NewApp Digest
search bot

Security update

Microsoft now lets admins choose pre-installed Store apps to uninstall
Winsage
May 1, 2026

Microsoft now lets admins choose pre-installed Store apps to uninstall

Microsoft has updated its Windows 11 operating system to enhance the management of preinstalled applications. The new RemoveDefaultMicrosoftStorePackages policy allows IT administrators to remove any preinstalled MSIX/APPX applications by referencing their Package Family Name (PFN) through Group Policy Object (GPO) or custom OMA-URI for mobile device management (MDM). This feature requires devices to have at least the April 2026 Windows non-security update. It is available for Windows 11 version 24H2 Enterprise and Education editions, whereas it was initially exclusive to version 25H2 or later. A comprehensive list of supported applications and instructions for applying the policy are provided in Microsoft's documentation. Additionally, a new policy setting enables the uninstallation of the AI-powered Copilot digital assistant from enterprise devices after the April 2026 Patch Tuesday updates. The dynamic list option for this policy will be rolled out in the coming months.
April KB5083769 Windows 11 update causes backup software failures
Winsage
May 1, 2026

April KB5083769 Windows 11 update causes backup software failures

The KB5083769 security update released in April 2026 has disrupted the functionality of various third-party backup applications on Windows 11 versions 24H2 and 25H2, primarily due to issues with the Volume Shadow Copy Service (VSS). Affected applications include Acronis Cyber Protect Cloud, Macrium Reflect, NinjaOne Backup, and UrBackup Server. Users have reported receiving an error message indicating that backups have failed due to VSS timeouts. Acronis has acknowledged the issue, stating it affects both Windows 11 Pro and Home editions, and warns of potential broader system issues. A temporary solution involves uninstalling the KB5083769 update or pausing Windows updates. Additionally, Microsoft has issued out-of-band updates for critical issues affecting Windows Server systems and warned that some Windows Server 2025 devices may encounter BitLocker recovery prompts after installing the KB5082063 update.
silver Android smartphone
Winsage
April 30, 2026

Microsoft should steal concepts from this Windows redesign project: Envisioning an ad‑free Windows 11 without AI clutter

Windows 11 has faced criticism from users regarding its hardware requirements and perceived overload of features. A customization community has emerged, with developers like Raditya Aryaputra proposing a "Refined" version of Windows 11 that focuses on essential features and a cleaner interface. This concept includes a compact Start menu without ads or forced recommendations and a more intuitive Windows Search. Microsoft is planning enhancements for Windows 11, internally referred to as Windows K2, set for a 2026 release, which may incorporate user feedback and ideas from Aryaputra's project. Microsoft has also redesigned the Start menu but received feedback that it is too large and lacks customization. The company is reintroducing Windows Insider meetups for user feedback and reassessing its AI strategy within Windows 11. Mainstream support for Windows 10 will end on October 14, 2025, pushing users towards Windows 11.
I investigated Windows 11's massive 5GB monthly .msu updates. AI is only part of the problem.
Winsage
April 28, 2026

I investigated Windows 11’s massive 5GB monthly .msu updates. AI is only part of the problem.

Windows 11 updates have significantly increased in size, with monthly cumulative updates often exceeding 4GB and some approaching 5GB. One update can expand to nearly 9GB when extracted. Microsoft has shifted to delivering Latest Cumulative Updates (LCUs), which include all previous fixes, leading to larger update sizes over time. The introduction of Checkpoint Cumulative Updates aims to reduce this growth by establishing periodic baselines, but the effectiveness has been mixed. The May 2025 cumulative update saw a size increase from approximately 6.5GB to nearly 9GB, with new MSIX files related to semantic search and on-device AI contributing to this growth. Windows Update uses applicability logic to minimize download sizes for users, but enterprises must download full packages, resulting in increased storage costs. The average yearly storage cost for enterprises rose from about 11 GB in 2024 to 52 GB by 2026. Users can check their actual download sizes through the Windows Update settings and Event Viewer logs.
Microsoft: New Remote Desktop warnings may display incorrectly
Winsage
April 28, 2026

Microsoft: New Remote Desktop warnings may display incorrectly

Microsoft has identified an issue affecting the display of security warnings when users open Remote Desktop (.rdp) files across all supported versions of Windows, including Windows 11, Windows 10, and Windows Server. The security warning may not render correctly, making the text difficult to read and buttons misaligned, especially when multiple monitors with different display scaling settings are used. This issue often results in overlapping text or obscured buttons in the warning window. The problem is part of Microsoft's security enhancements introduced with the April 2026 cumulative updates, which aim to mitigate risks associated with malicious RDP connection files. Users receive a one-time educational prompt upon opening an RDP file for the first time, followed by a security dialog that provides information about the file's publisher and resource redirections. RDP files are commonly used in enterprise environments, but their exploitation in phishing campaigns has raised security concerns, particularly by groups like the Russian state-sponsored APT29.
Microsoft Changes Windows Security After 15 Years—Update By ‘End Of April’
Winsage
April 22, 2026

Microsoft Changes Windows Security After 15 Years—Update By ‘End Of April’

Microsoft is set to expire the Secure Boot authentication certificates that protect Windows PCs from threats upon each restart, with this initiative beginning in April 2023. The update will install new certificates and confirm if user action is necessary, with all devices expected to have the update by the end of April 2026. Users can check their Secure Boot status in Windows Security, where a badge system indicates the status. If the certificates expire, users may be at risk of boot-level malware. Microsoft is enhancing visibility of Secure Boot certificate status to aid user awareness. Users should check their PC by the end of the month to ensure it is updated.
silver Android smartphone
Winsage
April 21, 2026

Microsoft releases Windows Server update fix to fix its April update fixes

Microsoft has released an out-of-band update to fix a restart loop issue affecting certain Windows Server devices after the April 2026 update. The problem arose after installing the April 2026 Windows security update (KB5082063), causing domain controllers in multi-domain environments using Privileged Access Management (PAM) to experience LSASS crashes during startup, leading to repeated restarts and potential domain outages. The update targets Windows Server versions 2016 through 2025 and includes hotpatches for failed installations. Only Windows Servers were affected, while some enterprise devices may need to enter their BitLocker recovery key after the first restart post-installation. Microsoft has issued similar updates recently, raising concerns about the frequency of these occurrences.
Emergency Update for Windows Server Following Reboot Issues
Winsage
April 20, 2026

Emergency Update for Windows Server Following Reboot Issues

Microsoft has released emergency updates for various versions of Windows Server due to issues arising from the April 2026 Patch Tuesday security updates. A significant problem was a reboot loop affecting domain controllers caused by crashes of the Local Security Authority Subsystem Service (LSASS), which disrupted authentication services. This issue was especially problematic during the setup of new domain controllers. Additionally, some Windows Server 2025 systems encountered difficulties in installing the security update KB5082063. The out-of-band update (KB5091157) for Windows Server 2025 addresses both the installation failure and the domain controller restart issue. Other updates targeting the domain controller restart problem were released for additional supported Windows Server versions. Microsoft has introduced an out-of-band update for seven versions, including KB5091157 for Windows Server 2025 and KB5091571 for Windows Server, version 23H2. Furthermore, some Windows Server 2025 devices may boot into BitLocker recovery mode after the update, requiring users to enter a BitLocker recovery key.
Microsoft tests Windows Explorer speed, performance improvements
Winsage
April 20, 2026

Microsoft tests Windows Explorer speed, performance improvements

Microsoft is enhancing File Explorer for Windows 11 Insider program users, focusing on improved launch speed and performance. A preloading feature was tested that allows File Explorer to load in the background for faster access, which users can disable in the Folder Options. These updates follow the introduction of Startup Boost for Office applications, which also aims to improve loading times. The Windows Insider Program Team is also working on enhancing the reliability of the explorer.exe process and addressing issues with bright white flashes when opening File Explorer in dark mode. Additionally, a new Xbox mode has been introduced for Windows 11 PCs, providing a full-screen gaming interface to reduce distractions. These updates are being rolled out to Insiders in the Release Preview channel with specific Windows 11 builds installed.
Search