Security Archives

Winsage

May 15, 2026

Microsoft’s MDASH AI found 16 critical Windows flaws before hackers could exploit them

Microsoft is enhancing its cybersecurity measures by integrating advanced technologies such as artificial intelligence and machine learning to improve real-time threat detection and response. The company offers comprehensive security solutions for various IT infrastructure aspects and fosters collaboration with other tech firms and government entities to share intelligence on emerging threats. This proactive approach aims to empower organizations worldwide to strengthen their defenses against cyberattacks.

Winsage

May 15, 2026

ON THIS DAY: Microsoft offers an olive branch for users of ‘Non-Genuine’ Windows PCs to get a Windows 10 upgrade

On this day 11 years ago, Microsoft extended full Windows 10 upgrades to non-genuine Windows PCs, marking a shift in its strategy to prioritize a unified Windows ecosystem over strict licensing enforcement. Earlier in the same year, Microsoft announced that owners of licensed Windows 7 and 8.1 PCs could upgrade to Windows 10 for free within a year of its launch, and later allowed users of unlicensed versions to upgrade as well, although they would still be using unlicensed software. This decision aimed to consolidate users onto a secure platform, enhancing security and fostering a cohesive ecosystem.

Winsage

May 15, 2026

This is what I’m doing with my old Windows 10 PC instead of trading it in like Microsoft wants me to

Microsoft is encouraging users to upgrade from Windows 10 to Windows 11, but the trade-in value for Windows 10 PCs may not be appealing. Alternatives for aging machines include installing Linux Mint as a dual-boot option, repurposing the PC as a Network Attached Storage (NAS) device using software like TrueNAS Scale, or continuing to use Windows 10 with potential third-party support for security patches after official support ends. The author expresses a commitment to finding a productive use for their hardware rather than discarding it.

Winsage

May 15, 2026

Windows DNS Client Security Flaw Exposes Systems to Remote Code Execution

Windows systems are threatened by a vulnerability in the Windows DNS Client, identified as CVE-2026-41096, which allows remote code execution without user intervention. It has a CVSS base score of 9.8, indicating high severity. The flaw is a heap-based buffer overflow in the dnsapi.dll component, enabling unauthenticated remote attackers to execute arbitrary code. Exploitation requires sending a specially crafted DNS response to a vulnerable system, potentially leading to complete control over the host. Affected systems include supported versions of Windows 11 and Windows Server 2022/2025. Microsoft released security updates on May 12, 2026, and administrators are advised to apply these patches and reboot systems. Despite the severity, Microsoft currently classifies exploitation as “Exploitation Unlikely,” with no known public exploits or in-the-wild attacks.

AppWizard

May 15, 2026

One UI 9 makes it easier to spot sideloaded apps on your Galaxy phone

Samsung has begun the rollout of the One UI 9 beta for the Galaxy S26 series, featuring enhanced security measures. Key additions include the Auto Blocker with a security report feature and the reinstatement of USB connection blocking in Maximum restrictions mode. The beta version allows monitoring of "unknown" apps, alerting users to high-risk applications and blocking their execution and installation. Users can access the Manage unknown apps section in Settings to view and uninstall sideloaded applications from non-approved sources. This feature aims to improve user experience and security oversight, with expectations for inclusion in the stable release.

Winsage

May 15, 2026

Productivity nerds, Windows 11 Pro is $9.97 through May 18

Microsoft Windows 11 Pro is currently available for .97 (regularly priced at 9) until May 18. Key features include Snap Layouts for multitasking, Virtual Desktops for organization, enhanced security with TPM 2.0 and BitLocker, a built-in AI assistant called Copilot, and professional-grade features like Hyper-V virtualization and Azure AD support.

Winsage

May 15, 2026

Windows Update will soon roll back problematic drivers automatically

Microsoft has introduced a feature called Cloud-Initiated Driver Recovery (CIDR) for Windows 11, which allows the automatic rollback of problematic drivers without user intervention. This feature aims to restore system stability by reverting to a previously verified, stable driver directly from the Hardware Dev Center when a driver update causes issues. CIDR will begin a gradual rollout starting in September. Additionally, Microsoft is enhancing user control over update management, allowing users to pause or skip updates and manage restarts without immediate installation. The company also launched the Driver Quality Initiative (DQI) to improve kernel-mode driver security and reliability.

Winsage

May 15, 2026

Windows Update Will Soon Revert Problematic Drivers Automatically

Microsoft has introduced "Cloud-Initiated Driver Recovery" (CIDR) for Windows Update, which automatically rolls back problematic drivers without user intervention. This system allows Microsoft to trigger recovery actions directly from the Hardware Dev Center, eliminating the need for partners or users to resolve driver issues. The CIDR rollout began in September and aims to address long-standing driver problems, such as the NVIDIA "Nvlddmkm.sys" error. Additionally, users can now pause and skip updates and restart their PCs without mandatory installations. Microsoft is also launching a Driver Quality Initiative (DQI) to enhance the security and reliability of kernel mode drivers through improved verification processes and lifecycle management.

Winsage

May 15, 2026

Microsoft confirms next Windows 11 update will “accelerate app launch and core shell experiences”

Microsoft will roll out Low Latency Profile enhancements for Windows 11 in the coming weeks, currently being tested in Release Preview builds. This feature optimizes CPU performance by temporarily boosting frequency during brief intervals, potentially improving app launch responsiveness by up to 40% and system flyouts by up to 70%. Preliminary tests indicate significant performance improvements, especially for users with lower-end hardware. The feature operates in the background and is not user-configurable. It will be included in an upcoming optional non-security preview update expected by the end of the month, followed by integration into the next monthly security patch on June 9. Updates will be rolled out in phases. These enhancements are part of Microsoft's Windows K2 initiative.

Winsage

May 14, 2026

Windows 11 and Microsoft Edge hacked at Pwn2Own Berlin 2026

On the inaugural day of Pwn2Own Berlin 2026, a total of ,000 was awarded to security researchers for exploiting 24 unique zero-day vulnerabilities. Orange Tsai earned ,000 for chaining four logic bugs to achieve a sandbox escape on Microsoft Edge. Windows 11 was targeted by Angelboy, TwinkleStar03, Marcin Wiązowski, and Kentaro Kawane, each earning ,000 for demonstrating new privilege escalation zero-days. Valentina Palmiotti earned ,000 for rooting Red Hat Linux for Workstations and an additional ,000 for a zero-day in the NVIDIA Container Toolkit. Other notable exploits included k3vg3n earning ,000 for taking down LiteLLM, Satoki Tsuji and haehae earning ,000 for exploiting NVIDIA Megatron Bridge zero-days, Compass Security and maitai earning ,000 each for hacking OpenAI's Codex, haehae earning ,000 for a Chroma zero-day, and STARLabs SG earning ,000 for exploiting a LM Studio zero-day. The DEVCORE Research Team leads the competition with ,000 in earnings, followed by Valentina Palmiotti with ,000. The contest is held at the OffensiveCon conference from May 14 to May 16, with over ,000,000 in cash and prizes available. Participants must target fully patched products and demonstrate arbitrary code execution. Vendors have a 90-day window to release security fixes after zero-day flaws are disclosed. Last year, the TrendMicro Zero Day Initiative awarded ,078,750 for 29 zero-day vulnerabilities.