administrators Archives

AppWizard

April 13, 2026

Microsoft to shut down Outlook Lite app on Android by May 25

Microsoft has announced the retirement of its Outlook Lite app for Android, effective May 25, 2026. After this date, Outlook Lite will no longer provide access to mailboxes, and users will need to transition to the Outlook Mobile app to access emails, calendars, and attachments. New downloads of Outlook Lite have been halted since October 2025. Microsoft is consolidating its mobile strategy around the Outlook Mobile app to enhance compliance and integration with Microsoft 365 services. Users are advised to upgrade to Outlook Mobile through the Play Store or manually download it, ensuring they sign in with the same account to restore access to their data. IT administrators do not need to take special actions but should update internal documentation to guide employees toward Outlook Mobile.

Winsage

April 13, 2026

Microsoft tightens Windows 11 driver security rules

Microsoft will enforce a new mandate requiring all hardware drivers to comply with the Windows Hardware Compatibility Program (WHCP) standards starting April 1, 2026. This change will eliminate the "cross-signing" system that allowed older drivers with expired certificates to remain trusted. The enforcement of WHCP certification will apply to various versions of Windows 11 and Windows Server 2025. Users may face blocks when installing older drivers on new systems, but existing installations will not be immediately disrupted. Microsoft plans to introduce an "allow list" for vetted legacy drivers to ensure essential equipment remains operational during the transition. The initial rollout will occur in "evaluation mode," allowing Microsoft to monitor driver behavior without blocking software. For corporate environments, Microsoft offers "Application Control for Business" to allow specific software while maintaining security measures.

Winsage

April 8, 2026

Microsoft Rolls Out New Defender Update for Windows 11, 10, and Server Images

Microsoft released a security intelligence update for Microsoft Defender Antivirus on April 7, 2026, enhancing protection for Windows 11, Windows 10, and Windows Server. The update introduces refined threat detection capabilities to combat malware and zero-day attacks, utilizing advanced detection logic and cloud-based protection. The security intelligence version is 1.447.209.0, engine version is 1.1.26020.3, and platform version is 4.18.26020.6. Updates are automatically delivered via Windows Update, but can also be manually initiated or deployed using standalone installer packages. The update supports legacy platforms, including Windows 7 and Windows 8.1, provided they have SHA-2 code signing support enabled. Additionally, updates to the Network Inspection System (NIS) are available for certain environments.

Winsage

April 7, 2026

How to prevent updates on Windows 10 desktops

Organizations may pause or block Windows updates to maintain system stability and compatibility, particularly to avoid disruptions with legacy applications or customized environments, manage bandwidth consumption, and protect fortified Windows configurations. IT departments can disable updates using several methods: 1. Centralized patch management tools like WSUS or Microsoft Intune allow control over update deployment. 2. Configuring Group Policy settings can notify users of available updates without automatic installation. 3. Disabling the Windows Update service halts all future updates until re-enabled. 4. Setting a connection as metered can reduce automatic updates, though some critical updates may still download. In Windows 11, similar strategies apply, but organizations must consider the risks of blocking updates due to the end of regular security updates for Windows 10 and align their strategies with Microsoft's evolving update delivery methods.

Winsage

April 7, 2026

Disgruntled researcher drops “BlueHammer” Windows zero-day LPE exploit

A security researcher, known as "Nightmare-Eclipse," released proof-of-concept exploit code for a Windows zero-day vulnerability called "BlueHammer," which allows local privilege escalation (LPE). The exploit has been validated by another researcher, Will Dormann, who confirmed it can escalate privileges on Windows systems, allowing non-administrative users to gain SYSTEM-level access. The exploit's reliability varies across different Windows versions, with inconsistent success rates reported. Microsoft has not acknowledged the vulnerability or provided a patch, raising concerns about potential exploitation by threat actors. Users are advised to restrict local user access, monitor for suspicious activity, and enable advanced endpoint protection.

Winsage

April 7, 2026

Microsoft has removed the Support and Recovery Assistant from Windows

Microsoft has phased out the Support and Recovery Assistant (SaRA) and replaced it with a command line version of the Get Help service. This new tool retains the core functionalities of SaRA while offering a console interface. The transition aims to unify Microsoft's support offerings and enhance user experience. The revamped Get Help tool continues to diagnose issues related to systems, network services, and Microsoft products, including Office, in a more streamlined manner. The command line approach may present a learning curve for casual users but offers potential benefits for advanced users and system administrators by simplifying support processes and enhancing automation capabilities. Microsoft is moving away from standalone utilities in favor of integrated solutions.

Winsage

April 7, 2026

How to Reset Folder Permissions in Windows 11: 5 Proven Methods That Actually Work

Folder permissions in Windows 11 control access to files, determining who can read, modify, or delete them. Common issues arise from drive or file migration, Windows updates, malware, or user errors. Symptoms include "Access Denied" messages and ownership displayed as "unknown." Methods to resolve folder permission issues include: 1. Security Tab: Reset permissions through the Security tab by modifying access levels and ensuring proper inheritance. 2. Take Ownership: Claim ownership of a folder if the current owner is no longer valid, then reset permissions. 3. Command Prompt: Use commands like PLACEHOLDERfa5c045a85bc6cf0 and PLACEHOLDER14a87b7576573f58 to reset permissions quickly and efficiently. 4. PowerShell: Utilize PowerShell for advanced permission resets, allowing for conditional logic. 5. Windows Reset: As a last resort, reset Windows to restore default permissions while keeping personal files. To prevent future issues, back up permissions before changes, understand NTFS vs. share permissions, and avoid altering system folders. If problems persist, ensure commands are run as an administrator, check ownership settings, and verify that Group Policy or sync tools are not overriding changes.

Winsage

April 5, 2026

Microsoft Ships Emergency Windows 11 Fix for Broken Patch

On March 31, Microsoft released emergency update KB5086672 in response to issues caused by the previous preview patch KB5079391, which left many Windows 11 devices in a loop with error code 0x80073712, blocking access to March security fixes. Microsoft withdrew KB5079391, which was launched on March 26, and replaced it with KB5086672, a cumulative update that includes all fixes from March 2026. KB5086672 supersedes previous updates, including KB5079473, KB5085516, and KB5079391. Users with the "Get the latest updates as soon as they’re available" setting will receive KB5086672 automatically, while others can manually check for updates or download it from the Microsoft Update Catalog. Microsoft has been issuing multiple emergency updates recently, raising concerns about the quality of its update pipeline, with a history of emergency patches for various issues affecting Windows 10, Windows 11, and Windows Server. The issues from KB5079391 may resurface in the upcoming April cumulative update.

Winsage

April 3, 2026

Man admits to locking thousands of Windows devices in extortion plot

A former core infrastructure engineer, Daniel Rhyne, admitted to locking Windows administrators out of 254 servers during an extortion attempt against his employer in Somerset County, New Jersey. Rhyne accessed the company's network without authorization from November 9 to November 25, deleting network admin accounts and altering passwords for 13 domain admin accounts and 301 domain user accounts to "TheFr0zenCrew!". He also scheduled tasks to modify passwords for two local admin accounts affecting 3,284 workstations and planned to shut down random servers and workstations in December 2023. On November 25, he sent a ransom email demanding 20 bitcoin, claiming IT administrators were locked out and server backups erased. Forensic investigators found he used a concealed virtual machine to plan his actions. Rhyne was arrested on August 27 and faces charges related to hacking and extortion, with a potential maximum sentence of 15 years in prison.

Winsage

April 3, 2026

New out-of-band Windows 11 update fixes March’s installation errors – how to get it

Microsoft faced backlash due to the March non-security preview update (KB5079391) for Windows 11, which caused installation errors for many users. In response, Microsoft paused the initial update and released an out-of-band update (KB5086672) on March 31, 2026, to address these issues. The new update includes all enhancements from the previous update and fixes the installation problems. Users set to receive preview updates will automatically download KB5086672, while others can manually check for it in the Windows Update settings. Users can also manage their preferences for optional preview updates through the Windows Update screen.