critical security updates Archives

Winsage

June 16, 2025

Will your old laptop still get security updates after this year? Check this chart

The tech community is dissatisfied with Microsoft's compatibility requirements for Windows 11, which have made some PCs from six or seven years ago obsolete and ineligible for security updates. Apple's update policy for MacOS is similarly restrictive, with free security updates provided only for the three most recent versions. The upcoming MacOS 26 Tahoe will lead to MacOS 13 Ventura no longer receiving updates, leaving older Macs unsupported due to hardware compatibility issues. Macs from 2017 or earlier will not upgrade to MacOS 14 Sonoma. Users can check compatibility through the "About This Mac" option. For Windows PCs, compatibility with Windows 11 generally requires a CPU from 2019 or later, with Microsoft's PC Health Check app available to identify issues. Windows 10 users can purchase security updates for up to three years after the end of support in October 2025, unlike Mac users. Both platforms typically provide security updates for eight to ten years after release.

Winsage

June 11, 2025

Upgrading Windows 10 to 11: Here’s everything you need to know

Microsoft is offering a free upgrade from Windows 10 to Windows 11 for eligible devices that meet the minimum system requirements and use the appropriate upgrade tools. Official support for Windows 10 will end on October 14, 2025, after which Microsoft will stop providing free security updates, technical support, and bug fixes. Users can obtain a paid Extended Security Updates (ESU) program for an additional year of critical security updates. Windows 11 requires specific hardware prerequisites, including TPM 2.0 and compatible processors. Users can check their PC's eligibility for the update using the free PC Integrity Checker app. To upgrade, users can download the Windows 11 Installation Wizard or use the Rufus tool to create a bootable USB stick for installation. Backing up data before upgrading is recommended.

Winsage

June 11, 2025

macOS 26 Tahoe Is the End of the Road for Intel Macs

Apple announced that macOS 26, also known as macOS Tahoe 26, will be the last version to support Intel-based Macs. The final Mac with an Intel processor was the previous-generation Mac Pro, succeeded by the M2 Ultra-powered Mac Pro in 2023. The transition to Apple Silicon began with the M1 series in 2020 and continued with the M2, M3, and M4 series. Critical security updates for Intel-based Macs will continue for a limited time but will eventually cease. macOS 27 will only support Apple Silicon Macs with M1 and later processors. Not all Macs running the current version, Sequoia, will be eligible for the Tahoe update; only those with Intel's ninth-generation Coffee Lake and Cascade Lake-based Xeon-W processors can run Tahoe. This includes specific models like the Mac Pro (2019) and MacBook Pro (16-inch, 2019). Many Intel Macs, including various 2018 and older models, will not be able to upgrade to Tahoe. Apple's transition from Intel began in 2005, moving from PowerPC processors.

Winsage

June 2, 2025

Microsoft’s Bad News—500 Million Windows Users Must Now Decide

A recent advisory warns Windows users about vulnerabilities, emphasizing the need to upgrade from Windows 10 to Windows 11 due to the impending cessation of support for Windows 10 in October. Asus has highlighted that users of Windows 10 or older systems will soon lose regular updates and support. Currently, around 750 million users are on Windows 10, with 500 million potentially eligible for a free upgrade to Windows 11. Recent market data shows Windows 10's user share has increased from 41% in April to over 43% in May, while Windows 11 has declined by 3.5%. The urgency for upgrades is heightened as the deadline for Windows 10 support approaches, raising concerns about a potential cybersecurity crisis.

AppWizard

May 28, 2025

Google’s latest fraud advisory update keeps users keen on emerging threats

Google has released an updated fraud and scam advisory in anticipation of its inaugural Scams Summit, highlighting prevalent scam tactics such as customer support, package tracking, and toll road scams. The company has enhanced its Phone and Messages app with advanced scam protection features for Android users, integrating Gemini technology to detect and block potential scams. Google’s updated advisory also addresses risks from malvertising and counterfeit travel websites, while Chrome has received an update featuring AI-driven warnings for potential scams. Additionally, new scam protection features for calls and texts have been introduced, focusing on blocking actions when potential call scams are detected and identifying various scams related to toll roads, billing, cryptocurrency, and financial impersonation.

Winsage

May 16, 2025

Windows 10 KB5058379 update triggering BitLocker Recovery after install

The Windows 10 KB5058379 cumulative update, released on May 13, 2025, has caused unexpected BitLocker recovery prompts for some users after installation and reboot. Reports indicate that affected devices, including those from Lenovo, Dell, and HP, automatically boot into the Windows Recovery Environment and display the BitLocker recovery screen. Users have experienced various issues, such as needing BitLocker keys to start up or devices refusing to start. A workaround involves disabling Intel Trusted Execution Technology (TXT) in the BIOS. Microsoft has not publicly acknowledged the issue but support representatives are aware and working on a resolution. Microsoft has provided steps to resolve the issue, including disabling Secure Boot and virtualization technologies, checking Microsoft Defender System Guard Firmware Protection status, and disabling firmware protection via Group Policy or Registry Editor.

Winsage

May 15, 2025

Windows Remote Desktop Gateway Vulnerability Let Attackers Trigger Dos Condition

The Microsoft Security Response Center (MSRC) has released critical security updates to address a significant vulnerability in the Windows Remote Desktop Gateway service, identified as CVE-2025-26677, which allows unauthorized attackers to cause denial of service (DoS) conditions. This vulnerability is rated as "High" severity with a CVSS score of 7.5 and affects multiple versions of Windows Server, including 2016, 2019, 2022, and 2025. Microsoft has provided security updates (KB5058383, KB5058392, KB5058385, and KB5058411) to rectify the issue. Additionally, another vulnerability, CVE-2025-29831, has been identified that could enable remote code execution (RCE) through a Use After Free weakness, also rated with a CVSS score of 7.5. This vulnerability requires user interaction, specifically an admin user to stop or restart the service, and affects Windows Server versions 2008 R2, 2012/R2, 2016, 2019, 2022, and 2025. Organizations are advised to prioritize patching both vulnerabilities and to review network configurations to limit exposure of Remote Desktop Gateway services. The vulnerabilities were discovered by security researchers from Kunlun Lab.

Winsage

April 24, 2025

Windows 11’s crucial new ‘inetpub’ folder is laughably easy to hack

A new folder named "inetpub" appeared on many Windows PCs after an April update, initially thought to be a glitch. Microsoft later stated that this folder was introduced to enhance Windows security by addressing the CVE-2025-21204 vulnerability. However, security researcher Kevin Beaumont revealed that the inetpub folder could allow attackers to bypass critical security updates. Beaumont proposed creating a junction point in the C: directory to prevent the inetpub folder's creation, which would also block the installation of the April update and subsequent security updates, leaving PCs vulnerable. This situation could lead to error messages and failed update rollbacks, with attackers able to exploit these issues without elevated privileges. Beaumont has informed Microsoft about the problem, but a response has not yet been received.

Winsage

April 10, 2025

Microsoft’s Free Upgrade Offer For 500 Million Windows Users

Microsoft has announced that Windows 10 will reach its end-of-life date on October 14, leaving approximately 750 million users vulnerable without critical security updates unless they opt for paid support. Currently, 53% of users, or around 240 million, are still on Windows 10 and may lack the hardware for a free upgrade to Windows 11. A critical zero-day vulnerability, CVE-2025-29824, poses risks to Windows 10 users, and Microsoft has indicated that outdated versions will not receive necessary security patches. Recent updates to Windows 10 have caused issues, including the removal of certain features and bugs affecting Outlook Calendar and Office 2016 applications.

Winsage

March 24, 2025

Windows 10 Support is Ending; Here’s What You Need to Do Next

Microsoft will end support for Windows 10 on October 14, 2025. After this date, Windows 10 PCs will still function but will not receive security updates or bug fixes, leading to potential vulnerabilities and compatibility issues. Microsoft is encouraging users to upgrade to Windows 11, which currently has a market share of 38%. Users can maintain security by keeping antivirus software and browsers updated, and Google Chrome will continue to receive updates on Windows 10. Microsoft offers an Extended Security Update (ESU) program for Windows 10, providing critical updates for a fee, with the first year starting on November 11, 2025, and ending on October 13, 2026. Consumers will need to upgrade to Windows 11 by October 2026 unless further extensions are announced. There are methods to bypass Windows 11's hardware requirements, such as using tools like Rufus or Registry workarounds. Alternatives to upgrading include Chrome OS Flex and Linux Mint, both of which offer user-friendly environments for continued computing tasks.