An anonymous reader quotes a report from The Register: Microsoft has reportedly stopped giving Chinese companies proof-of-concept exploit code for soon-to-be-disclosed vulnerabilities following last month's SharePoint zero-day attacks, which appear to be related to a leak in Redmond's early-bug-notification program. The software behemoth gives some software vendors early bug disclosures under its Microsoft Active Protections Program (MAPP), which typically delivers info two weeks before Patch Tuesday. MAPP participants sign a non-disclosure agreement, and in exchange get vulnerability details so that they can provide updated protections to customers more quickly. According to Microsoft spokesperson David Cuddy, who spoke with Bloomberg about changes to the program, MAPP has begun limiting access to companies in "countries where they're required to report vulnerabilities to their governments," including China. Companies in these countries will no longer receive "proof of concept" exploit code, but instead will see "a more general written description" that Microsoft sends at the same time as patches, Cuddy told the news outlet. "A leak happened here somewhere," Dustin Childs, head of threat awareness at Trend Micro's Zero Day Initiative (ZDI), told The Register in July. "And now you've got a zero-day exploit in the wild, and worse than that, you've got a zero-day exploit in the wild that bypasses the patch, which came out the next day." Childs said the MAPP change "is a positive change, if a bit late. Anything Microsoft can do to help prevent leaks while still offering MAPP guidance is welcome." "In the past, MAPP leaks were associated with companies out of China, so restricting information from flowing to these companies should help," Childs said. "The MAPP program remains a valuable resource for network defenders. Hopefully, Microsoft can squelch the leaks while sending out the needed information to companies that have proven their ability (and desire) to protect end users."

Read more of this story at Slashdot.

Organizations still using default Microsoft 365 email domains face severe throttling starting this October. The restrictions target the onmicrosoft.com domain that Microsoft 365 automatically assigns to new tenants, limiting external messages to 100 recipients per day starting October 15. Microsoft blames spammers who exploit new tenants for quick spam bursts before detection. Affected organizations must acquire custom domains and update primary SMTP addresses across all mailboxes -- a process that requires credential updates across devices and applications.

Read more of this story at Slashdot.

De l'IA dans Excel. Probablement l'une des pires idées de Microsoft. Microsoft tellement désespéré que personne ne veuille de son IA qu'il la fourre de force partout.
C'est de la merdification dans le sens où ça n'aide absolument pas les utilisateurs, c'est juste là pour le business de Microsoft.
(Permalink)

Windows 11 users will receive significant UI refinements and AI improvements starting next month as Microsoft prepares its September feature drop followed by additional updates through fall. The update, Windows Central reports, will bring customizable lock screen widgets globally after months of European exclusivity, photo grid views in Windows Search, and a redesigned Windows Hello authentication interface. Copilot+ PCs will gain a revamped Recall application with workflow suggestions and File Explorer AI integration through Click To Do. October and November releases will introduce a larger, customizable Start menu allowing removal of the Recommended section and expanded dark mode support for legacy File Explorer dialogs.

Read more of this story at Slashdot.

Microsoft is testing a COPILOT function in Excel that uses OpenAI's gpt-4.1-mini model to automatically fill spreadsheet cells through natural language prompts. The function can classify feedback, generate summaries, and create tables based on specified cell ranges. Microsoft warns against using the AI function for numerical calculations or scenarios involving legal, regulatory, and compliance implications because COPILOT "can give incorrect responses." The feature processes up to 100 functions every 10 minutes and cannot access information outside the spreadsheet.

Read more of this story at Slashdot.

Microsoft has removed the ability to disable automatic app updates in the Microsoft Store, according to screenshots from Deskmodder.de. Windows users can now only pause updates for one to five weeks. The Registry tweak that previously allowed users to modify update behavior has been removed. Group Policy editor remains the sole method for creating update exemptions on workstations and enterprise systems, but this tool is unavailable in Windows Home editions. The change is being deployed gradually to all Windows users. Microsoft has not commented on the modification, which affects all apps distributed through the Microsoft Store including both UWP and Win32 applications added in 2024.

Read more of this story at Slashdot.

Traditional business applications will become the mainframes of the 2030s - functioning but obsolete systems replaced by AI agents, predicts Microsoft corporate vice president Charles Lamanna. AI agents featuring generative AI interfaces, goal-oriented processing, and vector databases will supplant today's form-driven, workflow-based enterprise software within five years, said Lamanna, who leads Microsoft's business applications and platforms division. The executive projects industry patterns for agent-based systems will solidify within 6-18 months. Microsoft MVP Rocky Lhotka called the 2030 timeline "very forward-looking and optimistic," noting that capital-intensive industries cannot readily replace existing infrastructure with virtual agents.

Read more of this story at Slashdot.

À force de vouloir de l'engagement (inciter les gens à rester sur le réseau et les récompenser s'ils postent et interagissent), LinkedIn s'est transformé en gros truc mou où les gens postent sans arrêt des trucs complètement perchés sans intérêt.
Encore une fois (coucou GitHub👀), fallait-il s'attendre à autre chose après avoir été racheté par Microsoft ?
(via https://shaarli.zoemp.be/shaare/hgtR1w)

PS: Si tout ce qui est posté sur LinkedIn est aussi perché, c'est aussi sans doute parce que c'est écrit par IA en majorité : https://sebsauvage.net/links/?ua4OLw

Rappel : Les "likes" sur un réseau social, c'est de la monnaie de singe. Ne vous faites pas avoir à devenir accro.
(Permalink)

This week workers on Blizzard's "Story and Franchise Development" team "strongly voted" to join America's largest communications and media labor union, the Communications Workers of America. From the union's announcement: The Story and Franchise Development team is Blizzard's in-house cinematics, animation, and narrative team, producing the trailers, promotional videos, in-game cutscenes, and other narrative content for Blizzard franchises — as well as franchise archival workers and historians. These workers will be the first in-house cinematic, animation, and narrative studio to form a union in the North American game industry, joining nearly 3,000 workers at Microsoft-owned studios who have organized with CWA to build better standards across the video game industry after Microsoft acquired Activision Blizzard in 2023... The announcement is the latest update in organizing the tech and video game industry, as over 6,000 workers in the United States and Canada have organized with the Campaign to Organize Digital Employees (CODE-CWA) since launching over five years ago. Last week, workers at Raven Software secured a historic contract with Microsoft, joining ZeniMax QA developers at CWA, who also secured a contract with the company in June. "CWA says that Blizzard owner Microsoft has recognized the union," reports the gaming news site Aftermath, in accordance with the labor neutrality policy Microsoft agreed to in 2022, leading to several other union game studios at Microsoft: In July 2024, 500 workers on Blizzard-owned World of Warcraft formed a union that they called "the largest wall-to-wall union at a Microsoft-owned studio," alongside Blizzard QA workers in Austin. Other studios across Microsoft have also unionized in recent years, including at Bethesda, ZeniMax Online Studios, and ZeniMax QA, the latter of which finally reached a contract in May after nearly two years of bargaining. Unionized workers at Raven Studios reached a contract with Microsoft earlier this month. The CWA's announcement this week included this quote from one organizing committee member (and a cinematic producer). "I'm excited that we have joined together in forming a union to protect my colleagues from things like misguided policies and instability as a result of layoffs."

Read more of this story at Slashdot.

Microsoft is updating its pricing approach for Online Services in Enterprise Agreements in the name of consistency and transparency, but could leave some customers paying more. From a report: Many customers, particularly larger ones, enjoy substantial discounts via volume licensing and the change, which will bring the Online Services pricing model into line with those already rolled out for services like Azure, "reflects our ongoing commitment to greater transparency and alignment across all purchasing channels." Online Services include products such as Dynamics 365 and Windows 365. Exactly how big a discount customers enjoyed depends on the deal they scored. The change will mean that "pricing will align with the pricing published on Microsoft.com." According to Microsoft, "This change reduces licensing complexity, enabling partners to invest less time evaluating Microsoft pricing and programs and more time working with customers on their business needs. With simplified and standardized prices, partners can shift their focus to delivering unique services that will propel their customers' growth." The changes will take effect on November 1.

Read more of this story at Slashdot.

Microsoft has made "Pull Print" for Universal Print generally available, letting users authenticate at any registered printer to release queued jobs and reducing the chance that confidential pages sit unattended. The feature, also called "Universal Print Anywhere," supports two modes: direct print and secure release via QR codes that users scan with a phone camera or the Microsoft 365 app. Admins must register devices, enable secure release, and affix printed QR codes. Microsoft plans badge-based release.

Read more of this story at Slashdot.

An anonymous reader shares a report: Microsoft is starting to roll out lightweight taskbar apps for Microsoft 365 users on Windows 11. These taskbar apps will automatically launch at startup and provide quick access to contacts, file search, and calendar straight from the Windows taskbar. The Microsoft 365 companion apps, as Microsoft calls them, are starting to roll out to business users of Microsoft 365 this month. The People companion provides a browsable org chart, as well as the ability to look up anyone in your company. You can also quickly start a Teams message or call with a contact, or email them directly.

Read more of this story at Slashdot.

xA California man sued Microsoft Thursday over its plan to stop supporting Windows 10 on October 14th, reports Courthouse News Though Windows 11 was launched nearly four years ago, many of its billion or so worldwide users are clinging to the decade-old Windows 10... According to StatCounter, nearly 43% of Windows users still use the old version on their desktop computers.... "With only three months until support ends for Windows 10, it is likely that many millions of users will not buy new devices or pay for extended support," Klein writes in his complaint. "These users — some of whom are businesses storing sensitive consumer data — will be at a heightened risk of a cyberattack or other data security incident, a reality of which Microsoft is well aware...." According to one market analyst writing in 2023, Microsoft's shift away from Windows 10 will lead millions of customers to buy new devices and thrown out their old ones, consigning as many as 240 million PCs to the landfill.... Klein is asking a judge to order Microsoft to continue supporting Windows 10 without additional charge, until the number of devices running the older operating system falls bellow 10% of total Windows users. He says nothing about any money he seeking for himself, though it does ask for attorneys' fees. Microsoft did not respond to an email requesting a comment. The complaint also requests an order requiring Microsoft's advertising "to disclose clearly and prominently the approximate end-of-support date for the Windows operating system purchased with the device at the time of purchase" or at least "disclose that support is only guaranteed for a certain delineated period of time without additional cost, and to disclose the potential consequences of such end-of-support for device security and functionality."

Read more of this story at Slashdot.

Microsoft's $30 Extended Security Updates license for Windows 10 will cover up to 10 devices under a single Microsoft Account, the company confirmed in updated support documentation. The ESU program, which provides security updates through October 13, 2026, requires a Microsoft Account for all three enrollment options: the $30 one-time purchase, redemption of 1,000 Microsoft Reward points, or free enrollment for users who sync their PC settings to OneDrive. Windows 10's support ends October 14, 2025.

Read more of this story at Slashdot.

Microsoft continue avec son habitude de collaborer avec des régimes dictatoriaux : Après avoir aidé la dictature tunisienne à espionner la population et les opposants, Microsoft aide tranquillou une armée génocidaire à cibler une population. Une armée dont le chef a officiellement été reconnu criminel de guerre par la Cour Pénale Internationale.
(Permalink)

Microsoft announced last month that Chinese state-sponsored hackers exploited vulnerabilities in SharePoint to breach hundreds of companies and government agencies, including the National Nuclear Security Administration and Department of Homeland Security. The company omitted that SharePoint support is handled by China-based engineers who have maintained the software for years. ProPublica reviewed screenshots of Microsoft's internal systems showing China-based employees recently fixing bugs for SharePoint "OnPrem," the version targeted in the attacks. Microsoft told the publication that the China-based team operates under U.S. supervision and the company is relocating this work.

Read more of this story at Slashdot.

Les uns après les autres, les grosses entreprises américaines suivent Trump avec docilité : Microsoft LinkedIn retire donc de ses conditions d'utilisation les protections pour les personnes trans. Le deadnaming et misgendering sont donc désormais officiellement autorisés.

Explications:
- deadnaming : Le fait d'appeler une personne par le prénom ou nom qu'elle avait avant sa transition.
- misgendering : Apeller une femme trans "monsieur" ou un homme trans "madame".
Il faut savoir que ces deux choses sont réellement des agressions pour les personnes trans. C'est de la violence et une négation de leur identité.
(Permalink)

"a carousel of half-baked visions"
C'est exactement à ça que me fait penser Microsoft.  
Silverlight ! C'est l'avenir. Tout le monde fait du Silverlight !  Ah non pouf abandonné.
WPF ! Tout le monde fait du WPF, c'est l'avenir. Plouf.
etc etc etc.

Et ce n'est pas spécifique à Microsoft : Toutes les boites lancent des projets en grande fanfare pour tout jeter quelques années plus tard. Mais quand on est développeur avec un peu d'expérience, on finit par prendre avec de grosses pincette la huitième merveille du monde annoncée par une grosse boîte.
Une nouvelle techno ça peut être intellectuellement attirant, mais attention sinon la hype vous la paierez chèrement quelques années plus tard en dette technique.

EDIT: On m'envoie un article très pertinent où on compare une technique de guerre aux actions de Microsoft. Proposer sans cesse de nouvelles technologie pourrait être une stratégie du type "Fire and motion" pour forcer les "ennemis" à dépenser constamment de l'energie pour s'adapter au lieu d'innover de leur côté.
https://www.joelonsoftware.com/2002/01/06/fire-and-motion/
(Permalink)

Microsoft researchers have identified 40 occupations [PDF] with the highest exposure to AI, ranking jobs by how closely their tasks align with AI's current capabilities. The study analyzed 200,000 real-world conversations from Copilot users and compared AI performance against occupational data. Interpreters and translators top the list, followed by historians and passenger attendants. Customer service and sales representatives, comprising about 5 million U.S. jobs, also face significant AI competition. Knowledge workers performing computer, math, or administrative tasks showed high vulnerability, as did sales positions involving information sharing and explanation. The research found occupations requiring Bachelor's degrees demonstrate higher AI applicability than those with lower educational requirements. First, the top 10 least affected occupations by generative AI: 1. Dredge Operators 2. Bridge and Lock Tenders 3. Water Treatment Plant and System Operators 4. Foundry Mold and Coremakers 5. Rail-Track Laying and Maintenance Equipment Operators 6. Pile Driver Operators 7. Floor Sanders and Finishers 8. Orderlies 9. Motorboat Operators 10. Logging Equipment Operators Now, the top 40 most affected occupations by generative AI:1. Interpreters and Translators 2. Historians 3. Passenger Attendants 4. Sales Representatives of Services 5. Writers and Authors 6. Customer Service Representatives 7. CNC Tool Programmers 8. Telephone Operators 9. Ticket Agents and Travel Clerks 10. Broadcast Announcers and Radio DJs 11. Brokerage Clerks 12. Farm and Home Management Educators 13. Telemarketers 14. Concierges 15. Political Scientists 16. News Analysts, Reporters, Journalists 17. Mathematicians 18. Technical Writers 19. Proofreaders and Copy Markers 20. Hosts and Hostesses 21. Editors 22. Business Teachers, Postsecondary 23. Public Relations Specialists 24. Demonstrators and Product Promoters 25. Advertising Sales Agents 26. New Accounts Clerks 27. Statistical Assistants 28. Counter and Rental Clerks 29. Data Scientists 30. Personal Financial Advisors 31. Archivists 32. Economics Teachers, Postsecondary 33. Web Developers 34. Management Analysts 35. Geographers 36. Models 37. Market Research Analysts 38. Public Safety Telecommunicators 39. Switchboard Operators 40. Library Science Teachers, Postsecondary.

Read more of this story at Slashdot.

Dans un rapport publié le 31 juillet 2025, Microsoft détaille le mode opératoire d'une campagne de cyberespionnage très sophistiquée qui vise les ambassades étrangères basées en Russie. À l'origine de cette attaque furtive ? Le groupe Secret Blizzard, fortement soupçonné d'être piloté par le Service fédéral de sécurité russe.