Security update Archives

Winsage

March 23, 2026

Microsoft fixes broken Windows update days after vowing fewer broken updates

Microsoft released an out-of-band update to address bugs from the March 2026 security update, which caused some users to receive a "no internet" error when signing into Microsoft applications, despite having a stable connection. Users utilizing Microsoft Entra ID were not affected by this issue. Prior to the fix, Microsoft advised users to restart their devices and maintain a stable internet connection. The new update includes all elements from the March 10 security update and specifically resolves the connectivity issue. Windows chief Pavan Davuluri has committed to improving reliability and stability in the operating system, emphasizing thorough testing of updates before release.

AppWizard

March 20, 2026

Android’s New Advanced Flow: How To Sideload Apps After Google’s 2026 Security Update

Android enthusiasts expressed discontent over Google's announcement to restrict sideloading of applications for enhanced security. Developers of the third-party app store F-Droid criticized the restrictions. Google has introduced new policies to balance security and platform openness, allowing power users to sideload apps from unverified developers through a feature called Advanced Flow. Users must enable developer mode, complete a verification check, restart their devices, and undergo a 24-hour waiting period with additional authentication before installing apps. Users can choose to allow installations from unverified developers for seven days or indefinitely, but will receive warning messages and must confirm installations. The Advanced Flow feature is set to roll out in August.

Winsage

March 19, 2026

Microsoft publishes a workaround for Samsung’s C: drive woes

Microsoft has released a guide to help users regain access to their C: drives affected by a Windows security update that impacted the Samsung Galaxy Connect app. Users must sign in with administrator rights, uninstall the Samsung applications, change file ownership on the C: drive to 'Everyone,' create a batch file to restore permissions, and restart their devices. Microsoft and Samsung have validated these recovery steps, and users can seek additional support from Samsung if needed. The Samsung Galaxy Connect app was temporarily removed from the Microsoft Store, but a previous version has been reinstated. The issue is marked as "Resolved," indicating no further patch from Microsoft is expected.

Winsage

March 17, 2026

Microsoft and Samsung scramble to fix a major C: drive lockout bug on Galaxy devices — faulty Galaxy Connect app leaves users with ‘limited’ recovery options following recent Windows 11 update

An unusual bug affecting Windows 11 users on Samsung devices prevents access to the main C: drive, following a February 2026 security update (KB5077181). Users receive an "Access denied" message when trying to launch applications or access files. The issue is linked to a Samsung-specific application, particularly the Galaxy Connect and Galaxy Share Folder applications, which may have broken Access Control Lists in Samsung’s factory image for Windows. Affected devices include various models of the Galaxy Book 4 laptops and certain Samsung Desktop models. Users are advised to remove the affected applications or revert to a recommended version while awaiting an official resolution from Microsoft and Samsung.

Winsage

March 17, 2026

Microsoft to Block Windows 11 and Server 2025 Automated Installation After Critical RCE Vulnerability

Microsoft is implementing a two-phase initiative to disable the hands-free deployment feature in Windows Deployment Services (WDS) due to a critical remote code execution vulnerability (CVE-2026-0386) identified on January 13, 2026. This vulnerability arises from improper access control related to the Unattend.xml file, which is transmitted over an unauthenticated RPC channel, allowing attackers on the same network segment to exploit it. Successful exploitation could grant SYSTEM-level privileges and compromise OS deployment images. The initiative includes: - Phase 1 (January 13, 2026): The hands-free deployment feature will remain operational but can be disabled. New Event Log alerts and registry key controls will be introduced to enforce secure practices. - Phase 2 (April 2026): The hands-free deployment feature will be completely disabled by default for administrators who have not modified registry settings. Administrators can temporarily re-enable the feature by setting AllowHandsFreeFunctionality = 1, but this is not secure. Recommendations include reviewing WDS configurations, applying security updates, setting registry keys for secure behavior, monitoring Event Viewer for alerts, and considering alternative deployment methods. Microsoft’s KB article 5074952 provides further guidance for impacted organizations.

Winsage

March 16, 2026

Windows 11 KB5079473 is not causing BSODs or an inaccessible C: drive and app failures, says Microsoft

The March 2026 Patch Tuesday update, KB5079473, is not causing significant issues like BSODs or reboot loops, according to Microsoft. Reports of an inaccessible C: drive and application malfunctions on Samsung PCs are linked to a recent update of the Galaxy Connect app, not the Windows update. Microsoft confirmed no known connections between the March update and major system failures. The update includes over a dozen security fixes and introduces new features, such as improvements to the File Explorer search bar and a Bing-based Internet speed test tool. Specific Samsung models are experiencing C drive accessibility issues due to the Galaxy Connect app, which has disrupted permissions.

Winsage

March 15, 2026

Microsoft Releases Emergency Windows 11 Hotpatch to Fix Remote Code Execution Flaw

Microsoft has released an out-of-band hotpatch update, KB5084597, to address three critical remote code execution vulnerabilities (CVE-2026-25172, CVE-2026-25173, CVE-2026-26111) in the Windows Routing and Remote Access Service (RRAS) management tool. This update is specifically for Windows 11 Enterprise devices in the hotpatch program that did not receive fixes during the March 2026 Patch Tuesday. The vulnerabilities can be exploited by an authenticated attacker within the domain, potentially leading to remote code execution. Hotpatch updates apply fixes through in-memory patching without requiring a device reboot, making them suitable for mission-critical devices. The update is applicable to Windows 11 versions 24H2, 25H2, and Windows 11 Enterprise LTSC 2024, and will be automatically installed on enrolled devices without a restart. Non-enrolled devices received the fix via the standard March 10 Patch Tuesday update.

Winsage

March 14, 2026

A critical Windows 11 bug has locked some users out of the C: drive, Microsoft admits — here’s what you can do if you’re affected

Selected users of Windows 11, particularly those with Samsung laptops, are experiencing an issue that makes their main C: drive inaccessible, displaying the error message "C: is not accessible – Access denied." This problem has been acknowledged by Microsoft and appears to have arisen after the February 2026 security update (KB5077181). It primarily affects users of Windows 11 versions 24H2 and 25H2 in regions such as Brazil, Portugal, Korea, and India. Microsoft is investigating the issue, which may be linked to the Samsung Share app, and has provided a potential workaround to roll back to a previous version via the Settings > Windows Update menu. Users have also suggested changing the ownership of the C: drive as a workaround, though this comes with risks.

Winsage

March 12, 2026

Windows 10/11 Patch Day March: Microsoft delivers the big security update, but as usual, the real message is in the fine print

In March, Microsoft released cumulative security updates for Windows 10 and Windows 11, with support for certain versions continuing until March 2026. The updates include KB5079466 for Windows 11 version 26H1, KB5079473 for versions 24H2 and 25H2, KB5078883 for version 23H2, and KB5078885 for Windows 10 version 22H2. These updates will be distributed via Windows Update, the Microsoft Update Catalog, and WSUS for enterprise environments. This month, Microsoft combined the Servicing Stack Update (SSU) with the Latest Cumulative Update, simplifying the update process. Key enhancements include improvements to Secure Boot, with expanded device target data for new certificates, and security enhancements for Explorer’s search functionality in Windows 11 versions 24H2 and 25H2. A fix for Windows Defender Application Control (WDAC) was also implemented, addressing issues with COM objects under certain policy configurations. The Windows System Image Manager received a new warning dialog for confirming the trustworthiness of catalog files, which is important for enterprise environments. Updates for Windows 10 22H2, despite its end-of-life status, included fixes for secure boot issues and improvements for file version history in the Control Panel. An SSU for Windows 11 (KB5077869) was also released to maintain update stability. Microsoft's updates scheduled for March 2026 will address vulnerabilities in components like the Windows App Installer, SQL Server, and Microsoft Office. The Security Update Guide provides detailed information on specific vulnerabilities and affected components.

Winsage

March 12, 2026

Microsoft adds internet speed test tool to taskbar in Windows 11, but it’s no different from a desktop shortcut

Microsoft has begun rolling out its March 2026 update for Windows 11, which includes security enhancements and a new feature that allows users to test internet speed. This feature is accessible via a “Perform speed test” option when right-clicking the WiFi or Ethernet icon in the taskbar. Selecting this option directs users to their default web browser, opening a speed test page on Bing with the search query “internet speed test.” The feature serves as a shortcut to a webpage rather than a fully integrated application. It respects the system's default browser setting, allowing users to open the speed test in their preferred browser. The speed test utilizes technology from Ookla, moving away from Microsoft's previous Azure-based tool for better accuracy and reliability.