domain Archives

Winsage

March 22, 2026

Microsoft could drop the forced Microsoft account sign-in during Windows 11 setup

Microsoft is advocating for a login experience for Windows 11 that does not require a Microsoft account (MSA), as influential engineers within the company express dissatisfaction with the current mandatory sign-in during the out-of-box experience (OOBE). Despite recent updates emphasizing performance and user experience improvements, the option to use Windows 11 without an MSA remains absent. Workarounds exist, but the official guidance still encourages MSA sign-ins. Senior executives, including Vice President Scott Hanselman, are working towards a more flexible setup. Microsoft has confirmed plans to streamline the OOBE, aiming for a quieter and simpler device setup process, with some changes expected to be introduced in April for Windows Insiders.

Winsage

March 19, 2026

Windows 11 Pro Lifetime License Drops To $12.97

Windows 11 Pro is currently available for .97, which is a 93% discount from Microsoft's standard price of 9. The minimum system requirements for Windows 11 include a 1GHz or faster 64-bit CPU with at least two cores, 4GB of RAM, 64GB of storage, TPM 2.0, and UEFI with Secure Boot. Windows 10 is nearing its end of support, meaning it will no longer receive security updates, which poses risks for users. Windows 11 includes features like BitLocker, Remote Desktop, Group Policy management, and AI-assisted Copilot. Users upgrading from Windows 10 should back up their files and ensure drivers are current. Windows 11 offers performance enhancements for gaming, such as DirectStorage and Auto HDR. Keys priced low are often OEM or volume-license keys tied to a single machine and may not be transferable.

Winsage

March 17, 2026

Microsoft to Block Windows 11 and Server 2025 Automated Installation After Critical RCE Vulnerability

Microsoft is implementing a two-phase initiative to disable the hands-free deployment feature in Windows Deployment Services (WDS) due to a critical remote code execution vulnerability (CVE-2026-0386) identified on January 13, 2026. This vulnerability arises from improper access control related to the Unattend.xml file, which is transmitted over an unauthenticated RPC channel, allowing attackers on the same network segment to exploit it. Successful exploitation could grant SYSTEM-level privileges and compromise OS deployment images. The initiative includes: - Phase 1 (January 13, 2026): The hands-free deployment feature will remain operational but can be disabled. New Event Log alerts and registry key controls will be introduced to enforce secure practices. - Phase 2 (April 2026): The hands-free deployment feature will be completely disabled by default for administrators who have not modified registry settings. Administrators can temporarily re-enable the feature by setting AllowHandsFreeFunctionality = 1, but this is not secure. Recommendations include reviewing WDS configurations, applying security updates, setting registry keys for secure behavior, monitoring Event Viewer for alerts, and considering alternative deployment methods. Microsoft’s KB article 5074952 provides further guidance for impacted organizations.

Winsage

March 15, 2026

Microsoft Releases Emergency Windows 11 Hotpatch to Fix Remote Code Execution Flaw

Microsoft has released an out-of-band hotpatch update, KB5084597, to address three critical remote code execution vulnerabilities (CVE-2026-25172, CVE-2026-25173, CVE-2026-26111) in the Windows Routing and Remote Access Service (RRAS) management tool. This update is specifically for Windows 11 Enterprise devices in the hotpatch program that did not receive fixes during the March 2026 Patch Tuesday. The vulnerabilities can be exploited by an authenticated attacker within the domain, potentially leading to remote code execution. Hotpatch updates apply fixes through in-memory patching without requiring a device reboot, making them suitable for mission-critical devices. The update is applicable to Windows 11 versions 24H2, 25H2, and Windows 11 Enterprise LTSC 2024, and will be automatically installed on enrolled devices without a restart. Non-enrolled devices received the fix via the standard March 10 Patch Tuesday update.

AppWizard

March 12, 2026

Fake Red Alert app used in Android spyware smishing

Acronis' Threat Research Unit has discovered a targeted campaign against Android users involving a counterfeit version of Israel's Red Alert rocket warning app that distributes spyware. The malicious software is spread through SMS messages that appear to be official communications from the Home Front Command, prompting users to download an "update." The fraudulent app mimics the legitimate safety tool, maintaining its rocket alert functionality to avoid detection. Once installed, the spyware collects sensitive data such as SMS messages, contacts, location information, device accounts, and a list of installed applications. This tactic, termed "smishing," combines SMS and phishing techniques. The malware uses sophisticated methods like certificate spoofing and runtime manipulation to bypass Android's signature checks, and it consists of a loader and a secondary component that executes the real alert application while the spyware operates in the background. The spyware monitors user permissions and can harvest SMS messages, contacts, and location data, adjusting its behavior based on the user's geographical position. It sends collected data to a remote command-and-control server, with the exfiltration endpoint identified as ra-backup[.]com. Acronis suggests this campaign may be linked to the group Arid Viper (APT-C-23), known for targeting Israeli interests with trojanized Android applications. Researchers recommend users only download apps from official sources, avoid sideloading packages from SMS links, and review app permissions carefully. They advise checking for the package name com.red.alertx on devices and performing a factory reset if found, along with changing credentials for any accessed accounts.

Tech Optimizer

March 12, 2026

The Postgres® Vitality Index: Enterprises Rush to Postgres, and EDB Continues to Lead the Foundation for Sovereign Enterprise AI

EnterpriseDB (EDB) has launched the Postgres Vitality Index to evaluate the commercial contributions shaping PostgreSQL's future. The index indicates that Postgres is the most strategically invested-in database globally, with EDB as the leading contributor, accounting for over 30% of contributions. Postgres is favored by over 55% of developers, reflecting its growing adoption among major tech firms. The index assesses contributions in three areas: core advancements in the PostgreSQL codebase, ecosystem enhancements through extensions and tools, and community support. EDB's Postgres AI platform addresses the need for data and AI sovereignty, offering a hybrid architecture for governance and flexibility. EDB has also published a guide on building AI platforms with Postgres, which will be distributed at NVIDIA's GTC event.

Winsage

March 12, 2026

Windows 11 KB5079473 & KB5078883 cumulative updates released

Microsoft has released cumulative updates KB5079473 and KB5078883 for Windows 11 versions 25H2, 24H2, and 23H2 as part of the March 2026 Patch Tuesday. These updates address security vulnerabilities, fix bugs, and introduce new features. Users can install the updates via Start > Settings > Windows Update or manually from the Microsoft Update Catalog. The build numbers will change to 26200.8037 for 25H2, 26100.8037 for 24H2, and 22631.6783 for 23H2. Key enhancements include improved device targeting data for Secure Boot certificates, better reliability in File Explorer searches, and various new features such as a curated selection of emojis, a new backup and restore experience, automatic activation of Quick Machine Recovery, a built-in network speed test on the taskbar, and the ability to set WebP images as desktop backgrounds. Additionally, improvements have been made to the Windows Update settings page and the reliability of waking from sleep. No new issues have been reported with this month's updates.

Winsage

March 11, 2026

Microsoft Releases March 2026 Patch Tuesday Updates

Microsoft has released the March 2026 Patch Tuesday update, KB5079473, for all supported versions of Windows 11 (25H2 and 24H2). Key changes include: - A Network Speed Test Tool in the Taskbar for measuring Ethernet, Wi-Fi, and cellular performance. - New pan and tilt options for supported cameras in the Settings menu. - Built-in System Monitor (Sysmon) available as an optional feature; users should uninstall previous versions before enabling it. - Remote Server Administration Tools (RSAT) support for Windows 11 Arm64 devices. - Quick Machine Recovery tool enabled for Windows Professional devices not domain-joined or enrolled in enterprise management. - Ability to use .webp image files for desktop backgrounds. - Introduction of new emojis from Emoji 16.0, including a face with bags under the eyes and a fingerprint. - BitLocker improvements for device responsiveness after entering a recovery key. - Enhanced reliability of search functions in File Explorer. Additionally, Microsoft is publishing patch notes for the upcoming version 26H1, which is currently available to Windows Insiders on the Canary Channel but not yet public. The KB5079466 patch for version 26H1 includes features already seen in earlier Windows 11 versions.

AppWizard

March 11, 2026

How Advanced Browsing Protection Works in Messenger

Advanced Browsing Protection (ABP) in Messenger enhances user privacy by warning users about potentially harmful links shared in end-to-end encrypted communications. It analyzes links using on-device models and a dynamic watchlist of millions of potentially malicious sites, utilizing cryptographic techniques to maintain user privacy. ABP is based on a cryptographic primitive called private information retrieval (PIR), which minimizes the information a server learns from client queries. The system also employs oblivious pseudorandom functions (OPRFs) and manages URL queries through a privacy-preserving URL-matching scheme. The server groups links by domain, allowing clients to request a single bucket for domain-specific path components, and generates a ruleset to balance bucket sizes. To safeguard client queries, AMD's SEV-SNP technology creates a confidential virtual machine (CVM) that processes hash prefixes securely, generating attestation reports for integrity verification. The use of Oblivious RAM and Oblivious HTTP (OHTTP) enhances privacy by preventing exposure of memory access patterns and stripping identifying information from client requests. The lifecycle of an ABP request includes pre-processing phases where the server updates the URL database and computes rulesets, followed by client requests that involve calculating bucket identifiers, sending encrypted requests through a proxy, and checking for unsafe URLs based on server responses.

Winsage

March 5, 2026

I tested Windows 11 LTSC in 2026, and it’s the best version of Windows 11 without Copilot, AI and other bloat

Windows 11 LTSC (Long-Term Servicing Channel) is a specialized edition of Windows 11 designed for organizations that prioritize stability over the latest features. It allows users to defer feature updates for up to ten years, receiving only monthly quality updates and optional feature updates every three years. LTSC includes only Microsoft Edge as a modern app, with classic versions of Calculator, Notepad, and Paint, and lacks Copilot integration, the Microsoft Store, and Widgets. Users can operate LTSC without signing into a Microsoft account. The version was officially announced in April 2023, with Enterprise and IoT editions set to launch in late 2024. It is suitable for large organizations, industrial systems, IT departments, and IoT devices needing long-term support. General users can download a 90-day trial of LTSC, but a clean installation is required for transitioning from Windows 11 Pro or Home. The minimum system requirements include a 1 GHz processor, 4 GB RAM, and 64 GB storage. LTSC offers advantages such as no bloatware, a stable environment, and a lower storage footprint, but it does not receive new Windows features and lacks access to the Microsoft Store by default.