IT administrators Archives

Winsage

February 28, 2026

Microsoft testing Windows 11 batch file security improvements

Microsoft has released new Windows 11 Insider Preview builds that enhance security and performance for batch files and CMD scripts. IT administrators can now activate a secure processing mode by adding the LockBatchFilesInUse registry value, which prevents modifications to batch files while they are running. This update also requires signature validation only once per batch file, improving performance. Additionally, the Shared Audio feature has been refined, allowing users to share audio across multiple devices with individual volume sliders and a new taskbar indicator. The feature now supports more Bluetooth LE Audio accessories, including Samsung Galaxy Buds 4, Sony WF-1000XM6, and Xbox Wireless Headset. These updates are available for Windows Insiders in the Beta and Dev channels with specific preview builds installed.

Winsage

February 28, 2026

Announcing Windows 11 Insider Preview Build 28020.1673 (Canary Channel)

Windows 11 Insider Preview Build 28020.1673 has been released to the Canary Channel. Key updates include: - Emoji 16.0 release with new emojis available in the emoji panel. - Introduction of a sign-in restore experience for Windows Backup for Organizations, reinstating user settings and Microsoft Store apps. - Quick Machine Recovery (QMR) is now automatically enabled for enterprise-managed Windows Professional devices. - A built-in network speed test accessible from the taskbar for measuring network performance. - Enhanced account menu in the Start menu directing users to Microsoft account benefits. - Pan and tilt controls for supported cameras available in the Settings app. - Widget Settings have been updated to a full-page experience. - Search function in the taskbar now displays group headers with the number of results and allows previewing results. - Support for Remote Server Administration Tools (RSAT) on Windows 11 Arm64 devices. - Improvements to dark mode in File Explorer and fixes for unexpected window behavior. - Reliability improvements in Settings for Bluetooth & Devices options. - Enhanced reliability for sending larger files via nearby sharing. Features are gradually rolled out, and a clean installation is required to exit the Canary Channel.

Winsage

February 27, 2026

Microsoft expands Windows restore to more enterprise devices

Microsoft has introduced a feature that allows enterprise users to restore personal settings and Microsoft Store applications from a previous Windows 11 device during their first login on a new or reimaged device using a Microsoft Entra ID account. This feature is part of Windows Backup for Organizations, which streamlines the migration process to Windows 11. The restore capability has been expanded to support hybrid-managed environments, multi-user device configurations, and Windows 365 Cloud PCs. Users will receive a prompt during the first login to either restore from a previous device's backup or set up the device as new, but those who bypass this step will not receive another prompt. IT administrators can manage this feature through Microsoft Intune or Group Policy. The feature will be available for devices with Windows updates released on February 24, 2026, and later. Windows Backup for Organizations was first announced in November 2024, reached public preview in May 2025, and became generally available in August.

Winsage

February 15, 2026

Microsoft Blocks Credential Autofill to Fix Windows Hello Flaw

Microsoft has blocked credential autofill functionality in Windows 11 as part of the February 2026 Patch Tuesday updates to address the critical vulnerability CVE-2026-20804, which allows unauthorized access by tampering with Windows Hello authentication. This vulnerability was first identified in August 2025 and allows local administrators to inject biometric data. The restriction was documented in the January 2026 Patch Tuesday release notes. Enhanced Sign-in Security (ESS) operates at a hypervisor virtual trust level but is limited by hardware compatibility issues, particularly affecting AMD-based systems. Post-update, credential dialogs do not respond to virtual keyboard inputs from remote desktop or screen-sharing applications, preventing autofill during remote support sessions. Microsoft has provided a risky workaround that allows applications to operate with elevated administrator privileges, but this reintroduces the vulnerability. Organizations must now choose between disrupted remote support workflows or risking exposure to credential injection attacks, leading to operational challenges for IT teams and help desk staff.

Winsage

February 13, 2026

Microsoft Refreshes Secure Boot Root of Trust Certificates

Microsoft is refreshing Secure Boot certificates across its Windows ecosystem ahead of their expiration in June 2026 to enhance firmware-level security. Most systems will automatically receive the new certificates via Windows Update, while older or specialized devices may require firmware updates from the original equipment manufacturer (OEM). Devices that do not receive the update will still boot but will gradually lose access to critical boot-level mitigations and future compatibility improvements. The deployment of the new certificates has started with regular monthly Windows updates and applies to home users, businesses, and educational institutions. Organizations can manage updates independently using tools like Group Policy. Many devices produced since 2024 and nearly all systems shipped in 2025 already have the updated certificates. If systems are not updated, they will continue to function but will enter a degraded security state, unable to adopt new Secure Boot mitigations. This could increase exposure to threats and lead to compatibility issues with newer operating systems and software. IT administrators should ensure that Windows Update is deploying the latest updates and that device firmware is current, especially for older hardware or specialized systems.

Winsage

February 11, 2026

Microsoft rolls out Windows 11 26H1, but you can’t have it

Microsoft has released Windows 11 26H1, which is specifically designed for devices with Qualcomm Snapdragon X2 hardware and is not intended for most users. This version will not be available as an in-place update, will not have a successor (26H2), and will not support hotpatch updates. IT administrators are advised to use Windows 11 versions 24H2 and 25H2 for enterprise deployment. The release marks the retirement of the .NET Framework 3.5 as a Windows Feature on Demand optional component, effective with Windows 11 version 26H1. Support for .NET Framework 3.5 will end on January 9, 2029, prompting developers to prioritize migration efforts. Only devices with Snapdragon X2 hardware running Windows 11 26H1 will be affected by this change.

Winsage

February 11, 2026

Microsoft Announces Windows Baseline Security Mode and User Transparency and Consent

Microsoft has introduced two initiatives to enhance user trust in the Windows operating system: Windows Baseline Security Mode and User Transparency and Consent. These initiatives focus on transparency in app and AI agent behaviors, allowing users to reverse decisions and limiting access to defined capabilities. Windows Baseline Security Mode will enforce runtime integrity safeguards, permitting only properly signed apps, services, and drivers to run, while allowing users and IT administrators to override these safeguards if necessary. User Transparency and Consent will prompt users when apps attempt to access sensitive resources or install additional software, providing clear and actionable options for users to review and modify their choices. The rollout will occur in Windows 11 through a phased approach, with potential implementation in the Windows Insider Program by mid-year, possibly aligning with a future Windows 11 version or Windows 12 release.

Winsage

February 11, 2026

Microsoft dials up the nagging in Windows, calls it security

Microsoft is introducing new security features for its Windows operating system, including "Windows Baseline Security Mode" and "User Transparency and Consent." The Baseline Security Mode will enforce runtime integrity safeguards by default, allowing only properly signed applications, services, and drivers to operate, with options for users to override these safeguards for legacy applications. The User Transparency and Consent feature will require explicit user consent for applications accessing sensitive resources, moving away from the current User Account Control prompts. Microsoft aims to enhance user security and privacy while providing clear and actionable notifications. CrowdStrike's Chief Technology Innovation Officer expressed support for this initiative, emphasizing the importance of user consent settings for security software effectiveness. Microsoft has a history of security initiatives, including the Secure Future Initiative, and plans to hold applications and AI tools to higher transparency standards. The rollout of these updates will occur in phases, although no specific timeline has been provided.

Winsage

February 11, 2026

Microsoft tightens Windows security with app transparency and user consent

Microsoft is enhancing the security of its Windows operating system through two initiatives: User Transparency and Consent, and Windows Baseline Security Mode. The User Transparency and Consent initiative will notify users when applications request access to sensitive resources and log every permission granted, allowing users to review and modify their choices. Applications and AI agents will adhere to higher transparency standards. Windows Baseline Security Mode will enable runtime integrity safeguards by default, allowing only properly signed applications, services, and drivers to run. Users and IT administrators can approve exceptions for specific applications. These updates are part of Microsoft’s Secure Future Initiative, which aims to help organizations prevent, manage, and recover from security incidents. The rollout will occur in phases, with collaboration from developers, enterprises, and partners to ensure a smooth transition.

Winsage

January 26, 2026

Microsoft’s first Windows 11 update of 2026 has been a mess

Microsoft has issued two emergency fixes for issues arising from its January 2026 update for Windows 11. The first patch aimed to resolve various problems but resulted in shutdown issues for certain machines, particularly those using the Enterprise and IoT editions of Windows 11 version 23H2. In response, Microsoft released an out-of-band update to fix these shutdown problems. A week later, another out-of-band update was required to address crashes in OneDrive and Dropbox for users on Windows 11 versions 24H2 and 25H2. Additionally, Microsoft is investigating reports of boot failures linked to the January update, with some machines experiencing bluescreen errors and requiring manual recovery. This situation mirrors a previous incident where a security update was initially blamed for SSD issues, which were later attributed to firmware and motherboard BIOS problems.