security patches Archives

Winsage

April 6, 2026

Why Microsoft is forcing Windows 11 25H2 update on all eligible PCs

Microsoft has announced that eligible Windows 11 PCs currently on the 24H2 version will be automatically upgraded to the 25H2 edition, with no user action required, although users can temporarily postpone the update. The eligibility assessment for the update uses machine learning, considering factors such as testing results, user feedback, and diagnostic data. The update is mandatory for individual users of Windows 11 Home or Pro editions, as support for 24H2 will expire on October 13, ending security patches for that version. IT-managed computers are excluded from this automatic update. Users can check for eligibility by navigating to Settings and selecting Windows Update. The 25H2 update is designed to be more compact and efficient, updating only necessary files and sharing the same code base as 24H2, which improves stability and reliability. To check the current version of Windows 11, users can go to Settings, select System, and click on About.

Tech Optimizer

April 6, 2026

Scammers Want Our Data, Yet CNET Finds Many of Us Aren’t Protecting Our Devices

- 78% of US adults currently own a personal laptop, with HP (32%) and Apple (26%) being the most popular brands. - 54% of laptop owners have encountered potential malware on their devices in the past year. - 88% of those who reported seeing potential malware took action, while 12% did not respond. - 68% of proactive laptop owners either deleted the suspicious file or closed the website or pop-up. - 37% of laptop owners received phishing emails in the past year. - Many modern devices come equipped with built-in antivirus solutions, such as Microsoft Defender for Windows 11 and XProtect for Mac users. - 60% of users who acted upon encountering potential malware manually deleted files or closed suspicious websites, while 35% initiated antivirus scans. - Antivirus software alone cannot safeguard against data breaches or identity theft; a comprehensive cybersecurity strategy involves various tools and practices. - Recommended tools for online security include Bitdefender for antivirus, Aura for identity theft protection, Bitwarden for password management, and ExpressVPN for VPN services.

AppWizard

April 3, 2026

Google Responds As 50 Apps With 2 Million Downloads Hit By Malware

Researchers at McAfee Labs discovered that 50 Android applications on the Google Play Store contain malware known as NoVoice, which can grant full remote access to infected smartphones. These apps have over 2.3 million downloads. The malware can communicate with remote servers, profile devices, and download tailored root exploits, potentially compromising specific hardware and software configurations. However, devices with an Android security patch level of May 2021 or later are not vulnerable to these exploits, as the vulnerabilities were patched by Android between 2016 and 2021. Google Play Protect removes these apps and blocks new installs, and users are advised to keep their devices updated with the latest security patches.

Winsage

April 2, 2026

Windows Security App Gains Secure Boot Certificate Status Ahead of Major Certificate Refresh

The Secure Boot certificates used by the Unified Extensible Firmware Interface (UEFI) on Windows PCs will expire in late June 2026. Microsoft is rolling out updated certificates through Windows Update to ensure user protection. Starting in April 2026, users can check their device's status in the Windows Security app, which will feature a color-coded badge system: - Green Checkmark: New certificates are installed, no action needed. - Yellow Caution Badge: Update pending or blocked due to hardware/firmware issues (expected in May 2026). - Red Stop Icon: Alerts users that older certificates are expiring, potentially preventing essential boot-level security updates (may appear as early as June 2026). The status will also be indicated in the Windows Security system tray icon. Most users will have a seamless update process by keeping Windows Update enabled, with devices from 2025 and many from 2024 covered. Older machines will receive updates gradually, guided by major OEMs. Microsoft advises against ignoring yellow or red warnings, as devices without updated certificates may be vulnerable to security threats and incompatible with future Windows updates. A support resource is available at aka.ms/getsecureboot.

Tech Optimizer

April 2, 2026

Cybersecurity expert highlights mobile device vulnerabilities

Cybersecurity expert John Joyce emphasizes the vulnerabilities of mobile devices, noting that many users mistakenly believe their smartphones are secure. He highlights that smartphones often serve as primary computing devices, storing sensitive personal information, which makes them attractive targets for cybercriminals. Joyce advises users to look for signs of compromise, such as device slowdowns or unusual app behavior, and to keep their devices updated with the latest operating systems and security patches to reduce risks. He recommends using a Virtual Private Network (VPN) when on public Wi-Fi and suggests utilizing security apps like Norton and TotalAV for additional protection. Joyce also points individuals to Cirrus Technology Consultants' online resources for further information on mobile cybersecurity.

AppWizard

April 1, 2026

‘NoVoice’ Android malware on Google Play infected 2.3 million devices

A new Android malware called NoVoice has been found in over 50 applications on Google Play, with more than 2.3 million downloads. The malware targets older Android versions, specifically those patched between 2016 and 2021, and attempts to gain root access by exploiting vulnerabilities. It conceals malicious components within the com.facebook.utils package and uses steganography to hide an encrypted payload within a PNG image file. NoVoice avoids infecting devices in certain regions and has checks to detect emulators and VPNs. Once activated, the malware contacts its command-and-control server to gather device information and polls it every 60 seconds for tailored exploits aimed at rooting the device. It can exploit 22 vulnerabilities, including kernel bugs, and establishes persistence by replacing key system libraries and installing recovery scripts. The malware injects code into applications, particularly targeting WhatsApp to extract sensitive data for session replication, which is then exfiltrated to the C2 server. The malicious apps containing NoVoice have been removed from Google Play, but users who installed them should consider their devices compromised. Upgrading to devices with later security patches is recommended to mitigate the threat.

Winsage

March 30, 2026

Microsoft’s March Security Update of High-Risk Vulnerability Notice for Multiple Products

On March 11, NSFOCUS CERT reported the release of Microsoft’s March Security Update, addressing 83 security vulnerabilities in products like Windows, Microsoft Office, Microsoft SQL Server, and Azure. The update includes eight critical vulnerabilities and 75 important ones, with risks such as privilege escalation and remote code execution. Key vulnerabilities include: - CVE-2026-26110: Microsoft Office Remote Code Execution Vulnerability (CVSS score: 8.4) - CVE-2026-26113: Microsoft Office Remote Code Execution Vulnerability (CVSS score: 8.4) - CVE-2026-26144: Microsoft Excel Information Disclosure Vulnerability (CVSS score: 7.5) - CVE-2026-23669: Windows Print Spooler Remote Code Execution Vulnerability (CVSS score: 8.8) - CVE-2026-24294: Windows SMB Server Privilege Escalation Vulnerability (CVSS score: 7.8) - CVE-2026-23668: Windows Graphics Component Privilege Escalation Vulnerability (CVSS score: 7.0) Affected product versions include various editions of Microsoft Office, Windows Server 2012 R2, Windows Server 2016, Windows 10, and Windows 11. Microsoft has released security patches for these vulnerabilities, and users are encouraged to install them promptly.

Winsage

March 25, 2026

Windows 11 give less AI and more control over in Taskbar

Microsoft is set to release a significant update for Windows 11, incorporating user feedback. The update will reduce access points to Copilot in applications like Snipping Tool, Photos, Widgets, and Notepad, focusing on AI features that provide genuine utility. The taskbar will be customizable, allowing users to position it at the top or sides of their screens, and mandatory installations of system updates before restarting will be eliminated. Enhancements to File Explorer will improve launch speed and reliability. The update aims to optimize overall performance by reducing memory usage and enhancing system stability, driver quality, and USB/Bluetooth connections. This response addresses previous user issues, including shutdown problems and Outlook instability, which have led some to consider alternative operating systems. The update aims to offer less intrusive AI, more customization options, and improved system performance.

Winsage

March 19, 2026

Windows 11 Pro Lifetime License Drops To $12.97

Windows 11 Pro is currently available for .97, which is a 93% discount from Microsoft's standard price of 9. The minimum system requirements for Windows 11 include a 1GHz or faster 64-bit CPU with at least two cores, 4GB of RAM, 64GB of storage, TPM 2.0, and UEFI with Secure Boot. Windows 10 is nearing its end of support, meaning it will no longer receive security updates, which poses risks for users. Windows 11 includes features like BitLocker, Remote Desktop, Group Policy management, and AI-assisted Copilot. Users upgrading from Windows 10 should back up their files and ensure drivers are current. Windows 11 offers performance enhancements for gaming, such as DirectStorage and Auto HDR. Keys priced low are often OEM or volume-license keys tied to a single machine and may not be transferable.

AppWizard

March 13, 2026

Patch Me If You Can: AI Codemods for Secure-by-Default Android Apps

Meta’s Product Security team has developed a strategy to enhance mobile security through two main initiatives: creating secure-by-default frameworks that make secure Android OS APIs more accessible for developers, and utilizing generative AI to automate the migration of existing code to these frameworks. This approach allows for efficient large-scale updates and the ability to propose, validate, and submit security patches across millions of lines of code.