diagnostic data Archives

Winsage

March 11, 2026

Microsoft releases Windows 10 KB5078885 extended security update

Microsoft has released the Windows 10 KB5078885 extended security update, which addresses vulnerabilities identified during the March 2026 Patch Tuesday. This update resolves two zero-day vulnerabilities and a critical issue preventing certain devices from shutting down properly. Users of Windows 10 Enterprise LTSC or those in the ESU program can install it via Settings under Windows Update. The update upgrades Windows 10 to build 19045.7058 and Windows 10 Enterprise LTSC 2021 to build 19044.7058. The update focuses on security enhancements and bug fixes, addressing a total of 79 vulnerabilities, including two actively exploited ones. Key fixes include: - A new warning dialog in Windows System Image Manager for confirming trusted catalog files. - Enhancements to File History for backing up files with specific Chinese and Private Use Area characters. - Stability improvements for specific GPU configurations. - Additional high-confidence device targeting data for Secure Boot certificates. - Adjustments to Chinese fonts for compliance with GB18030-2022A standards. - A fix for Secure Launch-capable PCs with Virtual Secure Mode unable to shut down or hibernate after a previous security update. - Resolution of an issue affecting folder renaming with desktop.ini files in File Explorer. The update also addresses a known issue preventing Windows 10 devices from shutting down or hibernating when System Guard Secure Launch is enabled. Microsoft is deploying new Secure Boot certificates to replace those expiring in June 2026, which are crucial for validating boot components and preventing security risks. There are currently no known issues associated with this update.

Winsage

March 7, 2026

Microsoft’s Secure Boot certificates expire in June 2026, but older PCs may never get the fix

Every Secure Boot-enabled Windows PC relies on cryptographic certificates issued by Microsoft in 2011, embedded in the motherboard's firmware, to ensure a secure boot process. The first of these certificates will expire on June 24, 2026, which will affect the ability to receive future security updates for critical components of the Windows startup process. Microsoft is rolling out replacement certificates through Windows Update, marking a significant security maintenance effort. Secure Boot operates as a chain of trust with certificates stored in the motherboard's UEFI firmware, validating software before the operating system loads. The Platform Key (PK) is at the top of this chain, followed by the Key Exchange Key (KEK) and the Signature Database (DB). The replacement certificates introduced in 2023 restructure certificate management, separating responsibilities among different certificate authorities to enhance the trust model. Not all PCs are affected by the upcoming expiration; newer devices manufactured since 2024 already have the new certificates. Windows 10 users face challenges as support for this version ends in October 2025, and they will not receive the new certificates unless enrolled in Extended Security Updates. Home users should ensure their PCs are set to receive updates automatically, while enterprise environments require coordination for firmware updates before the Windows certificate update.

Winsage

March 6, 2026

Microsoft’s Secure Boot certificates expire in June 2026, but older PCs may never get the fix

Every Secure Boot-enabled Windows PC relies on cryptographic certificates issued by Microsoft in 2011 for boot process integrity. The first of these certificates will expire on June 24, 2026, impacting the ability to receive future security updates. Microsoft is rolling out replacement certificates through Windows Update, requiring collaboration between Microsoft, PC manufacturers, and users. Three critical certificates will expire: the Microsoft Corporation KEK CA 2011 and Microsoft UEFI CA 2011 in June 2026, and the Microsoft Windows Production PCA 2011 in October 2026. The new certificates introduced in 2023 have a restructured functionality to enhance security. Not all PCs are affected; newer devices manufactured since 2024 come with the new certificates. Windows 10 users face challenges as support ends in October 2025, and unsupported devices will not receive updates. Home users should ensure automatic Windows updates and check for firmware updates, while enterprise environments must verify firmware updates before applying certificate updates. The first certificate expiration is on June 27, 2026.

Winsage

February 27, 2026

Is Microsoft really spying on you with Windows telemetry?

Windows 10 was released in 2015 and faced criticism for its telemetry feature, which some viewed as a surveillance tool. In 2017, the Dutch Data Protection Authority found Microsoft's telemetry settings non-compliant with local privacy laws, leading to changes by Microsoft. Telemetry, termed diagnostic data by Microsoft, is essential for device reliability and security, with a baseline level of data collection set to "Required." Users can opt to limit data collection to this level. The Optional category of diagnostic data may include device settings and browsing history, raising privacy concerns. Microsoft introduced the Diagnostic Data Viewer in 2018 to enhance transparency, allowing users to inspect the telemetry data sent to them. As of now, Microsoft has over a billion monthly active Windows 11 users.

Winsage

February 21, 2026

We’re not the only ones saying it: Windows 11 desperately needs a single privacy toggle

The process of enhancing privacy on Windows 11 involves navigating a complex array of settings aimed at limiting data collection by Microsoft. During the out-of-box experience, users encounter a privacy page that offers choices regarding diagnostics, tailored experiences, advertising IDs, and location services, but the actual privacy controls are fragmented and often ineffective. Microsoft's integration of services like OneDrive and its backup system complicates privacy management, and while users can adjust diagnostic data settings to reduce telemetry, complete elimination of data collection is not possible across most editions. This complexity leaves users uncertain about the extent of their data exposure.

Winsage

February 19, 2026

14 simple Windows 11 tweaks that instantly boost your privacy

Windows 11 engages in various background activities that may affect user privacy. Users can enhance their privacy by adjusting settings beyond the default configurations. Key modifications include: 1. Disable Device Encryption by navigating to Settings > Privacy & security > Device Encryption and toggling off the switch. 2. Disable Find My Device by going to Settings > Privacy & security > Find my device and turning off the toggle switch. 3. Minimize telemetry by accessing Settings > Privacy & security > Diagnostic & feedback and disabling the Send optional diagnostic data and Tailored experiences options. 4. Disable Activity Tracking in Settings > Privacy & security > General by toggling off personalized ads and app tracking options. 5. Disable Location Tracking by going to Settings > Privacy & security > Location and toggling off Location Services. 6. Disable Search Highlights in Settings > Privacy & security > Search by turning off the Show search highlights toggle switch. 7. Disable Cloud Search by navigating to Settings > Privacy & security > Search and turning off Microsoft account and Work or School account toggle switches. 8. Switch to a Local Account by accessing Settings > Accounts > Your Info and selecting Sign in a local account instead. 9. Uninstall OneDrive via Settings > Apps > Installed apps. 10. Uninstall Copilot through Settings > Apps > Installed apps. 11. Uninstall Windows Recall by searching for Turn Windows features on or off and clearing the Recall option. 12. Disable Windows Backup in Settings > Accounts > Windows Backup by turning off Remember my apps and Remember my preferences. 13. Disable Windows Update by launching the Local Group Policy Editor and disabling the Configure Automatic Updates policy. 14. Limit Microsoft Edge Telemetry by accessing Microsoft Edge Settings > Privacy, search, and services and turning off relevant telemetry options. Creating a full backup of the computer before making these changes is recommended.

Winsage

February 11, 2026

Refreshing the root of trust: industry collaboration on Secure Boot certificate updates

Secure Boot is a security feature in Windows and Windows Server that protects devices from untrusted software at startup. It has been in operation since 2011 and relies on certificates embedded in a PC’s firmware. The original Secure Boot certificates will begin to expire in late June 2026. New certificates are being rolled out through regular Windows updates for supported devices, with OEMs preparing new devices with updated certificates since 2024. If devices do not receive the new certificates before the expiration of the old ones, they will continue to function but will enter a degraded security state, limiting future protections. Users generally do not need to take action, as updates will be installed automatically, but some specialized systems may require separate firmware updates. Organizations can monitor the update status through the Windows Security App and should ensure devices are running the latest updates and firmware. Support is available for individuals and organizations facing issues during the update process.

Winsage

January 31, 2026

I Switched From Windows 11 to Linux Mint. Here Are 7 Things It Does Way Better

Linux Mint is a free operating system that can be downloaded without any licensing fees, in contrast to Windows 11, which costs between 9 for the Home Edition and 9 for the Pro Edition. It has minimal hardware requirements, running efficiently on traditional AMD- or Intel-based systems, with a 3GB installer and support for devices with as little as 2GB of RAM. Linux Mint features a cleaner and more organized desktop interface compared to Windows 11, with three different editions: Cinnamon, MATE, and Xfce, catering to various user preferences. Users can test Linux Mint risk-free via live USB drives, and it operates without AI features, unlike Windows 11. It collects minimal diagnostic data, prioritizing user privacy. However, Linux Mint does not support major software like Adobe Creative Cloud or Microsoft 365 desktop applications, and some hardware drivers may be lacking. Users may need some technical knowledge for optimal use.

Winsage

January 31, 2026

Windows security breaks ROG Xbox Ally handheld game consoles

Microsoft's Windows Smart App Control feature has flagged essential software components of the Asus ROG Xbox Ally gaming handheld as untrustworthy following a recent update to Windows 11. This issue affects the Armoury Crate CE software, which manages the hardware functionality of the device, leading to difficulties in launching games outside of the Xbox app and adjusting performance settings. The problem may stem from inadequate configuration of certificates by Asus or the need for an update to Microsoft's trusted application database. Many Windows 11 PCs do not have Smart App Control activated, and users can disable it through SETTINGS > APP AND BROWSER CONTROLS > SMART APP CONTROL SETTINGS. If users choose to disable it, they may later need to reset or reinstall Windows to reactivate Smart App Control. ROG Xbox Ally owners are currently faced with the choice of waiting for a fix or disabling the security feature.

Winsage

January 30, 2026

I got so mad at Windows I downloaded this free utility app to disable all its spyware

The author experienced two Windows reinstallations on a secondary PC due to issues with a lost sign-in PIN and a Microsoft account login loop. This led to a realization about the invasive nature of Windows and consideration of switching to Linux. Instead, the author used a utility called ShutUp10++ to manage privacy settings and disable unwanted data collection features. Before using ShutUp10++, it is crucial to create a system restore point to safeguard against potential issues. ShutUp10++ consolidates various privacy settings into a user-friendly interface, categorizing options and allowing users to make informed decisions. Users can choose to apply changes to their profile or the entire PC and should export their settings to prevent Windows updates from reverting them.