TechKonnect

Blog post: Security Copilot Agents in the Intune Admin Center msendpointmgr.com/2026/03/03/sec…

New blog post: Dynamically removing preinstalled Microsoft Store apps using native functionality petervanderwoude.nl/post/dynamical… #MSIntune #Intune #EMS #MDM #MSStore #Windows11

🚨 More than 2,000 attacker IPs worldwide are exploiting cPanel CVE-2026-41940 to deploy the Filemanager backdoor. The campaign, linked to Mr_Rot13, enables credential theft, ransomware, cryptomining, botnet activity, and persistent SSH access, with infrastructure tied to low-detection activity dating back to 2020. Read: thehackernews.com/2026/05/cpanel…

Have you seen this click-through interactive guides for Microsoft Intune? It's quite useful for advanced learning. regale.cloud/microsoft/play… #MSIntune #Demo

Controlled Configuration for Microsoft Defender antivirus settings is coming to Intune. Microsoft describes it as an extension of Tamper Protection (AKA v2 :) ?) , with cloud delivered policy (MMP-C) becoming the source of truth. That means Defender settings managed from Intune or Microsoft Defender for Endpoint security settings management should be better protected against local changes. This is a big shift in how Defender settings are protected and enforced. Read the blog to find out more! patchmypc.com/blog/controlle… #Intune #MSIntune #Defender

🚨 WARNING: The official JDownloader website was compromised earlier this week to distribute malicious Windows and Linux installers that deployed Python-based malware on infected systems. The supply chain attack impacted users who downloaded installers from the site between May 6 and May 7 via the “Download Alternative Installer” links on Windows or the Linux shell installer. What happened: 🔴Attackers breached the JDownloader site via an unpatched security flaw. 🔴Attackers then modified JDownloader download links to point to malicious payloads 🔴The Windows malware deployed a heavily obfuscated Python-based RAT framework @thomasklemenc found that the Windows malware deployed a Python RAT that can execute attacker-supplied Python code remotely. BleepingComputer's analysis of the Linux installer also revealed injected code that downloaded additional malware, installed a SUID-root launcher, and disguised the payload as /usr/libexec/upowerd.

Happy Mother’s Day from all of us at #MMSMOA. Thank you for your courage, patience, love, and support. We honor you! #HappyMothersDay #Moms #LoveForever

Windows Hotpatch lets you deploy security updates without rebooting devices every Patch Tuesday. We published a quick guide on how to configure it with Microsoft Intune. Take a look: systemcenterdudes.com/how-to-configu… #MSIntune #WindowsAutopatch #Hotpatch #Windows

The Bald and the Bearded (Harjit & Patrik) are back with raw, unfiltered vibes straight from MVP Summit at Microsoft HQ! We’re diving deep into: 1. The electric energy of 1,600+ MVPs + Product Teams in one place 2. Why community hits different when you’re bumping into legends everywhere 3. Robopack & SoftwareCentral magic: Automated packaging, Tenant Manager, drift control & why it’s a total game-changer for Intune admins 4. The big tech shifts happening right now (layoffs, reskilling, cloud reality checks) 5. Pro-level AI prompting secrets so you stop getting “Swedish meatballs” results 😂 If you’re in M365, Intune, or the broader Microsoft ecosystem, this one’s packed with laughs, insights, and real talk you don’t want to miss! 👉 Watch now: youtube.com/watch?v=uOsSlM… #DebuggedDialogs #MVPbuzz #Robopack #Copilot #MSIntune #TechTalks #BaldAndBearded #TenantManager @PatrikWennberg

Microsoft confirms April Windows updates cause backup failures bleepingcomputer.com/news/microsoft… bleepingcomputer.com/news/microsoft…

“What about app patching?” This came up in a session at #MMSMOA today! App patching shouldn’t be a guessing game. Automate it with Robopack! Check it out: systemcenterdudes.com/getting-starte… #MSIntune #Robopack @_Robopack #Patching

🚨 Warning: Microsoft Defender is wrongly flagging some DigiCert certificates as Trojan:Win32/Cerdigent.A!dha, triggering widespread false positives on Windows systems. Admins report certificates being removed from the Windows trust store after recent Defender signature updates. What’s happening: 🔴 Two DigiCert root certificates flagged as malware 🔴 Some systems remove certs from the AuthRoot trust store 🔴 Detection added in April 30th Defender signature updates Microsoft has released fixes in Security Intelligence updates version 1.449.430.0. The issue comes shortly after a DigiCert breach where attackers gained access to support systems and code-signing certificates. If you're seeing Trojan:Win32/Cerdigent.A!dha alerts, update Defender signatures immediately.

What's new in #MSIntune - April 2026. Highlights include: - Enhancements to device management and policy controls - Updates that improve security posture and compliance - Continued focus on simplifying admin workflows Read more: techcommunity.microsoft.com/blog/microsoft…

There’s always so much love and hugs among friends at #MMSMOA. It’s like a family reunion on steroids! 😂🥰❤️🤣 @Hoorge #BFFs #Community

🚀 Automatically populate a devices group based on a registry key on your Intune devices systanddeploy.com/2026/04/automa…

From full-site to file-level, Microsoft 365 Backup now supports granular browse and restore for OneDrive and SharePoint. Learn more: msft.it/6018vHh7e

.@Microsoft is enabling user-initiated provisioning for Windows 365 Reserve, allowing employees to spin up cloud PCs on demand while IT maintains policy control. See how cloud PC provisioning is evolving 👇 #Windows365 #CloudComputing #ITOps redmondmag.com/blogs/redmond-…

cPanel, WHM emergency update fixes critical auth bypass bug bleepingcomputer.com/news/security/… bleepingcomputer.com/news/security/…

Microsoft Releases Enterprise Policy Option to Disable Windows 11 Copilot gbhackers.com/microsoft-ente…