Windows 10 News You Can Use – June 2019

Posted on June 3, 2019

Windows 10 news you can use, June 2019 edition Providing insights into Windows 10 deployment & management, security & compliance, and productivity. Also see other news related to Windows 10.

What’s new in Windows 10, version 1903, and how to get it.

• For IT Pros: https://techcommunity.microsoft.com/t5/Windows-IT-Pro-Blog/What-s-new-for-IT-pros-in-Windows-10-version-1903/ba-p/622024
• Windows Autopilot: https://techcommunity.microsoft.com/t5/Windows-IT-Pro-Blog/The-latest-news-on-Windows-Autopilot/ba-p/614704
• Windows Update for Business: https://techcommunity.microsoft.com/t5/Windows-IT-Pro-Blog/What-s-new-in-Windows-Update-for-Business-in-Windows-10-version/ba-p/622064
• ADK: https://docs.microsoft.com/windows-hardware/get-started/what-s-new-in-kits-and-tools
• Features removed: https://docs.microsoft.com/windows/deployment/planning/windows-10-1903-removed-features
• Windows Health Dashboard (i.e. known issues list): https://docs.microsoft.com/en-us/windows/release-information/status-windows-10-1903
• How to get the Windows 10 May 2019 Update: https://blogs.windows.com/blog/2019/05/21/how-to-get-the-windows-10-may-2019-update
• Updating Windows 10, version 1903 using Configuration Manager or WSUS: https://techcommunity.microsoft.com/t5/Windows-IT-Pro-Blog/Updating-Windows-10-version-1903-using-Configuration-Manager-or/ba-p/639100

Calling all IT professionals! Join Microsoft on Tuesday, June 4th for a chance to get your questions about Windows 10 deployment, security, update management, device management, and productivity—and the latest Windows 10 feature update (1903)—answered by the experts behind the Windows 10 features and solutions built for IT.
https://techcommunity.microsoft.com/t5/Windows-10-AMA/June-4th-Windows-10-version-1903-AMA-for-IT-pros/m-p/624101

1. Deployment rings: The hidden [strategic] gem of Windows as a service. In speaking with customers who have successfully changed their internal IT culture by moving from project to process, we’ve learned that one of the keys to a successful, more self-service, peer-support-driven model is to create deployment rings for Windows 10 feature updates, and the adoption and use of data driven insights and analysis, in conjunction with the deployment rings.
   https://techcommunity.microsoft.com/t5/Windows-IT-Pro-Blog/Deployment-rings-The-hidden-strategic-gem-of-Windows-as-a/ba-p/659622
2. Webcast Thursday 6/6/19: All you need to know about Windows Virtual Desktop.
   https://aka.ms/discoverWVD
3. Ask Microsoft Anything event 6/12/19: Windows Virtual Desktop.
   https://techcommunity.microsoft.com/t5/Windows-10-AMA/June-12th-Windows-Virtual-Desktop-AMA/m-p/623052#M372
4. All the news from Build 2019 on Microsoft Edge: A first look at new productivity concepts, privacy tools, and Internet Explorer mode for seamless enterprise compatibility.
   https://blogs.windows.com/msedgedev/2019/05/06/edge-chromium-build-2019-pwa-ie-mode-devtools
5. Video (0:50) introducing the future of Microsoft Edge.
   https://www.youtube.com/watch?v=dKmzyj-ovkg
6. Microsoft Mechanics video (17:51) stay ahead of Windows and Office deployments and updates with SCCM. See what’s new, get an explanation on your desktop deployment options, and hear about proven guidance for automating the process to move forward from older versions of Windows and Office. Microsoft 365 Director Jeremy Chapman runs it all down – from app delivery updates, to networking enhancements, deeper tool integration and better user experiences.
   https://www.youtube.com/watch?v=CYRnAmCD7ls
7. Video (30:40) in this really demo heave episode of The Endpoint Zone with Brad Anderson we look at when to use ConfigMgr and/or Intune and why co-management is a unique thing, that only Intune and ConfigMgr can do to manage Windows 10. Plus, why you would use them over other UEM solutions.
   https://channel9.msdn.com/Series/Endpoint-Zone/Endpoint-Zone-May-2019
8. Video (6:42) a Microsoft Mechanics look at the new Windows Autopilot capability called white glove in Windows 10 1903. Also, the latest Windows 10 Autopilot features that we’ve delivered in Windows 10 1809 and beyond.
   https://www.youtube.com/watch?v=nE5XSOBV0rI
9. Increasing transparency: the Windows health dashboard. As part of our commitment to increasing transparency, the new Windows release health dashboard is now live, offering timely information on the current rollout status and known issues (open and resolved) across both feature and monthly updates. The new dashboard provides a single page for each currently supported version of Windows so you can quickly search for issues by keyword, including any safeguard holds on updates, see the current status of each issue, and find important announcements. Watch this video (3:43) introducing the new Windows release health dashboard.
   https://community.windows.com/en-us/videos/the-windows-release-health-dashboard-more-than-just-known-issues/mTnAb9XjMPY
10. Starting with Windows 10, version 1903, devices utilizing the Update Compliance analytics service can now determine which of their managed devices are not receiving a feature update due to a hardware or software compatibility issue identified by Microsoft.
    https://docs.microsoft.com/en-us/windows/deployment/update/update-compliance-feature-update-status

1. Microsoft is excited to announce enhancements to BitLocker management capabilities in both Microsoft Intune and System Center Configuration Manager (SCCM), coming in the second half of 2019. Whether your management infrastructure is on-premises or in the cloud, robust BitLocker management is required for today’s enterprises to secure modern endpoints.
   https://techcommunity.microsoft.com/t5/Enterprise-Mobility-Security/Microsoft-expands-BitLocker-management-capabilities-for-the/ba-p/544329
2. With the release of Windows 10, version 1903, Windows Hello is a FIDO2 Certified authenticator. FIDO2 enables developers to leverage standards-based protocols and devices to provide users easy authentication to online services—in both mobile and desktop environments. https://techcommunity.microsoft.com/t5/Windows-IT-Pro-Blog/Windows-Hello-FIDO2-certification-gets-you-closer-to/ba-p/534592
3. Detecting credential theft through memory access modelling with Microsoft Defender ATP. MDATP, Microsoft’s unified endpoint protection platform, uses multiple approaches to detect credential dumping. In this post, we’ll discuss one of them: a statistical approach that models memory access to the Local Security Authority Subsystem Service (lsass.exe) process.
   https://www.microsoft.com/security/blog/2019/05/09/detecting-credential-theft-through-memory-access-modelling-with-microsoft-defender-atp
4. Announcing the all new Attack Surface Analyzer 2.0! It can help you identify potential security risks introduced by changes to an operating system’s security configuration by identifying changes in key area.
   https://www.microsoft.com/security/blog/2019/05/15/announcing-new-attack-surface-analyzer-2-0
5. Windows 10 attack surface reduction (ASR) rules help prevent malware from infecting computers with malicious code. Some of these rules aim to reduce your attack surface while you’re using Office applications. We’re extending a few of these ASR rules to include Office 365 desktop apps from the Microsoft Store.
   https://techcommunity.microsoft.com/t5/Windows-Defender-ATP/Updates-to-attack-surface-reduction-rules-for-Office-apps/ba-p/568951
6. Conducting a thorough forensic investigation of compromised machines is integral to incident response. However, it can be a challenging task because it requires the device to be in the corporate network and for additional software to be deployed, or for SecOps to have physical access to the device. That changes today, with the public preview of live response capabilities in Microsoft Defender ATP. Live response gives SecOps instantaneous access to a compromised machine regardless of location using a remote shell and gather any required forensic information.
   https://techcommunity.microsoft.com/t5/Windows-Defender-ATP/Incident-response-at-your-fingertips-with-Microsoft-Defender-ATP/ba-p/614894
7. In “Step 9. Protect your OS” of the Top 10 actions to secure your environment blog series, we provide resources to help you configure Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) to defend your Windows, macOS, Linux, iOS, and Android devices from advanced threats.
   https://www.microsoft.com/security/blog/2019/05/21/step-9-protect-your-os-top-10-actions-secure-your-environment
8. Windows Defender Application Guard, the hardware-based isolation technology on Windows 10 that allows Microsoft Edge to isolate browser-based attacks, is now available as a browser extension for Google Chrome and Mozilla Firefox.
   https://www.microsoft.com/security/blog/2019/05/23/new-browser-extensions-for-integrating-microsofts-hardware-based-isolation
9. Announcing an update to Microsoft Defender ATP: unified indicators of compromise (IoCs) experience. We’ve unified several different IoC lists and made the lists more accessible for interactive (portal) and automated (API) use. In addition, we aligned all detection and enforcement means to honor the unified list. The new schema supports several actions such as allow, alert-only, and alert and block. It also supports RBAC for fine-grained control over user access.
   https://techcommunity.microsoft.com/t5/Windows-Defender-ATP/Microsoft-Defender-ATP-unified-indicators-of-compromise-IoCs/ba-p/656415

1. Although the default settings for power use will probably work fine for most people, knowing how to conserve your battery can come in handy. Read on to learn how to find your power icon, learn tips and tricks for saving your battery life, troubleshoot common scenarios, and stay in control of your power options.
   https://community.windows.com/en-us/stories/windows-10-power-settings
2. Windows 10 Tip: Microsoft Edge toolbar for PDF actions.
   https://blogs.windows.com/windowsexperience/2019/05/13/windows-10-tip-microsoft-edge-pdf-improvements
3. Whether you’ve got your arms full of books or want to find an important document without scrolling through Search, Ease of Access dictation allows you to do it all hands-free.
   https://community.windows.com/en-us/stories/windows-10-dictation
4. For IT Pros: After upgrading to Win10 Insider build #18272 or later, Windows Console (E.g. launch Cmd, PowerShell, WSL, etc.) supports zoom in-and-out features. Hit and hold CTRL while scrolling your mouse wheel / trackpad.  You’ll also notice that Console now honors your Light/Dark Theme settings: If you are using the Dark Theme, your Console’s scrollbar is also dark-themed!
   https://devblogs.microsoft.com/commandline/windows-console-ctrl-scroll-to-zoom-and-dark-theme-scrollbar
5. Windows 101: Turning on airplane mode in Windows 10.
   https://community.windows.com/en-us/videos/windows-101-turning-on-airplane-mode-in-windows-10/YxbuvmlpJYo

• Gartner: 2018 update on How to Quantify the Changing Value of Windows 10 Enterprise E3 and E5.
  https://www.gartner.com/doc/reprints?id=1-6H0KMU1&ct=190402&st=sb
• Gartner SWOT analysis: Microsoft is now a security vendor. Technology product managers at security services providers can use this document to identify opportunities to reshape their product roadmaps and integrations based on Microsoft’s changed approach to security.
  https://www.gartner.com/doc/reprints?id=1-6494BWN&ct=190116&st=sb
• Today, we’re announcing general availability of Microsoft Search, an intelligent, enterprise search experience from Microsoft that applies the artificial intelligence technology (AI) from Bing and deep personalized insights surfaced by the Microsoft Graph, to make search more effective.
  https://techcommunity.microsoft.com/t5/Microsoft-SharePoint-Blog/Welcome-to-Microsoft-Search-intelligent-search-for-the-modern/ba-p/509097
• Windows has long been a leader in powering dedicated devices. Many of the ATMs, cash registers, and airport kiosks around the world run Windows Embedded 7. That operating system is based on Windows 7, whose support is ending on January 14, 2020. Similarly, Windows Embedded 7 extended support will end soon.  Now is the time to move to modern Windows 10 IoT—safer, smarter, cloud-ready.
  https://www.microsoft.com/en-us/microsoft-365/blog/2019/01/14/move-to-modern-windows-10-iot-safer-smarter-cloud-ready
• Experience provides guidance about which practices will reduce the odds of a security incident, and there are tools that can measure how effectively those practices have been implemented. The fourth e-book in this series, Understand & improve your security posture, delves into the tools available in Microsoft 365 to measure and improve enterprise security.
  https://www.microsoft.com/security/blog/2019/04/29/understand-improve-security-posture-microsoft-365
  https://query.prod.cms.rt.microsoft.com/cms/api/am/binary/RE2OdHf
• Microsoft Build 2019 on-demand sessions now available. Watch your favorite sessions again or catch up on a topic you missed.
  https://insider.windows.com/en-us/articles/microsoft-build-2019-sessions
• Introducing the first Microsoft Edge preview builds for macOS.
  https://blogs.windows.com/msedgedev/2019/05/20/microsoft-edge-macos-canary-preview
• Microsoft Defender ATP for Mac now in open public preview.
  https://techcommunity.microsoft.com/t5/Windows-Defender-ATP/Microsoft-Defender-ATP-for-Mac-now-in-open-public-preview/ba-p/634603
• New Windows IoT solutions at Computex show ingenuity at the intelligent edge.
  https://blogs.windows.com/windowsexperience/2019/05/28/new-windows-iot-solutions-at-computex-show-ingenuity-at-the-intelligent-edge
• Channel9 video (25:00) covering how the Windows Subsystem for Linux (WSL) can access and modify Linux files from Windows applications, going into deep dive level details on the underlying architecture.
  https://channel9.msdn.com/Shows/Going+Deep/How-WSL-accesses-Linux-files-from-Windows