From Logs to Context: How Sentinel + Defender Redefine SOC Architecture 🙂 Alright my friend, let me explain this the way I would to you over coffee, not in a marketing deck. What Microsoft is doing with Microsoft Sentinel inside the Defender portal is not just a UI consolidation. It is an operational model shift…
Month: February 2026
Remote Desktop Client MSI is going away. And this one actually matters.
Hi my dear tech geeks, today we will talk about RDC :)))) (last time?) Microsoft has confirmed that the Remote Desktop Client distributed via MSI will reach end of support on 27 March 2026. After that date there will be no security updates. No bug fixes. No quality improvements. The MSI installer will no longer…
Hardware Accelerated BitLocker. A deeper look into the Windows cryptographic stack
Hey Hey exactly as I promised. at LinkedIn At December 2025 Microsoft has introduced hardware accelerated BitLocker, and once you remove the press release language, what this really represents is a relocation of critical cryptographic workload from the general purpose CPU into a dedicated hardware domain within the processor or SoC. The algorithm remains the…
Windows 11 26H1. Not an update, but a platform shift
Sooo….. Yesterday Microsoft quietly released Windows 11 version 26H1 and almost immediately had to clarify that this is not the next major feature release. There are no new Start menu redesigns and no dramatic UX changes. What is changing sits much deeper in the stack. Are you ready 🙂 so go ahead! 26H1 is not…
BYOD through Microsoft Entra Global Secure Access. What actually happens under the hood
When people talk about BYOD, it usually sounds like freedom. Let employees work from their own laptops and phones. Save on hardware. Everyone is happy. In reality, BYOD is always about one uncomfortable question: how do you control access when you do not control the device? This is where Microsoft Entra Global Secure Access comes…
How AI is reshaping cyber threats and how Microsoft really deals with it in 2026
By 2026 artificial intelligence is no longer something that security teams discuss in strategy decks or conference talks. It is something they encounter on a Monday morning when alerts start coming in before anyone has finished their coffee. AI quietly changed the rhythm of attacks. There is no preparation phase anymore. No clear start. No…
Microsoft Defender and Intune. How device risk becomes enforcement
Most descriptions of the Defender and Intune integration stop at vague phrases about improved security. That explains nothing. What actually matters is how risk signals move through the system, where decisions are made, and why this architecture is fundamentally different from traditional endpoint protection. This integration is not about antivirus management. It is about closing…
Stop treating Intune like “SCCM in the cloud”. Now add security, properly
A lit bit diff format, but lets see if you would like it my dear friends. So. Once security enters the picture, the illusion that Intune is “just SCCM with a web UI” collapses completely. In the SCCM world, security was something you layered on top. You deployed agents, configured settings, maybe pushed antivirus definitions,…