business customers Archives

Winsage

April 16, 2026

Microsoft April Update Forces BitLocker Recovery on Servers

A recent Microsoft security update, April 2026 KB5082063, has caused issues for administrators of Windows Server 2025 and Windows 11 systems, with many devices entering BitLocker recovery mode after reboot, requiring a 48-digit recovery key. This issue primarily affects enterprise-managed systems with specific TPM Group Policy settings involving PCR7 validation. Similar problems have been reported with updates KB5083769 and KB5082052 on Windows 11. The issue arises from five conditions: BitLocker must be enabled on the OS drive, the Group Policy must include PCR7, the msinfo32.exe tool must show Secure Boot State PCR7 Binding as “Not Possible,” the Windows UEFI CA 2023 certificate must be in the Secure Boot Signature Database, and the device must not be using the 2023-signed Windows Boot Manager. Microsoft suggests two workarounds: removing the TPM validation Group Policy before the update and re-enabling BitLocker, or applying a Known Issue Rollback (KIR) before installation. Skipping the April updates is not advisable due to the addressing of 167 vulnerabilities, including two zero-days. BitLocker recovery issues following updates have been recurring since 2022, with similar incidents reported in August 2022, August 2024, and May 2025, indicating ongoing challenges with Secure Boot certificates and TPM validation bindings in enterprise environments.

Winsage

February 11, 2026

Something Happened ⭐

Microsoft's relationship with Windows has been challenging since the Windows 8 era, particularly under CEO Satya Nadella. The launch of Windows 11 faced criticism, leading to expectations of further decline. However, Microsoft has recently shown optimism about Windows 11. Despite a shift in focus towards cloud computing and AI, Windows continues to generate significant revenue, primarily from Fortune 500 companies. The user community has diminished, with many remaining users relying on Windows for professional tasks. Microsoft's neglect of Windows has left loyal supporters feeling abandoned. Antitrust scrutiny is returning, particularly regarding cloud computing practices. In August 2025, Pavan Davuluri was appointed president of the Windows + Devices division, leading to a reorganization aimed at integrating Windows client and server development. Recent initiatives indicate a renewed focus on quality and security, with efforts to address user concerns and improve functionality.

Winsage

December 15, 2025

Still running Windows 10? Here’s why that’s a bad idea

Hundreds of millions of computers are still using Windows 10, despite it reaching its end-of-support deadline. An Extended Security Updates (ESU) subscription is available for free until October 2026, providing updates to help protect against security threats. By early 2021, around 100 million PCs were still running Windows 7, which had ceased receiving updates in January 2020, making them vulnerable to cyberattacks from groups like Digital Shadows, LockBit, Conti, and Vice Society. Notable incidents include the PrintNightmare flaw in July 2021, which led Microsoft to issue a patch for Windows 7, and the WannaCry attack in 2017, which targeted Windows XP machines. Microsoft releases monthly security fixes, and vulnerabilities like CVE-2025-62215, identified in November 2025, have been categorized as "Exploitation Detected." While current vulnerabilities require local access, history suggests that remote attacks may soon occur, posing severe risks to unpatched systems.

Winsage

November 18, 2025

Microsoft: Windows 10 KB5072653 OOB update fixes ESU install errors

Microsoft released an emergency out-of-band update, KB5072653, on November 17, 2025, to address installation issues related to the November extended security updates for Windows 10. This update specifically targets the error code 0x800f0922 that prevented users from successfully installing the ESU update. To install this update, devices must be running Windows 10 version 22H2 and have the October 2025 KB5066791 cumulative update installed. Users can check for updates via Windows Update, where KB5072653 will be included. Microsoft plans to release a new Scan Cab with updated metadata to improve compliance update checks for organizations using WSUS and SCCM.

Winsage

November 17, 2025

You can still get free Windows 10 security patches – here’s how until October 2026

This month's Windows updates will roll out automatically on Patch Tuesday, November 11. Official support for Windows 10 has concluded, meaning PCs running this operating system with default settings will no longer receive essential monthly security updates from Microsoft. Microsoft has introduced options for users to continue receiving critical security updates until October 2026. The Extended Security Updates (ESU) for Windows 10 consumer PCs are available for free enrollment, particularly for those who do not qualify for a free Windows 11 upgrade. ESU coverage begins immediately and extends through October 13, 2026, for personal devices. Users must sign in with a Microsoft account to activate the subscription, which can be applied to up to ten PCs. The ESU subscription is available for personal Windows 10 PCs running version 22H2, excluding Enterprise and Education editions. Users in Europe qualify for free ESU subscriptions without needing a Microsoft account. Enrollment can be initiated through the Settings menu under Windows Update. Enterprise customers are not eligible for free ESU options and must pay a fee starting at per device per year. If the ESU offer does not appear, users should ensure all requirements are met, including the installation of the latest updates for Windows 10, version 22H2. Users should be cautious of the default 5GB storage limit on OneDrive when syncing settings to the cloud.

Winsage

November 11, 2025

Microsoft releases KB5068781 — The first Windows 10 extended security update

Microsoft has released the KB5068781 update, which is the first extended security update for Windows 10 since the operating system reached its end of support last month. This update follows the final cumulative update on October 14, which ended bug fixes and free security updates for Windows 10. Extended security updates (ESU) are available for consumers and business customers for up to three years, depending on the account type. Consumers can enroll in the ESU program through payment, Microsoft reward points, or Windows Backup synchronization. In the European Economic Area, additional options include free access with a Microsoft account or payment for a local account. Business customers can utilize the ESU program for three years at a total cost of 0 per device. A bug has affected some devices' enrollment in the ESU program, prompting Microsoft to issue an emergency fix. Users can install the update via Settings and Windows Update. The update is mandatory and will automatically install, requiring a device restart. After installation, Windows 10 ESU will be upgraded to build 19045.6575, and Windows 10 Enterprise LTSC 2021 will be updated to build 19044.6575. The update primarily addresses a bug that incorrectly indicated Windows 10 LTSC devices had reached their end of support. It also includes security updates that fix 63 vulnerabilities, including one actively exploited elevation-of-privilege vulnerability, with no known issues reported.

Winsage

October 15, 2025

Last Windows 10 Patch Tuesday Fixes Six Zero Days

Microsoft has released security updates for 172 vulnerabilities in October, including six zero-day vulnerabilities. Three of these zero-days are actively exploited: 1. CVE-2025-59230: A local elevation of privilege (EoP) vulnerability in the Windows Remote Access Connection Manager that requires no user interaction. 2. CVE-2025-24990: An EoP vulnerability linked to the Agere Modem driver (ltmdm64.sys), which Microsoft has decided to remove instead of patching due to its legacy nature and associated risks. 3. CVE-2025-47827: A secure boot bypass vulnerability affecting IGEL OS, with a proof of concept available since May, allowing potential kernel-level rootkit deployment. Additionally, three publicly disclosed zero-days remain unexploited: - CVE-2025-0033: A critical vulnerability in AMD EPYC processors using Secure Encrypted Virtualization – Secure Nested Paging (SEV-SNP), with no patch available. - CVE-2025-24052: An EoP vulnerability in the Agere Modem driver, similar to CVE-2025-24990. - CVE-2025-2884: An out-of-bounds read vulnerability in TCG TPM2.0 that could lead to information disclosure or denial of service. This month is the last Patch Tuesday for Windows 10 users to receive free updates, after which enrollment in Microsoft’s Extended Security Updates (ESU) scheme will be necessary for continued support.

Winsage

October 9, 2025

Millions of business PCs still on Windows 10 as D-Day nears

As of October 14, Microsoft will issue its final updates and security fixes for Windows 10, prompting business customers to consider extended security updates at a cost that starts at for the first year, escalating to 0 in the second year and 0 in the third. There are approximately 1.4 billion Windows devices globally, with around 550 million used in corporate environments, and nearly half of these are unlikely to meet the end-of-life deadline for upgrading to Windows 11. Currently, 47 to 50 percent of commercial PCs are on Windows 11, with adoption rates nearing 60 percent in the U.S. and 65 percent in the EMEA region. About 20 percent of machines failing to upgrade do not meet Microsoft's hardware requirements. Businesses are prioritizing other budgetary concerns over PC replacements, and the rising average selling prices for PCs have contributed to sluggish sales. Omdia projects a compound annual growth rate of 1.1 percent for the global PC market through 2029. A campaign group has urged Microsoft to extend the life of Windows 10 for businesses, although consumers in the European Economic Area received a temporary reprieve.

Winsage

September 26, 2025

Microsoft Windows 10 support to end very soon: Private users in certain regions can secure one year of free ESU security updates

Microsoft has updated its Extended Security Updates (ESU) program for users in the European Economic Area (EEA), confirmed by Microsoft Germany, allowing access to essential updates until October 13, 2026. EEA users can choose between two options for receiving ESU updates: 1. Free option: Users must sign in to their PC using a Microsoft account (MSA) and remain signed in to receive free security updates for one year, expiring on October 13, 2026. If the MSA is inactive for 60 days, updates will stop but can be reactivated by signing in again. The previous requirement to use the Windows Backup app or redeem Microsoft Rewards points has been removed. 2. One-time payment: Users must initially sign in with a Microsoft account and pay a one-time fee plus taxes to register for the ESU program. After registration, ongoing sign-in is not required. For users outside the EEA, the original ESU options remain, which include free updates via Windows Backup or Microsoft Rewards, or a one-time payment for registration. Business customers have different terms, with ESU available at an annual rate per device and renewals allowed for up to three years. Windows 10 users on virtual machines will receive complimentary ESU access without registration. The ESU program will only address critical and important security vulnerabilities from October 15, 2025, to October 13, 2026, without introducing new features or non-security updates. Microsoft encourages users to upgrade to Windows 11, while Microsoft 365 applications will receive security updates on Windows 10 until October 10, 2028.

Winsage

September 17, 2025

Microsoft rolls out Copilot Chat to Microsoft 365 Office apps

Microsoft is introducing Copilot Chat to its applications, including Word, Excel, PowerPoint, Outlook, and OneNote, for paying Microsoft 365 business customers. Copilot Chat is an AI-driven chat solution that provides web-based insights, unlike its predecessor, which accessed organizational content. It is available at no additional cost for users with Entra accounts holding specific Microsoft 365 licenses. Users can access Copilot Chat in a side pane, allowing for seamless interaction while working on documents. A Microsoft 365 Copilot license enables access to all work data, enhancing the functionality of Copilot Chat. Microsoft plans to automatically install the Microsoft 365 Copilot app on Windows devices outside the EEA region starting next month, with IT administrators able to opt out. Additionally, Microsoft will integrate Copilot agents into the Edge sidebar in late September 2025.