UEFI Archives

AppWizard

April 29, 2026

Denuvo has been cracked in all single-player games it previously protected — 2K Games and Denuvo reportedly retaliate with mandatory 14-day online checks

The skull-and-bones community has declared that there are no games utilizing Denuvo that remain uncracked or bypassed. The MKDev collective and DenuvOwO developed a hypervisor-based bypass (HVB) in late 2025, which intercepts Denuvo's verification checks. The cracker voices38 successfully removed Denuvo from several titles, including Resident Evil: Requiem. Denuvo has since implemented a 14-day mandatory online check for certain games, complicating the HVB method. The latest version of HVB requires users to disable Core Isolation and Driver Signature Enforcement to run games. The community includes notable figures like repacker FitGirl, who has acknowledged the collaborative efforts of DenuvOwO and voices38.

Winsage

April 27, 2026

Windows 11 KB5083769: The April Update may require the recovery key on certain BitLocker-enabled systems

The April update KB5083769 for Windows 11 versions 24H2 and 25H2, released on April 14, 2026, has a known issue where certain devices may enter BitLocker recovery mode after installation. This problem affects a limited subset of devices with specific, non-recommended BitLocker Group Policy settings. The issue arises when BitLocker is activated, a specific TPM platform validation policy is set to include PCR7, PCR7 binding is not feasible, the Windows UEFI CA 2023 certificate is present, and the device is not using the 2023-signed Windows Boot Manager. Microsoft advises organizations to review their BitLocker Group Policy settings and verify PCR7 binding status before deploying the update to prevent devices from requesting recovery keys. If the recovery prompt appears, users will need to enter the BitLocker recovery key, but subsequent reboots should not trigger the recovery process again if the Group Policy remains unchanged.

Winsage

April 16, 2026

Windows 11’s April update is locking some users out of their PCs

Users have reported issues with Windows 11 update KB5083769, which has triggered BitLocker recovery key prompts, locking some users out of their PCs. Microsoft acknowledged that the problem mainly affects corporate devices with specific BitLocker Group Policy settings. The issue is limited to systems where BitLocker is enabled, certain Group Policy configurations are set, and the Secure Boot State PCR7 Binding is “Not Possible.” Affected users need to enter their BitLocker recovery key or contact IT support for assistance. Microsoft has also provided guidance for IT departments to perform a Known Issue Rollback to remove the problematic updates, though this may expose systems to vulnerabilities.

Winsage

April 16, 2026

Microsoft April Update Forces BitLocker Recovery on Servers

A recent Microsoft security update, April 2026 KB5082063, has caused issues for administrators of Windows Server 2025 and Windows 11 systems, with many devices entering BitLocker recovery mode after reboot, requiring a 48-digit recovery key. This issue primarily affects enterprise-managed systems with specific TPM Group Policy settings involving PCR7 validation. Similar problems have been reported with updates KB5083769 and KB5082052 on Windows 11. The issue arises from five conditions: BitLocker must be enabled on the OS drive, the Group Policy must include PCR7, the msinfo32.exe tool must show Secure Boot State PCR7 Binding as “Not Possible,” the Windows UEFI CA 2023 certificate must be in the Secure Boot Signature Database, and the device must not be using the 2023-signed Windows Boot Manager. Microsoft suggests two workarounds: removing the TPM validation Group Policy before the update and re-enabling BitLocker, or applying a Known Issue Rollback (KIR) before installation. Skipping the April updates is not advisable due to the addressing of 167 vulnerabilities, including two zero-days. BitLocker recovery issues following updates have been recurring since 2022, with similar incidents reported in August 2022, August 2024, and May 2025, indicating ongoing challenges with Secure Boot certificates and TPM validation bindings in enterprise environments.

Winsage

April 16, 2026

Microsoft: April updates trigger BitLocker key prompts on some servers

Microsoft announced that certain Windows Server 2025 devices may experience a BitLocker recovery prompt after installing the April 2026 KB5082063 Windows security update. The recovery mode will be triggered under specific conditions: BitLocker must be enabled on the operating system drive, the Group Policy for TPM validation must be configured with PCR7, the Secure Boot State PCR7 Binding must indicate "Not Possible," the Windows UEFI CA 2023 certificate must be in the Secure Boot Signature Database, and the device must not be using the 2023-signed Windows Boot Manager. Microsoft stated that this issue is unlikely to affect personal devices, as the configurations are mainly found in enterprise-managed systems. They are working on a resolution and recommend administrators remove the Group Policy configuration before deploying the update. If removal is not possible, applying a Known Issue Rollback (KIR) is advised to prevent triggering the recovery prompt. Microsoft has previously addressed similar BitLocker recovery prompt issues in May 2025, August 2024, and August 2022.

Winsage

April 2, 2026

Windows Security App Gains Secure Boot Certificate Status Ahead of Major Certificate Refresh

The Secure Boot certificates used by the Unified Extensible Firmware Interface (UEFI) on Windows PCs will expire in late June 2026. Microsoft is rolling out updated certificates through Windows Update to ensure user protection. Starting in April 2026, users can check their device's status in the Windows Security app, which will feature a color-coded badge system: - Green Checkmark: New certificates are installed, no action needed. - Yellow Caution Badge: Update pending or blocked due to hardware/firmware issues (expected in May 2026). - Red Stop Icon: Alerts users that older certificates are expiring, potentially preventing essential boot-level security updates (may appear as early as June 2026). The status will also be indicated in the Windows Security system tray icon. Most users will have a seamless update process by keeping Windows Update enabled, with devices from 2025 and many from 2024 covered. Older machines will receive updates gradually, guided by major OEMs. Microsoft advises against ignoring yellow or red warnings, as devices without updated certificates may be vulnerable to security threats and incompatible with future Windows updates. A support resource is available at aka.ms/getsecureboot.

Winsage

April 2, 2026

Windows 3.1 On A Modern AM5-Based PC Is Surprisingly Usable

Enthusiasts can install Windows 3.1 on modern x86-compatible PCs, as demonstrated by tech aficionado [Omores]. The installation requires an AMD AM5 system with an Asus Prime X670-P motherboard that has a UEFI BIOS with the 'classic BIOS' Compatibility Support Module (CSM) enabled. Users can install Windows 3.1 using a USB floppy drive with backup floppies from the early 90s. Windows 3.1 features 'enhanced mode' for virtual memory and multitasking on systems with an 80386 CPU or better. The ahcifix.386 fix, developed by [PluMGMK], can resolve boot crashes related to SATA compatibility, and a separate SATA expansion card may also help. For video performance, [PluMGMK] provided the vbesvga.drv driver, which supports all VESA BIOS Extensions modes and works with the RTX 5060 Ti GPU, including DCI support for direct access to GPU VRAM. Audio functionality is robust but has minor driver-related quirks.

Winsage

April 1, 2026

Get a Windows 11 Pro license for just $12.97 (That’s a 93% discount!)

The Windows 11 Pro license is currently available for .97, significantly reduced from its standard retail price of 9. This offer is found on the Tech Deals website and is intended for Windows machines needing a new license, not for devices already running Windows 10 that cannot access a free upgrade. Minimum system requirements include a 1GHz processor with at least 2 cores, 4GB RAM, 64GB storage, UEFI Secure Boot capability, TPM version 2.0, a GPU compatible with DirectX 12 or later, a display of at least 9 inches with 720p resolution, and internet connectivity for activation. Activating Windows 11 Pro removes the "Activate Windows" watermark, unlocks personalization options, ensures access to updates and technical support, and provides enhanced security and remote management features compared to the Home version.

AppWizard

April 1, 2026

Running A Game On A PC With No System RAM

The video by PortalRunner explores alternatives for running modern software in environments with limited RAM, particularly in the context of the challenges posed by the absence of DDR5 memory. It discusses various strategies, including: - Testing Linux with specific boot arguments, which can lead to system failures if insufficient RAM is allocated. - Maximizing swap usage on SSDs, which, despite being faster than HDDs, results in sluggish performance due to overhead. - Utilizing video RAM from GPUs as a substitute for system RAM, which also suffers from significant overhead. - Modifying a CoreBoot BIOS image to use CPU cache memory, allowing lightweight software to run without system RAM, although this method raises scalability and practicality concerns. The exploration highlights creative responses to RAM shortages in computing.

Tech Optimizer

March 31, 2026

Hurry! Norton is knocking up to 60% off its antivirus app

Norton is currently offering its 360 Deluxe package for five devices at a discounted rate of .99 per year, down from its standard price of 4.99 annually, representing a 60% discount. Norton 360 Deluxe includes features such as file backup, a rescue disk for system recovery, and scam protection against phishing attempts. It offers various scanning options: a quick antivirus scan, a full scan, and a deep scan conducted during startup. The software also provides ransomware protection that automatically backs up critical files, including those stored in UEFI.