Hi everyone, 

I am just looking for some help and advice on security to protect a Power Apps model-driven app we are using to store client personal data. We are a very small organisation with only 4 employees, 3 of us have access to power apps that has been created to store basic information about clients e.g. name, address, contact numbers and which services of ours they have used. Obviously being a 365 app I am assuming the data is stored on One Drive and the three users have to log in via their computer (which is password protected) and also their 365 account (which is also password protected). We have been recommended to also add Microsoft 365 Security Management and Monitoring as an additional security feature which is only a few pounds extra each month which is no issue however comes with a very large installation fee from out IT support provider. 
Can I ask if anyone can offer any advice on whether the Security Management and Monitoring is actually needed (or in fact what it does)??
Thanks you in advance. 

​Hi everyone, I am just looking for some help and advice on security to protect a Power Apps model-driven app we are using to store client personal data. We are a very small organisation with only 4 employees, 3 of us have access to power apps that has been created to store basic information about clients e.g. name, address, contact numbers and which services of ours they have used. Obviously being a 365 app I am assuming the data is stored on One Drive and the three users have to log in via their computer (which is password protected) and also their 365 account (which is also password protected). We have been recommended to also add Microsoft 365 Security Management and Monitoring as an additional security feature which is only a few pounds extra each month which is no issue however comes with a very large installation fee from out IT support provider. Can I ask if anyone can offer any advice on whether the Security Management and Monitoring is actually needed (or in fact what it does)??Thanks you in advance.   Read More

​

Hello, I’m here to assist you.

Analysis of two minidump files suggests that the network drivers led to the system crash in one instance, while the graphics drivers were responsible in another. Additionally, RAM corruption was identified as the cause in the remaining two instances.

To address this issue, please visit the official support page of your PC’s manufacturer. Download and reinstall the network drivers and graphics drivers version specifically recommended by the manufacturer. It’s essential to avoid using any third-party utilities for driver installations.

After reinstalling the drivers, monitor your system to check if the stability has improved.

​Hello, I’m here to assist you. Analysis of two minidump files suggests that the network drivers led to the system crash in one instance, while the graphics drivers were responsible in another. Additionally, RAM corruption was identified as the cause in the remaining two instances. To address this issue, please visit the official support page of your PC’s manufacturer. Download and reinstall the network drivers and graphics drivers version specifically recommended by the manufacturer. It’s essential to avoid using any third-party utilities for driver installations. After reinstalling the drivers, monitor your system to check if the stability has improved.  Read More

​

Due to the loss of the administrator’s mobile phone, Microsoft’s Multi-Factor Authentication cannot be authenticated. We need the help of another cloud service administrator to organize the reset of the Multi-Factor Authentication settings.

​Due to the loss of the administrator’s mobile phone, Microsoft’s Multi-Factor Authentication cannot be authenticated. We need the help of another cloud service administrator to organize the reset of the Multi-Factor Authentication settings.  Read More

​

I am running windows 11 version 23H2 efter upgrade from windows 10.

I have installed Dosbox 0.74-3 and Dosbox-X in the C:Programfiles(x86) folder.

Both applications have been running nicely until I installed Onedrive.

I get the error-messages below when i try to run Dosbox after installation of Onedrive:

I have tried compatibility mode with no avail. Windows can’t see the dosbox.exe files.

​I am running windows 11 version 23H2 efter upgrade from windows 10.I have installed Dosbox 0.74-3 and Dosbox-X in the C:Programfiles(x86) folder.Both applications have been running nicely until I installed Onedrive.I get the error-messages below when i try to run Dosbox after installation of Onedrive: I have tried compatibility mode with no avail. Windows can’t see the dosbox.exe files.    Read More

​

Hi,

I would like to kindly ask you for help. Currently I have studied Microsoft search and options how to improve it. I have found these search components on this official video (https://youtu.be/jKpIDBalLW0?si=M_qVbY4KWOrZEVy7&t=2103). Unfortunately I have not found any further information where to find those components to use it. Does anyone have an experience with that? It will be really useful and I really appreciate it. I have tried to send an email to mentioned address but unfortunately it does not exist anymore. Thank you for your response.

Best regards and have a nice day

Mirek 🙂

​Hi,  I would like to kindly ask you for help. Currently I have studied Microsoft search and options how to improve it. I have found these search components on this official video (https://youtu.be/jKpIDBalLW0?si=M_qVbY4KWOrZEVy7&t=2103). Unfortunately I have not found any further information where to find those components to use it. Does anyone have an experience with that? It will be really useful and I really appreciate it. I have tried to send an email to mentioned address but unfortunately it does not exist anymore. Thank you for your response.  Best regards and have a nice day  Mirek 🙂  Read More

​

Hello, I’ve developed a bot in Microsoft Teams that, upon submission of an Adaptive Card, performs an external API call with the submitted data and returns the result. The API communication takes around 10 seconds to complete.

To display the result to the user, I set up an action button in the bot with msteams: {type: ‘task/fetch’} so that a task module is triggered. On desktop, the task module opens immediately, displaying a loading spinner inside the module. However, on mobile, the action button temporarily becomes disabled, reverts back, and then, after a delay, the task module appears.

I’m concerned that mobile users might interpret the lack of immediate feedback as the button not working or the action not being registered. Is there a way to make the mobile behavior more consistent with desktop, or to ensure immediate feedback to the user upon pressing the action button?

I have also included the JSON for the Adaptive Card below for your reference.

{ “type”: “AdaptiveCard”, “$schema”: “http://adaptivecards.io/schemas/adaptive-card.json“, “version”: “1.6”, “body”: [ { “type”: “TextBlock”, “text”: “ㅋㅋㅋㅋㅋㅋㅋㅋ”, “size”: “Default”, “weight”: “Bolder”, “color”: “Default”, “wrap”: true } ], “actions”: [ { “type”: “Action.Submit”, “title”: “action submit”, “data”: { “msteams”: { “type”: “task/fetch” }, “approveInfo”: { “userId”: “111111111”, }, “cardData”: { “title”: “zzzzzzzzz”, } } } ] }

​Hello, I’ve developed a bot in Microsoft Teams that, upon submission of an Adaptive Card, performs an external API call with the submitted data and returns the result. The API communication takes around 10 seconds to complete.To display the result to the user, I set up an action button in the bot with msteams: {type: ‘task/fetch’} so that a task module is triggered. On desktop, the task module opens immediately, displaying a loading spinner inside the module. However, on mobile, the action button temporarily becomes disabled, reverts back, and then, after a delay, the task module appears.I’m concerned that mobile users might interpret the lack of immediate feedback as the button not working or the action not being registered. Is there a way to make the mobile behavior more consistent with desktop, or to ensure immediate feedback to the user upon pressing the action button? I have also included the JSON for the Adaptive Card below for your reference.    { “type”: “AdaptiveCard”, “$schema”: “http://adaptivecards.io/schemas/adaptive-card.json”, “version”: “1.6”, “body”: [ { “type”: “TextBlock”, “text”: “ㅋㅋㅋㅋㅋㅋㅋㅋ”, “size”: “Default”, “weight”: “Bolder”, “color”: “Default”, “wrap”: true } ], “actions”: [ { “type”: “Action.Submit”, “title”: “action submit”, “data”: { “msteams”: { “type”: “task/fetch” }, “approveInfo”: { “userId”: “111111111”, }, “cardData”: { “title”: “zzzzzzzzz”, } } } ] }          Read More

​

Integrating Samsung with OneDrive can be an effective way to manage, back up, and access your files across multiple devices seamlessly. Samsung offers native integration with Microsoft’s OneDrive, making it easy to sync photos, documents, and other files between your Samsung device and the cloud. This integration provides a streamlined experience for Samsung users who need reliable storage and accessibility for their data. Here’s a look at how the integration works, its benefits, and how to set it up.

Full details :

https://dellenny.com/integrate-samsung-with-onedrive/

​Integrating Samsung with OneDrive can be an effective way to manage, back up, and access your files across multiple devices seamlessly. Samsung offers native integration with Microsoft’s OneDrive, making it easy to sync photos, documents, and other files between your Samsung device and the cloud. This integration provides a streamlined experience for Samsung users who need reliable storage and accessibility for their data. Here’s a look at how the integration works, its benefits, and how to set it up.
Full details :
https://dellenny.com/integrate-samsung-with-onedrive/
   Read More

​

Hi everyone, I’m looking for some guidance on converting TGA files to PNG format on my Windows 11 PC. I have several images in TGA format that I need for a project, but I prefer working with PNG for better compatibility. I’ve tried a couple of online TGA to PNG converters, but they didn’t work well for my needs, and I’m looking for more reliable options.

If anyone can recommend a simple way to convert tga to png that make this conversion easy and maintain image quality, I would really appreciate it! Also, if there are specific steps or settings I should be aware of during the conversion process, please let me know. Thanks in advance for your help!

​Hi everyone, I’m looking for some guidance on converting TGA files to PNG format on my Windows 11 PC. I have several images in TGA format that I need for a project, but I prefer working with PNG for better compatibility. I’ve tried a couple of online TGA to PNG converters, but they didn’t work well for my needs, and I’m looking for more reliable options. If anyone can recommend a simple way to convert tga to png that make this conversion easy and maintain image quality, I would really appreciate it! Also, if there are specific steps or settings I should be aware of during the conversion process, please let me know. Thanks in advance for your help!  Read More

​

Generative AI is increasingly being used in various kinds of systems to augment humans and infuse intelligent behavior into existing and new apps. While this opens up a world of opportunities for new functionalities, it has also created a new set of risks due to its probabilistic nature and interaction using natural language prompts.

When building generative AI applications, it’s important to address potential risks to ensure safety and responsible AI deployment. The first category of risk is the overall quality of the application. We need to prevent errors where the system produces incorrect or fabricated information. Another key area is robustness against adversarial attacks, such as jailbreak attempts, where users manipulate the system to bypass restrictions, or newer threats like prompt injection attacks, where hidden instructions are embedded within data sources. Additionally, traditional risks, including harmful content — be it inappropriate language, imagery, or security-vulnerable code—must be mitigated. As the interaction with these models is using natural language like humans, it can make them susceptible to attacks similar to social engineering for humans. It raises questions about when it is appropriate for systems to behave like humans and when it might lead to misleading or harmful experiences. Despite the range of risks, we have found that a common framework and layered defense mechanisms can address these diverse challenges effectively.

In this blog post, we will talk about the mitigation strategies to be used against attack against generative AI systems. But before we do that, lets take a quick look at the underlying Responsible AI principles that guide these mitgation mechanisms.

AI is a transformative horizontal technology like the Internet that will change the way we interact and work with technology. We must use it responsibly and ethically. At Microsoft, our commitment begins with our AI principles, which guide our approach to responsible AI development. Our principle of Fairness ensures that AI systems allocate opportunities, resources, and information in ways that are equitable for all users. Reliability and Safety and Privacy and Security focus on building systems that perform well across various contexts, including those they weren’t originally designed for, while safeguarding user data. The principle of Inclusiveness emphasizes designing AI to be accessible to people of all abilities. Finally, Transparency and Accountability ensure that AI systems are understandable, minimize misuse, and allow for human oversight and control. These six principles, remain a steadfast foundation, adapting to new challenges as AI technologies evolve and provide a framework to guide our implementations.

Generative AI Development Lifecycle

If we look at the Generative AI lifecycle, it can be broken down into 5 different stages in an iterative process:

Governance – You begin by aligning roles and responsibilities as well as establishing requirements.
Map – When a use case is defined, you can try red teaming using tools such as PyRiT to figure out what is possible.
Measure – Once you have figured out, what is possible how you can measure the extent of the risk at scale.
Mitigate – Next, we should try to reduce or eliminate those risks using different system checks
Operate – Finally, once the mitigation is in place, you operationalize the system to monitor the risk and respond to the incidents. This happens continually in a loop as you identify newer risks in production and constantly update the systems to respond and mitigate.

Risk Mitigation Layers

Let’s now talk about the mitigation layers in more detail. We find that most production applications require a mitigation plan with four layers of technical mitigations:

The model
Safety system
System message and grounding
User experience layers.

The model and safety system layers are typically platform layers, where built-in mitigations would be common across many applications. They are built into Azure for you. The next two layers largely depend on the application’s purpose and design, meaning the implementation of mitigations can vary a lot from one application to the next. Also, the foundation model you’re using is an important component of the system, but it’s not the complete system.

Model

Choosing the right foundational model is a crucial step in developing an effective AI application. But how do you determine which model best suits your needs? The Azure AI model catalog offers over 1,600 models along with tools to help you make the best choice. For instance, it provides powerful benchmarking and evaluation capabilities, allowing you to compare the performance of multiple models side-by-side to find the one that performs best for your use case. Additionally, you can access model cards that offer detailed information from the model provider. These resources help you assess whether a model is a good fit for your application, while also highlighting potential risks that need to be mitigated and monitored throughout development.

Safety System

For most applications, relying solely on the safety measures built into a model is insufficient. Even with fine-tuning, large language models (LLMs) can still make errors and are vulnerable to attacks like jailbreaks. That’s why, at Microsoft, we employ a layered, defense-in-depth approach to AI safety. We use an AI-based safety system that surrounds the model, monitoring inputs and outputs to help prevent attacks and identify mistakes. In some cases, this can be a specialized model trained for safety. This advanced system, known as Azure AI Content Safety, features configurable filters to monitor for violence, hate, sexual language and self-harm. The filters allow customization based on specific use cases, e.g a gaming company may allow more permissive language in inputs but restrict violent language in outputs. This safety system is integrated directly into the Microsoft Copilot ecosystem, ensuring built-in protection. Moreover, we offer this technology to developers via Azure AI, enabling them to create safer AI applications from the outset.

Azure AI content Safety incorporates 3 types of filters:

Content filters – for harmful content, like text and imagery containing violence or hate speech, which you can adjust by severity level. These are always set to a medium threshold by default. For Azure OpenAI models, only customers who have been approved for modified content filtering have full content filtering control, including configuring content filters at severity level high only or turning off content filters. Apply for modified content filters via this form
Security -Prompt shields are detection models that can be turned on for model inputs, to detect when a user is trying to attack or manipulate the AI system into doing something outside its intended purpose or design.
Quality – Detection models that can be turned on to flag other kinds of risky inputs or outputs, such as protected or copyright material or code, or factually incorrect information where the model output does not align to the source material provided.

In addition, Customers can also create custom blocklists to filters specific terms in inputs or outputs.

System Message and Grounding

The system message and grounding layer is where back-end prompt engineering comes into play, allowing applications to harness the power of large language models (LLMs) effectively. Although these models are trained on vast amounts of information, they have limitations, and their embedded knowledge stops at training time. They also lack access to private or proprietary data which can be used to differentiate your application. By combining the general reasoning and language generation capabilities of LLMs with specific business information, it is possible to address these limitations.  Retrieval-augmented generation (RAG) is a popular approach for implementing this. RAG allows the model to search or utilize your data to provide accurate answers. For example, in Bing Chat, when a search is performed, the model retrieves and search results to generate more precise responses. This ensures that your data is fresh and accurate, reducing reliance on the model’s pre-existing knowledge. Additionally, how you guide the model to use this data effectively is vital. The system message, or metaprompt, significantly influences the tone, style, and scope of the model’s responses, shaping how it interacts within your application.

Even small changes to a system message can have an outsized impact. Using the system message, it is far more effective to tell a model what not to do and what to do instead than simply telling it what not to do. These learnings from our own experience of building multiple copilots are integrated into Azure AI Studio playground, so you don’t need to start from scratch when building a system message.

User Experience

User Experience is a layer where a lot of design innovation is happening to build new ways of interacting with AI systems. Using the guidelines below will help in building better user interfaces and experiences.

Be transparent about AI role and limitations – This will help users be vigilant about detecting potential mistakes. Also disclose the role AI plays in the process as it will set user expectations for using the system.
Ensure humans stay in the loop – Typically AI systems augment humans, so incorporating mechanisms for human feedback is important. This is especially true for high risk use cases in finance, healthcare and insurance amongst others.
Mitigate misuse and overreliance – Provide data citations for further verification and perusal and prepare pre-determined responses
Documentation – It is always useful to provide user guidelines and best practices for users of the system.

Using the above mechanisms and guidelines, I hope that you have got a good overview of how to build better AI applications and you can take a look at the following resources to learn more:

Microsoft TrustWorthy AI – https://blogs.microsoft.com/blog/2024/09/24/microsoft-trustworthy-ai-unlocking-human-potential-starts-with-trust/
Microsoft Responsible AI guidelines – https://www.microsoft.com/en-us/ai/principles-and-approach
The Python Risk Identification Tool for generative AI (PyRIT) – https://github.com/Azure/PyRIT
Operationalize AI responsibly with Azure AI Studio – https://www.youtube.com/watch?v=FHeVBfqelts/
RAI Playlist – aka.ms/RAI-playlist
Operationalize AI Responsibly with Azure AI Studio Learning Path – aka.ms/RAI-learn-path

​Microsoft Tech Community – Latest Blogs –Read More 

Hello everyone,

 I am little bit confused about games and health. I am game addictor and play games 10-12 hours daily after downloading it from Apkgstore. Now i am getting health issues and want to quite this bad habbit. Can someone please guide me how i can achieve this? I wanted to get better by health and enjoy my life properly. I will be thankful if someone help me in this regard. 

Thanks

​Hello everyone, I am little bit confused about games and health. I am game addictor and play games 10-12 hours daily after downloading it from Apkgstore. Now i am getting health issues and want to quite this bad habbit. Can someone please guide me how i can achieve this? I wanted to get better by health and enjoy my life properly. I will be thankful if someone help me in this regard. Thanks  Read More

​