Podcasts about Windows Server

CISA has ordered U.S. federal civilian agencies to urgently patch an actively exploited critical Drupal SQL injection vulnerability (CVE-2026-9082) affecting PostgreSQL-backed Drupal deployments, after Imperva reported more than 15,000 attack attempts across 65 countries. Microsoft has confirmed a strange Windows Server 2016 update issue where KB5087537 can break domain controller discovery when server hostnames are exactly 15 characters long, raising more questions about patch reliability as update complexity grows. Google has joined a coalition opposing Canada's proposed lawful access legislation, Bill C-22, warning that secret ministerial orders, possible encryption risks, and mandatory metadata retention could weaken security rather than improve it. Critics point to the Salt Typhoon telecom espionage campaign as evidence that lawful intercept systems themselves can become prime targets. Also in this episode: Check Point says Iran-linked threat group Nimbus Manticore has deployed new malware tools including MiniFast and MiniJunk V2, with researchers noting signs that MiniFast may have been developed with AI-assisted coding techniques. The campaign used SEO poisoning and fake Oracle SQL Developer downloads to lure victims. Timestamps: 00:00 Top Headlines Rundown 00:27 Emergency Drupal Patch Order 02:22 Microsoft Server Update Bug 04:02 Canada Lawful Access Battle 05:18 Google's Security Concerns 06:25 Salt Typhoon Lessons 07:35 Iran-Linked AI Malware 09:26 SEO Poisoning Attack 10:09 Wrap Up and Sign Off

Managing Servers, and Kubernetes across on-prem, and multiple clouds, can quickly become complex, especially when you're juggling multiple tools. In this video, we explore how Azure Arc simplifies hybrid and multi-cloud operations by providing a single, consistent control plane for managing your entire infrastructure across Linux and Windows, on-prem, in Azure, or in any cloud. Once connected, you can patch Windows and Linux together with Azure Update Manager, enforce CIS benchmarks and Azure Security Baselines through Azure Policy, and pull consistent inventory, tags, and RBAC across your whole estate. Auto-recover unbootable Windows Server 2025 machines with Quick Machine Recovery, audit and configure WinRE using built-in Azure Policy. Run your virtual machines as Azure Virtual Desktop session hosts on Nutanix, VMware, Hyper-V, or using physical Windows hardware. Satya Vel, Azure Arc Principal Group PDM Manager (https://x.com/satya_vel) shares how to make Azure your operational standard for every workload, anywhere it runs. Learn more about Azure Arc at https://aka.ms/AzureArcServer, or join the community at https://aka.ms/ArcServerForumSignup ► QUICK LINKS: 00:00 - Azure Arc in hybrid environments 00:46 - Transitioning to Azure Arc 02:35 - Unified management 03:43 - How to bring in servers and containers 04:48 - Inventory management 05:30 - Patching 06:48 - Auto-manage future updates 08:25 - One-time update 09:32 - Configuration in a hybrid environment 11:05 - Auditing Windows machines 11:34 - Microsoft Defender for Cloud 13:06 - Desktop virtualization 13:51 - Wrap up  ► Link References For more information go to https://aka.ms/AzureArc ► Unfamiliar with Microsoft Mechanics? As Microsoft's official video series for IT, you can watch and share valuable content and demos of current and upcoming tech from the people who build it at Microsoft. • Subscribe to our YouTube: https://www.youtube.com/c/MicrosoftMechanicsSeries • Talk with other IT Pros, join us on the Microsoft Tech Community: https://techcommunity.microsoft.com/t5/microsoft-mechanics-blog/bg-p/MicrosoftMechanicsBlog • Watch or listen from anywhere, subscribe to our podcast: https://microsoftmechanics.libsyn.com/podcast ► Keep getting this insider knowledge, join us on social: • Follow us on Twitter: https://twitter.com/MSFTMechanics • Share knowledge on LinkedIn: https://www.linkedin.com/company/microsoft-mechanics/ • Enjoy us on Instagram: https://www.instagram.com/msftmechanics/ • Loosen up with us on TikTok: https://www.tiktok.com/@msftmechanics

Today’s headline news for Canadian IT solution providers: inforcer launches Copilot Manager: inforcer has released its new Copilot Manager feature, giving MSPs in-depth visibility into Microsoft 365 Copilot adoption and shadow AI usage across customer tenants. According to the company, as many as 80% of SMB employees are using unauthorized AI tools at work, and IBM research cited by inforcer suggests organizations with high shadow AI exposure average $670,000 more in breach costs. The tool builds on the company’s earlier Copilot Readiness Assessment and has already been trialed in beta by more than 200 MSPs globally. SUSE launches Sovereign Partners Specialization: SUSE has announced a new Sovereign Partners Specialization at its SUSECON 2026 conference in Prague, designed for MSPs and channel partners operating in sovereign cloud environments. The specialization is structured as an agile layer on top of SUSE’s existing partner program, targeting partners who already hold sovereign field certifications and know the SUSE technology stack. For Canadian solution providers, the timing aligns with accelerating data sovereignty requirements under OSFI E-21 and Quebec’s Law 25. Cayosoft launches Microsoft Migration Services: Cayosoft has launched a full-cycle Microsoft identity migration service delivered in partnership with XMS Solutions, covering Active Directory, Entra ID, Microsoft 365, Exchange, SharePoint, and Teams. According to the company, the offering addresses the security exposure that persists after migrations that close on schedule but leave behind broken permissions and unmanaged identity drift. The service spans pre-migration assessment through post-migration monitoring and governance. Kaseya unveils Agentic IT Management Platform: Kaseya has announced what it is calling the first Agentic IT Management Platform, powered by a proprietary dataset the company calls Kaseya Intelligence, combining real-world IT data with an execution layer designed to act autonomously on behalf of MSPs. GuidePoint Security wins CrowdStrike Americas Partner of the Year: GuidePoint Security has been named CrowdStrike’s 2026 Americas Partner of the Year after the two companies surpassed $1 billion in cumulative joint sales, a milestone the company is positioning as validation of its managed security practice. Dyna Software showcases Platform Copilot at Knowledge 2026: Dyna Software is demonstrating Platform Copilot at ServiceNow Knowledge 2026, positioning the tool as a way to generate ServiceNow environment configurations from natural language inputs and images, reducing prototyping time for implementation partners. Kyndryl pushes AI deeper into IT operations: Kyndryl has announced updates expanding autonomous AI capabilities across its global IT operations practice, extending AI-assisted resolution workflows for its managed services engagements. Upwind adds Windows Server runtime visibility: Upwind has launched runtime visibility support for Windows Server virtual machines running across AWS, Azure, and Google Cloud Platform, closing a cross-platform gap in its cloud-native security coverage. Read Full Transcript Welcome to The Buzz from ChannelBuzz.ca, I’m Robert Dutt, today is Friday, May 8, 2026, and here’s what’s happening in the channel today. Managing Microsoft 365 Copilot is becoming a genuine operational challenge for MSPs, and a company called inforcer is positioning itself as the answer with the launch of its new Copilot Manager feature. The company, which makes Microsoft 365 multi-tenant management software for managed service providers, says Copilot Manager gives partners in-depth visibility into Copilot adoption trends across all client tenants, and – critically – the ability to monitor shadow AI usage. According to inforcer, as many as eighty percent of SMB employees are bringing their own AI tools to work, using unauthorized or open-source applications that increase the risk of data leakage. The company cites IBM research suggesting one in five organizations have experienced a breach due to shadow AI, with those carrying high shadow AI exposure averaging six hundred and seventy thousand dollars more in breach costs. The business case here is straightforward for solution providers. Copilot has crossed twenty million paid seats. The licensing is in motion. What most MSPs lack is the infrastructure to make Copilot governance a repeatable, billable service rather than a one-time check-in conversation. Copilot Manager has already been trialed in beta by more than two hundred MSPs globally, and the company says it builds directly on a Copilot Readiness Assessment tool released last year, giving partners a documented progression from pre-sales evaluation through ongoing managed AI services. SUSE has launched a new Sovereign Partners Specialization as part of its channel program, a move that carries meaningful implications for the Canadian market. The announcement came at the company’s annual SUSECON conference in Prague last month, with details emerging publicly this week. SUSE is positioning the specialization as an agile layer on top of its existing partner program, designed specifically for early-mover partners who already hold sovereign field certifications and are invested in the sovereign technology market. According to Hayley Wienszczak, SUSE’s head of global partner programs and success, the initial go-to-market will focus on existing SUSE MSPs who know the technology stack, working jointly to onboard the first reference customers onto a full SUSE sovereign stack. More than ninety-eight percent of SUSE’s business runs through partners, and the company is framing the sovereign play as an opportunity to lock in that partner ecosystem around an emerging but fast-growing requirement. For Canadian MSPs, the timing aligns with accelerating regulatory pressure around data sovereignty – OSFI’s E-21 guideline on technology and third-party risk, Quebec’s Law 25, and federal Protected B requirements are all pushing enterprise buyers toward environments where data residency is a verifiable, contractual commitment rather than a vendor promise. SUSE is also opening co-sell registration to ISVs and system integrators alongside MSPs as part of the same program update. Earlier this week, Cayosoft launched a full-cycle Microsoft identity migration service that it says is designed to address the ongoing risk that sits inside most Active Directory and Entra ID environments. The offering, called Cayosoft Microsoft Migration Services, is being delivered in partnership with XMS Solutions, a long-time provider of migration and cybersecurity services. According to the company, the service covers Active Directory, Entra ID, Microsoft 365, Exchange, SharePoint, Teams, and related identity infrastructure, and spans the complete lifecycle from pre-migration assessment through phased execution, data integrity validation, and post-migration monitoring, governance, and recovery. The launch targets a specific and frequently mismanaged problem: migrations that declare success on go-live day while leaving behind broken permissions, duplicated identities, and poorly governed access that creates security exposure for months afterward. Cayosoft is specifically calling out M&A, divestitures, and consolidation scenarios as high-risk contexts. For Microsoft-focused channel partners, the model Cayosoft is describing – migration as the front door into a longer-term identity management and recovery engagement – represents a services motion that can extend well beyond the initial project. Partners who have historically treated Active Directory migrations as one-time engagements may find this a useful framework for repackaging that work as an ongoing managed practice. In Brief Kaseya has unveiled what it is calling the first Agentic IT Management Platform, powered by a proprietary dataset the company calls Kaseya Intelligence.  GuidePoint Security has been named CrowdStrike’s 2026 Americas Partner of the Year after the two companies surpassed one billion dollars in cumulative joint sales.  Dyna Software is showcasing its Platform Copilot at ServiceNow Knowledge 2026, positioning the tool as a way to generate ServiceNow configurations from natural language and images.  Kyndryl has announced updates pushing AI deeper into its IT operations practice, expanding autonomous resolution capabilities across its global managed services engagements.  Upwind has launched new runtime visibility support for Windows Server virtual machines across AWS, Azure, and Google Cloud Platform, addressing a gap in cross-platform endpoint coverage.  Full details and links in the show notes or the blog post. Later today on In The Channel, we continue our Knowledge 2026 series with Cristin Gooderham, area vice president of Canada enterprise sales at ServiceNow, on what the shift to agentic business looks like from a Canadian market perspective. And if you haven’t heard it yet, yesterday on In The Channel we published my conversation with Michael Park, ServiceNow’s global channel chief, on why the company put its AI product leader in charge of the channel – and what that means for how partners get built and compensated going forward.  That’s how we’re seeing the headlines today. I’m Robert Dutt for ChannelBuzz.ca, thanks for listening. Have a great day.

Brace for an AI-driven patch surge. Google fixes a critical Android flaw. Trellix confirms a source code breach. Apache Software Foundation ships urgent fixes. Data tied to Liberty Mutual leaks. CloudZ evolves to steal OTPs. Ouroboros persistence raises the stakes. A vishing suspect faces U.S. charges. Our guest is Markus Rauschecker, Executive Director for the University of Maryland Center for Cyber, Health and Hazard Strategies (CHHS), on the importance of the non-technical aspects of good cybersecurity preparedness and response. Our Threat Vector segment focuses on incident response. If you think UK age verification is working, I mustache you a question. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. Industry Voices Markus Rauschecker, Executive Director for the University of Maryland Center for Cyber, Health and Hazard Strategies (CHHS), discussing the importance of the non-technical aspects of good cybersecurity preparedness and response. If you enjoyed this conversation check out the full interview here. Threat Vector Segment On this segment of Threat Vector by Palo Alto Networks, host David Moulton speaks with guest Steve Elovitz. In this conversation, Steve reflects on what two decades of incident response actually teaches you about the people on the other side of a breach. You can listen to the full conversation here, and catch new episodes of Threat Vector every Thursday on your favorite podcast app. Selected Reading NCSC Warns of an AI-Fuelled “Vulnerability Patch Wave” (Infosecurity Magazine) AI Adoption Outpaces Safety Policies, Leaving Organizations Exposed (Infosecurity Magazine) Critical Remote Code Execution Vulnerability Patched in Android (SecurityWeek) Trellix Reveals Unauthorized Access to Source Code (Infosecurity Magazine) Critical, High-Severity Vulnerabilities Patched in Apache MINA, HTTP Server (SecurityWeek) Everest Group Begins Leaking Alleged Liberty Mutual Data (GovInfo Security) CloudZ malware abuses Microsoft Phone Link to steal SMS and OTPs (Bleeping Computer) dMSA Ouroboros: Self-Sustaining Credential Extraction in Windows Server 2025 (Huntress) Western District of North Carolina | Romanian National Appears in Federal Court Following Extradition from Romania on Bank Fraud Charges Stemming From “Vishing” Scheme (United States Department of Justice) Kids can bypass some age checks with a drawn-on mustache (The Register) Share your feedback. What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show. Want to hear your company in the show? N2K CyberWire helps you reach the industry's most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Curious about what really goes on inside a cloud data center?   In this episode, Lois Houston and Nikita Abraham dive into how cloud data centers are transforming the way organizations manage technology. They explore the differences between traditional and cloud data centers, the roles of CPUs, GPUs, and RAM, and why operating systems and remote access matter more than ever.   Cloud Tech Jumpstart: https://mylearn.oracle.com/ou/course/cloud-tech-jumpstart/152992 Oracle University Learning Community: https://education.oracle.com/ou-community LinkedIn: https://www.linkedin.com/showcase/oracle-university/ X: https://x.com/Oracle_Edu   Special thanks to Arijit Ghosh, Anna Hulkower, Radhika Banka, and the OU Studio Team for helping us create this episode.   --------------------------------------------------------   Episode Transcript:   00:00 Hi there! We're hitting rewind for the next few weeks and bringing back some of our most popular episodes. So, sit back and enjoy these highlights from our archive. 00:12 Welcome to the Oracle University Podcast, the first stop on your cloud journey. During this series of informative podcasts, we'll bring you foundational training on the most popular Oracle technologies. Let's get started! 00:37 Lois: Hello and welcome to the Oracle University Podcast! I'm Lois Houston, Director of Innovation Programs with Oracle University, and with me is Nikita Abraham, Team Lead: Editorial Services.   Nikita: Hi everyone! Today, we're covering the fundamentals you need to be successful in a cloud environment. If you're new to cloud, coming from a SaaS environment, or planning to move from on-premises to the cloud, you won't want to miss this. With us today is Orlando Gentil, Principal OCI Instructor at Oracle University. Hi Orlando! Thanks for joining us.   01:13 Lois: So Orlando, we know that Oracle has been a pioneer of cloud technologies and has been pivotal in shaping modern cloud data centers, which are different from traditional data centers. For our listeners who might be new to this, could you tell us what a traditional data center is?  Orlando: A traditional data center is a physical facility that houses an organization's mission critical IT infrastructure, including servers, storage systems, and networking equipment, all managed on site.   01:44 Nikita: So why would anyone want to use a cloud data center?  Orlando: The traditional model requires significant upfront investment in physical hardware, which you are then responsible for maintaining along with the underlying infrastructure like physical security, HVAC, backup power, and communication links.  In contrast, cloud data centers offer a more agile approach. You essentially rent the infrastructure you need, paying only for what you use. In the traditional data center, scaling resources up and down can be a slow and complex process.  On cloud data centers, scaling is automated and elastic, allowing resources to adjust dynamically based on demand. This shift allows business to move their focus from the constant upkeep of infrastructure to innovation and growth.  The move represents a shift from maintenance to momentum, enabling optimized costs and efficient scaling. This fundamental shift is how IT infrastructure is managed and consumed, and precisely what we mean by moving to the cloud.  02:52 Lois: So, when we talk about moving to the cloud, what does it really mean for businesses today?  Orlando: Moving to the cloud represents the strategic transition from managing your own on-premise hardware and software to leveraging internet-based computing services provided by a third-party.  This involves migrating your applications, data, and IT operations to a cloud environment. This transition typically aims to reduce operational overhead, increase flexibility, and enhance scalability, allowing organizations to focus more on their core business functions.    03:29 Nikita: Orlando, what's the "brain" behind all this technology?  Orlando: A CPU or Central Processing Unit is the primary component that performs most of the processing inside the computer or server. It performs calculations handling the complex mathematics and logic that drive all applications and software.  It processes instructions, running tasks, and operations in the background that are essential for any application. A CPU is critical for performance, as it directly impacts the overall speed and efficiency of the data center.  It also manages system activities, coordinating user input, various application tasks, and the flow of data throughout the system. Ultimately, the CPU drives data center workloads from basic server operations to powering cutting edge AI applications.  04:23 Lois: To better understand how a CPU achieves these functions and processes information so efficiently, I think it's important for us to grasp its fundamental architecture. Can you briefly explain the fundamental architecture of a CPU, Orlando?  Orlando: When discussing CPUs, you will often hear about sockets, cores, and threads. A socket refers to the physical connection on the motherboard where a CPU chip is installed.  A single server motherboard can have one or more sockets, each holding a CPU. A core is an independent processing unit within a CPU. Modern CPUs often have multiple cores, enabling them to handle several instructions simultaneously, thus increasing processing power.  Think of it as having multiple mini CPUs on a single chip. Threads are virtual components that allow a single CPU core to handle multiple sequence of instructions or threads concurrently. This technology, often called hyperthreading, makes a single core appear as two logical processors to the operating system, further enhancing efficiency.  05:39 Lois: Ok. And how do CPUs process commands?  Orlando: Beyond these internal components, CPUs are also designed based on different instruction set architectures which dictate how they process commands.   CPU architectures are primarily categorized in two designs-- Complex Instruction Set Computer or CISC and Reduced Instruction Set Computer or RISC. CISC processors are designed to execute complex instructions in a single step, which can reduce the number of instructions needed for a task, but often leads to a higher power consumption. These are commonly found in traditional Intel and AMD CPUs.  In contrast, RISC processors use a simpler, more streamlined set of instructions. While this might require more steps for a complex task, each step is faster and more energy efficient. This architecture is prevalent in ARM-based CPUs.  06:47 Are you looking to boost your expertise in enterprise AI? Check out the Oracle AI Agent Studio for Fusion Applications Developers course and professional certification, now available through Oracle University. This course helps you build, customize, and deploy AI Agents for Fusion HCM, SCM, and CX, with hands-on labs and real-world case studies. Ready to set yourself apart with in-demand skills and a professional credential? Learn more and get started today! Visit mylearn.oracle.com for more details.     07:22 Nikita: Welcome back! We were discussing CISC and RISC processors. So Orlando, where are they typically deployed? Are there any specific computing environments and use cases where they excel?  Orlando: On the CISC side, you will find them powering enterprise virtualization and server workloads, such as bare metal hypervisors in large databases where complex instructions can be efficiently processed. High performance computing that includes demanding simulations, intricate analysis, and many traditional machine learning systems.  Enterprise software suites and business applications like ERP, CRM, and other complex enterprise systems that benefit from fewer steps per instruction. Conversely, RISC architectures are often preferred for cloud-native workloads such as Kubernetes clusters, where simpler, faster instructions and energy efficiency are paramount for distributed computing.  Mobile device management and edge computing, including cell phones and IoT devices where power efficiency and compact design are critical. Cost optimized cloud hosting supporting distributed workloads where the cumulative energy savings and simpler design lead to more economical operations.  The choice between CISC and RISC depends heavily on the specific workload and performance requirements. While CPUs are versatile generalists, handling a broad range of tasks, modern data centers also heavily rely on another crucial processing unit for specialized workloads.  09:07 Lois: We've spoken a lot about CPUs, but our conversation would be incomplete without understanding what a Graphics Processing Unit is and why it's important. What can you tell us about GPUs, Orlando?  Orlando: A GPU or Graphics Processing Unit is distinct from a CPU. While the CPU is a generalist excelling at sequential processing and managing a wide variety of tasks, the GPU is a specialist.  It is designed specifically for parallel compute heavy tasks. This means it can perform many calculations simultaneously, making it incredibly efficient for workloads like rendering graphics, scientific simulations, and especially in areas like machine learning and artificial intelligence, where massive parallel computation is required.  In the modern data center, GPUs are increasingly vital for accelerating these specialized, data intensive workloads.   10:11 Nikita: Besides the CPU and GPU, there's another key component that collaborates with these processors to facilitate efficient data access. What role does Random Access Memory play in all of this?  Orlando: The core function of RAM is to provide faster access to information in use. Imagine your computer or server needing to retrieve data from a long-term storage device, like a hard drive. This process can be relatively slow.  RAM acts as a temporary high-speed buffer. When your CPU or GPU needs data, it first checks RAM. If the data is there, it can be accessed almost instantaneously, significantly speeding up operations.  This rapid access to frequently used data and programming instructions is what allows applications to run smoothly and systems to respond quickly, making RAM a critical factor in overall data center performance.  While RAM provides quick access to active data, it's volatile, meaning data is lost when power is off, or persistent data storage, the information that needs to remain available even after a system shut down.   11:26 Nikita: Let's now talk about operating systems in cloud data centers and how they help everything run smoothly. Orlando, can you give us a quick refresher on what an operating system is, and why it is important for computing devices?  Orlando: At its core, an operating system, or OS, is the fundamental software that manages all the hardware and software resources on a computer. Think of it as a central nervous system that allows everything else to function.  It performs several critical tasks, including managing memory, deciding which programs get access to memory and when, managing processes, allocating CPU time to different tasks and applications, managing files, organizing data on storage devices, handling input and output, facilitate communication between the computer and its peripherals, like keyboards, mice, and displays. And perhaps, most importantly, it provides the user interface that allows us to interact with the computer.  12:31 Lois: Can you give us a few examples of common operating systems?  Orlando: Common operating system examples you are likely familiar with include Microsoft Windows and MacOS for personal computers, iOS and Android for mobile devices, and various distributions of Linux, which are incredibly prevalent in servers and increasingly in cloud environments.  12:54 Lois: And how are these operating systems specifically utilized within the demanding environment of cloud data centers?  Orlando: The two dominant operating systems in data centers are Linux and Windows. Linux is further categorized into enterprise distributions, such as Oracle Linux or SUSE Linux Enterprise Server, which offer commercial support and stability, and community distributions, like Ubuntu and CentOS, which are developed and maintained by communities and are often free to use.  On the other side, we have Windows, primarily represented by Windows Server, which is Microsoft's server operating system known for its robust features and integration with other Microsoft products. While both Linux and Windows are powerful operating systems, their licensing modes can differ significantly, which is a crucial factor to consider when deploying them in a data center environment.  13:55 Nikita: In what way do the licensing models differ?  Orlando: When we talk about licensing, the differences between Linux and Windows become quite apparent. For Linux, Enterprise Distributions come with associated support fees, which can be bundled into the initial cost or priced separately. These fees provide access to professional support and updates. On the other hand, Community Distributions are typically free of charge, with some providers offering basic community-driven support.  Windows server, in contrast, is a commercial product. Its license cost is generally included in the instance cost when using cloud providers or purchased directly for on-premise deployments. It's also worth noting that some cloud providers offer a bring your own license, or BYOL program, allowing organizations to use their existing Windows licenses in the cloud, which can sometimes provide cost efficiencies.  14:58 Nikita: Beyond choosing an operating system, are there any other important aspects of data center management?  Orlando: Another critical aspect of data center management is how you remotely access and interact with your servers. Remote access is fundamental for managing servers in a data center, as you are rarely physically sitting in front of them. The two primary methods that we use are SSH, or secure shell, and RDP, remote desktop.  Secure shell is widely used for secure command line access for Linux servers. It provides an encrypted connection, allowing you to execute commands, transfer files, and manage your servers securely from a remote location. The remote desktop protocol is predominantly used for graphical remote access to Windows servers. RDP allows you to see and interact with the server's desktop interface, just as if you were sitting directly in front of it, making it ideal for tasks that require a graphical user interface.  16:06 Lois: Thank you so much, Orlando, for shedding light on this topic.    Nikita: Yeah, that's a wrap for today! To learn more about what we discussed, head over to mylearn.oracle.com and search for the Cloud Tech Jumpstart course. In our next episode, we'll take a close look at how data is stored and managed. Until then, this is Nikita Abraham…   Lois: And Lois Houston, signing off!   16:28 That's all for this episode of the Oracle University Podcast. If you enjoyed listening, please click Subscribe to get all the latest episodes. We'd also love it if you would take a moment to rate and review us on your podcast app. See you again on the next episode of the Oracle University Podcast.

On this episode, I cover news on the latest LLMs by DeepSeek and OpenAI, I also provide an update on the UK case against Microsoft over Windows Server licensing for cloud providers and much more! Reference Links: https://www.rorymon.com/blog/bitwarden-security-incident-new-apple-ceo-announced-employee-buyout-expected-at-microsoft/

Handling the CVE Flood With EPSS https://isc.sans.edu/diary/Handling%20the%20CVE%20Flood%20With%20EPSS/32914 Windows Server 2025 Out of Band Patch https://learn.microsoft.com/en-us/windows/release-health/windows-message-center#4835 QEMU abused to evade detection and enable ransomware delivery https://www.sophos.com/en-us/blog/qemu-abused-to-evade-detection-and-enable-ransomware-delivery

Cloud platform Vercel confirms a data breach. Microsoft releases emergency updates to fix Windows Server restart loops. Bluesky gets DDoSed. Insurers keep close watch on an AI hiring discrimination suit. Cybersecurity workforce turnover rises. Scammers abuse Apple's email notification system. A Scattered Spider member pleads guilty to SMS phishing and cryptocurrency theft. Monday business brief. Our guest is Melissa K. Smith, SVP, Global Strategic Partnerships and Initiatives at SentinelOne, discussing building a unified defense through strategic partnerships. A budget beacon briefly betrays a boat's bearing.  Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Today on our Industry Voices segment, we are joined by Melissa K. Smith, SVP, Global Strategic Partnerships and Initiatives at SentinelOne discussing building a unified defense through strategic partnerships. If you enjoyed this conversation, be sure to check out the full interview here. Selected Reading Vercel confirms breach as hackers claim to be selling stolen data (Bleeping Computer) Microsoft releases emergency updates to fix Windows Server issues (Bleeping Computer) Bluesky Disrupted by Sophisticated DDoS Attack (SecurityWeek) Who is liable when artificial intelligence makes mistakes? (Financial Times) Insurance carriers quietly back away from covering AI outputs (CSO Online) Compensation vs. Burnout: The New Retention Calculus for Cybersecurity Leaders (Security Boulevard) Watch out, hackers are abusing Apple account notifications to distribute malware, steal money and data (TechRadar) British Scattered Spider Hacker Pleads Guilty in the US (SecurityWeek) Business Briefing for 04.15.26 (CyberWire Pro) Dutch navy frigate tracked by mailing it a Bluetooth tracker (The Register) Share your feedback. What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show. Want to hear your company in the show? N2K CyberWire helps you reach the industry's most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Windows Serverに「帯域外更新」　4月更新の適用で「ドメインコントローラー」が繰り返し再起動する事象を受けて。　Microsoftは4月19日（米国太平洋夏時間、以下同）、Windows Serverの一部バージョンに対して帯域外（OOB：臨時）の更新プログラムを配信した。これは4月16日から配信している月例の更新プログラムで発生した適用すると「ドメインコントローラー」が再起動を繰り返すことがある問題を解消するための措置となる。

Big thank you to Infoblox for sponsoring this video. To learn more about Infoblox please visit: https://www.infoblox.com/ Do you know the difference between encrypted DNS and secure DNS? DNS veteran Cricket Liu, author of DNS and Bind, joins David Bombal to break down common misconceptions, explain the crucial distinction between security and privacy; and outline a massive update to the NIST Secure DNS Deployment Guide (SP 800-81). If you run a network, you cannot afford to ignore this control point. Detailed Breakdown: DNS is the Achilles' heel of internet infrastructure. While newer protocols like DNS over HTTPS (DoH) and DNS over TLS (DoT) solve the cleartext privacy problem, they do not stop malware, phishing, or data exfiltration. In fact, attackers are now using encrypted DNS against us. In this deep-dive interview, Cricket Liu explains how DNS security must evolve beyond simple encryption to include Protective DNS (PDNS) using Response Policy Zones (RPZ). Learn how to turn your existing DNS infrastructure into a low-cost, high-efficiency control point that blocks malicious C2 rendezvous, phishing links, and DNS tunneling automatically. We also tackle the DNSSEC confusion head-on. Cricket clarifies exactly why DNSSEC is about validation and integrity, not encryption, and discusses the looming threat of quantum computing on modern cryptographic standards. Finally, we discuss real-world attack vectors, including a wild story about a dangling CNAME record on CDC.gov that was hijacked to game search engine rankings, and how the updated NIST guide shifts focus from just network administrators to security practitioners. // Links to documents // NIST SP 800-81: https://nvlpubs.nist.gov/nistpubs/Spe... Inflox Q&A on NIST SP 800-81: https://www.infoblox.com/blog/securit... // Cricket Liu's SOCIAL // LinkedIn: / cricketliu // Renee Burton's SOCIAL // LinkedIn: / ren%c3%a9e-burton-b7161110b Blog Posts: https://www.infoblox.com/blog/author/... // Infoblox SOCIAL // LinkedIn: / infoblox Website: https://www.infoblox.com/ // Books by Cricket // DNS on Windows Server 2003: Mastering the Domain Name US: https://amzn.to/4byNAtQ UK: https://amzn.to/4rjqgoz DNS & BIND Cookbook: Solutions & Examples for System Administrators 1st Edition US: https://amzn.to/40iZPob UK: https://amzn.to/3Nk2MBM DNS and BIND on IPv6: DNS for the Next-Generation Internet 1st Edition US: https://amzn.to/3MXly1Y UK: https://amzn.to/4s2SFRe Learning CoreDNS: Configuring DNS for Cloud Native Environments 1st Edition US: https://amzn.to/4sC4GwS UK: https://amzn.to/4ro0T59 DNS & Bind 4th Edition: US: https://amzn.to/4s8WaWm UK: https://amzn.to/4sztLbB // Website REFERENCE // Nist: https://www.nist.gov/ Secure Domain Name System Deployment Guide: https://www.nist.gov/news-events/news... // David's SOCIAL // Discord: discord.com/invite/usKSyzb Twitter: www.twitter.com/davidbombal Instagram: www.instagram.com/davidbombal LinkedIn: www.linkedin.com/in/davidbombal Facebook: www.facebook.com/davidbombal.co TikTok: tiktok.com/@davidbombal YouTube: / @davidbombal Spotify: open.spotify.com/show/3f6k6gE... SoundCloud: / davidbombal Apple Podcast: podcasts.apple.com/us/podcast... // MY STUFF // https://www.amazon.com/shop/davidbombal // SPONSORS // Interested in sponsoring my videos? Reach out to my team here: sponsors@davidbombal.com Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel! Disclaimer: This video is for educational purposes only. #dns #dnssec #cybersecurity

News and Updates: BYD's Next-Gen Battery: BYD revealed its second-generation Blade battery, featuring 5% higher energy density and significantly improved efficiency compared to the original lithium iron phosphate packs. Windows 12 Speculation: Rumors suggest a late 2026 Windows 12 launch focused on AI and modular design, though experts remain skeptical of this aggressive release timeline. Server 2016 Sunset: Microsoft announced that extended support for Windows Server 2016 ends January 2027, urging users to migrate to Azure or upgrade to Server 2025. Deepfake Removal Tool: YouTube is piloting a likeness detection tool allowing politicians and journalists to request the removal of AI-generated deepfakes that use their faces. The Upgrade Slowdown: A 2026 study reveals 73% of consumers now prioritize "tech that works" and longevity over flashy new features or annual status-symbol upgrades.

Welcome to Episode 421 of the Microsoft Cloud IT Pro Podcast. In this episode Ben sits down for a conversation with Frank Lesniak, the lead of the Microsoft 365 team at West Monroe. In this episode, they dive into the intricacies of mergers and divestitures within Microsoft 365 environments. They discuss the initial due diligence phase, planning and approach, building and configuring new environments, and the final migration and cutover phase. Frank shares insights on common challenges such as integration of different licensing models, the handling of workstations and applications, and the importance of security assessments. The episode provides a detailed look at the methodology and tools used by Frank’s team to streamline these complex processes. Your support makes this show possible! Please consider becoming a premium member for access to live shows and more. Check out our membership options. Show Notes Frank Lesniak on LinkedIn West Monroe Frank Lesniak Github Microsoft 365 tenant-to-tenant migrations Microsoft 365 inter-tenant collaboration Tenant life cycle considerations in multitenant solutions Frank Lesniak Frank Lesniak is a Sr. Cybersecurity & Enterprise Technology Architect at West Monroe with nearly 20 years of experience leading consulting engagements involving Microsoft infrastructure technology. His expertise spans modern cloud systems like Azure, Microsoft 365, and Entra ID to classic platforms like Windows Server, Active Directory, and SQL Server. His recent focus has been on Microsoft platform cybersecurity and automating technical processes using PowerShell. In his role, Frank establishes technical project methodologies, leads teams, automates associated processes, and creates internal software products at West Monroe and in the open-source community. About the sponsors Would you like to become the irreplaceable Microsoft 365 resource for your organization? Let us know!

Microsoft released a security update to address a zero-day vulnerability in Desktop Window Manager, tracked as CVE-2026-20805, after detecting active exploitation. The flaw allows local attackers to expose sensitive user-mode memory and potentially escalate privileges. Affected platforms include Windows 10 version 1809, Windows Server 2012, 2012 R2, and 2016. Microsoft urges immediate patch deployment, restriction of low-privilege accounts, and monitoring of DWM processes to mitigate risk. No public proof-of-concept code exists, but organizations running unsupported systems face increased exposure.Learn more on this news by visiting us at: https://greyjournal.net/news/ Hosted on Acast. See acast.com/privacy for more information.

0:00: ☀️ Bom dia Tech!0:24:

The Monday Microsegment for the week of January 5th. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast.New year, new zero-day vulnerability in Windows Server.Ransomware rings in 2026 by hitting healthcare in Europe.And attackers cash in on holiday passwords.And Ashwarya Ramani joins us for a special Book Club segment! Head to The Zero Trust Hub: hub.illumio.comDownload The 2025 Global Cloud Detection and Response Report: https://www.illumio.com/resource-center/global-cloud-detection-and-response-report-2025 

A new year - and so much to do! To start 2026, Richard flies solo again to discuss the issues he's seen on sysadmins' minds as we head into the new year. Obviously, AI is eating up a lot of the conversation from many different angles: tools that can help us be more productive, security issues in our organizations due to misuse, and now, AI-driven hacking. Security still looms large, and not just from an AI perspective - the latest round of supply chain attacks has led to litigation, putting new emphasis on making sure you're secure. Windows has a new leader, things are changing there, and there's the ongoing migration to the cloud. Does it still make sense? There seems to be more concern about data sovereignty than ever, and some meaningful conversations to have. Happy New Year!LinksAzure SRE Agents with Deepthi ChelupatiMicrosoft PurviewThe M365 Copilot Data Readiness Checklist with Nikki ChappleQuering for Breaches with Mark MorowcyznskiManaging Vendor Incidents with Mandi WallsIncident Management and the Crowdstrike event with Lieam WestleyMicrosoft IntuneMicrosoft Entra IDMicrosoft Defender for EndpointMicrosoft Entra ID Protection with Corissa KoopmansWindows Server 2025Upgrading to Windows Server 2025 with Robert SmitRecorded December 20, 2025

Es näselt leicht im Podcast - die herbstliche Erkältungswelle macht auch vor "Passwort" nicht halt. Trotzdem haben sich Sylvester und Christopher einiges vorgenommen. Sie sprechen über den AWS- und Azure-Ausfall der letzten Wochen, denn auch Verfügbarkeit ist Teil der IT-Sicherheit. Die kritische Sicherheitslücke im Windows-Updateserver WSUS kommt ebenso zur Sprache wie eine trickreiche Malware, die eine wenig bekannte UTF8-Funktion zu ihrem Vorteil nutzt. Und endlich gibt es wieder ein PKI-Thema: Wie eine kroatische CA widerrechtlich Zertifikate für Cloudflare ausstellte, erzählt Christopher dem Publikum und seinem Co-Host. - Online Themenabend: https://aktionen.heise.de/heise-themenabend - AWS' Ausfallanalyse: https://aws.amazon.com/de/message/101925/ - Meredith Whittaker von Signal zur Notwendigkeit der Hyperscaler: https://mastodon.world/@Mer__edith/115445701583902092 - SAP spielt CVSS-Würfeln: https://services.nvd.nist.gov/rest/json/cvehistory/2.0?cveId=CVE-2025-30012 - Microsoft warnt Entwickler vor SoapFormatter: https://learn.microsoft.com/en-us/dotnet/standard/serialization/binaryformatter-security-guide - Koi über GlassWorm: https://www.koi.ai/blog/glassworm-first-self-propagating-worm-using-invisible-code-hits-openvsx-marketplace - QWAC mit Soße (+): https://www.heise.de/select/ct/2023/29/2332409110101310744 - Diskussion um FINA im Bugzilla: https://bugzilla.mozilla.org/show_bug.cgi?id=1986968 - Folgt uns im Fediverse: * @christopherkunz@chaos.social * @syt@social.heise.de

In this week's show Patrick Gray and Adam Boileau discuss the week's cybersecurity news, including: L3Harris Trenchant boss accused of selling exploits to Russia once worked at the Australian Signals Directorate Microsoft WSUS bug being exploited in the wild Dan Kaminsky DNS cache poisoning comes back because of a bad PRNG SpaceX finally starts disabling Starlink terminals used by scammers Garbage HP update deletes certificates that authed Windows systems to Entra This week's episode is sponsored by automation company Tines. Field CISO Matt Muller joins to discuss how Tines has embraced LLMs and the agentic-AI future into their workflow automation. This episode is also available on Youtube. Show notes US accuses former L3Harris cyber boss of stealing and selling secrets to Russian buyer | TechCrunch Attackers bypass patch in deprecated Windows Server update tool | CyberScoop CVE-2025-59287 WSUS Unauthenticated RCE | HawkTrace CVE-2025-59287 WSUS Remote Code Execution | HawkTrace Catching Credential Guard Off Guard - SpecterOps Cache poisoning vulnerabilities found in 2 DNS resolving apps - Ars Technica Uncovering Qilin attack methods exposed through multiple cases Safety on X: "By November 10, we're asking all accounts that use a security key as their two factor authentication (2FA) method to re-enroll their key to continue accessing X. You can re-enroll your existing security key, or enroll a new one. A reminder: if you enroll a new security key, any" / X SpaceX disables more than 2,000 Starlink devices used in Myanmar scam compounds | The Record from Recorded Future News SpaceX: Update Your Inactive Starlink Dishes Now or They'll Be Bricked How we linked ForumTroll APT to Dante spyware by Memento Labs | Securelist Former Polish official indicted over spyware purchase | The Record from Recorded Future News HP OneAgent Update Broke Entra Trust on HP AI Devices Windows' Built-in OpenSSH for Offensive Security How Hacked Card Shufflers Allegedly Enabled a Mob-Fueled Poker Scam That Rocked the NBA | WIRED

Curious about what really goes on inside a cloud data center?   In this episode, Lois Houston and Nikita Abraham chat with Principal OCI Instructor Orlando Gentil about how cloud data centers are transforming the way organizations manage technology.   They explore the differences between traditional and cloud data centers, the roles of CPUs, GPUs, and RAM, and why operating systems and remote access matter more than ever.   Cloud Tech Jumpstart: https://mylearn.oracle.com/ou/course/cloud-tech-jumpstart/152992   Oracle University Learning Community: https://education.oracle.com/ou-community   LinkedIn: https://www.linkedin.com/showcase/oracle-university/   X: https://x.com/Oracle_Edu   Special thanks to Arijit Ghosh, David Wright, Kris-Ann Nansen, Radhika Banka, and the OU Studio Team for helping us create this episode. ------------------------------------- Episode Transcript: 00:00 Welcome to the Oracle University Podcast, the first stop on your cloud journey. During this series of informative podcasts, we'll bring you foundational training on the most popular Oracle technologies. Let's get started! 00:25 Lois: Hello and welcome to the Oracle University Podcast! I'm Lois Houston, Director of Innovation Programs with Oracle University, and with me is Nikita Abraham, Team Lead: Editorial Services.   Nikita: Hi everyone! Today, we're covering the fundamentals you need to be successful in a cloud environment. If you're new to cloud, coming from a SaaS environment, or planning to move from on-premises to the cloud, you won't want to miss this. With us today is Orlando Gentil, Principal OCI Instructor at Oracle University. Hi Orlando! Thanks for joining us.   01:01 Lois: So Orlando, we know that Oracle has been a pioneer of cloud technologies and has been pivotal in shaping modern cloud data centers, which are different from traditional data centers. For our listeners who might be new to this, could you tell us what a traditional data center is?  Orlando: A traditional data center is a physical facility that houses an organization's mission critical IT infrastructure, including servers, storage systems, and networking equipment, all managed on site.   01:32 Nikita: So why would anyone want to use a cloud data center?  Orlando: The traditional model requires significant upfront investment in physical hardware, which you are then responsible for maintaining along with the underlying infrastructure like physical security, HVAC, backup power, and communication links.  In contrast, cloud data centers offer a more agile approach. You essentially rent the infrastructure you need, paying only for what you use. In the traditional data center, scaling resources up and down can be a slow and complex process.  On cloud data centers, scaling is automated and elastic, allowing resources to adjust dynamically based on demand. This shift allows business to move their focus from the constant upkeep of infrastructure to innovation and growth.  The move represents a shift from maintenance to momentum, enabling optimized costs and efficient scaling. This fundamental shift is how IT infrastructure is managed and consumed, and precisely what we mean by moving to the cloud.  02:39 Lois: So, when we talk about moving to the cloud, what does it really mean for businesses today?  Orlando: Moving to the cloud represents the strategic transition from managing your own on-premise hardware and software to leveraging internet-based computing services provided by a third-party.  This involves migrating your applications, data, and IT operations to a cloud environment. This transition typically aims to reduce operational overhead, increase flexibility, and enhance scalability, allowing organizations to focus more on their core business functions.    03:17 Nikita: Orlando, what's the “brain” behind all this technology?  Orlando: A CPU or Central Processing Unit is the primary component that performs most of the processing inside the computer or server. It performs calculations handling the complex mathematics and logic that drive all applications and software.  It processes instructions, running tasks, and operations in the background that are essential for any application. A CPU is critical for performance, as it directly impacts the overall speed and efficiency of the data center.  It also manages system activities, coordinating user input, various application tasks, and the flow of data throughout the system. Ultimately, the CPU drives data center workloads from basic server operations to powering cutting edge AI applications.  04:10 Lois: To better understand how a CPU achieves these functions and processes information so efficiently, I think it's important for us to grasp its fundamental architecture. Can you briefly explain the fundamental architecture of a CPU, Orlando?  Orlando: When discussing CPUs, you will often hear about sockets, cores, and threads. A socket refers to the physical connection on the motherboard where a CPU chip is installed.  A single server motherboard can have one or more sockets, each holding a CPU. A core is an independent processing unit within a CPU. Modern CPUs often have multiple cores, enabling them to handle several instructions simultaneously, thus increasing processing power.  Think of it as having multiple mini CPUs on a single chip. Threads are virtual components that allow a single CPU core to handle multiple sequence of instructions or threads concurrently. This technology, often called hyperthreading, makes a single core appear as two logical processors to the operating system, further enhancing efficiency.  05:27 Lois: Ok. And how do CPUs process commands?  Orlando: Beyond these internal components, CPUs are also designed based on different instruction set architectures which dictate how they process commands.   CPU architectures are primarily categorized in two designs-- Complex Instruction Set Computer or CISC and Reduced Instruction Set Computer or RISC. CISC processors are designed to execute complex instructions in a single step, which can reduce the number of instructions needed for a task, but often leads to a higher power consumption.  These are commonly found in traditional Intel and AMD CPUs. In contrast, RISC processors use a simpler, more streamlined set of instructions. While this might require more steps for a complex task, each step is faster and more energy efficient. This architecture is prevalent in ARM-based CPUs.  06:34 Are you looking to boost your expertise in enterprise AI? Check out the Oracle AI Agent Studio for Fusion Applications Developers course and professional certification—now available through Oracle University. This course helps you build, customize, and deploy AI Agents for Fusion HCM, SCM, and CX, with hands-on labs and real-world case studies. Ready to set yourself apart with in-demand skills and a professional credential? Learn more and get started today! Visit mylearn.oracle.com for more details.     07:09 Nikita: Welcome back! We were discussing CISC and RISC processors. So Orlando, where are they typically deployed? Are there any specific computing environments and use cases where they excel?  Orlando: On the CISC side, you will find them powering enterprise virtualization and server workloads, such as bare metal hypervisors in large databases where complex instructions can be efficiently processed. High performance computing that includes demanding simulations, intricate analysis, and many traditional machine learning systems.  Enterprise software suites and business applications like ERP, CRM, and other complex enterprise systems that benefit from fewer steps per instruction. Conversely, RISC architectures are often preferred for cloud-native workloads such as Kubernetes clusters, where simpler, faster instructions and energy efficiency are paramount for distributed computing.  Mobile device management and edge computing, including cell phones and IoT devices where power efficiency and compact design are critical. Cost optimized cloud hosting supporting distributed workloads where the cumulative energy savings and simpler design lead to more economical operations.  The choice between CISC and RISC depends heavily on the specific workload and performance requirements. While CPUs are versatile generalists, handling a broad range of tasks, modern data centers also heavily rely on another crucial processing unit for specialized workloads.  08:54 Lois: We've spoken a lot about CPUs, but our conversation would be incomplete without understanding what a Graphics Processing Unit is and why it's important. What can you tell us about GPUs, Orlando?  Orlando: A GPU or Graphics Processing Unit is distinct from a CPU. While the CPU is a generalist excelling at sequential processing and managing a wide variety of tasks, the GPU is a specialist.  It is designed specifically for parallel compute heavy tasks. This means it can perform many calculations simultaneously, making it incredibly efficient for workloads like rendering graphics, scientific simulations, and especially in areas like machine learning and artificial intelligence, where massive parallel computation is required.  In the modern data center, GPUs are increasingly vital for accelerating these specialized, data intensive workloads.   09:58 Nikita: Besides the CPU and GPU, there's another key component that collaborates with these processors to facilitate efficient data access. What role does Random Access Memory play in all of this?  Orlando: The core function of RAM is to provide faster access to information in use. Imagine your computer or server needing to retrieve data from a long-term storage device, like a hard drive. This process can be relatively slow.  RAM acts as a temporary high-speed buffer. When your CPU or GPU needs data, it first checks RAM. If the data is there, it can be accessed almost instantaneously, significantly speeding up operations.  This rapid access to frequently used data and programming instructions is what allows applications to run smoothly and systems to respond quickly, making RAM a critical factor in overall data center performance.  While RAM provides quick access to active data, it's volatile, meaning data is lost when power is off, or persistent data storage, the information that needs to remain available even after a system shut down.   11:14 Nikita: Let's now talk about operating systems in cloud data centers and how they help everything run smoothly. Orlando, can you give us a quick refresher on what an operating system is, and why it is important for computing devices?  Orlando: At its core, an operating system, or OS, is the fundamental software that manages all the hardware and software resources on a computer. Think of it as a central nervous system that allows everything else to function.  It performs several critical tasks, including managing memory, deciding which programs get access to memory and when, managing processes, allocating CPU time to different tasks and applications, managing files, organizing data on storage devices, handling input and output, facilitate communication between the computer and its peripherals, like keyboards, mice, and displays. And perhaps, most importantly, it provides the user interface that allows us to interact with the computer.  12:19 Lois: Can you give us a few examples of common operating systems?  Orlando: Common operating system examples you are likely familiar with include Microsoft Windows and MacOS for personal computers, iOS and Android for mobile devices, and various distributions of Linux, which are incredibly prevalent in servers and increasingly in cloud environments.  12:41 Lois: And how are these operating systems specifically utilized within the demanding environment of cloud data centers?  Orlando: The two dominant operating systems in data centers are Linux and Windows. Linux is further categorized into enterprise distributions, such as Oracle Linux or SUSE Linux Enterprise Server, which offer commercial support and stability, and community distributions, like Ubuntu and CentOS, which are developed and maintained by communities and are often free to use.  On the other side, we have Windows, primarily represented by Windows Server, which is Microsoft's server operating system known for its robust features and integration with other Microsoft products. While both Linux and Windows are powerful operating systems, their licensing modes can differ significantly, which is a crucial factor to consider when deploying them in a data center environment.  13:43 Nikita: In what way do the licensing models differ?  Orlando: When we talk about licensing, the differences between Linux and Windows become quite apparent. For Linux, Enterprise Distributions come with associated support fees, which can be bundled into the initial cost or priced separately. These fees provide access to professional support and updates. On the other hand, Community Distributions are typically free of charge, with some providers offering basic community-driven support.  Windows server, in contrast, is a commercial product. Its license cost is generally included in the instance cost when using cloud providers or purchased directly for on-premise deployments. It's also worth noting that some cloud providers offer a bring your own license, or BYOL program, allowing organizations to use their existing Windows licenses in the cloud, which can sometimes provide cost efficiencies.  14:46 Nikita: Beyond choosing an operating system, are there any other important aspects of data center management?  Orlando: Another critical aspect of data center management is how you remotely access and interact with your servers. Remote access is fundamental for managing servers in a data center, as you are rarely physically sitting in front of them. The two primary methods that we use are SSH, or secure shell, and RDP, remote desktop.  Secure shell is widely used for secure command line access for Linux servers. It provides an encrypted connection, allowing you to execute commands, transfer files, and manage your servers securely from a remote location. The remote desktop protocol is predominantly used for graphical remote access to Windows servers. RDP allows you to see and interact with the server's desktop interface, just as if you were sitting directly in front of it, making it ideal for tasks that require a graphical user interface.  15:54 Lois: Thank you so much, Orlando, for shedding light on this topic.    Nikita: Yeah, that's a wrap for today! To learn more about what we discussed, head over to mylearn.oracle.com and search for the Cloud Tech Jumpstart course. In our next episode, we'll take a close look at how data is stored and managed. Until then, this is Nikita Abraham…   Lois: And Lois Houston, signing off!   16:16 That's all for this episode of the Oracle University Podcast. If you enjoyed listening, please click Subscribe to get all the latest episodes. We'd also love it if you would take a moment to rate and review us on your podcast app. See you again on the next episode of the Oracle University Podcast.

Welcome to episode 324 of The Cloud Pod, where the forecast is always cloudy! Justin, Ryan, and Jonathan are your hosts, bringing you all the latest news and announcements in Cloud and AI. This week we have some exec changes over at Oracle, a LOT of announcements about Sonnet 4.5, and even some marketplace updates over at Azure! Let's get started.  Titles we almost went with this week Oracle’s Executive Shuffle: Promoting from Within While Chasing from Behind Copilot Takes the Wheel on Your Legacy Code Highway Queue Up for GPUs: Google’s Take-a-Number Approach to AI Computing License to Bill: Google’s 400% Markup Grievance Autopilot Engages: GKE Goes Full Self-Driving Mode SQL Server Finally Gets a Lake House Instead of a Server Room Microsoft Gives Office Apps Their Own AI Interns Claude and Present Danger: The AI That Codes for 30 Hours Straight The Claude Father Part 4.5: An Offer Your Code Can’t Refuse CUD You Believe It? Google Makes Discounts Actually Flexible ECS Goes Full IPv6: No IPv4s Given Breaking News: AWS Finally Lets You Hit the Emergency Stop Button One Marketplace to Rule Them All BigQuery Gets a Crystal Ball and a Chatty Friend Azure’s September to Remember: When Certificates and Allocators Attack Shall I Compare Thee to a Sonnet? 4.5 Ways Anthropic Just Leveled Up AWS provides a big red button Follow Up  01:26 The global harms of restrictive cloud licensing, one year later | Google Cloud Blog Google Cloud filed a formal complaint with the European Commission one year ago about Microsoft’s anti-competitive cloud licensing practices, specifically the 400% price markup Microsoft imposes on customers who move Windows Server workloads to non-Azure clouds. The UK Competition and Markets Authority found that restrictive licensing costs UK cloud customers £500 million annually due to lack of competition, while US government agencies overspend by $750 million yearly because of Microsoft’s licensing tactics. Microsoft recently disclosed that forcing software customers to use Azure is one of three pillars driving its growth and is implementing new licensing changes preventing managed service providers from hosting certain workloads on Azure competitors. Multiple regulators globally including South Africa and the US FTC are now investigating Microsoft’s cloud licensing practices, with the CMA finding that Azure has gained customers at 2-3x the rate of competitors since implementing restrictive terms. A European Centre for Inter

Episode 1000! Richard Campbell invites Paul Thurrott to join him to celebrate the milestone episode and answer questions from listeners. From the creation of the podcast to the role of Windows in the modern world, the impact of ARM, Cloud, and many other technologies - all addressed in this super-sized episode. And yes, artificial intelligence is part of the conversation—and will be part of the workflows that sysadmins utilize on a day-to-day basis. Thanks to all the folks who sent in questions for this special show - and thanks for listening!LinksDoes Windows Still MatterWindows Server 2025ARM in AzureAzure FastTrackCloud Adoption Framework for AzureMicrosoft VivaRecorded August 31, 2025

On this episode, I cover the active exploitation of a critical SharePoint vulnerability, a Windows Server update causing cluster issues, the Citrix Bleed 2 exploit, and Google's discovery of a SonicWall backdoor and more. Reference Links: https://www.rorymon.com/blog/major-sharepoint-attack-underway-connect-cache-goes-ga-new-ai-feature-in-win11/

Sean is joined by identity expert Sander Berkouwer to explore the evolving landscape of enterprise authentication. Active Directory Federation Services (AD FS), first introduced with Windows Server 2003, continues to support many organizations with single sign-on. However, its usage is steadily declining as cloud-native solutions take center stage. Sean and Sander unpack the reasons behind this shift, the challenges of legacy infrastructure, and the practical steps organizations can take to migrate from AD FS to Microsoft Entra ID. Whether you're planning a transition or just curious about the future of identity management, this conversation offers valuable insights and actionable guidance.

In this episode, recorded live at PSConfEU, Andrew catches up with some of the PowerShell team from Microsoft to talk all things PowerShell—from AIShell to PSResourceGet to the future of DSC and OpenSSH.   First up is Steven Bucher, Product Manager on the PowerShell team, who discusses the massive scale of PowerShell usage, the state of PowerShell 7, and the team's focus on security and reliability. He also gives an exciting walkthrough of AIShell and how it's helping users stay in the terminal while getting AI-driven help, error resolution, and integration with providers like Azure OpenAI and AI Foundry.   Then we hear from Anam, a software engineer working on PSResourceGet, PowerShell Gallery, and security. She shares details on the rewrite of PowerShellGet, performance improvements, and new features like container registry support. She also dives into Microsoft's Artifact Registry (MAR) and offers her take on coding as a creative, artistic endeavor.   Lastly, Tess joins the conversation to talk about OpenSSH and Desired State Configuration (DSC). She highlights the native cross-platform capabilities of DSC v3, its decoupling from PowerShell, and the move toward supporting resource development in languages like Python. Tess also shares the significance of SSH server availability in Windows Server 2025 and reflects on her open-source journey and love of outdoor sports.   Whether you're managing packages, remoting with SSH, exploring AI integrations, or just want to know more about some of the people behind PowerShell, this episode delivers valuable insights from the team building the tools you use.    Links and Mentions: https://www.linkedin.com/in/anamnavied/ https://www.linkedin.com/in/tess-gauthier-a43a368a/ https://www.linkedin.com/in/stevenabucher/ https://andrewpla.tech/links https://github.com/PowerShell/PowerShell https://github.com/PowerShell/AIShell https://github.com/PowerShell/PSResourceGet https://github.com/PowerShell/Win32-OpenSSH https://github.com/microsoft/DSC The PowerShell Podcast on YouTube: https://youtu.be/F4mVUHinjf4 The PowerShell Podcast: https://pdq.com/the-powershell-podcast Guests: Stephen Bucher – Product Manager II on the PowerShell Team Anam Navied – Software Engineer 2 @ Microsoft Tess Gauthier – Software Engineer @ Microsoft | OpenSSH

In this episode of The Cybersecurity Defenders Podcast, we discuss some intel being shared in the LimaCharlie community.Two significant crypto security breaches occurred in close succession this month, affecting both decentralized and centralized platforms. On May 22, Cetus—a decentralized exchange built on the Sui Network—was exploited via a vulnerability in its automated market maker (AMM). Meanwhile, Coinbase confirmed what it called a “targeted insider threat operation” that compromised data from less than 1% of its active monthly users.A threat group identified as “Hazy Hawk” has been systematically hijacking cloud-based DNS resources tied to well-known organizations, including the US Centers for Disease Control and Prevention (CDC), since December 2023. A newly disclosed vulnerability in Windows Server 2025, dubbed BadSuccessor, has raised major concerns among enterprise administrators managing Active Directory environments.Federal and international law enforcement, alongside a significant number of private-sector partners, have successfully dismantled the Danabot botnet in a multiyear operation aimed at neutralizing one of the more advanced malware-as-a-service (MaaS) platforms tied to Russian cybercriminal activity.

  In this episode of Cybersecurity today, host Jim Love reports on various critical cyber threats and data breaches. A newly discovered flaw in Windows Server 2025 allows attackers to seize full domain control, referred to by researchers as the 'bad successor' exploit. Government messaging app Telem Message, a customized version of Signal, was hacked, exposing sensitive communications of over 60 officials, leading to its shutdown. Microsoft disrupted the global Luma Stealer malware operation, which had infected nearly 400,000 computers. Coinbase suffered a major data breach affecting over 69,000 customers due to an insider compromise. Additionally, hackers distributed a malicious version of the KeyPass password manager, embedding it with malware to steal data and deploy ransomware. Jim Love encourages listeners to stay vigilant and download software only from official sources. He teases an upcoming interview with a knowledgeable guest working on open-source solutions to cybersecurity issues. 00:00 Introduction to Cybersecurity News 00:36 Windows Server 2025 Vulnerability 03:09 Telem Messages Hack Scandal 05:37 Microsoft Disrupts Luma Malware 07:29 Coinbase Breach Details 08:54 Malicious Password Manager Alert 10:55 Conclusion and Upcoming Interview

Signal adds Recall blocker Critical Windows Server 2025 dMSA vulnerability warning Pathology lab suffers data breach Huge thanks to our sponsor, Conveyor Still spending hours maintaining a massive spreadsheet of Q&A pairs or using RFP tools to answer security questionnaires? Conveyor's AI doesn't need hand-holding and gets you accurate answers every time with limited knowledge base maintenance. It reads directly from your connected sources—documents, wikis, websites, Confluence, Google drive, and even your Conveyor trust center. You don't maintain a knowledge base. You connect to one. And our AI does the rest for you. See what real auto-fill magic looks like at www.conveyor.com Find the stories behind the headlines at CISOseries.com.

Old passwords work for Windows RDP, Broadcom shows why perpetual software licenses aren't really forever, Windows Server is getting hotpatching, and preventing changes to archived files.   Plugs Support us on patreon and get an ad-free RSS feed with some early episodes Owning the Stack: Infrastructure Independence with FreeBSD and ZFS   News/discussion Windows RDP […]

Old passwords work for Windows RDP, Broadcom shows why perpetual software licenses aren't really forever, Windows Server is getting hotpatching, and preventing changes to archived files.   Plugs Support us on patreon and get an ad-free RSS feed with some early episodes Owning the Stack: Infrastructure Independence with FreeBSD and ZFS   News/discussion Windows RDP... Read More

Microsoft announces big changes to Windows 11: New Start menu, Phone Companion on Start, AI actions in File Explorer, Notepad and other updates. Plus, new Copilot+ PC features: Click to Do actions, AI agent in Search for some reason, new Photos, Paint, and Snipping Tool features, and more. Windows 11 Microsoft announces new Surface Pro and Surface Laptop models after teasing the announcement last week Recall improvements, Taskbar improvements, HDR improvements, more come to Beta and Dev Windows 11 Enterprise 24H2 to start on hotpatching, same schedule as Windows Server 2025 A moment of silence for Skype, we didn't know what we had until you ensh*ttified and then killed it Google is secretly working on two major changes for Android 16+ - We need something like this for 25H2 Antitrust Apple is slapped down hard by Judge in Epic v. Apple Spotify, Amazon, Proton and many other change apps to avoid Apple Tax The walls are finally tumbling down for Big Tech US v. Google (ads) has a remedy hearing set for September, that should go well AI Open AI: just kidding about that for-profit thing. Did Microsoft squelch this plan? Google's Little Language Lessons looks like a neat use of AI GitHub Copilot now has over 15 million users Xbox & gaming FTC may have suffered its final defeat in trying to end Microsoft acquisition of Activision Blizzard Xbox/ASUS portable gaming device leaks Good news! Xbox consoles are more expensive now! Wait. New DOOM game and more are coming to Game Pass this month Gears of War Remastered coming to Xbox, PS5, PC, Game Pass in August Minecraft drops VR/MR support GTA VI delayed until 2026 Backbone Pro works with phones directly but also tablets, PCs, and more wirelessly Tips and Picks Tip of the week: Go passwordless App pick of the week: Microsoft Authenticator RunAs Radio this week: Building a Career in Cybersecurity with Yuri Diogenes Brown liquor pick of the week: Jura 10 Hosts: Leo Laporte, Paul Thurrott, and Richard Campbell Download or subscribe to Windows Weekly at https://twit.tv/shows/windows-weekly Check out Paul's blog at thurrott.com The Windows Weekly theme music is courtesy of Carl Franklin. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsor: uscloud.com

Microsoft announces big changes to Windows 11: New Start menu, Phone Companion on Start, AI actions in File Explorer, Notepad and other updates. Plus, new Copilot+ PC features: Click to Do actions, AI agent in Search for some reason, new Photos, Paint, and Snipping Tool features, and more. Windows 11 Microsoft announces new Surface Pro and Surface Laptop models after teasing the announcement last week Recall improvements, Taskbar improvements, HDR improvements, more come to Beta and Dev Windows 11 Enterprise 24H2 to start on hotpatching, same schedule as Windows Server 2025 A moment of silence for Skype, we didn't know what we had until you ensh*ttified and then killed it Google is secretly working on two major changes for Android 16+ - We need something like this for 25H2 Antitrust Apple is slapped down hard by Judge in Epic v. Apple Spotify, Amazon, Proton and many other change apps to avoid Apple Tax The walls are finally tumbling down for Big Tech US v. Google (ads) has a remedy hearing set for September, that should go well AI Open AI: just kidding about that for-profit thing. Did Microsoft squelch this plan? Google's Little Language Lessons looks like a neat use of AI GitHub Copilot now has over 15 million users Xbox & gaming FTC may have suffered its final defeat in trying to end Microsoft acquisition of Activision Blizzard Xbox/ASUS portable gaming device leaks Good news! Xbox consoles are more expensive now! Wait. New DOOM game and more are coming to Game Pass this month Gears of War Remastered coming to Xbox, PS5, PC, Game Pass in August Minecraft drops VR/MR support GTA VI delayed until 2026 Backbone Pro works with phones directly but also tablets, PCs, and more wirelessly Tips and Picks Tip of the week: Go passwordless App pick of the week: Microsoft Authenticator RunAs Radio this week: Building a Career in Cybersecurity with Yuri Diogenes Brown liquor pick of the week: Jura 10 Hosts: Leo Laporte, Paul Thurrott, and Richard Campbell Download or subscribe to Windows Weekly at https://twit.tv/shows/windows-weekly Check out Paul's blog at thurrott.com The Windows Weekly theme music is courtesy of Carl Franklin. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsor: uscloud.com

Microsoft announces big changes to Windows 11: New Start menu, Phone Companion on Start, AI actions in File Explorer, Notepad and other updates. Plus, new Copilot+ PC features: Click to Do actions, AI agent in Search for some reason, new Photos, Paint, and Snipping Tool features, and more. Windows 11 Microsoft announces new Surface Pro and Surface Laptop models after teasing the announcement last week Recall improvements, Taskbar improvements, HDR improvements, more come to Beta and Dev Windows 11 Enterprise 24H2 to start on hotpatching, same schedule as Windows Server 2025 A moment of silence for Skype, we didn't know what we had until you ensh*ttified and then killed it Google is secretly working on two major changes for Android 16+ - We need something like this for 25H2 Antitrust Apple is slapped down hard by Judge in Epic v. Apple Spotify, Amazon, Proton and many other change apps to avoid Apple Tax The walls are finally tumbling down for Big Tech US v. Google (ads) has a remedy hearing set for September, that should go well AI Open AI: just kidding about that for-profit thing. Did Microsoft squelch this plan? Google's Little Language Lessons looks like a neat use of AI GitHub Copilot now has over 15 million users Xbox & gaming FTC may have suffered its final defeat in trying to end Microsoft acquisition of Activision Blizzard Xbox/ASUS portable gaming device leaks Good news! Xbox consoles are more expensive now! Wait. New DOOM game and more are coming to Game Pass this month Gears of War Remastered coming to Xbox, PS5, PC, Game Pass in August Minecraft drops VR/MR support GTA VI delayed until 2026 Backbone Pro works with phones directly but also tablets, PCs, and more wirelessly Tips and Picks Tip of the week: Go passwordless App pick of the week: Microsoft Authenticator RunAs Radio this week: Building a Career in Cybersecurity with Yuri Diogenes Brown liquor pick of the week: Jura 10 Hosts: Leo Laporte, Paul Thurrott, and Richard Campbell Download or subscribe to Windows Weekly at https://twit.tv/shows/windows-weekly Check out Paul's blog at thurrott.com The Windows Weekly theme music is courtesy of Carl Franklin. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsor: uscloud.com

Microsoft announces big changes to Windows 11: New Start menu, Phone Companion on Start, AI actions in File Explorer, Notepad and other updates. Plus, new Copilot+ PC features: Click to Do actions, AI agent in Search for some reason, new Photos, Paint, and Snipping Tool features, and more. Windows 11 Microsoft announces new Surface Pro and Surface Laptop models after teasing the announcement last week Recall improvements, Taskbar improvements, HDR improvements, more come to Beta and Dev Windows 11 Enterprise 24H2 to start on hotpatching, same schedule as Windows Server 2025 A moment of silence for Skype, we didn't know what we had until you ensh*ttified and then killed it Google is secretly working on two major changes for Android 16+ - We need something like this for 25H2 Antitrust Apple is slapped down hard by Judge in Epic v. Apple Spotify, Amazon, Proton and many other change apps to avoid Apple Tax The walls are finally tumbling down for Big Tech US v. Google (ads) has a remedy hearing set for September, that should go well AI Open AI: just kidding about that for-profit thing. Did Microsoft squelch this plan? Google's Little Language Lessons looks like a neat use of AI GitHub Copilot now has over 15 million users Xbox & gaming FTC may have suffered its final defeat in trying to end Microsoft acquisition of Activision Blizzard Xbox/ASUS portable gaming device leaks Good news! Xbox consoles are more expensive now! Wait. New DOOM game and more are coming to Game Pass this month Gears of War Remastered coming to Xbox, PS5, PC, Game Pass in August Minecraft drops VR/MR support GTA VI delayed until 2026 Backbone Pro works with phones directly but also tablets, PCs, and more wirelessly Tips and Picks Tip of the week: Go passwordless App pick of the week: Microsoft Authenticator RunAs Radio this week: Building a Career in Cybersecurity with Yuri Diogenes Brown liquor pick of the week: Jura 10 Hosts: Leo Laporte, Paul Thurrott, and Richard Campbell Download or subscribe to Windows Weekly at https://twit.tv/shows/windows-weekly Check out Paul's blog at thurrott.com The Windows Weekly theme music is courtesy of Carl Franklin. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsor: uscloud.com

Microsoft announces big changes to Windows 11: New Start menu, Phone Companion on Start, AI actions in File Explorer, Notepad and other updates. Plus, new Copilot+ PC features: Click to Do actions, AI agent in Search for some reason, new Photos, Paint, and Snipping Tool features, and more. Windows 11 Microsoft announces new Surface Pro and Surface Laptop models after teasing the announcement last week Recall improvements, Taskbar improvements, HDR improvements, more come to Beta and Dev Windows 11 Enterprise 24H2 to start on hotpatching, same schedule as Windows Server 2025 A moment of silence for Skype, we didn't know what we had until you ensh*ttified and then killed it Google is secretly working on two major changes for Android 16+ - We need something like this for 25H2 Antitrust Apple is slapped down hard by Judge in Epic v. Apple Spotify, Amazon, Proton and many other change apps to avoid Apple Tax The walls are finally tumbling down for Big Tech US v. Google (ads) has a remedy hearing set for September, that should go well AI Open AI: just kidding about that for-profit thing. Did Microsoft squelch this plan? Google's Little Language Lessons looks like a neat use of AI GitHub Copilot now has over 15 million users Xbox & gaming FTC may have suffered its final defeat in trying to end Microsoft acquisition of Activision Blizzard Xbox/ASUS portable gaming device leaks Good news! Xbox consoles are more expensive now! Wait. New DOOM game and more are coming to Game Pass this month Gears of War Remastered coming to Xbox, PS5, PC, Game Pass in August Minecraft drops VR/MR support GTA VI delayed until 2026 Backbone Pro works with phones directly but also tablets, PCs, and more wirelessly Tips and Picks Tip of the week: Go passwordless App pick of the week: Microsoft Authenticator RunAs Radio this week: Building a Career in Cybersecurity with Yuri Diogenes Brown liquor pick of the week: Jura 10 Hosts: Leo Laporte, Paul Thurrott, and Richard Campbell Download or subscribe to Windows Weekly at https://twit.tv/shows/windows-weekly Check out Paul's blog at thurrott.com The Windows Weekly theme music is courtesy of Carl Franklin. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsor: uscloud.com

Kaseya has launched a series of AI-driven tools and policy changes at its Connect 2025 event, aimed at enhancing operational efficiencies for IT service providers. The Kaseya 365 Ops platform utilizes AI to help customers improve their operational efficiency, with early users reportedly saving an average of 160 hours per month, equivalent to the productivity of one additional technician. Additionally, Kaseya is introducing free-to-use Datto backup hardware for up to three devices per customer, significantly reducing upfront costs for partners. The relaunch of the Datto Alto 5, a 2TB encrypted backup device offered at the price of a 1TB unit, provides better value and security for small to medium-sized businesses.SentinelOne, Huntress, and Microsoft have also made significant updates in cybersecurity and operational tools. SentinelOne unveiled its next-generation Purple AI Athena release, which automates critical processes such as threat triaging and investigation, while Huntress enhanced its managed identity threat detection and response solution to combat the rising threat of identity-based attacks. Microsoft announced that paid subscriptions will be required for its Windows Server 2025 hotpatching service, which allows administrators to install security updates without rebooting their servers, transitioning to a subscription model after June 30th.Homeland Security Secretary Kristi Noem announced plans to refocus the Cybersecurity and Infrastructure Security Agency (CISA) on protecting critical infrastructure from sophisticated threats, particularly those posed by China. She criticized previous leadership for mission drift and emphasized the need for improved information sharing across government agencies. Additionally, the Take It Down Act has passed the House, mandating social media companies to remove flagged non-consensual sexual images within 48 hours, raising concerns about potential misuse and the impact on smaller platforms.OpenAI has rolled back an update to its GPT-4.0 model due to concerns over overly flattering responses that compromised user trust. The company aims to refine its approach based on long-term user feedback, emphasizing the importance of accuracy and directness in AI interactions, especially for professionals in decision-making roles. This rollback serves as a reminder for IT leaders to ensure that AI-generated communications are truthful and not merely affirming, as the tone of AI can significantly shape trust in client relationships. Four things to know today 00:00 Kaseya Connect 2025: AI Ops Push, Free Backup Hardware, and Fred Voccola's Ongoing Presence Signal Business-as-Usual with a New Toolkit04:14 SentinelOne's AI Analyst, Huntress's Identity Defense, and Microsoft's Paid Patching 07:24 Noem Refocuses CISA on Infrastructure Threats as Congress Advances AI Image Takedown Law10:29 OpenAI Walks Back GPT-4o Update After Sycophantic Shift, Raising Critical Questions for AI Use in IT Services Supported by:  https://getnerdio.com/nerdio-manager-for-msp/ All our Sponsors: https://businessof.tech/sponsors/ Do you want the show on your podcast app or the written versions of the stories? Subscribe to the Business of Tech: https://www.businessof.tech/subscribe/Looking for a link from the stories? The entire script of the show, with links to articles, are posted in each story on https://www.businessof.tech/ Support the show on Patreon: https://patreon.com/mspradio/ Want to be a guest on Business of Tech: Daily 10-Minute IT Services Insights? Send Dave Sobel a message on PodMatch, here: https://www.podmatch.com/hostdetailpreview/businessoftech Want our stuff? Cool Merch? Wear “Why Do We Care?” - Visit https://mspradio.myspreadshop.com Follow us on:LinkedIn: https://www.linkedin.com/company/28908079/YouTube: https://youtube.com/mspradio/Facebook: https://www.facebook.com/mspradionews/Instagram: https://www.instagram.com/mspradio/TikTok: https://www.tiktok.com/@businessoftechBluesky: https://bsky.app/profile/businessof.tech

Microsoft issues emergency updates for Windows Server. Apple releases emergency security updates to patch two zero-days. CISA averts a CVE program disruption. Researchers uncover Windows versions of the BrickStorm backdoor. Atlassian and Cisco patch several high-severity vulnerabilities. An Oklahoma cybersecurity CEO is charged with hacking a local hospital. A Fortune 500 financial firm reports an insider data breach. Researchers unmask IP addresses behind the Medusa Ransomware Group. CISA issues a warning following an Oracle data breach. On our Industry Voices segment, we are joined by Rob Allen, Chief Product Officer at ThreatLocker, to discuss a layered approach to zero trust. Former CISA director Chris Krebs steps down from his role at SentinelOne. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. Industry Voices On our Industry Voices segment, we are joined by Rob Allen, Chief Product Officer at ThreatLocker, to discuss a layered approach to zero trust. Selected Reading New Windows Server emergency updates fix container launch issue (Bleeping Computer) Apple fixes two zero-days exploited in targeted iPhone attacks (Bleeping Computer) CISA Throws Lifeline to CVE Program with Last-Minute Contract Extension (Infosecurity Magazine) MITRE Hackers' Backdoor Has Targeted Windows for Years (SecurityWeek) Vulnerabilities Patched in Atlassian, Cisco Products (SecurityWeek) Edmond cybersecurity CEO accused in major hack at hospital (KOCO News) Fortune 500 firm's ex-employee exposes thousands of clients (Cybernews) Researchers Deanonymized Medusa Ransomware Group's Onion Site (Cyber Security News) CISA warns of potential data breaches caused by legacy Oracle Cloud leak (The Record) Krebs Exits SentinelOne After Security Clearance Pulled (SecurityWeek) The top 10 ThreatLocker policies for 2025 (ThreatLocker) Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.  Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Patch Tuesday has arrived and Windows 11 23H2/24H2 gets those preview updates we talked about two weeks ago: Taskbar preview improvements, Windows Studio Effects on taskbar, File Explorer improvements, Mouse improvements, Time Zone changes without admin privileges, OneDrive continuity (23H2 only), Windows Share improvements (23H2 only), new keyboard shortcut for Magnifier. While Windows 10 gets the new Outlook, you lucky dogs! Windows Beta (yesterday) - Beta/Dev window is open, Beta will move to 24H2 soon, this new build was for 23H2, new Paint app MIDI IS BACK BABY! MIDI Services 2.0 now in public preview Photos app OCR capabilities are back - feature was in testing but disabled in November, supports 160 languages HoloLens is finally dead: Microsoft partners with tech bro to offload US Army contract AI/Dev Microsoft schedules Build 2025 for May 19-22. And then Google schedules I/O 2025 for May 20-21 Elon Musk and investors supposedly make bid for OpenAI - hilarity ensues OpenAI is working on its own AI chip because everyone else is OpenAI is working on its own AI chip because everyone else is You don't have to sign in to OpenAI to use ChatGPT Search now Google Gemini 2.0 family is now (mostly) generally available GitHub Copilot is getting agentic features this year Remember the so-called Windows Copilot Runtime? It's finally happening. Paul noticed that the Windows App SDK 1.7 Experimental 3 release finally had WCR bits, was quietly released last week Coding hands-on: Building text rewrite and summarize requires just a few lines of code More Earnings/Corporate Qualcomm - $11.7 billion in revenues, up 17 percent It's over! Arm Holdings drops Qualcomm complaint, will not terminate license Amazon: $188 billion in revenues, up 9.5 percent - AWS was $29 billion in revenues, up 16 percent. Amazon to spend $75 billion this fiscal year on AI infrastructure build-out, similar to MSFT, that figure was $28 billion in the previous quarter Here comes Conversational Alexa - Amazon devices and services event February 26 Sonos continues its downward spiral - Before earnings, restructuring and layoffs Xbox Good news/bad news on Xbox console sales - Better than expected, honestly Candy Crush Solitaire is first new King game under Xbox - Perfect King/Microsoft mashup Tips and Picks Tip of the week: A few steps forward (and back) for the 2025 online accounts push Tip of the week #2: Get the Bill Gates book Source Code App pick of the week: Notion is nearly perfect RunAs Radio this week: Upgrading to Windows Server 2025 with Robert Smit Brown liquor pick of the week: Mackmyra Brukswhisky Hosts: Paul Thurrott, Richard Campbell, and Mikah Sargent Download or subscribe to Windows Weekly at https://twit.tv/shows/windows-weekly Check out Paul's blog at thurrott.com The Windows Weekly theme music is courtesy of Carl Franklin. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit

Patch Tuesday has arrived and Windows 11 23H2/24H2 gets those preview updates we talked about two weeks ago: Taskbar preview improvements, Windows Studio Effects on taskbar, File Explorer improvements, Mouse improvements, Time Zone changes without admin privileges, OneDrive continuity (23H2 only), Windows Share improvements (23H2 only), new keyboard shortcut for Magnifier. While Windows 10 gets the new Outlook, you lucky dogs! Windows Beta (yesterday) - Beta/Dev window is open, Beta will move to 24H2 soon, this new build was for 23H2, new Paint app MIDI IS BACK BABY! MIDI Services 2.0 now in public preview Photos app OCR capabilities are back - feature was in testing but disabled in November, supports 160 languages HoloLens is finally dead: Microsoft partners with tech bro to offload US Army contract AI/Dev Microsoft schedules Build 2025 for May 19-22. And then Google schedules I/O 2025 for May 20-21 Elon Musk and investors supposedly make bid for OpenAI - hilarity ensues OpenAI is working on its own AI chip because everyone else is OpenAI is working on its own AI chip because everyone else is You don't have to sign in to OpenAI to use ChatGPT Search now Google Gemini 2.0 family is now (mostly) generally available GitHub Copilot is getting agentic features this year Remember the so-called Windows Copilot Runtime? It's finally happening. Paul noticed that the Windows App SDK 1.7 Experimental 3 release finally had WCR bits, was quietly released last week Coding hands-on: Building text rewrite and summarize requires just a few lines of code More Earnings/Corporate Qualcomm - $11.7 billion in revenues, up 17 percent It's over! Arm Holdings drops Qualcomm complaint, will not terminate license Amazon: $188 billion in revenues, up 9.5 percent - AWS was $29 billion in revenues, up 16 percent. Amazon to spend $75 billion this fiscal year on AI infrastructure build-out, similar to MSFT, that figure was $28 billion in the previous quarter Here comes Conversational Alexa - Amazon devices and services event February 26 Sonos continues its downward spiral - Before earnings, restructuring and layoffs Xbox Good news/bad news on Xbox console sales - Better than expected, honestly Candy Crush Solitaire is first new King game under Xbox - Perfect King/Microsoft mashup Tips and Picks Tip of the week: A few steps forward (and back) for the 2025 online accounts push Tip of the week #2: Get the Bill Gates book Source Code App pick of the week: Notion is nearly perfect RunAs Radio this week: Upgrading to Windows Server 2025 with Robert Smit Brown liquor pick of the week: Mackmyra Brukswhisky Hosts: Paul Thurrott, Richard Campbell, and Mikah Sargent Download or subscribe to Windows Weekly at https://twit.tv/shows/windows-weekly Check out Paul's blog at thurrott.com The Windows Weekly theme music is courtesy of Carl Franklin. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit

Patch Tuesday has arrived and Windows 11 23H2/24H2 gets those preview updates we talked about two weeks ago: Taskbar preview improvements, Windows Studio Effects on taskbar, File Explorer improvements, Mouse improvements, Time Zone changes without admin privileges, OneDrive continuity (23H2 only), Windows Share improvements (23H2 only), new keyboard shortcut for Magnifier. While Windows 10 gets the new Outlook, you lucky dogs! Windows Beta (yesterday) - Beta/Dev window is open, Beta will move to 24H2 soon, this new build was for 23H2, new Paint app MIDI IS BACK BABY! MIDI Services 2.0 now in public preview Photos app OCR capabilities are back - feature was in testing but disabled in November, supports 160 languages HoloLens is finally dead: Microsoft partners with tech bro to offload US Army contract AI/Dev Microsoft schedules Build 2025 for May 19-22. And then Google schedules I/O 2025 for May 20-21 Elon Musk and investors supposedly make bid for OpenAI - hilarity ensues OpenAI is working on its own AI chip because everyone else is OpenAI is working on its own AI chip because everyone else is You don't have to sign in to OpenAI to use ChatGPT Search now Google Gemini 2.0 family is now (mostly) generally available GitHub Copilot is getting agentic features this year Remember the so-called Windows Copilot Runtime? It's finally happening. Paul noticed that the Windows App SDK 1.7 Experimental 3 release finally had WCR bits, was quietly released last week Coding hands-on: Building text rewrite and summarize requires just a few lines of code More Earnings/Corporate Qualcomm - $11.7 billion in revenues, up 17 percent It's over! Arm Holdings drops Qualcomm complaint, will not terminate license Amazon: $188 billion in revenues, up 9.5 percent - AWS was $29 billion in revenues, up 16 percent. Amazon to spend $75 billion this fiscal year on AI infrastructure build-out, similar to MSFT, that figure was $28 billion in the previous quarter Here comes Conversational Alexa - Amazon devices and services event February 26 Sonos continues its downward spiral - Before earnings, restructuring and layoffs Xbox Good news/bad news on Xbox console sales - Better than expected, honestly Candy Crush Solitaire is first new King game under Xbox - Perfect King/Microsoft mashup Tips and Picks Tip of the week: A few steps forward (and back) for the 2025 online accounts push Tip of the week #2: Get the Bill Gates book Source Code App pick of the week: Notion is nearly perfect RunAs Radio this week: Upgrading to Windows Server 2025 with Robert Smit Brown liquor pick of the week: Mackmyra Brukswhisky Hosts: Paul Thurrott, Richard Campbell, and Mikah Sargent Download or subscribe to Windows Weekly at https://twit.tv/shows/windows-weekly Check out Paul's blog at thurrott.com The Windows Weekly theme music is courtesy of Carl Franklin. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit

Ready to upgrade to Windows Server 2025? Richard talks to Robert Smit about his experiences doing an upgrade—with a few important dos and don'ts! Robert talks about dusting off your Active Directory setup and ensuring you're at the Server 2016 functional level. The conversation also dives into the new-build-versus-upgrade options, taking advantage of SMB over QUIC and SMB Compression, and much more!LinksWindows Server 2025Upgrading to Windows Server 2025Azure ArcWindows Admin CenterSMB CompressionWindows ToolsRemote Server Administration ToolsConfiguration ManagerAzure Arc-enabled System Center Virtual Machine ManagerLive Migration with Workgroup ClusterRecorded January 7, 2025

Are the dense jungles of Windows Server leaving you lost? Are Active Directory tangles, Entra ID integrations, or legacy issues keeping your IT nights sleepless? Well, grab your machete (or PowerShell) and join us on an expedition into the depths of Microsoft ecosystems in this week's episode of Data Center Therapy!In this thrilling adventure, your trusted guides, Matt “Server Sherpa” Yette and Matt “Patch Paladin” Cozzolino, are joined once again by IVOXY's own Microsoft guru, Dade “Forest Ranger” Wilson. Together, they brave the wilds of Windows Server and Active Directory to uncover the secrets, pitfalls, and solutions waiting within.What treasures (and traps) await you in this episode?Windows Server Assessment: Dade spills the beans on what his assessment covers, from identifying lurking performance issues to spotting security vulnerabilities in forgotten corners of your environment.Active Directory & Entra ID: How do these two pillars of Microsoft infrastructure intersect, and why do they often make us break a sweat?Best Practices & Pro Tips: Schema upgrades, time-sync nightmares, and why DNS is always the culprit—Dade and the Matts share their survival tips.Upcoming Workshop Alert: Don't miss out on IVOXY's upcoming Active Directory/Entra ID workshop and hands-on training class, led by Dade, designed to demystify these crucial Microsoft tools and set your team up for success.As always, if you enjoy the show, please be sure to like, share with three colleagues and subscribe wherever you get your quality podcasts.From the DCT crew – Stay cool, stay protected, be informed and see you at the next event and episode, compadres

On this Screaming in the Cloud Replay, Corey is joined by Microsoft's current Vice President of Developer Community, Scott Hanselman. They talk about how Scott is selling enthusiasm around free and open source software to empower the next generation of programmers, how technology can help you escape a suboptimal position in life, moving a blog that was hosted on a Windows Server 2008 server to Azure, using TikTok to encourage younger folks to get into coding, why there isn't a wrong programming language to learn and why you should learn JavaScript, how the rise of SaaS and cloud computing has made Microsoft a “simpler” company, convincing banks to use open source in the 2000s, and more.Show Highlights(0:00) Intro(0:29) The Duckbill Group sponsor read(1:13) What Scott did as Microsoft's Partner Program Manager(2:05) Scott's various passions and projects(4:37) Changes at Microsoft since Corey last kept track of the company(10:15) Why Corey struggles to get back into the Windows ecosystem(17:45) The convenience of having everything more accessible and hosted in Azure(24:36) The Duckbill Group sponsor read(25:19) The importance of the struggle when starting out in tech(30:55) Microsoft's cultural transformation(34:32) Why Scott has turned to social media to reach the next generation of engineers(39:18) Where you can find more from ScottAbout Scott HanselmanScott has been a developer for 30 years and has been blogging at https://hanselman.com for 20 years! He works in Open Source on .NET and the Azure Cloud for Microsoft out of his home office in Portland, Oregon. Scott has been podcasting for over 950 episodes of http://hanselminutes.com over 18 years and over 750 episodes of http://www.azurefriday.com. He's written a number of technical books and spoken in person to over one million developers worldwide! He's also on TikTok, which was very likely a huge mistake.LinksHanselminutes Podcast: https://www.hanselminutes.com/Personal website: https://hanselman.comOriginal Episodehttps://www.lastweekinaws.com/podcast/screaming-in-the-cloud/inspiring-the-next-generation-of-devs-on-tiktok-with-scott-hanselman/SponsorThe Duckbill Group: duckbillgroup.com

This month's pitstop looks at  everything that landed in November 2024: Viva Engage: Updates for the Copilot adoption community, Copilot Pages, Add Approvals to any SharePoint document library, Teams: New chat and channels experience, Teams: New calendar experience, and Windows Server 2025 (GA). Plus, we share highlights from Microsoft Ignite 2024 - Five announcements from across the Microsoft portfolio. You'll also hear a segment of audio from Maya Rodrig - from the Microsoft Loop team - summarizing Copilot Pages alongside BizChat. It's a busy pitstop to get up to speed AND look ahead.   Read this episode's corresponding blog post.   01:24 Employee engagement 07:13 "Copilot Pages" by Maya Rodrig 11:17 Teamwork 13:23 Related technology 31:25 Teasers   Maya Rodrig | LinkedIn  SharePoint | Facebook | @SharePoint | SharePoint Community Blog | Feedback  Mark Kashman |@mkashman [co-host]   Microsoft Docs - The home for Microsoft documentation for end users, developers, and IT professionals. Microsoft Tech Community Home Stay on top of Office 365 changes   Upcoming events: Microsoft Ignite 2024 | Now on demand (incl. SharePoint "event guide") ESPC | European SharePoint Conference | Dec 2-5, 2024 in Stockholm, Swede + always review and share the CommunityDays.org website   Discover and follow other Microsoft podcasts at aka.ms/microsoft/podcasts. Follow The Intrazone at aka.ms/TheIntrazone.

We are on the brink of history, as next podcast will be number 800. It's been a long ride, with our first show way back in 2007... Don't worry, this isn't goodbye. This is a podcast. A podcast about computer stuff. (And burgers.)  Be prepared for D-Link whipping, massive NVME cooling, and of course, special guest Lara Croft.  00:00 Intro02:58 Food with Josh04:55 Intel is sorry about the Arrow Lake launch08:40 When is more 9800X3D stock coming?12:14 AMD has a quarter of CPU market share14:18 A new TIM that is 72 percent better than paste?16:42 The enormous Dark Airflow I drive cooler atop the T-Force Z540 SSD20:35 Windows Server 2025 pushed out as KB5044284 update21:57 NVIDIA app exits beta, replaces control panel and GeForce Experience23:52 Rumor: RTX 40 Series production nearing end to make way for RTX 50 Series25:00 (in)Security Corner32:06 Gaming Quick Hits41:18 Picks of the Week49:41 Outro ★ Support this podcast on Patreon ★

00:00 - PreShow Banter™ — The Old and The New02:27 - BHIS - Talkin' Bout [infosec] News 2024-11-1103:44 - Story # 1: Mattel pulls thousands of ‘Wicked' dolls off shelves after printing adult website on packaging08:03 - Story # 2: Office apps crash on Windows 11 24H2 PCs with CrowdStrike antivirus11:41 - Story # 3: Mislabeled patch sends Windows Server 2022 admins on unwanted upgrade to 202516:49 - Story # 4: Suspected Snowflake Hacker Arrested in Canada18:26 - Story # 5: Interpol Cybercrime Sweep Takes Down 22,000 IP Addresses, Arrests 4129:47 - Story # 6: Google Cloud to mandate MFA for all users in 202541:30 - Story # 7: Cisco scores a perfect CVSS 10 with critical flaw in its wireless system49:26 - Story # 8: H.I.G. Capital and Thoma Bravo to Acquire CompTIA Brand and Products59:05 - SANS Holiday Hack Challenge™ 2024

Did Bitwarden go closed-source? The rights of German security researchers are clarified. Australia to impose age limits on social media. Free Windows Server 2025 anyone? UAC wasn't getting in the way enough, so they're fixing that. "From Russia with fines" -- obey or else. South Korea fines Meta over serious user privacy violations. Synology's (very) critical zero-click RCE flaw. Malicious Python packages invoked by typos. Google to enforce full MFA for all cloud service users. Mozilla Foundation lays off 30%? Is Firefox safe? Some feedback from Dave's Garage (https://grc.sc/dave) GRC email CTL: AI Debugging CTL: Chat GPT vs YouTube Shorts CTL: Update on the "Train Tracks" Pic of the Week CTL: DNS Benchmark compatibility CTL: The accuracy of AI CTL: Exposing NAS to the Internet CTL: Congrats on 1000! Show Notes - https://www.grc.com/sn/SN-1000-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: bitwarden.com/twit threatlocker.com for Security Now flashpoint.io lookout.com

Did Bitwarden go closed-source? The rights of German security researchers are clarified. Australia to impose age limits on social media. Free Windows Server 2025 anyone? UAC wasn't getting in the way enough, so they're fixing that. "From Russia with fines" -- obey or else. South Korea fines Meta over serious user privacy violations. Synology's (very) critical zero-click RCE flaw. Malicious Python packages invoked by typos. Google to enforce full MFA for all cloud service users. Mozilla Foundation lays off 30%? Is Firefox safe? Some feedback from Dave's Garage (https://grc.sc/dave) GRC email CTL: AI Debugging CTL: Chat GPT vs YouTube Shorts CTL: Update on the "Train Tracks" Pic of the Week CTL: DNS Benchmark compatibility CTL: The accuracy of AI CTL: Exposing NAS to the Internet CTL: Congrats on 1000! Show Notes - https://www.grc.com/sn/SN-1000-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: bitwarden.com/twit threatlocker.com for Security Now flashpoint.io lookout.com

Did Bitwarden go closed-source? The rights of German security researchers are clarified. Australia to impose age limits on social media. Free Windows Server 2025 anyone? UAC wasn't getting in the way enough, so they're fixing that. "From Russia with fines" -- obey or else. South Korea fines Meta over serious user privacy violations. Synology's (very) critical zero-click RCE flaw. Malicious Python packages invoked by typos. Google to enforce full MFA for all cloud service users. Mozilla Foundation lays off 30%? Is Firefox safe? Some feedback from Dave's Garage (https://grc.sc/dave) GRC email CTL: AI Debugging CTL: Chat GPT vs YouTube Shorts CTL: Update on the "Train Tracks" Pic of the Week CTL: DNS Benchmark compatibility CTL: The accuracy of AI CTL: Exposing NAS to the Internet CTL: Congrats on 1000! Show Notes - https://www.grc.com/sn/SN-1000-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: bitwarden.com/twit threatlocker.com for Security Now flashpoint.io lookout.com

The FBI flags fake videos claiming to be from the agency. Okta patches an authentication bypass vulnerability. Microsoft confirms Windows Server 2025 Blue Screen of Death issues. Scammers exploit DocuSign's APIs to send fake invoices that bypass spam filters. Hackers use smart contracts for command and control. ICS suppliers face challenges convincing customers to secure their environments. Barracuda tracks a phishing campaign impersonating OpenAI. X-Twitter makes controversial changes to its block feature. A Nigerian man gets 26 years in prison for email fraud. On our Solution Spotlight, N2K's Simone Petrella interviews Alex Stamos, CISO at SentinelOne, at the ISC2 Security Congress 2024 about lessons learned in 2024 and what that means for 2025. For a South Dakota plastic surgeon, ransomware was just the beginning of his financial woes. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest On our Solution Spotlight, N2K's Simone Petrella interviews Alex Stamos, CISO at SentinelOne, at the ISC2 Security Congress 2024 about lessons learned in 2024 and what that means for 2025. Selected Reading FBI flags false videos impersonating agency, claiming Democratic ballot fraud (CyberScoop) Okta security bug affects those with really long usernames (The Register) Microsoft confirms Windows Server 2025 blue screen, install issues (Bleeping Computer) Scammers Use DocuSign API to Evade Spam Filters with Phishing Invoices (Hackread) Supply Chain Attack Uses Smart Contracts for C2 Ops (Infosecurity Magazine) Siemens and Rockwell Tackle Industrial Cybersecurity, but Face Customer Hesitation (SecurityWeek) Cybercriminals impersonate OpenAI in large-scale phishing attack (Barracuda) X updates block feature, letting blocked users see your public posts (TechCrunch) US Sentences Nigerian to 26 Years in Prison for Stealing Millions Through Phishing (SecurityWeek) Doctor Hit With $500K HIPAA Fine: Feds Worse Than Hacker (GovInfo Security)  Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.  Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Windows 11 24H2 is following a now-familiar trajectory to release. Right, it's chaos Microsoft issues last-second updates to 22H2/23H2 and 24H2 in the Release Preview on Monday. Paul predicted these would turn into our Week D updates later in the week and that we'd get nothing on Tuesday Dev and Beta channels got some interesting updates recently as well The Windows App is now available on Windows, Mac, and iOS HP announces two new flagship AI PCs, one AMD and one Intel. Plus a lower-cost 8-core Snapdragon model. This is officially a trend. A week after providing details about the September 2024 firmware update for Surface Laptop 7, Microsoft confirmed it shipped the same update to Surface Pro 11. This has had a major negative effect on the device's instant-on capabilities Microsoft 365, cloud, AI Microsoft is reviving Three Mile Island and other headlines I never thought I'd write Google formally complains about alleged Microsoft antitrust abuses in the EU LinkedIn is training AI with your data. You can turn it off because Microsoft loves opt-out Microsoft issues a SFI progress report and they are doing GREAT, thank you very much Gemini comes to Workspace Apple Intelligence will hoover 4GB of drive space on iPhones to start, more later as more features are added More! Qualcomm makes another offer to acquire Intel Investment firm offers Intel a $5 billion lifeline Arc just experienced its first major security incident and handled it really well Raspberry Pi reports its first-ever earnings Paul has finished updating .NETpad for Windows 11 theming support in .NET 9, will put code up in GitHub after .NET ships in stable Xbox A new tell-all about Blizzard, Activision, and Xbox arrives October 8 Game Pass features are coming to Xbox mobile app where they belong Also, Game Bar Compact mode as part of September Xbox Update New Indie Selects titles Microsoft Flight Simulator 2024 is available for preorder and it will look a lot better and take up a lot less disk space Xbox Ambassador's Program is dead, Jim Xbox spends $1 billion per year to acquire Game Pass titles Xbox figured out how to reduce its carbon emissions. You know, besides selling fewer consoles Sony announces 30th anniversary PS5 collection Tips and Picks Tip of the week: Stop paying so much for everything App pick of the week: A week of browser-adjacent updates RunAs Radio this week: Windows Server 2025 and Active Directory with Orin Thomas Brown liquor pick of the week: Hatozaki Small Batch Hosts: Leo Laporte, Paul Thurrott, and Richard Campbell Download or subscribe to this show at https://twit.tv/shows/windows-weekly Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Check out Paul's blog at thurrott.com The Windows Weekly theme music is courtesy of Carl Franklin. Sponsors: e-e.com/twit lookout.com bigid.com/windowsweekly veeam.com