Jump to content

Search the Community

Showing results for tags 'microsoft'.



More search options

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Site Related
    • News & Updates
    • Site / Forum Feedback
    • Member Introduction
  • News
    • General News
    • FileSharing News
    • Mobile News
    • Software News
    • Security & Privacy News
    • Technology News
  • Downloads
    • nsane.down
  • General Discussions & Support
    • Filesharing Chat
    • Security & Privacy Center
    • Software Chat
    • Mobile Mania
    • Technology Talk
    • Entertainment Exchange
    • Guides & Tutorials
  • Off-Topic Chat
    • The Chat Bar
    • Jokes & Funny Stuff
    • Polling Station

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Found 1,432 results

  1. Support for end-to-end encrypted chats has landed in the stable versions of Skype for Windows, macOS, Linux, Android, and iOS. The feature was previously announced in January this year. Back then, Microsoft and Open Whisper Systems (makers of the Signal app) announced a partnership to bring the Signal open-source end-to-end encryption protocol to Skype. The feature was named Skype Private Conversations and was only available for users of Skype Insider preview builds. The feature went live for all users in updates for all Skype apps deployed last week, according to MsPowerUser, which first spotted the feature. For example, on Android, the feature was added to Skype v8.15.0.306, released on August 2. On Windows, users who updated to Skype v8.28.0.41 or later can now start private conversations. All they have to do is press the "+ Chat" button atop their contacts sidebar and select the "New Private Conversation" option that appears there. Skype will set up keys to encrypt the current conversation and invite the other person to join. If the other person is using a compatible Skype version that also supports Private Conversations, the two users will be able to establish an encrypted communications channel. The conversations are end-to-end encrypted, meaning messages are encrypted while in transit and on the two devices engaged in the conversation. For example, this reporter wasn't able to access a test Private Conversation he had on his desktop client from his mobile Skype version. New Private Conversations need to be started from each device. Source-1 Source-2
  2. I'm about to finish assembling my new PC, and everything before completing the hardware part, I wanted to download the fresh & up to date software to install on my new system. But when inquired, I found there are 2 latest versions of Windows 10 (Version 1803) available on Internet, Business & Consumer. Now, I already have collected a few Windows 7 Professional COA product keys from my office's 5 years old PCs which are scrapped now. So, someone please tell which version should I download, to install on my new system, with which I can activate the OS with 1 of the collected Windows 7 Professional COA product keys.
  3. Today, Microsoft released a new Windows 10 Insider Preview for PCs, bringing the build number to 17741. It doesn't contain much in the way of new features, but one thing that's changed is the version number. Redstone 5 is now officially Windows 10 version 1809. Windows 10 version numbers are based on the date that the update will be released to the general public. The first two digits are the year, and the last two are the month. 1809 means September 2018, so that's when you can expect Insiders to receive the final build for the update. Of course, that doesn't mean that's when it will be publicly released. Non-Insiders will probably see the update in October. While this doesn't really mean anything to the end user, it's a small milestone in the development cycle. After all, Redstone 5 has been developed under version 1803 for months. It will be interesting to see what the next version of Windows 10 will be. Microsoft is ditching Redstone codenames in favor of those that reflect the date, similar to version numbers, but a bit more vague. The next update will be 19H1, meaning the first half of 2019. It seems likely that that will eventually go to the same naming scheme that we all know, and will be called 1903. But for the time being, we finally have a version number for Redstone 5, which is 1809. Neowin.net
  4. A team of Belgian researchers discovered privacy issues in how browsers, ad-blocking, and anti-tracking implementations handle third-party cookie requests. A team of Belgian researchers from KU Leuven analyzed third-party cookie policies of seven major web browsers, 31 ad-blockers and 14 anti-tracking extensions and discovered major and minor issues in all of them. Major issues include Microsoft Edge's unwillingness to honor its own "block only third-party cookies" setting, bypasses for Firefox's Tracking Protection feature, and use of the integrated PDF viewer in Chrome and other Chromium-based browsers for invisible tracking. Cookie requests can be sorted into two main groups: first-party requests that come from the address listed in the address bar of the browser and third-party requests that come from all other sites. Advertisement displayed by websites makes use of cookies usually and some of these cookies are used for tracking purposes. Internet users can configure their browsers to block any third-party cookie requests to limit cookie-based tracking. Some browsers, for instance Opera or Firefox, include ad-blockers or anti-tracking functionality that is used in addition to that. Anti-tracking mechanisms have flaws The research paper, "Who Left Open the Cookie Jar? A Comprehensive Evaluation of Third-Party Cookie Policies", detailed information about each web browser, tests to find out if a browser is vulnerable to exploits, and bug reports are linked on the research project's website. The researchers created a test framework that they used to verify whether "all imposed cookie- and request-policies are correctly applied". They discovered that "most mechanisms could be circumvented"; all ad-blocking and anti-tracking browser extensions had at least one bypass flaw. In this paper, we show that in the current state, built-in anti-tracking protection mechanisms as well as virtually every popular browser extension that relies on blocking third-party requests to either prevent user tracking or disable intrusive advertisements, can be bypassed by at least one technique The researchers evaluated tracking protection functionality and a new cookie feature called same-site cookies that was introduced recently to defend against cross-site attacks. Results for all tested browsers are shown in the table below. The researchers tested the default configuration of Chrome, Opera, Firefox, Safari, Edge, Cliqz, and Tor Browser, and configurations with third-party cookie blocking disabled, and if available, tracking protection functionality enabled. Tor Browser is the only browser on the list that blocks third-party cookies by default. All browsers did not block cookies for certain redirects regardless of whether third-party cookies were blocked or tracking protection was enabled. Chrome, Opera and other Chromium-based browsers that use the built-in PDF viewer have a major issue in regards to cookies. Furthermore, a design flaw in Chromium-based browsers enabled a bypass for both the built-in third party cookie blocking option and tracking protection provided by extensions. Through JavaScript embedded in PDFs, which are rendered by a browser extension, cookie-bearing POST requests can be sent to other domains, regardless of the imposed policies. Browser extensions for ad-blocking or anti-tracking had weaknesses as well according to the researchers. The list of extensions reads like the who is who of the privacy and content blocking world. It includes uMatrix and uBlock Origin, Adblock Plus, Ghostery, Privacy Badger, Disconnect, or AdBlock for Chrome. The researchers discovered ways to circumvent the protections and reported several bugs to the developers. Some, Raymond Hill who is the lead developer of uBlock Origin and uMatrix, fixed the issues quickly. At least one issue reported to browser makers has been fixed already. "Requests to fetch the favicon are not interceptable by Firefox extensions" has been fixed by Mozilla. Other reported issues are still in the process of being fixed, and a third kind won't be fixed at all. You can run individual tests designed for tested web browsers with the exception of Microsoft Edge on the project website to find out if your browser is having the same issues. Closing Words With more and more technologies being added to browsers, it is clear that the complexity has increased significantly. The research should be an eye opener for web browser makers and things will hopefully get better in the near future. One has to ask whether some browser makers test certain features at all; Microsoft Edge not honoring the built-in setting to block third-party cookies is especially embarrassing in this regard. (via Deskmodder) Now You: Do you use extensions or settings to protect your privacy better? Source
  5. Kon-Boot is an application which will silently bypass the authentication process of Windows based operating systems. Without overwriting your old password! In other words you can login to your Windows profile without knowing your password. Easy to use and excellent for tech repairs, data recovery and security audits. Fast, tiny and gets your job done! KON-BOOT 2in1 for Windows and Mac OSX. One Kon-Boot pendrive to bypass Windows and Mac OSX authorization process. One Kon-Boot pendrive to rule them all! Kon-Boot 2in1 is basically Kon-Boot for Windows and Kon-Boot for Mac OSX connected together. No need for multiple pendrives anymore. System Requirements: Kon-Boot 2in1 can be only installed on USB thumb drive (there is no .ISO in the package). Windows OS and Internet connection is required for the installation. All other requirements were already presented above (in the Kon-Boot for Windows and Kon-Boot for Mac OSX sections). Supported Operating Systems: All Windows systems starting from Windows XP to Windows 10 (both x86 and x64) Regarding the UEFI support only Windows 8/8.1/10 x64 systems are supported (this is default Microsoft policy, additionally there are virtually none x86 UEFI systems out there). Kon-Boot now is able to bypass online account authorization on Windows 8/8.1. On Windows 10 only local account authorization bypass is available (with possibility to add new administrator account automatically (USB only)). macOS: - macOS High Sierra OSX 10.13 (NEW) - macOS Sierra OSX 10.12 - OSX 10.11 - OSX 10.10 - OSX 10.9 - OSX 10.8 - OSX 10.7 - OSX 10.6 (experimental) Changelog: - Includes fixes for Windows (+awesome feature for Commercial licenses) and Mac OSX (supports 10.13). Complete Changelog: Version 2.7 update released - 03.02.2018: Multiple Kon-Boot installer fixes Version 2.7 released (2.6 version was skipped to match the 2in1 version) - 01.01.2018: Additional features for Commercial version (automatically executed powershell scripts!) (UEFI part only for Windows 8/Windows 10 x64) Multiple fixes for kon-boot stability (UEFI part) Multiple installer fixes (USB installer now requires online activation) CD version is deprecated and will no longer be maintained (last version with CD support is 2.5) UEFI support for x86 bit Windows system is deprecated and will no longer be maintained (there are virtually no x86 UEFI systems out there anyway) Entire documentation updated and moved to online form Homepage: http://www.piotrbania.com/all/kon-boot/ Changelog: https://kon-boot.com/docs/#windows_guide/#changelog Downloads: Kon-Boot 2.7 Full - Win + Mac: Site: https://www.upload.ee Sharecode[?]: /files/8141386/Kon-Boot_2.7.rar.html Mirror: Site: https://www.multiup.eu/en Sharecode[?]: /download/8525461794db0387a206788d25d91c13/Kon-Boot_2.7.rar FYI: Multiup can be .eu or .org. Pls use which is working for your location.
  6. Microsoft PowerShell is a cross-platform automation and configuration tool/framework that works well with your existing tools and is optimized for dealing with structured data (e.g. JSON, CSV, XML, etc.), REST APIs, and object models. Microsoft PowerShell features 130 plus "commandlets" (cmdlets) with commands to handle numerous jobs, whether it is service or process administration, registry, object manipulation, and more. Management can be done locally or remotely. An icon will be created in your start menu. Additional documentation is available at the Author link above Whats New: Build and Packaging Improvements Aggregate native components into a single NuGet package "Microsoft.PowerShell.Native". Update the version of NuGet packages referenced by PowerShell. Fix release build for macOS. Test Fix xUnit tests. Add new tests for hosting PowerShell SDK NuGet packages. Home: https://github.com/PowerShell/PowerShell/ Changelog: https://github.com/PowerShell/PowerShell/blob/master/CHANGELOG.md Downloads Page: https://github.com/PowerShell/PowerShell/releases/tag/v6.0.4 Downloads: 49.7 MB powershell-6.0.4-1.rhel.7.x86_64.rpm 24.8 MB powershell-6.0.4-linux-arm32.tar.gz 50.1 MB powershell-6.0.4-linux-x64.tar.gz 48.7 MB powershell-6.0.4-osx-x64.tar.gz 49 MB powershell-6.0.4-osx.10.12-x64.pkg 31.9 MB PowerShell-6.0.4-win-arm32.zip 31.8 MB PowerShell-6.0.4-win-arm64.zip 49.3 MB PowerShell-6.0.4-win-x64.msi 50.5 MB PowerShell-6.0.4-win-x64.zip 45.4 MB PowerShell-6.0.4-win-x86.msi 46.5 MB PowerShell-6.0.4-win-x86.zip 50.1 MB powershell_6.0.4-1.debian.8_amd64.deb 50.1 MB powershell_6.0.4-1.debian.9_amd64.deb 50.1 MB powershell_6.0.4-1.ubuntu.14.04_amd64.deb 50.1 MB powershell_6.0.4-1.ubuntu.16.04_amd64.deb 50.1 MB powershell_6.0.4-1.ubuntu.17.04_amd64.deb Source code (zip) Source code (tar.gz)
  7. Susan Bradley's open letter to Microsoft gets a non-response from Microsoft that shows that the company is not really interested in feedback. Susan Bradley, a well known Windows administrator and contributor on various forums and sites including Patch Management, wrote an open letter recently to Microsoft in which she summarized results of a Windows survey on update quality and releases in general. Users had to answer five simple questions using a scale of 1 to 5 with 1 meaning "very much not satisfied" and 5 meaning "very satisfied". The questions were: Satisfaction with Microsoft patching (overall Windows 7 to Windows 10). Satisfaction with the quality of Windows 10 updates. Windows 10 feature updates useful to business needs. The cadence of feature releases. Is Microsoft meeting business needs with Windows 10. Susan asked an open-ended question as well in which participants could provide their opinion on what needed to change to make Windows 10 better for business. Survey results indicate that many users who filled out the survey are not satisfied with the current quality of updates, patch releases and general update behavior. Almost 70% of respondents stated that they were not satisfied with the quality of update releases. Susan mentioned that 47 of the updates that Microsoft released in July 2018 had known issues associated with them, some of them very serious such as "stop issues". Windows patching issues She identified several underlying issues; first, that relying solely on Insiders to test releases before release to the stable population is not sufficient in regards to quality control as July 2018 and previous months have shown. When your own products break with these releases, it is clear that current testing processes are not good enough. We reported on this in the past as well, e.g.here and here. Second, that the two feature releases per year cause "patch fatigue". The operating system needs to do a better job of communicating to the end user and especially to the patching administrator when a machine will receive an update. The addition of the Windows Update for Business settings that often conflict with other group policy settings cause confusion, not clarity. See, too many Windows 10 feature updates for our take on this. Third, that patch communication needed a lot of work. Starting in January of this year with the release of Spectre/Meltdown patches, there have been numerous instances where patching communication has been wrong, registry entries detailed in Knowledge Base articles regarding registry key application was initially incorrect and later updated, or vendor updates had to be stopped and in general patching communication has been lacking. We mentioned a lack of communication as well previously, for instance, when Microsoft published support pages after releasing updates. Microsoft responded to Susan Bradley's open letter twice. The first response was just an acknowledgement that the letter has been received by the company. A Customer Relationship Manager stated in it that Microsoft was "working on finding the best venue to bring your concerns to our leadership team who would be better equipped in making any decisions that need to be made". The second letter, again sent by the same Customer Relationship Manager, is a non-saying letter that shows that Microsoft has no intention to follow-up on the described problems. Microsoft does not address any of the concerns brought forward. The paragraphs look like a copy and paste job that talk about Windows 10 updates in general and how it is different from previous versions. Microsoft then asks Susan Bradley to leave feedback using the Feedback Hub (which she did three months ago but with little success). Your letter clearly states the concerns that you have due to the quality and timing of Microsoft updates. I would like to add that with Windows 10 Microsoft decided to be more proactive. This has always been the way we keep commercial versions of Windows on the market current. There are also bug fixes. These updates can be vital. The Windows software environment and its associated hardware is incredibly complex. When these bugs are fixed, updates have to be issued to move them out to users. You want these updates to make sure everything works as expected. Windows 10 is very different from earlier versions of Windows. Earlier versions of Windows consisted of a single product which was updated over time. Windows 10 consists entirely of a base install and then fluid updates. The updates aren't add-ons from which to pick and choose but are part of the operating system. I have provided a link below to our Feedback Hub. In the future you could use the link to provide feedback and share your suggestions or comments on issues with Windows products. https://www.microsoft.com/en-us/p/feedback-hub/9nblggh4r32n?activetab=pivot%3aoverviewtab Again, thank you for all the feedback. Is there anything else I can do to help? Did you have any other questions or concerns you wanted to discuss? If there are none I will go ahead and close out of your service request. The response is corporate-speak for "thanks, but no thanks". It is almost insulting and in my opinion worse than having not responded at all to the open letter. Now You: What's your take on this? Source PS: This is the reality of MS. I hope Win 10 users who upgraded would finally understand the Micro$h*t, Sh*tty Nudella its team & devs.
  8. Microsoft published master lists of endpoint connections that recent versions of the company's Windows 10 operating system make recently. Microsoft released the first version of Windows 10 three years ago and privacy has been a hot topic ever since. We published Windows 10 and Privacy back in 2015 to highlight privacy issues such as the inability to turn off Telemetry collection and transfers in the user interface. Microsoft was criticized by government agencies in various countries such as France or the Netherlands for privacy issues, and a rising arsenal of privacy tools for Windows 10 promised users protection against the data hunger of Microsoft. One option that Windows users and administrators have is to block endpoints so that connections can't be established. The method requires extensive testing as critical functionality may become unavailable when connections are blocked. If you block Windows Update endpoints, you should not be surprised that you cannot use the automatic updating system anymore to keep the operating system up to date. Default Windows 10 systems, those installed using default settings and left untouched, make a large number of connections automatically for a variety of purposes. Windows 10 checks for updates regularly, checks new files against Windows Defender databases, or submits telemetry data to Microsoft. While some connections are required for the operating system to work properly, others may be disabled without noticeable impact in functionality; the latter is true especially if features are not used on the system. Microsoft released a master list of Windows Endpoints for non-Enterprise and for Enterprise editions of Windows recently. The non-Enterprise listing is available for Windows 10 version 1709 and 1803, the Enterprise-specific listing for Windows 10 version 1709. Tip: Check out my side-project Privacy Amp for detailed lists and other privacy related topics. Without further ado, here are the connection endpoints of Windows 10 version 1803 (non-Enterprise). Windows 10 Family Destination Protocol Description *.e-msedge.net HTTPS Used by OfficeHub to get the metadata of Office apps. *.g.akamaiedge.net HTTPS Used to check for updates to maps that have been downloaded for offline use. *.s-msedge.net HTTPS Used by OfficeHub to get the metadata of Office apps. *.tlu.dl.delivery.mp.microsoft.com/filestreamingservice/files/ HTTP Enables connections to Windows Update. arc.msn.com.nsatc.net HTTPS Used to retrieve Windows Spotlight metadata. arc.msn.com/v3/Delivery/Placement HTTPS Used to retrieve Windows Spotlight metadata. client-office365-tas.msedge.net* HTTPS Used to connect to the Office 365 portal’s shared infrastructure, including Office Online. config.edge.skype.com/config/* HTTPS Used to retrieve Skype configuration values. ctldl.windowsupdate.com/msdownload/update* HTTP Used to download certificates that are publicly known to be fraudulent. cy2.displaycatalog.md.mp.microsoft.com.akadns.net HTTPS Used to communicate with Microsoft Store. cy2.licensing.md.mp.microsoft.com.akadns.net HTTPS Used to communicate with Microsoft Store. cy2.settings.data.microsoft.com.akadns.net HTTPS Used to communicate with Microsoft Store. displaycatalog.mp.microsoft.com* HTTPS Used to communicate with Microsoft Store. dm3p.wns.notify.windows.com.akadns.net HTTPS Used for the Windows Push Notification Services (WNS). fe2.update.microsoft.com* HTTPS Enables connections to Windows Update, Microsoft Update, and the online services of Microsoft Store. fe3.delivery.dsp.mp.microsoft.com.nsatc.net HTTPS Enables connections to Windows Update, Microsoft Update, and the online services of Microsoft Store. fe3.delivery.mp.microsoft.com HTTPS Enables connections to Windows Update, Microsoft Update, and the online services of Microsoft Store. g.live.com/odclientsettings/Prod HTTPS Used by OneDrive for Business to download and verify app updates. g.msn.com.nsatc.net HTTPS Used to retrieve Windows Spotlight metadata. geo-prod.dodsp.mp.microsoft.com.nsatc.net HTTPS Enables connections to Windows Update. ipv4.login.msa.akadns6.net HTTPS Used for Microsoft accounts to sign in. licensing.mp.microsoft.com/v7.0/licenses/content HTTPS Used for online activation and some app licensing. location-inference-westus.cloudapp.net HTTPS Used for location data. maps.windows.com/windows-app-web-link HTTPS Link to Maps application. modern.watson.data.microsoft.com.akadns.net HTTPS Used by Windows Error Reporting. ocos-office365-s2s.msedge.net* HTTPS Used to connect to the Office 365 portal's shared infrastructure. ocsp.digicert.com* HTTP CRL and OCSP checks to the issuing certificate authorities. oneclient.sfx.ms* HTTPS Used by OneDrive for Business to download and verify app updates. query.prod.cms.rt.microsoft.com* HTTPS Used to retrieve Windows Spotlight metadata. ris.api.iris.microsoft.com* HTTPS Used to retrieve Windows Spotlight metadata. settings.data.microsoft.com/settings/v2.0/* HTTPS Used for Windows apps to dynamically update their configuration. settings-win.data.microsoft.com/settings/* HTTPS Used as a way for apps to dynamically update their configuration. sls.update.microsoft.com* HTTPS Enables connections to Windows Update. storecatalogrevocation.storequality.microsoft.com* HTTPS Used to revoke licenses for malicious apps on the Microsoft Store. storeedgefd.dsx.mp.microsoft.com* HTTPS Used to communicate with Microsoft Store. tile-service.weather.microsoft.com* HTTP Used to download updates to the Weather app Live Tile. tsfe.trafficshaping.dsp.mp.microsoft.com HTTPS Used for content regulation. ip5.afdorigin-prod-am02.afdogw.com HTTPS Used to serve office 365 experimentation traffic. watson.telemetry.microsoft.com/Telemetry.Request HTTPS Used by Windows Error Reporting. Windows 10 Pro Destination Protocol Description *.e-msedge.net HTTPS Used by OfficeHub to get the metadata of Office apps. *.g.akamaiedge.net HTTPS Used to check for updates to maps that have been downloaded for offline use. *.s-msedge.net HTTPS Used by OfficeHub to get the metadata of Office apps. .tlu.dl.delivery.mp.microsoft.com/ HTTP Enables connections to Windows Update. *geo-prod.dodsp.mp.microsoft.com.nsatc.net HTTPS Enables connections to Windows Update. arc.msn.com.nsatc.net HTTPS Used to retrieve Windows Spotlight metadata. au.download.windowsupdate.com/* HTTP Enables connections to Windows Update. ctldl.windowsupdate.com/msdownload/update/* HTTP Used to download certificates that are publicly known to be fraudulent. cy2.licensing.md.mp.microsoft.com.akadns.net HTTPS Used to communicate with Microsoft Store. cy2.settings.data.microsoft.com.akadns.net HTTPS Used to communicate with Microsoft Store. dm3p.wns.notify.windows.com.akadns.net HTTPS Used for the Windows Push Notification Services (WNS) fe3.delivery.dsp.mp.microsoft.com.nsatc.net HTTPS Enables connections to Windows Update, Microsoft Update, and the online services of Microsoft Store. g.msn.com.nsatc.net HTTPS Used to retrieve Windows Spotlight metadata. ipv4.login.msa.akadns6.net HTTPS Used for Microsoft accounts to sign in. location-inference-westus.cloudapp.net HTTPS Used for location data. modern.watson.data.microsoft.com.akadns.net HTTPS Used by Windows Error Reporting. ocsp.digicert.com* HTTP CRL and OCSP checks to the issuing certificate authorities. ris.api.iris.microsoft.com.akadns.net HTTPS Used to retrieve Windows Spotlight metadata. tile-service.weather.microsoft.com/* HTTP Used to download updates to the Weather app Live Tile. tsfe.trafficshaping.dsp.mp.microsoft.com HTTPS Used for content regulation. vip5.afdorigin-prod-am02.afdogw.com HTTPS Used to serve office 365 experimentation traffic Windows 10 Education Destination Protocol Description *.b.akamaiedge.net HTTPS Used to check for updates to maps that have been downloaded for offline use. *.e-msedge.net HTTPS Used by OfficeHub to get the metadata of Office apps. *.g.akamaiedge.net HTTPS Used to check for updates to maps that have been downloaded for offline use. *.s-msedge.net HTTPS Used by OfficeHub to get the metadata of Office apps. *.telecommand.telemetry.microsoft.com.akadns.net HTTPS Used by Windows Error Reporting. .tlu.dl.delivery.mp.microsoft.com HTTP Enables connections to Windows Update. .windowsupdate.com HTTP Enables connections to Windows Update. *geo-prod.do.dsp.mp.microsoft.com HTTPS Enables connections to Windows Update. au.download.windowsupdate.com* HTTP Enables connections to Windows Update. cdn.onenote.net/livetile/* HTTPS Used for OneNote Live Tile. client-office365-tas.msedge.net/* HTTPS Used to connect to the Office 365 portal’s shared infrastructure, including Office Online. config.edge.skype.com/* HTTPS Used to retrieve Skype configuration values. ctldl.windowsupdate.com/* HTTP Used to download certificates that are publicly known to be fraudulent. cy2.displaycatalog.md.mp.microsoft.com.akadns.net HTTPS Used to communicate with Microsoft Store. cy2.licensing.md.mp.microsoft.com.akadns.net HTTPS Used to communicate with Microsoft Store. cy2.settings.data.microsoft.com.akadns.net HTTPS Used to communicate with Microsoft Store. displaycatalog.mp.microsoft.com/* HTTPS Used to communicate with Microsoft Store. download.windowsupdate.com/* HTTPS Enables connections to Windows Update. emdl.ws.microsoft.com/* HTTP Used to download apps from the Microsoft Store. fe2.update.microsoft.com/* HTTPS Enables connections to Windows Update, Microsoft Update, and the online services of Microsoft Store. fe3.delivery.dsp.mp.microsoft.com.nsatc.net HTTPS Enables connections to Windows Update, Microsoft Update, and the online services of Microsoft Store. fe3.delivery.mp.microsoft.com/* HTTPS Enables connections to Windows Update, Microsoft Update, and the online services of Microsoft Store. g.live.com/odclientsettings/* HTTPS Used by OneDrive for Business to download and verify app updates. g.msn.com.nsatc.net HTTPS Used to retrieve Windows Spotlight metadata. ipv4.login.msa.akadns6.net HTTPS Used for Microsoft accounts to sign in. licensing.mp.microsoft.com/* HTTPS Used for online activation and some app licensing. maps.windows.com/windows-app-web-link HTTPS Link to Maps application modern.watson.data.microsoft.com.akadns.net HTTPS Used by Windows Error Reporting. ocos-office365-s2s.msedge.net/* HTTPS Used to connect to the Office 365 portal's shared infrastructure. ocsp.digicert.com* HTTP CRL and OCSP checks to the issuing certificate authorities. oneclient.sfx.ms/* HTTPS Used by OneDrive for Business to download and verify app updates. settings-win.data.microsoft.com/settings/* HTTPS Used as a way for apps to dynamically update their configuration. sls.update.microsoft.com/* HTTPS Enables connections to Windows Update. storecatalogrevocation.storequality.microsoft.com/* HTTPS Used to revoke licenses for malicious apps on the Microsoft Store. tile-service.weather.microsoft.com/* HTTP Used to download updates to the Weather app Live Tile. tsfe.trafficshaping.dsp.mp.microsoft.com HTTPS Used for content regulation. vip5.afdorigin-prod-ch02.afdogw.com HTTPS Used to serve office 365 experimentation traffic. watson.telemetry.microsoft.com/Telemetry.Request HTTPS Used by Windows Error Reporting. bing.com/* HTTPS Used for updates for Cortana, apps, and Live Tiles. Source PS: I'm sure there would be much more connections not revealed due to privacy issues with MS. Hope will be revealed by any whistle-blower or someone like Woody/abbodi/.... soon to demolish Win 10 & MS - the day I'm feel much more joyful.
  9. Microsoft today announced that it will retire "Skype Classic" for desktop (version 7.0) on September 1. In its place, all Skype users will be forced to upgrade to version 8.0 by that date to continue using Skype for dekstop. From Microsoft : As we roll out improvements, there comes a time when we must shut down older services and application versions. This is done to ensure that all customers have the best possible Skype experience, and that there are no quality or reliability issues resulting from old technology and new technology interoperating. We know change can be hard, so we're working to make the update as simple as possible. Skype version 8.0 is revamped with several new features, and Microsoft has more planned for future releases. The new features include the ability to add reactions to messages, @mentions, and a chat media gallery. You can also now drag and drop files up to 300MB in size to share them with friends and contacts. This version of Skype is also rolling out on iPad starting today, with a similar set of new features in tow. As for Skype's future, Microsoft offered a peek at several more features it is cooking up. The most notable of these is call recording, which lets you capture entire calls at any time. Read receipts are also in the works, as are end-to-end encrypted conversations. If you're using an older version of Skype, you should be prompted to update to version 8.0 before the September 1 deadline arrives. Otherwise, you can download the latest version of Skype from Microsoft now. Windowscentral.com
  10. Vista was bad. Coming five years after XP, it was heavily anticipated by Windows users who were impatiently awaiting something interesting from Microsoft as Apple’s star was on the rise. Yet when the OS dropped publicly in January 2007, it was immediately reviled by, well, everyone (except our expert reviewers). It was slower than XP, had annoying DRM that grossly restricted what people could do, and removed a ton of features people liked. It is not hyperbole to say it might be the most hated software product Microsoft has ever produced—impressive for the company that gave us Internet Explorer and Clippy. But Vista did one thing very, very right, and 11 years later, it’s never been more in fashion. So what was Vista actually prescient about? Translucent design elements. All the way back in Vista, Microsoft introduced Aero, a design language intended to be a futuristic update to XP. Aero’s most eye-catching feature was the Glass theme, which could make elements throughout the UI transparent. When it was released, it didn’t get more than a passing nod from reviewers who noted it was slick if somewhat irrelevant to the actual performance of the OS. Aero lasted through Windows 7—Microsoft’s most critically lauded OS until Windows 10. Then in Windows 8, Microsoft introduced a new design language: Metro. Metro actually kicked off another major trend in user interface design: flat design elements. But it still maintained some of the cool translucent effects introduced in Aero. Those translucent effects were carried over to Windows 10 and are easily seen in Edge, the Start menu, and the Notifications panel. They’re so popular, some Windows 10 users are even hacking the OS to add translucency and transparency to everything else! The effect is super noticeable in the start menu. Screenshot: Windows 10 The trend isn’t reserved to Windows. Apple seems to have been inspired, too. That’s because UI designers, like everyone else, are subject to trends. Once upon a time, everyone tried to make their app icons and buttons look rounded because of iOS. Then, after Windows and Android embraced a flatter look, iOS followed suit with iOS 7 in 2013. It also began sprinkling that sweet, sweet translucent design throughout. Look at these pretty menus! Screenshot: macOS Mojave The translucent elements first appeared in Mac OS X Leopard 10.5 as an option to turn the menu bar translucent. That was in November 2007, nearly a year after Vista launched. Apple seriously began showing off translucent elements when iOS 7 added translucent menus and notifications in 2013. MacOS 10.10 Yosemite began embracing translucency a year later. Since then, both Apple operating systems have added more and more translucent elements. The most recent additions come courtesy of the betas for macOS Mojave and iOS 12. That’s because both are adding dark translucent elements, which seem to highlight the translucency effect even more. It is reminiscent of glass that’s been frosted and tinted. It’s very attractive. Sometimes I get distracted into marveling at it instead of doing work. I mean just look at it in Safari! https://i.kinja-img.com/gawker-media/image/upload/s--D4wf6Cer--/c_scale,fl_progressive,q_80,w_800/ef5knheqchlma1mbmvlc.mp4 It’s so good, I find myself using Safari instead of Chrome just so I can watch stuff I’m scrolling through turn blurry as it hits the browser frame. The transparent elements, while not as ubiquitous in iOS, are still present there too—particularly in the iOS 12 beta, which has done away with the garish white panels in the notification center and embraced a dark and translucent look. Source
  11. Analysts recognized that Microsoft is winning more high-value Azure deals and improving the cloud's gross margin. One analyst suggested the company's cloud transition is proving to be additive to its legacy products. Satya Nadella, CEO of Microsoft Microsoft will soon be worth $1 trillion, according to a growing chorus of analysts. The company's latest earnings results, which showed continuing strong growth in its cloud business, has convinced some that the company is succeeding in moving its historic business model of selling licensed software to a subscription-based cloud model that could deliver more steady revenue and growth over time. Microsoft might not be the first company to the trillion-dollar mark — Apple on Friday afternoon had a $943.7 billion market cap, more than $100 billion ahead of Microsoft's $821.4 billion market cap, and Amazon and Alphabet are both ahead of Microsoft as well. But the company's valuation has grown considerably in the past four and a half years under Satya Nadella. Following the release of the company's fiscal fourth-quarter earnings and guidance for the quarters ahead, some analysts raised their price targets on Microsoft stock, reaching as high as $130. To eclipse the trillion-dollar mark, Microsoft would have to reach $130.16. Piper Jaffray analysts led by Alex Zukin raised their price target from $123 to $130 in a Friday note. "With the company's sales organization firing on all cylinders and last year's re-org in rear view, we expect solid execution amid a strong demand environment to drive ongoing double digit growth," they wrote. The Piper Jaffray analysts noted that the growth-oriented Commercial Cloud group — including the Azure cloud, commercial subscriptions to Office 365 productivity applications and Dynamics 365 cloud-based business software — delivered 25 percent of Microsoft's total revenue, up 3 percent sequentially. Deutsche Bank's Karl Keirstead and Taylor McGinnis in a Friday note raised their target price from $120 to $130. "The 3QF18 print was terrific, and this one was even better, highlighted by MSFT’s very confident tone about the FY19 growth outlook and continued strong corporate IT spend," they wrote. Atlantic Equities analyst James Corwell raised his price target for the end of 2019 from $125 to $130 in his note on Friday. "Q418 was a very strong quarter for Microsoft with demand for both the company's cloud offerings and its on-premises products (server products, Windows) exceeding consensus expectations," Corwell wrote. "Strength in the latter is particularly encouraging given the historical debate on the stock as to the extent to which the cloud will be additive or cannibalistic of Microsoft's legacy business. These results would appear to suggest that the transition is firmly additive, not just by expanding Microsoft's addressable market but also by increasing demand for its on-premises products." Multiple analysts acknowledged in their notes that chief financial officer Amy Hood had said on Thursday's earnings call that Microsoft more than doubled the number of Azure agreements worth more than $10 million. At the same time, some noticed that Microsoft appears to be succeeding in making Azure more profitable. "For the seventh quarter in a row, Amy Hood noted that Azure gross margins improved materially," the Piper Jaffray analysts said. "We would expect this to continue through FY19 driven by scale, premium revenue mix and internal infrastructure innovations and process improvements." But Jeffries analysts led by John DiFucci wondered about where Azure's margins will end up in the long term, especially in relation to competing cloud Amazon Web Services, in their Friday note. "We don’t believe that Azure reaching scale and profitability in the same trajectory and fashion as AWS should be a foregone conclusion," the Jeffries analysts wrote. "Given the competitive market and need to invest in both capex and operating expenses, profitability along AWS’s level may prove elusive for Azure for several years, if not forever. For example, we believe that AWS reported a similar operating margin compared to Azure’s GROSS MARGIN when AWS was the same scale as Azure is currently. We’re just saying ... there’s risk." The analysts' updates this week come more than seven months after Evercore ISI analysts made the case for how Microsoft could reach the trillion-dollar valuation by 2020 or sooner — but at that time, their price target was $106. Source
  12. An open-source collaboration for ‘the future of portability’ Today, Google, Facebook, Microsoft, and Twitter joined to announce a new standards initiative called the Data Transfer Project, designed as a new way to move data between platforms. In a blog post, Google described the project as letting users “transfer data directly from one service to another, without needing to download and re-upload it.” The current version of the system supports data transfer for photos, mail, contacts, calendars, and tasks, drawing from publicly available APIs from Google, Microsoft, Twitter, Flickr, Instagram, Remember the Milk, and SmugMug. Many of those transfers could already be accomplished through other means, but participants hope the project will grow into a more robust and flexible alternative to conventional APIs. In its own blog post, Microsoft called for more companies to sign onto the effort, adding that “portability and interoperability are central to cloud innovation and competition.” The existing code for the project is available open-source on GitHub, along with a white paper describing its scope. Much of the codebase consists of “adapters” that can translate proprietary APIs into an interoperable transfer, making Instagram data workable for Flickr and vice versa. Between those adapters, engineers have also built a system to encrypt the data in transit, issuing forward-secret keys for each transaction. Notably, that system is focused on one-time transfers rather than the continuous interoperability enabled by many APIs. “The future of portability will need to be more inclusive, flexible, and open,” reads the white paper. “Our hope for this project is that it will enable a connection between any two public-facing product interfaces for importing and exporting data directly.” The bulk of the coding so far has been done by Google and Microsoft engineers who have long been tinkering with the idea of a more robust data transfer system. According to Greg Fair, product manager for Google Takeout, the idea arose from a frustration with the available options for managing data after it’s downloaded. Without a clear way to import that same data to a different service, tools like Takeout were only solving half the problem. “When people have data, they want to be able to move it from one product to another, and they can’t,” says Fair. “It’s a problem that we can’t really solve alone.” Most platforms already offer some kind of data-download tool, but those tools rarely connect with other services. Europe’s new GDPR legislation requires tools to provide all available data on a given user, which means it’s far more comprehensive than what you’d get from an API. Along with emails or photos, you’ll find thornier data like location history and facial recognition profiles that many users don’t even realize are being collected. There are a few projects trying to make use of that data — most notably Digi.me, which is building an entire app ecosystem around it — but for the most part, it ends up sitting on users’ hard drives. Download tools are presented as proof that users really do own their data, but owning your data and using it have turned into completely different things. The project was envisioned as an open-source standard, and many of the engineers involved say a broader shift in governance will be necessary if the standard is successful. “In the long term, we want there to be a consortium of industry leaders, consumer groups, government groups,” says Fair. “But until we have a reasonable critical mass, it’s not an interesting conversation.” This is a delicate time for a data-sharing project. Facebook’s API was at the center of the Cambridge Analytica scandal, and the industry is still feeling out exactly how much users should be trusted with their own data. Google has struggled with its own API scandal, facing outcry over third-party email apps mishandling Gmail users’ data. In some ways, the proposed consortium would be a way to manage that risk, spreading the responsibility out among more groups. Still, the specter of Cambridge Analytica puts a real limit on how much data companies are willing to share. When I asked about the data privacy implications of the new project, Facebook emphasized the importance of maintaining API-level controls. “We always want to think about user data protection first,” says David Baser, who works on Facebook’s data download product. “One of the things that’s nice about an API is that, as the data provider, we have the ability to turn off the pipeline or impose conditions on how they can use it. With a data download tool, the data leaves our hands, and it’s truly out there in the wild. If someone wants to use that data for bad purposes, Facebook truly cannot do anything about it.” At the same time, tech companies are facing more aggressive antitrust concerns than ever before, many of them centering on data access. The biggest tech companies have few competitors. And as they face new questions about federal regulation and monopoly power, sharing data could be one of the least painful ways to rein themselves in. It’s an unlikely remedy for companies that are reeling from data privacy scandals, but it’s one that outsiders like Open Technology Institute director Kevin Bankston have been pushing as more important than ever, particularly for Facebook. “My primary goal has been to make sure that the value of openness doesn’t get forgotten,” Bankston says. “If you’re concerned about the power of these platforms, portability is a way to balance that out.” Update 7/20/2018 12:00PM EST: This piece was updated to include reference to Microsoft’s announcement of the Data Transfer Project. Source
  13. By Joey Sneddon Automation tool now more accessible to Linux users It’s just got easier to install Microsoft PowerShell on Linux distributions like Ubuntu and Fedora. Microsoft has brought PowerShell Core to the Snap Store as a Snap application. The move allows Linux users and admins on various distros to run the latest version of PowerShell securely and safely across desktop, laptop and IoT. “Snaps are great because they provide a single package format that works across many Linux distributions, much like how PowerShell acts as a single automation platform across operating systems,” enthuses Joey Aiello, Program Manager of PowerShell at Microsoft. What is PowerShell? Wikipedia describes PowerShell as “…a task automation and configuration management framework […] consisting of a command-line shell and associated scripting language.” Once exclusive to the Windows operating system, Microsoft chose to open-source PowerShell in 2016, bringing it to Linux and macOS in the process. The app is built using the open-source .NET Core framework and supports. For more details and thorough documentation check out the PowerShell Core support site. How to Install PowerShell on Ubuntu To install PowerShell on Ubuntu 16.04 LTS or later all you need to do is pop open a terminal and run the following command: snap install powershell --classic This will download and install PowerShell Core snap app on your system. As this is a command-line app you won’t find a fancy icon for it in your application mention. Instead, to use PowerShell just open your favourite terminal emulator and run: pwsh If you fancy toying with a more cutting-edge (and potentially more buggy) version, Microsoft also has you covered. Just run this command snap install powershell-preview --classic And, to run: pwsh-preview Don’t like Snaps? Regular Linux builds are available to Microsoft also provides “traditional” Linux packages through the packages.microsoft.com website and the PowerShell Github release page — perfect for those who want the app but on run a lean, mean and Snap-free system. And despite the appearance of the PowerShell Core Snap app Microsoft’s Joey Aiello stresses that the software giant has “no plans” to discontinue its other Linux packages. Worth installing? I’ll let you decide… Not being overly familiar with Windows system administration, management or development myself I can’t attest to the useful of the app. But it’s arrival on the Snap store is a big deal, and a continued sign of Microsoft’s support for Canonical’s Snap package format. The company released a Skype Snap app earlier this year. Source
  14. Microsoft PowerShell is a cross-platform automation and configuration tool/framework that works well with your existing tools and is optimized for dealing with structured data (e.g. JSON, CSV, XML, etc.), REST APIs, and object models. Microsoft PowerShell features 130 plus "commandlets" (cmdlets) with commands to handle numerous jobs, whether it is service or process administration, registry, object manipulation, and more. Management can be done locally or remotely. An icon will be created in your start menu. Additional documentation is available at the Author link above Whats New: Build and Packaging Improvements Remove PackageManagement installed by PowerShellGet and pin PackageManagement to 1.1.7.0 to maintain the ability to patch Pin PowerShellGet to 1.6.0 to maintain the ability to patch MSI installs Update NuGet package references to the latest and get fix for CVE-2018-8356 Enable NuGet Package Registration for compliance (#7053) Restore when building test projects Update to DotNet Runtime Framework 2.0.8 Specify the runtime when running 'dotnet restore' in 'Start-PSBuild' (#6345) Update version of fpm to resolve issues installing MSI: Update path with proper value (#6441) MSI: Remove the version from the product name (#6415) Migrate the macOS official binary build to VSTS mac hosted preview (#6363) Home: https://github.com/PowerShell/PowerShell/ Changelog: https://github.com/PowerShell/PowerShell/blob/master/CHANGELOG.md Downloads Page: https://github.com/PowerShell/PowerShell/releases/tag/v6.0.3 Downloads: 49.7 MB powershell-6.0.3-1.rhel.7.x86_64.rpm 24.8 MB powershell-6.0.3-linux-arm32.tar.gz 50.1 MB powershell-6.0.3-linux-x64.tar.gz 48.7 MB powershell-6.0.3-osx-x64.tar.gz 49 MB powershell-6.0.3-osx.10.12-x64.pkg 31.8 MB PowerShell-6.0.3-win-arm32.zip 31.8 MB PowerShell-6.0.3-win-arm64.zip 49.1 MB PowerShell-6.0.3-win-x64.msi 1.85 MB PowerShell-6.0.3-win-x64.wixpdb 50.4 MB PowerShell-6.0.3-win-x64.zip 45.4 MB PowerShell-6.0.3-win-x86.msi 1.84 MB PowerShell-6.0.3-win-x86.wixpdb 46.4 MB PowerShell-6.0.3-win-x86.zip 50.1 MB powershell_6.0.3-1.debian.8_amd64.deb 50.1 MB powershell_6.0.3-1.debian.9_amd64.deb 50.1 MB powershell_6.0.3-1.ubuntu.14.04_amd64.deb 50.1 MB powershell_6.0.3-1.ubuntu.16.04_amd64.deb Source code (zip) Source code (tar.gz)
  15. Changelog: https://docs.microsoft.com/en-us/sysinternals/ Download: https://download.sysinternals.com/files/SysinternalsSuite.zip https://live.sysinternals.com/Files/SysinternalsSuite.zip For Nano Server: https://download.sysinternals.com/files/SysinternalsSuite-Nano.zip https://live.sysinternals.com/files/SysinternalsSuite-Nano.zip
  16. Researchers will be rewarded for vulnerabilities found in identity solutions and implementations of certain OpenID standards. A new Microsoft bug bounty program asks researchers to hunt down vulnerabilities affecting its identity services in exchange for rewards ranging from $500 to $100,000. Microsoft has been building its portfolio of identity services for both consumer (Microsoft Account) and enterprise (Azure Active Directory) accounts. Researchers who participate in the Identity Bounty Program will submit flaws they discover in Microsoft's identity solutions and certified implementations of select OpenID standards, the company states. In order to be eligible for payouts, submissions must meet certain standards: Vulnerabilities must be original, previously unreported, lead to the takeover of a Microsoft account or Azure AD account, include the impact and attack vector, and detail the steps to reproduce the flaw. "A high-quality report provides the information necessary for an engineer to quickly reproduce, understand, and fix the issue," Microsoft explains. This includes a concise write-up detailing background information, bug description, and proof of concept. Payouts start at $500 for incomplete submissions related to cross-site request forgery, authorization flaws, or sensitive data exposure. High-quality submissions for multifactor authentication bypass or standards design vulnerabilities can lead to $100,000 payouts. Bugs must reproduce in Microsoft the following identity services listed within scope: Login.windows.net Login.microsoftonline.com Login.live.com Account.live.com Account.windowsazure.com Account.activedirectory.windowsazure.com Credential.activedirectory.windowsazure.com Portal.office.com Passwordreset.microsoftonline.com Microsoft Authenticator (iOS and Android apps) OpenID Connect Family OpenID certified implementations Vulnerabilities within the Authenticator app can be submitted for any version but will only result in payment if the bug can be reproduced against the latest publicly available version. There are several types of reports that don't count as part of the bounty program. Microsoft will not reward bug reports from automated tools or scans, or those related to denial-of-service problems, Web applications only affecting unsupported browsers and plugins, two-factor authentication that requires physical access to a logged-in device, or unlikely user actions. The range of ineligible reports can be found on the Microsoft Security Response Center (MSRC) site. Source
  17. By Mehedi Hassan Microsoft is bringing support for leap seconds — yes, that one extra second — to Windows, starting with Windows 10 Redstone 5 and Windows Server 2019. With the upcoming updates for Windows 10, Microsoft’s operating system now deals with leap seconds in a way that is incredibly accurate, UTC-compliant, and traceable. Leap seconds typically occur every 18 months, resulting in one extra second. The extra leap second occurs to adjust with the earth’s slowed down rotation, and an extra second is added to UTC in order to keep it in-sync with mean solar time. To deal with the extra second more appropriately, Windows 10 will now display that extra second, instead of directly jumping to the next one, making it the world’s first OS to have full support for leap seconds. It’s quite difficult to explain in words, but the following GIF will help make it less confusing: Right now, Windows 10 directly jumps from 16:59:59 to 17:00:00 without a leap second, but it will now include 16:59:60 when there is an actual leap second. That one extra second is quite important for time accuracy, especially with increased demand for higher accuracy time from government regulations, according to Microsoft. The company says it will not include an option for leap second smearing where the extra second would be split up into smaller units and added throughout the day as it will prevent the OS from meeting accuracy requirements. Microsoft is delivering a number of other improvements in Windows Server 2019 to provide better time accuracy, including a new Precision Time Control, time synchronization method, and more. Microsoft has detailed all of the new improvements in a technical blog post here, and you can read about all the improvements coming with future versions of Windows 10 if you happen to care about such improvements. Source
  18. in Cloud App Security, Microsoft 365, Cloud Security, Endpoint Security, Identity and Access Management, Information Protection, Security Management, Threat Protection, Events and Announcements Last April, we introduced the Microsoft Intelligent Security Association—a group of 19 security technology providers who have integrated their solutions with a select set of Microsoft products to provide customers better protection, detection, and response. Today, we are pleased to announce five new members have agreed to join the association—Duo Security, Fortinet, Trusona, Yubico, and Contrast Security. Microsoft is committed to growing the association with partners who can help increase the digital safety to our mutual customers. In addition to these new members, we are also announcing the addition of Microsoft Cloud App Security—expanding the products included in the program. Cloud App Security gives you visibility into your cloud apps and services, provides sophisticated analytics to identify and combat cyberthreats, and enables you to control how your data travels. We are thrilled that existing members Zscaler and Forcepoint have integrated with our Cloud App Security product to increase the capabilities in new and exciting ways. Microsoft is excited by the initial reaction to the Microsoft Intelligent Security Association, and we are committed to continuing to build on this early momentum. Source
  19. Researchers compiled a list of the most common brands to impersonate by detecting and analyzing new phishing URLs. Microsoft is cybercriminals' favorite brand to impersonate in phishing attacks, following a 57% increase in phishing URLs detected during Q2 2018, Vade Secure reports. The boost propelled Microsoft past PayPal and Facebook, which fell into second and third place, respectively, on the inaugural Phishers' Favorites list. Researchers tallied the number of new phishing URLs detected in the company's filter engine to compile their list of most commonly spoofed brands. Microsoft took the top spot because it's highly profitable to compromise an Office 365 account, researchers report. Email-based attacks are seen as an easy entry point into a treasure trove of data, files, and contacts from other Office 365 apps, such as OneDrive, SharePoint, and Skype. PayPal was a distant second due to a 16% increase in phishing URLs; however, it remains heavily targeted as the most broadly used online payment service, with 237 million users. Facebook fell two spots to No. 3 after a 54% decline in phishing URLs. The social media giant has historically been a popular target but is less common after it ramped up security efforts following the Cambridge Analytica scandal. Read more details here. Source
  20. Gamescom episode of Inside Xbox promises Xbox One news Today, Microsoft outlined its plans for next month’s Gamescom, the annual gaming expo held in Cologne, Germany, teasing that it will bring “all-new Xbox hardware and accessories” to the show. The company also promised news and unannounced features for its upcoming game slate and “perhaps even a few surprises.” Microsoft said it will reveal those details during an episode of its Inside Xbox show, which will broadcast live from its booth at Gamescom. Microsoft will air its Inside Xbox episode from Gamescom on Tuesday, Aug. 21, at 4:30 p.m. CEST (7:30 a.m. PDT/10:30 a.m. EDT) on xbox.com, Mixer, Twitch, YouTube, Facebook and Twitter. It seems unlikely that by “all-new Xbox hardware,” Microsoft is referring to the next-generation consoles the company teased at E3 2018. Instead, we expect either some special edition or variation on the existing Xbox One S and Xbox One X, or news about the next version of Microsoft’s Xbox Elite controller. Photos of a rumored successor to the Xbox Elite wireless controller leaked back in January. The new version of the high-end Xbox One controller is said to feature a USB-C port for charging, Bluetooth support for Windows 10, three-level hair-trigger locks and other refinements. The original Xbox Elite controller for Xbox One was released in 2015 for $149.99. In May, Microsoft announced a new controller for Xbox One and Windows PC, called the Xbox Adaptive Controller, aimed at players with disabilities. That device will be released in September. Source
  21. vissha

    WUMT Wrapper Script 2.4.2

    WUMT Wrapper Script is used to launch Windows Update MiniTool and disable Windows Updates until you run it again avoiding unwanted reboots. The script auto-elevates and makes sure the Windows Update service is running, then runs the correct version (x86 or x64) of Windows Update MiniTool in "auto-search for updates" mode. After you close Windows Update MiniTool, it stops and disables the Windows Update service, and it won't run again until you run WUMT Wrapper Script next time. With the Windows 10 Anniversary Edition, Microsoft has once again removed Group Policies and registry tweaks on Windows 10 Pro and Windows 10 Home to protect Windows Updates from being disabled, among other things. As you're well aware, Windows Updates are important so this script, and the Windows Update MiniTool should be used by advanced users. This is distributed as text that you place in Notepad and save as a .cmd. Then you need Windows Updates in the same folder. We have done all of this for you, so all you need to do is download WUMT Wrapper Script.zip, extract to a folder and run Windows Update MiniTool.cmd as needed. Author's Desc + Script + Install Notes v2.4.2: Changes WUMT Wrapper Script 2.3.5 portable and installer. July 8, 2018 WUMT Wrapper Script 2.4.2 Changelog from version 2.4.1 July 8, 2018 Installer code updated. Thanks @abbodi1406 Cosmetic and code improvements. Updated update hijacker list. Notes: The changes to the installer to install in x64 mode on x64 OS changes the default install location from "Program Files (x86)" to "Program Files", so it would be best to uninstall any older version before installing 2.4.2 (only if you used the installer to install). If you're using the portable version it doesn't matter. Homepage Changelogs WUMT Wrapper Script @ Majorgeeks.com Download from Majorgeeks - WUMT Wrapper Script[Only latest build] + Windows Update MiniTool MajorGeeks - Mirror 1 MajorGeeks - Mirror 2 Script - Official: Site: https://pastebin.com Sharecode[?]: /JyUF2qDx
  22. With a nudge and a wink, a spy in the mailbox will tell you stuff you probably already know Microsoft yesterday squeezed out a couple of technologies aimed at encouraging teams to adopt a healthier approach toward meetings and, you know, maybe think a bit before firing off that midnight email. Helpful hints or management monitoring? You decide The first, Workspace Analytics solution for teamwork (now in preview), slurps data from a variety of Office 365 sources, including calendars and mailboxes to gauge just how much time users are spending doing actual focussed work as opposed to trying not to be noticed in meetings. Microsoft reckons the results of the not-at-all-creepy monitoring can then "empower" teams to better innovate and collaborate. A cynic might suggest a canny Human Resources (HR) department might use that information to "innovate" underperforming employees right out of the door. To be fair, an enlightened management could also use that information, coupled with survey results, as part of a change process. Workspace Analytics can dump out action plans to help enrolled teams understand where changing habits would lead to better productivity. Stuff like bringing an agenda to meetings and sticking to it, m’kay? As ever, nothing is new under the sun, and there are plenty of HR analytics platforms out there that do similar stuff. However, those who are fully bought into the Office 365 platform and ecosystem may welcome the tech to keep an eye on empower their perhaps not so hardworking employees. Nudge, nudge, wink, wink, maybe don't send that email? The second technology aimed at nudging users toward a happy world of terrific teamwork is MyAnalytics Nudges. Geared toward fostering better habits while users do actual work (rather than the reporting-based output of Workspace Analytics), MyAnalytics Nudges will surface tips in Outlook when it spots behaviours that it considers unhealthy. Sadly, this does not include sharing thoughts on last night’s episode of whatever is the current reality show de jour. Due to hit later this summer, the functionality will make four basic types of suggestions (or "nudges" as Microsoft insists on calling them) appear discreetly in the interface as users work. To be fair to Redmond, these are probably all good ideas, if one can get over the AI monitoring going on behind the scenes to make them work. MyAnalytics itself was announced back in 2016 and was an evolution of the Delve product. It claims to help employees see how they spend their time. Nudge makes things a bit more in-your-face. Two types of nudges are calendar-related, and keep an eye on how full your calendar is getting. A day rammed full of meetings is not going to be a productive day. Sadly, the nudges simply pop up a suggestion that maybe you delegate someone else to attend, or perhaps block out time for focussed work. The Register reckons that a picture of the kids from Grange Hill saying "Just say No"* would have been more effective (and also utterly baffling for anyone not immersed in 1980s British kids TV.) The second two are email-related, with one nagging users about things they'd promised to do over email but not yet done (pointing to some interesting AI technology at work deciphering email text) before users accept new tasks. The other is aimed fairly and squarely at that one person who always insists on firing off emails at anti-social hours. Whether such a person would pay any attention to a message imploring them to not be a dick is up for question. ® < Here >
  23. Federal workers will soon be able to collaborate securely with Microsoft Teams in the company's Office 365 Government Community Cloud. The software-as-a-service solution creates a chat-based workspace where employees can share information from Office 365 apps. Through the integration of tools such SharePoint Online, OneDrive, Word, Excel, PowerPoint and OneNote, Microsoft Teams gives employees the ability to share files and conduct high-quality video meetings through the application. Microsoft Teams meets the requirements of the Federal Risk and Authorization Management Program’s Moderate level, Criminal Justice Information Services, IRS 1075 and HIPAA. The company will start rolling out the Microsoft Teams service on July 17. The company said it is also working to bring Microsoft Teams to GCC High and Defense Department Office 365 environments. Some federal agencies are already using collaboration platforms, with the General Services Administration, NASA and the Department of State all using Slack. In April, GSA released a request for information asking for vendors who could build an enterprise wide collaboration platform that extended the capabilities of Slack. Source
  24. Microsoft resolved three public disclosures and updated its Spectre and Meltdown advisory this July Patch Tuesday. In total, Microsoft addressed about 54 vulnerabilities. Microsoft announced three public disclosures from the 54 vulnerabilities released in the July Patch Tuesday. An elevation of privilege public disclosure (CVE-2018-8313) affects all OSes except Windows 7. Attackers could impersonate processes, cross-process communication or interrupt system functionality to elevate their privilege levels. The patch addresses this issue by ensuring that the Windows kernel API enforces permissions. "The fact that there is some level of detailed description of how to take advantage of this out in the open, it's a good chance an attacker will look to develop some exploit code around this," said Chris Goettl, director of product management and security at Ivanti, based in South Jordan, Utah. A similar elevation-of-privilege vulnerability (CVE-2018-8314) this July Patch Tuesday affects all OSes except Windows Server 2016. Attackers could escape a sandbox to elevate their privileges when Windows fails a check. If this vulnerability were exploited in conjunction with another vulnerability, the attacker could run arbitrary code. The update fixes how Windows' file picker handles paths. A spoofing vulnerability in the Microsoft Edge browser (CVE-2018-8278) tricks users into thinking they are on a legitimate website. The attacker could then extract additional code to remotely exploit the system. The patch fixes how Microsoft Edge handles HTML content. "That type of enticing of a user, we know works," Goettl said. "It's not a matter of will they get someone to do it or not; it's a matter of statistically you only need to entice so many people before somebody will do it." Out-of-band updates continue Before July Patch Tuesday, Microsoft announced a new side-channel attack called Lazy FP State Restore (CVE-2018-3665) -- similar to the Spectre and Meltdown vulnerabilities -- on supported versions of Windows. An attacker uses a different side-channel to pull information from other registers on Intel CPUs through speculative execution. Microsoft also updated its Spectre and Meltdown advisory (ADV180012). It does not contain any new releases on the original three variants, but the company did update the Speculative Store Bypass, Variant 4 of the Spectre and Meltdown vulnerabilities. This completed coverage for Intel processors, and Microsoft is still working with AMD to mitigate its processors. Microsoft released out-of-band patches between June and July Patch Tuesday for a third-party Oracle Outside In vulnerability (ADV180010) that affects all Exchange servers. "We don't have a lot of info on the exploitability," said Jimmy Graham, director of product management at Qualys, based in Foster City, Calif. "It should be treated as critical for Exchange servers." New Windows Server 2008 R2 servicing model on its way Alongside its June Patch Tuesday, Microsoft announced plans to switch the updating system for Windows Server 2008 SP2 to a rollup model. The new monthly model will more closely match the servicing model used for older Windows versions, enabling administrators to simplify their servicing process. This will include a security-only quality update, a security monthly quality rollup and a preview of the monthly quality rollup. "The 2008 Server users out there now need to adopt the same strategy, where they had the luxury of being able to do one or two updates if they chose to and not the rest," Goettl said. The new model will preview on Aug. 21, 2018. Administrators will still receive extended support for Windows Server 2008 SP2 until January 2020. After that, only companies that pay for Premium Assurance will have an additional six years of support. For more information about the remaining security bulletins for July Patch Tuesday, visit Microsoft's Security Update Guide. Source
  25. Microsoft OneDrive 18.111.0603.0006 Download: https://go.microsoft.com/fwlink/?linkid=860984 Changelog: https://support.office.com/en-us/article/New-OneDrive-sync-client-release-notes-845dcf18-f921-435e-bf28-4e24b95e5fc0 Changes: Bug fix to address sign-in failures for organizations serviced by 21Vianet or Microsoft Cloud Germany.
×