Microsoft yesterday, announced the next stage of the evolution of Microsoft 365 Copilot with Wave 2. Amongst the many new features was the launch of Copilot Pages. This innovative feature is the first step into the new evolution of Copilot which is set transforming how employees interact with Microsoft AI in a new collaborative environment.
What are Copilot Pages?
Copilot Pages is a dynamic, persistent canvas integrated into Copilot chat, designed to facilitate what Microsoft call “multiplayer AI collaboration”. It allows users to turn insightful Copilot responses into durable, editable content that can be shared with teams for further collaboration.
“This is an entirely new work pattern – multiplayer, human to AI to human collaboration”. | Jared Spataro | VP of AI at Work | Microsoft.
Copilot Pages -Key Features
Dynamic Collaboration: With Copilot Pages, employees can work directly with Copilot on a shared page, prompting and refining responses together as a team rather than individually in silos.
Persistent Canvas: The pages are persistent, meaning collaborative efforts are saved and can be revisited and edited at any time by anyone.
Team Learning: This feature encourages learning from each other’s prompts, enhancing the overall quality and depth of the information gathered.
Getting Started with Copilot Pages in 5 Steps
Access Copilot Pages: Open your Copilot chat and look for the new “Pages” tab. Click on it to create a new page or access existing ones.
Create a New Page: Click on “New Page” to start a fresh canvas. You can name your page to keep your projects organized.
Collaborate with Your Team: Invite team members to your page by sharing the link. Everyone can contribute by adding prompts, refining responses, and editing content.
Save and Revisit: Your pages are automatically saved. You can revisit and edit them anytime, ensuring your collaborative efforts are always up-to-date.
Share and Export: Once your page is finished, you can share it with others outside your team or export it for presentations, reports, or further analysis.
Check out the Microsoft Video for more.
Where are Copilot Pages Stored?
Copilot Pages are .loop files stored in a new user-owned SharePoint Embedded container. IT Admins can manage these files using Loop admin switches and other governance tools. The feature supports various compliance and manageability capabilities, including GDPR compliance, Intune device management, and data loss prevention. IT admins manage these .loop files just like any other files (.docx, .pptx, .xlsx, etc.). They support all the features of the SharePoint file system, including everything detailed here.
Additional capabilities, such as programmatic API access for third-party tools, are expected in Q4 CY2024.
Copilot Pages is rolling out “later this month” for Microsoft 365 Copilot subscribers and will soon be available to all Microsoft 365 subscribers. Loop must be enabled in your environment.
This afternoon (16th September 2024), Microsoft passionately announced (almost 9 months after Copilot was officially available to any organisation) the latest updates coming to Microsoft 365 Copilot as part of what they are calling “Wave 2”. The 30-minute-long session, hosted by Microsoft CEO Satya Nadella and Jared- Spataro, unveiled a heap of new features, capabilities and performance enhancements were announced across the entire experience.
Microsoft 365 Copilot (THIS IS NOW IT’S NEW OFFICIAL NAME) provides enterprise data protection, ensuring the same level of security and compliance protection as other services like files, SharePoint, and emails. Microsoft said that significant improvements have also been made to PowerPoint and Excel based on feedback, including the introduction of Python integration in Excel.
Some of these things are “generally available” from today and others are coming in the next few weeks and months. – See the end.
Evolving the purpose and role of Microsoft 365 Copilot
Microsoft told today, how Copilot is evolving from an individual productivity assistant to a collaborative partner at work. Copilot can utilise various content sources such as files, chats, calendar invites, and emails to generate rich outputs based on the needs of the user and teams of people. You will have seen in the various demos how the product demos now showcase how Copilot facilitates collaboration and achieves outcomes, making both personal and teamwork more efficient and effective.
They have also focussed lots on performance and stability enhancements with huge investments in their Azure Data Centres.
Microsoft also wanted to ensure organisations know just how much they focus on providing the same level of enterprise data protection to Copilot as they have with files, email, SharePoint etc.
So, here’s my pick of what’s new and most cool!
1. Copilot Agents
Microsoft is also broadening the definition of “agents“, ranging from personal AI assistants to fully autonomous agents. These agents span across a spectrum, from human-in-the-loop to fully autonomous.
This is the top announcement for me, I think. Agents (aka Custom GPTs,) have been a very popular discussion with my customers. When Microsoft talks about agents, they use it in its broadest term with an agent being anything from an AI assistant helping you retrieve information right (a foundational agent capability), all the way to autonomous support agent, meaning the agent does not need a human to intervene for it or for it to be able to do its work. Wow Right!
You will see Microsoft focusing on agents across the entire spectrum – giving organisations the ability to create agents using natural language to “support whatever custom business process you are trying to automate“. This will be going into public preview later this month Copilot Agent Builder will be part of Copilot Studio as I understand it.
As an example, say an issue out in the field required further research and follow-up and the team keeps all their customer records from deployment info to maintenance reports on a SharePoint site. Like many organisations, there’s loads of valuable information stored here, but it takes ages to sift through it and find what is needed. Now with Copilot Agents, an agent can be built from any SharePoint site library or folder. It’s possible to create an agent with a single clip and in just a few seconds, your agent is ready to be used and shared with your team and it can be simply added to the department’s team’s chat.
Once created, created agents can be customised and things like topics and knowledge can be enhanced as well as the actions it can take. These can be connected to third party apps such as Dynamics 365 Supply Chain Management.
2. Copilot Pages – Powered by Loop
This is the second biggest announcement and combines two of my favourite parts of Microsoft 365 – Copilot and Loop.
Accessed through BizChat, Copilot Pages, allows users to create side-by-side pages for real-time collaboration. Built on Loop components, these pages enable multiple users to work together and update data simultaneously, enhancing teamwork and productivity.
This can be used when you are working in BizChat – pulling Copilot’s response into a sharable canvas (Loop spaces) built for real-time multiplayer collaboration with Al. Copilot can then be used to improve and expand upon subject matter, build visualizations, and bring in additional content.
Biz Chat will be the place where you can start and finish most of your work before you transition it to your format of choice. Within Biz Chat, you’ll also soon see a button to move the output to the final experience – says move to Outlook, move to Word, move to PowerPoint etc., but you can do all of the pre-work in Bizchat which Microsoft’s customers say is where they spend “most” of their time.
3. Biz Chat Enhancements
Copilot Biz Chat, will, as I discussed above have the ability to send output to the final app for you to finish your work. You’ll see a send to button making workflow faster and just feel smoother and more integrated.
4. Utilising Email and Bizchat for Business Insights
Copilot can now use email and Bizchat to identify patterns and information, recall similar situations, and access relevant content from various sources. This feature is designed to help discover strategies such as price reduction, promotional offers, and ad campaigns as example by reasoning over email and chat threads to help solve business challenges.
5. Copilot in PowerPoint Improvements
Copilot democratizes advanced features in Excel by allowing users to use natural language to access them. PowerPoint improvements include the ability to easily build custom narratives, sections, and flow within presentations. Branding options ensure consistency with company logos, fonts, colours, and styles. PowerPoint’s new narrative builder, with creative control over the flow, reordering topics, deleting unwanted ones, and adding new ones.
Copilot helps create presentation outlines quickly, offering image suggestions from approved sources or AI-generated options. It designs slides in company branding with various layout choices.
PowerPoint’s new features include adding picture notes to slides, built-in slide transitions, and animated text. These features help users create professional-looking presentations quickly and easily, using their own corporate-branded content.
Leveraging corporate templates requires that marketing teams integrate their organisations branded assets into a SharePoint OAL (Organization Asset Library) in order to be able to create presentations with organisational images. This is scheduled for release in Q4 2024.
6. Copilot in Word
Copilot in Word has new features including (finally) allowing it to reason over more document sources including emails, chat, meeting content and files etc making this much easier to get documents created while referencing multiple sources of information.
7. Copilot Enhancements in Teams
Improvements are coming to Teams based on user feedback. Copilot can now reason over chat in addition to meeting transcriptions. This entered public preview today.
8. Copilot in Outlook Improvements
Outlook’s new Copilot feature, ‘Prioritise my inbox’, organises emails based on topics, keywords, and important people. It identifies important contacts like your boss and their boss, enhancing email organisation and efficiency.
Since Copilot can reference emails, meetings and attachments as well as knowing who your colleagues are when you are drafting it can save a huge amount of time as it understands the context in which you are working. This new feature is rolling out now, with early access for some insider rings.
Summary
As I am sure you are, I am excited about these new features (and there’s still more to come) and improvements and look forward to your feedback on the announcements.
In summary, here’s what was announced again and when it will be available (according to Microsoft).
Image/Table – (C) Microsoft.
Are there things you were expecting to hear about but didn’t? Oh and if I missed anything, let me know!!!
What’s one of the biggest stumbling blocks to incorporating AI tools like ChatGPT and of course MicrosoftCopilot into daily work? Well, I can tell you that from first-hand experience is it not knowing how or when to use it. In this blog I’ll explore a few scenarios where I believe anyone with a Copilot License can start seeing real tangible value from GenAI today.
What is Copilot in Microsoft 365?
I’m hoping by now that I don’t actually need to answer that one, but… In short Copilot for Microsoft 365 is Microsoft’s Generative AI chat bot, that is grounded (meaning it has access to) your Microsoft email, chat, documents and more and is also integrated (natively) into all your Microsoft 365 apps and services like Word, Excel, Teams, Outlook, Loop etc.
The goal of Microsoft 365 Copilot is to make us all more productive and creative what ever job we do and results from many of the customers we have been working with this past 12 months is impressive.
Overcoming the adoption hurdle
The biggest hurdle to getting regular and good results with Copilot is actually not what the tool can do or can’t, the expertise around ‘good prompting‘, as important as it is, but is in fact, realising the benefits of making Copilot part of everything you do through habit forming.
To do this, we need to get into the habit of using Copilot every day to really see the value we get from it little by little. many of our customers have this same problem and it’s not a Copilot thing, it’s a new technology thing. We are all so busy doing our jobs that many don’t have time to learn new things or try new ways of working.
Good adoption and successful use of any technology requires some input and perseverance from us as users. As we realise the value, we use these technologies more and the value we get from increases exponentially. Think about the first time a company introduced a word processor in place of a typewriter for example!
Adoption and Change Management, whether run internally (as part of any technology deployment) makes a huge difference to successful deployment and Copilot is a big change in how people work and what it can do, so it does need to be handled that way. Stats show that technology projects that have a proper adoption and change programme linked to them are significantly more likely to deliver the desired return on investment. According to Microsoft, proper change management can lead to 85% of users finding tools like Copilot helpful in getting to a good first draft faster.
Adoption and change management is not just training (though that is of course part of it). Its about helping people learn the tools within their roles, to see the benefits and to tell/show other team members so they learn and benefit together. At Cisilion, we know (first hand) and through the dozens of customers we are working with that one of the primary blockers to adoption of Microsoft Copilot is simply not knowing how or when to use it and so simply “forgetting about it”.
My Copilot Hero Scenarios
What follows next is 3 (three) Copilot for Microsoft scenarios that I use all the time that I can honestly say have become habit forming for me and many of my team.
Goodbye Internet Search: Firstly, I very rarely now ever use internet search to find information. Both in work and personal life, whenever I need to find information about something I turn to Copilot. Whether I’m looking at finding out about a new product, event, news story or whether it’s in my personal life, Copilot just gives me the details I need in seconds rather than giving me a page of search results which I have to sift through manually to see what is relevant. If you use SharePoint at work – this becomes even more powerful!
Email and Meetings (and calls): These are definitely the biggest use cases for Copilot in my daily routine. I simply don’t work or handle email and meetings in the same way anymore. One of the things Copilot can do really well is summarise what’s in my inbox and prioritise requests and things that need my attention – especially If I have been away for a few days. The same goes for meetings. I can pay more attention “in” meetings and have Copilot tackle notes for me, summarise things or even check things for me.
Copilot can summarise actions, clarify points, and what is really cool is that it can do this for me even if I can’t actually attend the meeting (through a new feature called “Follow a Meeting“. Copilot in Outlook can summarise long email threads and can even draft replies for me in a professional manner so all I have to do is edit and refine before clicking send. Copilot also works on phone calls if you have Teams Phone by the way!
My Goto First: Copilot is the first place I go when I have a document, presentation or other document to read or reference. What do I mean by that?
Like us all, I get sent a lot of documents to read, review and comment on. I am now in a habit (I think it’s a good one) of using Copilot as my assistant as my first point of call every time. I always ask Copilot to summarise the document (Word does this automatically now when you open a document) so I can quickly understand the key points of the document before I read it more deeply. This is useful for getting up to speed quickly, determining if I need to read it (guess what – sometimes I don’t) or to help me understand the theme as I do read it. I also use Copilot to ask questions about a document (PDF, Word, PowerPoint etc).
I can also ask Copilot questions about the document such as, “does this business case make a clear and strong argument“, or “what is the financial impact of this proposal“, or “what risks have been identified in this project plan“, etc. I can use Copilot to help me spot gaps, or areas that the author might have overlooked or omitted. I can also ask Copilot to summarise things I do not understand in a simpler language or to help me get a new perspective on something.
Summary
Using any new tool, like Copilot sometimes takes time to realise the true value and power of what it can do. Working with Gen AI like Copilot is as revolutionary as the internet was back in the 90s. Many doubted it and now the world would stop without it.
If you are lucky enough to have a Copilot for Microsoft 365 license, then I suggest you try the above. Use it every day and share your successes with your peers. If you don’t have an adoption and training team in house, then reach out to a partner for help, check out the adoption hub at Microsoft or get some ideas from my other blogs, or from YouTube 🙂
Remember, think about and push Copilot to help you get more value at work and at home. Before starting any task, such as a presentation, meeting minutes or follow-up or research, think “Can Copilot help me here?“
Yes – there’s a bit of a learning curve, but the effort you in will be worth it (IMO).
Some video links…
I have a growing handful of use case and scenario videos I am happy to share below… Hope you find the useful. If you do.. Let me know.
I run a monthly fireside chat panel discussion with IT and Business leaders from a handful of our Cisilion customers. Today, we talked about the outage and reflected on if, can and what we, the industry and our vendors need to do to minimise/prevent this vast impact happening again.
If you missed the "show" - you can watch it below.
September 2024 – Cisilion Fireside Chat
In our September 2024, fireside chat, our panel and I delved into the significant impact and lessons that can be learned from the CrowdStrike outage in July which is estimated to have cost more than $10B US and affected more than 8.5 million Windows devices when CrowdStrike distributed a faulty configuration update for its Falcon sensor software running on Windows PCs and servers.
This update featured a “modification” to a configuration file which was responsible for screening named pipes [Channel File 291]. The faulty update caused an out-of-bounds memory read in the Windows sensor client that resulted in an invalid page fault. The update caused machines to either enter into a bootloop or boot into recovery mode.
Today’s fireside chat conversation covered a range of topics, from the immediate effects of the outage to long-term strategies for enhancing cybersecurity resilience.
The Immediate Impact of the CrowdStrike Outage
The panel began by addressing the widespread disruption caused by the CrowdStrike outage. We discussed the outage’s extensive reach, affecting millions of devices and various sectors, including healthcare, finance, and transportation. In my intro to the episode, I mentioned that “It was really hard to believe…such a small relatively trivial and small update could impact so many people, devices and organisations“. This set the stage for a deeper exploration of the outage’s implications on cybersecurity practices.
As we kicked off, I praised the collaboration between Microsoft and CrowdStrike in addressing the outage. He mentioned that despite initial blame-shifting in the media, there was a concerted effort to resolve the issue, showcasing the importance of vendor cooperation in crisis management. The panel in short didn’t think there was much more Microsoft could have done – the key was updates and openness which is so critical in a global issue like this – as people and businesses need updates and answers as well as help in restoring systems which both Microsoft and CrowdStrike did in drones.
Vendor Reliance and Preparedness
Ken Dickie(Chief Information and Transformation Officer at Leathwaite), emphasised the importance of incident management and the worlds’ reliance on third-party and cloud providers. He shared his insights into the challenges of controlling the fix and the revelation of technology’s utility nature to leadership teams stating that it can be hard to explain to “IT” on “how little control we had over the actual fix“. Matthew Wallbridge(Chief Digital and Information Officer at Hillingdon Council) echoed the sentiment, stressing the need for preparedness and the role of people in cybersecurity, stating, “It’s less about the technology, it’s more about people.”
Supply Chain Risks
Matthew raised concerns about supply chain risks, highlighting recent attacks on media and the need for better understanding and mitigation strategies. This part of the discussion underscored the interconnected nature of cybersecurity and the potential vulnerabilities within the supply chain.
GoherMohammed (Group Head of InfoSec at L&Q Group.) mentioned the impact on their ITSM due to vendor reliance in the supply chain, which degraded their service, emphasising the need for resilience and contingency plans. This led to further discussions about how important understanding the importance of the Supply Chain validation is in our security and disaster recovery planning and co-ordination. Matt talked frequently about “control the controllable” but ask the right questions to the ones (vendors) you can’t control. Goher said that whilst L&Q were not directly affected, they did experience “degraded service due to supply chain impacts“, emphasising the need for resilience and contingency plans and review of that of their supply chain(s).
Resilience and Disaster Recovery Planning
The conversation then shifted to strategies for enhancing resilience. Here I discussed how we at Cisilion are revisiting our own disaster recovery plans to include scenarios like the Crowdstrike outage.
We discussed a lot about the cost of resilience and that there is a “limit” to what you can mitigate against before the cost skyrockets out of control with very little reduction in risk. It was agreed there are many things that can’t “easily” be mitigated in this particular scenario, but that we can be better prepared.
The panel talked about various strategies that “could be considered” including recovering to “on-prem”, re-visiting the considerations around multi-cloud strategies and the potential benefits of edge computing in mitigating risks associated with device reliance.
We also discussed whether leveraging technologies such as Cloud PCs, and Virtual Desktops have a part to play in recovery and preparation as well as whether using Bring Your Own Devices would/could/should be a bigger part of our IT and desktop strategy, along with, of course SASE technology to secure access.
Goher advised “do a real audit, understand the most critical assets, the impact they have further down the line and whether there is more that can be done to mitigate against outage/failure/issue“. This led us into an interesting side discussion around Secure Access Service Edge (SASE) – emphasising the “importance of not relying on trusted devices alone”.
The Human Aspect of IT Incidents
David Maskell (Head of IT and Information Security at Thatcham Research) brought a crucial perspective to the discussion, focusing on the human aspect of IT incidents. He reminded the audience of the importance of supporting IT teams during crises, highlighting the stress and pressure they face. The panel agreed with David, all of whom emphasised the importance of ensuring teams are looked after, highlighting the human aspect of managing IT incidents especially when things are not directly controllable (such with Cloud outages) and the need for good, solid communications to the business.
Ken also reflected on leadership’s reaction to the outage, emphasising the “gap in understanding the reliance on technology” that many business leaders (especially those not from a techy background) have”. The days of “it’s with IT to fix” are clearly not as simple as they once were!
Conclusion: The Path Forward
As we concluded the discussion, the panel dwelled over the lessons and tips to offer viewers, each other and the industry.
In general the guidance acoss the panel were around
The importance of regular security reviews, external audits, and business continuity testing.
The need to adopt a proactive stance around cyber security and technology outages, ensuring that their teams are prepared (they run testing and attack/outage simulations).
Ask more questions of your supply chains – they may be your weakest link. Are they secure, and are their recovery plans robust?
Map your critical systems and know the impact on an outage – what is the continuity plan – if devices are affected, how can people access your technology – look at Cloud PCs (such as Windows 365), can you support the use of personal devices (look at SASE technologies such as Cisco Secure Connect)
Review your technology dependencies. It’s not necessarily about multi-vendor but this might be a consideration – even for backup.
In summary, the CrowdStrike outage serves as a stark reminder of the vulnerabilities inherent in our reliance on technology and the critical need for comprehensive cybersecurity strategies.
Mark your calendars for September 16th, as Microsoft is set to unveil the next phase of Copilot innovation!
Hosted by CEO Satya Nadella and VP of AI at Work Jared Spataro, this short event promises to showcase the next phase of what will continue to evolve the Copilot revolution, which will further see the evolution of what is becoming a game-changer for businesses and tech enthusiasts alike.
What to expect.
There a bunch of things I am expecting to see based on the agenda, the Microsoft 365 Roadmap and other Microsoft posts and community updates. As such here’s what I’m hoping we hear about.
Rebranding and New Features: it will be goodbye to “Copilot in Word” and hello to “Microsoft 365 Copilot in Word”. Yes the kind of re brand and renaming have already announced they are rebranding its Copilot products in a goal to provide a more cohesive experience and consistency in naming. We have already seen this change from Microsoft 365 Copilot to Microsoft Copilot in Microsoft 365…
New Business-Focused Enhancements: With a focus on the business side of Microsoft’s Copilot offerings, they will focus on real life example of how these AI tools can revolutionise the way companies operate with an increased focus on smaller businesses along with enhancement for large enterprises.
From Preview to Release: we expect some of the services like Copilot in Excel to finally become “available” after being in preview for a year, updates to PowerPoint and for Team Copilot to go into public preview and more of the roadmap features to start rolling out such as scheduled prompts and proactive catchup.
Copilot Pro for consumer: I’m hoping to see updates and new features to Copilot Pro Updates. While details are still “under wraps” , I anticipate new features will be announced such as being able to reference files (something Copilot in Microsoft 365 already does) and maybe deeper integration into other apps to make this £19 monthly subscription more worth it.
Registering for the event.
The event is live (and will be available on demand) so to make sure you do not miss out on this chance to elevate your understanding of AI and its potential, Register below.
Back in May, Microsoft unveiled the next generation of PCs with the Copilot + PC which was released for consumers. Today (4th September 2024), Microsoft has once again set a new benchmark with the introduction of Copilot+ PCs for Business users.
Like their consumer counter parts, these next generation “AI devices”, which include the Surface Pro 11th Edition and Surface Laptop 7th Edition, are designed to revolutionise productivity and creativity in the business world. Copilot+ PCs are also shipping from other OEMs such as Dell, Lenovo, Acer, HP etc.
Copilot+ PCs are equipped with the most powerful Neural Processing Units (NPUs) available for Windows PCs, delivering blazing-fast processing power. This allows businesses users to handle the toughest tasks with ease, up to 90% faster than previous models. The integration of advanced AI features, such as live captions and real-time translations, ensures that your team can work smarter and more efficiently.
This blog, re-dives into the main differences between Copilot+ PCs and “non-Copilot PCs”, the improvements over previous models, and why these advancements are crucial for businesses and aims to answer the “why now” questions.
Non-Copilot PCs: Traditional PCs rely more on cloud-based AI processing (since they did not have NPUs), or required the CPU to do the grunt work, which can slow down performance and is dependent on internet connectivity.
Non-Copilot PCs: While still powerful, these devices do not benefit from the same level of AI optimisation and processing efficiency, due to lack of NPU which are key for efficient processing of AI workloads.
Non-Copilot PCs: Typically rely on Wi-Fi or wired connections, which may not offer the same level of mobility and security.
Power, Performance, Productivity
This is the “why now” for Copilot+ PCs. More than just a device refresh, this new class of devices brings exceptional performance, never seen before battery life and the fastest application performance on Windows to date.
Built around the user – Surface Copilot+ PCs provide a seamless and intuitive experience. These devices come with features like adaptive colour, optional OLED and HDR displays, and a flexible kickstand (Surface Pro) making them adaptable to any work environment. The all-day battery life (up to 22 hrs) ensures that your people stay productive without frequent interruptions.
Security: Copilot+ PCs come with advanced security features, including the Microsoft Pluton security processor and Windows Hello biometric authentication. Together these provide robust protection against both physical and digital threats and work seemlessly with your device management tools such as Intune. This comprehensive security framework ensures that your data remains safe and easily managed across the organisation. These enhanced security measures in Copilot+ PCs provide a higher level of protection, making them a more secure choice for businesses handling sensitive data.
Future Proofed Investment : As businesses increasingly turn to AI to innovate, having the right hardware is crucial. Surface Copilot+ PCs are built to scale and adapt as AI capabilities evolve, ensuring that your investment remains relevant and valuable. These devices support local development and execution of AI models, providing the agility needed to stay competitive.
What SKUs are available?
As discussed, there are two standout devices – Laptop 7, Pro 11 and the Surface Pro 5G. Here are the key specs and features from a hardware perspective to note:
Surface Laptop 7
Launch Date: 12th September 2024
Size Options: 13.5″ and 15″
Processors: Snapdragon® X Plus / Snapdragon® X Elite
NPU: Qualcomm® Hexagon™ (45 TOPs)
Graphics: Qualcomm® Adreno™ GPU
Cameras: AI enhanced 1440p Quad HD front-facing Surface Studio camera with ultrawide field of view
NFC – Allows use of the built-in NFC reader to sign in with an NFC security key.
Copilot Key: Yes – for quick access to Copilot in Windows 11
Surface Pro 11
Launch Date: 12th September 2024
Processors: Snapdragon® X Plus / Snapdragon® X Elite
NPU: Qualcomm® Hexagon™ (45 TOPs)
Graphics: Qualcomm® Adreno™ GPU
Cameras: AI enhanced 1440p Quad HD front-facing Surface Studio camera with ultrawide field of view
NFC – Allows use of the built-in NFC reader to sign in with an NFC security key.
Copilot Key: Yes – for quick access to Copilot in Windows 11
Options: New flex Premium keyboard designed to be used either attached to your Pro for the ultimate laptop set-up or detached as a standalone keyboard for a new level of flexibility.
New Surface Pro 5G
Launch Date: October 2024
CPU Options: Available with Intel I5/I7 and Snapdragon X Plus / Snapdragon® X Elite
NPU: Qualcomm® Hexagon™ (45 TOPs)/ Intel AI boost
Graphics: Qualcomm® Adreno™ GPU / Intel graphics
Copilot key: Key – for quick access to Copilot in Windows 11
Cameras: AI enhanced 1440p Quad HD front-facing Surface Studio camera with ultrawide field of view
NFC– Allows use the built-in NFC reader to sign in with an NFC security key.
Conclusion
Surface Copilot+ PCs stand out due to their advanced AI integration and superior performance. Unlike non-Copilot+ PCs, which may lack dedicated NPUs, Copilot+ PCs offer specialised hardware designed to handle AI tasks efficiently. This results in faster processing times and more accurate AI-driven features.
Video (c) Microsoft
Surface Copilot+ PCs are not just another piece of hardware; they are a strategic investment in your business’s future. By equipping your team with these advanced devices, you can unlock new levels of productivity, security, and innovation, positioning your business for success in an AI-driven world.
As we wait for the big 24H2 update due this autumn, Microsoft has quietly rolled out an optional update (going by the name KB5041587) for Windows 11, bringing a host of improvements and new features.
While this update is not mandatory, it does offer several enhancements that make it worth installing (especially if you have a PC powered by an AMD CPU).
Overall, the KB5041587 update for Windows 11 brings a range of valuable enhancements for users who frequently share files with Android devices, includes improvements to Narrator, voice typing, and File Explorer.
Here’s a breakdown of what this update entails and why you might want to install it.
Performance Boosts for AMD CPUs
One of the most notable improvements in the KB5041587 update is the performance boost for AMD’s latest CPUs. Users with Ryzen 5000, 7000, and 9000 series processors with up to a 13 percent increase in performance.
This enhancement addresses the previously disappointing performance of these CPUs, making it a significant update for AMD users.
Enhanced File Sharing with Android Devices
This update introduces a new feature that allows users to send files directly to an Android phone via Windows Share.
Unlike Nearby Sharing, the Android device does not need to be in close proximity to the PC. Instead, it just needs to be paired via Phone Link.
This feature simplifies the process of transferring photos and documents, making it more convenient and efficient.
Improvements to Narrator and Voice Typing
Windows 11’s Narrator feature, which reads out loud the contents of documents and websites, has received improvements in speed and accuracy.
These enhancements are particularly noticeable when using the Edge browser and reading large documents.
Additionally, voice typing has been optimized to allow for faster spelling of characters and more commands for text manipulation.
Bug Fixes in File Explorer
Several bugs in File Explorer have been addressed in this update. Issues such as the Ctrl + F keyboard shortcut not starting a search and the Shift + Tab shortcut losing keyboard focus have been fixed.
These fixes contribute to a smoother and more reliable user experience when navigating and managing files.
Installing the update
Unlike the regular security and fix updates, the KB5041587 update must be manually installed.
If you wish to install this one, you will need to navigate to Settings > Windows Update and select the update for installation. This manual process ensures that users have control over whether they want to incorporate these new features and fixes.
Quicker, faster, easier is the goal with this new update for Microsoft Word and Copilot for Microsoft 365 users, which aims to make handling long documents much easier. The feature, known as automatic document summarisation, is now rolling out now to select users.
Auto Summarise in Word
Key Highlights include:-
Automatic Summaries: With this new feature, Copilot licensed users will receive an automatic summary at the top of their Word documents. This summary synthesises the most important information, allowing users to quickly grasp key points without reading the entire document.
Interactive Summaries. Users can expand the summary by clicking the “View more” button, copy it, or even start a new chat with Copilot to discuss the content further. After making edits, a new summary can be generated to reflect the latest changes.
Availability: The new feature is gradually rolling out to users with Copilot licenses on word for Windows (version 16.0.17928.20114 or newer), Mac (version 16.88, build 24081116 or newer), and the web. If you don’t see it yet, check back in a few days.
This new feature is part of Microsoft’s ongoing efforts to enhance productivity and make information processing more efficient. For more details, you can visit the official Microsoft 365 Insider blog.
Want to see this in action?
I’ve created a YouTube video that dives deeper into this feature and demonstrates how it works.
Be sure to check it out for a more detailed video walkthrough!
As we head into September, Microsoft is preparing to start the rollout of their annual Windows 11 feature update, this time focusing on the underlying platform and surface-level quality-of-life improvements and updates as well as some major updates to Windows on Arm (WoA). Windows 11 24H2 (also known as the 2024 Update) is a huge update in fact, including everything from performance increases across the board, UX changes and new AI (of course) features.
The Windows 11 2024 Update is packed with OS improvements and new features across the board, with special attention given to those running an ARM-based device this time around.
This update is a much bigger release than last years’ 2023 H2 update, due mainly to a vast number of underlying platform enhancements. There are improvements to Windows Update process, an updated and faster x86 emulation layer for Arm PCs (such as Copilot Plus PCs), and new AI features that will take advantage of newer devices which have a dedicated NPU (neural processing unit.).
On Copilot+ PCs, this Windows 11 release is also the first include features exclusive to this new category of Windows devices. This means if you don’t yet have a Copilot+ PC, then you miss out on certain features when upgrading to version 24H2, such as the controversial “Windows Recall” AI feature.
Windows 11 24H2 also promised to be much better for gamers, since it includes many new capabilities that utilise the high-performance hardware of Copilot+ PCs and new software optimisations. An example of innovation is the new emulation engine, Prism. It operates seamlessly, converting x86 or x64 code to Arm64 instructions when you launch an x86 or x64 application on an Arm-based Windows 11 device, all without requiring extra effort from developers.
Why is this important? Well, given that many of today’s games are written for x86 or x64, Prism unlocks a large back log of games that work great on Arm under emulation. While Windows on Arm has had emulation in the past, the performance improvements of Prism, along with automatic super resolution and the new Snapdragon® X Series processors together emerge as a game-changer.
So here is a summary of the key changes and updates you can expect in the Windows 24H2 update. Features in Bold are just for Copilot+ PCs.
Desktop and start menu
Phone Link is now integrated with the Start menu
Taskbar system tray layout has been further simplified
Quick Settings has been rebuilt to be faster and more customisable
Windows Spotlight image is now the default wallpaper setting
The Taskbar app preview thumbnails now have an animation
It’s now possible to set to HDR images as a desktop wallpaper
File menu
The File Explorer home tab now includes updated layout with shared documents.
Just like in Edge, you can now duplicate tabs by right clicking the tab.
The context menu layout has been updated with better labelling making it easier to use.
Added ability to create .7z and .TAR archive formats as well as ZIP files without the need for third party apps.
If you use Phone Link, you can view your Android phone’s file system directly in File Explorer
Native Apps
The new Outlook app for email, calendar, and contact is now included in the update (this will replace the mail and calendar app).
Photos now includes AI-enhanced generative erase and background editing.
The Copilotapplet is now a standalone web app – meaning it can be resized and moved around like any other app.
Photos can now generate AI images based on user criteria (Copilot+ PC)
A new Recall app uses AI to capture everything you do and makes finding things easier (Copilot+ PC).
Paint now has built-in generative AI capabilities based on user drawn sketch (Copilot+ PC)
Settings and other stuff
Windows Update now supports checkpoints and hot patching for faster and less obtrusive updates.
New PRISM emulation layer makes x86 emulated apps run up to 2x faster and smoother on Arm meaning Arm-based devices.
New Voice Clarity feature uses AI to remove background noise picked up by your microphone in supported apps such as Teams.
Power settings for plugged/unplugged state can now be configured simultaneously just they could previously in “control panel”
Energy Saver mode replaces “battery saver” and now applies to laptops and desktop devices.
Devices with the new “Wi-Fi 7” hardware is now supported.
AutoSR uses AI to enhances the framerate and quality of games (Copilot+ PC)
Live Captions translate languages into English in real-time locally (Copilot+ PC).
Advanced Windows Studio Effects enhance your webcam with filters (Copilot+ PC)and some older ARM based PCs such as Surface Pro 9 5G.
Consumer and Gaming
Updates to x86/x64 emulation on Copilot+PCs and other ARM based devices brings significant (up to 2x) performance updates for games running under emulation – needed for games and apps that are not yet “native” ARM.
Availability and Rollout
The Windows 11 2024 Update process is rather unique in its rollout and availability this time round. Unlike previous versions of Windows 11, this release is rolling out in two distinct waves. Wave one is has essentially already shipped, but only on new Copilot+ PCs that launched on June 18. If you recently purchased a new Copilot+ PC running the Snapdragon X chipsets then you are already running Windows 11 version 24H2.
For the rest of the world, Windows 11 24H2 for “non-Copilot+ PCs” is expected to begin rolling out gradually from late September, which is when Windows 11 feature updates normally begin rolling out to users.
Windows Insiders get it earlier…
If you want to try out the Windows 11 2024 Update ahead of general availability on non-Copilot+ PCs, you can do so today by joining the Windows Insider Programme.
Microsoft has recently unveiled Loop 2.0, a significant update that promises to enhance the way teams collaborate and work together. With a revamped UI and a host of new features, Loop 2.0 is set to streamline the user experience and integrate seamlessly with the Microsoft 365 suite.
Simplified User Interface
The new UI in Loop 2.0 is designed to be clean and simple, removing any unnecessary clutter and focusing on what’s important – your work. The navigation menu on the left side of the app has been reorganized, making it easier to access meeting notes, favorites, recent items, and more.
New Loop Interface
Enhanced Creation and Organization
A new Create button has been prominently placed at the top left, allowing users to quickly create workspaces or draft ideas from anywhere within the app.
Image (c) Microsoft.
Additionally, you can now add Loop Components, pages, or ideas to a workspace directly from the breadcrumb at the top, streamlining the process of organising your content.
Collaborative Meeting Notes
All Collaborative Meeting Notes from Microsoft Teams are now neatly organised under the Meeting Notes tab in Loop, providing a simple way to access all your meeting notes (these are nested for recurring meetings which is the killer feature for me).
This feature enables users to create pre-read notes or agenda items for upcoming meetings and to keep track of in meeting notes too within the new Loop experience…
Note: Today, notes generated by Intelligent Recap are not stored here.. I hope this will soon be added.
Favorites and Recent Tabs
The Favorites tab on the navigation bar provides quick access to your most important workspaces, while the Recent tab helps you find your latest Loop pages and components across Microsoft 365, including those created in Teams, Outlook, OneNote, and Whiteboard.
From Preview to Release
Loop 2.0 is now rolling out gradually to all commercial customers after being tested with organisations enrolled in the Technology Adoption Program (Tap). Microsoft say it is actively rolling it out.
This update is part of Microsoft’s broader effort to reduce sign-in prompts, redirects, and delays when accessing their online services, making for a smoother and more efficient user experience.
Announced by Microsoft in their Teams Roadmap (Roadmap ID 402517), Microsoft Teams continues to innovate the way we connect and collaborate, both in-room and remotely. This latest feature (set to roll out in October 2024) is the Multiple Camera View for Teams Rooms on Windows (not yet announced for Android), which continually promises to revolutionise meeting experiences as the world continue to adapt to hybrid meetings.
A New Perspective on Collaboration
This new feature which will support the transmitting of up to four discrete USB camera feeds at once, breathe new life and create new deployment options to revolutionise the use of large(r) areas such as multi-purpose rooms and halls, classrooms, and executive boardrooms, enabling in-room users to switch between multiple video cameras from the console on Teams rooms on Windows.
Users using Microsoft Teams Rooms set up with multiple USB cameras attached to the MTR will see updated experience, in the form of a video select option on the Microsoft Teams rooms console. With this option, (when more than one video camera is attached to MTR), users will be able to switch between these cameras before and during a Teams meeting by selecting a camera from the list of available cameras.
Image (c) Microsoft. Changing the Video Feeds in Teams Room Control Panel – Image (C) Microsoft.
This functionality aims to improve visibility and guarantees that remote attendees can smoothly keep up with the proceedings.
If the device does not have multiple USB cameras set up with Teams Rooms device in the conference rooms, there will be no difference in the experience.
Benefits for In-Room Participants
Increased Inclusivity – Allows hybrid / meetings to cover more, angles and areas within large meeting spaces.
Flexibility – Allows easy switching between multiple views during a meeting automatically or manually.
Control and Personalisation – In-room participants can toggle the multiple camera view on or off with a simple button press or choose the best view for them.
Advantages for Remote Participants
Inclusive Experience: Feel more connected to the in-room activities.
Customisable Views: Choose which camera feed to focus on at any time.
Engagement: Improved visibility can lead to better engagement and interaction.
Enabling or Disabling the Feature
This feature, when it becomes available, will need to be enabled and configured from the Teams Pro Management portal for each room.
This update is for Microsoft Teams Rooms for Windows only – there is no indication (if/when) this will be available for Teams Rooms on Android.
Conclusion
As we move towards a more hybrid work environment, features like the Multiple Camera View are essential in bridging the gap between physical and virtual meeting spaces, especially in larger meeting spaces.
Thanks for reading, welcome your feedback and stay tuned for more updates in this space.
Copilot is a super powerful tool but if you are not getting the results you expect, you might be “using it wrong”. This is based on my experience working with organisations large and small over the past year or so.
Momentum continues to increase and we are seeing more and more public case studies show casing the value of Copilot for Microsoft 365. These focus on the “huge” time savings and efficiency gains organisations such as Barnsley Council, Clifford Chance, and Hargreves Lansdown experienced and how it’s now a tool their employees would not be able to give up.
Getting to this stage is not as simple as just allocating a license and turning it on. The “view” of Copilot I see in many organisations, is very different and as such is so important organisations get off on the right foot with Copilot to ensure that their early experiences with Copilot go well, they understand and evaluate where and how it fits and also where it doesn’t (or doesnt yet).
It all starts with the right expections
It’s hardly suprising that expectations of what Copilot can achieve are high. It’s not that they shouldn’t be, but we need to remember that most of what we see online and in demos are staged, based on the “perfect use case”, data in the “right place” and with Copilot embedded across all your apps and services.
You need to make the cool aid before you can drink it.
There are two scenarios with Copilot which I commonly see.
First there are organisations that grab a handful of licenses, allocate them to a bunch of people and then expect Copilot to know everything about everything and do anything you can think of – setting themselves up for a fail or “less successful” trial.
Secondly, there are those that follow the general guidance shared by Microsoft and their Copilot partners, who build a pilot team, annonce the trial (and what they expect of the pilot users), train and educate their users and share feedback amongst the teams to ensure everyone learns from each other before they expand it to more people.
Whilst the second approach, almost always succeeds (assuming the pilot team are engaged and are open to sharing), I still find (in both scenarios) that part of the reason Copilot trials/pilots can fail quickly is that, in my experience, “people” try to go from zero to hero and rather than looking for many small gains, are trying to get Copilot do that one big thing that will totally change their workload and save them hours of manual effort per day or week.
I find this problem goes away in the main, where organisations are working either directly with Microsoft or via their Copilot Adoption Partner, since the specialists they work with have the time to work with the employees to not only coach them through how and what Copilot can do, but also where it (on its own) may not be the answer they are looking for.
So in short, I find that, many people are simply using Copilot wrong, misunderstand what it can and can’t do and then simoly give up on it and go back to what they did before.
It’s not Copilot it’s you!
In this blog, I am going to share the most common Copilot mistaken use cases that make people the most frustrated….and how to fix them….
1. Trying to use Copilot as an automation tool
This is very common. I often see people who have watched the Microsoft marketing videos (often sequence shortened) contour up an image in their mind that Copilot will solve all their business challenges. I see organisations map out end to end business processes they “would like” Copilot to solve for them that are, to be frank, sometimes outside of what Copilot is really designed to (or is able) to do.
Copilot is not an RPA (Robotic Process Automation) tool. Yes, it can do many many things for you – such as reviewing documents, summarising meetings and actions and creating other “things” from them such as summaries, presentations or new documents.
One of things I hear a lot (and experience) is often that Copilot doesn’t (or wont) do things in exactly the way I ask it to and it can be inconsistent if I ask the same thing twice.
This is true and it is one of the “behaviours” of Copilot (and other Generative AI tools like ChatGPT or Gemini). I do find the more specific I am, the more “similar” my responses from Copilot become, but it’s serves back to the point that Copilot is not designed to carry out multi-step activities with a fixed predetermined output. It is also not currently possible to schedule or trigger Copilot based on an event or other trigger. See Prompting.
Tip: Understanding the value and use cases of where Copilot fits into the business process and workflow is key to getting the best results. There are many areas where Copilot will provide real business value (either as a first eye, second opinion, note taker, author or creator). Working with a Copilot specialist partner or building a team of them internally will help the rest of the business get used to working “with” Copilot as the “assistant” it is expecting to be.
One of the most common pitfalls in adopting Copilot is overlooking its grounding capabilities and limitations. Grounding is the term that refers to the context of the data Copilot can access/will access to perform the request you pass it.
One of the unique values of Copilot for Microsoft 365 over “other” Generative AI experiences, is its deep-rooted access, context awareness and understanding of your business data [through the Microsoft Graph] to enhance its functionality and response. This means that, in short, you can ask Copilot about a particular file that someone shared or a meeting you had last tuesday and it will understand the context and content of that scenario and base it’s response around that. This is hugely value and one of the reasons it has so much value in the workplace. You can also point Copilot at specific content that is within your organisation (though these connected services) or via a URL – for example web content.
The limitation of this grounding is also it’s benefit, in that for Copilot to be able to interface with your data (or application services), that data needs to be connected to the Microsoft Graph through either a connector or plug-in. These are sometimes provided (at cost) by the third party provider or can be built by your devops team or your partner.
This is important because if your employees work off data that is stored primarily in a Document Management System (DMS) that is not connected to Microsoft 365, then Copilot will not have visibility over it or it’s data meaning that employees would need to manually copy and paste data from it, to Copilot in order for Copilot to do anything with it.
Tip: When running your initial or later stage Copilot rollout, it’s important to ensure you understand where and how people work in different teams so that you know what data people work on and where it is stored.
This grounding process is key as it allows Copilot to build upon the foundation of previous work, such as project histories or meetings. To maximise Copilot’s potential, it’s important to ensure that relevant data is accessible (through connectors or plug-ins) within Microsoft 365 or stored / migrated to Microsoft 365 (OneDrive, SharePoint etc.). For Copilot to work on meetings, you also need to be using Teams and must ensure they are recorded and/or transcribed.
3. Over simplifying or over complicating Prompts
Another key to Copilot’s effective use is the quality of prompts provided. Unlike an AI powered smart speaker, Copilot can handle really complex and specific requests , allowing you to write up to 2,000 (soon to be 8,000) characters in its input boxes.
This means that prompts can well thought out, detailed and quote refined, leading to more specific and sophisticated responses. I have written other blogs on prompt perfection if you wish to read them.
That said, the key when adopting and getting to know Copilot is to encourage your people / teams to experiment with prompts, iterating them and and refining them to achieve the desired outcomes whilst rememering that the same prompt will rarely generate exactly the same answer.
Whilst simple prompts are often to vague, not specific enough and therefore may not yield the desired/expected results, prompts that are too complex can also be ambiguous, conflict or go “off topic” so getting the right balance is needed.
Tip: Another way to get what you wanted it to make your prompta conversation: Copilot support interative responses meaning that you can have a conversation with it. Writing the perfct prompt is not always easy to do and can be frustrating so feel comfortable in having a conversation with Copilot. You may find the iterative process becomes fundamental to how you work with Copilot and perfecting the response.
You see unlike human assistants, Copilot thrives on repeated, slightly altered instructions to refine its output. This approach requires a shift in mindset from one-shot solutions to ongoing dialogues with Copilot. By embracing this iterative process, businesses can tailor Copilot’s responses to their specific needs more effectively.
4. Not feeding Copilot properly.
One of things I often find when working with Copilot on more “complex” prompts and tasks is that you can tell it to base its response or output based on a specific file that contains the things you want Copilot to do / check / review for me. Whilst Copilot can leverage the Microsoft Search (via Graph API), if you know what file(s), meeting, person etc, you want Copilot to leverage, you can include that in your prompt.
In the example below (a real one that I was working with a customer on), you can see that we are using to Copilot to review some CVs against a Job Description and Criteria document.
Example Copilot for Microsoft 365 Prompt – Grounded with specific data/files
In this example, I am “feeding” Copilot the CVs I want it to review along with a Job Requirements document which contains a table of criteria about the role and the scores available based on this criteria. This means I can focus my prompt on what I need Copilot to do for me using existing data which is used to “ground” it’s response.
Tip: One of the bug bears I hear alot around Copilot is why it can’t fill out a form for me. It cant. However…. you can ask Copilot to create an output for you based on an existing document. The video below shows an example of doing just this.
Conclusion
The integration of Copilot for Microsoft 365 presents a transformative opportunity for businesses.
By educating employees, understanding its grounding capabilities, mastering effective prompting, practising an iterative approach, and implementing a strategic adoption plan, businesses can position their organisations to really see the benefits of Copilot.
I hope the tips above help – welcome your questions and views.
Qualcomm’s Snapdragon X series processors are specifically crafted for PCs, particularly Windows on Arm and Copilot Plus PCs available from HP, Dell, Lenovo, Acer and of course Microsoft Surface. The processors inside these latest generation of devices, integrate the renowned Snapdragon technology from premium smartphones with the demanding performance needs of the PC domain. The goal is to deliver a processor that competes with Intel and Apple in terms of performance, while also offering the energy efficiency typical of smartphones and providing cutting edge NPU performance to power existing and upcoming AI powered applications.
Arm vs Intel: The Copilot Plus PC Revolution
Copilot Plus PCs, like the Surface Laptop 7 are powered by these Snapdragon X Arm chips. The fundamental components shared by all Snapdragon X series chips include Qualcomm’s custom Arm-based Oryon CPU, rather than Intel’s x86, an enhanced version of their Adreno GPU (derived from their mobile devices), the Hexagon NPU for on-chip AI capabilities, and cutting-edge networking technology supporting the latest Wi-Fi 6 & 7 and 5G standards.
On the software front, Microsoft offers an emulation layer within Windows on Arm (WoA) to facilitate the running of x64 applications not yet native to Arm processors. Notably, there is an extensive collection of native Arm applications from Microsoft, Adobe, and other prominent developers.
About the Snapdragon X chipset options
Snapdragon X comes in two major flavours. The X Elite, which powers the first wave of top-tier Copilot Plus PCs, and the X Plus, destined for the more affordable range of Copilot Plus PCs (You’ll see most vendors providing options for both).
Today, Qualcomm has a total of four different Snapdragon X SKUs – three under the X Elite branding and one more affordable X Plus unit. You can see the subtle differences below, with the main differentiator being CPU cores and performance.
All current Snapdragon X models boast a remarkable 45TOPS Neural Processing Unit (NPU), which means they are all equipped to handle the same AI features. An NPU enhances the traditional CPU by adding machine learning (AI) specific computational abilities. An NPU is not only faster but also more energy efficient. This offloads work from the CPU, allowing the NPU to manage AI tasks, similar to how a GPU handles graphics-intensive tasks.
Snapdragon X Elite
12 Oryon CPU cores
Clock speeds up to 4.2Ghz
4.6 TFLOPS GPU (Graphic Processing Unit)
45 TOPS NPU (Neural Processing Unit)
Snapdragon X Plus
10 Oryon CPU cores.
Clock speeds up to 3.4Ghz
3.6 TFLOPS GPU
45TOPS NPU
What about the new Surface Line up?
Snapdragon X offers competitive performance against not just Intel’s latest chips, but also against the Apple M3 and M4. The real star though (not a fan of just CPU benchmarks personally), is that battery life is simply incredible compared to previous generations of devices with initial testing and reports (from others such as here and here) showing these devices comfortably exceeding the demands of a busy workday, positioning these laptops as genuine contenders to the MacBook (which has always somehow always won for battery life). Running emulated x86 apps under emulation will (and does) run the CPU harder which will in turn impact battery life.
This next generation of AI powered PCs sch as Surface Laptop 7 and Surface Pro 10 are two such devices offering superior power, power efficiency and extreeeeeeemley long batter life.
Battery Life Wins
That said, tests by PC Magazine, revealed a result of almost 25 hours usage – making “Surface Laptop one of the longest-latest laptops we’ve ever tested on battery“. In comparison a 13-inch MacBook Air lasted “just” 21 hours and 38 minutes in their testing.
Surface Pro 10 and Surface Laptop 7 are the the first Copilot+ PC which feature these new Snapdragon X Elite and Snapdragon X Pro processors.
PC Magazine said in their comprehensive hands-on review of Surface Laptop 7 that
“…this is easily the best Arm chip we’ve tested yet in a PC. The CPU and GPU performance are there and deliver at least competitive benchmark numbers relative to current-gen Intel and AMD offerings in the early going. Qualcomm is to be commended for that.” | PC Magazine
What is your view on these Copilot Plus PCs? Have you got one yet – what are your first impressions?
Microsoft is reviewing their options and looking to push for significant changes to their Windows security architecture in the after math of the major outage caused by a “faulty” CrowdStrike update last a couple of week back. The impact of the faulty update, is thought to have afftected around 8.5 million Windows devices and services when the faulty update caused Windows devices to reboot and enter their protected recovery mode.
Microsoft acknowledges the inherent ‘tradeoff’ kernel-level cybersecurity solutions pose and confirms the root cause of the global outage.
This has prompted Microsoft to reassess the level of control that third party security vendors have over the deepest parts of their operating system and they are considering limiting kernel- level access for these vendors.
“This incident shows clearly that Windows must prioritize change and innovation in the area of end-to-end resilience“. | John Cable | Microsoft see blog post,
Time to bring control back?
John Cable, Microsoft’s VP of program management for Windows servicing and delivery, discussed passionately their viewpoint in a blog post named “Windows resiliency: Best practices and the path forward.” In this post, he emphasised the need for “end-to-end resilience” and discussed potential changes Microsoft are reviewing that could mean restricting kernel access for third party security vendors such as CrowdStrike.
Snipit from John Cable’s blog post | July 2024
The CrowdStrike update bug, which resulted in widespread system crashes, has clearly highlighted the risks associated with allowing third-party security apps and services to operate at the kernel level – a new approach is needed.
Privileged access, though advantageous for detecting threats, can result in disastrous failures if mishandled. Microsoft is investigating alternatives that circumvent future kernel access issues, including VBS enclaves and the Azure Attestation service. Employing Zero Trust methodologies, these solutions aim to bolster security without incurring the dangers inherent in kernel-level operations.
Why do Microsoft let third parties access the kernel?
In short, they dont have much choice (see below).
While Microsoft may be looking to further restrict access to its Windows kernel going forward, they have used this event to explain why third-parties antivirus and security vendors to access the “core of Windows” the first place.
The Windows kernel is a deep layer of its operating system. Kernel-level cybersecurity lets developers do more to protect machines, can perform better, and can be harder for threat actors to alter or disable.
When a kernel-level cybersecurity solution loads at the earliest possible time, it gives users (and companies) the most data and context possible when threats arise and also ensures protection can kick in at the earliest stage of the Operating Systems boot up stage rather than waiting for the OS to load and then running as a normal system process.
The EU may prevent changes over anti-trust claims
Whilst this makes common sense to most, after all why shouldn’t Microsoft be able to restrict access to ensure stability of an operating system used by more than a billion users, their push for change is likley to face resistance from both cybersecurity vendors and regulators.
Back in 2006, Microsoft tried to restrict kernel access around the release of Windows Vista, but was met with opposition and a ruling that preventing them doing this, citing anti compete. In contrast, however, Apple successfully managed to lock down their kernel level access in macOS in 2020. The market for Windows software is of course far larger than Apple’s MacOS and Microsoft is an open platform for developers to build upon so any changes will need to be done in a way that make this possible without preventing developers software doing what they are supposed to do!
Microsoft has attributed part of the CrowdStrike outage to the 2009 European Union antitrust agreement, which mandates that Microsoft must provide kernel-level access to third-party software vendors. Conversely, Apple started to phase out kernel extensions in macOS in 2020, encouraging software vendors to adopt the “system extension framework” due to its reliability and security advantages.
It is not the first and wont be the last time either that the EU have played the anti-trust card. Microsoft has recently had to decouple Teams from Microsoft 365 as a response to competitors such as Zoom citing Mcirosoft have an unfair advantage. They have had recent claims against them with Internet Explorer and Edge.
Zero Trust Kernel Protection mayt be the way forward
The blog post indicates that Microsoft is not proposing a complete shutdown of access to the Windows kernel. Rather, it highlights alternatives like the newly introduced VBS enclaves, which offer an isolated computing environment that doesn’t necessitate kernel mode drivers for tamper resistance.
“These examples use modern Zero Trust approaches and show what can be done to encourage development practices that do not rely on kernel access…We will continue to develop these capabilities, harden our platform, and do even more to improve the resiliency of the Windows ecosystem, working openly and collaboratively with the broad security community vendors”. John Cable | MicrosoftWindows VP
Trade off between “anti-compete” and stability.
Microsoft acknowledges that the tradeoff of kernel-level cybersecurity products is that if it glitches out, it can’t be easily fixed, saying in their blog that. “all code operating at kernel level requires extensive validation because it cannot fail and restart like a normal user application.”
As such companies have to demonstrate strict quality and testing controls over their software. The CrowdStrike issue occurred since this wasn’t a new product but” simply” and software patch by CrowdStrike that… well, went wrong.
Microsoft can’t vet every patch and every update released by their “trusted” ISVs/third parties, especially when it comes to security updates which these security vendors need to roll out requently.
“There is a tradeoff that security vendors must rationalise when it comes to kernel drivers. Since kernel drivers run at the most trusted level of Windows, where containment and recovery capabilities are by nature constrained, security vendors must carefully balance needs like visibility and tamper resistance with the risk of operating within kernel mode.” | Microsoft
What ever happens – businesses still need to have backup and remediation processed in place.
In response to the CrowdStrike incident, Microsoft deployed over 5,000 support engineers to aid affected organizations and provided continuous updates via the Windows release health dashboard. They rapidly developed recovery tools to assist companies in their recovery efforts, while emphasising the significance of business continuity planning, secure data backups, and the adoption of cloud-native strategies for managing Windows devices to bolster resilience against future incidents.
Further whitepapers and guidance will be released in the coming months and I expect this will lead to Microsoft, and their third party vendors releasing more recovery tools and guidance.
Summary
Microsoft “confirmed that CrowdStrike’s analysis that this was a read-out-of-bounds memory safety error in the CrowdStrike developed CSagent.sys driver,” Microsoft explained in their technical analysis of the crash and why the impact was so huge in a technical paper published last week.
Reviewing the security architecture and access to the kernel is definately needed, but their approach and desire to prevent future issues with third party glitches will likley be at the brunt of complaints from third party security vendors and the EU anti-compete regulators.
Apple “seem” to have a much easier ride when it comes to doing what they want – they say “jump” and developers say “how high”. Microsoft repeatedly have to “please” regulators far more – this recent huge global impact, may work in Microsoft’s favour however, to bring some control and governance in the name of system and business stability which I am sure will get the backing of everyone and every organisation impacted.
One thing is for certain -Microsoft wont take this sitting down. They will work hard to continue to protect their OS which is run on billions of devices and used by almost all coporations, education and crititical infrastrucutre. Change will happen!
In my work life, I am a Technology Officer for Cisilion (a leading UK Microsoft and Cisco technology and service integrator and enabler), but beyond work, I love technology and more importantly, I love to find ways in incorporate new and emerging (or just plain cool) technology into the everyday lives of myself and my family. I’m also a Microsoft MVP, which means I have even more reasons to be a fan and supporter of some of the best and Microsoft – these include Microsoft Designer, Microsoft Clipchamp and of course Microsoft Copilot!
In this blog (with some videos along the way), I’ll show you some of the ways we incorporate the latest Microsoft products into our family activities, routine, and life.
This blog will focus around the recently released Microsoft Designer – which we have been using throughout its development – you’ll see just what a simple to use, yet powerful tool this is and how it has allowed me to blend my professional expertise with my role as a parent and cub leader.
For those new to Designer – you can access it on the web https://designer.microsoft.com or via the mobile app on iOS and Android.
Setting the Scene – About our Family!
I’m married, we have a cat and two young boys (currently nine and seven), the youngest is autistic and the eldest is ADHD (though not officially diagnosed). This means attention to detail is really high, yet patience is low, and they both hate waiting for things or things that take too long and are “boring” are a no no! One loves trains and the other planes (and trains). We created this design in Designer for Christmas Cards in December 2023 🙂
In my work life, I am a Technology Officer, my wife is a teacher that specialises in Special Educational Needs, and in my “spare” time I am a Cub Scout Assistant Leader in my hometown of West Wickham in Kent. My kids love trains, and everything related to them and much of our family time is spend satisfying their craving for train related activities…
Work / Technology Blogs
In my line of work, personal (technical life as a Microsoft MVP) and side-blogger, I use Designer to create inspiring, original and personalised images for blog covers and articles.
The example below is an image design I asked Microsoft Designer to create introducing the new Cyber Security bill announced at the recent Kings Speech in July 2024.
Image Created with Microsoft Designer for a recent Blog
Inspiring Young Minds – Scouting
Consistently looking for ways to ensure young people are ready for the world and life ahead of them, scouting is great. The children learn about working together, solving problems, critical thinking, empathy, the role of people in a community as well some great “life” skills such as exploring the great outside, camping, orienteering, first aid and safety and caring and supporting others.
Technology is a given in schools (well many), the workplace and in the home, but less so in scouting. In the past year, we have been looking at more ways to integrate technology into what we do in simple, yet inclusive ways.
This past year we have been using technology subtly within the “curriculum” without impacting the practical and outdoor nature of the groups purpose. We have digital badges and creative projects and decided early last year (2023) to blend AI design creation into the Cub Scout Group.
After some simple interactive design sessions, we soon had the Cub Scouts designing custom badges, event posters (for a gang show), and promotional advertising (shared over parent social media groups, which not only added a digital touch to what we did, but sparked curiosity and awareness.
Then, last Christmas, the Cubs raised some money for Crisis at Christmas (which fund Christmas dinner and shelter for homeless people) and they together in in groups, created some banner/posters. This was the “winning” one which we used to share the donation to Crisis with
Winning Designer Image from 1st West Wickham Cubs
New Business Ideas
In May 2024, my wife, marketing manager, turned mother, then childminder and now Deputy Pre School manager is looking to venture out and start her our Pre-School aimed at children with Special Education Needs. She had contacted a couple of small graphic design companies to get quotes for a logo design, but then turned to Microsoft Designer Image Creator to see what it could produce. Once she overcame the DALLE-3 “wording and spelling challenges”, she very quickly has a design she loved which she then polished off in Designer Editor. This took minutes and saved her at least £100!
Logo for a new “coming soon” Pre-School
Educating Young People – Showcasing AI Design to Year 2 and Year 4
Towards the end of the summer term, parents were invited to come into my children’s school and talk a bit out their job and an what they do. I had 30 minutes with two classes of year 4 children, followed by a the same with two classes in year 2.
Part of my “talk” involved an interactive session with the children, where we talked about how AI would impact every part of their lives and jobs and used a combination of Microsoft Designer and Microsoft Copilot to create a class mascot and a story to go with it.
End of School Year – Thank you gifts
As the school year ended for my children at the end of July, we bought small teacher gifts and my eldest (nine), took to Designer to create some stickers we could print on sticker paper and attach to the gifts to give them a personalised touch.
Microsoft Designer sticker creation handled the task nicely. We took the images, dropped into PowerPoint to duplicate, and size them, and printed out the stickers to add to plants and chocolates we’d bought/grown for the teaching staff and assistants.
Supporting my children’s passion for Trains
My wider blog on Designer’s capability, is focussed heavily on how we use Designer to add some flair into my son’s hobby around trains and travel. We spend most weekends riding trains, visiting train museums and doing videos about different trains, train lines and doing little challenges.
As we aim to “promote” his videos a little more, we have taken to Microsoft Designer to advertise his work.
Using Microsoft Designer to promote upcoming videos….Endless fun creating different train related images on Microsoft Designer.
Improving our promoting skills
Finally, working with Gen AI tools is a skill in its’ own and takes practice and experimenting to get the “perfect image”. There is a great community of people on social media, including some of the @MSFT365Designer team and users. It’s great to get inspiration from others, share your prompts and take on the challenges of creating new and exciting images.
Why not get involved… Don’t forget to #MicrosoftDesigner.
Get involved in the AI Design Promoting Community
Thanks for Reading
Thanks for reading – I hope this gives some inspiration around how you could use Microsoft Designer for work, personal life, hobbies and more.
I have written a wider blog with video guides about how to use Microsoft Designer, which goes into examples of different ways to use it.⬇️
Microsoft is yet again at the forefront of an AI powered design revolution with formal launch of their AI-powered Designer app which is available on web, and mobile (iOS and Android) after being in preview for a year.
Designer is built all around speed and simplicity, empowering users of any level to quickly create custom images, stickers, greeting cards, and invitations with a professional touch using a wide array of tools, simplified editing tools, a fresh and clean UI and rich AI editing capabilities.
Designer is also free though it does require sign-in with a Microsoft MSA app or Microsoft 365 Personal or Family account. Designer features are also popping up on Commercial apps and services such as Teams. More on this later in the blog.
To do this, simply add square brackets round the elements you want to be “custom” and share the prompt… You can also try many of the pre curated prompts that Microsoft provides in the examples in app.
One of the newest things which was introduced at launch was the concept of design prompt templates. These make help #DesignerCreators with ideas, along with editable prompts to help creative minds get to work quickly. You can simply make any prompt you love (or that people share) with you in a sharable and editable prompt.
To do this, simply add square brackets round the elements you want to be “custom” and copy the prompt to share it with others… You can also try many of the pre curated prompts that Microsoft provides in the examples in app.
Let’s dive into some of the key features. For those that know me, my children love London trains, so the theme of my feature explanation and examples will be very “train centered“.
Firstly, Designer has a rich set of starter apps and templates to help you achive a particular design related task – these range from AI image creation, to greeting cards, social media posts and much much more. You also get some great starter prompts too or creations you can use to get you started if you are having a bit of mind blur! You can access these visually or from the <create> menu at the top of the home page.
Powerful integrated or standalone apps and tools
Designer comes with a full design canvas (this was actually the first part of Designer that was built when the beta debuted about a year ago) along with a growing number of mini apps which make doing simple AI assisted tasks easy and quick. Many of these can also be accessed via the main Designer Canvas (which I highlighted above).
Creating a design from scratch with Microsoft Designer.
The video above is aimed to be a simple whistle-stop tour of the Microsoft Designer Interface. I have used a blank canvas to show just how easy and intuitive it is to create a design from scratch – which in this example is a new design that we will use to promotes my son’s next Train Themed YouTube video.
The sections that follow focus on some of the standalone apps and features that Designer brings in its AI Image Treasure Trove – keep reading!
Using the Designer (mini-apps)
The mobile app – Bringing AI Editing on the Go
The Designer mobile app brings the power of AI editing into the palm of your hand.
It’s a modern, clean app and provides most of the features you get in the browser version with a few things missing – more on that later. In short, you can use the mobile app to easily create images, cards, collages, invitations, drawings and generate decorative borders. The app is also slick and fast – a well-designed and written app.
Since our boys are really into trains, the theme of this and most of the examples will be around trains, as most of our weekends involve trips to train stations and journeys on different trains!!
Starting off, here’s how we used designer to create some inspiring images around the London Underground – using the Designer Mobile App.
The app’s intuitive interface makes it simple for anyone to enhance their creations with a professional touch.
The image below was created with a simple prompt. Designer will even suggest tweaks as you type to help make the image more vibrant and exciting.
Example: Image Restyling
Imagine you’ve taken a photo that’s perfect except for one detail. With Designer, you can easily edit that detail without affecting the rest of the image. The AI-powered tools can recognize and isolate different elements in your photo, allowing you to make precise edits.
Again, this is so quick and easy to use – simple open the tool, select a picture from your gallery (if you have pictures you want to use from your mobile, then you can either use the Phone Link or app, or the QR Code which you can scan with your phone that opens on your phone and lets you simply choose images from your mobile).
You then just choose the restyle image type you would like such as drawing or Claymation, add an optional element and off you go.
Now my only critique with this service/tool is that is not yet available on the mobile app – which to me seems an obvious one to include in mobile – shoot ➡️restyle ➡️post on social.
Example: Collage Creation
Creating a collage is usually quite a time-consuming task and tricky, but not with Designers Collage Creator. Here you can choose/select the photos you want to use, and the Collage app will automatically arrange them into a stylish collage. You can then adjust the layout, add text, and apply filters to perfect your collage.
When you open the Collages app, Designer gives you a set of example designs to give you inspiration or you can start from scratch. You can upload images from your device (or mobile using the QR Code), select background frame design you want and let Designer do its thing. Let’s see in action below…. again, sticking to the train theme!!
Greeting Cards
So, following a trip to London Charing Cross, where my boys got to have a tour of the station (behind the scenes, we used Designer to quickly create a thank you card. For this, we used one of the sample cards and simply modified the prompt. Let’s see this in action.
Create your own ClipArt (and Stickers)
One of the other cool features in Designer is the ability to create Stickers and Clipart. These are quite similar and create process is the same. The main difference being that Stickers have a nice cut-out-able border round them whereas Clipart does not. The main reason for separating them out (I think) is that it’s easier to distinguish between the two types of images – as in, it helps spark imagination.
Designer Clipart (and sticker) creation with a simple prompt.
Here’s another “Train” themed image we created – this was ClipArt using Designer. In the screen shot above, you can see the simple prompt we used and the options it gave us.
Wait there is more – Integration across your Microsoft Apps
The standalone Microsoft Designer app, whilst super intuitive and packed full of features is just the beginning – yet this is just the beginning of the Designer journey. Whilst much of the roadmap is under NDA still, what I can tell you is that Microsoft has already (just) seamlessly integrated Designer into Copilot (both in Copilot Pro for consumer and in the corporate Copilot for Microsoft Space). This has the effect of enhancing capability in apps like Word and PowerPoint, whereby users can now ask Copilot to generate images and designs directly within their documents, streamlining the creative process and making content more personalised and unique.
We have also seen Designer get native integration into Teams Channels and Chat and you’ll start to see it make more appearances across the other Microsoft apps and services.
Designer Document Integration in PowerPoint and Word
Imagine you’re working on a report in Word, or PowerPoint and you need an AI generated graphic to illustrate your point. Instead of switching apps and copying and pasting, you can now use Designer right within Word and PowerPoint to create a custom graphics that fits perfectly with your document’s style and content.
To do this, you can simply ask Copilot in Word or PowerPoint to create an image for you.
Why You Should Try Designer
The Designer app is more than just a tool; it’s a gateway to unleashing your creativity. With its user-friendly interface, AI-powered editing tools, and seamless integration with other Microsoft apps, Designer simplifies the design process, making it accessible to everyone, regardless of their design experience.
Whether you’re a professional designer looking for a convenient way to work on the go, a marketeer who needs some new ideas, a student needing to create presentations for school, or someone who enjoys creating personalised greeting cards for friends and family, Designer has something for you.
Moreover, with the daily boosts offered by Microsoft, you can explore the full potential of the app without any cost. And if you find yourself needing more, the Copilot Pro subscription is a worthwhile investment for the additional benefits it provides.
Conclusion
Microsoft’s Designer app is a game-changer for creators of all levels. With its user-friendly AI tools and cross-platform availability, the possibilities are endless. Embrace the future of design with Microsoft Designer. Try it and use it for free today and see how it can transform your creative process.
We have seen social media frenzy this morning following a triple whammy of issues impacting Azure Virtual Machines (running Windows 10 and Server 2016) and Windows devices across hundreds of organisations where devices are rebooting to the Windows Recovery Screen issue on Windows 10 devices and Server running older versions.
19/7/24 11:00am: The impacts of the issue are still on-going although the root cause is known and CrowdStrike and working with Microsoft on getting a patch out…
19/7/24: 15:00: CrowdStrike have updated their sites to take accountability of the issue (Microsoft still helping) that has impacted devices due to a “bug” in their software update which caused the BSOD. They have pulled and fixed the update and are working with their customers to remediate the impact. Microsoft have also offered guidance on what can be done to reverse the issue – links to this below.
29/7/2024: 18.00: this is not a Microsoft problem (yet I imagine they will be blamed) but it affected millions of Windows systems… Read to the bottom to see why.
Summary
Since the early hours of the morning, several media companies, airlines, transport companies, tech companies, and schools / universities are reporting a Blue Screen (actually a safetyrecovery screen) issue Windows 10.
The issue is impacting Windows 10 devices that are using CrowdStrike Falcon agent – their flagship Extended Detect and Response (XDR) Security platform.
Impacted devices are crashing following this Falcon Client update and then getting stuck at the “Recovery” screen due to a critical system driver failure that is preventing the device from starting back up.
CrowdStrike and Microsoft are actively working on this to drive a permanent fix, workarounds are available which require manually preventing this service from starting on affected devices.
The issue is not known to be affecting devices running Windows 11 and Server 2019 and beyond.
What is CrowdStrike?
CrowdStrike, a cybersecurity firm based in the US, assists organisations in securing their IT environments, which encompasses all internet-connected resources.
Their mission is to “safeguard businesses from data breaches, ransomware, and cyberattacks” and they position themselves as having leading offerings that compete with other vendors including Microsoft themselves, SentinelOne, and Palo Alto Networks. Their client base is extensive and includes legal, banking, finance, travel firms, airlines, educational institutions, and retail customers.
A key offering from CrowdStrike is their Falcon XDR tool, touted on their website for delivering “real-time indicators of attack, hyper-accurate detection, and automated protection” against cybersecurity threats.
Root Cause
Information available from CrowdStrike and Microsoft state that the issue is caused by a “faulty” version of the csagent.sys file which is key system start-up file needed by CrowdStrike’s new sensors update for their Falcon Sensor agent. It is this file that has been responsible for the BSOD errors on Windows 11 and many servers running older Windows Server OS running in private and public data centres such as Microsoft Azure. .
George Kurtz, the CEO of the global cybersecurity firm CrowdStrike, stated that the issues were due to a “defect” in a “content update” for Microsoft Windows devices.
“The issue has been identified, isolated, and a fix has been deployed.” he said as he clarified that the problems did not impact operating systems other than Windows 10 and WIndows Server 2016 and older and also emphasized, “This is not a security incident or cyber-attack.”
Impact
Windows 10 devices are primarily affected.
Devices running Windows Server 2016 and older in Azure are also impacted if they run the CrowdStrike Falcon agent.
Limited/less impact on devices running Windows 11 or Windows 2019 and later.
Note: Windows 10 enters end of support in October 2025.
Is there a fix?
Updated: 21/7/2024: Microsoft have updated their guidance and provided additional support for fixing these issues using managed devices via Intune. This can be found here.
The formal advice if this issue is affecting your organisation is to contact your CrowdStrike Support representative – CrowdStrike and Microsoft are actively working to address the issue both as a response to the issue and preventative to ensure more devices are not impacted.
Since the issue is known to be caused by the csagent.sys file, there are ways to manually prevent this file being loaded, allowing the device to load. There are a couple of ways to do this.
Use Safe Mode and delete the affected file:
Boot the device to Safe Mode
Open Command Prompt and navigate to the CrowdStrike directory which should be C:\Windows\System32\drivers\CrowdStrike
Locate and delete the file matching the pattern C-00000291.sys* – you can do this using the by using a wildcard dir C-00000291*.sys.
Remove or rename the file.
Use Registry Editor to block the CrowdStrike CSAgent service:
Boot to Safe Mode
Open Windows Registry Editor.
Navigate to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CSAgent
Change the Start value to 4 to disable the service.
Dan Card, of BCS, The Chartered Institute for IT and a cyber security expert said: “People should remain calm whilst organisations respond to this global issue. It’s affecting a very wide range of services from banks to stores to air travel.“
He also said that whilst the cause is now known, it is still causing worldwide issues and impacts on consumer services, banking, healthcare and travel and will take some time to remediate.
“Companies should make sure their IT teams are well supported as it will be a difficult and highly stressful weekend for them as they help customers of all kinds. People often forget the people that are running around fixing things.”
Updated: 21/7/2024: Microsoft have updated their guidance and provided additional support for fixing these issues using managed devices via Intune. This can be found here.
Conclusion
CrowdStrike has acknowledged the issue and is investigating the cause. Users can follow the above steps to resolve the recovery screen issues and boot their PCs normally.
Crowdstrike and Microsoft worked tirelessly to resolve this issue and prevent further widespread impact.
“The issue has been identified, isolated, and a fix has been deployed.” he said as he clarified that the problems did not impact operating systems other than Windows 10 and WIndows Server 2016 and older and also emphasized, “This is not a security incident or cyber-attack.”
Devices running Microsoft’s latest Operating Systems seem to be less impacted (though information still being collated).
How did Microsoft allow this to this happen?
How did this happen? Many people are asking why Microsoft are shifting blame to Crowdstrike (who have admitted fault) asking why and how did Microsoft allow this?
In short, it’s not their fault and there really wasn’t anything they could have done to prevent it…. Here’s why..
Many Security products such as XDR products made by Crowdstrike, Palo Alto, and even Microsoft’s own XDR product defender, are what is known as “kernel mode products” . Whilst this issue affected Windows the same “hiccup error with the update” could have equally of affected other OS such as MacOS and Linux since they are kernal extensions.. This means is they had made the same mistake on the updates for these OS’s the same product mess up would have occurred.
In an ideal world all applications and services would run in user mode rather than Kernel Mode, but with many security and AV products, these have a need (a legitimately one) to monitor at the lowest levels of the OS in order to detect attacks… This is not possible if running in user mode as the kernel is protected.
The Blue Recovery Screen (which was mistaken by most as the Blue Screen of Death (BSoD) which it actually was not is actually the Windows OS safety net.
As such, there is not much more Microsoft can do here. These are third party applications not managed or developed or controlled/updated by Microsoft. If Microsoft were to manually vet every update and change to an application, Microsoft would be classed as control hogs and the world will crucify them for it!
Microsoft cannot legally wall off its operating system in the same way Apple does because of an understanding it reached with the European Commission following a complaint. In 2009, Microsoft agreed it would give makers of security software the same level of access to Windows that Microsoft gets.
The outage is awful and has impacted so many organisation including crutiic services, but it’s also not fair IMO that Microsoft and Windows have been dragged through the dirt simply because it’s their OS that was impacted by the poor updates and issues another third party application caused.
It’s not the first time this had happened…to other OS’s
According report by Neowin, ” similar problems have been occurring for months without much awareness, despite the fact that many may view this as an isolated incident. Users of Debian and Rocky Linux also experienced significant disruptions as a result of CrowdStrike updates, raising serious concerns about the company”s software update and testing procedures. These occurrences highlight potential risks for customers who rely on their products daily.
In April, a CrowdStrike update caused all Debian Linux servers in a civic tech lab to crash simultaneously and refuse to boot. The update proved incompatible with the latest stable version of Debian, despite the specific Linux configuration being supposedly supported. The lab”s IT team discovered that removing CrowdStrike allowed the machines to boot and reported the incident. “
What this shows it the vital importance on update testing and deployment rings.
Yesterday 17th July 24, a new Cyber Security Bill was announced as part of the King’s Speech with industry experts and cyber security firms and advisory boards applauding the greater scrutiny and policies being placed on protecting the nation, our public services, critical infrastructure, and businesses – small, medium, and large.
The bill, will hand more power to regulators around cybersecurity incidents – and also includes a mandate reporting for ransomware attacks. The bill was announced in today’s King’s Speech, alongside 40 others.
… strengthen the UK’s cyber defences, ensure that critical infrastructure and the digital services that companies rely on are secure
Kings Speech | July 2024
In parallel, a new Digital Information and Smart Data Bill also announced, would have security concerns and implications if this Cyber Security Bill had not also been announced since one of it’s aims is to further support and speed up the digitising of more central and local government services as well as bring in new data-sharing standards, whilst giving the Information Commissioner’s Office (ICO) new powers.
CyberSecurity – State of the nation
The newly introduced Cyber Security Bill acknowledges that the UK as a whole faces increasing attacks from both financially-motivated cyber criminals and state actors, with entities of all sizes being frequent targets. The bill was proposed in response to cyber attacks on the UK’s digital economy, which have affected public services and infrastructure. Its aim is to enhance the protection of essential services and critical national infrastructure, which are particularly vulnerable to hostile actors. This is underscored by numerous cyber attacks in recent years on the NHS, NHS Blood supply, UK Trusts, the Ministry of Defence, the British Library, the Electoral Commission, Royal Mail, and various other government entities.
Life vs Death- The NHS Blood Supply Attack: The announcement comes after a severe Russian cyber-attack on Synnovis, a private firm offering pathology services like blood tests to the NHS. As a result of the attack, some patients were notified that their blood test appointments could be delayed by up to six months. It also affected supply of blood and much needed transfusions.
What’s in the Cyber Security Bill?
The new Cyber Security Bill consists of two main objectives.
To expand the remit of existing regulation
Provide regulators with a stronger foundation for the protection of digital services and supply chains, and enhance reporting requirements to develop a more comprehensive understanding of cyber threats.
The bill will expand the remit of regulators to cover supply chains and companies providing service/managed services to organisations – addressing the growing prevalence of supply-side attacks, where malicious actors gain access to organisation’s networks and systems via third-party suppliers such as MSPs, network providers and CSP providers or though APIs and systems which connect to other systems for things such as stock control, support and remote access. The bill also promises to create a stronger regulatory environment to ensure cyber safety measures are actually being introduced.
What about NIS2?
The Cyber Security Bill aims to revise the current UK Network and Information Security (NIS) Regulations 2018. These regulations originate from the EU’s NIS Directive, which outlines specific cybersecurity and incident reporting duties for operators of ‘essential services’ and digital service providers.
The EU has initiated an update to the original NIS framework, with ‘NIS2’ scheduled for implementation across EU member states by 17 October 2024. Whilst ‘NIS2’ does not expliciitly apply to UK companies, this bill is likley to align closely to it and may even add “icing on top”.
About mandatory reporting on ransomwareattacks
Today, whilst organisations need to report data breaches, there is no law/rule about reporting ransomware attacks. This bill changes this. This is a good move since, introducing the requirement to report of ransomware attacks (whether successful or not) will help the UK better understand the wider cybercrime landscape.
What the Cyber Security Bill means for IT and Security Teams
Cyber Secrity and protection remains one of the biggest threats to organisations and government today and remains one of the biggest budget spends which continues to see an year on year increase along side AI of course.
As we live in an increasingly digital society across almost every industry and service, every organisation needs to have, and will be obligned under the new bill, to have robust security governance and controls in place. Organisations need to shift away from simply deploying products in the hope they will stop attacks and instead ensure they also have effective data on attack vectors and trends as well as having clear kill chain risk analysis and mapping across their entire estate from users and devices, to identity and access, data protection, threat detection, isolution, remiation and of course prevention.
In the context of state-sponsored attacks, national conflicts, and wars, it is evident that cyber attacks have become a standard component of such conflicts, targeting infrastructure, governments, and individuals alike. The Cyber Security Bill emphasizes that sectors such as communications, power, finance, health, education, and transportation, including traffic control systems, are all potential targets.
Cyber Security Bill – Things you can do
The new Cyber Security and upcoming NIS2 requirement presents several opportunities for organisations to prepare and get ready which shoudl underpin their existing cyber security and resiliance programme.
In Cyber Security report by Microsoft earlier, Microsoft Security said that they have seen a ten fold increase in cyber attacks along with a similar attack attempot growth of their own platforms and systems include Microsoft 365 and Azure.
Microsoft say that passwords and account compromose (often leading to phisghing attacks and ransomware attacks) continue to rise the fastest with password attacks per month increasing from 3 Billion attacks per month in 2022, to more than 30 Billion a month in 2023.
Microsoft also say that the UK CyberSecurity market in the UK worth $6.2bn in FY25 and is said to continue to increase at around 20% YoY for the next 4 years. For Microsoft, they see the following key areas of security being of the biggest opportunoity driven by customer demand to protect their businesses and critical infraastucture.
Threat Protection – $2.4bn
Identity Protection & Secure Access – $2.2bn
Security Analytics – $1.6bn
Note: Values are UK TAM for 2025.
Consulting, Assessments and Workshops
Leverage your security partners to help you conduct comprehenise reviews.
Many Cyber Security partners have pre-packaged (often vendor funded) offerings to help businesses of all sizes, through the delivery of tailoured, comprehensive workshops and assessments around the core Zero Trust Security Pillars which loosely fit into the catagories above.
The Cyber Security bill strengthens the powers of regulators, which is likley to lead to more frequent and rigorous security assessments and audits. This means you will likely need to prove you are undertaking these regualry and that you have clear, definaed and proven attack simulation plans, prevent and detect and remediation plans in place.
Security Adoption and Consolidation
In the ever-evolving landscape of cybersecurity, the complexity of security has become a significant challenge for many organisations. With an average of 76 security tools to manage, info sec magazine reports that many organisations are overwhelmed by excessive support tickets, ungainly rulesets, redundant alerts, and cumbersome integrations of different often overlapping security products. This complexity can lead to gaps in security, making organisations vulnerable to cyber threats and huge costs.
As part of any review and assessment, contract renewal and negotiation, most organisations can strengthen their security posture while reducing both spend and complexity through a strategy known as security consolidation. This involves streamlining and integrating various security tools and processes into a cohesive system and leveraging/adopting many of the technologies they may already have but have not turned on – examples of this are the vast security products and services offered in Microsoft 365 E5 which may be under-used or not switched on.
Security consolidation super important is essential for several reasons. Firstly, it can enhances threat detection and response by providing a holistic view of security events, facilitating faster identification of anomalies and coordinated response strategies pulling information from products and suits of products rather than trying to connect. Secondly, it simplifies management and operations, making it easier for security teams to manage and operate, leading to increased efficiency and effectiveness in managing cybersecurity risks. Thirdly, it can massively reduces complexity and cost by eliminating redundant systems and streamlining processes, improving the security posture, and reducing the chances of errors.
The National Cyber Security Centre provides a wealth of resources and guidance on various cybersecurity topics, including security consolidation.
Managed SOC and XDR
In light of the cyber security bill, organisations may consider moving to a Managed Security Operations Centre (SoC) or Managed Extended Detection and Response (XDR) service offered from their MSP provider, CSP provider or specialist Managed Security Provider. These service provide a huge a range of benefits for organisations who dont have the time, resources or desire to manage their security operations including:
Comprehensive Cybersecurity: Managed SoC and XDR services provide comprehensive cybersecurity across an organisations entire IT environment – monitoring threat landscapes, including IT networks, devices, applications, endpoints, and data, for both known and evolving vulnerabilities, threats, and risks.
Reduced Complexity: In most cases, investing in such services can significantly reduce the complexity of managing multiple security tools and processes. Whilst these services “may” take on and suppoprt an organisation’s existing security products , in many cases they will require (as part of onboarding) a more steamlined approach to security management, making it easier for organisations to maintain a robust security posture without having to manage multiple products and services.
Faster Response Times: Managed SoC and XDR services can provide significantly faster and more accurate detection and response times to real and high-risk potential threats. Many will leverage their vast experience, Machine Learning and other advanced technologies like AI and automation to make threat detection and response faster than humanly possible.
More Cost-Effective: Whilst not cheap on the surface, consolidating security operations under a managed service, organisations can potentially reduce the total cost of ownership (TCO) of securioty operations, by eliminating the need for multiple standalone security solutions and sometimes expensive security analysts and consultants.
Access to Expertise: These services give organisations access to highly skilled security experts, which can be particularly beneficial given the current shortage of skills in the cybersecurity industry.
Employee Training and Education
The importance of end-user adoption and training around security awareness must not be overstated. It is a critical component of an any organisation’s cybersecurity strategy. The human factor is often the weakest link in corporate security, with studies suggesting that most cyber attacks are caused by human error. Educating end users on cybersecurity best practices is crucial for reducing the risk of insider threats, phishing attacks, and other cyber threats.
Every business, large and small, needs to develop an effective security strategy mindset that is built into their culture. This ensures that every employee, from frontline staff to managers and executives, understands the importance of cybersecurity and the far-reaching impact that a data breach can have. This means that regular training sessions and awareness needs to be conducted to keep all levels of the organisation updated on the latest threats and defensive practices.
Management plays a key role in this process. They should demonstrate leadership by actively participating in security awareness training, complying with the company’s own cybersecurity policies, and encouraging staff to participate in trainings. This helps to create a culture of enhanced cybersecurity awareness and empowering employees to come forward with observations, suggestions or issues they have seen.
End-user adoption and training around security awareness is a commitment that needs to be made at all levels of an organisation. It is not just about protecting the organisation’s digital assets, but also about safeguarding its reputation and credibility. By making security awareness a priority, organisations can significantly reduce their vulnerability to cyber threats.
Conclusion
In conclusion, the King’s Speech has outlined a much needed robust and forward-thinking approach to cybersecurity in light of the every increasing wave of state nation and cyber terrorism combined with the rapid adoption of generative AI.
The introduction of the Cyber Security and Resilience Bill, as announced in the speech, is set to expand regulation to cover more digital services and supply chains, empower regulators to ensure cybersecurity measures, and mandate increased incident reporting to improve the government’s response to cyber attacks. This initiative is a significant step towards strengthening the UK’s cybersecurity infrastructure and resilience.
In light of these developments, every organisations should take proactive steps to align with these new measures. One of the key steps is preparing for the NIS2 Directive, which aims to establish a higher level of cybersecurity and resilience within organisations of the European Union and will also impact UK organisations. Organisations should start preparing by defining their compliance roadmap and optimising their cybersecurity awareness. They should conduct a thorough audit to identify gaps in their cybersecurity regimen and develop a comprehensive plan to address these gaps and achieve compliance with NIS2 requirements.
As we enter Microsoft’s new fiscal 2025, there a bunch of enhancements coming across the board to the Copilot experience inside the Office Copilot experience which im[acts PowerPoint, Word, Excel and Microsoft Loop. Microsoft regularly update the Office Apps, Team, and rest of their products, including Copilot, but the changes rolling out feel more like a “service pack”!
Here’s the key things coming to the app experiences this month and remember, you can always access the Microsoft 365 Copilot Roadmap –> here <–
AI Powered images coming to PowerPoint and Word.
Microsoft are making it much easier to add visuals to both Word and PowerPoint documents with Microsoft Designer in Copilot. This will make it much easier for content creators to get the right image for a document or presentation and will add to the image options within these apps.
With this update, you will be able to create AI-generated image directly from Word and PowerPoint with a simple prompt in additional to using the existing options for stock images as before.
Up until now, this has required users jumping to a browser to create an image in Bing Image Creator or Microsoft Designers, whereas now, they will be able to do this straight from the Copilot prompt in Word and PowerPoint upon which they will be able to create an image from scratch or find and use an existing image from Microsoft’s stock photography library to select from. Microsoft say that PowerPoint, Designer will automatically add the image into a “compelling slide design”.
Image (c) Microsoft
Additional “Document Support” in PowerPoint
Also coming this month, Copilot will support grounding for presentation creation from both encrypted Word documents and PDF files, providing more options for users to create presentation from. This gives users richer context to build new presentations, in addition to referencing.
Copilot in PowerPoint “General Improvements“
Rolling out in June/July and following lots of feedback from users, creating a new presentation from a Copilot is about to get much better with regards the quality or presentations created with more relevant content and images and improved consistency including:
Refined designs for title, section, and content slides.
Improved presentation structure with agenda, section and conclusion slides.
Enhanced abilities to improve transitions and animations across presentation content.
Copilot is also getting the ability to ground itself on your organisations’ people-centric data and insights from the Microsoft Cloud, Microsoft Graph, and the web using Bing Search. This brings Copilot up to the same level of that of Teams, Copilot Chat and Outlook, meaning that users can stay in the app, ask questions, and maintain focus on creating their presentations without having to jump into dfferent apps or windows.
Copilot in Excel is coming out of Preview
In July, Copilot in Excel is also coming out of “preview”.
The first noticable indication will be that Microsoft drops the “in preview” lable that users currently see when using Copilot in Excel.
Secondly, Copilot in Excel is also getting expanded data structure support, meaning it wont be limited to working with just data in tables. Yes, Copilot in Excel will be able to works on data ranges resembling tables so long as the data being worked on contains a single row of headers on top (such as filtered data). Along with this, Copilot in Excel will also now be able to provide more comprehensive answers, just like Word and PowerPoint, Teams and Outlook,
Next up, the edit box will be available on any Excel worksheet, regardless of the selected cell and Copilot will reason over the nearest table, or data range resembling a table, to the user’s selected grid area on the same worksheet.
Finally, Copilot in Excel will provides more conversational and comprehensive answers to a wide array of Excel-related questions, meaning that users can now receive step-by-step instructions to help with complex formulas, fixing errors in formulas or how to do something in Excel.
Image (C) Microsoft.
Copilot in Loop
Copilot is coming to Loop too – one of my favourite “new” apps, with what Microsoft call “Copilot-assisted Loop page creation”
For those unfamiliar with Microsoft Loop, it is described as “flexible canvases that assist users in organising and sharing their work with teams.”
Loop users can now utilise Copilot to transform a blank page into a structured document primed for team collaboration in record time. Whether starting from scratch or using an existing page or template, Copilot can swiftly generate a Loop page tailored to specific requirements, be it a project plan, a feedback session, or any other collaborative effort.
Microsoft Teams will soon prompt meeting organisers of recurring meetings to create a Microsoft Loop workspace for sharing and collaborating on meeting content and actions.
What is Microsoft Loop?
Microsoft Loop is a transformative co-creation experience that brings together teams, content and tasks across your tools and devices. Loop combines a powerful and flexible canvas with portable components that move freely and stay coordinated across applications — enabling teams to think, plan, and create together.
It is made up of workspaces, pages, and components and it totally transforms the way you work so you can think, plan, and create together. On the Loop homepage, you can access all your existing workspaces and create new ones. In a Loop workspace, you can bring everything you need for your project together in one place. To kick off a workspace, Loop can even do the searching for you, making it easy to add existing project-related information and organize it into pages. You can continue adding to your workspace as your project evolves and organize it the way you want. Loop pages are flexible canvases where you can react, comment, and build on each other’s ideas using different flexible and re-usable components.
Why use Loop for Meetings?
Most recurring meetings lose the focus of what their purpose is. Questions such as “What is the meeting about”, “Has anyone got the agenda”, “Was there a meeting last week”, “did anyone take any notes”.
As such, recurring meetings is the perfect place for Loop, since it helps everyone, plan, organise and review your Teams meetings. For recurring meetings, Loop is all about ensuring we keep and share all our meeting content into a central, durable workspace to enable ongoing collaboration over time (rather than a static agenda that becomes out of date and it hard to update) with separate files being shared via email or chat.
This starts with a Collaborative and dynamnic agenda, (which means it can be amended overtime) and as a recurring meeting series continues, additional content shared in a collaborative note space which keeps the meeting up-to-date for everyone whether they can attend or not. We can also track and keep up-to-date tasks and actions which also (wait for it) sync with our ToDo or Planner Tasks, list making it easy to keep in sync.
Since these are sharable components, its also easy to copy a link to the collaborative notes and share them in other apps too like email, but unlike static text, the loop component is still live and can be updated from anywhere – like magic.
Whilst Collaborative Notes in Teams have been there a while, many still “just” use the agenda field since Loop is tucked away further down the meeting pane.
What is great about the way Microsoft are integrating Loop further into Teams is that after the first meeting in the series ends, organisers will be shown a prompt allowing them to have Teams create a Loop workspace after first allowing them to review and confirm workspace members as well as the shared content.
How it works
After the first meeting in the series ends, organisers will be shown a prompt allowing them to have Teams create a Loop workspace after first allowing them to review and confirm workspace members as well as the shared content.After confirmation, a Loop workspace will be created, invites will be sent to the meeting members, and the shared content will be linked in a Loop workspace.
As the group shares more content in a meeting series, as the teams “chat” over weeks or months, all this new content will be added automatically to the meeting workspace. Workspace members can also add other content to the workspace and can reconfigure the order of content in the left navigation pane of the Loop app.
Note: At launch, Microsoft have said that this feature will be enabled for meeting series with 3-50 invitees, but will increase this later.
This new auto-loop experience will be rolling during June and July 2024.
