Tag: Windows 11

Posted on

Windows at 40: Milestones that changed computing for ever

Windows at 40

It was Forty years ago (now that makes me feel. Old) that Microsoft launched Windows 1.0. This was a graphical shell that was layered over MS-DOS. Whilst it was clunky, slow, and barely usable – it created the framework and vision for what would become the Windows that has powered work and creativity for decades. 40 Years ago, was the time Back To The Future was in our Cinemas – just to put that time into perspective.

Today, Windows powers billions of devices across the globe. As it has evolved over the decades it has become more than just an operating system it has marked a place in history. From iconic cursors and start up chimes, the start menu, voice assistants and now the shift from menu and mouse driven interactions to voice and AI-driven agents. Windows has evolved through eras of innovation, fan fair releases, a few missteps, re-invention and innovation.

At Ignite this week, Microsoft has also unveiled its vision for an “agentic OS” in Windows 11 25H2 (with very mixed views) but today, here’s a look back at the milestone releases that truly changed computing. Here I dive into the history milestones as we celebrate Windows at 40!

The GUI Awakens (1985–1992)

Windows 1.0, released in 1985 – introduced the business world to the graphical user interface. Windows gave us windows, icons, mouse and pointers (the WIMP environment). It was a radical shift from command-line computing and MS-DOS, although initially Windows was essentially a shell that still run in Microsoft Disk Operating System (MSDOS).

Image (C) Wikipedia


Windows has updates over the years with Windows 2.0, 3.0 and then 3.1 and 3.11 (Windows for Workgroups). This brought mass adoption and became the stable at work. We had network printers, Program Manager, Task Manager, File Manager, and the introduction of TrueType fonts which made Windows the OS for business and publishing.

The Desktop Revolution (1995–2000)

In 1995, Microsoft released, arguably the biggest innovation to the Windows OS ever, which still is deep rooted in the Windows we know and use today. Windows 95 brought 16-bit computing, much loved Start menu, taskbar, and revolutionary hardware plug-and-play support which completely defined the modern desktop environment we know today. A year later, Microsoft Internet Explorer was released which wiped the floor with all other Internet Browers at the time and quickly wiped Netscape from existence.

We also saw the launch of the “Microsoft Network” or MSN and saw IM tools like Instant Messenger and the early modern browsers powered by those dial-up modems we all loved and hated!

Oh…and we can’t forget the infamous Blue Screen of Death (BSoD)!

Security and Stability As Standard

In 2000, we saw Windows 2000 – an enterprise-grade, secure Operating System built on their Windows NT 3.51 and 4 Server Operating System. This was built on the NT (New Technology) secure kernel (rather than the underlaying MSDOS) and became the backbone for future releases of Windows.

Stability and Dominance (2001–2009)

In 2001 (with major updates in 2002), we saw the release of Windows XP which will always be remembered for the “teletubby wallpaper”.

Windows XP Desktop

Windows XP unified the consumer and business experience. It was loved for its more friendly interface, rich graphics, powered in-box apps. It was also the first version of Windows that actively supported (or tried) to support pen, ink and touch. Whilst this was probably ahead of its time, we saw a new range of touch tablets (this is pre-iPad days) with Windows XP Tablet Edition. – Check out my blog of the RM Windows XP Tablet.

Windows XP powered homes, cash point machines, hospitals, and offices for over a decade.

In 2009, Microsoft gave us Windows 7. Arguably this was the most “loved” Windows Operating System ever – according to multiple sources. It was a sleeker version of Windows XP but also very familiar, meaning adoption rocketed.

Windows 7, restored user trust after Windows Vista (a poor and rushed attempt at refreshing Windows XP which). Windows 7 was fast, stable, and became dominant in commercial, public sector and enterprise IT.

Twenty four years later – it’s still not uncommon to see the odd device, information screen etc pop up still running this OS !

The Service Update Era (2012–2015)

In 2012, along with Microsoft’s first attempt launch of Tablet and touch computing (again maybe too early), we got Windows 8 -and then Windows 8.1. This was mainly a flop with the world not being ready for such a major shift to the UI, with a bold, touch-first redesign which mirrored that of the Windows Mobile.

Microsoft (to the hate of users), removed the Start menu (which they did bring back in Windows 8.1) and introduced their Metro UI which features innovative “live tiles” and the also introduced to the app store. There was also an ARM based version of Windows 8 to run on Surface RT devices – Microsoft’s again (too early) attempt of Windows on ARM – which today is what powers many Copilot Plus PCs and many of the world’s smart phones.

Then in 2015, we got Windows 10. This was the first version of Windows that essentially didn’t have versions as Microsoft shifted to “Windows as a Service.” This gave us continuous updates, cross-device integration and an OS that supported a blend of traditional Windows 7 style and aspects of the Metro / Live Tile interface of Windows 8.

Windows 10 on Surface Pro


The AI Frontier (2021–2025)

As we existing Covid-19, Microsoft unveiled Windows 11. This was built on the reliability and stability of Windows 10, but brought a fluent design, centred taskbar, and (later) Microsoft Copilot AI integration. A modern aesthetic with AI at its core.

Image (c) Bleeping Computer

This autumn, Microsoft released Windows 11 25H2 which marks the 40th anniversary of Windows. At Ignite in November (this month at time of writing), Microsoft unveiled their vision for an agentic OS – the next evolution of Windows, where AI agents orchestrate tasks across apps and devices. This could be a bold leap into ambient computing – but again there are many that would rather Microsoft left Windows alone and left the AI stuff to optional apps.


Final Thought

Windows has always been a mirror of its time — from GUI to cloud, from mouse to touch, and now from manual to agentic.

As we celebrate 40 years, we’re not just looking back. We’re standing at the edge of a new paradigm. The next chapter isn’t about what Windows does its about infusing AI into our workflow and apps.

With the change in how people use and access their devices and role of AI in our lives, the question is – what will Windows look like at 50!

Posted on

Windows 365: What, Where and Why?

As Windows 365 settles well into its forth year, there have been huge advancements in capability, connection methods, endpoint innovation, and licensing options – with even more expected as Microsoft Ignite approaches next week

In my role, I spend a lot of time talking with clients about Modern Work solutions and where Windows 365 fits within their organisation: how it can be adopted and leveraged for simplicity, security, governance, access & management, contractors, and frontline staff.

This blog walks through many of these themes in my own way, reflecting how we often describe them to clients when shaping strategy and deployment. 

So, what is Windows 365? Windows 365 is a cloud-based software-as-a-service (SaaS) that provides a new type of dedicated Windows virtual machine (Cloud PCs) for your end users. The Cloud PC lets users access their Windows desktop from various devices, including Windows, Web, iOS, and Android etc.

Ways to Connect to Windows 365

Microsoft now highlights three/four primary ways to connect to a Windows 365 Cloud PC: 

  • Via Web Browser (at https://windows365.microsoft.com
    • The fastest way to access and deploy, no installation required (and no plug-ins). 
    • Ideal for occasional access or unmanaged devices and even on home TV.
    • Works across platforms (Windows, macOS, iOS, Android, Linux) with no apps needed.
  • Remote Desktop App  (being deprecated)
    • Full-featured experience with richer integration. 
    • Supports multiple monitors, device redirection, and local resource access. 
    • Best suited for power users who need a seamless desktop feel. 
  • Windows App
    • Unified app for both Azure Virtual Desktop and Windows 365. 
    • Modern interface, simplified management. 
    • Designed for organisations standardising on Microsoft’s evolving app ecosystem. 
  • Windows 365 Link 
    • Microsoft first purpose-built Cloud PC device. 
    • Boots directly to Windows 365 in seconds, with dual 4K monitor support and optimised video conferencing. 
    • Runs a locked-down OS withno local data, apps, or admin rights, reducing attack surface. 
    • Managed via Intune and Entra, with flexible deployment models (IT-driven or user-driven

Each method balances simplicity, performance, and integration differently. The right choice depends on your team’s workflows, devices, and IT governance model. Of course in some situations a mix may be used as per my use example below.

Key Use Cases and Scenarios

  • Contractors or Temporary Staff → Browser access for quick onboarding/offboarding. 
  • Field Workers and Mobile Teams → Remote Desktop app for resilience and performance. 
  • Developers and Power Users :Windows App or Remote Desktop for multi-monitor and GPU acceleration. 
  • Highly Regulated Industries :Browser or Windows 365 Link for locked-down compliance. 
  • Shared Workspaces and Hot‑desking: Windows 365 Link for instant sign‑in and simplified IT. 
  • IT Modernisation Projects: Windows App and Windows 365 Link for different and future‑proof endpoint strategy. 

Cost Optimisation for Frontline and Part‑Time Users

Licensing is just as important as the connection method. Here are ways to reduce costs without compromising experience: 

  • Windows 365 Frontline 
    • Tailored for shift workers, seasonal staff, and part‑time employees. 
    • Licenses are pooled—multiple users can share Cloud PCs across shifts. 
    • Automatic sign‑out ensures Cloud PCs aren’t left idle. 
    • Currently available with a 20% discount for new customers. 
  • Blended Licensing Strategy 
    • Use Enterprise licenses for full‑time staff needing persistent access. 
    • Use Frontline licenses for part‑time or occasional users. 
    • This mix maximises ROI and avoids over‑provisioning. 
  • Bring Your Own PC (BYOPC) 
    • Employees connect securely from their own devices. 
    • Reduces hardware spend—Forrester estimates ~$750 saved per contractor. 
  • Shared Cloud PCs 
    • Provision temporary desktops for contractors or seasonal staff. 
    • Can avoids the cost of dedicated, always‑on Cloud PCs. 
  • Flexible Provisioning 
    • Scale Cloud PCs up or down based on demand (e.g., retail peaks, healthcare shifts). 
    • Prevents wasted spend during quiet periods (remove license or scale down).

Let’s talk ROI….

A common question is naturally, “how can Windows 365 can offer better lower cost of ownership than a PC bearing in mind a device of some sort is needed to access Windows 365 from in the first place”.

So, and again this depends on the scenario, when you look at a 4‑year device lifecycle, Windows 365 can deliver a lower total cost of ownership than a traditional PC – especially in BYOPC or contractor scenarios. Even when the costs are similar, the added benefits in security, agility, and simplified IT management make the Cloud PC model more compelling. For frontline or part‑time staff, the savings are even greater thanks to pooled licensing.

The Forrester report (below) goes into this in more detail.

Strategic Considerations

Beyond user scenarios, IT leaders should weigh: 

  • Security posture: Browser and Link minimise local footprint, while apps offer richer policy enforcement. 
  • Device diversity: Mixed estates (BYOD, macOS, Linux) lean toward browser; standardised estates benefit from apps or Link. 
  • Future roadmap: The Windows App and Windows 365 Link are evolving rapidly—early adoption may simplify long-term management. 
  • Cost efficiency: Frontline licensing and BYOPC strategies can significantly reduce TCO. 

Sources

There are a bunch of great Microsoft and tech community sites that talk about these things in more detail.. I’ve included the URLs below as these go deep into many areas I have covered above.

Windows 365 – How to Choose the Best Connection Method for Your Team 

Windows 365 Link — The First Cloud PC Device 

Windows 365 Link – Deployment Planning, Setup and Enrollment 
   
Windows 365 Documentation (Microsoft Learn) 

Windows 365 Frontline (Official Microsoft Page) 

Forrester TEI Study — The Total Economic Impact of Windows 365 

Posted on

Windows 11 bringing new “Ask Copilot” to the taskbar

Image Describing Windows 11 updates

Windows Insiders in the Dev and Beta channels can start testing a new Copilot search experience which is available through the Windows Search bar.

To get started go to Settings > Personalisation > Taskbar > Ask Copilot to enable the experience. You can also manage whether the Copilot app launches automatically at sign-in using the “Auto start on log in” toggle in the Copilot app settings.

This is an opt-in experience, but once enabled gives you one-click access to Copilot Vision and Voice, so you can use what ever interaction style works best for –  text, voice, or guided support with Copilot Vision.

As you type, results appear and are updated instantly, making it easier than ever to find what you are looking for.

New Copilot experience in Windows Toolbar/Search
Posted on

MAKING EVERY WINDOWS PC AN AI PC

On October 14th 2025, Windows 10 officially reached end of support. If you still have a PC/Laptop running Windows 10, it will not suddenly stop working – but unless you have enabled (consumer) or purchased (commercial) extended security updates, there will be no more security updates, no more feature improvements, and no AI innovation.

If your device can support Windows 11, then now is the time to upgrade – after all Windows 10 is more than 10 year olds. That’s like choosing to stick to Apple iOS 9!!!

If your device is too old, or doesnt meet the requirements to run Windows 10, then see this as an opportunity to move forward into the AI revolution of Copilot+ (AI) PCs and Windows 11 25H2.   Its a big change for good and there’s so much more coming. With Windows 11 and Copilot+PCs from Microsoft, Dell, HP, Lenovo etc, every PC becomes an AI PC, ready to embrace the next evolution of IT and computing.

WHY BUY A NEW COPILOT+PC?

Investing in a new Windows 11 PC doesn’t just mean staying secure and compliant and adopting a new Start Menu interface. Think of it like the investment you make in a new phone, TV or other tech appliance. be excited, embrace the new features and I promise you won’t look back…

The changes are huge, 10 years of new innovation in the OS level (Windows 11 is already 5 years mature) and in hardware – which has advanced a long long way in 10 years (as I am sure your phone has!)

WINDOWS 11 ON COPILOT+PC BRINGS AI FRONT AND CENTRE

Fact – Windows 11 devices are signifantly faster, more secure, and designed for the future of how we work, play, create and consume content.

Windows 10 was created way before the World of Generative AI tools was even comprehended. OK – we had early versions of Alexa, Siri and we’d experienced Cortana when Windows 10 came to market…but nothing like the rapid world of Generative AI we find ourselves immersed in today – with tools like ChatGPT, Claude and Copilot, and AI “baked” into almost every app or service we consume. Like it or not, we are in the age of AI – and it’s advancing quickly!

Windows 11 is at the forefront of the new era of computing where AI is built into the Operating System (and not layered on). With Windows 11, AI is being infused deeper and deeper, securley into the OS. Context aware, application aware, personalised, secure and ready to help (or not if you choose), right out of the box. Unlike some of the other free products out there, Microsoft runs and adheres to trust and privacy and user choice. As the user you control what Copilot can do, see, interact and work.

With Copilot in Windows, every device is an AI PC . Any new device you buy today, whether Surface, Dell, Lenovo or your other choice (I choose Surface everytime), you get a plethora of new experiences powered by Windows 11, and a mix of local and cloud-based AI models, including:

NATURAL INTERACTION

With Copilot, you can talk or type. Not only does your device understands you, it understands your context, is truly conversational, can work “with” your applications (Copilot Vision) and help with research, creation and far more. You can “invoke” Copilot with the Copilot key or by saying “hey Copilot”. This opens up Copilot in Windows.

Copilot in Windows 11 – invoke from “Hey Copilot” or the Copilot key.

COPILOT VISION

This is clever, but a real game changer once you start to use it. With Copilot Vision, you can allow (user choice always) Copilot to see you screen, browser tab or application and then work with Copilot in many ways as a companion or tech friend! It can help you edit a photo, give feedback on a presentation or email, assist you use an application all in real time with real context. In the example below, I am using Copilot Vision to help me understand how to add a chart to a spreadsheet. You can see how Copilot understands the app I am in, knows how to use it and guides me side by side – pretty awesome!

COPILOT ACTIONS

Another one that take a bit of time to get your head round, but once you do …. “wow“. With Copilot Actions, (which is in preview now so will only get better), Copilot can take control of your device (or app) and take action on your behalf. It can open files, search the web and even (with permission) book hotels, restaurants and extracting data from one document to another. Give this a try – it’s awesome (you need to do this from https://copilot.microsoft.com.)

OPERATING SYSTEM INTEGRATION

Copilot is now deeply integrated into Windows, Office apps and everywhere you choose to use it. The latest Windows 11 25H2 insider update sees Copilot now part of the taskbar experience, Windows Settings, and File Explorer. You can invove it with a voice command, press of the Copilot Key or traditional opening of the app. You can ask Copilot to help with things like “make my screen easier to read” or “turn on focus mode” or “change my screen orientation” and it will guide you directly to the right settings. 

COPILOT HELPS GAMERS

For PC Gamers (and also coming soon to Xbox), Copilot can run along side your game, offering tips, recommendations, and insights without leaving your game. 

You can see with the examples above, as Windows 11 development continues, as AI tools mature and with more AI ready PCs hit the market, AI is being woven into the very fabric of Windows OS.

MAKE SURE YOUR NEW PC IS A COPILOT+PC

What makes a Copilot+ PC different isn’t just the badge on the box, its the significant change in PC design that Windows 11 and Copilot can enable and leverage to take advantage of this new wave of technology shift. Powered by the AI’s brain – the dedicated neural processing unit (NPU) inside every Copilot+ PC.

WHAT THE NPU IN YOUR COPILOT+ PC CAN DO

The NPU in your new Copilot+ PC means your device can not only run cloud based AI tools, but can also run AI models locally.

You might ask why? Well, today, this translates into faster, more private experiences like live captions (for any audio or video playback), the best quality background noise removal, and image editing that happens instantly on your device.

This is just the start though. Copilot+ PCs enable the “what is coming next”. We are seeing increasingly powerful local AI models that will run directly on your device, tailored to your data, your workflows, the application and your preferences without needing to be online, without the need for an “AI subscription” and without worrying about privacy and data sharing.

As the software and local models develop, the near future with Copilot +PCs will bring a future where your Windows 11 device can summarise a day’s worth of meetings, generate creative assets, or even coach you through a presentation – all without sending sensitive information anywhere or while you are offline. This is what the NPU and why Copilot+ PCs matters. This is the infrastructure for the future of personal, school, and work computing. It will innovate and transform just like the Internet did (and has). It is not just about what AI can do today, but about have a device that supports the foundation for the next decade of computing. We are entering the age of AI and more importantly AI at the Edge.

AI AT THE EDGE AND WHY IT MATTERS

This is where things get really exciting—because the shift to local AI isn’t just a technical upgrade, it’s a fundamental change in how both businesses and consumers will use PCs. 

EDGE AI FOR BUSINESS

  • Data sovereignty & compliance: Running AI models locally means sensitive data never has to leave the device. That’s a huge win for industries like finance, healthcare, and government, where compliance and privacy are non‑negotiable. 
  • Performance at the edge: Instead of waiting for cloud round‑trips, AI workloads can be processed instantly on the device. Think real‑time transcription in meetings, instant document summarisation, or on‑the‑fly image generation—all without latency. 
  • Cost efficiency: Cloud AI is powerful, but it’s also expensive at scale. Local AI shifts some of that compute to the endpoint, reducing dependency on cloud cycles and helping organisations balance cost with capability. 
  • Customisation: Businesses will be able to deploy domain‑specific models tuned to their workflows—legal, medical, engineering—directly onto devices, creating a new layer of productivity that’s both personal and enterprise‑ready. 

EDGE AI FOR CONSUMERS

  • Privacy by default: Your personal notes, photos, and conversations can be processed locally, without being uploaded. That builds trust and makes AI feel less intrusive. 
  • Always‑on intelligence: With NPUs sipping power, AI features like live captions, translation, or accessibility tools can run continuously without draining battery. 
  • Personalised experiences: Local models can adapt to your habits—how you write, what you search for, how you game—without needing to share that data externally. 
  • Offline capability: Imagine Copilot summarising a PDF on a flight, or generating a study guide for your child without an internet connection. That’s the kind of resilience local AI unlocks. 

LOOKING AHEAD

The future of AI PCs is about hybrid intelligence: the best of local and cloud working together. Local NPUs will handle everyday, personal, and privacy‑sensitive tasks, while the cloud will still power massive, general‑purpose models when needed. Over time, we’ll see: 

  • Smaller, more efficient models designed to run entirely on‑device. 
  • App ecosystems that treat the NPU as a key part of the chipset – with AI‑powered creativity, productivity, and accessibility tools baked in. 
  • Consumer‑grade AI assistants that feel more personal, because they’re trained on your device context, not just the cloud. 
  • Enterprise‑ready AI platforms where every employee has a secure, AI‑enabled partner at their fingertips with world class security and privacy.

Copilot+PCs like Surface Pro and Surface Laptop, are designed not just for performance, but for AI. With dedicated NPUs (neural processing units), Copilot+ PCs can run AI workloads locally – faster, more securely, and with less battery drain. Plus, it is built on the most secure version of Windows ever, with Microsoft’s Secure Future Initiative ensuring privacy and protection by design. 

MY PERSPECTIVE AS AN MVP

As someone who spends their days working with technology, helping organisations, consumers, creators, educators and young people align technology with work, strategy and life, I see the future of computing with AI PCs as so much more just a product refresh cycle and new Operating System. This is a fundamental shift in how we think about the role of a PC – both in work, in the home and at school. 

As a Microsoft MVP for Surface and for Microsoft 365 Copilot, I’ve had the privilege of seeing these innovations up close, from early previews at MVP Summit to hands-on testing with Copilot+ PCs. The integration of AI into Windows isn’t hype – it’s here, it’s practical, and it’s already changing how people work, learn, and create. 

Posted on

Microsoft releases new Calendar app for commercial customers

After years of silence around bringing more functionality to the Windows 11, Microsoft have quietly announced a new Calendar app for Windows 11.

This doesn’t replace the Calendar Fly out but is instead the latest Microsoft 365 “Companion app” and joins the recently launched People and File Search apps.

It’s only availble for Commercial customers with a Microsoft 365 Business or Enterprise License.

What does the new Calendar app do?

The goal of the new Calendar companion is to essentially bring back the show your day and schedule at a glance with a simple flyout the opens up right above the Windows taskbar as shown in the screenshot below.

It also provides more interactivity allowing you to accept and even join meetings directly from the calendar without having to go to Outlook or Teams.

New Windows 11 calendar flyout

This is quite slick and simple to use and not only provides much needed and quick access to common calendar related things, but also provides more use than the Windows 10 Calendar Fly out and significantly more than what is native on the Windows 11  calendar.

Image (c) Microsoft.

Microsoft says on their blog that:

“The Calendar companion app lets users quickly view their Microsoft 365 calendar directly from the Windows taskbar, eliminating the need to switch between apps and lose context. View upcoming events, join meetings, and search for appointments to stay on top of your schedule. “

When can I get the new Calendar App?

The new Calendar app is currently available to Microsoft 365 Insiders in the Beta Channel but will roll out to other channels over the next few weeks based on customer feedback.

Posted on

Chip to Cloud: Microsoft Surface’s End-to-End Security

I had the pleasure in taking part in a podcast last week with some of my team, Microsoft and Westcoast. This was aimed at demystifying Copilot+ PCs, part of which got us into the tech trenches of security and sustainability, two of the main reasons, organisations invest in Microsoft and Surface.

As such I thought I’d break out and do a spotlight on Microsoft’s Chip to Cloud Security approach.

Security is a critical consideration across any technology purchase and the laptops/tablets you buy should be no different. Whilst security can be layered on, it works best when it is built-in and part of what you buy. With Surface this is front and centre.

With cyber threats growing more sophisticated each day both at software and hardware layers, Microsoft has a bold and powerful stance: embedding security from chip design, supply chain, firmware/UEFI, Windows and of course the Cloud.

Microsoft Surface is more than a premium class device. Surface is a manifestation of Microsoft’s holistic, Zero Trust security philosophy. Secure by design and Secure by default.

Surface is also the only Windows OEM that controls and owns the entire security stack from the hardware, to the Windows OS to the Cloud Security like Defender.

Microsoft Surface Chip to Cloud Architecture.

Microsoft sets a compelling example of agile defense against emerging threats in what they term “From Chip to Cloud”.

What Does “Chip to Cloud” Mean?

At its core, “chip to cloud” is about ensuring security at every stage – from design, supply chains, the hardware integrated into the device to the operating system and finally, into the cloud where robust analytics and cloud defense form a huge part of the Surface blueprint (see above).

This approach means that when you first power on a Surface device, the user is protected. This starts at the hardware level and continues seamlessly into Windows, the software applications you run, and the cloud services you use.

The Microsoft Surface: A Manifestation of Microsoft’s Security Vision

Microsoft Surface is not just another OEM device. It is built by Microsoft at every level. Surface combines the very best of Microsoft’s technologies under one roof – Windows 11, Defender, and Microsoft 365 security to provide an enterprise-grade, secure experience.

Rather than just layers on, this is security by design built in and baked into every layer including the silicon.. The commitment to Zero Trust is evident, as every layer, whether hardware, firmware, or software, works in concert to provide continuous protection.

Key Takeaways:

  • Zero Trust Architecture: Every access point, both physical and digital, is continuously verified.
  • Full-Stack Security Ownership: With Microsoft owning the entire security architecture, the Surface delivers a unified defense that spans the entire ecosystem.

In Windows 11, hardware and software work together to reduce the attack surface, protect system integrity, and safeguard valuable data. New and enhanced features are designed with security by default which include running Win32 apps in isolation, token protection, passkeys, and Microsoft Intune Endpoint Privilege Management providing just some of the latest capabilities helping to shield from attacks.

Windows Hello and Windows Hello for Business integrate with hardware-based features such as Trusted Platform Module (TPM) 2.0, biometric scanners, and Windows presence sensing to enable easier, more secure sign-on and protection of your data and credentials. Microsoft are also closer than ever in moving to a Passwordless future.

It Starts with Silicon – the Pluton Security Processor

The journey of security begins at the hardware layer / the silicon. Newer  devices are built in collaboration with Intel, Qualcomm and AMD, ensuring that their internal architecture is as robust and secure as possible. Newer devices will leverage Microsoft’s internally designed Pluton processor which can also act as the Trusted Platform Module (TPM) and hardware root of trust further improving hardware based security.

Pluton Processor Architecture (c Microsoft

Microsoft Pluton security processor is a chip-to-cloud security technology built with Zero Trust principles at the core. Microsoft Pluton provides hardware-based root of trust, secure identity, secure attestation, and cryptographic services. Pluton technology is a combination of a secure subsystem, which is part of the System on Chip (SoC) and Microsoft authored software that runs on this integrated secure subsystem.

The way it works (simplified) is that when the system boots, Pluton hardware initialisation takes place by loading the Pluton firmware from the Serial Peripheral Interface (SPI) flash storage on the motherboard. During Windows 11 startup, the OS uses the latest available version of the Pluton firmware. If no newer firmware is available, Windows defaults to the version loaded during hardware initialisation. This diagram illustrates the process:

Pluton boot process in Windows 11 (c) Microsoft

Note: Microsoft Pluton is currently available on devices with AMD Ryzen® 6000, 7000, 8000, Ryzen AI and Qualcomm Snapdragon® 8cx Gen 3 and Snapdragon X series processors. Microsoft Pluton can be enabled on devices with Pluton capable processors running Windows 11, version 22H2 and later.

Highlights of Pluton.

  • Secure by Design at the Chip Level: Even if one component is challenged, the Zero Trust framework ensures there is backup protection within other layers—including during the manufacturing and supply chain process.
  • The Pluton Security Processor: Unlike traditional hardware security modules, Pluton is embedded right into the CPU. This integration provides hardware-based root of trust, secure identity, and cryptographic operations that are virtually immune to physical tampering. Such a design minimizes the risk of sensitive data extraction even when attackers try to bypass conventional boundaries.

Microsoft Pluton can be used as a TPM, or with a TPM. Although Pluton builds security directly into the CPU, Windows device manufacturers might choose to use discrete TPM as the default TPM, while having Pluton available to the system as a security processor for use cases beyond the TPM. Microsoft are adopting the latter for all new devices built. It’s also leveraged by the new Windows 365 Link Devices.

Preempting Advanced Threats: Learning from Spectre & Meltdown

Back in early 2018, vulnerabilities like Spectre and Meltdown demonstrated that even the most advanced processors could be exploited via speculative execution. Microsoft’s response was swift and agile:

  • Rapid Patch Deployment: Security updates were rolled out on the day of public disclosure, ensuring devices were immediately protected.
  • Agile Firmware Development: Microsoft built its own UEFI, reducing dependency on third-party providers. They even introduced secure programming languages like Rust to minimize vulnerabilities from the start.
  • Holistic Integration: By leveraging its full-stack ownership, Microsoft coordinated an end-to-end defense – from patching the OS to reinforcing the hardware.

This agility and forward-thinking approach are core to maintaining trust in a world where new threats emerge on a daily basis.

Moving forward, the March 2021 Security Signals report found that more than 80% of enterprises had experienced at least one firmware attack in the past two years.

OS and Cloud Defense: The Next Layers of Protection

Moving from hardware to software, Microsoft ensures that Surface devices benefit from Windows 11’s robust security features:

  • Operating System Security: Built-in features such as Windows Hello, TPM 2.0, and Secured-Core PC (with Pluton processors) protections safeguard the operating system, providing seamless defense as soon as the device boots up.
  • Cloud Integration: The cloud plays a critical role by delivering powerful analytics and AI-driven threat detection. Microsoft Defender continuously monitors devices and endpoints, ensuring that potential breaches are thwarted before they escalate.
  • Real-Time Intelligence: Integration with Microsoft 365 security tools like Microsoft Defender and cloud-based analytics means Surface devices receive continuous updates and proactive defenses regardless of where the device is located.

A Secure Ecosystem for the Future

What sets the Microsoft Surface apart is its integration into a broader ecosystem that is built from the ground up with security in mind. From hardware collaboration with Intel and silicon experts, the innovative use of the Pluton processor, to agile responses against threats like Spectre and Meltdown – all these measures come together in an environment where the chip is only the beginning. The real secret lies in how this interconnected world of Windows, Defender, and cloud-based intelligence creates a fortress that’s always one step ahead.

Microsoft Surface is not just the most secure Windows device you can buy it is the point into a cohesive zero trust security architecture that works tirelessly to protect your data, your device from hardware to Windows OS through Office apps and Microsoft 365 services and of course Defender.

Conclusion

Secure by design and Secure by default. Microsoft Surface exemplifies this chip-to-cloud approach by combining robust hardware protection with powerful OS and cloud defenses. With Zero Trust principles woven into every layer, Surface devices are designed not only to meet today’s challenges but to anticipate tomorrow’s threats.

Microsoft Surface isn’t just “the most Secure Windows device” on the market, it is part of Microsoft’s wider secure ecosystem that enables security from Chip-to-Cloud.

Posted on

Tick-Tock: Upgrade to Windows 11 Before October 2025

WIndows 10 Sunset

With the end of support for Windows 10 on October 14, 2025 (less than six months away), the time has come to embrace the next generation of computing for work and home with Windows 11 and Copilot+ PCs.

According to a survey by Canalys, it was revealed that more than one-third (35%) of of Small and Medium sized businesses (SMB) clients either lack awareness of the Windows 10 end-of-service (EoS) deadline or have no firm plans of preparing for and dealing with this date – after which they will be forced to pay big money for security updates if they wish to continue using Windows 10.

The report states that within this 35%, 21% of SMB customers are aware of the upcoming Windows 10 EoS but still have no plans to upgrade, while 14% remain entirely unaware. This combination of unpreparedness and lack of awareness poses serious concerns, given the security and compliance risks of using unsupported systems post-EoS.

This impending end-date of Windows 10, together with the huge advances and benefit of Windows 11 and the new Copilot+ PC devices now flooding the market, should form the foundation for a transformative leap forward in security, performance, and productivity potential, making them the ideal choice for individuals and organisations alike.

Windows is not just an Operating System – it’s the foundation and access to what your device, applications, imagination and AI can do for you.

Windows and Surface: Secure from Chip to Cloud

Windows 11 is the most secure version of Windows ever, built from the ground up to meet evolving threats as part of the Microsoft Secure Future Initiative. Its advanced security features span from chip-level protection to cloud integration, ensuring comprehensive safety for your data and devices.

Chip to Cloud Security

Beyond security, Windows 11 delivers much faster boot times, instant-on technology, and much improved multitasking capabilities. Features like Snap Layouts and enhanced docking experiences streamline workflows, while AI-powered tools like Windows Copilot, AI Seach, Click To Do and Studio Effects elevate productivity to new heights.

The redesigned and refined modern user interface adapts seamlessly to modern devices, offering a fluid experience for creativity, gaming, and work.

The Role of Copilot+ PCs

Modern Windows 11 devices (like Surface Laptop 7 and Surface Pro 11) equipped with Copilot+ technology redefine what your device and applications can do. These devices combine cutting-edge hardware with local AI-driven features to enhance performance, security, and battery life. Copilot+ PCs are designed to handle demanding tasks with ease, ensuring smooth operation and extended uptime.

AI integration in Copilot+ PCs goes beyond productivity. From intelligent multitasking to personalized assistance, these devices empower users to achieve more with less effort. Whether you’re managing complex projects or exploring creative endeavors, Copilot+ PCs are your ultimate companion. As these become common place, every software vendor and application will start to leverage the power of local and on-chip AI to enhance their application experience on Copilot+ PCs.

Options for Windows 10 Users

With Windows 10 now 10 years old, Microsoft do have options for those who still need more time to migrate to Windows 11.

Extended Security Updates

Microsoft offers Extended Security Updates (ESU) for Windows 10. These are a cost option, but will provide critical security patches for up to three years after the end of support date in October 2025.

One positive though is that organisations that need to remain on Windows 10 but are using Intune or Windows Autopatch to manage your updates then Microsoft have kindly added a Windows 10 ESU Cloud Managed licenses to the April 2025 Product Terms. These are aimed at organisations who are managing updates using Intune or Windows Autopatch and in return receive 25% discount from the regular ESUs

Windows 365 Cloud PC

Windows 365 Cloud PCs on the other hand allow organisations to repurpose existing Windows 10 devices, streaming Windows 11 from the cloud for a secure and modern computing experience.

For these scenarios, Microsoft also include Windows 10 ESU free of charge to ensure you continue to protect the base Windows 10 device used to access your Windows 365 Cloud PC from.

Plus Microsoft are keen to support their commercial customers during these changing times, and have announced that from 1st May 2025, they are a 20% discount on all Windows 365 plans to new commercial customers.

Modernisation Benefits

Upgrading to Windows 11 or Copilot+ PCs isn’t just about staying secure—it’s about unlocking new possibilities and opportunities to modernise everything from device management, policy implementation, and system hardening improve user uptime and productivity, delivering faster ROI for businesses.

Windows 11 on Copilot+ PCs, provides significantly enhanced battery life and enables new and upcoming AI-driven features to ensure a seamless and efficient computing experience for years to come.

As we approach October 2025 – cosumers and organisations need to embrace the future with Windows 11 with Copilot+ PCs. Whether you’re upgrading your fleet or exploring cloud solutions, now is the time to prepare for a secure, innovative, and productive tomorrow.

Talk to your Microsoft Partner about device refresh, device recycle, Windows 11 migrations, Device as Service offering or how Cloud PC technology like Windows 365 and AVD forms part of your Windows and devices strategy.

Posted on

New Start Menu in testing for Windows 11

New Windows 11 Start Menu

Before we start, why should we get excited about a change to Start Menu?

Afterall, it is something that has been under constant critique since Microsoft changed it up (ok – ruined it) with Windows 8, which was a bold (yet poorly received) attempt to modernise the Start menu after years of “consistency” of the Windows 95 start menu which didn’t really change all the way up to Windows XP.

Classic Windows 95 Start MenuThe Windows 8 Start menu
Classic Windows 95 Start Menu (left) and much “unloved” Windows 8 Start Menu (right

Windows 11 Start Menu Changes

The days of the Windows 8 “start menu-less” UI (which was very optimised for touch and aligned to Microsoft’s entry into the devices market with the Surface RT and now more familiar Surface Pro) are thankfully way behind us. The Start Menu came back with Windows 8.1, evolved through Windows 10 and is now clean and elegant blend of what worked well in Windows 95 and what modern touch friendly interface should look like in 2025.

Windows 11 is a great interface, clean and crisp, but there has been lots of feedback around the need to bring more grouping and controls in to Windows 11. This has also led a to plethora of third-party apps that bring some of this functionality back for power-users.

It is now great to see that, in the latest Dev build of Windows 11 introduces a refreshed Start menu design that is designed to enhance user experience and productivity.

New Windows 11 Start Menu in Dev Build
New Windows 11 start menu – in Windows Insider Dev Build

This new design aims to provide a more intuitive and seamless interaction, making it easier for users to access their favorite apps and settings. The updated Start menu features a cleaner layout, improved search functionality, and customisable options that allow you to tailor the experience to your professional needs.

How do I try it out?

The new Start Menu design is being tested for Windows Insiders in the Dev Channel .

So if you enrolled (or want to), you can get the latest update and check it out. Don’t forget to file feedback in the Windows Feedback Hub.

This new feature is subject to Microsoft’s usual A/B testing meaning not everyone will see the new start menu straight away.

Share your feedback with the community too and if you find this useful, please share this post and help and help shape the future of Windows!

Change is the only constant

Microsoft continuously refines and updates various components of their Windows Operating system, using the Windows Insider Community for early testing and feedback.

Posted on

Windows 365 Link now available for £314

Microsoft’s dedicated mini PC that just runs Windows 365 is now evaulable to from limited distributes for £314 / $350.

I’ve just ordered mine, which should arrive early next week, after being lucky enough to play around with one at Microsoft Ignite in Chicago back in November.

What is Windows 365 Link?

Windows 365 Link is aimed (currently) for commercial / business customers and provides a simple, fast, secure and fast way to connect directly to the Windows 365 cloud service provide access to a dedicated (or shared in the case of front line workers) Windows Cloud, a full persistent Windows desktop in the Cloud. The configuration of these desktop experiences is managed via Intune and the specification of each users Cloud PC is configurable subject to the license allocation for the user.

Windows 365 Link

The Windows 365 service itself as a service is not new however, with it being available through the browser and via the Windows App which is available on Windows, Mac, Android and Apple iOS.

The combination of dedicated device and Windows 365 Cloud Service should make for a simple and more easily manageable experience for IT departments than managing physical fleets of desktops and Laptops while also significantly  reducing the needs of hands on support.

Is Windows 365 Link just a Thin Client?

No. But there is a definately similarity!

Many organisations have used Thin Client devices (such as igel thin clients) that run a virtual Windows desktop (shared or dedicated) from a local or data centre deployed server farm. They can also be used to access Virtual Desktop Infrastructure (VDI) services such as Citrix, VMware and Microsoft Azure Virtual Desktop.

Windows 365 Link is, essentially a modern version of the thin client, but designed especially to run full Cloud PCs from Microsoft’s Windows 365 infrastructure over the Internet. There is not support for VDI infratrautre and won’t even run desktops hosted on Azure Virtual Desktop. It just runs Windows 365 as the name suggests!

The device is small, weights just, and is vesa mountable as you’d expect. It’s also capable of driving multiple displays at 4K resolution.

Thin Client vs Windows 365 Link

Being a purpose built device (it’s not just a generic thin client device) it is built with Microsoft’s commitment to Security. It’s built by the same team that build Surface. It leverages Chip to Cloud security with features including Secure Boot and TPM and also includes Microsoft’s Pluton processor.

The device is designed to boot in seconds, which sounds like a better experience than the thin clients of the past and performance of Windows 365 experience and the office apps (including Teams) has been rigorously tested and performance tuned with the Windows and Microsoft 365 development team.

Windows 365 Link on Dual Screens at 4K

Windows 365 Link has been in a private preview program by over 100 organisation, Microsoft MVPs and internal employees to help refine and perfect the out of box experience, configuration and performance since November

Secure by Design

Windows 365 Link is a dedicated Cloud PC devices that has no local data, doesn’t allow boot to anything other than Windows 365, has no local admin users, and supports the strongest security including passwordless authentication using Microsoft Entra ID and passkeys. This significantly reduced the attack surface.

It also has security locks and vesa mounts for secure and concealed mounting.

Windows 365 Link promotes sustainable computing

Windows 365 Link is built using more than 63% recycled components and materials, has 100% paper-based packaging, is an ENERGY STAR-certified device, and is designed to be long-lasting and repairable. They are super low power too and because Microsoft Cloud is committed to being carbon negative by 2030, the cloud compute they consume is also green and sustainable.

Availability

Windows 365 Link is available now (from April 3rd) in the US, Canada, Australia, UK, Germany, Japan, and New Zealand.

I’ll be doing a hands on review next week when mine arrives!!

Posted on

Official Windows 11 Roadmap finally unveiled.

Microsoft has finally unveiled a dedicated Windows 11 roadmap website, designed to simplify the lives of IT pros, and IT technical management and users who care about new features and updates.

This addresses longstanding frustrations about the lack of transparency in the Windows Insider program, where new features are tested before going live.

Why Was This Roadmap Needed?

In short – there has never really been one.

For years, IT professionals grappled with inconsistent communication and unclear timelines in the Windows Insider program. Managing systems with this uncertainty was a challenge, to say the least. Microsoft listened to feedback and responded with a user-friendly roadmap that offers:

  • Feature Tracking: It shows the current status of features—whether in testing, gradual rollout, or general availability.
  • Intended Timelines: Features now come with estimated release windows, helping IT teams prepare systems for upcoming changes.

Simplified Navigation and Transparency

The roadmap include features that are in testing with users enrolled in the Windows Insider Program, features in a gradual rollout phase, and features that are generally available. Many of the features will include a target release window, which should help with preparing for upcoming features and changes.

Microsoft new Windows Roadmap

This empowers IT and Change Management teams to manage changes effectively, a step forward from the often-criticised lack of clarity in past processes.

What about Windows Server?

No, not yet. For now, it only covers Windows 11 client editions – leaving out Windows Server.

Conclusion – Yes! Finally!

This roadmap marks an important evolution in Microsoft’s approach to transparency, giving IT administrators the tools they need to keep systems running smoothly. Though it’s still early days, the potential for this tool to grow and cover more updates is vast.

Of course just like the Microsoft 365 roadmap, features listed on the roadmap remain subject to change, postponement, or cancellation.

For more details, check out the Microsoft announcement

Posted on

Windows 11 finally gets a native Copilot app.

At the end of Feb 2025, Microsoft gave Apple Mac users with a brand-new native Copilot (consumer) app experience and now after a feeble Web app version, Windows 11 is finally getting a proper one too.

This latest update brings a fully native Copilot app to Windows, delivering a faster, smoother, and visually enriched interface that aligns perfectly with the Windows 11 design language. Yay.

It also has a keyboard shortcut that lets you hold the Alt + Spacebar keys for two seconds to start chatting to Copilot via voice.

From Web View to Native App

For those who followed the initial rollout, you’ll remember that the original Copilot for Windows was simply a web view of the Microsoft Copilot website. While functional, it left much to be desired in terms of responsiveness and overall polish. 

Copilot App – Webapp to Native App

The new Copilot update transforms that experience completely. By leveraging the native app UI framework, Microsoft has infused the app with features that make the experience feel inherently Windows 11 that is also complete with a sidebar for managing chats, elegant mica blur effects, and native context menus and buttons.

This adherence to the native design not only improves aesthetics but also boosts performance and responsiveness.

What’s New in the Copilot for Windows App?

Enhanced User Interface

  • Native Design Language: The interface now mirrors the sleek, modern aesthetics of Windows 11. 
  • Smooth Interactions: Launching the app is noticeably quicker, and interactions feel seamless thanks to the native integration.

Intelligent Chat Management  

  • Sidebar for Conversations: All your previous chats are saved and easily accessible in a dedicated sidebar. 
  • Instant New Chat: Starting a new conversation is as simple as hitting the new chat button.

Retained and Expanded Functionality 

  • Text and Voice Chat: Continue to interact with Microsoft’s AI assistant using text, or opt for the Copilot Voice for a more dynamic experience. 
  • Customisable Settings: Options include settings to enable or disable launching the app on Windows boot, as well as toggling the alt+spacebar shortcut for quick access.

In short, there’s no real feature changes here – just a native Windows App, ensuring that the native experience makes no compromises on capability and features along with performance and usability improvements of a native app.

First thoughts on the new version

I have to confess—I wasn’t thrilled with the old web view version of Copilot for Windows. It felt like an afterthought compared to its Mac counterpart. This new native experience, however, is a major improvement. The app now inspires confidence in handling everyday AI tasks and is genuinely enjoyable to use. 

Getting the new Copilot App

For Windows Insiders excited to explore this update, the latest version (1.25023.107.0) or higher is now available via the Microsoft Store and should update automatically. The app is rolling out in preview across all Insider channels, inviting users to experience this transformative upgrade first-hand.

As a Microsoft product inside another Microsoft product, the evolution from a mere web view app (which should never have been done in my opinion) to a fully fledged native app that looks and feels like a Windows app not only elevates user interaction but also shows that Microsoft is actually serious about integrating AI seamlessly into everyday computing tasks.

The new Copilot for Windows app also has a keyboard shortcut that lets you hold the Alt + Spacebar keys for two seconds to start chatting to Copilot via your voice.

Microsoft want your feedback

Microsoft would like feedback too, which you can do by filing feedback in the  Feedback Hub (WIN + F) under Apps > Copilot or directly within the Copilot app by clicking on your profile icon and choosing “Give feedback”.

This feedback shapes the future. Whether we can expect more iterative updates, possibly with additional features and enhancements will only happen based on the Microsoft collects feedback from Insiders.

Conclusion

The leap to a native interface is more than just a cosmetic upgrade—it represents a thoughtful stride toward a more integrated and responsive Windows experience. I’m excited to see how this native Copilot app will further inspire productivity and innovation as it evolves.

What are your thoughts on this updated native app?

Posted on

The Windows Copilot app is now a “real” app

If you are not a fan of PWA (progressive web apps), the Microsoft is bringing good news. Windows Insiders are getting a new version of the Copilot app for Windows 10 and 11 which replaces the web-based application with a new native version.

The old app (or current app if you are not a Windows Insider) is a Progressive Web App which limits some of the Windows control such as quick view that is available in native Windows Apps. recently ChatGPT published their Windows App into the Microsoft Store and this latest update from Microsoft now makes the Copilot a real app too!

In the announcement, Microsoft said that

With this update, the previous Copilot progressive web app (PWA) is replaced with a native version. After installing the Copilot app update, when you run Copilot, you will see it appear in your system tray.

Microsoft Windows Insider Team

Whilst it’s hard to notice immediately differences, after installing the updated version (1.24112.123.0) Copilot on Windows is now a “proper” app rather than a WebApp.

This also means that Quick View can be used now with Copilot which lets you move the quick view window and resize it to suit your workflow. By default, the Copilot app in Windows uses the RegisterHotKey function and sets Alt + Space keyboard shortcut to open Copilot in Quick View mode which can be used to open and close Copilot’s quick view whenever you need it.

If you need to switch / flip back to the main Copilot app window, then this can be done by clicking the icon at the top left corner of the quick view window.

Devices with the dedicated Copilot key will open the Copilot app up the main window.

Posted on

Windows and Devices – Summary of Ignite Announcements

Introduction

Copilot was very much front and center at Microsoft Ignite last month. However, the Windows ecosystem also had lots of coverage. This includes Windows 11, new devices, Windows 365, and Windows 365 Link. Along with this, Microsoft talked in depth about the importance of the new Windows Security Initiative.

This forms part of the Secure Futures Initiative , a wider efforts to ensure everything access the Microsoft eco-system is secure by design and secure by default.

The Windows Security Intuitive is a comprehensive effort to ensure that Windows remains the most reliable and secure platform on earth. This blog summarise the key Windows and Devices announcements from Ignite 2024.

The Windows Keynote session at Ignite was delivered Pavan Davuluri, Aidan Marcuss, Navjot Virk and David Weston and can be viewed here on demand from Microsoft.

Windows 11 – The Most Secure Windows Ever

Windows 10 is end of life in October 2025, but Windows 11 has been mainstream now since 2021. Windows has always been the platform for innovation, meeting the needs of over a billion customers across enterprise, public sector, education, creators, developers and engineers. With this comes Microsoft’s responsibility to deliver the most reliable and secure platform.



The “CrowdStrike incident” back in July 2024, which impacted 8.5 million devices, was a stark reminder of the need for vigilance and innovation and the need to have better controls in place to protect the core of the Windows OS. “EU policy prevents Microsoft restricting access to its kernel”, but Microsoft have, following the global incident, announced the Windows Resiliency Initiative. This initiative aims at making Windows more reliable and secure for all customers, including those with mission-critical workloads but introducing changes to how both Microsoft and third-parties manage critical workloads and updates within Windows 11.

Changes After the Crowdstrike Incident

In the key note, David Weston shared insights from conversations with hundreds of customers, including CISOs, CIOs, and incident responders. The feedback highlighted the need for easier recovery, stronger resilience of critical security tools, and overall platform security. Microsoft is addressing these needs through the Windows Resilient Security Platform, which allows security product developers to build products outside of kernel mode, reducing complexity and improving recovery.

“In addition to the work we are doing with CISA as part of Microsoft’s Secure Future Initiative, we are heavily investing in safe languages to enhance the safety of our code. This commitment also aligns with CISA’s secure by design pledge. We’re applying this new approach to our security platform and other key areas like Microsoft Surface’s firmware and the Pluton security processor firmware. Part of becoming resilient is also increasing the prevention of attacks, so more security has been built into the operating system and not bolted on later. This reduces complexity and ensures you deploy less software that could become the next failure point. This is why we are targeting the most critical elements of Windows 11.”

David Weston | VP Enterprise and OS Security | Microsoft

Changes in Windows coming…

  • Improving Windows Reliability – with new capabilities to enable security product developers to build their products outside of kernel mode. This is known as the Windows Resilient Security Platform, which provides a flexible security API set and data collection points that can be used to build endpoint security products like detection and response or antivirus outside of the kernel. This change will help end-user protection and antivirus products provide a high level of security and easier recovery, with less impact on Windows in the event of a crash or mistake
  • Quick Machine Recovery – This solution can execute targeted fixes from Windows Update on machines, even when Windows is unable to boot. This will allow for quick deployment of fixes that address files, drivers, or any other operation needed to recover a non-bootable machine.
  • Strengthening Security Tools and Drivers – Microsoft are working with industry-leading security partners and the US Cybersecurity and Infrastructure Security Agency (CISA) to define new ways to increase resilience across the ecosystem. This includes adopting safe deployment practices, conducting additional security and compatibility testing for components like security kernel drivers, and developing strengthened incident response processes for streamlined coordination.
  • Enhancing Identity Protection – To combat the increasing risk and success in cases of sophisticated phishing attacks, Microsoft has hardened Windows Hello, the built-in industry leading multi-factor authentication (MFA) solution. Windows Hello now supports passkeys, which means much of the web can be protected with MFA seamlessly. This enhancement ensures that users no longer need to choose between a simple sign-in and a safe one. This is one step further to help customers remove passwords from their environment.
  • Local Administrator Protection – Microsoft is introducing administrator protection to address the challenge of over-privileged users and applications. With admin protection, everyone (even admins) will have standard user permissions by default and can make Windows system changes, including app installation, only when necessary and after authorising the change using Windows Hello. This reduces the risk of attacks by ensuring that employees, not malware, remain in control of Windows.
  • Deep Collaboration with CISA – Microsoft and the CISA are providing a framework for the IT industry as a whole to ensure that all partners, customers, and organisations can stay ahead of evolving security threats. This collaboration aims to deliver software that is safe, secure, and resilient through secure by design, secure by default, and secure through delivery practices.

These changes and improvements are part of Microsoft’s commitment to making Windows reliable and secure for all customers, including mission-critical workloads. The Windows Resiliency Initiative represents a significant step forward in ensuring that Windows remains the most secure and reliable platform on earth.

Windows 11 – Ease of Migration, Management and Updates

Windows 11 builds on Windows 10 technologies and further simplifies the management and migration process to Windows 11. Windows 11 can be managed with the same tools and processes used for Windows 10, ensuring minimal disruption to the workforce. The compatibility with App Assure guarantees that all apps will work seamlessly on Windows 11.

In contrast, Windows 11 updates are 40% smaller in size, making it easier to stay up to date and reducing impact on users/employees as well as on network bandwidth, disk-space and time.

Windows 10 to Windows 11 – Compatibility with App Assure

App Assure is a key component of the Windows 11 upgrade experience as it was in the Windows 7 to Windows 10 experience. App Assure ensures that all apps are compatible with the new operating system through millions of real life feedback, crash reports and user feedback. This application compatibility is backed by Microsoft’s promise to address any app issues that may arise, providing peace of mind for businesses transitioning to Windows 11. The App Assure portal provides guidance, assurance and clarity of application and application version compatibility.

Updates, Hotfixes, and Autopatch

Windows 11 is introducing several new features to streamline updates and hotfixes.

  • Quick Machine Recovery allows targeted fixes from Windows Update on machines that are unable to boot, ensuring quick recovery during incidents.
  • Windows Hotpatch, available through Autopatch settings in Intune, delivers Patch Tuesday security updates directly to employees seamlessly in the background without requiring a restart, reducing interruptions and speeding up the deployment of security updates.

Windows Hotpatch is one that is super important. By using Windows Hotpatch through Autopatch settings in Intune, Microsoft say that 65% of Patch Tuesday security updates are delivered directly without requiring a restart. This significantly reduces restarts and interruptions, allowing security updates to be deployed 60% faster.

According to Forrester research, moving to Windows 11 delivers an impressive 250% return on investment over three years compared to Windows 10.

Windows Backup for Entra ID

Another exciting new feature announced at Microsoft Ignite is Windows Backup for Entra ID. This feature, available in public preview in early 2025, will help organisations ensure a seamless transition of use settings and preferences when setting up a new PC or performing a traditional reinstall which is typical with OS upgrades in larger enterprises.

With Windows Backup, employees can easily transfer their desktop background, icon size, and other preferences to a new device, ensuring a consistent and familiar experience. This reduces the time spent on setup, allowing employees to be productive faster and significantly reducing IT overhead and help desk calls.

Windows 11 – New devices and un-paralleled performance

Speed and Performance

Windows 11 is designed to deliver superior speed and performance. Bear in mind WIndows 10 is 10 years old and was designed for a pre-pandemic world and a world where AI didn’t touch the end-point.

Newer Windows 11 devices offer double the battery life and more than three times the performance of older Windows 10 devices.

Microsoft’s introduction of Copilot+ PCs and AI-PCs, built for AI workloads, is setting a new new standard for productivity, combining advanced AI inferencing capabilities with top-notch security and performance. Satya said in his key note that all applications will be rebuilt as AI apps and Windows is no different. Microsoft are re-writing their apps and OS for the AI era and simple examples include simple in-box tools like Notepad and Paint that have advanced AI capability.

Leading vendors like Adobe are adding new capabilities in their applications that leverage local NPUs found in new Windows 11 Copillot+ and AI PCs

The New Generation of Devices in Copilot+ PCs

The new generation of devices in Copilot+ PCs is designed to harness the full potential of AI. These devices (again bvery centre stateg at Ignite) come equipped with advanced AI inferencing capabilities, enabling them to handle complex workloads with ease. Their Neural Processors (NPUs) can operate at more than 45 Trillion Operations a Second (TOPS) providing the fastes edge AI processing in the world. The integration of AI into these devices not only enhances productivity but also ensures that security measures are robust and effective.

With features like real-time threat detection and automated responses, Copilot+ PCs provide a secure and efficient environment for businesses and consumers.

The day after Ignite, Microsoft also released Recall and Click-To-Do into public preview for users enrolled on the Windows Insider Programme.

Windows 11 – Sustainability and Windows 365

Modernising isn’t just about cost savings; it’s about the collective responsibility and impact on the global economy, our business and the environment. Microsoft has committed to advancing sustainability, and adopting Windows 11 helps in achieving your company’s sustainability goals.

Microsoft boldly shared that Windows 11 reduces energy use as the “world’s first carbon-aware OS” and offers Energy Saver, increasing energy efficiency by up to 22%.

Microsoft talked about their own devices, Surface which are manufactured using recycled materials and more renewable energy. As an example, Surface enclosures use 100% recycled aluminum alloy and 100% recycled rare earth materials. They also used this time to share existing and new programs to help organisations reduce e-waste with the recycling and refurbishment opportunities available across our ecosystem partners such as Cisilion. There’s a dedicated sustainability site for Surface -> here <-

Microsoft also shared several examples of how organisations can extend the life of (and even breath new life into) older hardware with Windows 365 without sacrificing security protection or experience.

Windows 365 and Windows 365 Link

Microsoft shared how Windows 365 plays can not only play a crucial role in this sustainability effort but also used the opportunity to announce their new dedicated “thin client” device called Windows 365 Link.

Priced at $349 and available from Spring 2025, these dedicated low power, sustainability built devices can provide local compute power but with no IT footprint to securely streams employees full personal Windows 11 desktop with all their apps, content, and settings directly from the Microsoft Cloud.

Windows 365 can run on any device include Web, dedicated devices like Windows 365 Link, and even mobile devices on iOS and Android as well of course as legacy Windows 10 devices and even Windows 11.

The flexibility of Windows 365 allows businesses in any sector and any size to reduce their IT infrastructure and management complexity while providing a consistent and secure experience for employees. Windows 365 is designed to complement your Windows 11 end user computing estate, enabling more endpoints and form factors, and unlocking more value and options for businesses.

Windows 365 is also great for contractors, testing migrations to Windows 11 and also for running secure workloads as well as for education and front line workers.

What have I missed?

There were lots of announcement around Windows and Devices at Ignite. The Windows Security Initiative clearly represents a significant step forward in ensuring that Windows remains the most secure and reliable platform.

With new enhanced security measures, simplified management and migration, seamless compatibility with App Assure, and innovative update mechanisms, Windows 11 is promising to deliver unparalleled speed, performance, security, agility and management.

Links:

Posted on

Recall “Recalled” Again: Microsoft’s Copilot+PC Flagship Feature Faces Further Delays

Recall Recalled again feature image

In a move that has surprised few, Microsoft has once again delayed the rollout of its controversial Recall feature for Copilot AI PCs. Initially planned for a June release to coincide with the new Copilot+PCs launch, Recall was then postponed to October while Microsoft addressed initial concerns around privacy and security.

This week however, Microsoft has yet again delayed this again with testing for Windows Insiders coming (so we are told) in December, which unfortunately falls after Ignite.

Microsoft Recall….

Security Concerns and Refinements

Recall’s primary value is to create a timeline of screenshots that users can scroll through and search. However, early testing revealed by security researchers discovered that the core database storing these screenshots and tagging was not encrypted, posing a massive security risk.

Microsoft have since addressed this by fully encrypting the database and requiring Windows Hello authentication for access.

Microsoft have also confirmed that Recall will now be an opt-in feature, allowing users to completely uninstall it if they choose.

Microsoft’s Cautious Approach

Brandon LeBlanc, senior product manager of Windows, enforced Microsoft’s commitment to delivering a secure and trusted experience with Recall.

Microsoft need to get this right in order to maintain trust with its customer base. He stated that the additional time is necessary to refine the feature before previewing it with Windows Insiders. Despite these assurances, social media shows huge skepticism about whether Microsoft will meet the new December deadline and even if they might scrap the feature all together. This will be a shame, as the value around it looks. Promising and is really ( currently) the one killer reason consumers were looking at when looking at investing in Copilot+ PCs outside of the huge battery life that these Qualcomm Snapdragon Powered devices deliver.

The verge covered this in an exclusive interview

Wider AI privacy concerns

The repeated delays and security issues surrounding Recall highlight broader concerns within the AI industry.

There is a growing perception that companies are rushing to release new features without fully considering the potential consequences.

Microsoft’s cautious approach with Recall is a step in the right direction, but it also underscores the need for more rigorous testing and security measures in AI development.

Will Recall still be exclusive to Copilot+ PCs?

That’s a good question.

When Microsoft announced the Copilot+PC back in June, Recall was the flagship feature and it was unique to the device’s (and kinda stole the show).

Since then AMD and Intel have released their new AI PC chipsets offering similar NPU performance to the Snapdragon chips in Copilot+ PCs like Surface Pro 11 and Surface Laptop 7.

We now have NPU turbocharged PCs with Snapdragon® X Series, AMD Ryzen™ AI 300 Series and Intel® Core™ Ultra 200V Series devices after all.

We don’t know if this will remain an exclusive (I don’t see why it would) and if all the “exclusive AI features” that are part of Windows 11 24H2 will soon be lit up in any decide with a dedicated NPU.

From what I can… It will be supported… But some features are limited to Snapdragon, so we will have to wait and see….

Coming soon then… Or will it?

While the future of Recall still remains uncertain, Microsoft’s efforts to address security concerns and refine the feature are commendable, I just hope they haven’t missed the boat. We’ve already seen Apple quietly move forward with Apple Intelligence (clever) and it’s now embedded in MacOS. Microsoft need to move quick and innovate here to regain confidence and innovative is their mission to empower every person on the planet to achieve more (with their technology)!

Consumers, IT professionals, industry experts and social media will be keenly observing whether the Recall gets the release and value reputation it received back in June, with  a secure and functional version of Recall to define what AI can really do in Windows.

I hope succeeds and brings life to the new AI PCs and Copilot+PCs or of it quietly gets canceled as skeptics seem to think…

Posted on

Windows Hello is getting a much welcomed face-lift

Microsoft is taking a significant step forward in enhancing the Windows Hello experience on Windows 11. This overhaul, now in beta testing for Windows Insiders will bring a more intuitive and visually appealing interface for both facial, passkeys and fingerprint recognition.

New Windows Hello experience on Windows 11

Cleaner, More Intuitive UI

The revamped Windows Hello UI is designed to streamline the authentication process. Users will notice new iconography and visual changes that make switching between authentication options more intuitive. Whether you’re logging into your device or using passkeys for websites and apps, the experience is now more seamless and user-friendly.

Enhanced Passkey Integration

One of the standout features of this update is the improved passkey integration.

New passkey process in testing on Windows 11

Previously, using passkeys from a mobile device involved scanning QR codes and navigating an outdated UI. The new system simplifies this process, allowing for quicker and more secure authentication. Additionally, Microsoft has also introduced a new API for third-party password and passkey managers, enabling developers to integrate directly with the Windows Hello experience.

Future-Proofing Authentication

This update is not just about aesthetics; it’s about future-proofing authentication on Windows 11.

By supporting passkeys from mobile devices and enabling synchronization with third-party apps, Microsoft is ensuring that users have a secure and efficient way to manage their credentials and also allows them to be seemlessly and securely added to your Microsoft Account.

We redesigned Windows security credential user experiences for passkey creating a cleaner experience that supports secured and quick authentication.. Users will now be able to switch between authentication options and select passkey / devices more intuitively.

Microsoft Windows Team

Microsoft Windows team talk more about in their recent Windows Insider Blog.

Availability and Rollout

Currently available to Windows Insiders in the beta channel, and will hopefully hit testers on the other Insider channels soon. This new Windows Hello experience is expected to roll out to all Windows 11 users in the coming months.

Are you looking forward to seeing new Windows Hello UI?

Posted on

The Cost of Not Migrating to Windows 11

As Microsoft prepares to end support for Windows 10 on October 14, 2025, users have a critical decision to make. They must either migrate to Windows 11 or pay for extended security updates (ESU). Microsoft will offer distinct options for consumer (home) customers. They will also offer options for commercial customers who want or need to continue using Windows 10 after this date.

Consumer Pricing for ESU

We know that commercial enterprises were going to have the “cost” option of paying for extended updates while they “complete” they migration / move to Windows 11, but in the first time in history, Microsoft have also announced that consumers can will also have the option to purchase a single year of Extended Security Updates (ESU) for a one off $30 (£25) cost.

Commercial Pricing for ESU

Pricing to commercial customers will be based on tiered pricing options with pricing set-out at

  • $61 per device per year for the first year
  • $122 per device for the second year, and
  • $244 per device for the third year.

Organisations needed or wishing to pay for ESU for their devices for 3 years will therefore incur costs of $427 per device.

Extended Security Updates: A Temporary Solution

Microsoft’s ESU program will provide a lifeline in helping any organisation or consumer unable or unwilling to upgrade to Windows 11 before October 14th, 2025, (when Windows 10 enters end of support).

Bear in mind though that these ESU updates are just security and zero-day updates. There will be no new features, bug fixes, or technical support included.

These are, of course, optional, but there are huge risks for continuing to use Windows 10 devices without protection from security exploits or newly discovered vulnerabilities.

This is especially true for commercial organisations. They lack protection from security and vulnerability updates.

The Risks of Running an Unsupported OS

Running an operating system without security updates poses significant risks, both for consumers and businesses including:

  • Increased Vulnerability to Cyber Attacks: Without regular security patches, systems become prime targets for hackers. Vulnerabilities that are discovered post-support will remain unpatched, leaving systems exposed to malware, ransomware, and other cyber threats.
  • Compliance Issues: For businesses, using unsupported software can lead to non-compliance with industry regulations. It can also lead to non-compliance with standards. This may result in hefty fines and legal repercussions. This can also affect security certifications. These include Cyber Security and Cyber Security Plus. It also impacts trust from customers and business partners.
  • Operational Disruptions: Security breaches can cause significant downtime, disrupting business operations and leading to financial losses. For consumers, this could mean losing access to important personal data and services.
  • Higher Long-Term Costs: While the initial cost of ESU might seem manageable, the long-term financial impact of a security breach can be devastating.

The best approach is to start planning the move to Windows 11 now. There are just over eleven months to do this. For consumers, this could mean upgrading. It could also mean replacing their devices with ones capable of running Windows 11. Windows 11 was released and started shipping on new devices in 2021.

Will my device run Windows 11?

Microsoft have a useful website which show the minimum system specifications for Windows 11 which you can access –> here <-

In reality any device newer that 4-5 years old should have no problem running Windows 11, , but in short, you need a device with at least:

  • Processor: 1 GHz or faster and min of 2 core.
  • RAM: 4 GB or more.
  • Storage: 64 GB or larger storage device / HDD / SDRAM – you’ll much more in reality.
  • System Firmware: UEFI, Secure Boot capable.
  • TPM: Trusted Platform Module (TPM) version 2.0. (this is important)
  • Graphics Card: Compatible with DirectX 12 or later with WDDM 2.0 driver.
  • Display: High definition (720p) – must be greater than 9” diagonally.

Tools to check compatibility

Another really easy way to check your device (if you are a consumer of want to check a couple of devices) is to the use the PC HealthCheck App. This can be downloaded from https://aka.ms/GetPCHealthCheckApp if it’s not already installed on your Windows 10 device.

When you run the tool, you get one of three outcomes. If you device passes, you’ll see a “meets requirements” message, and if it fails, you’ll receive a “doesn’t currently meet”. Coprate devices may see a message stating that “your organisation manages updates” and as such check with IT department (though I suspect they are already on it!)

Commercial Customers IT departments can easily check Windows 11 eligibility using Microsoft Intune or System Centre.

Conclusion

The decision to stick with Windows 10 and not migrate to Windows 11 should not be taken lightly. While ESU provides a temporary solution, the risks associated with running an unsupported OS far outweigh the benefits.

The risks of not updating (or paying for extended security updates) are too high. It is only acceptable if your device is never connected to the internet. Additionally, you should avoid using external sources such as USB devices.

Upgrading to Windows 11 ensures continued security. It also provides access to the latest features and support. This makes it a wise investment for both consumers and businesses.

Q&A

  1. What about my anti-virus applications? In reality these will still work as will any application you are running on your machine. You will need to check with the antivirus provider to check that they will still support Windows 10, but as long as they do and you pay the subscription to them, it shouldn’t impact these anti-virus signature updates.
  2. What about other software like Office Apps? Well Office 2016 and Office 2019 also go end of support in October 2025. You’ll need to upgrade these too if you want to get feature updates and security updates and fixes. You will likely find other software vendors like Adobe will also stop supporting Windows 10 (as many did with Windows 7). You’ll need to check with the software provider.
  3. Can I upgrade the hardware in my device to get compliant? That is also an option. After running the compatibility checker, you may find that upgrading your hard drive, adding more memory or swapping other components may “get your device compliant”. In most cases this isn’t cost effective.

Posted on

Windows 365 could be your saviour in the move from Windows 10 to Windows 11

Using Cloud PCs, like Windows 365, could be a strategic move as you plan and migrate from Windows 10 to Windows 11 (which you need to do by October 14th, 2025, if you want to avoid paying for Extended Support Updates (ESU).

Here I discuss a use of Windows 365 as a way to delay the migration to Windows 11, whilst also. Enhancing the migration readienaa, testing and user experience in the Shift to Windows 11 as well as, of course the other benefits that Cloud technology can bring to businesses of all sizes, geographies and sectors.

Why Windows 365?

Windows 365 is a cloud-based service that brings the power and security of a Windows operating system to any device including mobile devices and some modern smart TVs.

Windows 365 streams a full (dedicated) Windows desktop from the cloud, providing highest levels of security, application compatibility and bandwidth optimisation.

It allows users to access their desktop and personalised settings, apps, and data from anywhere with an internet connection and without the need for VPN (though access over VPN or secure remote access is supported).

Image (c) Microsoft

This flexibility makes it an alternative choice for using legacy or older hardware. It is also ideal for bring your own device scenarios and contractors.

Additionally, it supports testing and dual running different operating systems. Benefits around flexibility and accessibility are huge for both users and IT.

Flexibility and Accessibility

  1. Device Independence: Windows 365 lets users access your Windows environment from any device. This includes a PC, tablet, smartphone, and even some smart TVs. This means helps support you can continue using older hardware while still benefiting from the latest Windows 11 features. BYOPC (Bring Your Own PC) is also a key use case.
  2. Secure Remote Work Enablement: Windows 365, helps support hybrid and remote work models. Employees can access their Cloud PCs from anywhere, ensuring productivity and continuity and secure remote access which levergage key Microsoft zero trust security principles include password less, MFA and risk based conditional access.

Management is also super simple with Cloud PC with everything managed from Intune. This includes.

Simplified Management and deployment.

  1. Centralised Management: Windows 365 integrates with Microsoft’s Endpoint Management service (Intune). IT administrators can manage all devices and Cloud PCs from a single console. This simplifies updates, security policies, and compliance management. Cloud PCs can also leverage update technologies such as Windows AutoPatch. For more complex deployments or mixed AVD, Citrix and Windows365 you can also use third party tools such as Nerdio.
  2. Fast Onboarding: Employees (new and existing) can be onboarded quickly by provisioning Cloud PCs within minutes. This reduces the time and effort needed to set up new devices. They can also be accessed across multiple devices for maximum flexibility and agility…
  3. Seamless OS Switching – Windows 365 includes Windows 365 Switch. This feature allows users to easily switch between a local PC and a Cloud PC. Users can be assigned multiple Cloud PCs, for example Windows 10 and Windows 11. This setup is great for testing and learning a new OS like Windows 11.

As you’d imagine, Security is paramount and there’s no shortage of enhanced security for Cloud PCs.

Enhanced Security

  1. Built-in Security Features: Windows 365 includes advanced security features like multi-factor authentication, conditional access, password-less authentication and advanced data encryption. These features help protect sensitive information and reduce the risk of security breaches.
  2. Always Up to Date: Cloud PCs are automatically updated with the latest security patches and updates. This ensures that your systems are always protected against the latest threats. Cloud PCs also support full cloud management technologies include Auto Pilot and Windows Auto Patch.

What about pricing… after all, Cloud PCs require a license subscription to use with pricing for Windows 365 varying based on the specification of the Cloud PC needed.

Costs efficiencies and advoidance

  1. Reduced Hardware Costs: Leverage Windows 365 can help can extend the life of existing hardware (for example hardware that cannot run Windows 11) and reduce the need for frequent hardware upgrades since they can be upgraded with just a change of license key!
  2. Frontline worker efficiencies. Windows 365 Frontline provides the same feature stack and benefits of Windows 365 with the added flexibility to provide Cloud PCs for up to three users with the purchase of a single Windows 365 license, making it ideal for frontline and shift workers as well as seasonal staff.
  3. Scalable and Upgradable: Windows 365 offers flexible subscription plans. These plans can be scaled up or down based on your organization’s needs. This enables businesses to manage costs more effectively. You can choose the right sized Cloud PC for the right task and the right user.
  4. Device Management: Since there is no physical device to manage, management of devices is available remotely around the globe with employee devices being able to be provisioned, updated and recovered 100% remotely.
  5. Support for Windows 10 Extended Security updates are also included with the Windows 365 license which not only helps extend the life of older (but perfectly working devices) and is also great to sustainability!

Seamless Transition and Extensibility

  1. Extended Security Updates (ESU): For organisations that need more time to transition to Windows 11, Windows 365 subscriptions include Extended Security Updates (ESU) for Windows 10 at no additional cost. This provides critical security updates while you plan your migration.
  2. Smooth Migration: Migrating to Windows 365 can be straightforward. Tools and support are available. They help transfer user profiles, documents, and settings seamlessly.

Conclusion

Windows 365 can not only be a physical device alternative for any organisation, but also be used to help ensure a smooth transition from Windows 10 to Windows 11. Windows 365 can help organisations maintain productivity. It enhances security and breathes more life into legacy or older hardware.

It also supports Windows 10 Operating Systems, with Windows 10 Extended Security Updates included at no additional cost helping to extend the life of older devices that can’t run Windows 11 for up to another three years!

Posted on

Why Windows 11 24H2 could have been called Windows 12

Most of the time, security and annual and semi annual feature updates in Windows are built on the same core OS platform. This means that the changes and new features in these updates are / updated on top of that particular OS build. 

This is not the case with the latest Windows 11 24H2 Update which is starting to roll out now.

Why is the Windows 11 24H2 update different?

Unlike previous updates to Windows 11, Windows 11 24H2 is delivered as an update to existing devices with Windows 11 installed. This update is essentially a whole new version of Windows and yes, some have dubbed it Windows 12 – because it is, in all purposes a new OS version that is installed over (OS Swap) on the top of the existing OS – making it a new version.

This approach is the same as when Windows 11 was released back in 2021 and was (of course) an OS upgrade on-top of Windows 10. Many saw Windows 11 as “just a UI refresh.” But it was actually a totally new build of Windows. It had major architectural and security changes throughout the OS. Updates like Windows 11 version 22H2 and version 23H2 introduced many new features, but these updates were fundamentally built on the same underlying Windows 11 OS platform.

Windows 24H2 is a new OS

Windows 11 24H2 update is built on a totally new platform (codenamed Germanium) which brings fundamental under-the-hood changes to the core of the Windows 11 Operating System. Many of these updates and changes will not be obvious or event visible to a typical user, but many of them are fundamental changes. For example, one significant improvement with this release is much better optimisation for ARM based devices such as the new Snapdragon Powered Copilot+ PC devices like the Surface Laptop 7.

This is also why this update launched preinstalled on Snapdragon X series PCs. The feature set wasn’t completely finished when they launched, but the code base was needed to take advantage of the new features which are now rolling out.

The question asked by many is – “Is Windows 11 24H2 really Windows 12 then“?

So why isn’t it called Windows 12?

Good question. Well, whilst this is a major update under the hood the UI does look the same as before, and in terms of new features for existing PCs, many of the new things are subtle and reflective of the ongoing tweaks and changes such as finally moving those legacy “Control Panel” updates to Settings. As such there is nothing in 24H2 that really says “hey – this is a brand-new operating system” – and that’s a good thing I think (right now anyway).

In the past, we typically received a “new version” of Windows release every three or so years, and as such it was possible to “upgrade” from one to the next if you were willing to buy a new Windows license (or a new device with a new license).

Of course, most people did not want to do that, which meant that most of us (consumers anyway), only got a new OS update when they bought a new PC/Laptop – which included the latest license you needed. for the “current OS”. That’s how Windows upgrades worked for most people anyway!

Windows 11 version 24H2, it is basically the same thing. Whilst this update is available for existing PCs (it’s also free) there’s very little that is new and shiny for existing devices.

All the big news and new features are part of the new generation of devices – the Copilot+ PCs and AI PCs – and most of those new AI features will only work (be activated) on these new devices – since they need a PC with a chipset that includes an NPU with over 40TOPS of performance – this is basically new devices launched after June 18, 2024 (or even later, if you want to get an AI PC based on the AMD or Intel PC).

So back to the point, yes Copilot+ and AI PCs are essentially Windows 12 with all the features it introduces but still under then branding (as the UI has not changed) as Windows 11.

What does a Copilot+ PC and Windows 11 24H2 Bring then?

Right now, what Copilot+ devices do add some cool new AI features which I would say currently appeal to tech enthusiasts and those that run AI workloads (or plan too). You do get live captions with real-time translation in any app, have the ability to use new AI features in apps like Paint using a “cached” LLM on the device and new you’ll soon get features like Recall, Click-To-Do, and generative fill which are also huge new features that are all exclusive to those new Copilot+ and AI PCs devices.

Will there be a Windows 12?

We don’t know to be honest – not yet anyway. It is clear to me that Microsoft are working to ensure they don’t abandon or upset their existing users and create confusion.

With Windows 10 going end of support in October 2025 (that’s a year from now), creating a Windows 12 brand will likely up-set many businesses that are in a transition from Windows 10 to Windows 11.

This version of Windows 11, will include a whole load of features that will be exclusive to the newer AI PC hardware such as the Surface Laptop 7 and Surface Pro 11. This still creates an incentive for people to buy new PC with shiny features (that makes PC companies like Dell, HP, Lenovo, and Microsoft happy) whilst still ensuring the Windows 11 OS is modern and fresh. Existing devices can still upgrade to Windows 24H2, but they won’t get these new AI features (you need that NPU remember).

Will Microsoft ever unveil plans to release a formal Windows 12? I really don’t know at the moment. I think a new “branded” version will come at some point in the next couple of years. They may just call it Windows – something we thought Microsoft were going to do when Windows 10 was released.

What do you think – should Windows just be called Windows 25H1 for example, or do we prefer a version number. I’m a Windows / Surface MVP and I don’t know any more than you right now (of course if I did, I couldn’t tell you – but I honestly do not know!)

There are lots of rumours on social about Windows 12 – tell me your thoughts?

Posted on

Windows Recall: Enhanced Security& Privacy ahead of October Launch

As Windows 11 24H2 gets ready to release, Microsoft has announced major security and privacy upgrades to its (yet to be released) Windows Recall feature which was the flagship new AI powered feature announced on the back of the Copilot Plus PC announcements back in May.

Recall, which was initially met with scepticism and concerns around security and privacy, has now be significantly updated with stronger and more granular protections for privacy, encryption and identity access to make it ready for its “delayed” release next month.

What is Recall?

Recall takes screenshots of active windows on your PC every few seconds, analyses them on-device using a Neural Processing Unit (NPU) and an AI model, and adds the information to an SQLite database. You can later search for this data using natural language to prompt Windows Recall to retrieve relevant screenshots.

I covered Recall in more detail in an earlier blog

Responding to Customer Feedback


Microsoft’s decision to enhance Windows Recall comes after considerable feedback from customers and privacy advocates. The company initially delayed the public release of Recall, opting to make it available for preview with Windows Insiders. This cautious approach allowed Microsoft to refine the feature based on real-world usage and analysis of how it was used whilst they review ways to address the concerns and enhance security and privacy controls.

Putting Users in control of Recall

One of the most significant changes is that Windows Recall is now strictly opt-in. Users must proactively activate the feature, ensuring that no screenshots are taken or saved without explicit consent. This addresses a major concern about privacy and data security. Additionally, users can remove Recall entirely through the optional features settings in Windows, providing total control over its usage.

Advanced Security and Privacy Measures

Windows Recall now includes several advanced security measures designed to protect sensitive information after feedback, development and testing since it was announced in May this year.

Firstly – Recall is an optional feature and can also be removed entirely from the Windows Installation. If a user doesn’t proactively choose to turn it on, recall is off by default, meaning snapshots will not be taken or saved.

If Recall is enabled, all snapshots and associated data are encrypted, with encryption keys protected by the device’s Trusted Platform Module (TPM). This module is tied to the user’s Windows Hello login information and biometric identity, ensuring that no data leaves the computer without the user’s explicit request. Recall snapshots are also only accessible after users authenticate using Windows Hello credentials. This enhanced sign-in security ensures privacy and actively authenticates users before allowing access to their data

Recall also comes with a sensitive information filter designed to protect confidential data, like passwords, credit card numbers, and personal identification details, by automatically applying filters over this content. This uses AI and pattern matching to look for such information adding another level of privacy protection.

Additionally, Recall includes malware protection features like rate-limiting and anti-hammering measures, which prevent unauthorized access attempts.

Recall: Four Principles of Operation

Microsoft has redesigned Recall to function on four core principles:

  1. User control
  2. Encryption of sensitive data
  3. Isolation of services, and
  4. Intentional use.

Recall is always opt-in. Snapshots are not saved unless you choose to use Recall, and everything is stored locally……Recall does not share snapshots or data with Microsoft or third parties, nor between different Windows users on the same device. Windows will ask for permission before saving any snapshots.

David Weston – VP Enterprise and OS Security, Microsoft.

These principles will ensure that users can keep complete control over their data, with the ability to remove snapshots, pause them, or turn them off at any time. Any future choice to share data will need fully informed and explicit action by the user.

    Image (c) Microsoft.

    Conclusion

    In short, the enhanced Windows Recall feature represents a significant step forward in balancing functionality with security and privacy which show Microsoft are licensing to their users and take privacy and security seriously. By addressing key concerns and implementing robust protections, I believe Microsoft has demonstrated its commitment to user trust and data security. As Recall rolls out to Insiders with Copilot+ PCs in October, it will be interesting to see how these enhancements are received and what further innovations Microsoft will bring to the table. What do you think? Will you be trying this out or uninstalling it?

    When will Windows Recall be released?

    Microsoft announced last month that Recall will start rolling out to Insiders with Copilot+ PCs in October as part of the 24H2 release of Windows 11.

    Posted on

    Windows 11 August (optional) Update: What is new….


    As we wait for the big 24H2 update due this autumn, Microsoft has quietly rolled out an optional update (going by the name KB5041587) for Windows 11, bringing a host of improvements and new features.

    While this update is not mandatory, it does offer several enhancements that make it worth installing (especially if you have a PC powered by an AMD CPU).

    Overall, the KB5041587 update for Windows 11 brings a range of valuable enhancements for users who frequently share files with Android devices, includes improvements to Narrator, voice typing, and File Explorer.

    Here’s a breakdown of what this update entails and why you might want to install it.

    Performance Boosts for AMD CPUs

    One of the most notable improvements in the KB5041587 update is the performance boost for AMD’s latest CPUs. Users with Ryzen 5000, 7000, and 9000 series processors with up to a 13 percent increase in performance.

    This enhancement addresses the previously disappointing performance of these CPUs, making it a significant update for AMD users.

    Enhanced File Sharing with Android Devices

    This update introduces a new feature that allows users to send files directly to an Android phone via Windows Share.

    Unlike Nearby Sharing, the Android device does not need to be in close proximity to the PC. Instead, it just needs to be paired via Phone Link.

    This feature simplifies the process of transferring photos and documents, making it more convenient and efficient.

    Improvements to Narrator and Voice Typing

    Windows 11’s Narrator feature, which reads out loud the contents of documents and websites, has received improvements in speed and accuracy.

    These enhancements are particularly noticeable when using the Edge browser and reading large documents.

    Additionally, voice typing has been optimized to allow for faster spelling of characters and more commands for text manipulation.

    Bug Fixes in File Explorer

    Several bugs in File Explorer have been addressed in this update. Issues such as the Ctrl + F keyboard shortcut not starting a search and the Shift + Tab shortcut losing keyboard focus have been fixed.

    These fixes contribute to a smoother and more reliable user experience when navigating and managing files.

    Installing the update

    Unlike the regular security and fix updates, the KB5041587 update must be manually installed.

    If you wish to install this one, you will need to navigate to Settings > Windows Update and select the update for installation. This manual process ensures that users have control over whether they want to incorporate these new features and fixes.

    Proudly powered by WordPress