NewApp Digest
search bot

disruptions

Microsoft Windows Дефендер тизимидаги хавфли заифликларни бартараф этди
Winsage
May 23, 2026

Microsoft Windows Дефендер тизимидаги хавфли заифликларни бартараф этди

Microsoft has identified two significant vulnerabilities in Windows Defender, specifically related to the Malware Protection Engine, which could allow denial-of-service attacks. These vulnerabilities could destabilize the security mechanism of Windows. Microsoft has released patches in versions 1.1.26040.8 and 4.18.26040.7 of the Malware Protection Engine to address these issues. Users with automatic updates enabled will receive these patches without further action, but it is recommended that users manually check for updates in the Windows Security settings. There is currently no evidence that these vulnerabilities have been exploited in real-world scenarios.
AI Data Platform Modernization in Financial Services | Microsoft Azure PostgreSQL | The Microsoft Cloud Blog
Tech Optimizer
May 22, 2026

AI Data Platform Modernization in Financial Services | Microsoft Azure PostgreSQL | The Microsoft Cloud Blog

Financial service institutions are increasingly exploring AI applications to alleviate operational burdens and gain a competitive edge, but face challenges with legacy data infrastructures that may not meet modern demands. The need for continuous availability and compliance is critical, as even brief downtime can have catastrophic consequences. Aging databases struggle with high-volume transactions and real-time analytics, prompting a focus on predictive maintenance and infrastructure automation. Microsoft Azure's PostgreSQL managed services, including Azure Database for PostgreSQL, address these challenges by providing flexible performance scaling and ensuring high availability. The service can trigger automatic failover within 60 to 120 seconds during outages, guaranteeing up to a 99.99% availability SLA. It supports read replicas for offloading analytics without impacting primary database performance and offers layered security controls, including encryption at rest and network isolation. Azure Database for PostgreSQL simplifies compliance with standards such as PCI DSS and SOC by enabling centralized identity and access management through Microsoft Entra ID authentication. It integrates seamlessly with the Microsoft ecosystem, allowing organizations to connect data to analytics and AI services without complex ETL processes. BNY Mellon successfully modernized its data platform by migrating to Azure Database for PostgreSQL in nine months, achieving improved resilience and allowing engineering teams to focus on innovation. The platform supports high availability, backup capabilities, and extensibility, empowering financial institutions to remain innovative in the era of AI.
Microsoft Changes ‘Most Windows Devices’ In June—Update Yours Now
Winsage
May 18, 2026

Microsoft Changes ‘Most Windows Devices’ In June—Update Yours Now

Microsoft has alerted users that Secure Boot certificates will begin to expire in June, affecting most Windows devices. Users must update these certificates to avoid disruptions, as failing to install the latest Windows update could prevent devices from booting securely. A "one-time restart" will be required after the update to load new certificates. If the update is not installed by June 1, users may see a red stop icon in the Windows Security app. The update issued on May 12 was modified on May 15 to warn that it might fail to install. Microsoft indicates that most users will need to restart their PCs, although this may revert the update. The latest updates will expand the number of devices eligible for new Secure Boot certificates, but users are uncertain about how many PCs will be affected due to a phased rollout approach.
Windows Update will soon roll back problematic drivers automatically
Winsage
May 15, 2026

Windows Update will soon roll back problematic drivers automatically

Microsoft has introduced a feature called Cloud-Initiated Driver Recovery (CIDR) for Windows 11, which allows the automatic rollback of problematic drivers without user intervention. This feature aims to restore system stability by reverting to a previously verified, stable driver directly from the Hardware Dev Center when a driver update causes issues. CIDR will begin a gradual rollout starting in September. Additionally, Microsoft is enhancing user control over update management, allowing users to pause or skip updates and manage restarts without immediate installation. The company also launched the Driver Quality Initiative (DQI) to improve kernel-mode driver security and reliability.
Dead As Disco PC Early Access Review - Disco Is NOT Dead
AppWizard
May 15, 2026

Dead As Disco PC Early Access Review – Disco Is NOT Dead

Dead as Disco is a rhythm-based adventure game developed by Brain Jar Games, featuring a narrative centered around Charlie Disco, a resurrected music icon seeking to reunite his former bandmates. The game employs vibrant neon visuals and has transitioned from Unity to Unreal Engine, enhancing its aesthetics. Players engage in combat against various enemies, utilizing both rhythmic and traditional combat mechanics, with a focus on strategic gameplay. The game includes modes such as selecting an Idol or the Infinite Disco, allowing for customization and skill upgrades. However, concerns exist regarding the reliance on licensed music, potential issues with enemy behavior, camera disruptions, and audio mixing. The game has received a score of 8/10 and is available on PC.
‘Avoid Disruption’—Microsoft Updates Windows Before June Deadline
Winsage
May 14, 2026

‘Avoid Disruption’—Microsoft Updates Windows Before June Deadline

Microsoft has released a security update for Windows 10 users, identified as KB5087544, which includes dynamic status reporting for Secure Boot states. Secure Boot certificates, in place for 15 years, are set to expire next month, and Microsoft advises users to update their certificates to avoid security risks. All Windows 10 PCs will require new certificates, but only those in the Extended Security Updates (ESU) program will be eligible for the update. Most Windows 11 devices will also need new certificates, except those purchased in the last two years. Failure to install the new certificates may affect device boot security. The update also addresses a security warning related to Remote Desktop Connection and may prompt some users to enter a BitLocker recovery key after restarting. New certificates will only be issued to devices that show successful update signals, and users should upgrade their Windows Security App to address potential issues. Notifications will be sent once new Secure Boot certificates are installed.
Windows Update Gets Cloud‑Based Driver Recovery to Fix Faulty Updates
Winsage
May 13, 2026

Windows Update Gets Cloud‑Based Driver Recovery to Fix Faulty Updates

Microsoft has introduced a cloud-based solution called Cloud-Initiated Driver Recovery to address driver update issues for Windows users. This feature automatically detects and fixes driver-related problems by rolling back faulty drivers without user intervention. It operates within Windows Update, replacing problematic drivers with stable versions or approved alternatives. The recovery process will only activate if a validated driver version is available, and Microsoft will manage it independently of hardware partners. Manual validation and testing will occur from May to August 2026, with full deployment expected by September 2026.
Windows 11 security update fixes critical Bing and Azure flaws
Winsage
May 13, 2026

Windows 11 security update fixes critical Bing and Azure flaws

Microsoft released its May 2026 Patch Tuesday updates for Windows 11, addressing 97 security vulnerabilities across various components, including Windows, Microsoft Office, Azure services, SQL Server, SharePoint, Hyper-V, and .NET. The updates are encapsulated in KB5089549 for Windows 11 versions 24H2 and 25H2, elevating systems to builds 26100.8457 and 26200.8457. Notable vulnerabilities include CVE-2026-32169, a critical flaw in Azure Cloud Shell with a CVSS score of 10.0, and CVE-2026-21536, a critical remote code execution vulnerability in the Microsoft Devices Pricing Program with a CVSS score of 9.8. Other critical vulnerabilities include CVE-2026-32191 and CVE-2026-32194, impacting Microsoft Bing Images, both with CVSS scores of 9.8. The update also addresses multiple Windows privilege escalation vulnerabilities and remote code execution vulnerabilities in Microsoft Office and Excel. Microsoft has warned of upcoming Secure Boot certificate expirations starting in June 2026 and has improved boot reliability related to BitLocker recovery issues. Users can install the updates via Settings → Windows Update, with a system restart required.
New GhostLock tool abuses Windows API to block file access
Winsage
May 11, 2026

New GhostLock tool abuses Windows API to block file access

A security researcher has developed a proof-of-concept tool called GhostLock, which exploits a vulnerability in the Windows file API, specifically the 'CreateFileW' function. By manipulating the 'dwShareMode' parameter to grant exclusive access to files, GhostLock can prevent other users or applications from opening those files, resulting in a 'STATUSSHARINGVIOLATION' error. The tool automates the process of opening multiple files on SMB shares, causing access disruptions without requiring elevated privileges. This technique is intended as a disruption attack rather than a destructive one, similar to ransomware, and can serve as a diversion during intrusions. Detection of this attack relies on monitoring the open-file count with ShareAccess set to 0 at the file server layer. Dvash has provided resources for IT teams to enhance detection capabilities against this threat.
Search