A former NSA computer scientist is disgusted with the current state of security practices, writes ITWire. Slashdot reader samuel_the_fool shares their report: Patching of vulnerabilities is the security industry's equivalent of thoughts and prayers, a prominent American security expert has said during a debate on the topic "Patching is useless" at a recent online conference named Hack At The Harbor. Dave Aitel, 46, a former NSA computer scientist who ran his own security shop, Immunity, for many years, said the remedies proposed by security vendors and big technology companies had served to lull people into a false sense of security all these years and ensure that all the old problems still remained.... Aitel pointed out that if there were vulnerable devices on a network, then they should be removed and substituted with others, rather than being continuously patched....

Aitel was no less severe on Linux, noting that the biggest contributor to the kernel was the Chinese telecommunications vendor Huawei Technologies, which he claimed had been indicted by the US, and asking how one could rest content if so many patches were coming from a company of this kind.

On the positive side, he had praise for ChromeOS, an operating system that is produced by Google, and recommended the use of Chromebooks rather Windows machines.

Aitel called for vulnerability management, advocating the government as the best entity to handle this. His argument was that no other entity had sufficient power to push back against the lobby of the big software vendors and the security industry.

Long-time Slashdot reader drinkypoo writes: Researchers at UNSW Sydney have discovered that aphantasia, or lack of visual imagination, can be detected by lack of pupillary response. Pupillary response to both real and imagined objects was measured and compared, and the response to imagined objects was larger in those reporting greater vividness of imagery.
"One of the problems with many existing methods to measure imagery is that they are subjective, that is to say they rely on people being able to accurately assess their own imagery," says Professor Joel Pearson, senior author of the paper. "Our results show an exciting new objective method to measure visual imagery, and the first physiological evidence of aphantasia. With over 1.3 million Australians thought to have aphantasia, and 400 million more internationally, we are now close to an objective physiological test, like a blood test, to see if someone truly has it... We are very close to having objective, reliable tests for extreme imagery, aphantasia and hyperphantasia (extremely strong visual imagery) that could be scaled up to run online for millions of people everywhere,"

Another author on the study sees a larger significance. "These findings further highlight the wide variability of the human mind that can often remain hidden until we ask someone about their internal experiences or invent new ways to measure the mind. It reminds us that just because I remember or visualise something one way, doesn't mean everyone does."

Writing for the New Yorker, Ronan Farrow reports on Pegasus, "a spyware technology designed by NSO Group, an Israeli firm, which can extract the contents of a phone, giving access to its texts and photographs, or activate its camera and microphone to provide real-time surveillance — exposing, say, confidential meetings." Pegasus is useful for law enforcement seeking criminals, or for authoritarians looking to quash dissent.... In Catalonia, more than sixty phones — owned by Catalan politicians, lawyers, and activists in Spain and across Europe — have been targeted using Pegasus. This is the largest forensically documented cluster of such attacks and infections on record. Among the victims are three members of the European Parliament... Catalan politicians believe that the likely perpetrators of the hacking campaign are Spanish officials, and the Citizen Lab's analysis suggests that the Spanish government has used Pegasus....

In recent years, investigations by the Citizen Lab and Amnesty International have revealed the presence of Pegasus on the phones of politicians, activists, and dissidents under repressive regimes. An analysis by Forensic Architecture, a research group at the University of London, has linked Pegasus to three hundred acts of physical violence. It has been used to target members of Rwanda's opposition party and journalists exposing corruption in El Salvador. In Mexico, it appeared on the phones of several people close to the reporter Javier Valdez Cárdenas, who was murdered after investigating drug cartels. Around the time that Prince Mohammed bin Salman of Saudi Arabia approved the murder of the journalist Jamal Khashoggi, a longtime critic, Pegasus was allegedly used to monitor phones belonging to Khashoggi's associates, possibly facilitating the killing, in 2018. (Bin Salman has denied involvement, and NSO said, in a statement, "Our technology was not associated in any way with the heinous murder.") Further reporting through a collaboration of news outlets known as the Pegasus Project has reinforced the links between NSO Group and anti-democratic states.

But there is evidence that Pegasus is being used in at least forty-five countries, and it and similar tools have been purchased by law-enforcement agencies in the United States and across Europe. Cristin Flynn Goodwin, a Microsoft executive who has led the company's efforts to fight spyware, told me, "The big, dirty secret is that governments are buying this stuff — not just authoritarian governments but all types of governments...." "Almost all governments in Europe are using our tools," Shalev Hulio, NSO Group's C.E.O., told me. A former senior Israeli intelligence official added, "NSO has a monopoly in Europe." German, Polish, and Hungarian authorities have admitted to using Pegasus. Belgian law enforcement uses it, too, though it won't admit it.
Calling the spyware industry "largely unregulated and increasingly controversial," the article notes how it's now impacting major western democracies. "The Citizen Lab's researchers concluded that, on July 26 and 27, 2020, Pegasus was used to infect a device connected to the network at 10 Downing Street, the office of Boris Johnson, the Prime Minister of the United Kingdom.... The United States has been both a consumer and a victim of this techÂnology. Although the National Security Agency and the C.I.A. have their own surveillance technology, other government offices, including in the military and in the Department of Justice, have bought spyware from private companies, according to people involved in those transactions."

But are the company's fortunes faltering? The company has been valued at more than a billion dollars. But now it is contending with debt, battling an array of corporate backers, and, according to industry observers, faltering in its long-standing efforts to sell its products to U.S. law enforcement, in part through an American branch, Westbridge Technologies. It also faces numerous lawsuits in many countries, brought by Meta (formerly Facebook), by Apple, and by individuals who have been hacked by NSO....

In November, the [U.S.] Commerce Department added NSO Group, along with several other spyware makers, to a list of entities blocked from purchasing technology from American companies without a license. I was with Hulio in New York the next day. NSO could no longer legally buy Windows operating systems, iPhones, Amazon cloud servers — the kinds of products it uses to run its business and build its spyware.

joshuark shares a report: Microsoft's Windows 10 operating system already disables by default SMB (Server Message Block) version 1, the 30-year-old file-sharing protocol. Now the company is doing the same with Windows 11 Home Dev Channel test builds, announced officials on April 19. SMB1 is considered outdated and not secure. However, some users with very old equipment may be in for a surprise if their Windows 11 laptops can't connect to an old networked hard drive, as officials said in a blog post about the SMB1 phase out plan. "There is no edition of Windows 11 Insider that has any part of SMB1 enabled by default anymore. At the next major release of Windows 11, that will be the default behavior as well," said Ned Pyle, Principal Program Manager. "Like always, this doesn't affect in-place upgrades of machines where you were already using SMB1. SMB1 is not gone here, an admin can still intentionally reinstall it," Pyle added.

An anonymous reader shares a report: The Amazon Appstore doesn't come with Windows 11 by default, but anyone in the US can download it by heading to the Microsoft Store on their device. It's as simple as installing any other native Windows app -- a good start for potentially getting users onboard. Unfortunately, it's unclear when it'll arrive for users in regions outside the US. You'll need an Amazon account to log in, of course, but the service itself is free. It might be easy to install, but I found browsing and using the service unsurprisingly mediocre. I'm testing this app store out on a souped-up gaming laptop, yet for some reason, the Appstore felt sluggish, taking seconds to load each page and dropping frames when the home screen banner was changing slides. The storefront itself is barebones, offering just two basic categories along the left-side panel and a basic search bar along the top.

As for the app selection, it's as bad as you might've guessed from the jump. Forget Google apps, obviously -- they aren't on Fire Tablets, and they aren't here. TikTok has been predominantly featured on Microsoft's press images for the Appstore since it was announced, and for good reason: it's the only major social network with a listing. Forget Facebook, Instagram, and Twitter -- you're stuck with TikTok if you want to experience the social side of the web.

Games don't fare much better. Looking at the top paid titles, I only recognized two names -- and that was because I knew the Nickelodeon properties they were based on -- not the games themselves. Free titles didn't fare much better; you'll find Subway Surfers and the Talking Tom series, but not much more. None of our favorite free-to-play titles appeared in a search: no Among Us, Call of Duty Mobile, or Roblox. Granted, you can fill all of these absences elsewhere on Windows 11. Many of these titles have versions on Steam or the web -- you don't need the Android version of Among Us to play on Windows. The same goes for those missing apps, from Google services to social networks to recipe apps and smart home controls. It's not hard to access Gmail these days, even if it's not in a dedicated app, and that all begs the question: why does this service even exist?

A headline at Hot Hardware calls it "a sexy Linux laptop with deep learning chops... being pitched as the world's most powerful laptop for machine learning workloads."

And here's how Ars Technica describes the Razer x Lambda Tensorbook (announced Tuesday): Made in collaboration with Lambda, the Linux-based clamshell focuses on deep-learning development. Lambda, which has been around since 2012, is a deep-learning infrastructure provider used by the US Department of Defense and "97 percent of the top research universities in the US," according to the company's announcement. Lambda's offerings include GPU clusters, servers, workstations, and cloud instances that train neural networks for various use cases, including self-driving cars, cancer detection, and drug discovery.

Dubbed "The Deep Learning Laptop," the Tensorbook has an Nvidia RTX 3080 Max-Q (16GB) and targets machine-learning engineers, especially those who lack a laptop with a discrete GPU and thus have to share a remote machine's resources, which negatively affects development.... "When you're stuck SSHing into a remote server, you don't have any of your local data or code and even have a hard time demoing your model to colleagues," Lambda co-founder and CEO Stephen Balaban said in a statement, noting that the laptop comes with PyTorch and TensorFlow for quickly training and demoing models from a local GUI interface without SSH. Lambda isn't a laptop maker, so it recruited Razer to build the machine....

While there are more powerful laptops available, the Tensorbook stands out because of its software package and Ubuntu Linux 20.04 LTS.
The Verge writes: While Razer currently offers faster CPU, GPU and screens in today's Blade lineup, it's not necessarily a bad deal if you love the design, considering how pricey Razer's laptops can be. But we've generally found that Razer's thin machines run quite hot in our reviews, and the Blade in question was no exception even with a quarter of the memory and a less powerful RTX 3060 GPU. Lambda's FAQ page does not address heat as of today.

Lambda is clearly aiming this one at prospective MacBook Pro buyers, and I don't just say that because of the silver tones. The primary hardware comparison the company touts is a 4x speedup over Apple's M1 Max in a 16-inch MacBook Pro when running TensorFlow.
Specifically, Lambda's web site claims the new laptop "delivers model training performance up to 4x faster than Apple's M1 Max, and up to 10x faster than Google Colab instances." And it credits this to the laptop's use of NVIDIA's GeForce RTX 3080 Max-Q 16GB GPU, adding that NVIDIA GPUs "are the industry standard for parallel processing, ensuring leading performance and compatibility with all machine learning frameworks and tools."

"It looks like a fine package and machine, but pricing starts at $3,499," notes Hot Hardware, adding "There's a $500 up-charge to have it configured to dual-boot Windows 10."

The Verge speculates on what this might portend for the future. "Perhaps the recently renewed interest in Linux gaming, driven by the Steam Deck, will push Razer to consider Linux for its own core products as well."

"A new survey claims Windows 11 adoption is so low it's actually less popular than the 20-year-old Windows XP," reports PC Magazine: The survey comes from an IT management provider called Lansweeper. Through its own software products, the company scanned 10 million Windows devices this month to determine which OS they were using. The results found that only 1.44% of the devices had Windows 11 installed, which is lower than the 1.71% for Windows XP. In contrast, Windows 10 maintains a dominant share at 80.34%. Although Windows 11's adoption is low at 1.44%, the number actually went up almost three times from 0.52% back in January.

It's also important to note that other surveys have found much higher Windows 11 adoption numbers. Last month, the app advertising platform AdDuplex found Windows 11 usage was at 19.4%, although this represented a mere 0.1% growth from the previous month. Meanwhile, the Steam hardware survey from Valve estimates Windows 11 usage has reached 16.8%.

Boffins at two US universities have found that muting popular native video-conferencing apps fails to disable device microphones -- and that these apps have the ability to access audio data when muted, or actually do so. The research is described in a paper titled, "Are You Really Muted?: A Privacy Analysis of Mute Buttons in Video Conferencing App." The Register reports: Among the apps studied -- Zoom (Enterprise), Slack, Microsoft Teams/Skype, Cisco Webex, Google Meet, BlueJeans, WhereBy, GoToMeeting, Jitsi Meet, and Discord -- most presented only limited or theoretical privacy concerns. The researchers found that all of these apps had the ability to capture audio when the mic is muted but most did not take advantage of this capability. One, however, was found to be taking measurements from audio signals even when the mic was supposedly off. "We discovered that all of the apps in our study could actively query (i.e., retrieve raw audio) the microphone when the user is muted," the paper says. "Interestingly, in both Windows and macOS, we found that Cisco Webex queries the microphone regardless of the status of the mute button." They found that Webex, every minute or so, sends network packets "containing audio-derived telemetry data to its servers, even when the microphone was muted."

This telemetry data is not recorded sound but an audio-derived value that corresponds with the volume level of background activities. Nonetheless, the data proved sufficient for the researchers to construct an 82 per cent accurate background activity classifier to analyze the transmission and infer the likely activity among six possibilities -- e.g. cooking, cleaning, typing, etc. -- in the room where the app is active. Worse still from a security standpoint, while other apps encrypted their outgoing data stream before sending it to the operating system's socket interface, Webex did not. "Only in Webex were we able to intercept plaintext immediately before it is passed to the Windows network socket API," the paper says, noting that the app's monitoring behavior is inconsistent with the Webex privacy policy. The app's privacy policy states Cisco Webex Meetings does not "monitor or interfere with you your [sic] meeting traffic or content." After the researchers reached out about their findings, Cisco altered Webex so it no longer transmits microphone telemetry data. "Cisco is aware of this report, and thanks the researchers for notifying us about their research," said a Cisco spokesperson. "Webex uses microphone telemetry data to tell a user they are muted, referred to as the 'mute notification' feature. Cisco takes the security of its products very seriously, and this is not a vulnerability in Webex."

Ars Technica's Andrew Cunningham combed through Steam Hardware & Software Survey data "to see how Windows 11 is fairing with enthusiasts." An anonymous reader shares an excerpt from the report: Steam users are migrating to Windows 11 about half as quickly as they moved to Windows 10. Six months after its release, Windows 10 ran on 31 percent of all Steam computers -- nearly one in three. As of March 2022, Windows 11 runs on just under 17 percent of Steam computers -- about one in six. Three-quarters of all Steam computers in 2022 are still running Windows 10. It's easy to interpret these results as an indictment of Windows 11, which generated some controversy with its relatively stringent (and often poorly explained) security-oriented system requirements. At least some of this slow adoption is caused by those system requirements -- many of the PCs surveyed by Steam probably can't install Windows 11. That could be because users have an older unsupported CPU or have one or more of the required security features disabled; Secure Boot and the firmware TPM module were often turned off by default on new motherboards for many years. But there are other compelling explanations. Windows 11's adoption looks slow compared to Windows 10, but Windows 10's adoption was also exceptionally good.

Windows 8 and 8.1 were not well-loved, to put it mildly, and Windows 10 was framed as a response to (and a fix for) most of Windows 8's user interface changes. And people who were still on Windows 7 were missing out on some of the nice quality-of-life additions and under-the-hood improvements that Windows 8 added. You can see that pent-up demand in the jump between July 2015 and September 2015. In the first two months of Windows 10's availability, Windows 8 hemorrhaged users, falling from around 35 percent usage to 19 percent. Virtually all of those users -- and a smaller but still notable chunk of Windows 7 users -- were moving to Windows 10. Windows 11 also got a decent early adopter bump in November 2021, but its gains every other month were much smaller.

In contrast, Windows 11 was announced with little run-up, and it was replacing what users had been told was the "last version of Windows." Where Windows 10 replaced one new, unloved OS and one well-liked but aging OS, Windows 11 replaced a modern OS that nobody really complained about (Windows 10 ran on over 90 percent of all Steam computers in September 2021 -- even Windows 7 in its heyday couldn't boast that kind of adoption). It's also worth noting that Microsoft didn't try to re-create that initial burst of adoption for Windows 11. Following some turbulence after early Windows 10 servicing updates, Microsoft began rolling updates out more methodically, starting with small numbers of PCs and then expanding availability gradually as problems were discovered and ironed out. Windows 11 only entered "its final phase of availability" in February, ensuring that anyone with a compatible PC could get Windows 11 through Windows Update if they wanted it.

Assembly member Cristina Garcia has cosponsored a bill to make the state's official workweek 32 hours for companies with 500 or more employees. CBS News reports: Any work done past that cutoff would come with a hefty raise: Employers would be required to pay time-and-a-half to workers whose hours run over 32 a week. And work stretching past 12 hours a day or into seven days a week would be paid at double the normal wage. Employers subject to the law, which would apply to 20% of California's workforce, also would be barred from reducing people's pay if they work less than their standard workweek, Garcia told CBS News. The bill would not apply to workers who are represented by a union and covered by a collective bargaining agreement.

The proposed law would cover about 2,600 companies in California, according to the Employment Development Department (PDF). The California Chamber of Commerce called it a "job killer," saying it would make hiring more expensive and lead to a drop in jobs in California. "Labor costs are often one of the highest costs a business faces," Ashley Hoffman, policy advocate with the Chamber, wrote to bill cosponsor Evan Low last week. "[B]usinesses often operate on thin profit margins and... the number of employees you have does not dictate financial success," she wrote.

The Git team has issued an update to fix a bug in Git for Windows that "affects multi-user hardware where untrusted parties have write access to the same hard disk," reports The Register. Specifically, the update is concerned with CVE-2022-24765. From the report: Arguably, if an "untrusted party" has write access to a hard disk, then all bets are off when it comes to the nooks and crannies of a PC anyway. In this case, the miscreants would only need to create the folder c:\.git, "which would be picked up by Git operations run supposedly outside a repository while searching for a Git directory," according to NIST. The result is that Git would use the config in the directory.

NIST went on to list potentially vulnerable products, which included Visual Studio. "Users of the Microsoft fork of Git are vulnerable simply by starting a Git Bash." The Git team was little blunter about the vulnerability, and warned that "Merely having a Git-aware prompt that runs 'git status' (or 'git diff') and navigating to a directory which is supposedly not a Git worktree, or opening such a directory in an editor or IDE such as VS Code or Atom, will potentially run commands defined by that other user." [...] To deal with the issue, the Git team recommends an update. Alternatively, a user could create that .git folder themselves and remove read/write access as workaround or "define or extend 'GIT_CEILING_DIRECTORIES' to cover the parent directory of the user profile," according to NIST.

An anonymous reader shares a report: The current tide of antitrust scrutiny and regulations focused on big technology companies has conspicuously omitted one company: Microsoft, the software and cloud-computing behemoth that was the notorious target of a landmark U.S. government lawsuit in the 1990s. Microsoft, the thinking goes, was already humbled by years of intense government oversight, and since it largely caters to other companies, instead of consumers, it doesn't belong in the same category as Facebook, Amazon, Google and Apple. But now some Microsoft customers, and some of its fiercest rivals, are making a bold claim: The software giant is again using its sway over one market to thwart competition in another.

Microsoft three years ago overhauled the way it licenses some of its most ubiquitous software programs, including Windows and Office, in ways that increase the cost of running those programs on rival cloud-computing systems like Amazon Web Services and Google Cloud Platform. In some cases, the revamped agreements outright forbid using some products on competing cloud services. AWS and Google say they have complained to Microsoft on behalf of multiple customers. French cloud provider OVH, along with other unidentified companies, filed a complaint last year with European regulators about the practice, saying it's also being hurt by Microsoft's policies. Major business software customers, some of which are only now starting to see the impact as they renew deals or replace aging programs, are also incensed.

If you are waiting for Windows 11 side-taskbar support before upgrading to the latest operating system, you may be waiting for a long time, according to a recent Microsoft Ask Me Anything (AMA) session. BleepingComputer reports: As first reported by Neowin, in a recent Microsoft Ask Me Anything (AMA) session, a user asked whether Microsoft would be bringing back the ability to move the sidebar to the sides. The response was not very promising, with Tali Roth, Microsoft's Head of Product, explaining that a small amount of Windows users use the feature and that it is unsure whether the feature will ever be brought back:

"When it comes to something like actually being able to move the taskbar to different locations on the screen, there's a number of challenges with that. When you think about having the taskbar on the right or the left, all of a sudden the reflow and the work that all of the apps have to do to be able to understand the environment is just huge. And when you look at the data, while we know there is a set of people that love it that way and, like, really appreciate it, we also recognize that this set of users is really small compared to the set of other folks that are asking for other features. So at the moment we are continuing to focus on things that I hear more pain around. It is one of those things that we are still continuing to look at, and we will keep looking to feedback, but at the moment we do not have a plan or a set date for when we would, or if we would, actually build the side taskbar." You can watch the entire discussion about this feature on YouTube.

The full 90-minute keynote of the Windows 95 launch was uploaded this week by the Blue OS Museum YouTube account. As Gizmodo's Florence Ion notes, "clips from the presentation have floated around online for decades," but the full keynote "has been harder to track down." From the report: [T]he complete presentation is an absolute time capsule of technology culture as it existed on Aug. 24, 1995. It also features some incredibly cringe moments, most of which stem from Jay Leno's cheesy and problematic joke-telling. My face felt flush the entire time I watched this presentation from all the nostalgia pulsating throughout it. There are all the requisite hairstyles, khaki pants, and overly-used Bill Clinton jokes that make this a quintessential event of the '90s. In a slideshow, Gizmodo highlights the "best and worst parts" of the event, adding that if you do watch the entire presentation, "you will have The Rolling Stones' 'Start Me Up' stuck in your head for the rest of the day."

Microsoft has rolled out a new security feature called Smart App Control with Windows 11. From a report: "Smart App Control is a major enhancement to the Windows 11 security model that prevents users from running malicious applications on Windows devices that default blocks untrusted or unsigned applications," Microsoft vice president David Weston explains. "It goes beyond previous built-in browser protections and is woven directly into the core of the OS at the process level. Using code signing along with AI, our new Smart App Control only allows processes to run that are predicted to be safe based on either code certificates or an AI model for application trust within the Microsoft cloud. Model inference occurs 24 hours a day on the latest threat intelligence that provides trillions of signals." Smart App Control is interesting because it will be enabled by default on new Windows PCs in the future. But if you upgrade to whatever version of Windows 11 that enables this feature on an existing install, you will have to use Reset this PC to reset Windows 11 and clean install it. That is, I believe, unprecedented.

An anonymous reader quotes a report from Windows Central: Windows 11 may be the latest operating system from Microsoft, but [Wednesday was] about Windows 3.1. It's the birthday of the classic OS, marking 30 years since its launch on April 6, 1992. Windows 3.1 introduced several key components, many of which have digital descendants on Windows 11 and imitators on other operating systems. Windows 3.1 brought PCs the CTRL+C and CTRL+V shortcuts for copy and paste. It added TrueType fonts and came with screensavers and a media player as well. Gamers had two options for games that preinstalled games: Solitaire and Minesweeper.

Selling over 3 million copies in the first three months it was on the market, Windows 3.1 was considered a success. It was more user-friendly than Windows 3.0 and introduced many people to the idea of a personal computer in their home. Sadly for those that miss the days of the MS-DOS and command line being king, Windows 3.1 reached its end of support in 2001. Further reading: Windows 3.1 Turns 30: Here's How It Made Windows Essential (How To Geek)

Microsoft is bringing tabs to the File Explorer in Windows 11 soon, alongside a refreshed design that makes it easier to quickly access folders or find favorite files. The highly requested tabs feature was first spotted in Windows 11 test builds last month, and now Microsoft is making it official at a hybrid work event for Windows 11 today. From a report: The updated File Explorer design includes tabs to navigate multiple folders in a single window and the ability to move tabs around. Microsoft first started testing tabs in Windows 10 apps, under a feature named Sets. This included support for tabs inside File Explorer, but Microsoft eventually canceled the project and never shipped it to Windows 10 users. Microsoft is also adding a new File Explorer homepage that includes the typical Quick Access folders, recent documents, and a new favorites option. You'll soon be able to right-click a file to add it to favorites, and it will appear pinned on the homepage of File Explorer. There are even improved sharing options for files, with an updated share dialog that lets you send to recent contacts or apps like Teams, Outlook, and OneDrive.

Microsoft put PCs in the cloud with Windows 365 last year, and now it's integrating these Cloud PCs directly into Windows 11. From a report: Windows 365 lets businesses access Cloud PCs from anywhere to stream a version of Windows 10 or Windows 11 inside a web browser. It's something Citrix and many others have been doing for years, but now Microsoft will allow Windows 11 PCs to boot straight to Windows 365 Cloud PCs or easily switch between them using Windows 11's virtual desktops feature. It's part of a hybrid work push for Windows, allowing businesses to support a mix of working remotely on traditional devices or through virtual cloud-powered ones. Microsoft is working on three new Windows 365 features that will be deeply integrated into Windows 11. The first is Windows 365 Boot, which will enable Windows 11 devices to log directly into a Cloud PC instance at startup instead of the local install of Windows. It's designed for devices that are shared between multiple people or for businesses that allow employees to bring your own device (BYOD) to work.

It's been a long road, but Microsoft announced on April 4 a preview of Arm support on Azure virtual machines via its work with Ampere Computing. ZDNet reports: Ampere is a startup that makes server chips. Ampere announced last year it had signed up Microsoft and Tencent Holdings as major customers. "We are now supporting Arm on Azure as well. This has been a long journey to bring up Ampere on Azure with Windows as the Root Host OS! we are also supporting Windows 11 Arm VMs in preview for developers!" tweeted Hari Pulapaka, the director of PM for Azure Host OS and the Windows OS platform. "FYI all Windows developers who have been asking for VM support in Azure, it's here now."

Azure VMs with Ampere Altra Arm-based processors will offer up to 50 percent better price-performance than comparable x86-based VMs for scale-out workloads, Microsoft officials said. These new VMs are also for Web servers, application servers, open-source databases, gaming servers, media servers, and more, they added. The preview is initially available in the West US 2, West Central US, and West Europe Azure regions. Ampere's announcement of the Azure VM preview is here.

"Google is taking aim at Microsoft's dominance in government technology and security," reports NBC News: Jeanette Manfra, director of risk and compliance for Google's cloud services and a former top U.S. cybersecurity official, said Thursday that the government's reliance on Microsoft — one of Google's top business rivals — is an ongoing security threat.

Manfra also said in a blog post published Thursday that a survey commissioned by Google found that a majority of federal employees believe that the government's reliance on Microsoft products is a cybersecurity vulnerability. "Overreliance on any single vendor is usually not a great idea," Manfra said in a phone interview. "You have an attack on one product that the majority of the government is depending on to do their job, you have a significant risk in how the government can continue to function."

Microsoft pushed back strongly against the claim, calling it "unhelpful." The study comes as Google is positioning itself to challenge Microsoft's dominance in federal government offices, where Windows and Office programs are commonly used....

The blog post comes as hackers continue to discover critical software vulnerabilities at an increasing pace across major tech products, but especially in Microsoft programs. Last year, researchers discovered 21 "zero-days" — an industry term for a critical vulnerability that a company doesn't have a ready solution for — actively in use against Microsoft products, compared to 16 against Google and 12 against Apple. he most prominent zero-day was used against Microsoft's Exchange email program, which cybersecurity experts say was first employed by Chinese cyberspies and then quickly adopted by criminal hackers, leading to hundreds of companies becoming compromised.