Windows 11 version 24H2 Archives

Winsage

May 6, 2026

Microsoft enables Hotpatching by default: Windows updates without restarts become a reality

Beginning in May 2026, Microsoft will introduce Hotpatching as a default feature for compatible systems, allowing security updates to be applied without requiring a restart. Hotpatching updates code directly in the memory of running processes, enabling selective updates without interrupting the entire system. It does not replace monthly security updates but alters their activation process on eligible systems, categorized as security updates within the monthly B releases. Eligible systems must be running Windows 11 version 24H2 or newer and possess suitable licenses such as Enterprise, Education, Microsoft 365, or Windows 365. Management of these updates will be facilitated through Windows Autopatch or Microsoft Intune. Microsoft will continue to utilize baseline updates that require a restart, which will alternate with Hotpatch months. Hotpatching aims to reduce the frequency of restarts tied to security updates, particularly benefiting environments where uptime is critical. However, planned restarts will still be necessary, and robust telemetry and maintenance practices will be needed to ensure smooth operation.

Winsage

May 1, 2026

Microsoft now lets admins choose pre-installed Store apps to uninstall

Microsoft has updated its Windows 11 operating system to enhance the management of preinstalled applications. The new RemoveDefaultMicrosoftStorePackages policy allows IT administrators to remove any preinstalled MSIX/APPX applications by referencing their Package Family Name (PFN) through Group Policy Object (GPO) or custom OMA-URI for mobile device management (MDM). This feature requires devices to have at least the April 2026 Windows non-security update. It is available for Windows 11 version 24H2 Enterprise and Education editions, whereas it was initially exclusive to version 25H2 or later. A comprehensive list of supported applications and instructions for applying the policy are provided in Microsoft's documentation. Additionally, a new policy setting enables the uninstallation of the AI-powered Copilot digital assistant from enterprise devices after the April 2026 Patch Tuesday updates. The dynamic list option for this policy will be rolled out in the coming months.

Winsage

April 15, 2026

Windows Update Warning: Fake Windows 11 24H2 Site Pushes Password-Stealing Malware

A sophisticated fake Windows update site has emerged, designed to mimic Microsoft’s branding to distribute malware, specifically targeting individuals seeking early access to Windows 11 version 24H2. The fraudulent site resembles a legitimate cumulative update download page, using familiar design elements to evade detection. The malware operates as an information-stealing entity, targeting saved passwords and browser sessions, potentially bypassing two-factor authentication. It transmits stolen credentials through encrypted channels to external servers. The installer uses legitimate packaging tools to minimize detection and employs obfuscated scripts within legitimate software components. The campaign modifies system startup entries and creates disguised shortcuts to maintain persistence. Researchers noted the use of a typosquatted domain and meticulously spoofed file properties. As of April 2026, Microsoft has not released Windows 11 version 24H2 to the public, and legitimate updates are only available through Windows Update. Users are advised to obtain updates exclusively through official channels and keep security features updated.

Tech Optimizer

April 14, 2026

Fake Windows 11 24H2 Update Site Distributes Password-Stealing Malware

A recent discovery by Malwarebytes has identified a cyber threat involving a typosquatted domain that mimics official Microsoft support pages. This site uses authentic branding and KB-style reference numbers to deceive users into downloading what appears to be a legitimate cumulative update. The malware, once installed, operates stealthily, stealing passwords from browsers and active sessions, which allows attackers to bypass two-factor authentication. The stolen data is sent to external servers through encrypted channels. Initial scans showed zero detections by multiple antivirus engines due to the malware's obfuscated scripts. It also modifies system startup entries and creates disguised shortcuts for persistence. Microsoft has not yet released Windows 11 version 24H2 to general users, and updates should only be obtained through official channels to avoid potential threats.

Winsage

April 7, 2026

Windows 11 Version 25H2 is Now Being Pushed to All Eligible PCs

Windows 11 version 25H2 is now available for Home and Pro users, rolling out to all non-managed PCs currently on version 24H2. The upgrade will be automatic for eligible users unless there are compatibility issues. Version 24H2 will reach its end of support on October 13, 2026, while version 25H2 will be supported until October 2027. The upgrade process uses a simple enablement package, and most features are accessible to both versions. However, version 25H2 removes certain legacy features like PowerShell 2.0 and WMIC. Users can choose when to restart or postpone the installation, but it becomes mandatory after a pause time limit. Windows 11 version 26H1 is in development and will debut on new devices with Qualcomm’s Snapdragon X2 Series processors.

Winsage

April 4, 2026

Microsoft to force updates to Windows 11 25H2 for PCs with older OS versions — ‘intelligent’ update system uses machine learning to determine when a device is ready

Microsoft is updating devices running Windows 11 version 24H2 to version 25H2, as support for 24H2 will end on October 13, 2026. The automatic update targets Home and Pro editions, while organizational devices are exempt. An "intelligent" system using machine learning will determine device readiness for the update, though details on the criteria remain unclear. Additionally, Microsoft released an emergency update, KB5086672, to address issues from a previous faulty update, KB5079391, which caused installation failures.

Winsage

March 30, 2026

Microsoft’s March Security Update of High-Risk Vulnerability Notice for Multiple Products

On March 11, NSFOCUS CERT reported the release of Microsoft’s March Security Update, addressing 83 security vulnerabilities in products like Windows, Microsoft Office, Microsoft SQL Server, and Azure. The update includes eight critical vulnerabilities and 75 important ones, with risks such as privilege escalation and remote code execution. Key vulnerabilities include: - CVE-2026-26110: Microsoft Office Remote Code Execution Vulnerability (CVSS score: 8.4) - CVE-2026-26113: Microsoft Office Remote Code Execution Vulnerability (CVSS score: 8.4) - CVE-2026-26144: Microsoft Excel Information Disclosure Vulnerability (CVSS score: 7.5) - CVE-2026-23669: Windows Print Spooler Remote Code Execution Vulnerability (CVSS score: 8.8) - CVE-2026-24294: Windows SMB Server Privilege Escalation Vulnerability (CVSS score: 7.8) - CVE-2026-23668: Windows Graphics Component Privilege Escalation Vulnerability (CVSS score: 7.0) Affected product versions include various editions of Microsoft Office, Windows Server 2012 R2, Windows Server 2016, Windows 10, and Windows 11. Microsoft has released security patches for these vulnerabilities, and users are encouraged to install them promptly.

Winsage

March 11, 2026

Windows 11 keeps forcing unwanted updates with “too many coincidences” — Microsoft’s plan or just user error?

Windows updates in Windows 11 can be rolled out automatically or manually through the Settings app. Users have reported an increase in unsolicited upgrades to the latest version of Windows, prompting concerns and frustrations directed towards Microsoft. IT expert Günther Born noted "too many coincidences" regarding these updates. Microsoft plans to automatically install the latest feature update (25H2) on older versions that have reached their end of service. Speculation suggests that unwanted upgrades may be linked to Microsoft's enablement packages, which facilitate version transitions. A user reported an automatic upgrade from Windows 10 to Windows 11 while they were away. Disabling TPM 2.0 should theoretically prevent automatic upgrades, but this has proven complex. Microsoft will discontinue support for Windows 11 version 24H2 on October 13, 2026, after which users will need to upgrade to version 25H2 for continued security updates.

Winsage

January 29, 2026

Windows 11’s Gaming Gains Overshadowed by Stability Crisis: Performance Tests Reveal a Troubled Transition

Microsoft's Windows 11 version 24H2 shows performance improvements in gaming, with frame rate enhancements ranging from 2% to 8% across various titles, particularly benefiting newer DirectX 12 games. However, users report significant stability issues, including Blue Screen of Death (BSOD) errors, crashes during gameplay, and compatibility problems with certain hardware and software. These issues affect a wide range of systems, suggesting systemic challenges rather than isolated incidents. The operating system's hardware compatibility requirements, such as TPM 2.0 support, have also limited upgrade eligibility for many users. Microsoft has acknowledged specific issues related to Intel and AMD processors, antivirus software conflicts, and outdated drivers. Despite ongoing patch deployments, user frustration persists due to the slow pace of fixes. The stability concerns have led some businesses to delay Windows 11 24H2 deployments, prioritizing reliability over performance gains. The driver ecosystem's lag in updates from hardware manufacturers has further complicated stability. The gaming community remains divided, with many users opting to stay on Windows 10 due to these stability risks.

Winsage

January 28, 2026

Microsoft Issues Several Windows Insider Preview Builds

The Windows Insider Program has shifted significantly, with new builds released across the Dev, Beta, and Release Preview channels. The Dev channel has advanced to the 26300 series builds, moving away from the 26200 series of the Beta channel. Users on the Dev channel will upgrade to Windows 11 version 25H2 build 26300.7674 with the installation of build KB5074170, which focuses on fixes without new functionalities. The Beta channel will receive cumulative update KB5074169, upgrading to Windows 11 version 25H2 build 26220.7670, also centered on fixes. The Release Preview build KB5074105 introduces new features for both 25H2 and 24H2 versions, elevating them to builds 26200.7701 and 26100.7701, respectively. Key improvements include multi-language support for the Agent in Settings, cross-device resume capabilities, enhanced MIDI support, customizable Narrator options, a new Devices card in Settings, easier toggling of Smart App Control, improved Voice Access and Voice Typing features, and expanded support for external fingerprint readers in Windows Hello Enhanced Sign-In Security.