Extended Security Update Archives

Winsage

November 27, 2025

Microsoft Update Warning—1 Billion Windows Users Must Now Act

Microsoft has ended support for Windows 10 as of last month, leaving hundreds of millions of users vulnerable to security risks. Approximately 1.5 billion PCs are currently in use, with around 500 million capable of running Windows 11 but not upgraded, and another 500 million that are four years old and unable to support the new operating system. Dell's COO has indicated that previous estimates of Windows 10 installations were significantly underestimated. Microsoft is encouraging users to upgrade to Windows 11, which offers enhanced security features and claims a 62% reduction in security incidents. The next critical date for Windows 10 users is October 2026, when extended security updates are unlikely to be available.

Winsage

November 24, 2025

Microsoft’s New Update Deadline—550 Million Windows Users Must Act

Microsoft has phased out Windows 10, with a deadline of October 14 now passed, leaving approximately 550 million users navigating the transition to Windows 11 amidst rising cyber threats. Windows 10 usage has declined from 880 million in January. Microsoft offers an Extended Security Update (ESU) option for users needing more time to migrate, which provides security updates until October 13, 2026, for enrolled users. Business users have a three-year extended support period, while consumers have a 12-month grace period post-October if enrolled in ESU. The November update addressing zero-day threats is only available to ESU enrollees. There are no contingency plans for users who remain on Windows 10, and uncertainty exists regarding how many users have enrolled in ESU or have eligible devices for Windows 11 upgrades. Users must act before next October to purchase new PCs if needed.

Winsage

November 18, 2025

Microsoft: Windows 10 KB5072653 OOB update fixes ESU install errors

Microsoft released an emergency out-of-band update, KB5072653, on November 17, 2025, to address installation issues related to the November extended security updates for Windows 10. This update specifically targets the error code 0x800f0922 that prevented users from successfully installing the ESU update. To install this update, devices must be running Windows 10 version 22H2 and have the October 2025 KB5066791 cumulative update installed. Users can check for updates via Windows Update, where KB5072653 will be included. Microsoft plans to release a new Scan Cab with updated metadata to improve compliance update checks for organizations using WSUS and SCCM.

Winsage

November 17, 2025

Windows 10 update failure, autonomous AI cyberattack, Feds fumble Cisco patches

Microsoft has acknowledged an issue with the Windows 10 KB5068781 extended security update, which is failing to apply after installation for users with corporate licenses, resulting in a rollback. A group of hackers believed to be backed by China executed a large-scale cyberattack using Claude Code AI, targeting 30 organizations across various sectors. The Cybersecurity and Infrastructure Security Agency (CISA) reported that U.S. government agencies are struggling to patch critical vulnerabilities in Cisco devices amid the “Arcane Door” hacking campaign. Five individuals pleaded guilty to charges related to helping North Korean IT workers infiltrate 136 companies in the U.S. from September 2019 to November 2022. Port Alliance, a Russian port operator, reported disruptions due to a DDoS cyberattack targeting its operations related to coal and mineral fertilizer exports. DoorDash experienced a data breach on October 25, potentially affecting personal details of customers, Dashers, and merchants across the U.S. and Canada, traced back to a social engineering scam. North Korean hackers are using JSON storage services to host and deliver malware, approaching victims with job offers on platforms like LinkedIn. Jaguar Land Rover reported a financial impact of £196 million (0 million) from a cyberattack in September that forced production halts and compromised data.

Winsage

November 17, 2025

First Windows 10 ESU Patch Tuesday release fails for some

Microsoft is facing installation issues with the first Extended Security Update (ESU) for commercial Windows 10 customers, specifically update KB5068781, which fails to install on devices activated through the Microsoft 365 admin center, resulting in the 0x800f0922 error. Microsoft has acknowledged the issue and is investigating it, but no fix or workaround is currently available. This incident follows another ESU failure that occurred just days prior, prompting Microsoft to release an out-of-band patch. The latest update was intended to fix a previous glitch that incorrectly indicated a user's version of Windows had reached the end of support.

Winsage

November 16, 2025

Microsoft: Windows 10 KB5068781 ESU update may fail with 0x800f0922 errors

Microsoft has acknowledged an issue with the installation of the Windows 10 KB5068781 extended security update, which is causing 0x800f0922 errors on devices using corporate licensing. This update, released on November 11, is the first extended security update for Windows 10. Reports indicate that the update fails to apply after installation on some devices, despite users having the necessary ESU licenses. Microsoft is investigating the issue, which appears to affect devices activated through Windows subscription activation via the Microsoft 365 Admin Center. There is currently no estimated time for a resolution or any workarounds provided. Additionally, some Windows 10 devices are not recognized as needing the KB5068781 update, even when properly licensed.

Winsage

November 16, 2025

Bad News For Microsoft Windows 10 Users — Another Security Update Fail

Users of Windows 10 are facing challenges due to a bot attack threat and a critical zero-day vulnerability, necessitating immediate updates for Windows 10, 11, and Server users. Microsoft has confirmed that some users enrolled in the Extended Security Updates (ESU) program are experiencing difficulties installing the November 2025 security update, KB5068781, resulting in the error code “0x800f0922 (CBSEINSTALLERS_FAILED).” This issue primarily affects business users with corporate licenses activated via Windows subscription activation through the Microsoft 365 Admin Center. There are currently no known workarounds, and Microsoft is investigating the problem.

Winsage

November 14, 2025

If your Windows 10 Extended Security Updates weren’t working, they should now after Microsoft’s latest patch

Windows 10 has transitioned to limited support, with users able to enroll in a year-long program for security updates. Some users faced installation challenges due to errors, which have been addressed by the KB5071959 update, allowing successful registration for the Extended Security Update (ESU) program. It is important for users to apply security updates promptly to enhance system defenses. Keeping router firmware up to date is also recommended for overall security. Users considering an upgrade can explore methods to install Windows 11, even if their hardware does not meet the specifications.

Winsage

November 14, 2025

Windows 10 ESU bug squashed — you may now enroll to get free security updates (and your PC won’t lie to you about it)

Windows 10 is receiving a new lease on life through the Extended Security Update (ESU) program, which offers users a complimentary year of security updates. Some users faced difficulties enrolling in the program, but Microsoft acknowledged the issue and released a fix accessible via Windows Update. Additionally, another bug emerged that affected the enrollment wizard, but Microsoft addressed this concern as well. The ESU program allows users to receive free security updates until October 2026. While Windows 10 support has officially ended, users can continue using the operating system, although upgrading to Windows 11 is recommended for better security and features.

Winsage

November 12, 2025

Microsoft Releases November 2025 Patch Tuesday Updates

Microsoft has rolled out its November 2025 Patch Tuesday updates for Windows 11, addressing 63 vulnerabilities across various platforms, including Windows, Office, Microsoft Edge, Azure Monitor Agent, Dynamics 365, Hyper-V, and SQL Server. The update includes four critical and 59 important vulnerabilities, with one currently being exploited. Key vulnerabilities fixed include: - CVE-2025-62215: A privilege escalation vulnerability in the Windows Kernel. - CVE-2025-60724: A critical heap-based buffer overflow in the Microsoft Graphics Component (GDI+) enabling remote code execution, rated CVSS 9.8. - CVE-2025-60704: A high-severity vulnerability in Windows Kerberos, rated CVSS 7.5. - CVE-2025-62220: A heap-based buffer overflow in the Windows Subsystem for Linux GUI (WSLg), rated CVSS 8.8. - CVE-2025-60719: An untrusted pointer dereference in the Windows Ancillary Function Driver for WinSock. The update enhances features for Windows 11 versions 25H2 and 24H2, improving Click to Do, File Explorer, Voice Access, and Windows Search for Copilot+ devices. The taskbar has been updated with a new battery icon, and the Start Menu has been redesigned to include a scrollable All section. A preview of the Administrator Protection feature has been introduced to prevent unauthorized changes. Additionally, Microsoft released KB5068781 for Windows 10 Extended Security Updates, fixing an incorrect “end of support” message and addressing the same 63 vulnerabilities. Organizations are advised to conduct thorough testing before deploying the patches and to back up systems to mitigate potential issues.