security patches Archives

Winsage

March 25, 2026

Windows 11 give less AI and more control over in Taskbar

Microsoft is set to release a significant update for Windows 11, incorporating user feedback. The update will reduce access points to Copilot in applications like Snipping Tool, Photos, Widgets, and Notepad, focusing on AI features that provide genuine utility. The taskbar will be customizable, allowing users to position it at the top or sides of their screens, and mandatory installations of system updates before restarting will be eliminated. Enhancements to File Explorer will improve launch speed and reliability. The update aims to optimize overall performance by reducing memory usage and enhancing system stability, driver quality, and USB/Bluetooth connections. This response addresses previous user issues, including shutdown problems and Outlook instability, which have led some to consider alternative operating systems. The update aims to offer less intrusive AI, more customization options, and improved system performance.

Winsage

March 19, 2026

Windows 11 Pro Lifetime License Drops To $12.97

Windows 11 Pro is currently available for .97, which is a 93% discount from Microsoft's standard price of 9. The minimum system requirements for Windows 11 include a 1GHz or faster 64-bit CPU with at least two cores, 4GB of RAM, 64GB of storage, TPM 2.0, and UEFI with Secure Boot. Windows 10 is nearing its end of support, meaning it will no longer receive security updates, which poses risks for users. Windows 11 includes features like BitLocker, Remote Desktop, Group Policy management, and AI-assisted Copilot. Users upgrading from Windows 10 should back up their files and ensure drivers are current. Windows 11 offers performance enhancements for gaming, such as DirectStorage and Auto HDR. Keys priced low are often OEM or volume-license keys tied to a single machine and may not be transferable.

AppWizard

March 13, 2026

Patch Me If You Can: AI Codemods for Secure-by-Default Android Apps

Meta’s Product Security team has developed a strategy to enhance mobile security through two main initiatives: creating secure-by-default frameworks that make secure Android OS APIs more accessible for developers, and utilizing generative AI to automate the migration of existing code to these frameworks. This approach allows for efficient large-scale updates and the ability to propose, validate, and submit security patches across millions of lines of code.

Winsage

March 12, 2026

Windows 11 KB5079473 & KB5078883 cumulative updates released

Microsoft has released cumulative updates KB5079473 and KB5078883 for Windows 11 versions 25H2, 24H2, and 23H2 as part of the March 2026 Patch Tuesday. These updates address security vulnerabilities, fix bugs, and introduce new features. Users can install the updates via Start > Settings > Windows Update or manually from the Microsoft Update Catalog. The build numbers will change to 26200.8037 for 25H2, 26100.8037 for 24H2, and 22631.6783 for 23H2. Key enhancements include improved device targeting data for Secure Boot certificates, better reliability in File Explorer searches, and various new features such as a curated selection of emojis, a new backup and restore experience, automatic activation of Quick Machine Recovery, a built-in network speed test on the taskbar, and the ability to set WebP images as desktop backgrounds. Additionally, improvements have been made to the Windows Update settings page and the reliability of waking from sleep. No new issues have been reported with this month's updates.

Winsage

March 11, 2026

Windows 11 keeps forcing unwanted updates with “too many coincidences” — Microsoft’s plan or just user error?

Windows updates in Windows 11 can be rolled out automatically or manually through the Settings app. Users have reported an increase in unsolicited upgrades to the latest version of Windows, prompting concerns and frustrations directed towards Microsoft. IT expert Günther Born noted "too many coincidences" regarding these updates. Microsoft plans to automatically install the latest feature update (25H2) on older versions that have reached their end of service. Speculation suggests that unwanted upgrades may be linked to Microsoft's enablement packages, which facilitate version transitions. A user reported an automatic upgrade from Windows 10 to Windows 11 while they were away. Disabling TPM 2.0 should theoretically prevent automatic upgrades, but this has proven complex. Microsoft will discontinue support for Windows 11 version 24H2 on October 13, 2026, after which users will need to upgrade to version 25H2 for continued security updates.

Winsage

March 4, 2026

PoC Exploit Released for Microsoft Windows Error Reporting ALPC Privilege Escalation

A proof-of-concept exploit for CVE-2026-20817, a local privilege escalation vulnerability in the Windows Error Reporting (WER) service, has been released by security researcher oxfemale on GitHub. This vulnerability allows low-privileged users to gain SYSTEM-level access through crafted Advanced Local Procedure Call (ALPC) messages. The flaw is located in the WER service's SvcElevatedLaunch method, which fails to validate caller privileges before executing WerFault.exe with user-supplied command line parameters. The CVSS v3.1 base score for this vulnerability is 7.8, indicating a high severity level. It affects unpatched versions of Windows 10, Windows 11, Windows Server 2019, and Windows Server 2022 prior to the January 2026 update. Demonstrations have shown successful exploitation on Windows 11 23H2. Security teams are advised to monitor for unusual processes related to WerFault.exe, investigate missing SeTcbPrivilege in SYSTEM tokens, and review WER-related activities from low-privilege users. Immediate application of the January 2026 security patches is recommended, and a temporary workaround involves disabling the WER service.

Winsage

March 4, 2026

Did Windows 10 automatically update itself on this user’s PC with curiously perfect timing — or was this mid-shower surprise just an honest mistake?

Microsoft has been encouraging users to upgrade to Windows 11 since its launch in October 2021, employing tactics such as full-screen pop-up ads. Some users prefer Windows 10 due to its hardware requirements and design issues. A user named 'djseifer' reported that their Windows 10 PC automatically upgraded to Windows 11 while they were away, despite declining previous upgrade prompts. Upon returning, they expressed dissatisfaction with the new interface, particularly the Start menu and centralized taskbar. It is generally understood that Microsoft should not forcibly upgrade a user's operating system without consent, although the user may have inadvertently consented through prior agreements. Users can disable automatic updates to maintain their Windows 10 experience, but this may expose them to security vulnerabilities. Microsoft requires TPM 2.0 for Windows 11, complicating upgrades for unsupported hardware. Windows 10 will still be usable after Microsoft ends support on October 14, 2025, but users will face increased risks from cyber threats. Extended Security Updates (ESU) will provide limited security updates for a time.

Winsage

March 3, 2026

PoC Exploit Released for Windows Error Reporting ALPC Privilege Escalation

A critical local privilege escalation vulnerability, tracked as CVE-2026-20817, affects Microsoft Windows through the Windows Error Reporting (WER) service. This flaw allows authenticated users with low-level privileges to execute arbitrary code with full SYSTEM privileges. The vulnerability resides in the SvcElevatedLaunch method (0x0D) and fails to validate user permissions, enabling attackers to launch WerFault.exe with malicious command-line parameters from a shared memory block. The exploit affects all versions of Windows 10 and Windows 11 prior to January 2026, as well as Windows Server 2019 and 2022. Microsoft addressed this vulnerability in the January 2026 Security Update. Organizations are advised to apply security patches and monitor for unusual WerFault.exe processes.

Tech Optimizer

February 25, 2026

Fix “kernel security check failure”: Step-by-step guide

The "kernel security check failure" error on Windows indicates corruption in critical system memory or internal data structures, triggering a bug check to prevent further damage. It is marked by the Blue Screen of Death (BSOD) displaying the message “KERNELSECURITYCHECK_FAILURE” and stop code 0x139. Causes include outdated or incompatible drivers, corrupted system files, faulty RAM, disk errors, third-party software conflicts, faulty Windows updates, overclocking, and malware threats. Common fixes involve updating Windows and drivers, scanning for corrupted files, using Check Disk (CHKDSK), running Windows Memory Diagnostic, and performing System Restore. If unresolved, a clean installation of Windows may be necessary. Regular updates and avoiding unnecessary software installations can help prevent future occurrences.

Winsage

February 24, 2026

Microsoft extends security patching for three Windows products at a price

Support for Windows 10 Enterprise LTSB 2016 and Windows 10 IoT Enterprise 2016 LTSB will end on October 13, 2026, while Windows Server 2016 will reach its end of support on January 12, 2027. Organizations using these products will receive one final monthly security update on the specified dates, after which they will not receive security patches, updates, or technical support. The Extended Security Updates (ESU) program allows organizations to purchase coverage for up to three years beyond the end of support, with pricing starting at a specified amount per device for the first year and doubling for each subsequent year. Windows Server 2016's ESU pricing has not been announced, and Microsoft recommends upgrading to newer Long-Term Servicing Channel releases. In the European Economic Area, Windows 10 users can access ESU until October 14, 2026, without payment or cloud account requirements due to advocacy from Euroconsumers.