security fixes Archives

Winsage

March 22, 2026

Trust But Verify ⭐️

Pavan Davuluri has been appointed as the new leader of Windows development at Microsoft. The company has committed to enhancing the quality of Windows through 2026. Davuluri's recent blog post, primarily directed at Windows Insider Program participants, lacks an apology for past customer grievances and does not address several critical issues, including forced telemetry, bundled software, chaotic updates, forced Microsoft account sign-ins, and the mandatory use of Microsoft Edge. While he mentions plans to improve Windows Update and acknowledges the need for better reliability and transparency in the Windows Insider Program, many concerns remain unaddressed. The introduction of Copilot and its integration into Windows will continue, but users have expressed frustration over its implementation. Davuluri's approach to improving performance through the WinUI3 framework is met with skepticism.

Winsage

March 16, 2026

Windows 11 KB5079473 is not causing BSODs or an inaccessible C: drive and app failures, says Microsoft

The March 2026 Patch Tuesday update, KB5079473, is not causing significant issues like BSODs or reboot loops, according to Microsoft. Reports of an inaccessible C: drive and application malfunctions on Samsung PCs are linked to a recent update of the Galaxy Connect app, not the Windows update. Microsoft confirmed no known connections between the March update and major system failures. The update includes over a dozen security fixes and introduces new features, such as improvements to the File Explorer search bar and a Bing-based Internet speed test tool. Specific Samsung models are experiencing C drive accessibility issues due to the Galaxy Connect app, which has disrupted permissions.

Winsage

March 12, 2026

Windows 10/11 Patch Day March: Microsoft delivers the big security update, but as usual, the real message is in the fine print

In March, Microsoft released cumulative security updates for Windows 10 and Windows 11, with support for certain versions continuing until March 2026. The updates include KB5079466 for Windows 11 version 26H1, KB5079473 for versions 24H2 and 25H2, KB5078883 for version 23H2, and KB5078885 for Windows 10 version 22H2. These updates will be distributed via Windows Update, the Microsoft Update Catalog, and WSUS for enterprise environments. This month, Microsoft combined the Servicing Stack Update (SSU) with the Latest Cumulative Update, simplifying the update process. Key enhancements include improvements to Secure Boot, with expanded device target data for new certificates, and security enhancements for Explorer’s search functionality in Windows 11 versions 24H2 and 25H2. A fix for Windows Defender Application Control (WDAC) was also implemented, addressing issues with COM objects under certain policy configurations. The Windows System Image Manager received a new warning dialog for confirming the trustworthiness of catalog files, which is important for enterprise environments. Updates for Windows 10 22H2, despite its end-of-life status, included fixes for secure boot issues and improvements for file version history in the Control Panel. An SSU for Windows 11 (KB5077869) was also released to maintain update stability. Microsoft's updates scheduled for March 2026 will address vulnerabilities in components like the Windows App Installer, SQL Server, and Microsoft Office. The Security Update Guide provides detailed information on specific vulnerabilities and affected components.

Winsage

March 11, 2026

Microsoft to enable Windows hotpatch security updates by default

Microsoft will enable hotpatch security updates by default for eligible Windows devices managed through Microsoft Intune and the Microsoft Graph API starting with the May 2026 Windows security update. This change aims to enhance security and reduce the time to achieve 90% patch compliance by half. The updates will be managed through Windows Autopatch, which allows organizations to apply updates without manual intervention. Administrators can manage hotpatch updates at the tenant level and can opt-out starting April 1, 2026. A Hotpatch quality updates report will be available in Intune to ensure devices are ready for the updates. Windows Autopatch became generally available in July 2022 and is currently operational on over 10 million production devices.

Winsage

March 11, 2026

Microsoft flips Windows Autopatch to default hotpatch security updates

Microsoft will automatically enable hotpatch security updates for Windows devices managed through Microsoft Intune or the Microsoft Graph API starting with the May 2026 Windows security update. This feature allows security fixes to be applied without requiring a device restart, improving compliance efficiency. Devices that install the April 2026 baseline security update will begin receiving hotpatch updates in May 2026, but this will only apply to devices not already assigned to a quality update policy. Organizations can opt out of hotpatch updates for specific device groups or their entire tenant starting April 1, 2026.

Winsage

March 6, 2026

Windows 11 is making big changes to printing, because printers are awful

Microsoft is transitioning to a universal printer driver system to address issues related to legacy printer drivers in Windows. Starting with Windows 10 version 21H2, a universal printer driver compatible with Mopria standards has been integrated and is being enhanced through updates. A phased approach to legacy printer drivers will begin in January 2026, when Windows Update will stop allowing new legacy drivers for Windows 11 and Windows Server 2005. Existing drivers for older printers will continue to function. In July 2026, Windows 11 will prioritize the universal driver over legacy drivers, and by July 2027, updates for legacy drivers will be limited to security fixes. There is no set timeline for the complete discontinuation of old printers and their drivers.

Winsage

February 27, 2026

De-Enshittify Windows 11: Make Windows 11 More Secure ⭐

Windows 11 offers a mix of security and privacy features, with a recommendation for users to opt for a Copilot+ PC with a Qualcomm Snapdragon X-series processor for enhanced security. Most users log in with a Microsoft account, which provides benefits such as two-factor authentication, device-bound passkeys, account recovery options, and automatic disk encryption. However, using a local account poses security risks, including limited recovery options and lack of support for key security features. To secure Windows 11, users should take several steps during initial setup or later, including enabling Windows Security features, verifying device encryption, and enhancing sign-in security through Windows Hello options like facial and fingerprint recognition. Additional security features such as Controlled Folder Access and Smart App Control can be configured for better protection. Users are advised to remove unnecessary third-party security apps and keep Windows 11 and installed applications up-to-date to maintain security. Regular updates and proper configuration of Windows Update settings are also essential for preventing disruptions and ensuring data safety.

Winsage

February 20, 2026

Hands on with Windows 11 26H1 and why this update is not meant for your PC

Microsoft has announced Windows 11 26H1, a release intended exclusively for new ARM devices launching in 2026, specifically those powered by the Snapdragon X2 series. This version is not a feature update for existing PCs and will not appear in Windows Update notifications for users on Intel or AMD hardware. Windows 11 26H1 is based on a new internal core designed for ARM silicon, referred to as a "hardware-optimized release," and may carry the codename Bromine. The OS Build number for 26H1 is 28020.1611, distinguishing it from previous updates. Key enhancements include full integration of semantic natural-language search within Settings, an increase in the FAT32 format limit from 32 GB to 2 TB, and UI refinements. Notable omissions include the removal of .NET Framework 3.5 as an optional feature and a safeguard preventing the System Preparation Tool from running in Safe Mode. Windows 11 26H2 is expected later in 2026 for existing PCs.

Winsage

February 16, 2026

Windows 11 KB5077181 Security Update Causing Some Devices to Restart in an Infinite Loop

Microsoft's security update KB5077181, released on February 10, 2026, for Windows 11 versions 24H2 and 25H2, has caused critical boot failures, leading to infinite restart loops for users. The update addresses 58 vulnerabilities, including six zero-day exploits, and introduces new Secure Boot certificates. Users have reported errors such as “a specified procedure could not be found” and DHCP failures, with installation errors like 0x800f0983 and 0x800f0991 affecting specific hardware. To resolve issues, users are advised to uninstall the update and pause Windows Update. Accessing the Windows Recovery Environment may also be necessary for persistent boot loops. While some users experienced improvements, the overall instability highlights risks associated with updates. Microsoft has not acknowledged any known issues related to this update as of February 15.

Winsage

February 14, 2026

Microsoft Fixes Critical Windows 11 Notepad Flaw

Microsoft has released a patch for a significant vulnerability in Notepad on Windows 11 that could allow attackers to execute code by opening a Markdown file and clicking on a malicious link. This vulnerability was due to how Notepad processed links within Markdown files, which could trigger unverified protocols to load remote content. The patch now includes a security warning before such links can be activated. Users are advised to check for updates via Windows Update and the Microsoft Store to ensure Notepad and related components are up to date. Security tips include inspecting URLs before clicking and keeping Microsoft Defender features enabled.