Introduction

In cloud-native Kubernetes environments, Containers are often treated as immutable resources, meaning they shouldn’t change after deployment. Immutable containers minimize the attack surface because they do not allow modifications during runtime. This limits the potential for attackers to make unauthorized changes, install malware, or create backdoors within a running container.

Container drift refers to unintended or unauthorized manual changes, updates, patches, or other modifications made during its runtime. When containers drift, they may incorporate untested and unverified changes, such as software updates, configuration modifications, or new libraries. These changes can introduce new vulnerabilities that were not present in the original, vetted container image. Drift might introduce changes that grant elevated privileges to processes or users within the container, which can be exploited to gain broader access to the system or network. Changes caused by drift can alter or disable security monitoring tools within the container, making it harder to detect and respond to security incidents promptly.

Microsoft Defender for Containers introduces the binary drift detection feature in public preview, to detect execution of files in a running container drifting from original Container Image which was scanned, tested, and validated. It’s available for the Azure (AKS) V1.29, Amazon (EKS), and Google (GKE) clouds.

Defender for Containers Binary Drift Detection helps organizations:

Early Detection of Breaches: Drift detection serves as an early warning system for potential security breaches. If an attacker compromises a container and makes unauthorized changes, drift detection can immediately alert security teams, enabling them to respond quickly and mitigate the impact.

Monitor for Insider Activity: Drift detection helps mitigate insider threats by monitoring for unauthorized changes that could indicate malicious activity by an insider. This includes unauthorized changes to configurations, deployment scripts, or access controls within containers.

Reduce Human Error: Human error is a common cause of security breaches. Drift detection reduces the risk of human error by ensuring that any unintended changes made by administrators or developers are quickly detected and corrected.

Ensure Compliance with Security Standards: Many regulatory standards require organizations to maintain secure configurations and prevent unauthorized changes. Drift detection helps ensure compliance by continuously monitoring and documenting the state of containers, providing evidence that configurations remain consistent with regulatory requirements.

Prerequisites to enable Binary drift detection:

Defender for Containers plan should be enabled on Azure subscription, AWS Connector, GCP Connector.  For more details refer Configure Microsoft Defender for Containers components – Microsoft Defender for Cloud | Microsoft Learn
Defender sensor must be enabled.

Security Admin or higher permissions on the tenant to create and modify drift policies

Configure Binary Drift Detection

Security Admins can configure drift detection policies at Azure Subscription, AWS Connector or GCP Connector and on Resources at Cluster level, Name space, Pod, or individual container level.

For details on how to configure drift detection Rules, refer : Binary drift detection (preview) – Microsoft Defender for Cloud | Microsoft Learn

Rules are evaluated in ascending order of priority. First rule 1 is evaluated, if it’s a match the evaluation stops.  If no match is found, the next rule is evaluated. If there’s no match for any rule, the out of the box Default binary drift rule with default  Ignore drift detection applies.

Best practices for Drift Detection:

Kubernetes Administrators should ensure that all container images are regularly updated and patched to include the latest security fixes.
Detecting drift at the cluster level helps prevent unauthorized changes that could compromise the security and stability of the entire cluster. For example, an attacker gaining access to the Kubernetes API server might change cluster-wide settings to escalate privileges or disable security features.

In multi-tenant environments, where different teams or customers share the same Kubernetes cluster but operate within their own namespaces, organizations can apply drift detection at namespace level monitoring only the areas of the cluster that are relevant to particular applications or teams.

In development or testing environments, developers might need to make ad-hoc changes to containers to test new features, configurations, or debug issues, without the overhead of redeploying containers. Apply the ruleset only to the specific labelled Kubernetes pods.

During scheduled maintenance windows, organizations might need to apply emergency patches or make quick operational changes directly to running containers to address critical security vulnerabilities or fix urgent issues. In this scenario, modify the rule action to Ignore Drift detection to avoid false positives.
Allow list for processes – Organizations might define specific processes like monitoring agents, logging agents to be exempt from drift detection to avoid false positives.

Test / Simulate a binary drift alert

To test the binary drift feature and generate alerts (only in situations you defined in the binary drift policy that you’d like to get an alerts) you can execute any binary process in the container (not part of the original image). You can also use this script to create binary drift scenario:
kubectl run ubuntu-pod –image=ubuntu –restart=Never — /bin/bash -c “cp /bin/echo /bin/echod; /bin/echod This is a binary drift execution”

Below you can observe the drift detection alert generated in a threat scenario:

Click on Open Logs to further examine the activities performed on this resource around the time of the alert. The attempt to list the Cluster admin credentials succeeded.

The alert also indicates there are 42 more alerts on the affected resource

This incident indicates that suspicious activity has been detected on the Kubernetes cluster. Multiple alerts from different Defender for Cloud plans have been triggered on the same cluster, which increases the fidelity of malicious activity. The suspicious activity might indicate that a threat actor has gained unauthorized access to your environment and is attempting to compromise it.

Advanced Hunting with XDR

Security teams can now access Defender for Cloud alerts and incidents within the Microsoft Defender portal, get the complete picture of an attack, including suspicious and malicious events that happen in their cloud environment, through immediate correlations of alerts and incidents.

By combining drift detection data with other security event information, SOC teams can build a more comprehensive understanding of potential incidents. A multi-stage incident involving multiple alerts can be observed in the XDR portal.

The alert evidence pane shows there has been suspicious activity with “ubuntu-pod”

The SOC team can further investigate the commands executed on the affected pod, and the user who executed the commands using the below query:

CloudAuditEvents

| where Timestamp > ago(1d)

| where DataSource == “Azure Kubernetes Service”

| where OperationName == “create”

| where RawEventData.ObjectRef.resource == “pods” and RawEventData.ResponseStatus.code == 101 

| where RawEventData.ObjectRef.namespace == “kube-system”

| where RawEventData.ObjectRef.subresource == “exec”

| where RawEventData.ResponseStatus.code == 101

| extend RequestURI = tostring(RawEventData.RequestURI)

| extend PodName = tostring(RawEventData.ObjectRef.name)

| extend PodNamespace = tostring(RawEventData.ObjectRef.namespace)

| extend Username = tostring(RawEventData.User.username)

| where PodName == “ubuntu-pod”

| extend Commands =  extract_all(@”command=([^&]*)”, RequestURI)

| extend ParsedCommand = url_decode(strcat_array(Commands, ” “))

| project Timestamp, AzureResourceId , OperationName, IPAddress, UserAgent, PodName, PodNamespace,  Username, ParsedCommand

For more information on how to Investigate suspicious Kubernetes (Kubeaudit) control plane activities in XDR advanced hunting refer: Kubeaudit events in advanced hunting – Microsoft Defender for Cloud | Microsoft Learn

SOC team can assign incidents from the Manage incident pane for mitigating the attack

Kubernetes Cluster administrators can configure automated workflows to handle common drift scenarios, such as reverting unauthorized changes, notifying relevant teams, or trigger response actions automatically.

Additional Resources

You can also use the resources below to learn more about these capabilities:

Binary drift detection in Defender for Containers  (Video)
Binary drift detection (preview) – Microsoft Defender for Cloud | Microsoft Learn
Kubeaudit events in advanced hunting – Microsoft Defender for Cloud | Microsoft Learn
Container security architecture – Microsoft Defender for Cloud | Microsoft Learn

Reviewers

Eyal Gur, Principal Product Manager, Defender for Cloud

​Microsoft Tech Community – Latest Blogs –Read More 

Data Analytics 

Analytics can transform raw data into an extensive collection of information that categorizes data to identify and analyze behavioral data

and patterns. Data analytics consists of converting raw data into actionable insights.  

Although having data analytics competencies may be required for some job and optional for others, it makes all data related work easier. If you are a data scientist, for example, a quick and informative analysis could give you an idea related to preprocessing and to the modeling algorithm. 

Data analytics has several benefits for different segments such as: 

Organization: By examining historical data and recognizing trends, businesses can gain a better understanding of their customers, market conditions and products. Analytics has capacity to help with informed decision-making leading to cost effectiveness. 

Developers:  data analytics help in getting insights into how to develop the business. 

Product: data analytics may help in product design and feature development. 

Previously, data analytics was a complex task. However, thanks to technological advancement, new tools were developed to support accessibility and its comprehension by, many people across all teams despite their technical backgrounds. One of these tools is Power BI developed  by Microsoft.     

Power BI for Data Analysis 

Power BI is an exceptional tool for quickly pulling actionable insights from data. It allows you to build visuals (as well as specifying new measure metrics) for your data in reports and dashboards which could be shared to gather insights at a high level to get more detailed information. We have: 

Power BI Desktop: Desktop is a complete data analysis and report creation tool that is used to connect to, transform, visualize, and analyze data.  

Power BI service: a cloud-based service, or software as a service (SaaS). Teams and organizations should use it because it facilitates report editing and collaboration. You can connect to data sources in the Power BI service, too, but modeling is limited. 

In this blog, we are going to work with Power BI Desktop: Download Power BI Desktop  

The data can be downloaded from: Financial Data or imported directly from Power BI Desktop available samples. 

Analyzing data has been always correlated with statistics that show distribution or helps in detecting outliers, for example. Exploring the statistical summary gives you a high-level view of the available data, where you can remarque clusters, discover patterns on behavioral data, calculate data averages, min, max and more. Based on this need, Power BI has many functions that guide in conducting a statistical analysis, such as Data Analysis Expressions (DAX) functions and visuals (histograms and bell curves…).  

The list below presents some types of visualizations: 

Histograms    can be used to depict the frequency distribution of variables in a dataset. For example, we use the column chart visual to present a histogram that determines the sum of sales per country. 

    2. Charts   Bar or column chart visual in Power BI relates two data points: a measure and a dimension. It only visualizes a single data point and to compare discrete or categorical variables in a graphical format. 

Histograms and bell curves (distribution charts) are the most common way to display statistics about the semantic models. In Power BI, you can represent a histogram with one of the bar or column chart visuals and represent a bell curve with an area chart visual, as illustrated in the following image.  

       3. Statistical functions| Data Analysis Expressions (DAX): calculate values related to statistical distributions and probability, such as standard deviation (StdevP) and max (Max) (  statistical_functions and function-aggregates) 
 TOPN: one of the most known DAX functions. It returns the top N rows of a specified table(dataset). The Top N analysis is a great way to present data that might be important, such as the top 10 selling products, top 3 employees in an organization, or top 1 dangerous contamination. On the other hand, it may present the bottom N items in a list such as the worst sellers. It depends on your perspective and business requirements. In this example, we visualized respectively the top 10 countries by sales and top 10 countries by discounts 

Also, you can apply a new customized filter in the Filter section. In this example, we visualized the countries with Sum of Gross Sales (Variable) greater than (Operation) 25M (threshold). 

Outliers Identification with Power BI Visuals 

We define an outlier as a type of anomaly in the data, something unexpected or surprising, based on historical averages or previous normal results. It is important to identify outliers to isolate data points that significantly differ from other data points to not bias the future model and insights. Then, we need to take action to investigate the reasons for the presence of those outliers. The results of this analysis can make a significant impact on business decision making. 

Let’s consider our scenario, where we are analyzing units sold by country. The countries that stand out in terms of units sold are the ones we want to take note of. 

To that point, Power BI allows you to identify outliers in your data. The process involves: 

Segmenting data into two groups: the outlier data | normal data 

Use calculated columns to identify outliers à results would be static until à refresh the data.  
Solution: use a visualization or DAX function. These methods will ensure that your results are dynamic. 

After identifying outliers, you can use slicers or filters to highlight them.  

Add a legend to your visuals so that the outliers can be identified among the other data. 
Dive deeper into the reasons for outlier’s presence to gain more insights.  
For example, in our case sum of units sold and discounts by country. Why has the sum of units sold in the country been different from others? What are the reasons behind the difference? Was there any inflation or economic perturbation during a specific period in this country? Why, despite discounts, was the sum of units sold not important? What is the specificity that may impact the value of the units sold? 
We can also use a DAX function to add information related to variance.

Clustering Techniques in Power BI

Clustering is used to identify groups of similar objects in datasets with two or more variable quantities. It outputs a segment (cluster) of data that is like each other but dissimilar to the rest of the data.  

The Power BI clustering feature allows you to analyze your semantic model to identify similarities and dissimilarities in the attribute values, and then it separates the data that has similarities into a subset of the data. These subsets of data are referred to as clusters. 

In our example, we look for patterns in our financial data, such as sales overview. We segmented the countries into clusters according to their similarities: Sum of units sold by segment.

Start by adding the scatter chart visualization to the report.
Add the required fields to the visual. In this example: sum of units sold field to the x-axis, the sum of sales Sales field to the y-axis and Segment to the Legend field. The following image shows clusters in the scatter chart, so it is difficult to discern any natural groups. Here we plot sum of units sold and sum of sales by segment. 
 

Time Series Analysis with Power BI 

For as long as we have been recording data, time has been a crucial factor. In time series analysis, time is a significant variable of the data. Times series analysis helps us study our inputs and learn how we progress within it :right_arrow: Dynamic data.

Time series analysis often involves visuals like Gantt charts, project planning, and stock movement semantic models. In Power BI, you can use visuals to view how the data is progressing over time, which in turn allows you to make observations like whether any significant occurrences affected your data. 

Suitable visualizations in Power BI for Time Series analysis: line chart, area chart, or scatter chart because they are particularly useful for representing cumulative data over time and can be customized to highlight specific aspects of the time series. 

Additionally, Microsoft AppSource has an animation custom visual called Play Axis that works like a dynamic slicer and is a compelling way to display time trends and patterns in your data without user interaction. In our example we: 

Add a scatter visual to the report page to show the sales data by product during the months. 


Import the animation custom visual from Appsource to use with the visuals.  
Visualizations pane  :right_arrow: Get more visuals icon :right_arrow: Get more visuals.  
On the Power BI Visuals  window :right_arrow: search Play axis :right_arrow: Add Play Axis (Dynamic Slicer) visual.
 


Select the field Quarter (e.g., Month) that you want to use as the slicer in the Play Axis animation. 
Animation controls become available on the visual. An animation will be displayed such showing in our examples: 

Analyze Feature in Power BI 

The Analyze  feature provides you with additional analysis that is generated by Power BI for a selected data point. This feature is useful to discover the insights provided by PowerBI that you may miss. It may be considered as a starting point for analyzing why your data distribution looks the way that it does. 

Instead of exploring the data manually, you can use the Analyze feature to get fast, automated, insightful analysis of your data. To use the Analyze  feature:  

Click a data point on the visual à hover over the Analyze option to display two further options depending on the data point selected: 

Explain the increase: when your focus is on understanding the reasons behind a change in a specific metric. This is especially relevant when a single data point has changed noticeably, and you want to know why. for exploring reasons behind specific changes in data points 
Find where the distribution is different: when your focus is on comparing how data is distributed across different categories or groups. This is more about understanding differences in patterns or behaviors across subsets of your data, rather than focusing on a single change for analyzing and comparing distributions across categories or groups. In our example where we analyze sum of sales by country:

If you find any of the provided analysis useful, you can add it to your report so that other users can view it. Here, we found that segment analysis is useful, because it demonstrated the sum of sales of government per country. 

What to Explore Next? 

AI and Power BI 

Power BI includes several specialized visuals that provide a considerable interactive experience for report consumers. Often, these specialized visuals are called AI visuals.  

Why?   

Because Power BI uses machine learning (ML) to discover and display insights from data. These visuals provide a simple way to deliver an interactive experience to your report. 

For further reading, the three main AI visuals are: 

Key influencers   

Decomposition tree  

Q&A   

References: 

Benefits-of-data-analytics.  

What is Clustering?.  

How-To-create-Distribution-Chart-Bell-chart-in-Power-BI  

Grouping-and-binning-PowerBI  

PowerBI Service vs Desktop  
 

​Microsoft Tech Community – Latest Blogs –Read More 

I believe assigning phone numbers in Microsoft Teams can waste hours for an organization with multiple ranges and locations. What if you could run a PowerShell routine to find the next available number in a number range and at the same time know how many numbers you have left?😱 Now you can, with Get-TeamsNumbers.ps1. Watch … Continue reading Teams Phone Number Management with Get-TeamsNumbers.ps1 I believe assigning phone numbers in Microsoft Teams can waste hours for an organization with multiple ranges and locations. What if you could run a PowerShell routine to find the next available number in a number range and at the same time know how many numbers you have left?😱 Now you can, with Get-TeamsNumbers.ps1. Watch … Continue reading Teams Phone Number Management with Get-TeamsNumbers.ps1 

Since Copilot got announced, I have been investigating what it means to be Copilot ready. There are three main topics when working towards Copilot ready, and we address all of them in our upcoming conference, https://m365revival.com/ February 15th in Oslo. Today, my team and I got access to Copilot in our production tenant. What I … Continue reading Soo, you got access to Copilot, now what? Here are some best practices Since Copilot got announced, I have been investigating what it means to be Copilot ready. There are three main topics when working towards Copilot ready, and we address all of them in our upcoming conference, https://m365revival.com/ February 15th in Oslo. Today, my team and I got access to Copilot in our production tenant. What I … Continue reading Soo, you got access to Copilot, now what? Here are some best practices 

Digital Wellbeing in Microsoft 365 is about working smart with the tools you have at your disposal. There is a difference between having access to the tools and using them as intended. With the introduction of Microsoft Viva and specifically Viva Insights, we now see where Microsoft is headed. They are now all about using … Continue reading Digital Wellbeing and working smart in Microsoft 365 Digital Wellbeing in Microsoft 365 is about working smart with the tools you have at your disposal. There is a difference between having access to the tools and using them as intended. With the introduction of Microsoft Viva and specifically Viva Insights, we now see where Microsoft is headed. They are now all about using … Continue reading Digital Wellbeing and working smart in Microsoft 365 

Hi All,

I can’t seem to get these Intune policies correct for WHfB (Windows Hello for Business)

I want WHfB active using a pin for a customer. I have a test VM setup and registered with WHfB correctly. When you first power on the machine and login, there is no prompt for a pin, only the M365 password. Once logged in, I can lock, or log off and I am prompted with the PIN login. I restart the VM and I am pack to having to use a password for the initial login.

I have WHfB setup in the following areas

Endpoint security | Account protection (Assigned to All devices and All users)Use Windows Hello for Business (Device) – TrueUse Windows Hello for Business (User) – True (tried without this first)Minimum PIN length – 6Devices | EnrollmentConfigure Windows Hello for Business – EnabledTPM – PreferredMinimum PIN length – 6Allow biometric – YesAllow phone sign-in – YesDevices | Configuration (assigned to All users & All devices)Turn on convenience PIN sign-in – EnabledMinimum PIN Length (User) – 6Use Windows Hello For Business (User) – TrueUse Remote Passport – EnabledAllow Use of Biometrics – True

I know there is quite some double up having this configured at all possible levels. I started with Device enrollment and a configuration profile, and then moved to Account protection.

I’m currently going round in circles trying to work out why the initial login isn’t prompting for a PIN.

(I also built a new VM and it’s doing the same thing). Although, first reboot it worked fine from memory.

Thanks in advance Guru’s

​Hi All, I can’t seem to get these Intune policies correct for WHfB (Windows Hello for Business) I want WHfB active using a pin for a customer. I have a test VM setup and registered with WHfB correctly. When you first power on the machine and login, there is no prompt for a pin, only the M365 password. Once logged in, I can lock, or log off and I am prompted with the PIN login. I restart the VM and I am pack to having to use a password for the initial login.I have WHfB setup in the following areasEndpoint security | Account protection (Assigned to All devices and All users)Use Windows Hello for Business (Device) – TrueUse Windows Hello for Business (User) – True (tried without this first)Minimum PIN length – 6Devices | EnrollmentConfigure Windows Hello for Business – EnabledTPM – PreferredMinimum PIN length – 6Allow biometric – YesAllow phone sign-in – YesDevices | Configuration (assigned to All users & All devices)Turn on convenience PIN sign-in – EnabledMinimum PIN Length (User) – 6Use Windows Hello For Business (User) – TrueUse Remote Passport – EnabledAllow Use of Biometrics – True I know there is quite some double up having this configured at all possible levels. I started with Device enrollment and a configuration profile, and then moved to Account protection.I’m currently going round in circles trying to work out why the initial login isn’t prompting for a PIN.(I also built a new VM and it’s doing the same thing). Although, first reboot it worked fine from memory.Thanks in advance Guru’s  Read More

​

since November 2023 update, I have lost most of Outlook options for customisation.

I am using a Laptop.

I have confirmed that I have an active subscription to Microsoft 365 by going into file etc.

I have had assistance from others and paid a “technician” to no avail ☹

Technician set up an Outlook email address, but it will not work.

when I try to open “outlook” I receive the message below

then when I click next it logs on but only allows me to access my Bigpond email address.

I have nothing in the permission box for the outlook email address  ☹

It is also sending emails that previously came through my in box to the junk folder

I have tried to access the “rule” option but comes up with

Any solutions?????

​since November 2023 update, I have lost most of Outlook options for customisation.I am using a Laptop.I have confirmed that I have an active subscription to Microsoft 365 by going into file etc.I have had assistance from others and paid a “technician” to no avail ☹Technician set up an Outlook email address, but it will not work.when I try to open “outlook” I receive the message below then when I click next it logs on but only allows me to access my Bigpond email address.I have nothing in the permission box for the outlook email address  ☹ It is also sending emails that previously came through my in box to the junk folderI have tried to access the “rule” option but comes up withAny solutions?????  Read More

​

Hi all

I am starting learning sql server 

I installed SQQL server 2019 express on my laptop by following the tutorial here https://www.youtube.com/watch?v=AFY3z4FwRg0&list=PLoyECfvEFOjYH2C2vl2A8yBPrbkVSbj9l&index=1 (from 4:50 to 8:00)

It worked fine until I decided to upgrade to SQL server 2022 Express. The installation was not successful, and I decided to switch back to 2019. But this one is not working either.

When I try to connect I get a message stating ‘Cannot connect to DESKTOP-KEBH091SQLEXPRESS.’ Where DESKTOP-KEBH091 is my laptop.

I uninstalled all sql on my machine and restarted te installation, but the problem persists. I tried 3times with no luck. I am desperate.

Please help

​Hi allI am starting learning sql server I installed SQQL server 2019 express on my laptop by following the tutorial here https://www.youtube.com/watch?v=AFY3z4FwRg0&list=PLoyECfvEFOjYH2C2vl2A8yBPrbkVSbj9l&index=1 (from 4:50 to 8:00)It worked fine until I decided to upgrade to SQL server 2022 Express. The installation was not successful, and I decided to switch back to 2019. But this one is not working either.When I try to connect I get a message stating ‘Cannot connect to DESKTOP-KEBH091SQLEXPRESS.’ Where DESKTOP-KEBH091 is my laptop.I uninstalled all sql on my machine and restarted te installation, but the problem persists. I tried 3times with no luck. I am desperate.Please help  Read More

​

The 2024 Microsoft Work Trend Index Annual Report, AI at Work Is Here. Now Comes the Hard Part, reveals a pivotal shift in how organizations must adapt to remain competitive: AI has moved beyond the horizon and into the everyday workflows of millions. With 75% of global knowledge workers now using AI, the moment has come for businesses to seize their potential. Equipping teams with AI-enabled PCs that drive productivity, spark creativity, and fortify security is the way forward.

AI: The New Standard in the Workplace

AI’s rapid rise in the workplace highlights its transformative power. 79% of business leaders acknowledge its necessity for maintaining a competitive edge, yet 60% admit their organizations lack a clear roadmap for its integration. This gap between recognition and execution presents both a challenge and an opportunity.

Organizations must shift their perspective, from viewing AI as a future enhancement to embracing it as a core component of their strategy and operations. Achieving this shift becomes simpler with hardware that unlocks AI’s full potential. AI-enabled Microsoft Surface devices, designed with advanced productivity, processing, and data protection features, align well with the evolving needs of enterprise environments. They offer the intuitive experiences, future-proof technology, and robust security required for effective AI integration.

Enhancing Productivity with AI-Enabled PCs

The report highlights that AI users already experience significant benefits, with 90% reporting time savings and 85% able to focus on critical tasks. These benefits are amplified when AI is paired with hardware designed to optimize its potential. AI-enabled PCs, like those in the Surface series, provide a seamless, intuitive user experience by integrating advanced AI features directly into the device’s core functions.

Surface devices, equipped with NPUs (Neural Processing Units), offer the performance needed to keep up with modern workflows, ensuring that users can maximize the power of AI in their daily tasks. These PCs redefine productivity by enabling on-device AI processing, which reduces latency and enhances the speed and efficiency of tasks such as live captions, real-time translations, and video processing.

Driving innovation with AI-optimized hardware

As businesses increasingly turn to AI to innovate, the right hardware becomes essential. Within the next five years, 41% of business leaders expect to redesign their processes with AI at the center. Surface devices are built for this future, designed to scale and adapt as AI capabilities evolve.

Surface devices equipped with NPUs allow for the local development and execution of AI models, providing businesses with the agility to build and run those models locally. This can accelerate AI value and enable companies to apply the technology in scenarios where compliance requires stringent data controls.

Securing the AI-driven workplace

Seventy-eight percent of AI users bring their own tools to work—a strong indicator that people see the value in AI. However, this also raises a key question for businesses: wouldn’t it be better if employees used tools that you can oversee, manage, and secure? Surface devices deliver compelling AI experiences so employees will prefer using managed, secured experiences over the alternatives.

Surface devices integrate trusted Microsoft security from the supply chain to hardware, firmware to the security and management ecosystem. They are equipped with features like TPM 2.0, Microsoft Pluton technology, and Windows Hello, offering robust protection against both physical and digital threats. These measures empower businesses to embrace AI securely, ensuring that data remains protected and easily managed across the organization.

Embracing AI to stay competitive

Despite AI’s growing presence in the workplace, there remains a cultural hesitation around its use. Over half of the workforce worries that using AI makes them appear replaceable, yet 66% of employers indicate they would not hire someone without AI skills. This paradox highlights the need for a cultural shift within organizations—a shift that can be signaled by investing in AI-enabled PCs.

Choosing AI-optimized devices like Surface sends a clear message: AI is not something to be feared but embraced. By providing employees with the tools, they need to maximize AI’s potential, businesses redefine productivity and foster a culture of innovation and continuous improvement.

Preparing for the AI-driven future

The 2024 Work Trend Index makes it clear that AI is no longer a future consideration but a present reality. To fully capitalize on the opportunities AI presents, businesses must equip their teams with the right tools. Surface devices offer the processing power, security, and innovation needed to thrive in an AI-driven workplace. By adopting these devices, organizations can ensure they keep pace with technological advancements and lead the charge into a new era of productivity and innovation.

Curious to know more about how AI PCs and your choice of endpoint can support your AI adoption plan? Download our eBook: Drive Business Resilience with AI PCs | Microsoft Surface

Read the 2024 Microsoft Work Trend Index Annual Report: AI at Work Is Here. Now Comes the Hard Part

​Microsoft Tech Community – Latest Blogs –Read More 

Hi,

I implement a base application ( a standard app), now i want to create a customer plugin inherited from the base app,

My goal is to linked between there and implement the new features in the customer plugin without touch the base app.

Thanks 

​Hi,I implement a base application ( a standard app), now i want to create a customer plugin inherited from the base app,My goal is to linked between there and implement the new features in the customer plugin without touch the base app.Thanks   Read More

​