Microsoft

Winsage
July 18, 2026
Microsoft held its OEM Secure Boot Office Hours event on July 15, where engineers collaborated with OEM representatives from companies like Acer, Asus, Cisco, Dell, and HP. IT administrators were able to ask live questions about the Secure Boot 2023 rollout. The discussion thread became a detailed technical record, especially following the expiration of the first certificates three weeks prior. Concerns raised by IT admins included BitLocker recovery loops, stuck confidence ratings, and unhelpful Intune error codes. Key facts include: - Devices offline for long periods will still receive the 2023 certificates upon reconnecting to Windows Update. - Devices with existing 2023 certificates in firmware will switch to the new boot manager after the latest Windows patches are installed. - A new script, Detect-SecureBootCertUpdateStatus.ps1, is available in Windows for checking certificate status. - BIOS updates may reset a device’s confidence rating to unrated, which is normal and does not indicate certificate failure. - Admins should edit the AvailableUpdates registry key, not the AvailableUpdatesPolicy, which is managed by Intune and Group Policy. - A licensing bug affecting AvailableUpdatesPolicy on devices upgraded from Pro to Enterprise was resolved by Microsoft in 2026. - BitLocker recovery is not typically linked to the certificate update process but may relate to firmware or PCR issues. - Dell and HP provided guidance on which BIOS versions include the 2023 certificates for their newer models. - Older HP EliteBook 840 G5 units require a manual update package for the new certificates. - Eligible devices can still receive the 2023 certificates in the future, and Surface devices released from 2024 onward come pre-equipped with them. - Microsoft confirmed that devices running 2011 certificates will not lose the ability to receive the 2023 chain. - The Microsoft Corporation KEK CA 2011 and Microsoft UEFI CA 2011 certificates have expired, with the Microsoft Windows Production PCA 2011 set to expire on October 19, 2026.
Winsage
July 18, 2026
Microsoft's July 2026 Patch Tuesday update for Windows 11, identified as KB5101650, addresses 570 vulnerabilities and upgrades Windows 11 to version 25H2 (build 26200.8875) and version 24H2 (build 26100.8875). The update includes critical fixes for BitLocker and File Explorer, targeting vulnerabilities that could enable remote code execution. Microsoft's MDASH tool, which uses AI for vulnerability analysis, has helped uncover 16 vulnerabilities in networking and authentication components. The update also introduces non-security enhancements like Point-in-time restore and improved Bluetooth reliability. Microsoft emphasizes the need for users to install updates quickly due to the rapid evolution of AI technology that benefits malicious actors.
Winsage
July 18, 2026
Windows Server 2022 will end its mainstream support on October 13, 2026, transitioning to an extended support phase that will last until October 14, 2031, during which security updates will be provided at no additional cost. Windows Server 2022 was released in September 2021 and is part of the Long-Term Servicing Channel (LTSC) with a decade of support. Microsoft recommends upgrading to Windows Server 2025, which became generally available in November 2024 and will have mainstream support until November 13, 2029, and extended support until November 14, 2034. A 180-day trial for Windows Server 2025 is available through the Microsoft Evaluation Center. Additionally, hotpatching for Windows Server 2022 will be extended until October 2027 for Datacenter: Azure Edition systems, and the free Windows 10 Extended Security Updates program has been extended by one year. Windows 10 Enterprise LTSB 2016 and Windows 11 24H2 will stop receiving updates three months after their end of support.
Winsage
July 18, 2026
Approximately 16.9% of Windows client devices are still using Windows 10, while Windows 11 accounts for 78.8% of installations. Windows 10's market share has significantly declined from nearly 50% in mid-2025. The migration to Windows 11 is slowing, with remaining Windows 10 devices facing more complex and costly upgrade scenarios, including having three times as many active Common Vulnerabilities and Exposures (CVEs) compared to Windows 11. Legacy operating systems like Windows 7, Windows 8.1, and Windows XP are also factors in the migration challenges. Microsoft’s Extended Security Updates (ESU) program offers protection until October 2027 for consumers and until October 2028 for commercial customers.
Winsage
July 18, 2026
Microsoft is developing a security tool called Project Perception, aimed at helping organizations identify and fix software vulnerabilities using artificial intelligence. Set to launch this month, it will utilize AI models from Microsoft, OpenAI, and Anthropic to offer extensive coverage while being cost-effective. The tool features a model router to select the best AI model for specific tasks, optimizing performance and reducing operational costs. Led by Hayete Gallot, Microsoft is shifting towards AI-focused products, recognizing the potential for substantial returns from enterprise investments in AI. Project Perception aims to compete in the AI-driven vulnerability detection market, although its availability may be limited due to concerns about misuse. Microsoft recently addressed around 570 vulnerabilities using an AI tool called MDASH, suggesting a growing role for AI in cybersecurity.
Winsage
July 18, 2026
AnduinOS is a new Linux distribution created by a Microsoft engineer, based on Ubuntu, designed to provide a user experience similar to Windows 11. It offers both Long-Term Support (LTS) and short-term releases, with the latter featuring enhancements over its predecessor. Unlike Ubuntu, which uses Snap packages, AnduinOS utilizes Flatpak for software management, allowing access to a wider range of applications. The desktop environment closely resembles Windows 11, featuring a taskbar, Start menu, and other familiar elements, enhanced by GNOME extensions. Users can customize the taskbar and Start menu extensively, surpassing the customization options available in Windows. The integration of GNOME extensions, such as Clipboard History and Tiling Shell, further enhances productivity and user experience.
Winsage
July 18, 2026
Microsoft has acknowledged a bug in Windows 11 related to the Capability Access Manager (camsvc) that causes significant storage issues for users. The bug leads to an abnormal increase in the size of the CapabilityAccessManager.db-wal SQLite Write-Ahead Log file, which typically should be a few megabytes but has been reported to grow to 70-80 GB, and in some cases, over 200 GB or even up to 500 GB. This growth depletes available SSD space without any new files being added by users. The issue was highlighted by a user on the Microsoft Q&A forum, prompting others to check their disk space and find similar problems. Additionally, Windows Storage Settings misreported capacity usage. Microsoft confirmed the bug and released a hotfix in the KB5095093 update, urging users to install it to prevent further expansion of the log file.
AppWizard
July 18, 2026
The author reflects on their experience with Fable 3, suggesting it feels fresh despite being a 16-year-old RPG. They express concerns about the future of the Fable series, particularly Fable 4, in light of rising console prices and recent layoffs at Microsoft. The author highlights the visual appeal of Fable 3 when played on a modern PC setup, noting the game's charm and the enhanced graphics at 4K resolution. They emphasize the importance of preserving gaming experiences and worry that new players may not access the superior PC version of Fable 3. The author questions whether Microsoft might release an updated version of the game in the future.
Search