#microsoft

Nadella: we can't let AI giants eat the economy

Tổng giám đốc Microsoft Satya Nadella cảnh báo rằng các công ty AI không thể vừa dự đoán …

Microsoft quietly extends free Windows 10 ESU support to October 2027

Microsoft has silently extended its free Windows 10 Extended Security Updates (ESU) program for consumers by one additional year, now covering enrolled devices through October 12, 2027. The change was not formally announced but appeared in updated documentation and a blog post editor's note. Consumers can enroll for free by backing up Windows settings to a Microsoft account, redeeming 1,000 Microsoft Reward points, paying $30, or — if in the European Economic Area — simply logging in with a Microsoft account. One ESU license covers up to 10 devices on the same account, and already-enrolled users are automatically covered through the new date. The program is limited to personal devices and excludes domain-joined or MDM-managed systems.

Microsoft significantly increases Xbox prices worldwide and withdraws 2TB model citing "components crisis"

Microsoft is raising Xbox console prices worldwide effective August 2, citing a components crisis driving up storage and memory costs by more than 2.5x. The Xbox Series S 512GB jumps from $399.99 to $499.99, the Series S 1TB from $449.99 to $599.99, the Series X Digital from $599.99 to $749.99, and the Series X from $649.99 to $799.99. The 2TB model is being discontinued. Microsoft notes consoles are sold below cost and points to buy-now-pay-later options and refurbished console programs to help with affordability. The announcement follows Valve's Steam Machine also launching at higher-than-expected prices due to similar hardware supply issues.

Microsoft extends Windows 10's extra security updates program to October 2027 for free

Microsoft has quietly extended Windows 10's Extended Security Updates (ESU) program by one additional year, now running until October 12, 2027. Consumers who sign in with a Microsoft account get the extension for free; those who prefer not to link an account can pay $30. Users already enrolled in the ESU program will automatically receive continued coverage with no action required. The extension is likely tied to the ongoing RAM shortage driving up PC costs and slowing Windows 11 adoption.

Microsoft raises price of Xbox consoles sunsets 2TB Xbox Series X

Microsoft is raising Xbox Series X|S prices starting August 1, 2026, with the 512GB Xbox Series S increasing by $100 to $499.99 and 1TB models rising $150, bringing the Xbox Series X to $749.99. The 2TB Xbox Series X will be discontinued. Microsoft directly attributes the hikes to a global memory hardware shortage caused by generative AI companies securing exclusive deals with DRAM manufacturers, driving component costs up more than 2.5x with further doubling expected by fall 2027. Valve's upcoming Steam Machine faces similar pricing pressure. Xbox CEO Asha Sharma has warned investors the shortage may force a rethink of the next-gen Project Helix console, alongside a broader business reset that includes reported layoffs. The article notes the irony that Microsoft itself is a major driver of generative AI adoption.

RAISE US: AI giants back a $500m worker retraining push

OpenAI, Anthropic, Microsoft, and Amazon are among the backers of RAISE US, a new nonpartisan nonprofit led by former US Commerce Secretary Gina Raimondo. The initiative has raised over $500m toward a $1bn goal to retrain American workers displaced by AI. Working through state governments, RAISE US will fund pilot programs including AI-powered career navigation, wage insurance for workers taking lower-paying jobs, and short-time compensation schemes. The effort launches amid growing public anxiety over AI-driven job losses, with the irony that some backers like IBM and Workday have themselves cited AI in recent layoffs. Critics note that corporate retraining programs have historically underperformed, and the deeper question of whether AI will create jobs as fast as it destroys them remains unanswered.

Inside Kali365, a Device Code Phishing Ecosystem

Huntress SOC researchers investigated a surge of device code authentication events from Tencent Cloud IPs and uncovered Kali365, a mature Phishing-as-a-Service (PhaaS) kit targeting Microsoft 365. The platform features three variants with 33 built-in lure templates, a token vault, AI-powered BEC modules using Claude Sonnet, an in-panel Outlook webmail proxy, a domain marketplace, RBAC, and cryptocurrency-based self-service billing via OxaPay. Two companion Electron desktop apps — OctoLink Live and OctoLink Sender — convert stolen tokens into real authenticated browser sessions and enable mass lateral phishing via Microsoft Graph, all while mimicking legitimate user behavior to evade detection. The kit maintains persistent access even after MFA enforcement or password resets by abusing refresh tokens and the Microsoft Authentication Broker client ID. Huntress recommends blocking device code flow via Conditional Access and has published IoCs and KQL hunting rules.

Why Your Organization Needs ISPM

Identity Security Posture Management (ISPM) continuously assesses and hardens Microsoft 365 identity environments by evaluating configurations, permissions, and policies against a security baseline. Unlike one-time audits or visibility-only tools, ISPM addresses 'drift' — the gradual degradation of security posture as users, roles, and Microsoft defaults change over time. Huntress data shows over 60% of evaluated tenants were missing more than half of recommended controls, and 55% allowed standard users to perform admin-level functions. Key risks include weak MFA, overprivileged accounts, and stale permissions that enable account takeover and BEC attacks. Microsoft data shows attackers can move laterally within 48 minutes of initial intrusion, making daily scan cycles insufficient. Huntress Managed ISPM addresses this by deploying and enforcing controls continuously, detecting drift within minutes of a change, and offering a Learning Mode to preview user impact before policy rollout.

Analysts attempt to make sense of Xbox's exclusivity shift

Microsoft's Xbox division has undergone multiple strategy reversals on game exclusivity — from console-exclusive titles, to full multiplatform releases on PlayStation and Nintendo, and now back to a selective exclusivity model under new leadership Asha Sharma. Analysts explain the shift through several lenses: leadership change, two-sided market theory, ecosystem retention, and the need to justify rising console prices. Gears of War: E-Day is now an Xbox exclusive again, while other titles remain multiplatform. Analysts are skeptical the exclusivity pivot will meaningfully drive hardware sales, suggesting it's more about symbolic goodwill than revenue, and warn that studio developers may pay the price for repeated strategic reversals.

One-two punch delivered in global operation disrupts cybercrime “assembly line”

Cơ quan chức năng toàn cầu cùng các công ty công nghệ, bao gồm Microsoft, đã triệt phá một "dây chuyền lắp ráp" tội phạm mạng bằng cách tấn công đồng thời hai nền tảng malware phổ biến: Amadey (cung cấp dịch vụ malware) và StealC (cung cấp dịch vụ infostealer). Microsoft phát hiện hai công cụ này chia sẻ hạ tầng chung nhờ phân tích AI, hỗ trợ chiến dịch triệt phá phối hợp. Chiến dịch thuộc "Operation Endgame" liên quan đến việc đánh cắp hàng triệu thông tin đăng nhập và hơn 47 triệu USD từ tiền chuộc và gian lận.

Lập trình viên nên đọc bài này để hiểu cách các công ty công nghệ và cơ quan pháp luật sử dụng công nghệ AI và phân tích hệ thống để phát hiện và phá hủy các nền tảng malware được thiết kế để tự động hóa và mở rộng các cuộc tấn công cybercrime, giúp bảo vệ hệ thống của mình trước các mối đe dọa ngày càng phức tạp.

Ex-Xbox workers warn of potential retaliation in rumored layoffs

Former Xbox employees are warning current workers about potential retaliatory layoffs ahead of rumored mass cuts at Microsoft-owned Xbox studios. Four ex-employees described a pattern where filing HR complaints or pushing back against alleged toxic management led to their dismissal. Former Halo Studios art director Glenn Israel, who has publicly accused studio leadership of harassment and retaliation, advises current employees to document all communications, inform HR that any redundancy will be considered retaliatory, and consult an attorney before signing any separation agreement. A labor attorney echoes this advice, noting that retaliation investigations are detail-driven and that companies must apply even-handed, legally defensible criteria when selecting employees for layoffs.

Microsoft just fixed one of Windows 11's most frustrating little quirks

Microsoft is rolling out updates to Windows 11 that make Widgets less intrusive. The key change: Widgets will no longer pop open automatically when hovering over the taskbar button. Additionally, taskbar badge colors will be adjusted to match the user's Windows accent color. The update arrives first as an optional update, then becomes mandatory with the July 2026 Patch Tuesday rollout. Other improvements in the same wave include indefinite update pausing, screen-tint options, and improved Bluetooth reliability.

Microsoft uses AI to link two malware operations in racketeering suit

Microsoft has used AI to link two malware operations — StealC and Amadey — in a racketeering lawsuit, resulting in the shutdown of over 200 command-and-control (C2) servers.

ShareGate MCP Brings Microsoft 365 Governance Into Claude, ChatGPT and Copilot

ShareGate has launched ShareGate MCP, enabling IT professionals to govern Microsoft 365 directly from AI tools like Claude, ChatGPT, and Microsoft Copilot. Using the Model Context Protocol, ShareGate Protect users can query tenant intelligence, generate branded governance reports with PDF export, and soon create governance policies — all through natural language prompts. The company cites a 2026 survey showing 71% of IT pros report increased governance workloads since deploying AI, positioning this as an always-on, agentic approach to M365 governance.

Windows 11 KB5095093 update rolls out new Point-in-Time restore feature

Microsoft released KB5095093, an optional preview cumulative update for Windows 11 24H2 and 25H2. The headline feature is Point-in-Time Restore, which uses Volume Shadow Copy Service to automatically snapshot the full system state every 24 hours (retained for up to 72 hours), enabling quick rollback of the OS, apps, and files. Enterprise users get configurable snapshot intervals (4–24 hours). The update also fixes a Recycle Bin bug showing internal filenames in delete dialogs, switches the emoji panel GIF provider from Google Tenor to GIPHY, adds a calendar-based Windows Update pause UI, improves Bluetooth reliability, adds voice access in French/German/Spanish, and includes numerous File Explorer, networking, and graphics fixes. A known issue remains where third-party apps cannot launch Office applications.

I use a single PC for my coding, gaming, and self-hosting tasks without them sabotaging each other

A developer shares how they use a single gaming PC for coding, gaming, and self-hosting by leveraging virtualization. The setup uses Hyper-V with a NixOS VM as the primary dev environment, WSL2 for Debian and Arch Linux instances, Windows Sandbox for risky PowerShell experiments, and Podman Desktop for containerized self-hosted apps. Games requiring kernel-level anti-cheat run natively on bare-metal Windows 11, while lighter games stream from a separate Proxmox node. Syncthing handles file sync between the VM and host.