Previous summer crowdstruck meltdown was a bad dream for network administrators worldwide, which disrupts the healthcare system, cutting access to the banking system and grounding aircraft. Overall, the phenomenon caused billions of dollars in direct and indirect losses, and it was fully prevented.
Too: How to get Windows 10 Free Safety Updates Free: 2 Options
In response, Microsoft held a security summit, in which technical experts were brought together in the concluding point security software business of Crowdastric and its rivals. The meeting announced a new set of safe deployment practices at the end of last year and some changes in the architecture of Windows desktop and server products, with the goal of preventing a similar event from resolving.
No other kernel driver?
Today, the company announced that some of them Windows resileNcy initiative features Live going to live. In July, the company said, it will give a private preview of the new Windows and Point Security Platform on a set of its partners, who have signed the Microsoft Virus 3.0 program. The biggest change is the recommended by most security experts-taking the security drivers of the third side out of the Windows kernel, where a defect can cause a terrible accident, and can run them in the user space instead.
The new Windows capabilities will allow them to start building their solutions to run outside Windows kernels. This means that safety products such as antivirus and endpoint protection solutions can run in user mode as apps. This change will help safety developers to provide high levels of reliability and easy recovery, resulting in less effect on Windows devices in the event of unexpected issues.
The declaration includes supporting support of some of those partners, including bitDender, ESET, Sentinelone, Trex, Trend Micro, Culture and – Naturally – Crowdastric.
Too: Will your old laptop still get security updates after this year? Check this chart
Last year, after the Security Summit, ESET was blunt about the possibility of a change in the endpoint security platform: “It is necessary that kernel access remains an option for use by cyber security products,” the company wrote in an indigenous statement. This year’s comment is more collegium, but still not much ringing endorsement:
Cooperation between ESET and Microsoft technology teams on the proposed Windows andPoint security platform changes remains productive with open and ongoing dialogues.
It is extremely important for our joint customers to distribute a stable and flexible operating system environment, and the ESET team provides a detailed response to help to ensure that there is no decline in the currently blissful safety or performance by our customers.
A company that was particularly missing from the roster of today’s supporters was Sofos, which was an outspoken of calls to move safety software from Windows Karnell Space. At that time, Sophos’s Chief Research and Scientific Officer Simon Reid clarified that the company considers access to Windows Karnel as original. The most privileged layer of operating systems operating in “kernel-space” is important for the most privileged layer, memory, hardware, direct access to resource management and storage-is important for safe access products, “He said that kernel drivers are only” fundamental “, not only for sophos products but” strong Windows andPoints, generally. ”
One in Follower Following the security summit, the VP of Engineering for Sophos’ Windows products reiterated that “the system access provided by kernel drivers is required to provide the safety functions required by users of a modern cyber security product” and temporarily discussed the need to reduce the need for kernel drivers.
Goodbye, blue screen of death
Today’s announcement has also highlighted some related reforms in Windows 11 24H2 release which was announced earlier. The first failure is an improvement in the process of collecting the “crash dump” report that causes the system to restart; That change should cut downtime for most users for about two seconds. A new interface also simplified the Classic Blue Screen of Death Screen with a white text on a black background on the “unexpected restarted” screen filled with low jargon. Those changes will be available later in this summer, the company says.
Quick machine recovery debut
Another major change that will be rolled out soon is the availability of Quick Machine Recovery (QMR) facility. One of the most painful aspects of crowdstrik failure was that it inspired the affected machines to go into a restart loop, which only a technician could be fixed by starting the machine physically in the Windows Recovery Environment (RE) and removing the faulty driver. With QMR, Microsoft can use your update server to automatically fix its problem.
When a comprehensive outage affects the properly starting the devices, Microsoft can deploy the therapeutic for the devices affected widely through Windows Re – automation of fixes with QMR and users to get quickly in productive conditions without the need for complex manual intervention.
We are usually excited to announce the QMR available later in this summer, which innovated with renewed resurrection functionality. QMR Windows 11, version supports all versions of 24h2 devices. It is capable of default for Windows 11 home devices; It will be completely under control and can enable it on the Windows 11 Pro and Enterprise operating devices. Later this year, Microsoft will release additional capabilities for teams to customize QMR.
Windows 11 is less restarted for enterprise updates
A final, related safety change promises to correct a longer annoyance with Windows security updates – a system needs to be restarted to apply the fix. Windows can use Windows Autopach to deploy network administrators Hotpach update Windows 11 entering the Windows 11 enterprise without the need for more than one recurrence on PC every three months. (Sorry, but Windows 11 PCs and Small Business Settings are not eligible in an unchanged house.)
Too: Patch your Windows PC now before Bootcit Malware – how is here
For most final users, these changes will be invisible. But for network administrators, who have made overnight sleep, worrying about another crowdstruk-style recession, will be a welcome relief.
Get top stories of morning with us in your inbox every day Tech Today Newsletter.
