security vulnerabilities Archives

Winsage

January 30, 2026

Microsoft to disable NTLM by default in future Windows releases

Microsoft will disable the NTLM authentication protocol by default in the next major Windows Server release and associated Windows client versions. NTLM, introduced in 1993, has been vulnerable to various cyberattacks, including NTLM relay and pass-the-hash attacks. The transition plan includes three phases: enhanced auditing tools in Windows 11 24H2 and Windows Server 2025, new features like IAKerb and a Local Key Distribution Center in late 2026, and eventually disabling network NTLM by default in future releases. NTLM will remain in the operating system but will not be used automatically. Microsoft deprecated NTLM authentication in July 2024 and has encouraged developers to transition to Kerberos or Negotiation authentication.

Winsage

January 30, 2026

Windows 11 KB5074105 update fixes boot, sign-in, and activation issues

Microsoft has released the KB5074105 preview cumulative update for Windows 11, which includes 32 enhancements to improve user experience. This optional update allows administrators to test upcoming fixes and features before the next Patch Tuesday. It addresses issues such as Explorer.exe hanging during login with specific startup apps, system unresponsiveness during startup with Windows Boot Manager debugging enabled, iSCSI boot failures, and problems with Windows license migrations during upgrades. The update elevates Windows 11 25H2 and 24H2 devices to builds 26200.7705 and 26100.7705, respectively. Key highlights include enhanced Cross-Device Resume functionality, support for peripheral fingerprint sensors in Windows Hello Enhanced Sign-in Security, fixes for unresponsiveness when running Windows Terminal with elevated permissions, resolution of GPU-related system errors, and improvements to Windows Sandbox. Microsoft will also introduce distinct identifiers for Windows 11 and Windows Server 2025 updates starting with the January 2026 security update, and has simplified update titles for better accessibility.

Tech Optimizer

January 29, 2026

Using Windows 10? Do This Now to Lower Your Risk of Being Hacked

Support for Windows 10 officially ended last year, and Microsoft recommends users transition to Windows 11 or buy new computers. Users will no longer receive security updates, and any issues encountered will not be supported by Microsoft. Windows Update will indicate that devices are no longer receiving updates, leaving users to manage security vulnerabilities themselves. Microsoft Defender Antivirus will continue to receive updates until October 2028, and users can enroll in Extended Security Updates (ESU) for an additional year of security updates until October 13, 2026, under certain conditions. Windows 11 installations surpassed Windows 10 in June 2025, with Windows 11 at 53.7% and Windows 10 at 42.7%. Users opting to stay on Windows 10 should implement third-party security solutions to mitigate risks from the lack of official updates.

Winsage

January 27, 2026

Windows 11 Update KB5074109 Disrupts Modems for Select Users

Many users have experienced issues with their modems after installing the January 2026 Security Update for Windows 11 (KB5074109), which removed several legacy modem drivers, including agrsm64.sys (x64), agrsm.sys (x86), smserl64.sys (x64), and smserial.sys (x86). This removal has rendered many modems inoperable. Users have reported frustrations, with some restoring functionality by uninstalling the update. Microsoft has stated that the removal of these drivers was necessary to address security vulnerabilities, but this has not alleviated user dissatisfaction. Many users are left with limited options and are advised to uninstall the update and pause future updates while awaiting new drivers from manufacturers.

Tech Optimizer

January 27, 2026

Not a virus: What it means and why antivirus flags it

The term “not a virus” is used by antivirus software to indicate that a file does not match known malware signatures but still triggers a detection. This means the file is not automatically blocked or confirmed as a threat; the alert highlights something unusual, leaving the decision to the user. Alerts typically arise when software exhibits behavior associated with increased risk, despite lacking clear evidence of malicious intent. Malware is specifically designed to inflict harm, while files labeled “not a virus” may perform actions that raise security concerns but are not classified as harmful. Antivirus programs identify threats through signature detection and heuristic behavior-based detection. Legitimate programs, such as system utilities, download managers, and game cheats, can inadvertently trigger “not a virus” alerts. Common types of detections include adware, riskware, and potentially unwanted applications (PUA). The primary security risk of “not a virus” files is exposure rather than direct attacks, and privacy concerns often arise from data collection by these programs. If an antivirus detects “not a virus,” users should identify the file, review recent changes, compare detections, and decide whether to keep or remove it. To reduce unwanted alerts, users should download from official sources, use custom installation options, and remove unused software.

Winsage

January 26, 2026

Windows PCs ‘Suddenly’ Fail After Microsoft’s New Update

Microsoft has acknowledged an issue where certain devices fail to boot, resulting in a Black Screen of Death (BSOD) with the stop code UNMOUNTABLEBOOTVOLUME, affecting users of Windows 11 25H2 and 24H2 who installed the KB5074109 update. This update was intended to address numerous security vulnerabilities. Users encountering the 0xED error code may face system corruption or hardware failures, and while Windows Recovery is usually effective, it may fail in some cases, requiring a clean installation of Windows using an ISO file. Microsoft describes the reports as limited but acknowledges the potential for the issue to expand as more users report their experiences.

Winsage

January 20, 2026

Microsoft issues emergency patch for latest Windows bugs

Microsoft released the January Patch Tuesday update on January 13, 2026, addressing over 110 security vulnerabilities. The update introduced bugs affecting Windows 11, Windows 10, and Windows Server. The first issue involves authentication failures when connecting to a Cloud PC via Remote Desktop, primarily affecting Windows 11 25H2, Windows 10 22H2 ESU, and Windows Server 2025. The second issue affects systems with Secure Launch enabled, causing unexpected restarts instead of shutting down or entering hibernation mode, specifically impacting Windows 11 23H2. Microsoft has released emergency patches for the affected versions, which include: - Windows 11, versions 25H2 and 24H2 (KB5077744) - Windows 11, version 23H2 (KB5077797) - Windows 10, version 22H2 ESU and Windows 10 Enterprise LTSC 2021 (KB5077796) - Windows Server 2025 (KB5077793) - Windows Server 2022 (KB5077800) - Windows Server 2019 and Enterprise LTSC 2019 (KB5077795)

AppWizard

January 20, 2026

Google Plans Extra Safety Checks for Android App Sideloading

Google is introducing an online developer verification system to enhance the safety of sideloaded Android applications. This feature will verify the authenticity of app developers when users sideload applications, requiring an active internet connection for verification. If a device is offline, users will receive a warning message indicating that the app developer cannot be verified. The verification system aims to provide transparency and empower users to make informed choices without restricting sideloading. Google has historically allowed sideloading but is increasingly aware of the associated security vulnerabilities. The company promotes Play Protect and has introduced warnings and safety checks to encourage cautious user behavior. Google acknowledges that many users rely on sideloaded apps for valid reasons and aims to ensure they are aware of the risks and can verify the trustworthiness of developers.

Winsage

January 19, 2026

Windows 11 shutdown bug forces Microsoft into out-of-band damage control

Microsoft released an out-of-band update for Windows 11, designated as KB5077797, on January 17 for version 23H2 to address a critical malfunction that prevented some systems from shutting down, restarting, or hibernating after the January Patch Tuesday update. This issue primarily affected systems with System Guard Secure Launch enabled by default. The update also resolves a separate authentication problem with Remote Desktop that caused credential prompts to fail or loop indefinitely. Additionally, Microsoft acknowledged a bug affecting classic Outlook POP account profiles, which has not yet been fixed. Users are urged to install KB5077797 to resolve these issues.

Winsage

January 19, 2026

The Last Windows Security Updates of January 2026 Are Here

Microsoft released its first set of security updates for the Windows operating system and various products in January 2026, addressing over 110 vulnerabilities. The updates are available for all supported versions of Windows, with Windows 10 receiving fixes only through the Extended Security Updates (ESU) program. Windows 11 versions 24H2 and 25H2 are the main consumer releases benefiting from these updates. Approximately 112–114 security updates were released, with around 8 rated as Critical. At least one zero-day vulnerability is actively exploited. The updates include security fixes for Windows, Office, Edge, Azure, and server components. Windows 11 versions 23H2, 24H2, and 25H2, as well as Windows Server 2023 and 2025, have known issues. Windows 11 version 24H2 and 25H2 received security fixes for multiple vulnerabilities, while version 23H2 continues to receive support through enterprise servicing channels. Windows 10 updates are limited to ESU-enrolled systems, with general support ending in October 2025. Windows Server 2016, 2019, 2022, 2023, and 2025 received January security updates, addressing important vulnerabilities without disclosing any critical ones. Microsoft also released updates for Office products and SharePoint Server components. Known issues after the January updates include credential prompt failures and authentication issues in Azure Virtual Desktop and Windows 365, particularly affecting the new Windows App. Workarounds involve using the classic Remote Desktop client or the web-based RDP client. Additionally, devices with Secure Launch enabled may experience shutdown and sleep mode failures. Microsoft has provided out-of-band fixes for certain affected systems as of January 18, 2026. Users can manually install updates through the Windows Update feature, and it is recommended to create a full system backup before proceeding with updates.