Microsoft products

Winsage
July 12, 2026
This weekend, discussions emerged reflecting user frustration with Windows 11 and Microsoft products, particularly regarding updates. A recent cumulative update introduced a customizable Start menu but also fixed a bug that was consuming users' storage. Microsoft has mandated that users cannot ignore these updates, contributing to dissatisfaction. Many users are opting for third-party applications like Files and Win11Debloat as alternatives to the native Explorer app. The latest version of Win11Debloat, released on July 11, 2026, includes features to prevent automatic installation of unwanted OEM apps with drivers, a reboot warning for certain functions, and various fixes and enhancements. Notable additions include support for WhatIf in Get.ps1, disabling Windows Notifications, and improvements in handling registry-backup load failures. The app is available on its official GitHub repository or through the Neowin software stories page.
Winsage
June 25, 2026
Microsoft has extended the support timeline for Windows 10 by initiating the Extended Security Updates (ESU) program, which provides an additional year of essential security updates until October 12, 2027. Users can enroll in the ESU program until it ends, and those already enrolled will have their coverage automatically continue through that date. The ESU program, previously a paid feature for businesses, is now available to regular consumers at no additional cost.
Winsage
June 11, 2026
Microsoft patched 206 vulnerabilities during June's Patch Tuesday, surpassing the previous record of 175 vulnerabilities patched in October 2025. Among the patched vulnerabilities, 118 are related to different versions of Windows, including Windows 10, Windows 11, and Windows Server. One critical vulnerability, CVE-2026-41091, in Microsoft Defender is actively being exploited, prompting an update to the Malware Protection Engine. Microsoft also addressed ten vulnerabilities in the Security Feature Bypass category due to the expiration of old Secure Boot certificates. Of the 118 Windows vulnerabilities, 19 are classified as critical Remote Code Execution (RCE) vulnerabilities, including CVE-2026-47288 and CVE-2026-47291. In Microsoft Office, 54 vulnerabilities were patched, including 25 RCE vulnerabilities, with nine classified as critical. Microsoft patched eight vulnerabilities in Exchange Server, including CVE-2026-45583, which can be exploited in a man-in-the-middle scenario. Additionally, the update for Edge addressed 74 Chromium vulnerabilities, including a zero-day vulnerability (CVE-2026-11645).
Winsage
June 8, 2026
Microsoft has rolled out new Defender patches for Windows 11 ISOs, aligning with its commitment to security updates. Updates for Microsoft Defender for Endpoint's endpoint detection and response (EDR) will no longer be included with monthly Windows security updates or Patch Tuesdays; they will now be delivered via Microsoft Update. This change aims to allow faster deployment of EDR enhancements independently of the operating system's update cycle. The rollout for Windows 10 began in late May 2026, with plans to extend support to Windows 11 and other versions by fall 2026. EDR updates will be delivered using KB5005292, contingent on prerequisite updates. Systems must run Sense version 10.8798.25857.1000 or later and have specific Windows updates installed to qualify for the new delivery method. Organizations should align their update policies with this new approach before the broader rollout. In case of significant issues, the EDR update can be reverted using a specific command. Further details are available in the Microsoft 365 Admin Center under message ID MC1381119.
Winsage
June 3, 2026
Perplexity has launched Personal Computer for Windows, a desktop software that streamlines user interactions with files, applications, and online resources through a unified interface. It operates natively on Windows, allowing users to manage tasks directly from their machines. The software integrates with Microsoft applications such as Excel, PowerPoint, Word, Outlook, and OneDrive, enabling users to execute tasks without manual data transfer. Users can approve specific local folders for the AI to access, ensuring control over information. The platform supports remote execution from other devices and features Voice Mode for natural language interaction. Personal Computer utilizes over 20 AI models to facilitate complex tasks and includes security features like folder scoping, user permissions, activity logs, and administrative controls for enterprise clients. Access is initially available to paying Max and Enterprise Max subscribers on the waitlist.
Winsage
June 1, 2026
Recent updates from CISA highlight critical vulnerabilities in Microsoft products, specifically CVE-2026-41091 and CVE-2026-45498. CVE-2026-41091 could allow attackers to execute arbitrary code, leading to unauthorized access and control over affected systems. CVE-2026-45498 may enable attackers to compromise system integrity, threatening sensitive data and operational continuity. Organizations using Microsoft products are urged to prioritize patching these vulnerabilities.
Winsage
May 15, 2026
Microsoft has released an extensive update for Azure Linux 3.0 and CBL Mariner 2.0, addressing 191 open-source Common Vulnerabilities and Exposures (CVEs) across various technologies, including the Linux kernel, Go runtime, Apache httpd, PHP, CoreDNS, Valkey, Ruby, GnuTLS, Apache Thrift, Node.js, Rust, Java implementations, Vim, Postfix, Expat, Nmap, Prometheus, KEDA, and PgBouncer. Additionally, Microsoft has fixed a critical vulnerability (CVE-2026-41103) in its Single Sign-On (SSO) Plugin for Jira and Confluence, which allows an attacker to forge a Microsoft Entra ID identity through a manipulated SAML response; however, patching this vulnerability is the responsibility of the users of Atlassian's platforms.
Search