Windows security Archives

Winsage

March 23, 2026

Microsoft fixes broken Windows update days after vowing fewer broken updates

Microsoft released an out-of-band update to address bugs from the March 2026 security update, which caused some users to receive a "no internet" error when signing into Microsoft applications, despite having a stable connection. Users utilizing Microsoft Entra ID were not affected by this issue. Prior to the fix, Microsoft advised users to restart their devices and maintain a stable internet connection. The new update includes all elements from the March 10 security update and specifically resolves the connectivity issue. Windows chief Pavan Davuluri has committed to improving reliability and stability in the operating system, emphasizing thorough testing of updates before release.

Winsage

March 19, 2026

Microsoft publishes a workaround for Samsung’s C: drive woes

Microsoft has released a guide to help users regain access to their C: drives affected by a Windows security update that impacted the Samsung Galaxy Connect app. Users must sign in with administrator rights, uninstall the Samsung applications, change file ownership on the C: drive to 'Everyone,' create a batch file to restore permissions, and restart their devices. Microsoft and Samsung have validated these recovery steps, and users can seek additional support from Samsung if needed. The Samsung Galaxy Connect app was temporarily removed from the Microsoft Store, but a previous version has been reinstated. The issue is marked as "Resolved," indicating no further patch from Microsoft is expected.

Winsage

March 17, 2026

Microsoft to Block Windows 11 and Server 2025 Automated Installation After Critical RCE Vulnerability

Microsoft is implementing a two-phase initiative to disable the hands-free deployment feature in Windows Deployment Services (WDS) due to a critical remote code execution vulnerability (CVE-2026-0386) identified on January 13, 2026. This vulnerability arises from improper access control related to the Unattend.xml file, which is transmitted over an unauthenticated RPC channel, allowing attackers on the same network segment to exploit it. Successful exploitation could grant SYSTEM-level privileges and compromise OS deployment images. The initiative includes: - Phase 1 (January 13, 2026): The hands-free deployment feature will remain operational but can be disabled. New Event Log alerts and registry key controls will be introduced to enforce secure practices. - Phase 2 (April 2026): The hands-free deployment feature will be completely disabled by default for administrators who have not modified registry settings. Administrators can temporarily re-enable the feature by setting AllowHandsFreeFunctionality = 1, but this is not secure. Recommendations include reviewing WDS configurations, applying security updates, setting registry keys for secure behavior, monitoring Event Viewer for alerts, and considering alternative deployment methods. Microsoft’s KB article 5074952 provides further guidance for impacted organizations.

Winsage

March 12, 2026

Windows 11’s March Optional Update is Now Available for Release Preview Insiders

The March optional update for Windows 11 versions 25H2 and 24H2, identified as KB5079387, has been released for Insiders on the Release Preview Channel. Key enhancements include: - Narrator improvements: Enhanced reliability for setting up Natural Voices, access to rich image descriptions via shortcuts, and instant on-device descriptions for Copilot+ PC users. - Settings improvements: Increased reliability for downloading updates in the Settings menu. - Smart App Control improvements: Users can toggle this security feature on or off without a clean installation. - Modern pen setting experience: Digital pen users can configure the pen tail button to launch the same application as the Copilot key. - Display improvements: Enhanced reliability of auto-rotation after sleep and external monitors connected via USB4 can operate at a low power level during sleep. - File Explorer improvements: Ability to rename files using Voice Typing and sort permissions entries in Advanced Security Settings by ‘Principal’. - Windows Recovery Environment improvements: x64 applications are expected to perform better on ARM64 devices. The update will be available to non-Insiders as an optional update in the last week of March, with a broader public rollout expected in April.

Winsage

March 12, 2026

5 reasons why Windows 11 Pro is so much better than Windows 10

Windows 11 Pro is actively promoted by Microsoft as the future operating system, with Windows 10 reaching its end of support in October 2025, meaning no more free security updates or technical assistance. Windows 11 Pro offers enhanced built-in security features, including mandatory TPM 2.0 and Secure Boot, making it a more secure choice. It includes useful features like BitLocker for drive encryption, Remote Desktop support, Group Policy controls, and Hyper-V for creating virtual machines. Windows 11 Pro also enhances productivity with features like Snap Layouts and File Explorer tabs for better organization and navigation.

Winsage

March 12, 2026

Microsoft’s year of fixing Windows 11 is off to a promising start, as latest update improves stability — but it still has a lot more work to do

Windows 11's March update includes several enhancements aimed at improving user experience, focusing on performance and reliability. Key features include: - File Explorer improvements allowing users to open new instances more reliably by holding the Shift key or using the middle mouse button. - Enhanced reliability in displaying network devices and improved search functionality across multiple drives. - An 'Extract all' command added for archived folders not in ZIP format. - Taskbar enhancements that prevent stacking of application instances, moving only overflow instances to a separate area for better organization. - Refined taskbar search functionality, allowing users to preview results by hovering and selecting 'Preview,' with group headers indicating the number of results. - Visual consistency improvements, particularly with the taskbar's auto-hide feature, print dialog box, and credential fields in the Windows Security panel. - Security enhancements for login and lock screens, the projection menu, and Nearby Sharing. - New features include updates to the emoji picker, a revamped widgets board, and an internet speed test feature in the taskbar, which received mixed reviews. - A new option in the Start menu's account menu directs users to a 'benefits' page, criticized as unnecessary promotion for Microsoft accounts.

Winsage

March 11, 2026

Hotpatching goes default in Windows Autopatch whether you like it or not

Microsoft will enable hotpatch security updates by default starting with the May 2026 Windows security update. Hotpatch updates allow security enhancements to be applied without system restarts, while quarterly baseline updates will still require a restart. Windows Autopatch will manage updates using "testing rings" to progressively roll out updates and address any issues. Devices must run Windows 11 24H2 or later and have the April 2026 security update installed to receive hotpatch updates automatically. Existing update policies will remain intact, and administrators can opt out of hotpatch updates at the tenant or group policy level.

Winsage

March 11, 2026

How to disable Hyper-V for Windows 11

Microsoft's Hyper-V is a hardware virtualization platform integrated into Windows 11 Professional, Enterprise, and Education editions, allowing users to host multiple virtual machines (VMs) on a single computer. It operates using a type 1 hypervisor directly on hardware, enabling VMs to share resources like CPU, memory, and storage. Hyper-V includes features such as dynamic memory allocation, software-defined networking, and saved checkpoints. IT administrators may need to disable Hyper-V due to compatibility issues with third-party virtualization software, high-precision applications, or driver conflicts. Disabling Hyper-V can also affect security features reliant on it, such as virtualization-based security (VBS) and Device Guard. Methods to disable Hyper-V include: 1. Using the Windows Features dialog. 2. Executing a PowerShell command: Disable-WindowsOptionalFeature -Online -FeatureName Microsoft-Hyper-V-All, HypervisorPlatform, VirtualMachinePlatform. 3. Running a DISM command:

dism /Online /Disable-Feature /FeatureName:Microsoft-Hyper-V-All /FeatureName:HypervisorPlatform /FeatureName:VirtualMachinePlatform

. 4. Using the bcdedit command: bcdedit /set hypervisorlaunchtype off. 5. Modifying Group Policy to disable VBS. 6. Editing the Windows Registry to disable VBS or Credential Guard. For multiple managed computers, administrators can create and execute a PowerShell script or use Group Policy Objects to streamline the process. Testing in a controlled environment is recommended to ensure desired outcomes without compromising security or functionality.

Winsage

March 11, 2026

Windows 11 Pro Features Every Modern Worker Should Enable in 2026

Windows 11 Pro includes features such as BitLocker, Smart App Control, Dynamic Lock, Controlled Folder Access, Windows Sandbox, Hyper-V, Group Policy, Assigned Access, and Remote Desktop, which enhance security and management for users, especially in hybrid work environments. - BitLocker encrypts drives to protect files if a device is lost or storage is removed. - Smart App Control blocks untrusted or unsigned applications before they run. - Dynamic Lock automatically locks the device when a paired phone moves out of range. - Controlled Folder Access protects files in designated folders from unauthorized modifications. - Windows Sandbox provides a temporary, isolated environment for testing software without affecting the main system. - Hyper-V allows users to run virtual machines and test different operating systems. - Group Policy Editor offers advanced settings for managing updates and security protocols. - Assigned Access restricts a device to a single application for shared-use scenarios. - Remote Desktop enables users to access their main PC remotely from other devices. Recommended features to enable for enhanced security and workflow include BitLocker, Controlled Folder Access, Dynamic Lock, and Remote Desktop. Windows Sandbox is suggested for users dealing with unknown files, while Hyper-V is for advanced users. Group Policy and Assigned Access are beneficial for specific management needs.

Winsage

March 11, 2026

Microsoft to enable Windows hotpatch security updates by default

Microsoft will enable hotpatch security updates by default for eligible Windows devices managed through Microsoft Intune and the Microsoft Graph API starting with the May 2026 Windows security update. This change aims to enhance security and reduce the time to achieve 90% patch compliance by half. The updates will be managed through Windows Autopatch, which allows organizations to apply updates without manual intervention. Administrators can manage hotpatch updates at the tenant level and can opt-out starting April 1, 2026. A Hotpatch quality updates report will be available in Intune to ensure devices are ready for the updates. Windows Autopatch became generally available in July 2022 and is currently operational on over 10 million production devices.