Extended Security Update Archives

Winsage

January 20, 2026

Unscheduled updates fix critical bugs in Windows 11

On January 19, 2026, Microsoft released unscheduled security and stability updates for Windows 11 in response to significant errors that emerged after routine updates, which affected system functionality. Users reported issues with shutting down, hibernation failures, and authentication challenges with Remote Desktop and other remote applications. Microsoft rolled out out-of-band updates KB5077744 and KB5077797 to address these problems, impacting Windows 11 version 25H2, Windows 10 version 22H2, and Windows Server 2025. The updates also fix issues related to improper shutdowns and unreliable hibernation in Windows 11 version 23H2 when the Secure Launch feature is enabled. Recent incidents are part of a pattern of update-related challenges across various Windows versions, leading to criticism of the quality assurance processes for Windows updates.

Winsage

January 1, 2026

Still relying on Windows 10? How YOU can secure free PC updates from Microsoft to stay safe this year

Microsoft has concluded support for Windows 10, with over 44% of PC users still operating on the OS. This poses potential risks for users, particularly as the end-of-support deadline approaches on October 14, 2025, when Microsoft will stop issuing free updates, increasing vulnerability to cyber threats. Microsoft has introduced the Extended Security Updates (ESU) program, offering security patches until October 13, 2026, at a cost of £22 for individual users and starting at £45 for businesses, with prices doubling in subsequent years. Users can also access ESU benefits through Microsoft Rewards Points or by performing a Windows Backup via OneDrive, which has a 5GB free limit. Research suggests that around 5 million individuals in the UK could be at risk due to continued reliance on Windows 10. The ESU program is available for users with Windows 10 devices running version 22H2.

Winsage

December 16, 2025

Microsoft warns of problems with Windows 10 extended updates

Microsoft's KB5071546 update is causing significant disruptions to the Message Queuing (MSMQ) functionality, impacting businesses that rely on MSMQ. Symptoms include inactive MSMQ queues, IIS site failures with "Insufficient resources to perform operation" errors, applications unable to write to queues, and misleading error logs. The issue is linked to changes in the MSMQ security model and NTFS permissions on the C:WindowsSystem32MSMQstorage folder, requiring users to have write access typically reserved for administrators. Microsoft is investigating the issue and has not yet provided a remedy. Affected users can either roll back to a previous state or manually uninstall the update.

Winsage

December 16, 2025

Microsoft admits Windows 10’s extended updates are causing issues, MSMQ won’t work

Microsoft has acknowledged a significant issue with the December 2025 Patch update (KB5071546) for Windows 10, affecting the Message Queuing (MSMQ) component, which is primarily used by enterprise applications. The update altered MSMQ's operational dynamics and modified NTFS permissions for its storage directory, requiring write access that many real-world implementations do not have. This has led to operational failures, with users experiencing error messages indicating insufficient resources. Reports indicate that uninstalling the update restores MSMQ functionality. Microsoft is investigating these issues, which also impact clustered MSMQ environments under load, but does not affect Windows 11. Users are advised to uninstall the update to resolve MSMQ issues.

Winsage

December 9, 2025

Microsoft releases Windows 10 KB5071546 extended security update

Microsoft has released the KB5071546 extended security update, addressing 57 security vulnerabilities, including three critical zero-day flaws. This update is intended for Windows 10 Enterprise LTSC users and those in the ESU program. Users can install it by navigating to Settings, selecting Windows Update, and performing a manual 'Check for Updates'. The update will automatically install and prompt for a restart. After installation, Windows 10 will be upgraded to build 19045.6691, and Windows 10 Enterprise LTSC 2021 will move to build 19044.6691. The update focuses on security enhancements and bug fixes, including a remote code execution vulnerability in PowerShell (CVE-2025-54100). PowerShell 5.1 will now issue a warning when using the "Invoke-WebRequest" command to alert users about potential script execution risks. Users are advised to use the -UseBasicParsing command line argument to prevent embedded scripts from executing. Microsoft has confirmed there are no known issues with this update.

Winsage

November 27, 2025

Microsoft Update Warning—1 Billion Windows Users Must Now Act

Microsoft has ended support for Windows 10 as of last month, leaving hundreds of millions of users vulnerable to security risks. Approximately 1.5 billion PCs are currently in use, with around 500 million capable of running Windows 11 but not upgraded, and another 500 million that are four years old and unable to support the new operating system. Dell's COO has indicated that previous estimates of Windows 10 installations were significantly underestimated. Microsoft is encouraging users to upgrade to Windows 11, which offers enhanced security features and claims a 62% reduction in security incidents. The next critical date for Windows 10 users is October 2026, when extended security updates are unlikely to be available.

Winsage

November 24, 2025

Microsoft’s New Update Deadline—550 Million Windows Users Must Act

Microsoft has phased out Windows 10, with a deadline of October 14 now passed, leaving approximately 550 million users navigating the transition to Windows 11 amidst rising cyber threats. Windows 10 usage has declined from 880 million in January. Microsoft offers an Extended Security Update (ESU) option for users needing more time to migrate, which provides security updates until October 13, 2026, for enrolled users. Business users have a three-year extended support period, while consumers have a 12-month grace period post-October if enrolled in ESU. The November update addressing zero-day threats is only available to ESU enrollees. There are no contingency plans for users who remain on Windows 10, and uncertainty exists regarding how many users have enrolled in ESU or have eligible devices for Windows 11 upgrades. Users must act before next October to purchase new PCs if needed.

Winsage

November 18, 2025

Microsoft: Windows 10 KB5072653 OOB update fixes ESU install errors

Microsoft released an emergency out-of-band update, KB5072653, on November 17, 2025, to address installation issues related to the November extended security updates for Windows 10. This update specifically targets the error code 0x800f0922 that prevented users from successfully installing the ESU update. To install this update, devices must be running Windows 10 version 22H2 and have the October 2025 KB5066791 cumulative update installed. Users can check for updates via Windows Update, where KB5072653 will be included. Microsoft plans to release a new Scan Cab with updated metadata to improve compliance update checks for organizations using WSUS and SCCM.

Winsage

November 17, 2025

Windows 10 update failure, autonomous AI cyberattack, Feds fumble Cisco patches

Microsoft has acknowledged an issue with the Windows 10 KB5068781 extended security update, which is failing to apply after installation for users with corporate licenses, resulting in a rollback. A group of hackers believed to be backed by China executed a large-scale cyberattack using Claude Code AI, targeting 30 organizations across various sectors. The Cybersecurity and Infrastructure Security Agency (CISA) reported that U.S. government agencies are struggling to patch critical vulnerabilities in Cisco devices amid the “Arcane Door” hacking campaign. Five individuals pleaded guilty to charges related to helping North Korean IT workers infiltrate 136 companies in the U.S. from September 2019 to November 2022. Port Alliance, a Russian port operator, reported disruptions due to a DDoS cyberattack targeting its operations related to coal and mineral fertilizer exports. DoorDash experienced a data breach on October 25, potentially affecting personal details of customers, Dashers, and merchants across the U.S. and Canada, traced back to a social engineering scam. North Korean hackers are using JSON storage services to host and deliver malware, approaching victims with job offers on platforms like LinkedIn. Jaguar Land Rover reported a financial impact of £196 million (0 million) from a cyberattack in September that forced production halts and compromised data.

Winsage

November 17, 2025

First Windows 10 ESU Patch Tuesday release fails for some

Microsoft is facing installation issues with the first Extended Security Update (ESU) for commercial Windows 10 customers, specifically update KB5068781, which fails to install on devices activated through the Microsoft 365 admin center, resulting in the 0x800f0922 error. Microsoft has acknowledged the issue and is investigating it, but no fix or workaround is currently available. This incident follows another ESU failure that occurred just days prior, prompting Microsoft to release an out-of-band patch. The latest update was intended to fix a previous glitch that incorrectly indicated a user's version of Windows had reached the end of support.