Reposted by Paul
As announced by Tom Gallagher, VP of Engineering, MSRC, on stage at Black Hat EU, we’re evolving our bug bounty program. Now, high-severity vulnerabilities that directly impact Microsoft online services are eligible for bounty awards, whether the code is Microsoft-owned, third-party, or open source.
December 11, 2025 at 12:46 PM
As announced by Tom Gallagher, VP of Engineering, MSRC, on stage at Black Hat EU, we’re evolving our bug bounty program. Now, high-severity vulnerabilities that directly impact Microsoft online services are eligible for bounty awards, whether the code is Microsoft-owned, third-party, or open source.
Reposted by Paul
Last week I announced that we're finally killing off RC4 in the Windows Kerberos stack.
This has been a long time coming, so much so that we've been working on it for more than a decade, albeit off and on as we sometimes had to target other more pressing issues.
What does this mean?
This has been a long time coming, so much so that we've been working on it for more than a decade, albeit off and on as we sometimes had to target other more pressing issues.
What does this mean?
Beyond RC4 for Windows authentication
As organizations face an evolving threat landscape, strengthening Windows authentication is more critical than ever.
www.microsoft.com
December 10, 2025 at 6:49 PM
Last week I announced that we're finally killing off RC4 in the Windows Kerberos stack.
This has been a long time coming, so much so that we've been working on it for more than a decade, albeit off and on as we sometimes had to target other more pressing issues.
What does this mean?
This has been a long time coming, so much so that we've been working on it for more than a decade, albeit off and on as we sometimes had to target other more pressing issues.
What does this mean?
Reposted by Paul
ANNOUNCEMENT: Ask Microsoft Anything About Secure Boot
Tips to help you update Secure Boot certificates before they expire in June 2026.
techcommunity.microsoft.com/event/window...
Tips to help you update Secure Boot certificates before they expire in June 2026.
techcommunity.microsoft.com/event/window...
Ask Microsoft Anything: Secure Boot
Ask Microsoft Anything (AMA) about updating Secure Boot certificates on your Windows devices before they expire in June of 2026. We recently published the...
techcommunity.microsoft.com
December 5, 2025 at 9:32 PM
ANNOUNCEMENT: Ask Microsoft Anything About Secure Boot
Tips to help you update Secure Boot certificates before they expire in June 2026.
techcommunity.microsoft.com/event/window...
Tips to help you update Secure Boot certificates before they expire in June 2026.
techcommunity.microsoft.com/event/window...
Reposted by Paul
Oh hey, we're [finally] killing RC4 everywhere officially. www.microsoft.com/en-us/window...
Beyond RC4 for Windows authentication
As organizations face an evolving threat landscape, strengthening Windows authentication is more critical than ever.
www.microsoft.com
December 3, 2025 at 5:21 PM
Oh hey, we're [finally] killing RC4 everywhere officially. www.microsoft.com/en-us/window...
Reposted by Paul
New blog post - Automatically Signing a Windows EXE with Azure Trusted Signing, dotnet sign, and GitHub Actions www.hanselman.com/blog/automat...
Automatically Signing a Windows EXE with Azure Trusted Signing, dotnet sign, and GitHub Actions
Mac Tahoe (in Beta as of the time of this writing) has this new feature called ...
www.hanselman.com
November 28, 2025 at 11:33 PM
New blog post - Automatically Signing a Windows EXE with Azure Trusted Signing, dotnet sign, and GitHub Actions www.hanselman.com/blog/automat...
Reposted by Paul
ANNOUNCEMENT: My inbox is overflowing with questions about the new Windows Admin Center Virtualization Mode.
Here's a blog with more info:
techcommunity.microsoft.com/blog/windows...
Here's a blog with more info:
techcommunity.microsoft.com/blog/windows...
Introducing Windows Admin Center: Virtualization Mode (vMode) | Microsoft Community Hub
Now in Public Preview
Windows Admin Center has long been a favorite tool for IT pros, trusted to manage millions of Windows Servers around...
techcommunity.microsoft.com
November 26, 2025 at 11:26 PM
ANNOUNCEMENT: My inbox is overflowing with questions about the new Windows Admin Center Virtualization Mode.
Here's a blog with more info:
techcommunity.microsoft.com/blog/windows...
Here's a blog with more info:
techcommunity.microsoft.com/blog/windows...
Reposted by Paul
We found that _everyone_ in an organization can make security decisions that impact organizational risk, similar to the way everyone can impact legal, financial, and safety risks.
November 20, 2025 at 10:22 AM
We found that _everyone_ in an organization can make security decisions that impact organizational risk, similar to the way everyone can impact legal, financial, and safety risks.
Reposted by Paul
I am working on a new antipattern that is a real pet peeve of mine.
I pretty much stop listening after I hear "This attack would have been stopped by..."
short 🧵(rant)
I pretty much stop listening after I hear "This attack would have been stopped by..."
short 🧵(rant)
November 17, 2025 at 11:47 PM
I am working on a new antipattern that is a real pet peeve of mine.
I pretty much stop listening after I hear "This attack would have been stopped by..."
short 🧵(rant)
I pretty much stop listening after I hear "This attack would have been stopped by..."
short 🧵(rant)
Reposted by Paul
Microsoft is advancing the state of the art across all aspects of silicon security. In this post I, together with Omar Khan and Bryan Kelly (NCSA), cover our advancements: azure.microsoft.com/en-us/blog/p...
Protecting Azure Infrastructure from silicon to systems | Microsoft Azure Blog
At Microsoft, secure design begins at the foundation of our computing stack—the silicon level—and extends through every layer of the cloud. Learn more.
azure.microsoft.com
August 25, 2025 at 11:19 PM
Microsoft is advancing the state of the art across all aspects of silicon security. In this post I, together with Omar Khan and Bryan Kelly (NCSA), cover our advancements: azure.microsoft.com/en-us/blog/p...
Reposted by Paul
A question I often get from customers is "what's Microsoft's plan to mitigate the threat of quantum computers breaking cryptography". Here's a look at our Quantum Safe Program, which I help lead, and the timelines we've set for ourselves so our systems are ready: www.microsoft.com/en-us/securi...
August 20, 2025 at 6:34 PM
A question I often get from customers is "what's Microsoft's plan to mitigate the threat of quantum computers breaking cryptography". Here's a look at our Quantum Safe Program, which I help lead, and the timelines we've set for ourselves so our systems are ready: www.microsoft.com/en-us/securi...
Reposted by Paul
🚨 New open-source tool: RefChecker
A tool that checks reference accuracy in academic papers.
✅ Parses PDFs, LaTeX, and text
✅ Catches broken DOIs, wrong authors, messed-up URLs
✅ Built with GitHub Copilot & Claude
🔗 github.com/markrussinov...
A tool that checks reference accuracy in academic papers.
✅ Parses PDFs, LaTeX, and text
✅ Catches broken DOIs, wrong authors, messed-up URLs
✅ Built with GitHub Copilot & Claude
🔗 github.com/markrussinov...
GitHub - markrussinovich/refchecker: A tool that validates academic paper references
A tool that validates academic paper references. Contribute to markrussinovich/refchecker development by creating an account on GitHub.
github.com
July 28, 2025 at 5:51 PM
🚨 New open-source tool: RefChecker
A tool that checks reference accuracy in academic papers.
✅ Parses PDFs, LaTeX, and text
✅ Catches broken DOIs, wrong authors, messed-up URLs
✅ Built with GitHub Copilot & Claude
🔗 github.com/markrussinov...
A tool that checks reference accuracy in academic papers.
✅ Parses PDFs, LaTeX, and text
✅ Catches broken DOIs, wrong authors, messed-up URLs
✅ Built with GitHub Copilot & Claude
🔗 github.com/markrussinov...
Reposted by Paul
Part 8053 of eleventy billion on our path to killing NTLM: way way way way way better auditing.
support.microsoft.com/en-us/topic/...
support.microsoft.com/en-us/topic/...
Overview of NTLM auditing enhancements in Windows 11, version 24H2 and Windows Server 2025 - Microsoft Support
Summary of new auditing features and deployment details
support.microsoft.com
July 13, 2025 at 4:35 PM
Part 8053 of eleventy billion on our path to killing NTLM: way way way way way better auditing.
support.microsoft.com/en-us/topic/...
support.microsoft.com/en-us/topic/...
Reposted by Paul
A guide to academic event names
July 13, 2025 at 12:06 PM
A guide to academic event names
Reposted by Paul
«Du côté de Québec, la traversée des ponts n'est pas un enjeu pour l'écrasante majorité des automobilistes qui se déplacent chaque jour. Selon nos calculs, moins de 4 % des 725 000 déplacements effectués quotidiennement sur la Rive-Nord franchissent le fleuve.»
Trois quarts des Lévisiens ne traversent pas les ponts
Les déplacements interrives ne sont pas responsables de la congestion dans la Capitale-Nationale.
ici.radio-canada.ca
July 2, 2025 at 4:00 PM
«Du côté de Québec, la traversée des ponts n'est pas un enjeu pour l'écrasante majorité des automobilistes qui se déplacent chaque jour. Selon nos calculs, moins de 4 % des 725 000 déplacements effectués quotidiennement sur la Rive-Nord franchissent le fleuve.»
Reposted by Paul
Just keynoted the Confidential Computing Summit! My talk on "Defining a Spectrum of Guarantees" proposes new terms ("On," "In," "Transparent" CC) to better describe data protection and drive us towards transparent confidential computing.
June 17, 2025 at 11:16 PM
Just keynoted the Confidential Computing Summit! My talk on "Defining a Spectrum of Guarantees" proposes new terms ("On," "In," "Transparent" CC) to better describe data protection and drive us towards transparent confidential computing.
Reposted by Paul
Good Monday morning tech nerds. One of my devs wrote *another* blog post about kerberos (I'm creating an army of crazy bloggers). This one you might consider bookmarking.
Introduction to Network Trace Analysis 06: Kerberos it’s AUTH-some! | Microsoft Community Hub
New to the series? Be sure to check out the previous posts!
Introduction to Network Trace Analysis Part 0: Laying the...
techcommunity.microsoft.com
June 16, 2025 at 2:51 PM
Good Monday morning tech nerds. One of my devs wrote *another* blog post about kerberos (I'm creating an army of crazy bloggers). This one you might consider bookmarking.
La nouvelle saison du balado Dérives d' @olivierbernard.bsky.social est maintenant disponible sur Ohdio. J'ai déjà terminé les 9 épisodes et c'est vraiment bon !
Je recommande à tous !
Je recommande à tous !
S4 EP1 - Le labyrinthe de Lyme : repartir de zéro | OHdio | Radio-Canada
Écoutez gratuitement l’épisode du balado Dérives : S4 EP1 - Le labyrinthe de Lyme : repartir de zéro
ici.radio-canada.ca
May 24, 2025 at 11:17 AM
La nouvelle saison du balado Dérives d' @olivierbernard.bsky.social est maintenant disponible sur Ohdio. J'ai déjà terminé les 9 épisodes et c'est vraiment bon !
Je recommande à tous !
Je recommande à tous !
Reposted by Paul
It’s long past time for you to burn your Twitter account like I did. www.theatlantic.com/technology/a...
What Are People Still Doing on X?
Imagine if your favorite neighborhood bar turned into a Nazi hangout
www.theatlantic.com
May 23, 2025 at 7:49 PM
It’s long past time for you to burn your Twitter account like I did. www.theatlantic.com/technology/a...
Reposted by Paul
Want to publish a Windows app to the Microsoft Store? Registering a developer account is now FREE! (previously ~$20 USD).
Huge news, check it out: blogs.windows.com/windowsdevel... #microsoft #windowsdev
Huge news, check it out: blogs.windows.com/windowsdevel... #microsoft #windowsdev
Microsoft Store expands opportunities for Windows app developers
The Windows developer platform continues to evolve, bringing more quality, performance and innovation through Copilot+ PC. This translates into a tremendous opportunity for app develop
blogs.windows.com
May 19, 2025 at 8:40 PM
Want to publish a Windows app to the Microsoft Store? Registering a developer account is now FREE! (previously ~$20 USD).
Huge news, check it out: blogs.windows.com/windowsdevel... #microsoft #windowsdev
Huge news, check it out: blogs.windows.com/windowsdevel... #microsoft #windowsdev
Reposted by Paul
We are removing default admin in Windows 11, get your apps ready now
blogs.windows.com/windowsdevel...
blogs.windows.com/windowsdevel...
Enhance your application security with administrator protection
Introduction
Administrator protection is a new Windows 11 platform security feature that aims to protect the admin users on the device while still allowing them to perform the necessary functions whic...
blogs.windows.com
May 19, 2025 at 6:11 PM
We are removing default admin in Windows 11, get your apps ready now
blogs.windows.com/windowsdevel...
blogs.windows.com/windowsdevel...
Reposted by Paul
Today's the start of #MSBuild! build.microsoft.com
Seattle has decided to give a traditional welcome of rain 😅
Seattle has decided to give a traditional welcome of rain 😅
Microsoft Build | May 19-22, 2025
Connect, code, and grow at Microsoft Build. This is your moment to collaborate and problem solve with your peers, refactor your skills, and experiment with available code snippets—all in Seattle, May ...
build.microsoft.com
May 19, 2025 at 2:43 PM
Today's the start of #MSBuild! build.microsoft.com
Seattle has decided to give a traditional welcome of rain 😅
Seattle has decided to give a traditional welcome of rain 😅
Reposted by Paul
PLEASE RP: Windows Server 2025 Delegated Managed Service Accounts
Delegated Managed Service Accounts (dMSA) are a new type of managed service account introduced in Windows Server 2025. They offer several advantages over traditional service accounts and Group Managed Service Accounts (gMSA).
Delegated Managed Service Accounts (dMSA) are a new type of managed service account introduced in Windows Server 2025. They offer several advantages over traditional service accounts and Group Managed Service Accounts (gMSA).
May 15, 2025 at 6:54 PM
PLEASE RP: Windows Server 2025 Delegated Managed Service Accounts
Delegated Managed Service Accounts (dMSA) are a new type of managed service account introduced in Windows Server 2025. They offer several advantages over traditional service accounts and Group Managed Service Accounts (gMSA).
Delegated Managed Service Accounts (dMSA) are a new type of managed service account introduced in Windows Server 2025. They offer several advantages over traditional service accounts and Group Managed Service Accounts (gMSA).
Reposted by Paul
Nos réponses à 20 questions fréquentes liées aux changements climatiques.
Par @radiocanadainfo.bsky.social
Par @radiocanadainfo.bsky.social
Le vrai du faux sur le climat
Peut-on prévoir le climat du futur? Les gestes individuels changent-ils quelque chose? Nos réponses aux questions fréquentes liées aux changements climatiques.
ici.radio-canada.ca
May 14, 2025 at 11:52 AM
Nos réponses à 20 questions fréquentes liées aux changements climatiques.
Par @radiocanadainfo.bsky.social
Par @radiocanadainfo.bsky.social
Reposted by Paul
Enjoy some recent positive news from around the world 🌱 🌍 (a thread, 1/3)
May 10, 2025 at 5:44 PM
Enjoy some recent positive news from around the world 🌱 🌍 (a thread, 1/3)