feature Archives

Winsage

March 11, 2026

Microsoft flips Windows Autopatch to default hotpatch security updates

Microsoft will automatically enable hotpatch security updates for Windows devices managed through Microsoft Intune or the Microsoft Graph API starting with the May 2026 Windows security update. This feature allows security fixes to be applied without requiring a device restart, improving compliance efficiency. Devices that install the April 2026 baseline security update will begin receiving hotpatch updates in May 2026, but this will only apply to devices not already assigned to a quality update policy. Organizations can opt out of hotpatch updates for specific device groups or their entire tenant starting April 1, 2026.

Winsage

March 11, 2026

Windows 12 could be the tipping point that finally pushes you to Linux

The anticipated release of Windows 12, rumored for 2026, has sparked speculation about a potential migration of users to Linux. Microsoft’s history with Windows shows a cycle of launching resource-intensive operating systems, leading to user dissatisfaction and exploration of alternatives. The end of support for Windows 10 has increased interest in open-source systems like Linux. The integration of artificial intelligence in Windows 12 may complicate user experiences, potentially driving users away due to increased demands and complexities. In contrast, Linux is evolving to offer a user-friendly experience without advertisements or the need for costly hardware upgrades, making it an appealing alternative for disenchanted Windows users.

Winsage

March 11, 2026

Windows 12 Rumors Spark Shift Toward Linux

The anticipated arrival of Windows 12 may drive many PC users to consider switching to Linux due to its deeper integration of artificial intelligence, increased monetization strategies, and higher hardware requirements. Microsoft has indicated a shift towards an AI-centric operating system, which could alienate users who prefer a stable desktop experience. As Windows 10 nears the end of its support in 2025, users face the choice of paying for Extended Security Updates, upgrading to Windows 12, or exploring alternatives like Linux, which has reached a 4% global market share in 2024. Recent developments in Windows 11, such as the introduction of ads and telemetry, have caused dissatisfaction among users, while Linux distributions remain ad-free and focus on security and functionality. Windows 11's new hardware requirements may leave many older PCs behind, whereas Linux is compatible with less powerful hardware. The Linux desktop has matured, with improved app distribution and gaming capabilities, and offers extensive support options. If Windows 12 emphasizes AI, advertising, and hardware restrictions, it could lead to a significant migration towards Linux as users seek a more user-friendly and controllable operating system.

Winsage

March 11, 2026

Microsoft brings phishing-resistant Windows sign-ins via Entra passkeys

Microsoft is introducing passkey support for Microsoft Entra on Windows devices, enabling phishing-resistant, passwordless authentication through Windows Hello. The feature will be available on an opt-in basis in public preview from mid-March to late April 2026 for global tenants, with a subsequent rollout for government cloud environments from mid-April to mid-May. This feature extends passwordless sign-in to unmanaged Windows devices, reducing reliance on traditional password-based methods. Passkeys are device-bound, stored in the Windows Hello container, and cannot be synced across devices. IT administrators must enable the Passkeys (FIDO2) authentication method within Entra's Authentication Methods policies to participate in the public preview. Additionally, Microsoft announced that all new Microsoft accounts will be "passwordless by default" starting in May 2025, following the rollout of passkey authentication for personal accounts in 2024.

Tech Optimizer

March 11, 2026

Malformed ZIP Files Allows Attackers to Bypass Antivirus and EDR Detections

A vulnerability identified as CVE-2026-0866 allows malicious actors to exploit malformed ZIP headers to bypass antivirus and Endpoint Detection and Response (EDR) systems. This flaw occurs because most security solutions rely on metadata within ZIP archives to scan and process files. When the compression method field is altered, security scanners may fail to decompress the archive correctly, resulting in a false negative and leaving the malicious payload undetected. Attackers can then use a custom loader to access the embedded malicious data, circumventing standard extraction tools. Cisco has been confirmed as affected by this vulnerability, while nearly 30 other security vendors have not disclosed their status. The cybersecurity community is urged to evolve scanning methodologies, including not relying solely on declared metadata and implementing aggressive detection modes. Organizations should verify their antivirus and EDR solutions for vulnerability to CVE-2026-0866 and monitor for custom loaders.

AppWizard

March 11, 2026

No banking apps on your custom ROM? This new initiative could help.

UnifiedAttestation is a new initiative from Europe aimed at creating a free and open-source alternative to Google’s Play Integrity checks, which are essential for banking, financial, and government applications. Many of these applications currently rely on the Play Integrity API, which does not support custom ROMs or alternative Android forks, limiting access for users of these systems. The initiative is backed by smartphone manufacturer Volla and partners like Murena and iodé OS. UnifiedAttestation will be distributed under an Apache 2.0 license, allowing developers to adapt it, with Volla stating that integration requires only a few lines of code. However, the Graphene OS team has expressed concerns about the ethical implications of smartphone manufacturers determining which operating systems can use their applications, advocating for the regulation of the Play Integrity API instead.

AppWizard

March 11, 2026

Meta Is Shutting Down Messenger.com—Here’s What Users Need to Know

Meta will phase out Messenger.com as a standalone platform starting in April 2026, along with the Messenger desktop app. Conversations will be redirected to facebook.com/messages, allowing users to continue messaging through Facebook’s main interface. The Messenger mobile app will remain operational, and users without Facebook accounts can still use it. Chat history can be restored using a PIN. This shift appears to be part of a trend to consolidate platforms and streamline services.

AppWizard

March 11, 2026

Russian Hackers ‘Targeting Messaging Apps,’ Dutch Spies Say

Russian hackers are targeting messaging applications used by Dutch officials, including WhatsApp and Signal, as part of a global cyber campaign. They aim to infiltrate conversations of high-ranking officials, military personnel, and civil servants. Hackers are using tactics such as impersonating the Signal Support chatbot to obtain security credentials and exploiting the "linked devices" feature to access messages. The AIVD warns that this could lead to significant privacy and security breaches. Peter Reesink, director of military intelligence, cautions against using these apps for sensitive communications, echoing a Pentagon memo advising against the use of Signal due to threats from Russian hackers.

AppWizard

March 11, 2026

How Advanced Browsing Protection Works in Messenger

Advanced Browsing Protection (ABP) in Messenger enhances user privacy by warning users about potentially harmful links shared in end-to-end encrypted communications. It analyzes links using on-device models and a dynamic watchlist of millions of potentially malicious sites, utilizing cryptographic techniques to maintain user privacy. ABP is based on a cryptographic primitive called private information retrieval (PIR), which minimizes the information a server learns from client queries. The system also employs oblivious pseudorandom functions (OPRFs) and manages URL queries through a privacy-preserving URL-matching scheme. The server groups links by domain, allowing clients to request a single bucket for domain-specific path components, and generates a ruleset to balance bucket sizes. To safeguard client queries, AMD's SEV-SNP technology creates a confidential virtual machine (CVM) that processes hash prefixes securely, generating attestation reports for integrity verification. The use of Oblivious RAM and Oblivious HTTP (OHTTP) enhances privacy by preventing exposure of memory access patterns and stripping identifying information from client requests. The lifecycle of an ABP request includes pre-processing phases where the server updates the URL database and computes rulesets, followed by client requests that involve calculating bucket identifiers, sending encrypted requests through a proxy, and checking for unsafe URLs based on server responses.

AppWizard

March 11, 2026

Meta outlines improved scam protection in Messenger app

Meta has introduced a Safe Browsing feature in Messenger to protect users from harmful links in direct messages, responding to the rise in online scams. The FBI projects online fraud losses in the U.S. to exceed billions from 2020 to 2024, with over a billion expected in 2024 alone. The Safe Browsing feature, launched in October, warns users about malicious links in encrypted messages. Meta has also launched an Advanced Browsing Protection setting that uses a constantly updated database of harmful websites, enhancing user security by combining on-device processing with external data retrieval. This system alerts Messenger users about potential threats before they click on links, allowing them to assess the safety of the links.