Microsoft has fixed yet another problem in some versions of Windows 10, a bug that makes the taskbar and desktop temporarily vanish or causes the system to ignore you. From a report: According to Redmond, users "might experience an error in which the desktop or taskbar might momentarily disappear, or your device might become unresponsive." The issue affects PCs running Windows 10 versions 22H2, 21H2, 21H1, and 20H2, the company wrote on its Windows Health Dashboard. Microsoft didn't outline the exact cause but notes it was related to the KB5016688 220820_03051 cumulative update and later.

The software giant is using its Known Issue Rollback (KIR) feature -- which enables IT administrators to roll back the unwanted changes of an update -- to resolve the problem, adding that it could take up to 24 hours for the fix to reach non-managed business systems and consumer devices. Restarting the device may accelerate the timeframe. Organizations that use enterprise-managed devices can install and configure a special Group Policy by going to "Computer Configuration" and then "Administrative Templates" and "Group Policy name." If the resolution doesn't work, users can try restarting the Windows device, according to Microsoft. The latest fix comes after a number of other problems were resolved this week.

Waymo's latest car sensor arrays are "creating real-time weather maps to improve ride hailing services in Phoenix and San Francisco," reports Engadget. "The vehicles measure the raindrops on windows to detect the intensity of conditions like fog or rain." From the report: The technology gives Waymo a much finer-grained view of conditions than it gets from airport weather stations, radar and satellites. It can track the coastal fog as it rolls inland, or drizzle that radar would normally miss. While that's not as important in a dry locale like Phoenix, it can be vital in San Francisco and other cities where the weather can vary wildly between neighborhoods. There are a number of practical advantages to gathering this data, as you might guess. Waymo is using the info to improve its Driver AI's ability to handle rough weather, including more realistic simulations. The company also believes it can better understand the limits of its cars and set higher requirements for new self-driving systems. The tech also helps Waymo One better serve ride hailing passengers at a given time and place, and gives Waymo Via trucking customers more accurate delivery updates.

The current weather maps have their limitations. They may help in a warm city like San Francisco, where condensation and puddles are usually the greatest problems, but they won't be as useful for navigating snowy climates where merely seeing the lanes can be a challenge. There's also the question of whether or not it's ideal to have cars measure the very conditions that hamper their driving. This isn't necessarily the safest approach. Waymo describes the research in a blog post.

Microsoft has started testing a new search and filtering system for the Task Manager on Windows 11. It will allow Windows users to easily search for a misbehaving app and end its process or quickly create a dump file, enable efficiency mode, and more. From a report: "This is the top feature request from our users to filter / search for processes," explains the Windows Insider team in a blog post. "You can filter either using the binary name, PID or publisher name. The filter algorithm matches the context keyword with all possible matches and displays them on the current page." You'll be able to use the alt + F keyboard shortcut to jump to the filter box in the Task Manager, and results will be filtered into single or groups of processes that you can monitor or take action on. Alongside the new search and filter functionality, Microsoft is also adding the ability to pick between light or dark themes in the Task Manager. Themes will also be applied fully throughout Task Manager, with some updates to its UI to fit more closely with Microsoft's overall Fluent work.

Microsoft is releasing DirectStorage 1.1 this week, and the biggest new addition is GPU decompression for Windows PC games. The Verge reports: GPU decompression works by offloading the work needed to decompress assets in games to the graphics card instead of the CPU. Right now, game assets are typically compressed when they are packaged up for distribution and then decompressed once a game is played. The problem is most compression techniques are designed for CPUs, which aren't great for modern games that want to push for faster decompression rates with the latest PC hardware.

We've seen the industry move to PCIe Gen3 or Gen4 NVMe storage devices in recent years, offering 7GB/s of data bandwidth. This fast storage is great news for game developers wanting to speed up load times, and the advances in I/O technology can dramatically speed up load times and games using DirectStorage 1.1. Developers will now need to tweak their games to make use of DirectStorage 1.1, and the improvements could even see big changes inside games where you move from one world to another or teleport between different parts of a map or world. Microsoft claims this can be as much as three times faster, freeing up the CPU to handle other game processes. [...] All we need now is game support.

Google is bringing its VPN access to desktop today. Google One subscribers on Premium plans (2TB or higher) can now download VPN apps for Windows and macOS, allowing users in 22 countries to mask their IPs on desktop and reduce online trackers. From a report: While Google is expanding its VPN service, it still comes with the same restrictions as Android and iOS. You'll only be able to use the service in one of the supported countries, and you won't be able to use Google's VPN freely to avoid geo-restrictions on live sports or other streaming video. Much like Apple's iCloud Plus VPN service, the Google One VPN won't let you assign an IP address from a different country manually. Instead, Google assigns you an IP in the region you're connecting from.

Microsoft is now promoting some of its products in the sign-out flyout menu that shows up when clicking the user icon in the Windows 11 start menu. BleepingComputer: This new Windows 11 "feature" was discovered by Windows enthusiast Albacore, who shared several screenshots of advertisement notifications in the Accounts flyout. The screenshots show that Microsoft promotes the OneDrive file hosting service and prods users to create or complete their Microsoft accounts.

Those reacting to this on social media had an adverse reaction to Redmond's decision to display promotional messages in the start menu. Some said that Windows 11 is "getting worse in each and every update it gets," while others added that this is a weird choice given that "half of the Start Menu is for recommendations" anyway. BleepingComputer has also tried replicating this on multiple Windows 11 systems, but we didn't get any ads. This hints at an A/B testing experiment trying to gauge the success of such a "feature" on devices running Windows Insider builds or the company pushing such ads to a limited set of customers.

A new survey on the Xbox Insider Hub suggests Microsoft is looking to expand on its energy saving features for Xbox consoles and potentially PC games too. Jez Corden writes via Windows Central: A recent questionnaire I came across in the Xbox Insider app on Windows PC detailed a potential list of new features Microsoft is exploring for games across consoles and PC. These new features pertain specifically to opting-in to reduce frame rates, resolution, and so on, with the goal of limiting energy consumption. Of course, surveys don't necessarily mean that these sorts of features will make it into a final product, but Microsoft's commitments to net zero carbon use have seen the firm increase its investments in this space.

The survey asks users about their current feelings with regard to energy consumption, potentially polling users on how the energy crisis is affecting their willingness to spend. The survey asks users if they would be interested in features that reduce power consumption in games, both while the games are running and while they're inactive, specifically to save energy and thus money. Microsoft also asks users how they would prefer these features to be branded, with terms like "eco-saving" and "energy-saving," and even asks if these sorts of features would affect users' purchase decisions per game.

The Register: A number of job postings -- including this now-closed ad from late September for a principal software engineering manager -- are looking for engineers and others to become part of the "newly formed Windows Incubation team" whose mission is to "build a new direction for Windows in a cloud first world."

The lofty goal is to "move Windows to a place that combines the benefits of the cloud and Microsoft 365 to offer more compute resources on demand and creates a hybrid app model that spans from on-premises to the cloud." According to the ad, it also includes "building a Web-based shell with direct integration with Windows 365." Included in the possible models are low-cost PCs available via subscriptions, with advertising helping to offset some of the costs. (Also mentioned in the job are direct-to-cloud devices.)

Much of the Windows world has yet to adopt Microsoft's latest desktop operating system more than a year after it launched, according to figures for October collated by Statcounter. From a report: Just 15.44 percent of PCs across the globe have installed Windows 11, meaning it gained 1.83 percentage points in a month. This compares to the 71.29 percent running Windows 10, which fell marginally from 71.88 percent in September. Windows 7 is still hanging on with a tenuous grip, in third place with 9.61 percent, Windows 8.1 in fourth with 2.45 percent, plain old Windows 8 with 0.69 percent, and bless its heart, Windows XP with 0.39 percent because of your extended family. In total, Windows has almost 76 percent of the global desktop OS market followed by OS X with 15.7 percent and Linux with 2.6 percent. Android comprised 42.37 percent of total operating system market share, with Windows trailing on 30.11 percent, iOS on 17.6 percent, OS X on 6.24 percent, and Linux on 1.04 percent.

An anonymous reader quotes a report from The Verge: Darin Fisher has built a lot of web browsers. A lot of web browsers. He was a software engineer at Netscape early in his career, working on Navigator and then helping turn that app into Firefox with Mozilla. Then, he went to Google and spent 16 years building Chrome and ChromeOS into massively successful products. Last year, he left Google for Neeva, where he worked on ways to build a browser around the startup's search engine. And now, he's leaving Neeva to join The Browser Company and work on Arc, one of the hottest new browsers on the market. Arc, which has been in an invite-only beta for more than a year, is trying to rethink the whole browser UI. It has a sidebar instead of a row of tabs, offers a lot of personalization options, and is meant for people who live their computing life in a browser (which is increasingly most people). CEO Josh Miller often talks about building "the internet computer," too, and using the browser as a way to make the internet more useful.

Fisher has been an advisor to The Browser Company for a while, but Monday is his first official day at the company as a software engineer. Ahead of his new gig, Fisher and I got on a call to talk about why he thinks browsers are due for a reinvention -- and why he thinks a startup is the best place to do it. The answer starts with the browser's defining feature: tabs. Fisher doesn't hate tabs -- in fact, he helped popularize them. But he hates that using a modern browser involves opening a million of them, not being able to find them again, and eventually just giving up and starting all over again. "I remember when tabbed browsing was novel," Fisher says, "and helped people feel less cluttered because you don't have as many windows." But now, "even when I use Chrome," Fisher says, "I get a bunch of clutter. At some point, I just say, 'Forget it, I'm not even going to bother trying to sort through all these tabs. If it's important, I'll open it again.'" Browsers need better systems for helping you manage tabs, not just open more of them.

The best way to improve the browser, Fisher ultimately decided, is to just start from scratch. Arc is full of new ideas about how web browsers can work: it combines bookmarks and tabs into one app switcher-like concept; it makes it easy to search among your open tabs; it has built-in tools for taking notes and making shareable mini websites. The experience can be jarring because it's so different, but Fisher says that's part of what he's excited about. "This is not stuff people haven't talked about before," he says, "but actually putting it together and focusing on it and thinking about the small steps that go a long way, I think that's where there's so much opportunity." Fisher likes to compare a browser to an operating system, which matches with The Browser Company's idea that Arc isn't just a browser but rather an iOS-like system for the open web. "It has task management UI, it has UI for creating and starting a journey, but there's so much more in between," he says. What the iPhone did for native apps, Arc hopes to do for web apps. Fisher says he's interested in improving the way files move around the internet, for instance, finding a better way than the constant downloading and uploading we all do all day. He likes that Arc has a picture-in-picture mode that works by default, pulling your YouTube video out when you switch tabs. All these make the web feel more connected and cohesive rather than just a bunch of tabs in a horizontal line. The Browser Company also plans to reinvent the internet browser for mobile, too. On mobile, in particular, he says, "there are so many opportunities because the starting point is so archaic."

"He's vague on the details of his plans -- and The Browser Company hasn't really started working on a mobile browser yet anyway -- but says that's a big focus for him going forward," adds The Verge.

Microsoft Corporate Vice President Joe Belfiore will leave Microsoft after 32 years with the company. From a report: Belfiore has served in several roles at Microsoft but is currently the CVP of Office. His plans to retire were announced internally in an email sent out to employees and later shared publicly on Twitter. Belfiore will be a senior advisor and coach to aid the transition until summer 2023. The Office Group will be led by CVP Ales Holecek, who has led the division alongside Belfiore for several years, and CVP Sumit Chauhan, who will move up from their role as head of Office Organization. Many of our readers know Belfiore best for his time in charge of Windows Phone. He co-led that division from 2009 to 2013, which included Microsoft's acquisition of Nokia. Belfiore then went on to lead the Windows 10 team for almost five years.

An anonymous reader quotes a report from ZDNet: Everyone depends on OpenSSL. You may not know it, but OpenSSL is what makes it possible to use secure Transport Layer Security (TLS) on Linux, Unix, Windows, and many other operating systems. It's also what is used to lock down pretty much every secure communications and networking application and device out there. So we should all be concerned that Mark Cox, a Red Hat Distinguished Software Engineer and the Apache Software Foundation (ASF)'s VP of Security, this week tweeted, "OpenSSL 3.0.7 update to fix Critical CVE out next Tuesday 1300-1700UTC." How bad is "Critical"? According to OpenSSL, an issue of critical severity affects common configurations and is also likely exploitable. It's likely to be abused to disclose server memory contents, and potentially reveal user details, and could be easily exploited remotely to compromise server private keys or execute code execute remotely. In other words, pretty much everything you don't want happening on your production systems.

The last time OpenSSL had a kick in its security teeth like this one was in 2016. That vulnerability could be used to crash and take over systems. Even years after it arrived, security company Check Point estimated it affected over 42% of organizations. This one could be worse. We can only hope it's not as bad as that all-time champion of OpenSSL's security holes, 2014's HeartBleed. [...] There is another little silver lining in this dark cloud. This new hole only affects OpenSSL versions 3.0.0 through 3.0.6. So, older operating systems and devices are likely to avoid these problems. For example, Red Hat Enterprise Linux (RHEL) 8.x and earlier and Ubuntu 20.04 won't be smacked by it. RHEL 9.x and Ubuntu 22.04, however, are a different story. They do use OpenSSL 3.x. [...] But, if you're using anything with OpenSSL 3.x in -- anything -- get ready to patch on Tuesday. This is likely to be a bad security hole, and exploits will soon follow. You'll want to make your systems safe as soon as possible.

Do you have a laptop that's either "pretty old" or "weird in some other way"? Did it ship without Windows from the factory, or did you flash its firmware with coreboot? You could help the Linux kernel move its backlight code forward without abandoning quirky gear like yours. ArsTechnica: Hans de Goede, a longtime Linux developer and principal engineer at Red Hat, writes on his Livejournal about the need to test "a special group of laptops" to prevent their backlight controls from disappearing in Linux kernel 6.1. Old laptop tests are needed because de Goede is initiating some major changes to user-space backlight controls, something he has been working on since 2014. As detailed at Linux blog Phoronix, there are multiple issues with how Linux tries to address the wide variety of backlight schemes in displays, which de Goede laid out at the recent Linux Plumbers Conference. There can be multiple backlight devices operating a single display, leaving high-level controls to "guess which one will work." Brightness control requires root permissions at the moment. And "0" passed along as a backlight value remains a conundrum, as the engineer pointed out in 2014: Is that entirely off, or as low as the display can be lit?

An anonymous reader shares a report: Microsoft is still struggling to learn what exactly it takes to be a successful Android manufactuer. The company's first self-branded Android phones, the dual-screened Surface Duo and Surface Duo 2, have tried to resurrect Microsoft's mobile ambitions after the death of Windows Phone. They leave a lot to be desired, though, and the first version went through some embarrassing fire sales. An ongoing knock against the devices has also been Microsoft's very slow OS updates. Unlike, say, Windows and Windows Update, Google's expensive and labor-intensive Android update process puts the responsibility for updates on the hardware seller, and a big part of being a good Android OEM is how quickly you can navigate this complicated process. Microsoft is proving to not be good at this.

This week, Microsoft announced the Surface Duo and Surface Duo 2 are finally getting Android 12L, an OS update that came out in March. That puts that company at a more than seven-month update time, which is worst-in-class for a flagship device, especially for one costing the $1,499 Microsoft is charging for the Duo 2. The company took a prolonged 14 months to ship Android 11 to the Surface Duo, so at least it's improving!

Chrome will no longer support Windows 7 nor Windows 8.1 upon the release of Chrome 110, currently scheduled to hit stable on February 7, 2023. From that point on, you'll need to be running at least Windows 10 to maintain access to new builds. Android Police reports: While Google won't be doing anything to stop users of older platforms from continuing to install and run earlier releases of Chrome, they'd be missing out on the latest critical security and usability enhancements.

An anonymous reader quotes a report from Ars Technica: Generically, passkeys refer to various schemes for storing authenticating information in hardware, a concept that has existed for more than a decade. What's different now is that Microsoft, Apple, Google, and a consortium of other companies have unified around a single passkey standard shepherded by the FIDO Alliance. Not only are passkeys easier for most people to use than passwords; they are also completely resistant to credential phishing, credential stuffing, and similar account takeover attacks.

On Monday, PayPal said US-based users would soon have the option of logging in using FIDO-based passkeys, joining Kayak, eBay, Best Buy, CardPointers, and WordPress as online services that will offer the password alternative. In recent months, Microsoft, Apple, and Google have all updated their operating systems and apps to enable passkeys. Passkey support is still spotty. Passkeys stored on iOS or macOS will work on Windows, for instance, but the reverse isn't yet available. In the coming months, all of that should be ironed out, though.

Passkeys work almost identically to the FIDO authenticators that allow us to use our phones, laptops, computers, and Yubico or Feitian security keys for multi-factor authentication. Just like the FIDO authenticators stored on these MFA devices, passkeys are invisible and integrate with Face ID, Windows Hello, or other biometric readers offered by device makers. There's no way to retrieve the cryptographic secrets stored in the authenticators short of physically dismantling the device or subjecting it to a jailbreak or rooting attack. Even if an adversary was able to extract the cryptographic secret, they still would have to supply the fingerprint, facial scan, or -- in the absence of biometric capabilities -- the PIN that's associated with the token. What's more, hardware tokens use FIDO's Cross-Device Authentication flow, or CTAP, which relies on Bluetooth Low Energy to verify the authenticating device is in close physical proximity to the device trying to log in. "Users no longer need to enroll each device for each service, which has long been the case for FIDO (and for any public key cryptography)," said Andrew Shikiar, FIDO's executive director and chief marketing officer. "By enabling the private key to be securely synced across an OS cloud, the user needs to only enroll once for a service, and then is essentially pre-enrolled for that service on all of their other devices. This brings better usability for the end-user and -- very significantly -- allows the service provider to start retiring passwords as a means of account recovery and re-enrollment."

In other words: "Passkeys just trade WebAuthn cryptographic keys with the website directly," says Ars Review Editor Ron Amadeo. "There's no need for a human to tell a password manager to generate, store, and recall a secret -- that will all happen automatically, with way better secrets than what the old text box supported, and with uniqueness enforced."

If you're eager to give passkeys a try, you can use this demo site created by security company Hanko.

Earlier this year, Microsoft announced that it would be releasing new hardware to encourage more developers to start using and supporting the Arm version of Windows. Dubbed "Project Volterra," all we knew about it at the time was that it would use an unnamed Qualcomm Snapdragon processor and NVMe-based storage, that it would support at least two monitors, and that it would have a decent number of ports. Today, Microsoft is putting Volterra out into the world, complete with a snappy new name: the Windows Dev Kit 2023. From a report: The Dev Kit 2023 will use a Snapdragon 8cx Gen 3 -- essentially the same chip as the Microsoft SQ3 in the new 5G version of the Surface Pro 9 -- plus 512GB of storage and a whopping 32GB of RAM for the surprisingly low price of $599.

We don't know exactly how fast the 8cx Gen 3 will be (Qualcomm says "up to 85 percent faster" CPU performance than the 8cx Gen 2, which would put it somewhere below but within spitting distance of modern Core i5 laptop CPU). But 512GB of storage and 32GB of memory should make the Dev Kit 2023 useful as a development and testing environment. Microsoft says the box can connect to up to three monitors simultaneously using its two USB-C ports and mini DisplayPort and that up to two of those displays can be 4K screens running at 60 Hz. Three USB-A ports, gigabit Ethernet, Wi-Fi 6, and Bluetooth 5.1 round out the connectivity options.

First released in 1998, the BSD-licensed software Zeek (originally named "Bro") is about to get more widely adopted, writes long-time Slashdot reader skinfaxi: Zeek, the open source network security monitoring platform, is being integrated into Windows and "is now deployed on more than one billion global endpoints," according to an announcement from Corelight.
From Corelight's press release: Corelight, the leader in open network detection and response, today announced the integration of Zeek, the world's most popular open source network security monitoring platform, as a component of Microsoft Windows and Defender for Endpoint. The integration will help security teams respond to the most challenging attacks by providing "richer signals for advanced threat hunting, complete and accurate discovery of IoT devices, and more powerful detection and response capabilities."

Originally created by Corelight co-founder and chief scientist Dr. Vern Paxson while at Lawrence Berkeley National Laboratory, Zeek transforms network traffic into compact and high-fidelity logs, file content, and behavioral analytics to accelerate security operations. Vital funding for Zeek came initially from the National Science Foundation and the US Department of Energy's Office of Science. As adoption increased, Corelight was founded to provide a financial model and corporate sponsor for the project....

"Microsoft is strongly committed to supporting open source projects and ecosystems," said Rob Lefferts, corporate vice president for Microsoft. "We're proud to be working with Zeek and are thrilled to bring this level of network intelligence and monitoring to our customers."

"This is an amazing development for Zeek and its community of contributors and users," said Paxson. "I never imagined that the tool I developed for network monitoring would find broader application in defending endpoints — but that's part of the creative magic of open source development.

"We are grateful for Microsoft's contributions and support, and we are excited that the project's impact, and that of the community of contributors, will increase so dramatically."

An anonymous reader quotes a report from BetaNews: Slack developer Felix Rieseberg released Windows 95 as an Electron app four years ago, updating it shortly afterwards to allow it to run gaming classics like Doom. Now he rolls out a new version which can run on any Windows, Mac or Linux system. Based on the Electron framework, Rieseberg's Windows 95 is written entirely in JavaScript, so it doesn't run as smoothly as it would if it was a native app, but you shouldn't let that put you off.

This is the second update of the year, which brings it up to version 3.1.1 and includes two important changes:

- Upgraded from Electron v18 to Electron v21 (and with it, Chrome and Node.js)
- Upgraded v86 (sound is back!)

The earlier update (in June) brought the software up to 3.0.0 and introduced the following changes:

- Upgraded from Electron v11 Electron v18 (and with it, Chrome and Node.js)
- Upgraded v86 (now using WASM)
- Upgraded various smaller dependencies
- Much better scaling on all platforms
- On Windows, the link to OSFMount was broken and is now fixed.
- On Windows, you can now see a prettier installation animation.
- On Windows, windows95 will have a proper icon in the Programs & Features menu. You can download the latest version of the Windows 95 app for Windows, macOS, and Linux at their respective links.

Microsoft is working on a PC Manager app that's designed to boost your computer's performance. The Verge reports: Much like CCleaner, a beta version of Microsoft's PC Manager includes storage management and the ability to end tasks quickly and control which apps start up with Windows. Much of this functionality is already baked into Windows, but this PC Manager app puts it all in one useful location. There's even a browser protection section that makes it easier to change default browsers than what exists in Windows right now.

The storage manager feature includes the ability to manage apps or remove those that are rarely used, and there's also a full cleanup scan available or a scan to find large files on your drives. The process management feature is a more simplified version of the Task Manager so you can quickly kill processes that might be eating up RAM. Hitting the main "boost" button will clear temporary files and free up memory, which could be useful on older PCs.