Microsoft is enforcing stricter Content Security Policy (CSP) for Entra ID authentication, blocking unauthorized scripts from executing during sign-in. Organizations using browser extensions or third-party tools that inject scripts into login.microsoftonline.com must identify and replace these tools before enforcement, as they will stop functioning while users can still sign in successfully.

Source

Microsoft has introduced Windows 365 AI-enabled Cloud PCs, a new cloud-based computing solution that delivers AI-powered Windows experiences to any device. This offering differs significantly from Copilot+ PCs, which are physical computers with specialized AI hardware. This article compares the technical specifications, requirements, and capabilities of both platforms.

Source

Microsoft has released native Non-Volatile Memory Express (NVMe) support for Windows Server 2025, delivering performance improvements of up to 80 percent in IOPS and delivering a 45 percent savings in CPU cycles per I/O compared to Windows Server 2022.

Source

Microsoft has clarified the key differences between its one-time purchase Office 2024 and the subscription-based Microsoft 365 suite in an official support document. The comparison helps users understand the trade-offs between a single upfront payment for static software and ongoing subscription fees for continuously updated services.

Source

IS Decisions’ UserLock is an identity-and-access-management (IAM) tool that adds multi-factor authentication (MFA), contextual access controls, session management, and login auditing to on-premises (or hybrid) Microsoft Active Directory environments to secure and manage all user access. UserLock 13.0 introduces a redesigned interface and strengthened security features for Active Directory environments. The release focuses on simplified navigation, certificate-based authentication, and improved remote access management while maintaining the solution's core identity and access management capabilities.

Source

Microsoft released Visual Studio Code version 1.107 with new features focused on Agent HQ, a multi-agent orchestration interface introduced in version 1.106. In version 1.107, background agents are promoted beyond pure CLI-based sessions: they run as named background tasks with isolated worktrees and richer context attachment, and appear as manageable sessions in the Agent HQ experience (the integrated Chat + sessions UI), rather than existing only as Copilot CLI or cloud sessions.

Source

Some human bloggers hallucinated that the Canary build 28020.1362 was Windows 11 26H1. Although this build shows the version string, there is no guarantee that Windows 11 26H1 will include the features seen in the Canary build. This build introduces several new features, including an AI-powered Settings agent for Copilot+ PCs, a redesigned Advanced settings page that replaces the For Developers page, and enhanced Quick Machine Recovery performance. The release also expands File Explorer dark mode to more dialogs and system surfaces, and includes additional new features and refinements across device management, input, recovery, and core system experiences.

Source

Recent Microsoft Entra and Windows updates introduce multiple changes across authentication, identity management, and access control. The updates include an option to replace the legacy EdgeHTML WebView with the Chromium-based WebView2 for Entra ID authentication flows, improved identity constructs for AI agents, public preview support for synced passkeys, and expanded self-service account recovery. Additional changes cover jailbreak detection in Microsoft Authenticator, enforcement of a stricter Content Security Policy for browser-based sign-ins, updates to session revocation behavior, and new capabilities in Entra ID Governance, External ID, and Global Secure Access.

Source

Microsoft Entra External ID now supports SMS-based verification for self-service password reset (SSPR), providing external users an additional recovery method beyond email one-time passcodes. The feature entered public preview in September 2025 and includes built-in fraud protection through integration with Microsoft's Phone Reputation platform.

Source

Microsoft released Windows Admin Center version 2511 on December 11, 2025, restoring support for high availability deployments and delivering broad updates across deployment, virtualization, and security. The release enhances core management workflows, introduces a new VM conversion tool alongside the NetApp Shift Toolkit for cross-hypervisor migrations, and brings notable security improvements together with expanded international keyboard support for remote desktop connections.

Source

Microsoft released significant updates to Intune in December 2025, focusing on workflow automation, cross-platform enhancements, and improved security controls. The updates introduce a centralized admin task view, enhanced Android privacy controls, and customizable iOS enrollment experiences.

Source

Microsoft Entra PowerShell is a module that lets administrators manage and automate Microsoft Entra ID resources—such as users, groups, applications, and policies—via PowerShell, built on and interoperable with the Microsoft Graph PowerShell SDK. ​Microsoft released version 1.1.0 of the Entra PowerShell module, introducing compatibility improvements and new filtering parameters for device and service principal management. The update removes version restrictions for Microsoft Graph PowerShell and adds functionality for administrators managing identity resources.

Source

Microsoft announced that advanced Intune Suite capabilities will be included in Microsoft 365 E3 and E5 subscriptions at no additional cost, expanding endpoint management and security features to more organizations. The changes take effect in 2026 and aim to help IT teams manage devices at scale while strengthening Zero Trust security.

Source

Installing a new .NET version does not automatically uninstall older versions, meaning outdated End of Life runtimes can remain on systems indefinitely. These unsupported versions pose serious security risks as they no longer receive patches for newly discovered vulnerabilities. Microsoft ceased support for .NET Framework 4.5.2, 4.6, and 4.6.1 on April 26, 2022, leaving systems running these versions exposed to exploitation and compliance violations. Administrators must actively identify applications using End-of-Life runtimes and coordinate with development teams to migrate them to supported versions. This article explains how to inventory, assess dependencies, and safely remove outdated .NET Framework installations from Windows systems.

Source

Microsoft announced Baseline Security Mode at Ignite 2025, a new security capability that provides an opt-in security baseline for Microsoft 365 tenants. The feature shifts critical protections from optional configurations to a secure-by-default model that administrators can choose to enable, helping organizations meet minimum security standards when they opt into the feature.

Source

Microsoft announced price increases for Microsoft 365 and Office 365 commercial subscriptions. The new list prices will go into effect on July 1, 2026, though existing customers will generally not pay the higher rates until their next renewal after that date. The company justifies the changes by pointing to more than 1,100 new features added across the platform, particularly AI-powered capabilities, security enhancements, and device management tools.

Source

Microsoft introduced a Common Vulnerabilities and Exposures (CVE) report within Windows Autopatch, providing security teams with consolidated visibility into Windows vulnerabilities, patch status, and affected devices across their organization. The feature integrates vulnerability tracking directly into the Microsoft Intune admin center alongside existing Windows quality update reports.

Source

Microsoft has expanded the Windows 11 version 25H2 rollout in December 2025, entering a new phase of broad deployment for eligible devices, though it is not yet available on every device simultaneously. The update, which uses machine learning to determine when to offer the upgrade to eligible devices, continues to be rolled out gradually.

Source

Microsoft released Windows 11 Insider Preview Build 26220.7344 (KB5070316) to the Dev and Beta Channels on December 5, 2025, delivering native support for the Model Context Protocol, the Unified Update Orchestration Platform, and Windows MIDI Services. The update also includes improvements to Quick Machine Recovery and the "Open With" dialog, as well as fixes for File Explorer, Windows Hello, and system stability issues.

Source