Microsoft has introduced Windows 365 Disaster Recovery Plus, an advanced add-on designed to drastically reduce downtime for Cloud PCs during unexpected outages. It’s currently available in preview and set for general availability later in the sprint 2025. It aims to minimise Recovery Time Objective (RTO) to just 30 minutes – down from the previous four-hour benchmark for large tenants.
Downtime is the ultimate disruptor for any business, especially when it comes to productivity-critical systems like Cloud Services and of course Cloud PCs. Recognising the demand for quicker recovery times, Microsoft has introduced Windows 365 Disaster Recovery Plus which is currently in preview and will be a paid-for / licensed add-on for Windows 365 Enterprise customers.
Disaster Recovery Plus will offers much faster recovery times to address the limitations of its predecessor “Windows 365 Cross-Region Disaster Recovery” which launched in July 2024. Disaster Recover Plus is due to generally available from during spring this year (2025).
This will be a cost option and is designed for users within organisation whose Cloud PC use demands the highest levels of disaster recovery performance and speed of recovery in the event on an outage.
Sharper Focus on Recovery Times
The original Windows 365 cross-region disaster recovery feature presented huge value, enabling business continuity for Cloud PCs during unforeseen events. This service worked by created snapshots of Cloud PCs, which were stored securely in a secondary region defined by the customer. In the case of the need to invoke recovery, users were able to access temporary replicas of their Cloud PCs, complete with all applications and settings based on the most recent restore point – it worked pretty well.
There were however, some limitations. You see, while applications and settings were restored, unsaved work was irretrievable, making OneDrive or SharePoint essential for active file management (which of course most us use right!). Additionally, the recovery process could take up to four hours for larger tenants – which is longer than it takes most physcial devices to be reprovisioned.
Microsoft’s new Disaster Recovery Plus addresses the Recovery Time Objective (RTO) issue reducing recovery time down to around 30 minutes.
Configuring Disaster Recovery Plus
Configuration of Windows 365 Disaster Recovery Plus is configured in the Windows 365 configuration section within Intune under Devices > Windows 365 > User Settings > Optional Business Continuity and Disaster Recovery.
These disaster recovery add-ons are designed to be used in case of a large outage and not individual or groups of users since this invokes the full disaster recovery process. During this outage (or of course when running a test) the Windows 365 Disaster Recovery Plus service will move selected users to their temporary Cloud PCs
Microsoft say that Windows 365 Disaster Recovery Plus may be applied to a set of individual users or user groups to provide fast and simple activation or deactivation.
Previews and Pricing
As is typical with Microsoft previews, IT admins will have the opportunity to try out this service free of charge. I have not yet seen pricing for the final service and how this will work, but I expect this to ROI based and of course optional for customers that need these higher level of RTO.
Conclusion and Thoughts
For customers for whom any loss of service costs money, the value proposition should be clear. Windows 365 Disaster Recovery Plus bridges a critical gap in the speed of recovery enabling businesses to restore operations significantly (around 8 times faster) in these high-stakes scenarios. The the ability to bring Cloud PCs back online within 30 minutes is a substantial improvement over the four-hour window that currently exists.
The question I guess remains, should this be a chargable extra or do customers just expect this level of performance as services like Windows 365 evolve.
You can read the full Microsoft article <– here —> :
Copilot was very much front and center at Microsoft Ignite last month. However, the Windows ecosystem also had lots of coverage. This includes Windows 11, new devices, Windows 365, and Windows 365 Link. Along with this, Microsoft talked in depth about the importance of the new Windows Security Initiative.
This forms part of the Secure Futures Initiative , a wider efforts to ensure everything access the Microsoft eco-system is secure by design and secure by default.
The Windows Security Intuitive is a comprehensive effort to ensure that Windows remains the most reliable and secure platform on earth. This blog summarise the key Windows and Devices announcements from Ignite 2024.
The Windows Keynote session at Ignite was delivered Pavan Davuluri, Aidan Marcuss, Navjot Virk and David Weston and can be viewed here on demand from Microsoft.
Windows 11 – The Most Secure Windows Ever
Windows 10 is end of life in October 2025, but Windows 11 has been mainstream now since 2021. Windows has always been the platform for innovation, meeting the needs of over a billion customers across enterprise, public sector, education, creators, developers and engineers. With this comes Microsoft’s responsibility to deliver the most reliable and secure platform.
The “CrowdStrike incident” back in July 2024, which impacted 8.5 million devices, was a stark reminder of the need for vigilance and innovation and the need to have better controls in place to protect the core of the Windows OS. “EU policy prevents Microsoft restricting access to its kernel”, but Microsoft have, following the global incident, announced the Windows Resiliency Initiative. This initiative aims at making Windows more reliable and secure for all customers, including those with mission-critical workloads but introducing changes to how both Microsoft and third-parties manage critical workloads and updates within Windows 11.
Changes After the Crowdstrike Incident
In the key note, David Weston shared insights from conversations with hundreds of customers, including CISOs, CIOs, and incident responders. The feedback highlighted the need for easier recovery, stronger resilience of critical security tools, and overall platform security. Microsoft is addressing these needs through the Windows Resilient Security Platform, which allows security product developers to build products outside of kernel mode, reducing complexity and improving recovery.
“In addition to the work we are doing with CISA as part of Microsoft’s Secure Future Initiative, we are heavily investing in safe languages to enhance the safety of our code. This commitment also aligns with CISA’s secure by design pledge. We’re applying this new approach to our security platform and other key areas like Microsoft Surface’s firmware and the Pluton security processor firmware. Part of becoming resilient is also increasing the prevention of attacks, so more security has been built into the operating system and not bolted on later. This reduces complexity and ensures you deploy less software that could become the next failure point. This is why we are targeting the most critical elements of Windows 11.”
David Weston | VP Enterprise and OS Security | Microsoft
Changes in Windows coming…
Improving Windows Reliability – with new capabilities to enable security product developers to build their products outside of kernel mode. This is known as the Windows Resilient Security Platform, which provides a flexible security API set and data collection points that can be used to build endpoint security products like detection and response or antivirus outside of the kernel. This change will help end-user protection and antivirus products provide a high level of security and easier recovery, with less impact on Windows in the event of a crash or mistake
Quick Machine Recovery – This solution can execute targeted fixes from Windows Update on machines, even when Windows is unable to boot. This will allow for quick deployment of fixes that address files, drivers, or any other operation needed to recover a non-bootable machine.
Strengthening Security Tools and Drivers – Microsoft are working with industry-leading security partners and the US Cybersecurity and Infrastructure Security Agency (CISA) to define new ways to increase resilience across the ecosystem. This includes adopting safe deployment practices, conducting additional security and compatibility testing for components like security kernel drivers, and developing strengthened incident response processes for streamlined coordination.
Enhancing Identity Protection – To combat the increasing risk and success in cases of sophisticated phishing attacks, Microsoft has hardened Windows Hello, the built-in industry leading multi-factor authentication (MFA) solution. Windows Hello now supports passkeys, which means much of the web can be protected with MFA seamlessly. This enhancement ensures that users no longer need to choose between a simple sign-in and a safe one. This is one step further to help customers remove passwords from their environment.
Local Administrator Protection – Microsoft is introducing administrator protection to address the challenge of over-privileged users and applications. With admin protection, everyone (even admins) will have standard user permissions by default and can make Windows system changes, including app installation, only when necessary and after authorising the change using Windows Hello. This reduces the risk of attacks by ensuring that employees, not malware, remain in control of Windows.
Deep Collaboration with CISA – Microsoft and the CISA are providing a framework for the IT industry as a whole to ensure that all partners, customers, and organisations can stay ahead of evolving security threats. This collaboration aims to deliver software that is safe, secure, and resilient through secure by design, secure by default, and secure through delivery practices.
These changes and improvements are part of Microsoft’s commitment to making Windows reliable and secure for all customers, including mission-critical workloads. The Windows Resiliency Initiative represents a significant step forward in ensuring that Windows remains the most secure and reliable platform on earth.
Windows 11 – Ease of Migration, Management and Updates
Windows 11 builds on Windows 10 technologies and further simplifies the management and migration process to Windows 11. Windows 11 can be managed with the same tools and processes used for Windows 10, ensuring minimal disruption to the workforce. The compatibility with App Assure guarantees that all apps will work seamlessly on Windows 11.
In contrast, Windows 11 updates are 40% smaller in size, making it easier to stay up to date and reducing impact on users/employees as well as on network bandwidth, disk-space and time.
Windows 10 to Windows 11 – Compatibility with App Assure
App Assure is a key component of the Windows 11 upgrade experience as it was in the Windows 7 to Windows 10 experience. App Assure ensures that all apps are compatible with the new operating system through millions of real life feedback, crash reports and user feedback. This application compatibility is backed by Microsoft’s promise to address any app issues that may arise, providing peace of mind for businesses transitioning to Windows 11. The App Assure portal provides guidance, assurance and clarity of application and application version compatibility.
Updates, Hotfixes, and Autopatch
Windows 11 is introducing several new features to streamline updates and hotfixes.
Quick Machine Recovery allows targeted fixes from Windows Update on machines that are unable to boot, ensuring quick recovery during incidents.
Windows Hotpatch, available through Autopatch settings in Intune, delivers Patch Tuesday security updates directly to employees seamlessly in the background without requiring a restart, reducing interruptions and speeding up the deployment of security updates.
Windows Hotpatch is one that is super important. By using Windows Hotpatch through Autopatch settings in Intune, Microsoft say that 65% of Patch Tuesday security updates are delivered directly without requiring a restart. This significantly reduces restarts and interruptions, allowing security updates to be deployed 60% faster.
According to Forrester research, moving to Windows 11 delivers an impressive 250% return on investment over three years compared to Windows 10.
Windows Backup for Entra ID
Another exciting new feature announced at Microsoft Ignite is Windows Backup for Entra ID. This feature, available in public preview in early 2025, will help organisations ensure a seamless transition of use settings and preferences when setting up a new PC or performing a traditional reinstall which is typical with OS upgrades in larger enterprises.
With Windows Backup, employees can easily transfer their desktop background, icon size, and other preferences to a new device, ensuring a consistent and familiar experience. This reduces the time spent on setup, allowing employees to be productive faster and significantly reducing IT overhead and help desk calls.
Windows 11 – New devices and un-paralleled performance
Speed and Performance
Windows 11 is designed to deliver superior speed and performance. Bear in mind WIndows 10 is 10 years old and was designed for a pre-pandemic world and a world where AI didn’t touch the end-point.
Newer Windows 11 devices offer double the battery life and more than three times the performance of older Windows 10 devices.
Microsoft’s introduction of Copilot+ PCs and AI-PCs, built for AI workloads, is setting a new new standard for productivity, combining advanced AI inferencing capabilities with top-notch security and performance. Satya said in his key note that all applications will be rebuilt as AI apps and Windows is no different. Microsoft are re-writing their apps and OS for the AI era and simple examples include simple in-box tools like Notepad and Paint that have advanced AI capability.
Leading vendors like Adobe are adding new capabilities in their applications that leverage local NPUs found in new Windows 11 Copillot+ and AI PCs
The New Generation of Devices in Copilot+ PCs
The new generation of devices in Copilot+ PCs is designed to harness the full potential of AI. These devices (again bvery centre stateg at Ignite) come equipped with advanced AI inferencing capabilities, enabling them to handle complex workloads with ease. Their Neural Processors (NPUs) can operate at more than 45 Trillion Operations a Second (TOPS) providing the fastes edge AI processing in the world. The integration of AI into these devices not only enhances productivity but also ensures that security measures are robust and effective.
With features like real-time threat detection and automated responses, Copilot+ PCs provide a secure and efficient environment for businesses and consumers.
The day after Ignite, Microsoft also released Recall and Click-To-Do into public preview for users enrolled on the Windows Insider Programme.
Windows 11 – Sustainability and Windows 365
Modernising isn’t just about cost savings; it’s about the collective responsibility and impact on the global economy, our business and the environment. Microsoft has committed to advancing sustainability, and adopting Windows 11 helps in achieving your company’s sustainability goals.
Microsoft boldly shared that Windows 11 reduces energy use as the “world’s first carbon-aware OS” and offers Energy Saver, increasing energy efficiency by up to 22%.
Microsoft talked about their own devices, Surface which are manufactured using recycled materials and more renewable energy. As an example, Surface enclosures use 100% recycled aluminum alloy and 100% recycled rare earth materials. They also used this time to share existing and new programs to help organisations reduce e-waste with the recycling and refurbishment opportunities available across our ecosystem partners such as Cisilion. There’s a dedicated sustainability site for Surface -> here <-
Microsoft also shared several examples of how organisations can extend the life of (and even breath new life into) older hardware with Windows 365 without sacrificing security protection or experience.
Windows 365 and Windows 365 Link
Microsoft shared how Windows 365 plays can not only play a crucial role in this sustainability effort but also used the opportunity to announce their new dedicated “thin client” device called Windows 365 Link.
Priced at $349 and available from Spring 2025, these dedicated low power, sustainability built devices can provide local compute power but with no IT footprint to securely streams employees full personal Windows 11 desktop with all their apps, content, and settings directly from the Microsoft Cloud.
Windows 365 can run on any device include Web, dedicated devices like Windows 365 Link, and even mobile devices on iOS and Android as well of course as legacy Windows 10 devices and even Windows 11.
The flexibility of Windows 365 allows businesses in any sector and any size to reduce their IT infrastructure and management complexity while providing a consistent and secure experience for employees. Windows 365 is designed to complement your Windows 11 end user computing estate, enabling more endpoints and form factors, and unlocking more value and options for businesses.
Windows 365 is also great for contractors, testing migrations to Windows 11 and also for running secure workloads as well as for education and front line workers.
What have I missed?
There were lots of announcement around Windows and Devices at Ignite. The Windows Security Initiative clearly represents a significant step forward in ensuring that Windows remains the most secure and reliable platform.
With new enhanced security measures, simplified management and migration, seamless compatibility with App Assure, and innovative update mechanisms, Windows 11 is promising to deliver unparalleled speed, performance, security, agility and management.
The Webex One 24 opening keynote was a showcase of Cisco’s commitment to revolutionising the way organisations collaborate and connect. It highlighted several new announcements, renewed partnerships and AI innovation across their portfolio which will continue to innovate the “future of work”.
This blog summarises my key highlights from Cisco’s fifth annual Webex One event. This year’s theme focussed on the transformative power of AI and human connection. Senior Cisco execs, including Aruna Ravichandran and Jeetu Patel, opened by discussing the latest AI innovations and their impact on customer and employee experiences and of course used the event to showcase new technologies and products from Cisco as well as new and extended partnerships with key vendors including Apple and Microsoft.
Cisco emphasised the integration of AI into (all) their products, the importance of secure and smart workplaces, and the future of seamless collaboration. They also introduced new technologies like the autonomous Webex AI agent and Cisco spatial meetings for Apple Vision Pro, showcasing their commitment to enhancing productivity and connectivity.
“Don’t worry about AI taking away your jobs, but worry about people who use AI effectively” | Jitu Patel
Aruna Ravichandran, Cisco’s Senior Vice President emphasised the importance of human connection and creativity in the transformative world of AI, highlighting the event’s focus on groundbreaking AI innovations and customer experience.
Jeetu Patel, Cisco’s Executive Vice President, talked about the “seismic shift in AI“, noting that while AI has brought significant momentum and pockets of impactful change, for the most, our lives have not yet materially changed. He said that he sees a dramatic change in the next decade, emphasizing the potential of agent-based technologies to redefine and reshape jobs and workflows fundamentally.
Let’s look at a few of these in more detail.
Cisco’s AI Strategy
Cisco’s AI strategy is focussed on integrating AI natively into their products, providing AI infrastructure, and ensuring AI security. Jeetu Patel talked passionately about the importance of AI-ready data centers, modern networks and AI aware security as well as what he called “future-proof workplaces”, and resilience in operations, driven by AI and data. Cisco unveiled new AI-driven features across their Webex collaboration suite, designed to make virtual meetings more intuitive and productive. These enhancements included real-time language translation, advanced noise cancellation, and AI-powered meeting summaries, ensuring that every participant can stay engaged and informed as well as work with Apple and Microsoft integration and connectivity.
Building Future Proofed Workspaces
Cisco talked about the importance of seamless integration across various platforms. They said they are introducing new APIs and partnerships that will better enable Webex and their meeting spaces technologies to integrate more effortlessly with other tools and applications, providing a unified and streamlined user experience, including with Microsoft Teams. Cisco aims to continue to raise the standard of what the workplace with secure campus and branch networking, smart building technology, workplace security, and seamless collaboration should look like something they see themselves having a unique industry advantage of.
“Our goal is to make every meeting as productive and engaging as possible, no matter where you are in the world.” | Jeetu Patel | Cisco VP
Cisco said the focus is on creating productive, automated, and secure environments for employees to work from anywhere. Cisco also showcases its advancements in spatial meetings, emphasizing the importance of human connection in AI-driven interactions – with a differentiated focus on creating immersive and engaging meeting experiences that feel as intimate and effective as in-person interactions.
Autonomous Agents in Webex Contact Centre
Cisco also introduced their upcoming autonomous Webex AI agent, designed to enhance self-service in contact centers. This AI agent combines conversational intelligence with generative AI and integrates with back-office systems to deliver personalized outcomes, reducing the need for human agents. The demo showed some advanced autonomous (AI Agents) enhancing customer self-service – combining conversational AI with generative AI along with integrates with back-office systems and processes like HR and Finance.
Extended Partnerships
Cisco discussed extended partnerships with both Apple and Microsoft, emphasizing their collaborative efforts to enhance technology and user experience and to meet customers where they are. These partnerships emphasize Cisco’s commitment to interoperability and enhancing user experiences across different (in some cases, competitive) platforms.
Cisco said that their Cisco Room devices for Microsoft Teams have become the fastest-growing Microsoft Teams Room solution in the world with over 3,000 customers now leveraging Cisco technology to power their Microsoft Teams investment.
Cisco’s long-term relationship with Apple was discussed and references made to Cisco technology being integral to Apple’s product development. The keynote highlighted the collaboration between the two including the development of the Apple Vision Pro, which integrates Cisco’s Webex for immersive 3D meetings
An AI powered Sustainable Future
High on the agenda was Cisco’s commitment to sustainability which was a key theme through the keynote. Cisco introduced new features aimed at reducing the environmental impact of virtual meetings, such as energy-efficient data centres and tools to measure and offset carbon footprints.
Did you attend Webex One or watch it remotely, what did you find of interest and what did you hope you’d see but didn’t?
Microsoft is building new Windows security features to prevent another CrowdStrike incident and are in talks to enable them to do to more to allow them to better protect the core of their OS to prevent outages and widespread impact like the CrowdStrike incident which impacted more then 8.5 million devices and is estimated to have caused more than $10b financial impact.
Fighting against the anti monopolies commissions.
In an ideal world, Microsoft would have right to protect their core kernel code and prevent any third parties interfering or accessing it.
Today, however, law is preventing them from doing this to ensure they adhere to the anti monopolies and anti compete laws in many parts of globe. Instead Microsoft are doing all they can to further harden security around the kernel and Windows security in general.
Their goal is of course to find a comprised way to protect Windows from software issues caused by security vendors to ensure OS integrity without killing third party security vendors but to avoid them needed kernel level access in the first place…
Enhancing Security without Kernel Access
Since July, Microsoft has been in talks with leading security vendors, including CrowdStrike, Broadcom and Sophos, to develop a new security platform in Windows that still allows security vendors to do their thing, but without Microsoft having to expose full kernel access.
Then last week ( September 10th, 2024), Microsoft, CrowdStrike, and many other security partners who provide endpoint security technologies got together to discuss ways to boost resiliency and protect our mutual customers’ critical infrastructure. Aidan Marcuss, Corporate VP of Microsoft Windows and Devices said “Our objective is to discuss concrete steps we will all take to improve security and resiliency for our joint customers.”
The goal is to prevent incidents similar to the CrowdStrike outage and enhance the overall security framework of Windows without monopolosing the endpoint and XDR markets.
Benefits to Consumers
For everyday users, this would promises a more secure and stable computing experience in a world where attacks on identity and data theft are increasing at pace. By further reducing the risk of security breaches and system outages, whilst reducing the risk of third party apps and services causing system failures, Microsoft is ensuring that consumers continue to trust them to protect their personal data and maintain smooth operation. Enhanced security measures mean fewer disruptions and a safer online environment, which is crucial in an era where cyber threats are increasingly sophisticated.
Benefits to Business Users
For commerciall/business users, they of course would gain significantly from these new security measures. With sensitive corporate data and identity consistency at risk from attack or breach, Microsoft’s enhanced security framework will provide businesses with greater peace of mind and further increase the trust they already have with Microsoft to protect their data, applications and emails.
Of course, reduced risk of breaches and downtime caused by third party apps and services also translates to increased choice (without fear), and lower costs associated with security incidents and system outages incidents.
Whilst this should enable businesses to focus more on their core operations, knowing that their IT infrastructure is robust and secure, it doesn’t remove the need for full business continuity planning….
Microsoft’s Perspective and Benefit
For Microsoft, this move is a strategic step to reinforce its commitment to security and reliability. Arguably, Microsoft is the biggest security company in the world and with over a billion devices running the Windows operating system, they have a duty to continue to protect their products from outages caused by, well things out of their control, such as the CrowdStrike update fail!
By working closely with security vendors and regulatory bodies, Microsoft is not only positioning itself as a leader in the cybersecurity space, but also as a partner that works with its software houses (ISVs) and customers to ensure they still have choice over the aspects of Windows they use (or subscribe too) and the third party vendors they choose to work with.
So what about the third party security vendors then?
Security vendors like CrowdStrike, Broadcom, Sophos, Cisco, and Trend Micro also benefit from this collaboration by being part of a more secure and standardised platform. This partnership allows them to continue to innovate and develop advanced security solutions without the complexities and risks associated with kernel access..it also. Means they will continue to get support and help from Microsoft (as a Isv partner) in developing and supporting their products.
Potential Concerns and Regulatory Involvement
Naturally, there are concerns about potential monopolistic practices. Vendors (and those less. Involved in their initiative) may fear that Microsoft might restrict kernel access for third-party products while retaining it for its own, which could limit their ability to compete effectively, pushing customers to jump. Ship and just adopt Microsoft security products and services.
To address such concerns and ensure transparency, Microsoft has involved US and European government officials in discussions. This move is aimed at addressing regulatory concerns and demonstrating Microsoft’s commitment to a fair and secure computing environment. While the initiative is largely seen as positive, it is crucial for Microsoft to maintain an open and competitive landscape for all security vendors.
Conclusion
Microsoft’s new security measures would represent a significant step towards a safer Windows environment. By working closely with security vendors and involving regulatory bodies, Microsoft is striving to create a secure and fair platform for all users making kernel acess more controlled than it is today. This promises numerous benefits for consumers, business users, and security vendors alike, while also addressing potential concerns about competition and transparency.
Read more. The Register has also covered this story in depth of you want to read more here.
Microsoft has given the Windows App “GA” status and released to the masses along with long awaited mobile app support which will open more doors and use cases for Windows Cloud PCs and Virtual Desktops. This will allow businesses to bring the power of Windows to virtually any device. Whether you’re using macOS, iOS, iPadOS, Android, or even another Windows PC, you can now stream a copy of Windows seamlessly.
You can read the full Microsoft Blog on this > here <
What’s so good about the Windows App?
Havig been in preview for some time (previously there were multiple apps to use for different virtualised experiences on Windows such as Remote Desktop app, different websites and third-party apps etc) but now we have a new single experience 🙂 This provides:
Unified Experience: The Windows App serves as a single place to streaming all your corporate and development Windows desktops including Windows 365, Azure Virtual Desktop, and Remote Desktop services.
Customisable Home screen: Which allows users to tailor the app to suit their needs by pinning specific desktops, configuring the join experience and even simple configuration of things like multi-tasking and app switching with Windows 11 (known as Windows 365 Switch).
Multi-Screen Support: The Windows App lets users customise and extend their experience (just like a traditional / physical desktop) with multiple display support.
USB Redirection: Windows App allows full support of local USB devices including speakers, mics, webcams, storage devices, and printers as if they are directly connected to your Cloud PC.
Single Sign On – The Windows App supports single sign on with Windows 365 and AVD with Entra ID.
Who can use the Windows App?
Presently, the app is limited to Microsoft work and school accounts, making it ideal for professionals and students who need to access their work PCs remotely. It’s not available for consumers, but it does make Windows 365 and AVD simple to use on personal BYOD devices that need to access work devices. Something I do often.
Downloading the Windows App
The Windows app is available for download from the Microsoft Store and the Apple App Store. It is also available on the Google Play store but is now in public preview.
User Experience
The user experience is fantastic and shows the attention to detail, listening to user feedback and alignment with the core Windows Development team. Microsoft have said that the Windows App will start shipping as standard out of box app on Coporate Devices running Windows 11 too.
Windows 365 Desktop on Samsung S24 via TV
Windows App on Samsung S24 through TV
The image above (which is pretty cool) is Windows 365 Running on my Samsung S24 displayed through a TV (using Samsung Dex) – and yes, I am using Copilot on PowerPoint.
Windows 11 Experience below
The Future
I’d love to see Windows App come to more devices like high-end TVs and tablets in the future just like Microsoft have done with Xbox Game Streaming.
What’s one of the biggest stumbling blocks to incorporating AI tools like ChatGPT and of course MicrosoftCopilot into daily work? Well, I can tell you that from first-hand experience is it not knowing how or when to use it. In this blog I’ll explore a few scenarios where I believe anyone with a Copilot License can start seeing real tangible value from GenAI today.
What is Copilot in Microsoft 365?
I’m hoping by now that I don’t actually need to answer that one, but… In short Copilot for Microsoft 365 is Microsoft’s Generative AI chat bot, that is grounded (meaning it has access to) your Microsoft email, chat, documents and more and is also integrated (natively) into all your Microsoft 365 apps and services like Word, Excel, Teams, Outlook, Loop etc.
The goal of Microsoft 365 Copilot is to make us all more productive and creative what ever job we do and results from many of the customers we have been working with this past 12 months is impressive.
Overcoming the adoption hurdle
The biggest hurdle to getting regular and good results with Copilot is actually not what the tool can do or can’t, the expertise around ‘good prompting‘, as important as it is, but is in fact, realising the benefits of making Copilot part of everything you do through habit forming.
To do this, we need to get into the habit of using Copilot every day to really see the value we get from it little by little. many of our customers have this same problem and it’s not a Copilot thing, it’s a new technology thing. We are all so busy doing our jobs that many don’t have time to learn new things or try new ways of working.
Good adoption and successful use of any technology requires some input and perseverance from us as users. As we realise the value, we use these technologies more and the value we get from increases exponentially. Think about the first time a company introduced a word processor in place of a typewriter for example!
Adoption and Change Management, whether run internally (as part of any technology deployment) makes a huge difference to successful deployment and Copilot is a big change in how people work and what it can do, so it does need to be handled that way. Stats show that technology projects that have a proper adoption and change programme linked to them are significantly more likely to deliver the desired return on investment. According to Microsoft, proper change management can lead to 85% of users finding tools like Copilot helpful in getting to a good first draft faster.
Adoption and change management is not just training (though that is of course part of it). Its about helping people learn the tools within their roles, to see the benefits and to tell/show other team members so they learn and benefit together. At Cisilion, we know (first hand) and through the dozens of customers we are working with that one of the primary blockers to adoption of Microsoft Copilot is simply not knowing how or when to use it and so simply “forgetting about it”.
My Copilot Hero Scenarios
What follows next is 3 (three) Copilot for Microsoft scenarios that I use all the time that I can honestly say have become habit forming for me and many of my team.
Goodbye Internet Search: Firstly, I very rarely now ever use internet search to find information. Both in work and personal life, whenever I need to find information about something I turn to Copilot. Whether I’m looking at finding out about a new product, event, news story or whether it’s in my personal life, Copilot just gives me the details I need in seconds rather than giving me a page of search results which I have to sift through manually to see what is relevant. If you use SharePoint at work – this becomes even more powerful!
Email and Meetings (and calls): These are definitely the biggest use cases for Copilot in my daily routine. I simply don’t work or handle email and meetings in the same way anymore. One of the things Copilot can do really well is summarise what’s in my inbox and prioritise requests and things that need my attention – especially If I have been away for a few days. The same goes for meetings. I can pay more attention “in” meetings and have Copilot tackle notes for me, summarise things or even check things for me.
Copilot can summarise actions, clarify points, and what is really cool is that it can do this for me even if I can’t actually attend the meeting (through a new feature called “Follow a Meeting“. Copilot in Outlook can summarise long email threads and can even draft replies for me in a professional manner so all I have to do is edit and refine before clicking send. Copilot also works on phone calls if you have Teams Phone by the way!
My Goto First: Copilot is the first place I go when I have a document, presentation or other document to read or reference. What do I mean by that?
Like us all, I get sent a lot of documents to read, review and comment on. I am now in a habit (I think it’s a good one) of using Copilot as my assistant as my first point of call every time. I always ask Copilot to summarise the document (Word does this automatically now when you open a document) so I can quickly understand the key points of the document before I read it more deeply. This is useful for getting up to speed quickly, determining if I need to read it (guess what – sometimes I don’t) or to help me understand the theme as I do read it. I also use Copilot to ask questions about a document (PDF, Word, PowerPoint etc).
I can also ask Copilot questions about the document such as, “does this business case make a clear and strong argument“, or “what is the financial impact of this proposal“, or “what risks have been identified in this project plan“, etc. I can use Copilot to help me spot gaps, or areas that the author might have overlooked or omitted. I can also ask Copilot to summarise things I do not understand in a simpler language or to help me get a new perspective on something.
Summary
Using any new tool, like Copilot sometimes takes time to realise the true value and power of what it can do. Working with Gen AI like Copilot is as revolutionary as the internet was back in the 90s. Many doubted it and now the world would stop without it.
If you are lucky enough to have a Copilot for Microsoft 365 license, then I suggest you try the above. Use it every day and share your successes with your peers. If you don’t have an adoption and training team in house, then reach out to a partner for help, check out the adoption hub at Microsoft or get some ideas from my other blogs, or from YouTube 🙂
Remember, think about and push Copilot to help you get more value at work and at home. Before starting any task, such as a presentation, meeting minutes or follow-up or research, think “Can Copilot help me here?“
Yes – there’s a bit of a learning curve, but the effort you in will be worth it (IMO).
Some video links…
I have a growing handful of use case and scenario videos I am happy to share below… Hope you find the useful. If you do.. Let me know.
We have seen social media frenzy this morning following a triple whammy of issues impacting Azure Virtual Machines (running Windows 10 and Server 2016) and Windows devices across hundreds of organisations where devices are rebooting to the Windows Recovery Screen issue on Windows 10 devices and Server running older versions.
19/7/24 11:00am: The impacts of the issue are still on-going although the root cause is known and CrowdStrike and working with Microsoft on getting a patch out…
19/7/24: 15:00: CrowdStrike have updated their sites to take accountability of the issue (Microsoft still helping) that has impacted devices due to a “bug” in their software update which caused the BSOD. They have pulled and fixed the update and are working with their customers to remediate the impact. Microsoft have also offered guidance on what can be done to reverse the issue – links to this below.
29/7/2024: 18.00: this is not a Microsoft problem (yet I imagine they will be blamed) but it affected millions of Windows systems… Read to the bottom to see why.
Summary
Since the early hours of the morning, several media companies, airlines, transport companies, tech companies, and schools / universities are reporting a Blue Screen (actually a safetyrecovery screen) issue Windows 10.
The issue is impacting Windows 10 devices that are using CrowdStrike Falcon agent – their flagship Extended Detect and Response (XDR) Security platform.
Impacted devices are crashing following this Falcon Client update and then getting stuck at the “Recovery” screen due to a critical system driver failure that is preventing the device from starting back up.
CrowdStrike and Microsoft are actively working on this to drive a permanent fix, workarounds are available which require manually preventing this service from starting on affected devices.
The issue is not known to be affecting devices running Windows 11 and Server 2019 and beyond.
What is CrowdStrike?
CrowdStrike, a cybersecurity firm based in the US, assists organisations in securing their IT environments, which encompasses all internet-connected resources.
Their mission is to “safeguard businesses from data breaches, ransomware, and cyberattacks” and they position themselves as having leading offerings that compete with other vendors including Microsoft themselves, SentinelOne, and Palo Alto Networks. Their client base is extensive and includes legal, banking, finance, travel firms, airlines, educational institutions, and retail customers.
A key offering from CrowdStrike is their Falcon XDR tool, touted on their website for delivering “real-time indicators of attack, hyper-accurate detection, and automated protection” against cybersecurity threats.
Root Cause
Information available from CrowdStrike and Microsoft state that the issue is caused by a “faulty” version of the csagent.sys file which is key system start-up file needed by CrowdStrike’s new sensors update for their Falcon Sensor agent. It is this file that has been responsible for the BSOD errors on Windows 11 and many servers running older Windows Server OS running in private and public data centres such as Microsoft Azure. .
George Kurtz, the CEO of the global cybersecurity firm CrowdStrike, stated that the issues were due to a “defect” in a “content update” for Microsoft Windows devices.
“The issue has been identified, isolated, and a fix has been deployed.” he said as he clarified that the problems did not impact operating systems other than Windows 10 and WIndows Server 2016 and older and also emphasized, “This is not a security incident or cyber-attack.”
Impact
Windows 10 devices are primarily affected.
Devices running Windows Server 2016 and older in Azure are also impacted if they run the CrowdStrike Falcon agent.
Limited/less impact on devices running Windows 11 or Windows 2019 and later.
Note: Windows 10 enters end of support in October 2025.
Is there a fix?
Updated: 21/7/2024: Microsoft have updated their guidance and provided additional support for fixing these issues using managed devices via Intune. This can be found here.
The formal advice if this issue is affecting your organisation is to contact your CrowdStrike Support representative – CrowdStrike and Microsoft are actively working to address the issue both as a response to the issue and preventative to ensure more devices are not impacted.
Since the issue is known to be caused by the csagent.sys file, there are ways to manually prevent this file being loaded, allowing the device to load. There are a couple of ways to do this.
Use Safe Mode and delete the affected file:
Boot the device to Safe Mode
Open Command Prompt and navigate to the CrowdStrike directory which should be C:\Windows\System32\drivers\CrowdStrike
Locate and delete the file matching the pattern C-00000291.sys* – you can do this using the by using a wildcard dir C-00000291*.sys.
Remove or rename the file.
Use Registry Editor to block the CrowdStrike CSAgent service:
Boot to Safe Mode
Open Windows Registry Editor.
Navigate to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CSAgent
Change the Start value to 4 to disable the service.
Dan Card, of BCS, The Chartered Institute for IT and a cyber security expert said: “People should remain calm whilst organisations respond to this global issue. It’s affecting a very wide range of services from banks to stores to air travel.“
He also said that whilst the cause is now known, it is still causing worldwide issues and impacts on consumer services, banking, healthcare and travel and will take some time to remediate.
“Companies should make sure their IT teams are well supported as it will be a difficult and highly stressful weekend for them as they help customers of all kinds. People often forget the people that are running around fixing things.”
Updated: 21/7/2024: Microsoft have updated their guidance and provided additional support for fixing these issues using managed devices via Intune. This can be found here.
Conclusion
CrowdStrike has acknowledged the issue and is investigating the cause. Users can follow the above steps to resolve the recovery screen issues and boot their PCs normally.
Crowdstrike and Microsoft worked tirelessly to resolve this issue and prevent further widespread impact.
“The issue has been identified, isolated, and a fix has been deployed.” he said as he clarified that the problems did not impact operating systems other than Windows 10 and WIndows Server 2016 and older and also emphasized, “This is not a security incident or cyber-attack.”
Devices running Microsoft’s latest Operating Systems seem to be less impacted (though information still being collated).
How did Microsoft allow this to this happen?
How did this happen? Many people are asking why Microsoft are shifting blame to Crowdstrike (who have admitted fault) asking why and how did Microsoft allow this?
In short, it’s not their fault and there really wasn’t anything they could have done to prevent it…. Here’s why..
Many Security products such as XDR products made by Crowdstrike, Palo Alto, and even Microsoft’s own XDR product defender, are what is known as “kernel mode products” . Whilst this issue affected Windows the same “hiccup error with the update” could have equally of affected other OS such as MacOS and Linux since they are kernal extensions.. This means is they had made the same mistake on the updates for these OS’s the same product mess up would have occurred.
In an ideal world all applications and services would run in user mode rather than Kernel Mode, but with many security and AV products, these have a need (a legitimately one) to monitor at the lowest levels of the OS in order to detect attacks… This is not possible if running in user mode as the kernel is protected.
The Blue Recovery Screen (which was mistaken by most as the Blue Screen of Death (BSoD) which it actually was not is actually the Windows OS safety net.
As such, there is not much more Microsoft can do here. These are third party applications not managed or developed or controlled/updated by Microsoft. If Microsoft were to manually vet every update and change to an application, Microsoft would be classed as control hogs and the world will crucify them for it!
Microsoft cannot legally wall off its operating system in the same way Apple does because of an understanding it reached with the European Commission following a complaint. In 2009, Microsoft agreed it would give makers of security software the same level of access to Windows that Microsoft gets.
The outage is awful and has impacted so many organisation including crutiic services, but it’s also not fair IMO that Microsoft and Windows have been dragged through the dirt simply because it’s their OS that was impacted by the poor updates and issues another third party application caused.
It’s not the first time this had happened…to other OS’s
According report by Neowin, ” similar problems have been occurring for months without much awareness, despite the fact that many may view this as an isolated incident. Users of Debian and Rocky Linux also experienced significant disruptions as a result of CrowdStrike updates, raising serious concerns about the company”s software update and testing procedures. These occurrences highlight potential risks for customers who rely on their products daily.
In April, a CrowdStrike update caused all Debian Linux servers in a civic tech lab to crash simultaneously and refuse to boot. The update proved incompatible with the latest stable version of Debian, despite the specific Linux configuration being supposedly supported. The lab”s IT team discovered that removing CrowdStrike allowed the machines to boot and reported the incident. “
What this shows it the vital importance on update testing and deployment rings.
Yesterday 17th July 24, a new Cyber Security Bill was announced as part of the King’s Speech with industry experts and cyber security firms and advisory boards applauding the greater scrutiny and policies being placed on protecting the nation, our public services, critical infrastructure, and businesses – small, medium, and large.
The bill, will hand more power to regulators around cybersecurity incidents – and also includes a mandate reporting for ransomware attacks. The bill was announced in today’s King’s Speech, alongside 40 others.
… strengthen the UK’s cyber defences, ensure that critical infrastructure and the digital services that companies rely on are secure
Kings Speech | July 2024
In parallel, a new Digital Information and Smart Data Bill also announced, would have security concerns and implications if this Cyber Security Bill had not also been announced since one of it’s aims is to further support and speed up the digitising of more central and local government services as well as bring in new data-sharing standards, whilst giving the Information Commissioner’s Office (ICO) new powers.
CyberSecurity – State of the nation
The newly introduced Cyber Security Bill acknowledges that the UK as a whole faces increasing attacks from both financially-motivated cyber criminals and state actors, with entities of all sizes being frequent targets. The bill was proposed in response to cyber attacks on the UK’s digital economy, which have affected public services and infrastructure. Its aim is to enhance the protection of essential services and critical national infrastructure, which are particularly vulnerable to hostile actors. This is underscored by numerous cyber attacks in recent years on the NHS, NHS Blood supply, UK Trusts, the Ministry of Defence, the British Library, the Electoral Commission, Royal Mail, and various other government entities.
Life vs Death- The NHS Blood Supply Attack: The announcement comes after a severe Russian cyber-attack on Synnovis, a private firm offering pathology services like blood tests to the NHS. As a result of the attack, some patients were notified that their blood test appointments could be delayed by up to six months. It also affected supply of blood and much needed transfusions.
What’s in the Cyber Security Bill?
The new Cyber Security Bill consists of two main objectives.
To expand the remit of existing regulation
Provide regulators with a stronger foundation for the protection of digital services and supply chains, and enhance reporting requirements to develop a more comprehensive understanding of cyber threats.
The bill will expand the remit of regulators to cover supply chains and companies providing service/managed services to organisations – addressing the growing prevalence of supply-side attacks, where malicious actors gain access to organisation’s networks and systems via third-party suppliers such as MSPs, network providers and CSP providers or though APIs and systems which connect to other systems for things such as stock control, support and remote access. The bill also promises to create a stronger regulatory environment to ensure cyber safety measures are actually being introduced.
What about NIS2?
The Cyber Security Bill aims to revise the current UK Network and Information Security (NIS) Regulations 2018. These regulations originate from the EU’s NIS Directive, which outlines specific cybersecurity and incident reporting duties for operators of ‘essential services’ and digital service providers.
The EU has initiated an update to the original NIS framework, with ‘NIS2’ scheduled for implementation across EU member states by 17 October 2024. Whilst ‘NIS2’ does not expliciitly apply to UK companies, this bill is likley to align closely to it and may even add “icing on top”.
About mandatory reporting on ransomwareattacks
Today, whilst organisations need to report data breaches, there is no law/rule about reporting ransomware attacks. This bill changes this. This is a good move since, introducing the requirement to report of ransomware attacks (whether successful or not) will help the UK better understand the wider cybercrime landscape.
What the Cyber Security Bill means for IT and Security Teams
Cyber Secrity and protection remains one of the biggest threats to organisations and government today and remains one of the biggest budget spends which continues to see an year on year increase along side AI of course.
As we live in an increasingly digital society across almost every industry and service, every organisation needs to have, and will be obligned under the new bill, to have robust security governance and controls in place. Organisations need to shift away from simply deploying products in the hope they will stop attacks and instead ensure they also have effective data on attack vectors and trends as well as having clear kill chain risk analysis and mapping across their entire estate from users and devices, to identity and access, data protection, threat detection, isolution, remiation and of course prevention.
In the context of state-sponsored attacks, national conflicts, and wars, it is evident that cyber attacks have become a standard component of such conflicts, targeting infrastructure, governments, and individuals alike. The Cyber Security Bill emphasizes that sectors such as communications, power, finance, health, education, and transportation, including traffic control systems, are all potential targets.
Cyber Security Bill – Things you can do
The new Cyber Security and upcoming NIS2 requirement presents several opportunities for organisations to prepare and get ready which shoudl underpin their existing cyber security and resiliance programme.
In Cyber Security report by Microsoft earlier, Microsoft Security said that they have seen a ten fold increase in cyber attacks along with a similar attack attempot growth of their own platforms and systems include Microsoft 365 and Azure.
Microsoft say that passwords and account compromose (often leading to phisghing attacks and ransomware attacks) continue to rise the fastest with password attacks per month increasing from 3 Billion attacks per month in 2022, to more than 30 Billion a month in 2023.
Microsoft also say that the UK CyberSecurity market in the UK worth $6.2bn in FY25 and is said to continue to increase at around 20% YoY for the next 4 years. For Microsoft, they see the following key areas of security being of the biggest opportunoity driven by customer demand to protect their businesses and critical infraastucture.
Threat Protection – $2.4bn
Identity Protection & Secure Access – $2.2bn
Security Analytics – $1.6bn
Note: Values are UK TAM for 2025.
Consulting, Assessments and Workshops
Leverage your security partners to help you conduct comprehenise reviews.
Many Cyber Security partners have pre-packaged (often vendor funded) offerings to help businesses of all sizes, through the delivery of tailoured, comprehensive workshops and assessments around the core Zero Trust Security Pillars which loosely fit into the catagories above.
The Cyber Security bill strengthens the powers of regulators, which is likley to lead to more frequent and rigorous security assessments and audits. This means you will likely need to prove you are undertaking these regualry and that you have clear, definaed and proven attack simulation plans, prevent and detect and remediation plans in place.
Security Adoption and Consolidation
In the ever-evolving landscape of cybersecurity, the complexity of security has become a significant challenge for many organisations. With an average of 76 security tools to manage, info sec magazine reports that many organisations are overwhelmed by excessive support tickets, ungainly rulesets, redundant alerts, and cumbersome integrations of different often overlapping security products. This complexity can lead to gaps in security, making organisations vulnerable to cyber threats and huge costs.
As part of any review and assessment, contract renewal and negotiation, most organisations can strengthen their security posture while reducing both spend and complexity through a strategy known as security consolidation. This involves streamlining and integrating various security tools and processes into a cohesive system and leveraging/adopting many of the technologies they may already have but have not turned on – examples of this are the vast security products and services offered in Microsoft 365 E5 which may be under-used or not switched on.
Security consolidation super important is essential for several reasons. Firstly, it can enhances threat detection and response by providing a holistic view of security events, facilitating faster identification of anomalies and coordinated response strategies pulling information from products and suits of products rather than trying to connect. Secondly, it simplifies management and operations, making it easier for security teams to manage and operate, leading to increased efficiency and effectiveness in managing cybersecurity risks. Thirdly, it can massively reduces complexity and cost by eliminating redundant systems and streamlining processes, improving the security posture, and reducing the chances of errors.
The National Cyber Security Centre provides a wealth of resources and guidance on various cybersecurity topics, including security consolidation.
Managed SOC and XDR
In light of the cyber security bill, organisations may consider moving to a Managed Security Operations Centre (SoC) or Managed Extended Detection and Response (XDR) service offered from their MSP provider, CSP provider or specialist Managed Security Provider. These service provide a huge a range of benefits for organisations who dont have the time, resources or desire to manage their security operations including:
Comprehensive Cybersecurity: Managed SoC and XDR services provide comprehensive cybersecurity across an organisations entire IT environment – monitoring threat landscapes, including IT networks, devices, applications, endpoints, and data, for both known and evolving vulnerabilities, threats, and risks.
Reduced Complexity: In most cases, investing in such services can significantly reduce the complexity of managing multiple security tools and processes. Whilst these services “may” take on and suppoprt an organisation’s existing security products , in many cases they will require (as part of onboarding) a more steamlined approach to security management, making it easier for organisations to maintain a robust security posture without having to manage multiple products and services.
Faster Response Times: Managed SoC and XDR services can provide significantly faster and more accurate detection and response times to real and high-risk potential threats. Many will leverage their vast experience, Machine Learning and other advanced technologies like AI and automation to make threat detection and response faster than humanly possible.
More Cost-Effective: Whilst not cheap on the surface, consolidating security operations under a managed service, organisations can potentially reduce the total cost of ownership (TCO) of securioty operations, by eliminating the need for multiple standalone security solutions and sometimes expensive security analysts and consultants.
Access to Expertise: These services give organisations access to highly skilled security experts, which can be particularly beneficial given the current shortage of skills in the cybersecurity industry.
Employee Training and Education
The importance of end-user adoption and training around security awareness must not be overstated. It is a critical component of an any organisation’s cybersecurity strategy. The human factor is often the weakest link in corporate security, with studies suggesting that most cyber attacks are caused by human error. Educating end users on cybersecurity best practices is crucial for reducing the risk of insider threats, phishing attacks, and other cyber threats.
Every business, large and small, needs to develop an effective security strategy mindset that is built into their culture. This ensures that every employee, from frontline staff to managers and executives, understands the importance of cybersecurity and the far-reaching impact that a data breach can have. This means that regular training sessions and awareness needs to be conducted to keep all levels of the organisation updated on the latest threats and defensive practices.
Management plays a key role in this process. They should demonstrate leadership by actively participating in security awareness training, complying with the company’s own cybersecurity policies, and encouraging staff to participate in trainings. This helps to create a culture of enhanced cybersecurity awareness and empowering employees to come forward with observations, suggestions or issues they have seen.
End-user adoption and training around security awareness is a commitment that needs to be made at all levels of an organisation. It is not just about protecting the organisation’s digital assets, but also about safeguarding its reputation and credibility. By making security awareness a priority, organisations can significantly reduce their vulnerability to cyber threats.
Conclusion
In conclusion, the King’s Speech has outlined a much needed robust and forward-thinking approach to cybersecurity in light of the every increasing wave of state nation and cyber terrorism combined with the rapid adoption of generative AI.
The introduction of the Cyber Security and Resilience Bill, as announced in the speech, is set to expand regulation to cover more digital services and supply chains, empower regulators to ensure cybersecurity measures, and mandate increased incident reporting to improve the government’s response to cyber attacks. This initiative is a significant step towards strengthening the UK’s cybersecurity infrastructure and resilience.
In light of these developments, every organisations should take proactive steps to align with these new measures. One of the key steps is preparing for the NIS2 Directive, which aims to establish a higher level of cybersecurity and resilience within organisations of the European Union and will also impact UK organisations. Organisations should start preparing by defining their compliance roadmap and optimising their cybersecurity awareness. They should conduct a thorough audit to identify gaps in their cybersecurity regimen and develop a comprehensive plan to address these gaps and achieve compliance with NIS2 requirements.
This blog post captures Microsoft’s latest achievements, innovations and recognition in cybersecurity as reported by Forrester in their recent wave report on Extended Dedection and Response (XDR) plafforms. Here is have focussed on the latest developments and Microsoft’s move to leading in this report.
The ever-evolving landscape of cybersecurity, organisations face the challenge of defending against increasingly sophisticated cyberattacks. Based on the analysis performed by Forrester in their 2024 Wave report, Microsoft has yet again risen to the occasion, with them being placed at the far out leader in Forrester Wave: Extended Detection and Response (XDR) platforms – Q2, 2024, pushing them ahead of both Palo Alto and Crowdstrike in this recent report. They have been leaders in this space for over 4 years but this year pulled further ahead than ever before.
In the last year, 75% of security professionals witnessed an increase in attacks with 85% attributing this rise to bad actors using generative AI
Report By Security Magazine 2023
The Forrester report details how to protect against the constant and more spohisticated AI powered “intelligent attacks”, a Unified Approach to Cybersecurity is needed rather than a traditional add-on and multi-vendor approach. Forrester comment how Microsoft Defender XDR stands out with its unified visibility, investigation, and response capabilities. It integrates seamlessly across endpoints, IoT, OT, identities, email, collaboration tools, SaaS apps, cloud workloads, and data insights, providing end-to-end protection.
Generative A is the Game-Changer
Forrester say that the introduction of Microsoft Copilot for Security marks a significant milestone in Microsoft’s approach to XDR. This generative AI solution simplifies incident remediation, reverse engineers malware code, and empowers analysts with natural language processing to generate Kusto Query Language (KQL) queries.
Microsoft’s Automatic Attack Disruption – also powered by their latest AI and Threat Hunting services, has led to the development of automatic attack disruption features in Defender XDR. This technology can detect and disrupt ransomware and other advanced attacks within minutes, showcasing the power of AI in cybersecurity. The services work seemlessly toegther across their wider Azure and Microsoft 365 security portoflio making these a real multi-layered protect, detect and respond approach rather than multiple products stacked on top of each other.
The Future of Cyber Defense
Microsoft’s recognition by Forrester underscores its dedication to innovation and excellence in cybersecurity. As cyber threats continue to evolve, Microsoft’s XDR and unified security operations platforms will remain essential tools in the arsenal of cybersecurity professionals.
In Microsoft’s own blog post on the matter they state that “We believe Forrester’s recognition showcases that Microsoft Defender XDR is the broadest native XDR solution on the market and that our most recent additions of Microsoft Defender for Cloud data and Microsoft Purview Insider Risk Management data are critical to give the SOC access to end-to-end data. Its incident-level visibility, automatic attack disruption of advanced attacks, and accelerated detection and response now work across endpoints, Internet of Things (IoT), operational technology (OT), on-premises and cloud identities, email and collaboration tools, software as a service (SaaS) apps, cloud workloads, and data insights.”
“Microsoft is refining the most complete XDR offering in the market today, their dedication to innovation is demonstrated by its percentage of the R&D budget by revenue, which rivals the most innovative vendors in security.”
Forrester Wave Report: Q2 2024
Summary
Great to see Microsoft continue to innovate in this area, after Satya Nadella stated that they are “priotitising security above all else” in a recent report.
The recent report from Forrester does not of course mean that the other vendors in this report are no good. The familiar vendors such as Palo Alto, Crowdsrike continue to innovate in this space and the others are working hard to move up the quadrant.
Others to mention are Cisco who have moved into the Challengers Quadrant this year, following huge investments in thier Cisco Secure Cloud platform and their continued invenstment to bolster their security portfolio.
It is worth noting that XDR is just one of the security pillars reported on by Forrester and other leading analysts like Gartner.
Yesterday, (8th May, 24) Microsoft released their 2024 Work Trend Index Report which covered the State of AI at Work (you can see this here) as well as announcing some more improvements coming to Copilot for Microsoft 365 in the coming months.
The new features annouced are all aimed at helping to optimise prompt writing, making it easier for people to get a prompt that does what they need first time (a Copilot for Copilot essentially). These updates will include.
Auto-complete for prompts
Prompt re-write
A new catch up feature
Copilot Labs upgrade.
Let dive into these quickly. All. Images (c) Microsoft.
Auto Complete for Prompts
Copilot’s new “autocomplete” feature is similar to what you get in a search engine, where it will anticipate (using Machine Learning) what you are writing and help you to complete your prompt when you start typing one out.
Image (c) Microsoft
The aim here to suggesting more details to ensure you get the intended outcome. It will also offer an expanded library of ‘next prompts’.
This means if you start typing “summarise” then Copilot will display options to summarise the last 10 unread emails and chat messages or other tasks that might be related.
Prompt Rewrite
The “rewrite” feature is something that many image AI tools have had for a while. The aim is to be able to takes a person’s basic prompt rewrite it to me more thorough, “turning everyone into a prompt engineer,” according to the Microsoft.
Image (c) Microsoft
Also known as “elaborate your prompt”, Microsoft say this will be able to rewrite any prompts people create making it much easier to do more complex tasks especially when working with documents or ‘connected apps’.
Copilot Catch-up
Copilot Catch Up aims to start making Copilot more “proactive”. Here the chat interface will be able to presents people with “responsive recommendations” based on their recent activity. As an example, it will be able to notify you about upcoming meetings and suggest ways to help you prepare for that meeting, by bringing a summary of recent email and chat threads, meetings notes and documents write in the chat thread. This feature is also coming into Copilot in Outlook.
This feature brings Copilot more into the realms of good ol Clippy (ok I’m kidding here) but will enable Copilot to start proactively helping rather than waiting for its pilot to issue a command and bring the genie out of its lamp!
The aim is to further integrate Copilot into the user’s workflows. Imagine for example having a morning prompt that tells you about your day, tickets logged via Service Now, or a project that is over running (via Project or Planner) or has completed early perhaps!
Updates to Copilot Labs
Similar to Microsoft app Prompt Buddy, Microsoft will also start to allow people to create, publish, and manage prompts in Copilot Lab.
Image (c) Microsoft
This will bring new features that that can be tailored for individual teams within businesses. This is aimed to make it a lot easier to share useful prompts for employees, Teams and departments to use.
Will these help adoption?
What do you think about the new updates, will these help remove the dark art of promoting and make Copilot easier to use and faster to help people get the desired results.?
The new Surface IT Toolkit which was officially released on April 25th 2024, promises to be a significant tool to help IT managing and optimise their coporate fleet of Surface devices.
We are excited to announce the Surface IT Toolkit, a modern desktop application that compiles essential commercial tools and streamlines the Surface device management experience for IT admins – all in a single application.
Microsoft.
Replacing an older mixture of admin tools, the refresh and centralising of these essential tools into a one application should simplify the deployment and management process, addressing the common challenge of using disparate tools across various locations and versions. This should greatly enhance efficiency and ease of use for IT admins.
What is in the Surface IT Toolkit?
The Surface Tool kit contains a number of new and updated apps. These are:
Data Eraser – Which is a NIST [Special Publication 800-88 Revision 1 NVM Express] compliant data erasure tool that also includes the ability to create certificates of sanitization for compliance and auditing. This is beneficial when repurposing, recycling, or retiring a device to guarantee that no sensitive data is left on it.
UEFI Configurator – enables IT to implement Surface Enterprise Management Mode (SEMM) UEFI configurations on Surface devices and peripherals such as Surface docks and other accessories. The UEFI configurator allows IT to efficiently and consistently manage and disable components at the firmware level. This enhances security and compliance by safeguarding against unauthorized modifications to device settings. For example it could be used to prevent the camera being used to comply with privacy in schools, or block USB ports being used to connect to external disks for data compliance.
Recovery Tool – This feature enables a full device reset, reverting it to its factory state for troubleshooting and re-building purposes. It also manages previously downloaded factory images for reuse, helping to resolve common issues and restore the device’s original performance. The latest update provides a new guided process and no longer requires the serial number to be entered. It also includes ability to build from new or build from an existing image.
Tool Library – The updated Tool Library houses the most recent versions of supplementary tools and installers for deployment to end users, offering IT descriptions of their functions and links to the most up-to-date documentation. This tools here include the Surface Asset Tag Tool, Surface Diagnostic Toolkit for Business, Surface Brightness Control Tool, among others.
Video: Install and using the Surface IT Toolkit
Here’s little video that shows the relevant webpages, installing the toolkit and first run experience and tools available.
Usng the Surface Tool Kit.
For more information from Microsoft on this – use the following link
How do I get the Surface IT Toolkit?
You can grab the IT Toolkit from Microsoft > here <.
Today, 15th Jan 2024, Microsoft has announced that Copilot for Microsoft 365 is now available for organisations of all sizes and individuals with no seat minimum.Microsoft Copilot Pro was also announced for Microsoft 365 Personal and Family users.
Originally annouced in March 2023 and then hitting general availability for enterprises in November 2023 with a 300 seat minimum commitment.
Copilot for Microsoft 365 is Microsoft’s AI-powered productivity tool that uses/is based on the OpenAI ChatGPT 4 large language models (LLMs) and integrates your business data with the Microsoft Graph and Microsoft 365 Apps, working alongside employees core business apps such as Word, Excel, PowerPoint, Outlook and of course Microsoft Teams.
Copilot Pro and Copilot for Microsoft 365
Copilot for Microsoft 365 Business
Microsoft has today announced that Copilot for Microsoft 365 is now also generally available for small businesses with Microsoft 365 Business Premium and Business Standard licenses. What’s more, they can purchase between just one and three hundred (well 299) seats for $30 per person per month.
Copilot for Enterprise and Commercial with no minimum purchase
Microsoft has also removed the 300-seat purchase minimum for commercial plans and made Copilot available for Office 365 E3 and E5 customers.
Copilot for Microsoft 365 teaser video. (c) Microsoft
Commercial customers can now purchase Copilot for Microsoft 365 through Microsoft Cloud Solution Provider partners such as Cisilion.
Plus Copilot ‘Pro’ for individuals
Finally, Microsoft has also annouced Microsoft Copilot Pro which is aimed at comsumers/individuals.
Available “soon”, this is a subscription bolt on for Microsoft 365 Personal and Family subscribers bringing the power of Copilot to everyone.
Unlike the free Copilot experience (available in Edge and Windows 11), Microsoft’s Pro version will serve as a “single AI experience” that runs across your devices and also works (like the version for Business) from within the Microsoft Office apps including Word, Excel, PowerPoint, Outlook, and Microsoft 365.
Users will also get “priority access” to OpenAI’s latest AI model GPT-4 Turbo even during peak usage times and can also choose between different GPT models in a later update. Users also get enhanced AI image creation with Image Creator from Designer (formerly Bing Image Creator), with 100 boosts per day while bringing more detailed image quality as well as landscape image format.
Copilot Pro for Individuals. Video (c) Microsoft
Copilot Pro will also (soon) allow users to build their own Copilot GPT, a customised Copilot tailored for a specific topic, in the new Copilot GPT Builder with just a simple set of prompts.
People/families will be able to subscribe to Copilot Pro for $20 per month/per user.
You should still prepare though…
Whilst this makes it more attractive to organisations of all sizes and also helps organisations “test it out”, my worry is this will just be treated alike a product and as such organisations risk dabbling and not putting the effort in to making this a success.
My advice is to still follow the adoption and readiness guidelines around data protection, life cycle management and governance and security to ensure that Copilot gives the best results, provides real ROI and drives real outcomes. For now though the huge barrier to a pilot of Copilot is removed which in turn should help adoption, testing and business case development.
Adoption, training and change management is also super important..
The cover lots of this in my previous sets of blogs amd articles here.
Generative AI tools like ChatGPT, Google Bard and Microsoft Copilot in are becoming increasingly popular among developers, content creators and, now almost any and everyone with the release of Copilot Edge (formerly Bing Enterprise Chat) and of course, Copilot for Microsoft 365.
I often hear “of ChatGPT is better than XYZ or Copilot is better than ABC. The fact is, whilst these tools can yield incredible results, getting started can be challenging, and getting the prompt to do exactly what you “had in mind” takes practice – especially for those who are new to generative AI.
In this blog post, I provide some tips on how to work with generative AI tools like ChatGPT and Copilot, including how to write, and perfect, good AI prompts. Prompts are essentially instructions that are used to tell/ask the AI what you’d like it to do…
Understanding how Generative AI works
Generative AI chatbots use complex language models (LLMs), machine learning algorithms, internet data and organisational data (in the case of Microsoft Copilot) to generate text, create, summarise, rewrite or transform content, write code, generate images and even help people build low code workflows or model driven apps in Power Platform. These GenAI tools do this based on user input and context, known as “prompts”.
Whilst these tools are incredibly smart (having been trained on a decade of data, images, writing styles and even the works of Shakespeare, the results are not perfect and can sometimes generate inaccurate or irrelevant content, known as hallucinations.
These hallucinations are usually caused by a lack of understanding of the ask from the user, conflicting requests or poor data upon which they base their response. Remember these tools can access your company data (under the context of the user) and the web.
Writing good AI prompts – the ingredients
To get the best results from generative AI tools like ChatGPT and Copilot, it’s essential to write good AI prompts. Here are some AI 101 tips on what good AI prompts look like:
Be specific with the ask: Make sure you are being clear about what you want the AI model to do. The more specific you are, the better the AI model can understand your prompt and provide accurate results.
Avoid using ambiguous language: If what you ask could be interpreted in different ways, you may not get the result you hoped for. Be clear and concise in your prompt to avoid any confusion.
Provide context: this is crucial to ensure that the AI model understands the intent behind your prompt. The more context you provide, the better the AI model can understand your prompt.
Use simple language: that is easy for the AI model to understand. Avoid using complex words or phrases that the AI model may not be familiar with. Slang words are generally OK but take your time to read the prompt back to make sure it makes sense.
Take advantage of turns: A turn is essentially your response to the AI’s answer. You can use this to either rephrase your ask or to fine tune the response and is a good alternative to trying to write long complex prompts in one go.
Make it a conversation: Building on the above, think of how you might ask a human to help you with a task. You can use the “turns” to perfect the prompt and even ask the AI why it gave a particular answer or to explain something you don’t understand. This may feel unnatural at first but soon it’s just IM’ing a friend or co-worker.
Good and bad prompt examples
Here are some examples of good and bad AI prompts. Try these and see how you get along.
I’ve included a video which walks though these and shows the differneces in the results based on the prompts we gave. You’ll see we can be quite specific in what we want. The video also showcases how we can “perfect” our answers through additonal turns.
Goal: Create a product update for the Flux Capacitor 2
Bad prompt: “Create me a product update for the Flux Capacitor version 2”.
Good prompt: “Create me a product update for the Flux Capacitor version 2. This is a fictional product, based on the original flux capacitor used in the film Back to the Future 2. Make up some new improvements that the Flux Capacitor V2 could have over the first version. Be creative with improvements.”
Write a product brief in Copilot.
Explanation – the second prompt is better because we have firstly provided context of the ask (this is a fictional product), been specific with the ask (we have told it what we expect).
Bad prompt: A picture of a person with brown hair as a Lego man.
Good prompts: A person with short dark brown hair, wearing a tuxedo and holding a glass of champagne sitting on a chair outside a large country house on a cold dusk evening in the summer. Lego Style, illustration, 3d rendered.
Explanation: The second prompt is better (well depending on what we want) because again we have given specific asks about what we want, been specific with the ask, provided some context about what we want to produce and described the image we want.
Goal: Write a story about a dog called Benji
Bad prompt: Write a story about a dog named Benji
Good prompt: Write a story about a dog name Benji. Benji a small puppy and lives a family with four people including two young children called Jack and Jill. Benji is a lazy dog but discovers a passion for going for walks to train stations and barking at trains. Creative Style writing.
Explanation – the second prompt is better because we have firstly provided context of the story we would like and have also given a background to the story. We have guided the AI to how we’d like the story to flow and then left it to the AI to write. We have also specified a mode we want it in “be creative”. We can use another “turn” to make the story shorter or to write a catchy title for the story.
Good Prompt: Read this document and create a table that shows the main energy usage across different key areas in order of highest to lowest. Also provide a short commentary after the table that describes more about these areas and whether these are increasing over time or reducing.
Using Copilot in Edge to discuss and extract data from a document.
Explanation: the first prompt simply creates a summary of the document. This is useful (try it), but we haven’t told it what we actually want to see (which might be fine) and usually we have a specific thing we are looking for when we analyse a document. The second prompt is much more specific. It gives the AI clear direction (specific ask) about what we want and how we want the data presented.
Perfecting your “Prompts”
Writing good AI prompts is just the first step in working with generative AI tools like ChatGPT and Copilot. To get the best results, you need to perfect your prompts over time and practice. Don’t think of it as a chore. Enjoy it as you learn… You’ll soon become a pro.
Here’s my tips on how to perfect your AI prompts:
Timing: I find it best to think of a task you need to perform and use a real example to see if you can get what you need. As an example, if I’m doing a customer demo on AI, I tend to use an example relevant to organisation I am working with and make the request about them (or make up a scenario specific to them).
Experiment: Don’t be afraid to experiment with different prompts and see what works best. Try different variations of your prompts and see which ones generate the best results.
Adapt: Generative AI tools like ChatGPT and Copilot are constantly evolving and improving, so it’s essential to adapt your prompts to keep up with the latest changes. This also means the result you get from the same prompt may change a week or month later. The data it’s referencing may also change.
Enjoy the learning experience: Working with generative AI tools can be challenging, but it can also be a lot of fun. Enjoy the learning experience and don’t be afraid to try new things.
Use image creation as a fun way to learn whilst text-based requests are usually caused hat we need to do, practicing on image creation using something like Microsoft Designer is great fun and people tend to share their prompts on social media… Here is an example of one I shared.
Bing Image Creator in Designer.
Conclusion
Working with generative AI tools like ChatGPT and Copilot can be challenging, but it can also be rewarding. By following the tips outlined in this blog post, you can write and perfect good AI prompts that generate accurate and useful results. Remember to experiment, adapt, and enjoy the learning experience.
With practice, anyone can become proficient in working with generative AI tools.
The video I have included hopefully provides more context – feel free to follow along in Copilot in Edge or ChatGPT
So, who is excited then? Microsoft 365 Copilot will be officially GA from 1st of November 2023 at a cost of $30 per user per month for commercial customers. That is THIS week!!!
How much will Microsoft 365 CoPilot cost?
Microsoft continue to be firm that any organisation that invests in Microsoft 365 Copilot from the 1st of November will pay $30 per user per month. Note that initially, the licensing will not appear on a price list and must be purchased alongside the organisations Microsoft Account team. There is a minimum number of seats of three hundred.
When will Microsoft 365 Copilot be released?
Microsoft 365 Copilot will be generally available from 1st November 2023. There have been several hundred large organisations on a paid (around $100,000) Early Access Preview since the summer who have been helping Microsoft with performance, accuracy and tuning guidance as well as helping Microsoft to capture and prove use-cases and guidance for other future organisations and to help them justify the cost of ownership. I am sure that next year, we will see a Total Economic study from Microsoft and Forrester on this!!
Note: Initially, Microsoft 365 Copilot will not be available to EDU customers or in the government/Gallatin clouds. All apps, except for Copilot in Excel, will be available in the following languages: English (US, GB, AU, CA, IN), Spanish (Spain, Mexico), Japanese, French (France, Canada), German, Portuguese (Brazil), Italian, and Chinese Simplified. Copilot in Excel is currently only available in English. Support for additional languages will be extended through the first few months of calendar year 2024.
Copilot is very new. As such expect it to evolve quickly and get better…
The ROI of Microsoft 365 Copilot.
Even after the 1st of November, most organisations, Microsoft partners and many of Microsoft, will still not have access to Microsoft 365 Copilot. There have been those on the paid early access program, some of the global solution partners have also been involved.
Due to the minimum limit of three hundred licenses, I expect that many organisations may wait a little rather than rush in. Wait until they are ready, they can learn from other organisations successes and blips and (I imagine) for the entry point to be lowered and in fact I have heard rumours that this might drop to fifty. Note:Smaller organisations and anyone who buys licensing via a CSP provider will also have to wait a bit.
There is plenty of information out there to help organisations start strategizing and preparing for what will be one of the most significant uplifts (both in cost of their Microsoft 365 license, and in capability) in the history of IT and IT budgets.
The questions of course that the CFO and CEO will want to understand are
What will the actual cost be?
How will affect our bottom line?
Are the perceived benefits worth the price?
How can we keep our Microsoft licensing costs under control?
What do we need to do to make sure we can really get the best from Microsoft 365 Copilot.
1. Understanding the costof Microsoft 365
Microsoft Copilot is an add-on license – meaning it is purchased (at $30 per user per month) and applied to a base-level license. Also, not every Microsoft 365 license will be eligible for a Copilot “bolt-on”. Currently Microsoft 365 Copilot can only be attached to:
Microsoft 365 E5,
Microsoft 365 E3,
Microsoft 365 Business Premium,
Microsoft 365 Business Standard.
Whilst the above is good news for smaller businesses (in that they dont need to upgrader to an E3 or E5 base license), the cost is (currently) the same regardless of what base-level license you are attaching it to. This means the cost uplift (as a percentage) is much higher for organisations on Microsoft 365 E3 or Microsoft 365 Business. Nothing is of course set-in-stone as we are still in early preview, and we might see pricing changes or tiering as we get nearer to release. I’d also expect customers on large Enterprise Agreement to pay less (and be able to haggle!).
Frontline workers (or anyone with a Microsoft 365 “F” license) are not currently able to use Copilot without being upgraded to an enterprise E3, which means a cost difference (for M365 E3 plus Copilot) of a staggering 8.25x.
If we look at the cost of the current licenses and the effect of adding Copilot to every user, then the costs can look scary (this is based on Online RRP pricing).
Base License
Base Cost
M365 Copilot*
License + Copilot
% Increase
Microsoft 365 E5
£52.40
£25
£77.40
48%
Microsoft 365 E3
£33.10
£25
£58.10
76%
Microsoft 365 Business Premium
£18.10
£25
£42.10
133%
Microsoft 365 Business Standard
£10.30
£25
£35.30
242%
Costs before and after Microsoft 365 Copilot (pupm RRP).
Things to note:
Microsoft 365 Copilot is optional – it’s your choice as to whether you invest in it or not, but it is not and will not be included in any of the base licences – for some AI features in Bing Chat or the use of ChatGPT may be enough.
You don’t (and won’t) need to buy it for every employee – persona mapping and use case studies will be vital to determine who is likely to benefits most.
The pricing for Copilot for Business SKUs may change (as will the rest of the pricing)
Organisations may be able to “fund” their Copilot investment through savings in smart licensing procurement and consolidation of third-party products (especially for M365 E5 organisations). We are seeing a lot of this and makes sense if you have most of your “eggs” in the Microsoft Cloud Basket.
2. How will Copilot affect our bottom line?
One of the recurring questions I get asked when talking to organisations about Microsoft 365 Copilot is “how can we ensure we get a measurable ROI when planning for or investing in Microsoft Copilot?”
Even so, adding $30 (around £25 pupm) to your existing productivity toolset does seems a lot, especially if you are paying for M365 E5 + Teams Premium + Calling Plan already, plus of course things like Microsoft Viva Suite, etc.
At Microsoft’s recent Envision event in London, Microsoft talked a lot about usecases from customers on the Early Access programme, talking about various diffferent use cases that improve work experience, remove creative blocks and speed up decision-making across a number of different sectors including retail and finance.
So – from an ROI perspectives some of the maths you may look at are:
Assume a sales exec, data analyst or admin position that earns £50,000 annual salary.
With Microsoft 365 Copilot at $30 a month, thats ~$1 a day or ~80p in UK money. If we also assume the normal 250 working days a year then that equates to ~£200/day or ~£25/hr.
If these “roles” can each save just two hours a month using Copilot to sumamrise meetings, take notes, automate and send a customer propsosal out, then that is already a productivity saving (in time) of 2:1 or £50 per person per month.
I have already heard other organisations share ROI stories for the use of ChatGPT Premium since its commercial introduction with organisations reporting ROI’s of over 25:1 on a $20 pupm subscription. Given the extensive enterprise data integration and interaction into the Microsoft 365 apps and services that Copilot will bring out of the box, I would not be suprised to see ROIs (once studies are done) of more than 30:1
There is then a moral and emotional play here too. Everyone loves a productivity gain [I think there will be loads], but there may also be instances where entire roles (or aspects of roles) may no longer needed because AI will do that part of the job for us. The same goes to be honest for automation technologies like Power Automate. Then is there the case, where you as an organisation (whether you are involved in B2B or B2C) may win more business because you have “the power of AI” either helping make decisions, responding to a client/customer faster or helping you make sales faster by directly interfacing with the customer or following up on things.
Advice is to ensure you work with Microsoft and your partner(s) to identify which departments or individuals are likely to benefit the most from the features within Microsoft Copilot’s features and make sure they are part of a pilot.
This usually starts with a well thought out and managed pilot programme during which you’ll be looking at identifying, testing, and proving the potential timesaving and productivity gains it can bring to roles like sales, finance, and your data teams.
3. Are the perceived benefits worth the price?
I think so – but again this will all loop back to the point above. Whilst it wont just be about price, these GenAI tools are likely to improve the way most people work. These pilot phases, will require organisations to explore and experiment with Copilot’s features and capabilities to discover new ways to enhance their work experience.
Using these tools also requires that users are on-board, educated and informed. As such, once you have identifyied the most suitable users and scenarios for the “pilot”, you’ll need to ensure you provide adequate training and support and closely monitor and measure the outcomes and champion quick wins whilst soliciting feedback and suggestions from employees.
A report on the early findings on the promise of Generative Al put together by Harvard Business School and Boston Consulting Group found that Generative Al in the workplace lead to a:
12.2% increase in task completion rates
25.1 % decrease in time spent to complete tasks
12.5% increase in the number of subtasks completed
40% increase in the quality of responses to subtasks
4.How do we keep our costs under control?
A good question…let’s look at cost reduction to free budget (either for cakes, salary rises, bottom line or, yes, Copilot).
Organisations may be able to “fund” their Copilot investment through savings in smart licensing procurement and consolidation of third-party products (especially for M365 E5 organisations). We are seeing a lot of this and makes sense if you have most of your “eggs” in the Microsoft Cloud Basket.
Mch of the above is general good practice but I’m seeing lots of organisations looking at this to “free” budget to drive Copilot “pilots”.
5. What do we need to do to make to get the best from Copilot?
I have covered this before in previous blogs and videos, but in short the key focus organisations need to do outside of runing a pilot, training users and streamlining how you fund it, is data data data.
The key advantage that Microsoft Copilot will have over its rivals is that it seemlessly integrates with Microsoft 365 applications and uses enterprise data to provide personalised and contextual assistance. As such, ensuring your data is accessible (in the cloud or cloud connected at least), managed correctly, classified, labelled and protected. I have covered this a few times here.
Successful adoption of Microsoft 365 Copilot is much more than the technology and licensing. Organisations need to see this as a significant technology project and not just a product you buy. As such they key activies critival to success are:
Having a defined vision and identification of how Microsoft 365 Copilot will be used
Obtain proactive support from key roles in the organisation to accelerate the use of Copilot. including senior leadership, legal, IT and key Business Development Managers.
Enable Champions and provide business relevant, snackable and on-demand training for end users this includes leveraging the “power of the prompt”.
Raised awareness through launch event & omni-channel communications planning.
Copilot Q&A
Will CoPilot be included in Microsoft E5?
No, Microsoft 365 Copilot is not included in the Microsoft 365 E5 license. Microsoft 365 Copilot is an add-on license at an additional cost [$30] irrespective of the Microsoft 365 licenses you have within your organisation. This means that even if you are on Microsoft 365 E5, you will need to pay for it separately if you decide to implement and use it.
Whats the minimum number of licenses we can buy?
Currently the minimum liceses you will be able to buy from 1st November is three hundred at a cost of $30 pupm.
Will there be free trails?
No – at the moment Microsoft have confirmed that trials will not be available.
Will I be able to get Microsoft 365 Copilot for free?
If you do – let me know!!
No… as of the information available, Microsoft 365 Copilot will not be available for free. At the time of writing, there are six hundred organisations globally that are currently on an Early Access Programme, and they all paid $100,000 for the preview. Microsoft Copilot is positioned as a premium add-on with huge substantial benefits. The initially announced price is $30 per user per month, but it’s this price is not yet finalised, and we don’t know if different sectors or license volumes will affect the price.
We don’t have Microsoft 365 – can we still use Copilot?
No, Microsoft 365 Copilot will only be available for organisations that use Microsoft 365 Business, Business premium, Enterprise E3 or Enterprise E5. I is not availbale for organisation of Office only plans, or Front-line worker SKUs (Microsoft 365 F SKUS).
We also do not yet know the intentions Microsoft have for Copilot with Education and Not for Profit organisations.
Will I be able to negotiate the price for Microsoft 365 Copilot?
It depends. The size of your organisation, the level of your base licensing and demand will all likley affect what you pay for Microsoft 365. I suspect the largest organisations – those with huge Enterprise Agreements will get a better deal than smaller organisations, but I’d expect tie ins to the higher licnese SKUs like Microsoft 365 E5.
My advice is to speak to a product and licensing specialist to work with your Microsoft Account team and who can help you assess your deployment roadmap from various angles.
Summary and Key Points
Microsoft 365 Copilot will be available to Enterprise customers at a price of $30 per user per month on top a Microsoft 365 E3 or E5 license.
Initially there will be a minimum license purchase of three hundred licenses, Though I have heard that this might get reduced to fifty.
Initially it’s only available to Enterprise sized organisations though will be coming to CSP customers and small, medium, and commercial organisations by end of the year.
ROI should be significant if Copilot is properly implemented, but organisations need to prepare to pay for this and it’s not “cheap”. Expect Copilot to impact everyone person in the organisation.
Yesterday, I had the pleasure of attending Microsoft Envision in London.
Hosted by Clare Barclay [Chief Executive Officer, Microsoft UK], this was the first in-person only event Microsoft had run in some 4 years, and it was absolutely packed with a real buzz and energy I haven’t seen at an event in years.
The theme of the entire event, including breakouts and exhibitors was all centred around AI – which is hardly surprising with the upcoming 1st November date for “general availability” of Microsoft 365 Copilot
The Keynote – AI Transformation
The event comprised of a keynote delivered by Judson Althoff [Executive Vice President and Chief Commercial officer].
AI transformation is going to follow many of the same rules of digital transformation…Many of you embarked upon your cloud journeys many years ago, and one rule really applied – that digital transformation was business transformation, empowered by technology, and in that order.
Judson Althoff | Microsoft VP and CCO
His 45-minute session was all about AI about and how “to lead in the era of AI” at the keynote.
During this session. Jedson explained how generative AI technology is opening doors for any, and all business from healthcare, to manufacturing to public sector and finance to “imagine new ways to solve challenges”, while unlocking innovation and delivering greater business value that any technology has ever done before. As well as some demos and in-person interviews from some leading UK brands like Sainsburys and ASOS who talked about how they were leveraging Microsoft AI to build new shopping experiences.
Judson spent most of his time on stage bringing the audience up to speed and on the same page about Microsoft 365 Copilot, Sales Copilot, Security Copilot and then spent some time talking around GitHub Copilot and the huge benefits this is bringing to developers. He showcased the ever expanding “collaboration” between Microsoft and OpenAI, which most recently has also resulted in the creation of Llama 2, a powerful generative AI model that can generate text, images, code, music and more which will soon be available on Azure and Windows platforms as part of the expansion of the Azure AI model catalogue.
Finally, he introduced the new Vector Search, a new feature in Azure Cognitive Search that enables searching across different types of data using natural language queries with a live demo (which mainly worked), in which he showed off how Vector Search can help find relevant information from documents, images, videos and more through semantic indexing (the same powerful index too that will power Microsoft 365 Copilot.) Jedson also re-introduced Microsoft Fabric which has been in preview for six months and goes into General Availability next month.
AI transformation is going to reshape how companies think about their employees, how they think about engaging with their customers, how they think about their own businesses, and how they think about innovation
Whilst Microsoft covered a lot of ground in this session, much of it was a rinse and repeat of things many of us had seen before. What Microsoft did though through event was kept the fire burning. Delivering this on stage in front of thousands of people had real appeal. You could feel the buzz from the audience and the conversations leaving the main hall were all of excitement and energy – Microsoft really did capture hearts and minds.
The Breakouts
I was less impressed by many of the breakouts though to be fair I only attended a handful of them. Many were met with repeats of what we had already seen earlier on, but with less passion and energy. Most demos were impressive to those that had not seen them before, but for partners and “tightly managed” Microsoft customers, there wasn’t much we hadn’t already seen before – that said, it didn’t stop the buzz and interest through, and the exhibition halls were buzzing.
Networking
For me – these events are all about the networking. We had a team of people there – some there to learn and see what was coming and how it was being presented to customers (this was not a technical event, and it was aimed at business leaders). For me it was great to meet many of our customers, who I’d previous only met over Teams) and was even nicer to get a chance to really interface with people from different industries, from Microsoft product and Client Success teams and to get some deep dive demos on some other aspects of the solutions Microsoft offer that we don’t specialise in. I was extremely impressed by just how powerful Dynamnics 365 is now for example.
Satya’s Closing Points
Unlike previous events, this even stayed busy until the end (and beyond)- this was probably due, in-part to the closing note being delivered by Satya Nadella (in person), followed by Steve Bartlett (CEO and Founder of Diary of a CEO).
Satya brought his usual passion and twist to the day, summarising the key points delivered throughout the day but homing in on GitHub Copilot and the enormous potential this has to help software developers, businesses and citizen developers have in building AI powered apps for the future. He talked about Microsoft’s commitments to ethical AI, AI for good and the new wave of AI transformation that is taking over every facet of our lives and every business big and small. He talked about this next wave being about “digitising people, places and things with new reasoning engines that can really analyse data in seconds”.
There were a few points which you could feel really resonated with the audience.
This AI wave is bigger than when the Windows PC transformed the office in the nineties
We are on the cusp of interfacing with technology in true natural language where our computers can now actually “understand” us
For the first time, we will be able to interface with technology in true multi-modal and multi-domain and engage in full meaningful discussions.
He finished by re-iterating the work many organisations need to do to get the best from Generative AI. Much of this was around data. He said, which I think is the most relevant bit of advice for every organisation, that “The Cloud is what makes AI possible, but it is your data that makes AI work”.
My Take: What organisations need to do next
For me this resonates as this is what we see every day and on the back of every discussion around AI we have with our clients.
Data is the fuel of AI: Many have lots of work to do to get their data in shape. Whether that is getting it in the cloud, managing stale and duplicate data, controlling security and governance, and protecting it from mis use or leakage. Many are not there yet and fear that many will miss this important step and jump straight it – resulting in poor results, low ROI, and poor adoption.
Adoption is the accelerant: Cloud Adoption is what makes AI possible . The UK has good cloud adoption the main, but it’s very hit and miss. Some are full in and others are still starting the journey. For AI to work we need good Cloud Adoption and it’s not just about migrating to the cloud. We need data and apps structured to get the best from AI -we need data accessible (but secure) to allow these LLMs to surface and make decisions or conclusions based on this data and it needs people to understand the true power of what these tools can do. I still feel many see AI as something of a fad, a promise of something and something others will do. Even looking inside our own organisation we have a lot to do – to really deeply understand and appreciate what AI will do for us.
If you haven’t used it – dive in , start interfacing with your PC via Windows Copilot, leverage Bing Enterprise Chat, get ready for Microsoft 365 Copilot by working with your Microsoft Partner.
AI is the future – it’s here and it’s for everyone and every organisation – but your data is what will make it successful and useable.
Microsoft hosted a live Surface and AI event on Thursday 21st September where they announced a lot of new and exciting features and products across its various platforms and services. In this blog post, I have tried to summarise the most notable ones and explain how they might benefit you and your organisation.
Disclaimer (and product plug) - Since this was an AI event in whole, I also want to state that other than some slight tweaks, this blog post was written by Bing Enterprise Chat - Microsoft Designer created the image. The whole thing took less that 10 minutes.
Copilot: Your AI Assistant at Work and Beyond
Copilot is a new feature that uses artificial intelligence (AI) to help you with various tasks, such as drafting emails, summarizing texts, creating images, and more. You can access Copilot from Windows 11, Microsoft 365, Edge, and Bing, and chat with it in natural language. Copilot will understand your intent and provide relevant assistance based on the context and your data.
For example, you can ask Copilot to draft an email for you with a specific tone, or to generate a graphic art based on your description. You can also use Copilot to answer questions, troubleshoot your PC, control your settings, and access recommendations. Copilot is designed to save you time, reduce your cognitive load, and ignite your creativity.
Copilot will be generally available for enterprise customers on November 1st, and for a select group of consumers and small business customers as part of the Early Access Program (EAP). It will initially be limited to three hundred licenses and will cost $30 per user per month.
Windows 11: The Most Powerful and Personal Windows Ever
Windows 11 is the latest (and IMO best) version of the Microsoft’s desktop operating system that powers millions of devices around the world. Windows 11 offers a fresh and modern design, improved performance, and security, and a more personalised and connected experience. They announced the latest update coming next week (Sept 26th). Some of the new features in Windows 11 will include:
An updated Start menu that gives you quick access to your apps, documents, and settings.
An updated Taskbar that lets you easily switch between multiple instances of each app, hide the time and date, and end tasks with a right-click.
A new Dev Home that helps you set up your development environment by downloading apps, packages, or repositories, connecting to your developer accounts and tools, and accessing experimental features in WSL.
A new Dev Drive that provides a fast and secure storage volume for developers, with a file system that delivers both performance and security.
A new WinGet Configuration that simplifies the setup process for developers by reducing it to a single command.
New Gallery in File Explorer that makes it easy to access your photo collection across all your devices.
A new Snipping Tool that lets you record your screen with audio and mic support, copy and redact text from a screenshot, and edit your images with Paint.
A new Photos app that has new editing capabilities to achieve stylish background blur effects and makes it easier to find specific images backed up in OneDrive.
Updated Narrator that uses natural human voices in new languages, and lets you use voice access to log in to your PC and access other areas on the lock screen.
Refreshed Notepad app that automatically saves your session state, allowing you to close Notepad without any interrupting dialogs and then pick up where you left off when you return.
A new Instant Games feature that lets you play your favorite casual games directly from the Microsoft Store without the need to download and install them on your device.
Windows Copilot – Your Copilot for Windows.
Windows 11 also announced general availability of Windows 365 Boot and Windows 365 Switch, which allow you to log into your Windows 365 Cloud PC as the primary Windows experience on the device or easily switch between the Cloud PC and the local desktop. Windows 365 is a cloud PC service that lets you stream a full Windows experience from anywhere on any device and is fully managed from Intune.
This update will start rolling out as a free update on September 26th.
Surface: The Ultimate Devices for Work and Play
Surface is Microsoft’s line of devices that combine innovative design, powerful performance, and versatile functionality. Surface devices are built to work seamlessly with Windows 11 and Microsoft 365, offering the best productivity and creativity tools for work and play. I am a massive fan of Surface
The new / refreshed Surface devices include:
Surface Laptop Studio 2: The most powerful Surface ever built, with the latest Intel Core processors, NVIDIA Studio tools for creators, touchscreen display, and flexible design with three unique postures.
Surface Laptop Go 3: The lightest and most portable Surface Laptop, with touchscreen display, premium features like an incredible typing experience and a Fingerprint Power Button, and four stylish colours.
Surface Go 4: The baby Surface Pro is this time, available only for corporate and not consumer market (why??), the device is the same dimensions as before but is more repairable (the most repairable and sustainable device int he Surface Fleet). It ditches the 4GB RAM option (good) and brings a higher spec entry level processor. Pricing increases too which is a shame as is ditching consumer market. These are great for school kids.
Surface Hub 3: The ultimate collaboration device for teams, with a large interactive display that runs the Microsoft Teams Rooms experience. Surface Hub 3 pairs seamlessly with Teams-certified devices and supports Hub on day one. There was also an upgrade announced for Surface Hub 2S customers to upgrade to Surface Hub 3,
The new Surface devices are available for pre-ordering now.
Microsoft 365: The World’s Productivity Cloud
Microsoft 365 is a cloud-based subscription service that offers the best productivity apps for work and life. Microsoft 365 includes apps like Outlook, Word, Excel, PowerPoint, OneNote, OneDrive, Teams, Stream, Loop, Clipchamp, and more.
Microsoft 365 Copilot (which will be available from 1st November) is an add-on service at $30 per user per month and provides in-built AI-powered features and services that help you get more done across all your Office 365 apps and services – with support also coming to Microsoft Designer, Loop and Clipchamp and more.
Some of the new features and services in Microsoft 365 include:
Copilot in Outlook, Excel, Word, Loop, OneNote, Stream, and OneDrive: Copilot is integrated into various Microsoft 365 apps to provide AI assistance for different tasks. For example, you can use Copilot in Outlook to draft emails, in Excel to create charts, in Word to summarize documents, in Loop to generate content blocks, in OneNote to take notes, in Stream to transcribe videos, and in OneDrive to find files.
Generative Expand, Fill, and Erase in Microsoft Designer: These features let you manipulate images in creative ways, such as expanding the canvas, filling in missing areas, or erasing unwanted objects. Generative Erase is generally available now, and Generative Fill and Expand are coming soon.
Copilot Lab: Copilot Lab is a feature that lets you learn how to use Copilot effectively, share your favorite prompts with coworkers, and get inspired by other users. Copilot Lab will be accessible to all Microsoft 365 Copilot users once it’s generally available in November.
Mobile Application Management (MAM) for Windows: This feature allows employees to access organisational resources through Microsoft Edge from an unmanaged device, while giving IT the ability to control the conditions under which the resources can be accessed.
Bing and Edge: The Smartest Way to Search and Browse
Bing and Edge are Microsoft’s search engine and web browser that offer a fast, secure, and personalized way to search and browse the web. Bing and Edge use AI to provide relevant information and assistance based on your needs and preferences.
Some of the new features and improvements in Bing and Edge include:
DALL-E 3 in Bing Image Creator and Microsoft Designer integration: Bing Image Creator is a feature that lets you create images from text descriptions using AI. Bing Image Creator is now powered by DALL-E 3, which produces more realistic and detailed images. You can also access Bing Image Creator directly from Microsoft Designer for further editing.
Content Credentials: Content Credentials is a feature that uses cryptographic methods to add an invisible digital watermark to all AI-generated images in Bing. This helps you verify the origin and authenticity of the images. Content Credentials will be supported in Bing Image Creator, Microsoft Designer, and Paint soon.
Bing Chat Enterprise: Bing Chat Enterprise is a feature that lets you chat with Copilot from the Edge mobile app. You can also use multimodal visual search and Image Creator from Bing Chat Enterprise.
Copilot in Microsoft Shopping: Copilot in Microsoft Shopping is a feature that helps you find what you’re looking for more quickly. You can ask for information on an item, and Bing will ask additional questions to learn more. Then, Bing will use that information to provide more tailored recommendations. This feature will be available soon on both PC and mobile.
Personalised Answers: Personalised Answers is a feature that uses your chat history to inform your results. For example, if you’ve used Bing to track your favorite soccer team, next time you’re planning a trip it can proactively tell you if the team is playing in your destination city. Personalized Answers will begin to roll out soon.
Microsoft Advertising: The Best Way to Reach Your Customers
Microsoft Advertising is a platform that helps businesses connect with their customers across the web. Microsoft Advertising offers various solutions and tools to create effective and engaging ads that reach the right audience at the right time.
Some of the new features and improvements in Microsoft Advertising include:
Copilot in the Microsoft Advertising Platform: Copilot in the Microsoft Advertising Platform is a feature that simplifies and enhances every aspect of your experience with the platform. You can use Copilot to create campaigns, get content recommendations, optimize your performance, and more. This feature will be coming soon.
Compare & Decide Ads: Compare & Decide Ads are a new type of ads that pull relevant data of various products or services into a succinct table. This helps users easily evaluate different options based on their criteria. Compare & Decide Ads will be available for cars initially and will be brought to closed beta in early 2024.
Conclusion
These are just some of the highlights from the Microsoft September 2023 News. There are many more features and products that we didn’t cover here, but you can find them on the current web page context. I hope you are excited about these new developments, and I would love to hear what you are most excited about.
Microsoft has been recognized as a Leader in the inaugural Gartner Magic Quadrant™ for Desktop as a Service (DaaS). According to Gartner, DaaS is defined as “the provision of virtual desktops by a public cloud or service provider” and encompasses a variety of cloud solutions, such as Windows 365 and Azure Virtual Desktop, which are described in a way that is familiar to customers of varying backgrounds and technical expertise.
Given the newness to the market of Microsoft’s two offerings in this space, it’s incredible to see Microsoft leading in this catagory (ahead of the golden players like Citrix and VMware).
Gartner stated in their report that “Microsoft is one of the few vendors with significant global presence,” and “Microsoft is in a unique position, as it owns the architecture for Windows, Intune, Microsoft 365 applications, Azure, Azure Virtual Desktop, and Windows 365.”
Microsoft have two offerings in this space which are both designed to provide organisations with secure and versatile cloud desktop solutions that support flexible work options.
Windows 365 – a fully managed DaaS solution that securely streams personalised Windows desktop, apps, settings, and content from the Microsoft Cloud to your Cloud PC which can be accessed from the device of your choice.
Azure Virtual Desktop, a full enterprise cloud virtual desktop infrastructure (VDI) platform that delivers hosted remote desktops and apps with flexibility and control without compromising on security.
You u can check out my short user experience demo on Windows365 here.
As the telecommunications landscape continues to evolve, the Public Switched Telephone Network (PSTN) is gradually being phased out in favor of modern communication technologies. It will be completely switched off by the end of December 2025, and new PSTN lines can no longer be bought or sold.
This transition presents both opportunities and challenges for organizations that rely on traditional phone systems. The future and replacement, of course, lie in Cloud Calling. However, achieving a smooth transition requires careful thought, planning, and migration.
Moving calling into the cloud also helps extend the functionality and reach of collaboration solutions like Teams, Zoom, and Webex, for example.
This blog discusses key considerations for businesses in preparation for the PSTN switch off next year and covers seven essential areas.
Assessing your existing calling infrastrucure.
Expore the different options.
Remember to carry out a network readiness assessment.
Consider all the Cloud Calling Options.
Ensure you have a solid testing plan.
Don’d forget security, compliance and privacy.
Adoption and Training are key.
Assess your current calling infrastrucutre
To prepare for the PSTN turn-off, you should first examine your current telephony infrastructure. Find out how many PSTN lines, hardware devices and related costs you have. Check if you have any legacy systems that depend on PSTN connectivity, such as fax machines or alarm systems that use analogue connections. This assessment will help you measure the impact and look for appropriate alternatives.
Action: Speak to your UC or voice partner. They will be able to carry this out for you and help you with costings and options.
Explore Different Cloud Calling Options
With traditional PSTN services becoming obsolete and being turn off, cloud-based communication solutions, such as Microsoft Teams not only offer more advantages but make lots of sense for organisations by having a singl platform for meetings, chat, calling and apps. Moving towards integrated solutions help you save costs, scale up and down as needed and provide a simpler unified and easier to use platform with everything in one place. It also is proven to improve adoption and make communication more “frictionless” as well as providing better integratation with other line of business applications.
The same applies to organisations who are already invested in wider UC platforms such as Webex or Zoom. To find the best solution for your organisation, you need to assess your needs and goals. You may also benefit from working with a trusted technology partner who can guide you through the migration process.
Remember to carry out a Network Readiness Assessment
Before implementing your chosen cloud voice solution, make sure your network infrastructure can support it. Unlike traditional PSTN or dedication “voice solutions”, putting cloud calling along side your collaboration and productivity solutions like Teams, Zoom or Webex typically means that IP routing, VLANs, bandwidth and QoS settings will need to change. You’ll need to check internet bandwidth, wired and wireless etworking, VLANs, VPNs and network security. You may also need to add or implment CoS and QoS to to ensure quality of service. Your cloud provider, IT or technology partner will be able to help – so will the chosen vendor you decide to work with and many will have “tools” to help you check connecivity health.
Not all Cloud Calling is the same so consider your options
To transition from PSTN to a different phone system, it is essential to carefully compare the various methods of connecting your calls. When considering the inclusion of cloud calling in your collaboration suite, such as Webex, Zoom, or Teams, multiple options are available. Whilst these vendors all provide their own native “calling plans,” which may be the simplest and most suitable choice in certain cases, . it is also important to explore alternative connectivity methods, such as Direct Routing (via SBCs managed by you or your partner) or Hosted Direct Routing (a managed service). Additionally, you may even consider utilising solutions that are not inherently integrated into your collaboration suite. Instead, these solutions involve an app that runs alongside or within the Teams, Webex, or Zoom app, providing calling capability.
For each of these options, it is crucial to thoroughly consider the advantages and disadvantages, such as cost, seamless communication, geographical coverage, SLAs, and level of integration with other line of business applications like Office 365, Contact Centre, and CRM. It is highly recommended to conduct tests whenever possible to evaluate the performance of each solution.
Have a solid test and rollout plan
An inclusive testing and migration plan must be formulated to ensure a seamless transition to the new environment. This plan should encompass pilot testing, deployment and migration milestones, specific timelines, and clearly defined responsibilities for each stage of the transition.
Prior to proceeding with a full-scale production rollout, it is strongly advised to conduct a network readiness assessment (as mentioned above) in conjunction with systems testing involving a select group of users based on a user acceptance test plan.
In order to aid employees in adapting to the new system and to facilitate their feedback, it is imperative to incorporate comprehensive training and change management activities. Regular communication with stakeholders and designated “champion groups” should be established and their expectations managed consistently throughout the transition process.
Security, Compliance and Privacy
For organisations operating in regulated industries, it is imperative to carefully consider and select an alternative communication solution that aligns with regulatory and compliance requirements. Factors such as data privacy, security measures, and industry-specific regulations should be taken into account when evaluating communication solutions. Additionally, the seamless integration of features like language translation, call recording, and transcription into your existing collaboration tools should be carefully considered.
A recent development worth noting is Microsoft’s announcement regarding the inclusion of Copilot functionality in Teams Phone. However, it is crucial to involve your legal and compliance teams in order to address any potential issues and adhere to relevant standards. If necessary, consult with your vendor or partner to ensure compliance and resolve any concerns.
Training and Adoption
Summary
As the deadline for switching off the PSTN approaches, organisations can benefit from adopting a modern and integrated cloud calling platform that offers better features, more flexibility, and greater affordability and future-proofing. They can also use this opportunity to streamline and simplify their communications by choosing solutions that integrate with their wider communication and collaboration tools such as Microsoft Teams, Webex or Zoom.
Microsoft said yesterday in a blog post that they will “pay legal damages on behalf of customers using its artificial intelligence (AI) products if they are sued for copyright infringement for the output generated by such systems“.
In the post, Microsoft said that they will assume responsibility for the potential legal risks arising out of any claims raised by third parties for copyright infringement so long as their company’s customers use “the guardrails and content filters” built into their AI powered products which include Bing Enterprise Chat and Microsoft 365 Copilot. Microsoft said that this offers functionality that is designed to reduce the likelihood that their AI-powered services will return content that infringes copyrighted content.
Microsoft is announcing our new Copilot Copyright Commitment. As customers ask whether they can use Microsoft’s Copilot services and the output they generate without worrying about copyright claims, we are providing a straightforward answer: yes, you can, and if you are challenged on copyright grounds, we will assume responsibility for the potential legal risks involved.
Microsoft
Microsoft’s say that their Copilot Copyright Commitment will protect customers so long as they have “used the guardrails and content filters we have built into our products” said Hossein Nowbar, [CVP and Chief Legal Officer at Microsoft] in their blog post yesterday. Microsoft also pledged to pay related fines or settlements and said it has taken steps to ensure its Copilots respect copyright.
Microsoft’s pledge comes are part of their ethical use of AI commitments and say that “We believe in standing behind our customers when they use our products – we are charging our commercial customers for our Copilots, and if their use creates legal issues, we should make this our problem rather than our customers’ problem“.
Generative AI is now everywhere
Generative AI applications leverage existing content such including news, images and artwork, and evening programming code and use it to generate new “AI generated” content which may use combinations of different data sources. Microsoft is embedding much of this technology, powered by their partnership with OpenAI Inc, into their core technology products like Windows 11 and Microsoft 365 which as a potential to put their customers in “legal jeopardy”.
With the proliferation and growing use of generative AI – people are using these tools to generate text, images, sounds, other data, and people have raised concerns over the technology’s ability to generate content without referencing it to its original authors. To address this Microsoft, said that “We are sensitive to the concerns of authors, and we believe that Microsoft rather than our customers should assume the responsibility to address them. Even where existing copyright law is clear, generative AI is raising new public policy issues and shining a light on multiple public goals. We believe the world needs AI to advance the spread of knowledge and help solve major societal challenges. Yet it is critical for authors to retain control of their rights under copyright law and earn a healthy return on their creations“.
Protecting and upholding Copyright Laws
Artists, writers, and software developers are already filing lawsuits or raising objections about their creations being used without their consent which has accelerated since the available of Generative AI tools exploded with the release of ChatGPT back in November 2022. This includes programmers, artists, and authors.
I cannot show you that, as it would be unethical and illegal to do so. AI breaching copyright is a genuine issue that affects many artists and creators who have their original works used without their permission or compensation.
Microsoft say that their Copilot Copyright Commitment extends their existing intellectual property indemnification coverage to copyright claims relating to the use of its AI-powered assistants called Copilots and through to their AI powered Bing Chat Enterprise.
Microsoft state in their blog that “we have built important guardrails into our Copilots to help respect authors’ copyrights. We have incorporated filters and other technologies that are designed to reduce the likelihood that Copilots return infringing content. These build on and complement our work to protect digital safety, security, and privacy, based on a broad range of guardrails such as classifiers, meta prompts, content filtering, and operational monitoring and abuse detection, including that which potentially infringes third-party content”.
You can already see evidence of this safety net in tools such as Bing Enterprise Chat where the tools will do what it can to avoid purposely breaching copyright.
Microsoft have unveiled another way for employers to empower their workforce with the announcement and preview availability of Bing Chat Enterprise by giving them better answers, greater efficiency, and new ways to be creative. Microsoft say it’s “Secure AI-powered chat for work.”
Bing Chat Enterprise | Microsoft
Secured with Microsoft Entra – Conditional Access
Bing Chat brings the power of generative AI to work, however, consumer Generative AI services like ChatGPT and Bing Chat (consumer), are helping people get answers, generate code, content and find things, but using these consumer servers for work, inadvertently puts corporate data at risk since it’s being shared with public AI services which use your data and your searches to train and teach their language models.
This is where Bing Chat Enterprise comes in! With Bing Chat Enterprise, organisations gets all the goodness of “AI-powered chat for work” with the commercial data protection organisations demand. “What goes in—and comes out—remains protected”, Microsoft say, which means employees get secure and managed access to better answers, greater efficiency, and new ways to be creative. User and business data is protected and will not leak outside the organisation, and chat data is not saved, viewed or accessible by Microsoft or used to train their language models.
What’s more, access to Microsoft Bing Chat Enterprise is secured and governed for seamless, managed access to using Microsoft Entra ID (Azure Active Directory) and organisations can also customise “Microsoft Search” to build out and map business answers within the Microsoft 365 Admin Centre.
How do you enable Bing Chat Enterprise?
To enable this, you need to ensure that Microsoft Search has not been disabled in your tenant and then go to https://aka.ms/TurnOnBCE as a Tenant Admin in Microsoft 365 and then enable the Bing Enterprise Chat feature as shown below ⬇️. The settings can take up to 4 hours to apply….
Enabling BCE in Microsoft 365 Admin Centre
How does Bing Chat Enterprise Work?
Video (C) Microsoft.
Privacy and Data Protection
Because workplace chats might contain sensitive data, Bing Chat Enterprise is designed with commercial data protection in place to keep organisational data safe.
Chat: When users ask questions in chat, it’s called a prompt. Those prompts can send generated searches (also known as queries) to Bing, and the resulting answer is called a response. User and business data is protected and won’t leak outside the organization. What goes in—and comes out—remains protected. Chat data isn’t saved, and Microsoft has no eyes-on access to it—no one sees it. And your data isn’t used to train the underlying models.
Search: Any searches generated by Bing Chat have workplace identities removed before they’re sent to Bing. The searches aren’t linked to users or business by Bing and any searches sent to Bing are under the terms of the Microsoft Services Agreement and covered by the privacy statement.
Organisational data: Bing Chat Enterprise doesn’t have access to organisational resources or content within Microsoft 365, such as Word documents or PowerPoint presentations. Only content provided in the chat by users is accessible to Bing Chat Enterprise.
Plugins: Importantly, Bing Chat Enterprise doesn’t have plugin support to prevent any commercial data from being sent to any external providers.
Chat history: Bing Chat Enterprise doesn’t retain chat prompts or responses. With Bing Chat history disabled for Bing Chat Enterprise users, no previous chats are maintained or available to users.