NewApp Digest
search bot

Patching

Windows BitLocker zero-day gives access to protected drives, PoC released
Winsage
May 13, 2026

Windows BitLocker zero-day gives access to protected drives, PoC released

A cybersecurity researcher known as Chaotic Eclipse has released proof-of-concept exploits for two unpatched vulnerabilities in Microsoft Windows: YellowKey, a BitLocker bypass, and GreenPlasma, a privilege-escalation flaw. The YellowKey vulnerability affects Windows 11 and Windows Server 2022/2025, allowing unauthorized access to BitLocker-protected volumes by exploiting the Windows Recovery Environment. The exploit can be executed using specially crafted 'FsTx' files on a USB drive or directly on the EFI partition. Independent researcher Kevin Beaumont has validated the exploit, which can bypass BitLocker protections even in a Trusted Platform Module (TPM) environment. The GreenPlasma vulnerability allows unprivileged users to create arbitrary memory-section objects, potentially leading to privilege escalation. Chaotic Eclipse has expressed dissatisfaction with Microsoft's handling of bug reports, prompting the public disclosure of these vulnerabilities. Microsoft has stated its commitment to investigating security issues and updating affected devices.
Omnissa adds Windows Server management to Workspace ONE
Winsage
May 11, 2026

Omnissa adds Windows Server management to Workspace ONE

Omnissa has integrated Windows Server management into its Workspace ONE Unified Endpoint Management (UEM) platform, allowing organizations to manage Windows Server alongside various endpoints from a single cloud-based system. This integration aims to address challenges faced by IT teams that rely on separate tools for server management, which can increase costs and complicate operations. The inclusion of Windows Server enables IT teams to apply policies, automate tasks, and maintain visibility across devices. Hemant Sahani, Vice President of Product Management at Omnissa, noted that this approach offers cost benefits compared to traditional solutions like Microsoft System Centre Configuration Manager, enhancing security and streamlining server lifecycle management. The new support includes over-the-air configuration management, allowing enforcement of security policies and automation of patching. Administrators will have access to remote inventory data and insights into system performance and security issues, leveraging AI and machine learning. The integration allows for the consolidation of management tools, reducing the number of consoles IT staff must navigate. CDW has endorsed this launch, highlighting its potential to simplify operations and improve security for customers. Omnissa currently serves 26,000 customers globally in various domains, including unified endpoint management and security compliance.
How lakebase architecture delivers 5x faster Postgres writes
Tech Optimizer
May 7, 2026

How lakebase architecture delivers 5x faster Postgres writes

The lakebase architecture separates compute and storage, enhancing operational flexibility and performance. Traditional Postgres systems face durability challenges due to write-ahead logging (WAL) and full page writes (FPW), which can inflate WAL volume significantly in write-heavy scenarios. The lakebase solution eliminates the risk of torn pages by streaming WAL to a distributed storage system, avoiding local-disk dependencies. Image generation pushdown transfers the responsibility of generating full page images from the compute layer to the storage layer, maintaining read performance while reducing WAL overhead. Benchmarks show significant improvements in throughput and reduced WAL generation, with a 94% reduction in WAL size per transaction and a 3x increase in ingestion throughput for data-intensive tasks. This enhancement has been deployed globally without interruptions, marking a shift towards improved managed Postgres performance.
You shouldn't delay your Windows 11 updates, experts reveal
Winsage
May 3, 2026

You shouldn’t delay your Windows 11 updates, experts reveal

Experts advise against postponing Windows updates, as Microsoft has introduced features allowing users to control when updates occur. Users can pause updates for up to 35 days indefinitely, but delaying updates can lead to security vulnerabilities. Microsoft releases several types of updates: security updates, feature updates, quality updates, driver updates, optional updates, out-of-band updates, and zero-day updates. Zero-day updates are critical and should be installed immediately to avoid exploitation. Recent reports indicate that critical OS patching for Windows 10 and 11 is lagging by an average of 256 days, increasing the risk of cyber incidents.
Why PC Gaming Has Never Been More Accessible Than In 2026
AppWizard
May 3, 2026

Why PC Gaming Has Never Been More Accessible Than In 2026

The entry point into PC gaming has become significantly easier, moving away from complex installation issues and compatibility challenges. Platforms now prioritize convenience, allowing players to transition from download to gameplay with minimal friction through pre-configured installations and one-click launchers. This evolution has attracted casual gamers who previously avoided PC gaming due to technical barriers. The variety of PC games available has expanded, with a focus on user-friendly platforms that feature large, organized libraries and straightforward download processes. Curation has become essential for accessibility, helping players discover new titles easily. There has been notable growth in simulation and survival genres, while open-world RPGs remain popular. The modding community has also contributed to the longevity of older titles by introducing new content. Overall, the trend toward accessibility and convenience in PC gaming continues to grow, making it an inviting time for new players.
Windows shell spoofing vulnerability puts sensitive data at risk
Winsage
May 1, 2026

Windows shell spoofing vulnerability puts sensitive data at risk

Erik Avakian, a technical counselor at Info-Tech Research Group, discussed the patching deadlines set by the Cybersecurity and Infrastructure Security Agency (CISA) under Binding Operational Directive (BOD) 22-01, which requires U.S. federal agencies to address vulnerabilities within 14 to 21 days. CISA can expedite patching to as little as three days for high-risk exploits. The vulnerability CVE-2026-32202, rated 4.3 on the Common Vulnerability Scoring System (CVSS), was actively exploited but did not qualify for an urgent patch cycle, resulting in a 14-day deadline. Avakian noted the debate over whether this timeframe is sufficient, suggesting that Microsoft’s rating and other factors influenced the decision not to escalate to an emergency directive requiring a 48 to 72-hour response.
CISA, Microsoft warn of active exploitation of Windows Shell vulnerability (CVE-2026-32202)
Winsage
April 30, 2026

CISA, Microsoft warn of active exploitation of Windows Shell vulnerability (CVE-2026-32202)

Attackers are exploiting CVE-2026-32202, a zero-click vulnerability in Windows Shell, allowing authentication of victims' systems without user interaction. This vulnerability stems from an incomplete patch for CVE-2026-21510 and has been used by the APT28 group with weaponized LNK files to bypass Windows security. Although Microsoft addressed these vulnerabilities in February 2026, the risk remains as opening a folder with a malicious LNK file can still connect victims' machines to the attacker's server, initiating an NTLM authentication handshake that exposes the victim’s Net-NTLMv2 hash. This affects various versions of Windows 10, 11, and Windows Server. Microsoft released a patch for CVE-2026-32202 on April 14, 2026, but did not label it as actively exploited until more than two weeks later, leaving security teams unaware of its urgency. Organizations are advised to apply the patch and consider blocking outbound SMB traffic to mitigate risks.
Search