: After years of bolting AI onto everything, Redmond remembers admins exist
arrived in the Dev and Beta Windows Insider channels this week in builds 26300.7733 and 26220.7752, respectively. It allows administrators to capture system events via custom configuration files, filter for specific events, and write them to the standard Windows event log for pickup by third-party applications, including security tools.
Sysmon, part of the Sysinternals toolset, has long been useful for monitoring Windows' internals. Mark Russinovich, Microsoft technical fellow and co-founder of Winternals, from whence Sysinternals sprang,"Its granular diagnostic data feeds security information and event management pipelines and enables defenders to spot advanced attacks." But deployment has been painful for administrators, managing potentially thousands of endpoints across an enterprise that need to be kept. Russinovich noted"a lack of official customer support for Sysmon in production environments." Having it built in is therefore welcome, a respite from Microsoft's relentless AI integrations across its portfolio. Enabling it requires some work with PowerShell, which shouldn't trouble Sysmon-savvy users. Microsoft notes that any existing Sysmon installation must be uninstalled first before the built-in version can be enabled.Microsoft euthanizes ancient deployment toolkit, or turning Paint into a Photoshop knockoff, Microsoft is delivering a tool that actually makes administrators' lives easier - perhaps a sign it's taking user needs more seriously than shareholder demands.EU's fishy digital certificate system leaves exporters flounderingUK to properly probe xAI to test if its revolting robo-smut generator broke the law
United Kingdom Latest News, United Kingdom Headlines
Similar News:You can also read news stories similar to this one that we have collected from other news sources.
Patch Tuesday meets Groundhog Day as Windows hibernation bug returns: Microsoft concedes January's out-of-band fix didn't stop some PCs from rebooting instead of sleeping
Read more »
£2 kitchen item has kept condensation and mould off my windowsWindow condensation can quickly lead to mould growth in your home, but one simple kitchen item has helped keep my windowsills dry and mould-free
Read more »
Microsoft's Out-of-Band Update Frequency Raises ConcernsMicrosoft faces increasing criticism as the frequency of emergency out-of-band updates for its operating systems rapidly increases, raising questions about the quality of recent releases. Despite the company's efforts to address issues promptly, the surge in updates, including for older Windows versions, is concerning for administrators and users.
Read more »
Russia-linked APT28 attackers already abusing new Microsoft Office zero-day: Ukraine’s CERT says the bug went from disclosure to active exploitation in days
Read more »
Microsoft's Copilot Adoption Rate Faces Scrutiny Amidst AI SpendingMicrosoft's low paid user adoption rate for Copilot Chat, a mere 3.3% of users, raises questions about the return on the company's significant AI investments, despite claims of strong momentum and growth in paid seats. The news explores the discrepancy between the free usage and the paid subscription model, highlighting the challenges Microsoft faces in monetizing its AI initiatives.
Read more »
Russia-Linked Hackers Exploiting Microsoft Office Zero-Day to Target Ukraine and EURussian-backed cyber attackers are actively exploiting a recently disclosed zero-day vulnerability in Microsoft Office (CVE-2026-21509) to target Ukrainian government agencies and organizations in the European Union. The attacks, attributed to APT28 (Fancy Bear), involve weaponized documents that initiate a chain of malicious activity, leading to the deployment of the COVENANT framework. The attackers leverage phishing emails, WebDAV connections, and persistence techniques to gain and maintain access.
Read more »