Microsoft update Archives

Winsage

January 30, 2026

Windows 11 KB5074105 update fixes boot, sign-in, and activation issues

Microsoft has released the KB5074105 preview cumulative update for Windows 11, which includes 32 enhancements to improve user experience. This optional update allows administrators to test upcoming fixes and features before the next Patch Tuesday. It addresses issues such as Explorer.exe hanging during login with specific startup apps, system unresponsiveness during startup with Windows Boot Manager debugging enabled, iSCSI boot failures, and problems with Windows license migrations during upgrades. The update elevates Windows 11 25H2 and 24H2 devices to builds 26200.7705 and 26100.7705, respectively. Key highlights include enhanced Cross-Device Resume functionality, support for peripheral fingerprint sensors in Windows Hello Enhanced Sign-in Security, fixes for unresponsiveness when running Windows Terminal with elevated permissions, resolution of GPU-related system errors, and improvements to Windows Sandbox. Microsoft will also introduce distinct identifiers for Windows 11 and Windows Server 2025 updates starting with the January 2026 security update, and has simplified update titles for better accessibility.

Winsage

January 19, 2026

Windows 11 PCs Fail To Shut Down After Update

Some users of Windows 11 have experienced a problem where their PCs reboot instead of shutting down after the Patch Tuesday security update KB5073455. This issue primarily affects devices with Secure Launch on Windows 11 version 23H2. Microsoft has confirmed this behavior, which disrupts the usual power-off sequence and can drain battery life for laptops and complicate remote management processes. An out-of-band update, KB5077797, has been released to restore normal shutdown and hibernation functionalities for affected systems. Users can check for this update in Windows Update or download it from the Microsoft Update Catalog. To determine if they are affected, users should look for immediate restarts when selecting Shut Down or Hibernate and check if Secure Launch is enabled in System Information.

Winsage

January 18, 2026

Microsoft Confirms Emergency Updates For Most Windows PCs

Microsoft has released emergency fixes in response to issues arising from January's Patch Tuesday security updates. Users experienced shutdown failures and Remote Desktop login difficulties after the updates. Microsoft has resolved two critical bugs: one related to shutdown failures on Windows 11 version 23H2 and another concerning Remote Desktop connection failures on versions 24H2 and 25H2. However, three issues remain unpatched: a black screen before the cursor appears, a glitch resetting the desktop background to black, and problems with the desktop.ini file in File Explorer. Additionally, there is an unresolved issue with Outlook Classic that may cause it to freeze for users with older POP accounts. Microsoft has provided two emergency updates: KB5077744 for Remote Desktop connection failures on versions 25H2 and 24H2, and KB5077797 for the shutdown issue on version 23H2.

Winsage

January 6, 2026

Windows 11 AI components are getting their own changelogs (release history), as Microsoft plans model updates

Microsoft has released a support document titled “Release information for AI components” that details the AI components integrated into Windows 11, which can be installed through Windows Update or accessed via the Microsoft Update Catalog. These components are essential for enabling various AI models to operate locally on devices, and installations typically occur automatically on compatible PCs with 40+ TOPs of NPU. The size of Windows 11 Patch Tuesday updates has increased significantly, now ranging from 4-5GB, compared to previous updates that were under 800MB. Users can manage AI components through Settings > System > AI Components, although this page is empty for older PCs. The changelog includes individual components like the Settings Model, Image Search, Semantic Analysis, and Content Extraction, as well as lower-level elements such as Execution Provider. Updates for these AI models occur every few weeks, often without visible changes.

Winsage

December 11, 2025

Windows Defender Firewall Service Vulnerability Let Attackers Disclose Sensitive Data

A vulnerability in the Windows Defender Firewall Service, designated as CVE-2025-62468, was disclosed on December 9, 2025, and has an Important severity rating. It results from an out-of-bounds read condition, allowing an authorized attacker with elevated privileges to access sensitive heap memory without user interaction. The vulnerability has a CVSS v3.1 base score of 4.4, indicating moderate severity, and is characterized by a local attack vector, low attack complexity, high privileges required, and no user interaction needed. Microsoft assessed the likelihood of exploitation as unlikely and has released security updates for affected products, including Windows Server 2025 and various versions of Windows 11. The vulnerability primarily affects organizations with strict access controls and monitoring protocols. Security researchers from Kunlun Lab are credited with responsibly disclosing this vulnerability.

Winsage

December 10, 2025

Microsoft Patch Tuesday, December 2025 Edition

Microsoft released a significant update addressing 56 security vulnerabilities across its Windows operating systems and supported software. This update includes a patch for a zero-day exploit, CVE-2025-62221, a privilege escalation vulnerability affecting Windows 10 and later versions. Throughout 2025, Microsoft has patched a total of 1,129 vulnerabilities, marking an 11.9% increase from the previous year. Three vulnerabilities were classified as critical: CVE-2025-62554 and CVE-2025-62557 related to Microsoft Office, and CVE-2025-62562 related to Microsoft Outlook. Several non-critical privilege escalation vulnerabilities were identified as likely to be exploited, including CVE-2025-62458, CVE-2025-62470, CVE-2025-62472, CVE-2025-59516, and CVE-2025-59517. Another vulnerability, CVE-2025-64671, was found in the Github Copilot Plugin for Jetbrains, allowing remote code execution. Additionally, CVE-2025-54100 is a remote code execution bug in Windows Powershell affecting Windows Server 2008 and later.

Winsage

December 3, 2025

Windows 11 KB5070311 update fixes File Explorer freezes, search issues

Microsoft has released the KB5070311 preview cumulative update for Windows 11, which includes 49 enhancements aimed at improving user experience. This optional update allows IT administrators to preview upcoming bug fixes and features before the official Patch Tuesday rollout. The update addresses several known issues, including unresponsive explorer.exe and taskbar processes, search problems in File Explorer related to SMB shares, and instability in the Local Security Authority Subsystem Service (LSASS). To install KB5070311, users can go to Settings, select Windows Update, and click 'Check for Updates'. Users must confirm their intention to install it by selecting 'Download and install', or they can manually download it from the Microsoft Update Catalog. The update elevates Windows 11 25H2 and 24H2 devices to builds 26200.7309 and 26100.7309, respectively. Notable enhancements include a broader search results menu, the ability to use Windows Studio Effects with additional cameras, new context menu options for Windows Spotlight backgrounds, and improvements to File Explorer's dark mode experience. Microsoft has announced there will be no preview update in December, with regular updates resuming in January. They are also working on a solution for a known issue where the password sign-in option has disappeared from the lock screen options.

Tech Optimizer

December 1, 2025

How To Use the Windows Malicious Software Removal Tool

The Windows Malicious Software Removal Tool (MSRT) identifies and eliminates specific high-risk malware families on Windows devices. It is updated monthly by Microsoft and is integrated into all supported versions of Windows 10 and Windows 11. MSRT functions as a cleanup utility, scanning for known active malware infections. Users can run the tool manually by pressing Windows + R, typing mrt, and selecting a scan type. MSRT is recommended for use after installing software from unfamiliar sources, when a PC shows unusual behavior, for quick secondary scans, or in response to Windows Defender alerts. Manual downloads of MSRT are available for offline systems. The tool maintains a detailed log of scans in the Debug folder. MSRT targets malware such as MyDoom, Blaster, and Sasser, and while it removes infections, it does not provide real-time monitoring. Microsoft updates the tool monthly, and it runs automatically after updates but can also be launched manually.

Winsage

November 27, 2025

Microsoft Update Warning—1 Billion Windows Users Must Now Act

Microsoft has ended support for Windows 10 as of last month, leaving hundreds of millions of users vulnerable to security risks. Approximately 1.5 billion PCs are currently in use, with around 500 million capable of running Windows 11 but not upgraded, and another 500 million that are four years old and unable to support the new operating system. Dell's COO has indicated that previous estimates of Windows 10 installations were significantly underestimated. Microsoft is encouraging users to upgrade to Windows 11, which offers enhanced security features and claims a 62% reduction in security incidents. The next critical date for Windows 10 users is October 2026, when extended security updates are unlikely to be available.

Winsage

November 18, 2025

Microsoft fixes Windows 10 update flaw

Jack Bicer, the director of vulnerability research at Action1, advises IT leaders to ensure the latest servicing stack update (SSU) is installed before reapplying a patch after Microsoft’s patch release on November 17. He recommends troubleshooting steps for system file corruption, including: 1. Temporarily disabling non-Microsoft services and startup applications through a Clean Boot. 2. Manually installing the update by downloading the .msu package for KB5068781 from the Microsoft Update Catalog and using the command wusa.exe .msu /quiet /norestart. 3. Verifying the build number with the winver command, targeting build numbers 19045.6575 (22H2) or 19044.6575 (21H2).