enhanced security measures Archives

Winsage

June 20, 2025

Microsoft testing physical-to-cloud PC failover

Microsoft has introduced a preview of "Windows 365 Reserve," which offers pre-configured cloud PCs for users when their primary devices are unavailable. The service includes essential Microsoft 365 applications, user-specific security policies, and customizations. Users can access a Cloud PC for up to 10 days per year, with the option to use the time all at once or in shorter sessions. Key features include data synchronization via OneDrive, pre-loaded corporate applications, and management through Microsoft Intune. Enhanced security measures involve disabling certain redirections and implementing virtualization-based security. Additionally, Microsoft is conducting a private preview of Windows 365 Cloud Apps for secure access to individual applications without needing a dedicated Cloud PC. Improvements to Windows 365 Link include a new "Connection Center" for selecting multiple Cloud PCs, enhanced multi-monitor support, and NFC card login capabilities.

Winsage

June 20, 2025

How Uniphore achieved 30% cost savings by modernizing Windows servers on AWS

Uniphore is an AI innovation company that faced challenges with its legacy Windows Server infrastructure, which was costly and raised security concerns due to its end-of-support status. To modernize, Uniphore utilized Amazon Web Services (AWS) for containerization and cloud-native solutions, achieving a 30% reduction in costs and improved operational capabilities. The migration involved transitioning from 50 bare-metal Windows Server 2008 R2 instances to a Linux environment on AWS, optimizing call-center analytics workloads and enabling better training of large language models. The modernization strategy included three key areas: application modernization through refactoring and containerization, a custom data migration solution using Type 2 hypervisor technology, and a cloud infrastructure setup with Amazon EC2, Amazon EKS, Amazon EFS, and Amazon S3. The migration was executed in three phases: deploying the hypervisor and DataSync agent, secure data migration and validation, and production cutover with application deployment. Best practices adopted during the process included Infrastructure as Code (IaC) with Terraform, CI/CD pipelines using GitLab, comprehensive monitoring with DATADOG and CloudWatch, and enforcement of AWS Backup policies. The modernization resulted in benefits such as improved scalability and performance, flexibility and portability of applications, enhanced security and compliance, efficient data management, reduced operational overhead, and significant cost savings.

Winsage

June 6, 2025

Microsoft shares script to restore inetpub folder you shouldn’t delete

Microsoft has released a PowerShell script to help restore the C:Inetpub folder, which is crucial for addressing a high-severity privilege escalation vulnerability associated with Windows Process Activation. The folder's unexpected appearance after the April 2025 Windows security updates led some users to delete it, inadvertently exposing their systems to vulnerabilities. Microsoft emphasizes that the folder should not be deleted, as it is integral to the security framework, regardless of whether Internet Information Services (IIS) is active. The script allows administrators to recreate the folder with the correct permissions and access control settings.

Winsage

June 6, 2025

Breathe new life into your PC with this Microsoft bundle for $46

The All-in-One Microsoft Office Pro 2019 for Windows lifetime license, along with the Windows 11 Pro Bundle, is available for .97, reduced from 9. This offer is valid until July 20. The bundle includes Windows 11 Pro, which features an AI assistant named Copilot, DirectX 12 Ultimate for improved graphics, enhanced security measures, and integration with Microsoft Teams. It also provides lifetime access to Microsoft Office Professional Plus 2019, which includes Word, Excel, PowerPoint, Outlook, OneNote, Publisher, and Access, along with new analysis capabilities in Excel, enhanced presentation tools in PowerPoint, and updated features in Outlook.

Winsage

May 29, 2025

Securing Windows Endpoints in 2025 Enterprise Environments

In 2025, 61% of organizations worldwide have adopted Zero Trust initiatives, up from 24% in 2021. Microsoft's Zero Trust framework centralizes security policy enforcement through the cloud, with integrated solutions like Microsoft Defender for Endpoint. AI is now a critical component of endpoint security, enabling systems to detect irregularities and autonomously isolate compromised devices. Microsoft introduced Quick Machine Recovery (QMR) to allow IT administrators to fix unbootable PCs remotely. Windows Server 2025 features enhanced security measures, including advanced algorithms and a customized security baseline with over 350 preconfigured settings. Additionally, 75% of organizations are consolidating security vendors, favoring comprehensive platforms like SentinelOne Singularity and Microsoft Defender XDR. Windows Defender Application Control (WDAC) has been enhanced to better regulate application usage, with Microsoft promoting its adoption over AppLocker.

Tech Optimizer

May 29, 2025

Sophos warns MSPs over DragonForce threat

Sophos has warned managed service providers (MSPs) about their vulnerability to ransomware attacks targeting remote monitoring and management (RMM) tools. They reported a ransomware incident involving DragonForce, where attackers accessed the SimpleHelp RMM to deploy ransomware across multiple endpoints and exfiltrate sensitive data using a double extortion strategy. An alert was triggered by a suspicious SimpleHelp installer file pushed through the MSP's legitimate RMM instance. MSPs utilizing Sophos's managed detection and response (MDR) services successfully prevented hacker access, while those without security investments were impacted by the ransomware and data exfiltration. Following the incident, the affected MSP sought help from Sophos Rapid Response for digital forensics. Mark Appleton from Also Cloud UK stressed the importance of MSPs investing in advanced exposure management tools to mitigate cyber threats, noting that endpoints are primary targets for breaches. He highlighted the significance of continuous threat exposure management as essential for MSPs to protect themselves and their clients from attacks.

Tech Optimizer

May 27, 2025

Microsoft oversells Windows 11’s Smart App Control as a “top antivirus solution”

Microsoft's Smart App Control (SAC) is integrated into Windows 11 and requires a clean installation to function optimally. It is designed to enhance security by using artificial intelligence to proactively shield users from threats, working alongside existing antivirus software rather than replacing it. SAC aims to anticipate and block suspicious applications before they can cause harm, minimizing system performance impact by avoiding constant file scanning. However, the effectiveness of SAC and its claims of being a groundbreaking innovation have been questioned, as proactive security measures have existed for years, and modern antivirus solutions offer advanced features beyond basic scanning. Users are advised to consider independent testing platforms for reliable antimalware options.

Winsage

May 25, 2025

Get Windows 11 Pro for your PC for $15

Microsoft is offering Windows 11 Pro for .97, down from its regular price of 9. This offer is valid only until the end of today and is limited by available codes. Windows 11 Pro can be installed on two compatible PCs and features a modern user interface, productivity tools, enhanced security measures, and professional features for remote work.

Tech Optimizer

May 24, 2025

Arms Cyber Expands Ransomware Protection to macOS Devices

Apple devices, previously considered largely immune to cyber threats, are experiencing a rise in ransomware attacks targeting macOS, as reported by cybersecurity firm Black Fog. This shift is attributed to the increasing popularity of Apple devices and evolving ransomware tactics. Notable ransomware incidents include EvilQuest and MacRansom, with new threats like NotLockBit and FrigidStealer emerging. In response, Arms Cyber has begun offering ransomware protection for macOS, becoming the first firm to provide comprehensive protection across Windows, Linux, and macOS. Their solutions include real-time file entropy analysis, Steal Archival technology for rapid recovery, and Automated Moving Target Defense (AMTD) to thwart attacks. The growing use of Mac devices in critical sectors highlights the need for enhanced security measures, as attackers see opportunities in less protected systems. Managed Security Service Providers (MSSPs) are also being equipped with these protections to strengthen defenses against ransomware.

AppWizard

May 21, 2025

Google says Gemini 2.5 models are only getting better with Deep Think and Flash

Google has announced enhancements to its Gemini 2.5 models, including the 2.5 Pro version and the new 2.5 Flash model, which improves speed and efficiency. The 2.5 Pro will include native audio output controls for developers to customize speech. Enhanced security measures will protect against malicious instructions and prompt injection attacks. Project Mariner's functionality will be integrated into Gemini and Vertex AI. Google is also introducing insightful summaries for developers to aid in debugging, along with cost control features through a "thinking budget." A generally available model will be released, and support for Model Context Protocol (MCP) will facilitate the integration of open-source tools into Gemini projects.