the Dev Channel. Key changes include: - Enhanced policy for removing preinstalled Microsoft Store apps for Windows ENT/EDU, allowing IT administrators to use a dynamic app removal list via Group Policy. - Users can now select a custom name for their user folder during the Windows setup process. - A new policy removes default trust for cross-signed drivers, allowing third-party drivers from the Windows Hardware Compatibility Program (WHCP) by default, initially operating in audit mode. - Point-in-time restore now includes a settings dialog for local administrators and displays available restore points. - Microsoft 365 Family subscribers can upgrade their plan directly from the Accounts page in Settings. - The Drag Tray feature has been rebranded to Drop Tray, with settings relocated. - Updates to Pen settings include a new option for the pen tail button. - Enhanced reliability for preferred display language settings and removal of an unexpected error from sfc/scannow. Updates are gradually rolled out to users who opt in through the Settings menu under Windows Update.

AppWizard

March 12, 2026

Fake Red Alert app used in Android spyware smishing

Acronis' Threat Research Unit has discovered a targeted campaign against Android users involving a counterfeit version of Israel's Red Alert rocket warning app that distributes spyware. The malicious software is spread through SMS messages that appear to be official communications from the Home Front Command, prompting users to download an "update." The fraudulent app mimics the legitimate safety tool, maintaining its rocket alert functionality to avoid detection. Once installed, the spyware collects sensitive data such as SMS messages, contacts, location information, device accounts, and a list of installed applications. This tactic, termed "smishing," combines SMS and phishing techniques. The malware uses sophisticated methods like certificate spoofing and runtime manipulation to bypass Android's signature checks, and it consists of a loader and a secondary component that executes the real alert application while the spyware operates in the background. The spyware monitors user permissions and can harvest SMS messages, contacts, and location data, adjusting its behavior based on the user's geographical position. It sends collected data to a remote command-and-control server, with the exfiltration endpoint identified as ra-backup[.]com. Acronis suggests this campaign may be linked to the group Arid Viper (APT-C-23), known for targeting Israeli interests with trojanized Android applications. Researchers recommend users only download apps from official sources, avoid sideloading packages from SMS links, and review app permissions carefully. They advise checking for the package name com.red.alertx on devices and performing a factory reset if found, along with changing credentials for any accessed accounts.

Winsage

March 11, 2026

Hotpatching goes default in Windows Autopatch whether you like it or not

Microsoft will enable hotpatch security updates by default starting with the May 2026 Windows security update. Hotpatch updates allow security enhancements to be applied without system restarts, while quarterly baseline updates will still require a restart. Windows Autopatch will manage updates using "testing rings" to progressively roll out updates and address any issues. Devices must run Windows 11 24H2 or later and have the April 2026 security update installed to receive hotpatch updates automatically. Existing update policies will remain intact, and administrators can opt out of hotpatch updates at the tenant or group policy level.