disruption Archives

Winsage

June 4, 2026

Use Windows Sandbox and containers to test untrusted apps safely

Windows 11 features Smart App Control to block untrusted applications and includes Windows Sandbox, a lightweight virtual machine that provides an isolated desktop environment for safely executing applications. Windows Sandbox uses container technology and hypervisor-based virtualization to mitigate risks associated with untrusted software. It ensures that each session starts fresh, with no data persisting after closing, and applications installed on the host system are not accessible within the Sandbox. Starting with Windows 11 version 22H2, data can persist through restarts initiated within the Sandbox. Windows Sandbox is included in supported Windows editions such as Pro, Enterprise, and Education, and offers quick launch times, a lower memory footprint, and a secure environment for testing untrusted software. Setting up Windows Sandbox involves searching for it in the Start menu, running it as an administrator, and transferring executable files for installation within the Sandbox.

AppWizard

June 4, 2026

Minecraft Servers Are Down and Players Have Been Locked Out for Hours

On June 3, 2026, Minecraft players were locked out of both Bedrock and Java editions due to significant disruptions in authentication and multiplayer services, marking the second major outage in less than a week. The issues began around 12 am PDT, affecting the Realms multiplayer system and resulting in error messages for players. A previous outage on June 1 was attributed to a failure in Microsoft Azure, impacting both Minecraft and Xbox Live. On June 3, over 800 problem reports were logged, indicating a systemic failure. The error message faced by Bedrock players suggested problems with Microsoft’s central authentication system. The cause of the June 3 outage remains unconfirmed, and Mojang has not provided any updates. Players are advised to monitor official channels for updates, with single-player mode available for Java players while Bedrock players face authentication failures.

Winsage

June 4, 2026

ADCS Now Generates Post-Quantum Certificates For Windows

Active Directory Certificate Services (ADCS) now supports the generation of post-quantum certificates, enhancing quantum-safe cryptography within Windows' secure connection protocols. Microsoft has integrated PQ TLS hybrid key exchange into the Windows Transport Layer Security (TLS) stack, providing protection against "Harvest Now, Decrypt Later" attacks. The PQ TLS hybrid key exchange combines traditional cryptographic methods with the NIST ML-KEM algorithm, offering three hybrid combinations: X25519MLKEM768, SecP256r1MLKEM768, and SecP384r1_MLKEM1024. This feature is available in preview via the Windows Insider Program and will be rolled out to Windows 11 and Windows Server. Additionally, Windows cryptography APIs now support composite ML-KEM and ML-DSA algorithms, which are NIST-approved standards for key exchange and digital signatures, enhancing security by requiring multiple components to be compromised. Microsoft emphasizes the importance of establishing new Certification Authorities (CAs) for implementing post-quantum certificate issuance, as existing CAs cannot be upgraded. The introduction of ML-DSA support within ADCS allows organizations to counter HNDL risks associated with long-lived data. Organizations are encouraged to inventory their use of public-key cryptography, prioritize systems protecting sensitive data, and test hybrid and composite approaches in non-production environments to facilitate a smooth transition to quantum-safe cryptography.

Winsage

June 4, 2026

June 9 Patch Tuesday incoming as Secure Boot deadline looms

Microsoft has announced updates to Secure Boot, enhancing system security by modifying support and registry keys to streamline the boot process. These updates aim to improve the security of Windows devices by ensuring that only trusted software is loaded during startup. Collaborations with Dell and STMicroelectronics are also underway to provide tailored support and integrate advanced security features into chipsets, respectively.

Winsage

June 3, 2026

Microsoft Brings AI Agents Directly Into the Windows Terminal

Microsoft has released Intelligent Terminal 0.1, an open-source variant of Windows Terminal that includes native agent functionality. It can be installed via the Microsoft Store or WinGet and operates alongside the existing Windows Terminal. Intelligent Terminal allows users to troubleshoot issues directly within the terminal by interacting with an AI agent that understands the terminal context. The tool features a persistent agent pane for seamless interaction, with GitHub Copilot CLI as the default agent, though it supports any ACP-compatible agent. Automatic error detection is included, providing users with relevant error context and potential fixes. An agent management panel helps users oversee multiple agents and their statuses. The Command Palette has been updated to facilitate agent interactions without disrupting the workflow. Microsoft plans to evolve Intelligent Terminal based on community feedback, with its GitHub repository open for contributions. The release also marks the phasing out of Terminal Chat in Windows Terminal Canary, while the mainline Windows Terminal remains unchanged.

Winsage

June 3, 2026

Build 2026: Furthering Windows as the trusted platform for development

Build is an annual event focused on connecting with the global developer community and sharing innovations. Feedback from developers emphasizes the need for a frictionless and adaptable platform for seamless development across various environments. Key announcements include: - Coreutils for Windows: A suite of Linux-like command line utilities available natively on Windows. - WSL containers: A forthcoming public preview feature for creating and interacting with Linux containers. - Windows Development Skills: Structured knowledge for building native Windows apps using WinUI3 and WinApp CLI, now generally available. - Intelligent Terminal: An experimental feature integrating context-aware intelligence into the terminal for improved debugging and task execution. - Windows Developer Configurations: A WinGet-powered setup for distraction-free development, now generally available. - Windows 365 with Developer Configuration: A pre-configured cloud-based development environment in public preview. For security, the announcements include: - Microsoft Execution Containers (MXC) SDK: A policy-driven execution layer for agent access and containment, available in early preview. - Agent 365 integration: Enhances security for agents with protections from Defender, Entra, Intune, and Purview, available in preview. - OpenClaw: Runs securely on Windows using MXC for easy installation of agent connections. - NVIDIA's OpenShell: A deployment package for autonomous agents on Windows, built on MXC. - Windows 365 for Agents: Secure Cloud PCs for executing enterprise workflows, now generally available. For AI capabilities: - Aion 1.0 Instruct: An on-device small language model for local workloads, available soon. - Expanded Windows AI APIs: Now accessible on more Windows 11 PCs, enhancing local AI capabilities. - Surface RTX Spark Dev Box: A device for developers featuring NVIDIA RTX Spark silicon for local AI workloads. - DGX Station for Windows: A powerful AI supercomputer for developing agents, coming in Q4. - Project Solara: A platform for agent-driven experiences, simplifying development across environments. - New Speech Recognition API: Real-time, on-device transcription capabilities. - Expansion of Windows AI APIs across GPUs and CPUs: Now available for broader hardware support. Windows is enhancing its security framework to reduce risks and ensure robust protection for applications.

Winsage

June 3, 2026

One of Microsoft’s best apps now has an experimental sibling because, you guessed it, it’s been stuffed with AI

Microsoft has introduced the Intelligent Terminal, an experimental version of the Windows Terminal that integrates AI capabilities while keeping the core Windows Terminal unchanged. Users can access it via the Microsoft Store, winget, or GitHub, with GitHub Copilot as the default AI agent, though users can choose other compatible agents. Early reactions include skepticism about AI, but many users appreciate that the standard Windows Terminal remains intact.

Tech Optimizer

June 2, 2026

Accelerating developer productivity in the agentic AI era with Amazon Aurora PostgreSQL

Pravin, who leads engineering for Amazon Aurora, shared an anecdote about his son and friends using AI-assisted coding tools to develop an app without needing to worry about database setup. Elizabeth from AWS Databases noted that teams can now deliver projects in days instead of months, with a broader demographic of builders, including analysts and designers. Engineers in Pravin's organization are creating agents that significantly reduce on-call work, and product managers are drafting documents more efficiently. Aurora aims to address the challenges posed by rapid development changes by adhering to three core principles: meeting developers where they work, absorbing workload variability, and growing with applications. Aurora PostgreSQL is integrated into AI coding tools, allowing developers to set up databases quickly. It features a serverless model that automatically scales to meet fluctuating demands, accommodating workloads from small projects to large-scale applications. The database supports existing tools and frameworks, ensuring compatibility and easing migration challenges. Examples of successful transitions to Aurora PostgreSQL include SurveySparrow, which achieved cost savings and improved query latency, and Netflix, which reported significant performance improvements. Aurora's flexibility allows developers to use both serverless and provisioned instances within the same cluster, optimizing operations without data migration. It also provides options for tuning performance and maintaining an up-to-date database with minimal disruption. Aurora Global Database enables applications to expand across regions without overhauling the data layer, supporting cross-region disaster recovery and low-latency reads. Companies like S&P Dow Jones Indices and DraftKings have successfully leveraged Aurora to support their growth and operational needs. Aurora PostgreSQL is designed to empower developers, facilitating innovation across various project scales.

Winsage

May 28, 2026

Your Windows PC has a security deadline in June 2026

A Secure Boot certificate refresh is being deployed across supported Windows devices via Windows Update. The Secure Boot certificates from 2011 will begin to expire in June 2026, prompting Microsoft to introduce new 2023-dated certificates to maintain security. Most users will require minimal action if their PCs are updated, but older devices may face challenges. The current certificates include: - Microsoft Corporation KEK CA 2011: expires June 24, 2026 - Microsoft UEFI CA 2011: expires June 27, 2026 - Microsoft Windows Production PCA 2011: expires October 19, 2026 The new certificates will remain valid until 2038, with plans for post-quantum cryptography around 2030. While PCs using the 2011 certificates will continue to function, they will lose access to new security protections, making them vulnerable to emerging threats. A notable example of such a threat is the BlackLotus bootkit, which exploited vulnerabilities to bypass Secure Boot. Microsoft's rollout strategy involves a staged update process that typically takes around 48 hours and may require restarts. Users are advised to keep Windows updated and check their Secure Boot status. Known issues may arise for older PCs, systems that bypassed Windows 11 requirements, Legacy BIOS systems, and custom firmware configurations. IT teams managing devices should inventory their systems, monitor specific event IDs, test updates, and document devices that cannot be updated.

Tech Optimizer

May 27, 2026

‘Adversaries are no longer just targeting products, they’re targeting the developers who build them’: CrowdStrike takes down major botnet targeting developers across the world

CrowdStrike, Google, and the Shadowserver Foundation dismantled the Glassworm botnet on May 26, 2026, which had been targeting software developers since early 2025. The botnet spread through compromised Visual Studio Code extensions, tainted npm and Python packages, and hacked GitHub repositories, stealing developer credentials and deploying the GlasswormRAT remote access tool across Windows, macOS, and Linux. Glassworm utilized four command-and-control channels: the Solana blockchain, BitTorrent DHT, Google Calendar event titles, and traditional VPS. The operation successfully disrupted all four channels, preventing infected machines from receiving new instructions or payloads.