Windows Recall: Enhanced Security& Privacy ahead of October Launch

As Windows 11 24H2 gets ready to release, Microsoft has announced major security and privacy upgrades to its (yet to be released) Windows Recall feature which was the flagship new AI powered feature announced on the back of the Copilot Plus PC announcements back in May.

Recall, which was initially met with scepticism and concerns around security and privacy, has now be significantly updated with stronger and more granular protections for privacy, encryption and identity access to make it ready for its “delayed” release next month.

What is Recall?

Recall takes screenshots of active windows on your PC every few seconds, analyses them on-device using a Neural Processing Unit (NPU) and an AI model, and adds the information to an SQLite database. You can later search for this data using natural language to prompt Windows Recall to retrieve relevant screenshots.

I covered Recall in more detail in an earlier blog

Responding to Customer Feedback


Microsoft’s decision to enhance Windows Recall comes after considerable feedback from customers and privacy advocates. The company initially delayed the public release of Recall, opting to make it available for preview with Windows Insiders. This cautious approach allowed Microsoft to refine the feature based on real-world usage and analysis of how it was used whilst they review ways to address the concerns and enhance security and privacy controls.

Putting Users in control of Recall

One of the most significant changes is that Windows Recall is now strictly opt-in. Users must proactively activate the feature, ensuring that no screenshots are taken or saved without explicit consent. This addresses a major concern about privacy and data security. Additionally, users can remove Recall entirely through the optional features settings in Windows, providing total control over its usage.

Advanced Security and Privacy Measures

Windows Recall now includes several advanced security measures designed to protect sensitive information after feedback, development and testing since it was announced in May this year.

Firstly – Recall is an optional feature and can also be removed entirely from the Windows Installation. If a user doesn’t proactively choose to turn it on, recall is off by default, meaning snapshots will not be taken or saved.

If Recall is enabled, all snapshots and associated data are encrypted, with encryption keys protected by the device’s Trusted Platform Module (TPM). This module is tied to the user’s Windows Hello login information and biometric identity, ensuring that no data leaves the computer without the user’s explicit request. Recall snapshots are also only accessible after users authenticate using Windows Hello credentials. This enhanced sign-in security ensures privacy and actively authenticates users before allowing access to their data

Recall also comes with a sensitive information filter designed to protect confidential data, like passwords, credit card numbers, and personal identification details, by automatically applying filters over this content. This uses AI and pattern matching to look for such information adding another level of privacy protection.

Additionally, Recall includes malware protection features like rate-limiting and anti-hammering measures, which prevent unauthorized access attempts.

Recall: Four Principles of Operation

Microsoft has redesigned Recall to function on four core principles:

  1. User control
  2. Encryption of sensitive data
  3. Isolation of services, and
  4. Intentional use.

Recall is always opt-in. Snapshots are not saved unless you choose to use Recall, and everything is stored locally……Recall does not share snapshots or data with Microsoft or third parties, nor between different Windows users on the same device. Windows will ask for permission before saving any snapshots.

David Weston – VP Enterprise and OS Security, Microsoft.

These principles will ensure that users can keep complete control over their data, with the ability to remove snapshots, pause them, or turn them off at any time. Any future choice to share data will need fully informed and explicit action by the user.

    Image (c) Microsoft.

    Conclusion

    In short, the enhanced Windows Recall feature represents a significant step forward in balancing functionality with security and privacy which show Microsoft are licensing to their users and take privacy and security seriously. By addressing key concerns and implementing robust protections, I believe Microsoft has demonstrated its commitment to user trust and data security. As Recall rolls out to Insiders with Copilot+ PCs in October, it will be interesting to see how these enhancements are received and what further innovations Microsoft will bring to the table. What do you think? Will you be trying this out or uninstalling it?

    When will Windows Recall be released?

    Microsoft announced last month that Recall will start rolling out to Insiders with Copilot+ PCs in October as part of the 24H2 release of Windows 11.

    Microsoft looking to remove security vendor access to it’s Windows Kernel following CrowdStrike incident.

    Microsoft is building new Windows security features to prevent another CrowdStrike incident and are in talks to enable them to do to more to allow them to better protect the core of their OS to prevent outages and widespread impact like the CrowdStrike incident which impacted more then 8.5 million devices and is estimated to have caused more than $10b financial impact.

    Fighting against the anti monopolies commissions.

    In an ideal world, Microsoft would have right to protect their core kernel code and prevent any third parties interfering or accessing it.

    Today, however, law is preventing them from doing this to ensure they adhere to the anti monopolies and anti compete laws in many parts of globe. Instead Microsoft are doing all they can to further harden security around the kernel and Windows security in general.

    Their goal is of course to find a comprised way to protect Windows from software issues caused by security vendors to ensure OS integrity without killing third party security vendors but to avoid them needed kernel level access in the first place…

    Enhancing Security without Kernel Access

    Since July, Microsoft has been in talks with leading security vendors, including CrowdStrike, Broadcom and Sophos, to develop a new security  platform in Windows that still allows security vendors to do their thing, but without Microsoft having to expose full kernel access.

    Then last week ( September 10th, 2024), Microsoft, CrowdStrike, and many other security  partners who provide endpoint security technologies got together to discuss ways to boost resiliency and protect our mutual customers’ critical infrastructure.  Aidan Marcuss, Corporate VP of Microsoft Windows and Devices said  “Our objective is to discuss concrete steps we will all take to improve security and resiliency for our joint customers.”

    The goal is to  prevent incidents similar to the CrowdStrike outage and enhance the overall security framework of Windows without monopolosing the endpoint and XDR markets.

    Benefits to Consumers

    For everyday users, this would promises a more secure and stable computing experience in a world where attacks on identity and data theft are increasing at pace. By further reducing the risk of security breaches and system outages, whilst reducing the risk of third party apps and services causing system failures, Microsoft is ensuring that consumers continue to trust them to protect their personal data and maintain smooth operation. Enhanced security measures mean fewer disruptions and a safer online environment, which is crucial in an era where cyber threats are increasingly sophisticated.

    Benefits to Business Users

    For commerciall/business users, they of course would gain significantly from these new security measures. With sensitive corporate data and identity consistency at risk from attack or breach, Microsoft’s enhanced security framework will provide businesses with greater peace of mind and further increase the trust they already have with Microsoft to protect their data, applications and emails.

    Of course, reduced risk of breaches and downtime caused by third party apps and services also translates to increased choice (without fear), and lower costs associated with security incidents and system outages incidents.

    Whilst this should enable businesses to  focus more on their core operations, knowing that their IT infrastructure is robust and secure, it doesn’t remove the need for full business continuity planning….

    Microsoft’s Perspective and Benefit

    For Microsoft, this move is a strategic step to reinforce its commitment to security and reliability. Arguably, Microsoft is the biggest security company in the world and with over a billion devices running the Windows operating system, they have a duty to continue to protect their products from outages caused by, well things out of their control, such as the CrowdStrike update fail!

    By working closely with security vendors and regulatory bodies, Microsoft is not only positioning itself as a leader in the cybersecurity space, but also as a partner that works with its software houses (ISVs) and customers to ensure they still have choice over the aspects of Windows they use (or subscribe too) and the third party vendors they choose to work with.

    So what about the third party security vendors then?

    Security vendors like CrowdStrike, Broadcom, Sophos, Cisco, and Trend Micro also benefit from this collaboration by being part of a more secure and standardised platform. This partnership allows them to continue to innovate and develop advanced security solutions without the complexities and risks associated with kernel access..it also. Means they will continue to get support and help from Microsoft (as a Isv partner) in developing and supporting their products. 

    Potential Concerns and Regulatory Involvement

    Naturally, there are concerns about potential monopolistic practices. Vendors (and those less. Involved in their initiative) may fear that Microsoft might restrict kernel access for third-party products while retaining it for its own, which could limit their ability to compete effectively, pushing customers to jump. Ship and just adopt Microsoft security products and services.

    To address such concerns and ensure transparency, Microsoft has involved US and European government officials in discussions. This move is aimed at addressing regulatory concerns and demonstrating Microsoft’s commitment to a fair and secure computing environment. While the initiative is largely seen as positive, it is crucial for Microsoft to maintain an open and competitive landscape for all security vendors.

    Conclusion

    Microsoft’s new security measures would represent a significant step towards a safer Windows environment. By working closely with security vendors and involving regulatory bodies, Microsoft is striving to create a secure and fair platform for all users making kernel acess more controlled than it is today. This promises numerous benefits for consumers, business users, and security vendors alike, while also addressing potential concerns about competition and transparency.

    Read more. The Register has also covered this story in depth of you want to read more here.

    The “Windows App” now has mobile app support

    Microsoft has given the Windows App “GA” status and released to the masses along with long awaited mobile app support which will open more doors and use cases for Windows Cloud PCs and Virtual Desktops. This will allow businesses to bring the power of Windows to virtually any device. Whether you’re using macOS, iOS, iPadOS, Android, or even another Windows PC, you can now stream a copy of Windows seamlessly.

    You can read the full Microsoft Blog on this > here <

    What’s so good about the Windows App?

    Havig been in preview for some time (previously there were multiple apps to use for different virtualised experiences on Windows such as Remote Desktop app, different websites and third-party apps etc) but now we have a new single experience 🙂 This provides:

    • Unified Experience: The Windows App serves as a single place to streaming all your corporate and development Windows desktops including Windows 365, Azure Virtual Desktop, and Remote Desktop services.
    • Customisable Home screen: Which allows users to tailor the app to suit their needs by pinning specific desktops, configuring the join experience and even simple configuration of things like multi-tasking and app switching with Windows 11 (known as Windows 365 Switch).
    • Multi-Screen Support: The Windows App lets users customise and extend their experience (just like a traditional / physical desktop) with multiple display support.
    • USB Redirection: Windows App allows full support of local USB devices including speakers, mics, webcams, storage devices, and printers as if they are directly connected to your Cloud PC.
    • Single Sign On – The Windows App supports single sign on with Windows 365 and AVD with Entra ID.

    Who can use the Windows App?

    Presently, the app is limited to Microsoft work and school accounts, making it ideal for professionals and students who need to access their work PCs remotely. It’s not available for consumers, but it does make Windows 365 and AVD simple to use on personal BYOD devices that need to access work devices. Something I do often.

    Downloading the Windows App

    The Windows app is available for download from the Microsoft Store and the Apple App Store. It is also available on the Google Play store but is now in public preview.

    User Experience

    The user experience is fantastic and shows the attention to detail, listening to user feedback and alignment with the core Windows Development team. Microsoft have said that the Windows App will start shipping as standard out of box app on Coporate Devices running Windows 11 too.

    Windows 365 Desktop on Samsung S24 via TV

    Windows App on Samsung S24 through TV

    The image above (which is pretty cool) is Windows 365 Running on my Samsung S24 displayed through a TV (using Samsung Dex) – and yes, I am using Copilot on PowerPoint.

    Windows 11 Experience below

    The Future

    I’d love to see Windows App come to more devices like high-end TVs and tablets in the future just like Microsoft have done with Xbox Game Streaming.

    Microsoft fixes hardware glitches across Surface Pro 8, Pro X, and Laptop 6.

    Microsoft has released a bunch of firmware updates which should fix some annoying issues.

    One of the great things about Microsoft owning the hardware and software eco system (in the realm of Surface and Windows), is the telemetry data they have across the board and the ownership they take across hardware and software.

    According to Microsoft there’s been some issues affecting Surface Pro 8, Pro X and Laptop 6 which have (hopefully) been fixes with this latest update.  Let’s dive into the specifics of what these updates address for each device.

    Surface Pro 8 (Intel)

    Some or the reported issues with Surface Pro 8 include issues with Surface Slim Pen, flickering screen issues when using the Surface Dock 2, and even issues with the built in USB-C ports.  This update should fix all those ensuring a smoother and more reliable experience.

    Surface Pro X (Arm)

    One of my favourite devices (big fan of Windows on ARM), but many users have reported camera issues with the camera app hanging or the camera locking and showing as not working until a reboot. There has also been issues regarding the keyboard when using in Windows Recovery Environment (WinRE) or Windows Preinstallation Environment (WinPE). This firmware update addresses these issues.

    Surface Laptop 6 (Intel)

    A stable for many businesses, the Surface Laptop 6 has seen a number of odd issuesnpartixukar with the fan and cooling system with reports of the laptop’s fans running excessively (and not turning off), even when the device isn’t under heavy load. This not only affects battery life but can also be quite distracting. This latest update should fix this issue by optimising the fan behavior and improving the system’s response to internal temperature changes, especially when connected to an external monitor and peripherals.

    How to get the firmware updates

    If you’ve been experiencing any of these issues with your Surface device, then updating your device is simple. In most cases these updates will be deployed as part of the regular patch schedule across your business, but if you need to check and deploy manually, then simply head over to Windows Update and download and install any pending updates for your device.

    Windows OS and Surface firmware updates  are essential for maintaining the performance and reliability of your Surface devices even if you are not experiencing any of the issues above.

    What are Copilot Pages?

    Microsoft yesterday, announced the next stage of the evolution of Microsoft 365 Copilot with Wave 2. Amongst the many new features was the launch of Copilot Pages. This innovative feature is the first step into the new evolution of Copilot which is set transforming how employees interact with Microsoft AI in a new collaborative environment.

    What are Copilot Pages?

    Copilot Pages is a dynamic, persistent canvas integrated into Copilot chat, designed to facilitate what Microsoft call “multiplayer AI collaboration”. It allows users to turn insightful Copilot responses into durable, editable content that can be shared with teams for further collaboration.

    “This is an entirely new work pattern – multiplayer, human to AI to human collaboration”.
    | Jared Spataro | VP of AI at Work | Microsoft.

    Copilot Pages -Key Features

    • Dynamic Collaboration: With Copilot Pages, employees can work directly with Copilot on a shared page, prompting and refining responses together as a team rather than individually in silos.
    • Persistent Canvas: The pages are persistent, meaning collaborative efforts are saved and can be revisited and edited at any time by anyone.
    • Team Learning: This feature encourages learning from each other’s prompts, enhancing the overall quality and depth of the information gathered.

    Getting Started with Copilot Pages in 5 Steps

    1. Access Copilot Pages: Open your Copilot chat and look for the new “Pages” tab. Click on it to create a new page or access existing ones.
    2. Create a New Page: Click on “New Page” to start a fresh canvas. You can name your page to keep your projects organized.
    3. Collaborate with Your Team: Invite team members to your page by sharing the link. Everyone can contribute by adding prompts, refining responses, and editing content.
    4. Save and Revisit: Your pages are automatically saved. You can revisit and edit them anytime, ensuring your collaborative efforts are always up-to-date.
    5. Share and Export: Once your page is finished, you can share it with others outside your team or export it for presentations, reports, or further analysis.

    Check out the Microsoft Video for more.

    Where are Copilot Pages Stored?

    Copilot Pages are .loop files stored in a new user-owned SharePoint Embedded container. IT Admins can manage these files using Loop admin switches and other governance tools. The feature supports various compliance and manageability capabilities, including GDPR compliance, Intune device management, and data loss prevention. IT admins manage these .loop files just like any other files (.docx, .pptx, .xlsx, etc.). They support all the features of the SharePoint file system, including everything detailed here

    Additional capabilities, such as programmatic API access for third-party tools, are expected in Q4 CY2024.

    Read more in the Copilot Admin Support Pages:

    Availability

    Copilot Pages is rolling out “later this month” for Microsoft 365 Copilot subscribers and will soon be available to all Microsoft 365 subscribers. Loop must be enabled in your environment.

    Do you have it in your Tennant yet?


    Announcing Copilot Wave 2: Exciting New Features and Enhancements

    This afternoon (16th September 2024), Microsoft passionately announced (almost 9 months after Copilot was officially available to any organisation) the latest updates coming to Microsoft 365 Copilot as part of what they are calling “Wave 2”. The 30-minute-long session, hosted by Microsoft CEO Satya Nadella and Jared- Spataro, unveiled a heap of new features, capabilities and performance enhancements were announced across the entire experience.

    Microsoft 365 Copilot (THIS IS NOW IT’S NEW OFFICIAL NAME) provides enterprise data protection, ensuring the same level of security and compliance protection as other services like files, SharePoint, and emails. Microsoft said that significant improvements have also been made to PowerPoint and Excel based on feedback, including the introduction of Python integration in Excel.

    Some of these things are “generally available” from today and others are coming in the next few weeks and months. – See the end.

    Evolving the purpose and role of Microsoft 365 Copilot

    Microsoft told today, how Copilot is evolving from an individual productivity assistant to a collaborative partner at work. Copilot can utilise various content sources such as files, chats, calendar invites, and emails to generate rich outputs based on the needs of the user and teams of people. You will have seen in the various demos how the product demos now showcase how Copilot facilitates collaboration and achieves outcomes, making both personal and teamwork more efficient and effective.

    They have also focussed lots on performance and stability enhancements with huge investments in their Azure Data Centres.

    Microsoft also wanted to ensure organisations know just how much they focus on providing the same level of enterprise data protection to Copilot as they have with files, email, SharePoint etc.

    So, here’s my pick of what’s new and most cool!

    1. Copilot Agents

    Microsoft is also broadening the definition of “agents“, ranging from personal AI assistants to fully autonomous agents. These agents span across a spectrum, from human-in-the-loop to fully autonomous.

    This is the top announcement for me, I think. Agents (aka Custom GPTs,) have been a very popular discussion with my customers. When Microsoft talks about agents, they use it in its broadest term with an agent being anything from an AI assistant helping you retrieve information right (a foundational agent capability), all the way to autonomous support agent, meaning the agent does not need a human to intervene for it or for it to be able to do its work. Wow Right!

    You will see Microsoft focusing on agents across the entire spectrum – giving organisations the ability to create agents using natural language to “support whatever custom business process you are trying to automate“. This will be going into public preview later this month Copilot Agent Builder will be part of Copilot Studio as I understand it.

    As an example, say an issue out in the field required further research and follow-up and the team keeps all their customer records from deployment info to maintenance reports on a SharePoint site. Like many organisations, there’s loads of valuable information stored here, but it takes ages to sift through it and find what is needed. Now with Copilot Agents, an agent can be built from any SharePoint site library or folder. It’s possible to create an agent with a single clip and in just a few seconds, your agent is ready to be used and shared with your team and it can be simply added to the department’s team’s chat.

    Once created, created agents can be customised and things like topics and knowledge can be enhanced as well as the actions it can take. These can be connected to third party apps such as Dynamics 365 Supply Chain Management.


    2. Copilot Pages – Powered by Loop

    This is the second biggest announcement and combines two of my favourite parts of Microsoft 365 – Copilot and Loop.

    Accessed through BizChat, Copilot Pages, allows users to create side-by-side pages for real-time collaboration. Built on Loop components, these pages enable multiple users to work together and update data simultaneously, enhancing teamwork and productivity.

    This can be used when you are working in BizChat – pulling Copilot’s response into a sharable canvas (Loop spaces) built for real-time multiplayer collaboration with Al. Copilot can then be used to improve and expand upon subject matter, build visualizations, and bring in additional content.

    Copilot Pages.

    Biz Chat will be the place where you can start and finish most of your work before you transition it to your format of choice. Within Biz Chat, you’ll also soon see a button to move the output to the final experience – says move to Outlook, move to Word, move to PowerPoint etc., but you can do all of the pre-work in Bizchat which Microsoft’s customers say is where they spend “most” of their time.

    3. Biz Chat Enhancements

    Copilot Biz Chat, will, as I discussed above have the ability to send output to the final app for you to finish your work. You’ll see a send to button making workflow faster and just feel smoother and more integrated.

    4. Utilising Email and Bizchat for Business Insights

    Copilot can now use email and Bizchat to identify patterns and information, recall similar situations, and access relevant content from various sources. This feature is designed to help discover strategies such as price reduction, promotional offers, and ad campaigns as example by reasoning over email and chat threads to help solve business challenges.

    5. Copilot in PowerPoint Improvements

    Copilot democratizes advanced features in Excel by allowing users to use natural language to access them. PowerPoint improvements include the ability to easily build custom narratives, sections, and flow within presentations. Branding options ensure consistency with company logos, fonts, colours, and styles. PowerPoint’s new narrative builder, with creative control over the flow, reordering topics, deleting unwanted ones, and adding new ones.

    Copilot helps create presentation outlines quickly, offering image suggestions from approved sources or AI-generated options. It designs slides in company branding with various layout choices.

    PowerPoint’s new features include adding picture notes to slides, built-in slide transitions, and animated text. These features help users create professional-looking presentations quickly and easily, using their own corporate-branded content.

    Leveraging corporate templates requires that marketing teams integrate their organisations branded assets into a SharePoint OAL (Organization Asset Library) in order to be able to create presentations with organisational images. This is scheduled for release in Q4 2024.

    6. Copilot in Word

    Copilot in Word has new features including (finally) allowing it to reason over more document sources including emails, chat, meeting content and files etc making this much easier to get documents created while referencing multiple sources of information.

    7. Copilot Enhancements in Teams

    Improvements are coming to Teams based on user feedback. Copilot can now reason over chat in addition to meeting transcriptions. This entered public preview today.

    8. Copilot in Outlook Improvements

    Outlook’s new Copilot feature, ‘Prioritise my inbox’, organises emails based on topics, keywords, and important people. It identifies important contacts like your boss and their boss, enhancing email organisation and efficiency.

    Since Copilot can reference emails, meetings and attachments as well as knowing who your colleagues are when you are drafting it can save a huge amount of time as it understands the context in which you are working. This new feature is rolling out now, with early access for some insider rings.

    Summary

    As I am sure you are, I am excited about these new features (and there’s still more to come) and improvements and look forward to your feedback on the announcements.

    In summary, here’s what was announced again and when it will be available (according to Microsoft).

    Image/Table – (C) Microsoft.

    Are there things you were expecting to hear about but didn’t?
    Oh and if I missed anything, let me know!!!

    Copilot: Good habit forming tips to see value every day.

    What’s one of the biggest stumbling blocks to incorporating AI tools like ChatGPT and of course Microsoft Copilot into daily work? Well, I can tell you that from first-hand experience is it not knowing how or when to use it. In this blog I’ll explore a few scenarios where I believe anyone with a Copilot License can start seeing real tangible value from GenAI today.

    What is Copilot in Microsoft 365?

    I’m hoping by now that I don’t actually need to answer that one, but… In short Copilot for Microsoft 365 is Microsoft’s Generative AI chat bot, that is grounded (meaning it has access to) your Microsoft email, chat, documents and more and is also integrated (natively) into all your Microsoft 365 apps and services like Word, Excel, Teams, Outlook, Loop etc.

    The goal of Microsoft 365 Copilot is to make us all more productive and creative what ever job we do and results from many of the customers we have been working with this past 12 months is impressive.

    Overcoming the adoption hurdle

    The biggest hurdle to getting regular and good results with Copilot is actually not what the tool can do or can’t, the expertise around ‘good prompting‘, as important as it is, but is in fact, realising the benefits of making Copilot part of everything you do through habit forming.

    To do this, we need to get into the habit of using Copilot every day to really see the value we get from it little by little. many of our customers have this same problem and it’s not a Copilot thing, it’s a new technology thing. We are all so busy doing our jobs that many don’t have time to learn new things or try new ways of working.

    Good adoption and successful use of any technology requires some input and perseverance from us as users. As we realise the value, we use these technologies more and the value we get from increases exponentially. Think about the first time a company introduced a word processor in place of a typewriter for example!

    Adoption and Change Management, whether run internally (as part of any technology deployment) makes a huge difference to successful deployment and Copilot is a big change in how people work and what it can do, so it does need to be handled that way. Stats show that technology projects that have a proper adoption and change programme linked to them are significantly more likely to deliver the desired return on investment. According to Microsoft, proper change management can lead to 85% of users finding tools like Copilot helpful in getting to a good first draft faster.

    Adoption and change management is not just training (though that is of course part of it). Its about helping people learn the tools within their roles, to see the benefits and to tell/show other team members so they learn and benefit together. At Cisilion, we know (first hand) and through the dozens of customers we are working with that one of the primary blockers to adoption of Microsoft Copilot is simply not knowing how or when to use it and so simply “forgetting about it”.

    My Copilot Hero Scenarios

    What follows next is 3 (three) Copilot for Microsoft scenarios that I use all the time that I can honestly say have become habit forming for me and many of my team.

    1. Goodbye Internet Search: Firstly, I very rarely now ever use internet search to find information. Both in work and personal life, whenever I need to find information about something I turn to Copilot. Whether I’m looking at finding out about a new product, event, news story or whether it’s in my personal life, Copilot just gives me the details I need in seconds rather than giving me a page of search results which I have to sift through manually to see what is relevant. If you use SharePoint at work – this becomes even more powerful!
    2. Email and Meetings (and calls): These are definitely the biggest use cases for Copilot in my daily routine. I simply don’t work or handle email and meetings in the same way anymore. One of the things Copilot can do really well is summarise what’s in my inbox and prioritise requests and things that need my attention – especially If I have been away for a few days. The same goes for meetings. I can pay more attention “in” meetings and have Copilot tackle notes for me, summarise things or even check things for me.

      Copilot can summarise actions, clarify points, and what is really cool is that it can do this for me even if I can’t actually attend the meeting (through a new feature called “Follow a Meeting“. Copilot in Outlook can summarise long email threads and can even draft replies for me in a professional manner so all I have to do is edit and refine before clicking send. Copilot also works on phone calls if you have Teams Phone by the way!
    3. My Goto First: Copilot is the first place I go when I have a document, presentation or other document to read or reference. What do I mean by that?

    Like us all, I get sent a lot of documents to read, review and comment on. I am now in a habit (I think it’s a good one) of using Copilot as my assistant as my first point of call every time. I always ask Copilot to summarise the document (Word does this automatically now when you open a document) so I can quickly understand the key points of the document before I read it more deeply. This is useful for getting up to speed quickly, determining if I need to read it (guess what – sometimes I don’t) or to help me understand the theme as I do read it. I also use Copilot to ask questions about a document (PDF, Word, PowerPoint etc).

    I can also ask Copilot questions about the document such as, “does this business case make a clear and strong argument“, or “what is the financial impact of this proposal“, or what risks have been identified in this project plan“, etc. I can use Copilot to help me spot gaps, or areas that the author might have overlooked or omitted. I can also ask Copilot to summarise things I do not understand in a simpler language or to help me get a new perspective on something.

    Summary

    Using any new tool, like Copilot sometimes takes time to realise the true value and power of what it can do. Working with Gen AI like Copilot is as revolutionary as the internet was back in the 90s. Many doubted it and now the world would stop without it.

    If you are lucky enough to have a Copilot for Microsoft 365 license, then I suggest you try the above. Use it every day and share your successes with your peers. If you don’t have an adoption and training team in house, then reach out to a partner for help, check out the adoption hub at Microsoft or get some ideas from my other blogs, or from YouTube 🙂

    Remember, think about and push Copilot to help you get more value at work and at home. Before starting any task, such as a presentation, meeting minutes or follow-up or research, think “Can Copilot help me here?

    Yes – there’s a bit of a learning curve, but the effort you in will be worth it (IMO).

    Some video links…

    I have a growing handful of use case and scenario videos I am happy to share below… Hope you find the useful. If you do.. Let me know.

    https://youtube.com/@robquickendenmvp?si=8s9NGjjwfGEkLPSZ

    Navigating the Aftermath of the CrowdStrike Cybersecurity Outage: Insights and Strategies

    I run a monthly fireside chat panel discussion with IT and Business leaders from a handful of our Cisilion customers. Today, we talked about the outage and reflected on if, can and what we, the industry and our vendors need to do to minimise/prevent this vast impact happening again.

    If you missed the "show" - you can watch it below.
    September 2024 – Cisilion Fireside Chat

    In our September 2024, fireside chat, our panel and I delved into the significant impact and lessons that can be learned from the CrowdStrike outage in July which is estimated to have cost more than $10B US and affected more than 8.5 million Windows devices when CrowdStrike distributed a faulty configuration update for its Falcon sensor software running on Windows PCs and servers.

    This update featured a “modification” to a configuration file which was responsible for screening named pipes [Channel File 291]. The faulty update caused an out-of-bounds memory read in the Windows sensor client that resulted in an invalid page fault. The update caused machines to either enter into a bootloop or boot into recovery mode.

    Today’s fireside chat conversation covered a range of topics, from the immediate effects of the outage to long-term strategies for enhancing cybersecurity resilience.

    The Immediate Impact of the CrowdStrike Outage

    The panel began by addressing the widespread disruption caused by the CrowdStrike outage. We discussed the outage’s extensive reach, affecting millions of devices and various sectors, including healthcare, finance, and transportation. In my intro to the episode, I mentioned that “It was really hard to believe…such a small relatively trivial and small update could impact so many people, devices and organisations“. This set the stage for a deeper exploration of the outage’s implications on cybersecurity practices.

    As we kicked off, I praised the collaboration between Microsoft and CrowdStrike in addressing the outage. He mentioned that despite initial blame-shifting in the media, there was a concerted effort to resolve the issue, showcasing the importance of vendor cooperation in crisis management. The panel in short didn’t think there was much more Microsoft could have done – the key was updates and openness which is so critical in a global issue like this – as people and businesses need updates and answers as well as help in restoring systems which both Microsoft and CrowdStrike did in drones.

    Vendor Reliance and Preparedness

    Ken Dickie (Chief Information and Transformation Officer at Leathwaite), emphasised the importance of incident management and the worlds’ reliance on third-party and cloud providers. He shared his insights into the challenges of controlling the fix and the revelation of technology’s utility nature to leadership teams stating that it can be hard to explain to “IT” on “how little control we had over the actual fix“. Matthew Wallbridge (Chief Digital and Information Officer at Hillingdon Council) echoed the sentiment, stressing the need for preparedness and the role of people in cybersecurity, stating, “It’s less about the technology, it’s more about people.”

    Supply Chain Risks

    Matthew raised concerns about supply chain risks, highlighting recent attacks on media and the need for better understanding and mitigation strategies. This part of the discussion underscored the interconnected nature of cybersecurity and the potential vulnerabilities within the supply chain.

    Goher Mohammed (Group Head of InfoSec at L&Q Group.) mentioned the impact on their ITSM due to vendor reliance in the supply chain, which degraded their service, emphasising the need for resilience and contingency plans. This led to further discussions about how important understanding the importance of the Supply Chain validation is in our security and disaster recovery planning and co-ordination. Matt talked frequently about “control the controllable” but ask the right questions to the ones (vendors) you can’t control. Goher said that whilst L&Q were not directly affected, they did experience “degraded service due to supply chain impacts“, emphasising the need for resilience and contingency plans and review of that of their supply chain(s).

    Resilience and Disaster Recovery Planning

    The conversation then shifted to strategies for enhancing resilience. Here I discussed how we at Cisilion are revisiting our own disaster recovery plans to include scenarios like the Crowdstrike outage.

    We discussed a lot about the cost of resilience and that there is a “limit” to what you can mitigate against before the cost skyrockets out of control with very little reduction in risk. It was agreed there are many things that can’t “easily” be mitigated in this particular scenario, but that we can be better prepared.

    The panel talked about various strategies that “could be considered” including recovering to “on-prem”, re-visiting the considerations around multi-cloud strategies and the potential benefits of edge computing in mitigating risks associated with device reliance.

    We also discussed whether leveraging technologies such as Cloud PCs, and Virtual Desktops have a part to play in recovery and preparation as well as whether using Bring Your Own Devices would/could/should be a bigger part of our IT and desktop strategy, along with, of course SASE technology to secure access.

    Goher advised “do a real audit, understand the most critical assets, the impact they have further down the line and whether there is more that can be done to mitigate against outage/failure/issue“. This led us into an interesting side discussion around Secure Access Service Edge (SASE) – emphasising the “importance of not relying on trusted devices alone”.

    The Human Aspect of IT Incidents

    David Maskell (Head of IT and Information Security at Thatcham Research) brought a crucial perspective to the discussion, focusing on the human aspect of IT incidents. He reminded the audience of the importance of supporting IT teams during crises, highlighting the stress and pressure they face. The panel agreed with David, all of whom emphasised the importance of ensuring teams are looked after, highlighting the human aspect of managing IT incidents especially when things are not directly controllable (such with Cloud outages) and the need for good, solid communications to the business.

    Ken also reflected on leadership’s reaction to the outage, emphasising the “gap in understanding the reliance on technology” that many business leaders (especially those not from a techy background) have”. The days of “it’s with IT to fix” are clearly not as simple as they once were!

    Conclusion: The Path Forward

    As we concluded the discussion, the panel dwelled over the lessons and tips to offer viewers, each other and the industry.

    In general the guidance acoss the panel were around

    1. The importance of regular security reviews, external audits, and business continuity testing.
    2. The need to adopt a proactive stance around cyber security and technology outages, ensuring that their teams are prepared (they run testing and attack/outage simulations).
    3. Ask more questions of your supply chains – they may be your weakest link. Are they secure, and are their recovery plans robust?
    4. Map your critical systems and know the impact on an outage – what is the continuity plan – if devices are affected, how can people access your technology – look at Cloud PCs (such as Windows 365), can you support the use of personal devices (look at SASE technologies such as Cisco Secure Connect)
    5. Review your technology dependencies. It’s not necessarily about multi-vendor but this might be a consideration – even for backup.

    In summary, the CrowdStrike outage serves as a stark reminder of the vulnerabilities inherent in our reliance on technology and the critical need for comprehensive cybersecurity strategies.

    Microsoft Copilot “Wave 2” is coming…

    Copilot Wave 2

    Mark your calendars for September 16th, as Microsoft is set to unveil the next phase of Copilot innovation!

    Hosted by CEO Satya Nadella and VP of AI at Work Jared Spataro, this short event promises to showcase the next phase of what will continue to evolve the Copilot revolution, which will further see the evolution of what is becoming a game-changer for businesses and tech enthusiasts alike.

    What to expect.

    There a bunch of things I am expecting to see based on the agenda, the Microsoft 365 Roadmap and other Microsoft posts and community updates. As such here’s what I’m hoping we hear about.

    • Rebranding and New Features: it will be  goodbye to “Copilot in Word” and hello to “Microsoft 365 Copilot in Word”. Yes the kind of re brand and renaming have already announced they are rebranding its Copilot products in a goal  to provide a more cohesive experience and consistency in naming. We have already seen this change from Microsoft 365 Copilot to Microsoft Copilot in Microsoft 365…
    • New Business-Focused Enhancements: With a focus on the business side of Microsoft’s Copilot offerings, they will focus on real life example of how these AI tools can revolutionise the way companies operate with an increased focus on smaller businesses along with enhancement for large enterprises.
    • From Preview to Release: we expect some of the services like Copilot in Excel to finally become “available” after being in preview for a year, updates to PowerPoint and for Team Copilot to go into public preview and more of the roadmap features to start rolling out such as scheduled prompts and proactive catchup.
    • Copilot Pro for consumer: I’m hoping to see updates and new features to Copilot Pro Updates. While details are still “under wraps” , I  anticipate new features will be announced such as being able to reference files (something Copilot in Microsoft 365 already does) and maybe deeper integration into other apps to  make this £19 monthly subscription more worth it.

    Registering for the event.

    The event is live (and will be available on demand) so to make sure you do not miss out on this chance to elevate your understanding of AI and its potential, Register below.

    • Date: September 16th 2024
    • Time: 8 AM PT / 11 AM ET / 4 PM UK
    • Platform: LinkedIn

    https://www.linkedin.com/events/7236780403867443202/


    Read the Copilot Public Roadmap: https://www.microsoft.com/en-us/microsoft-365/roadmap?filters=Microsoft%20Search%2CMicrosoft%20Copilot%20(Microsoft%20365)


    Copilot+ PCs: A Game Changer for Businesses?

    Back in May, Microsoft unveiled the next generation of PCs with the Copilot + PC which was released for consumers. Today (4th September 2024), Microsoft has once again set a new benchmark with the introduction of Copilot+ PCs for Business users.

    Like their consumer counter parts, these next generation “AI devices”, which include the Surface Pro 11th Edition and Surface Laptop 7th Edition, are designed to revolutionise productivity and creativity in the business world. Copilot+ PCs are also shipping from other OEMs such as Dell, Lenovo, Acer, HP etc.

    Copilot+ PCs are equipped with the most powerful Neural Processing Units (NPUs) available for Windows PCs, delivering blazing-fast processing power. This allows businesses users to handle the toughest tasks with ease, up to 90% faster than previous models. The integration of advanced AI features, such as live captions and real-time translations, ensures that your team can work smarter and more efficiently.

    This blog, re-dives into the main differences between Copilot+ PCs and “non-Copilot PCs”, the improvements over previous models, and why these advancements are crucial for businesses and aims to answer the “why now” questions.

    Copilot+ PCs vs. Non-Copilot PCs

    1. AI Integration:
      • Copilot+ PCs: These devices are equipped with advanced AI capabilities, thanks to the Neural Processing Unit (NPU) that can handle up to 45 trillion operations per second (TOPS). This allows for efficient AI processing directly on the device, reducing latency and improving performance. These enable new AI workloads and functions within many applications to be enabled and powered by these new NPUs.
      • Non-Copilot PCs: Traditional PCs rely more on cloud-based AI processing (since they did not have NPUs), or required the CPU to do the grunt work, which can slow down performance and is dependent on internet connectivity.
    2. Performance:
    3. Connectivity:

    Power, Performance, Productivity

    This is the “why now” for Copilot+ PCs. More than just a device refresh, this new class of devices brings exceptional performance, never seen before battery life and the fastest application performance on Windows to date.

    1. Enhanced Performance: The new Copilot+ PCs feature significant performance upgrades with the Snapdragon® X Elite and X Plus processors. These processors not only boost productivity but also enhance AI processing capabilities, making them ideal for modern business applications.
    2. Incredible Battery Life: Surface Laptop 7th Edition offers up to 22 hours of battery life, a substantial improvement over previous models. This extended battery life ensures that professionals can work longer without needing to recharge, enhancing productivity on the go. Surface Pro 10 offers more than 18 hours in tests.
    3. Blazing App Performance: Microsoft has dedicated significant resources to the developer ecosystem, ensuring seamless performance for both native and emulated apps on Windows on Arm (WoA). The new Prism emulation engine further enhances performance and reduces CPU usage for emulated apps, surpassing even native apps on earlier models.
    4. Built around the user – Surface Copilot+ PCs provide a seamless and intuitive experience. These devices come with features like adaptive colour, optional OLED and HDR displays, and a flexible kickstand (Surface Pro) making them adaptable to any work environment. The all-day battery life (up to 22 hrs) ensures that your people stay productive without frequent interruptions.

    Copilot+ PCs – Why Now?

    1. Productivity and Efficiency: The AI capabilities of Copilot+ PCs enable businesses to automate routine tasks, analyse data more efficiently, and make informed decisions faster. This leads to increased productivity and operational efficiency.
    2. Security: Copilot+ PCs come with advanced security features, including the Microsoft Pluton security processor and Windows Hello biometric authentication. Together these provide robust protection against both physical and digital threats and work seemlessly with your device management tools such as Intune. This comprehensive security framework ensures that your data remains safe and easily managed across the organisation. These enhanced security measures in Copilot+ PCs provide a higher level of protection, making them a more secure choice for businesses handling sensitive data.
    3. Flexibility and Mobility: With optional 5G connectivity and extended battery life, Copilot+ PCs allow professionals to work from anywhere without compromising on performance or security. This flexibility is crucial in today’s hybrid work environment.
    4. Developer Support: The Windows Copilot Runtime and the availability of on-device AI models make it easier for developers to integrate AI into their applications. This fosters innovation and allows businesses to leverage AI-driven solutions tailored to their specific needs. Aspects such as Windows Studio Effects that bring Background Blur, Automatic Framing and Voice Focus, Portrait Light, Creative Filters and Eye Contact Teleprompter, can be invoked by developers directly in their applications without having to create models or develop the code.
    5. Future Proofed Investment : As businesses increasingly turn to AI to innovate, having the right hardware is crucial. Surface Copilot+ PCs are built to scale and adapt as AI capabilities evolve, ensuring that your investment remains relevant and valuable. These devices support local development and execution of AI models, providing the agility needed to stay competitive.

    What SKUs are available?

    As discussed, there are two standout devices – Laptop 7, Pro 11 and the Surface Pro 5G. Here are the key specs and features from a hardware perspective to note:

    Surface Laptop 7

    • Launch Date: 12th September 2024
    • Size Options: 13.5″ and 15″
    • Processors: Snapdragon® X Plus / Snapdragon® X Elite
    • NPU: Qualcomm® Hexagon™ (45 TOPs)
    • Graphics: Qualcomm® Adreno™ GPU
    • Cameras: AI enhanced 1440p Quad HD front-facing Surface Studio camera with ultrawide field of view
    • NFC – Allows use of the built-in NFC reader to sign in with an NFC security key.
    • Copilot Key: Yes – for quick access to Copilot in Windows 11

    Surface Pro 11

    • Launch Date: 12th September 2024
    • Processors: Snapdragon® X Plus / Snapdragon® X Elite
    • NPU: Qualcomm® Hexagon™ (45 TOPs)
    • Graphics: Qualcomm® Adreno™ GPU
    • Cameras: AI enhanced 1440p Quad HD front-facing Surface Studio camera with ultrawide field of view
    • NFC – Allows use of the built-in NFC reader to sign in with an NFC security key.
    • Copilot Key: Yes – for quick access to Copilot in Windows 11
    • Options: New flex Premium keyboard designed to be used either attached to your Pro for the ultimate laptop set-up or detached as a standalone keyboard for a new level of flexibility.

    New Surface Pro 5G

    • Launch Date: October 2024
    • CPU Options: Available with Intel I5/I7 and Snapdragon X Plus / Snapdragon® X Elite
    • NPU: Qualcomm® Hexagon™ (45 TOPs)/ Intel AI boost
    • Graphics: Qualcomm® Adreno™ GPU / Intel graphics
    • Copilot key: Key – for quick access to Copilot in Windows 11
    • Cameras: AI enhanced 1440p Quad HD front-facing Surface Studio camera with ultrawide field of view
    • NFC– Allows use the built-in NFC reader to sign in with an NFC security key.

    Conclusion

    Surface Copilot+ PCs stand out due to their advanced AI integration and superior performance. Unlike non-Copilot+ PCs, which may lack dedicated NPUs, Copilot+ PCs offer specialised hardware designed to handle AI tasks efficiently. This results in faster processing times and more accurate AI-driven features.

    Video (c) Microsoft

    Surface Copilot+ PCs are not just another piece of hardware; they are a strategic investment in your business’s future. By equipping your team with these advanced devices, you can unlock new levels of productivity, security, and innovation, positioning your business for success in an AI-driven world.


    You can read more, from Microsoft in the latest community blog update which you can access below: https://techcommunity.microsoft.com/t5/surface-it-pro-blog/accelerate-ai-transformation-with-surface-pro-and-surface-laptop/ba-p/4227521?wt.mc_id=MVP_309187

    Windows 11 August (optional) Update: What is new….


    As we wait for the big 24H2 update due this autumn, Microsoft has quietly rolled out an optional update (going by the name KB5041587) for Windows 11, bringing a host of improvements and new features.

    While this update is not mandatory, it does offer several enhancements that make it worth installing (especially if you have a PC powered by an AMD CPU).

    Overall, the KB5041587 update for Windows 11 brings a range of valuable enhancements for users who frequently share files with Android devices, includes improvements to Narrator, voice typing, and File Explorer.

    Here’s a breakdown of what this update entails and why you might want to install it.

    Performance Boosts for AMD CPUs

    One of the most notable improvements in the KB5041587 update is the performance boost for AMD’s latest CPUs. Users with Ryzen 5000, 7000, and 9000 series processors with up to a 13 percent increase in performance.

    This enhancement addresses the previously disappointing performance of these CPUs, making it a significant update for AMD users.

    Enhanced File Sharing with Android Devices

    This update introduces a new feature that allows users to send files directly to an Android phone via Windows Share.

    Unlike Nearby Sharing, the Android device does not need to be in close proximity to the PC. Instead, it just needs to be paired via Phone Link.

    This feature simplifies the process of transferring photos and documents, making it more convenient and efficient.

    Improvements to Narrator and Voice Typing

    Windows 11’s Narrator feature, which reads out loud the contents of documents and websites, has received improvements in speed and accuracy.

    These enhancements are particularly noticeable when using the Edge browser and reading large documents.

    Additionally, voice typing has been optimized to allow for faster spelling of characters and more commands for text manipulation.

    Bug Fixes in File Explorer

    Several bugs in File Explorer have been addressed in this update. Issues such as the Ctrl + F keyboard shortcut not starting a search and the Shift + Tab shortcut losing keyboard focus have been fixed.

    These fixes contribute to a smoother and more reliable user experience when navigating and managing files.

    Installing the update

    Unlike the regular security and fix updates, the KB5041587 update must be manually installed.

    If you wish to install this one, you will need to navigate to Settings > Windows Update and select the update for installation. This manual process ensures that users have control over whether they want to incorporate these new features and fixes.