Windows Security Update Archives

Winsage

February 16, 2026

Windows 11 KB5077181 fixes boot failures linked to failed updates

Microsoft resolved a critical bug affecting some commercial systems running Windows 11 that caused boot failures due to an "UNMOUNTABLEBOOTVOLUME" error. This issue was linked to problematic updates from December 2025 and primarily impacted devices on Windows 11 versions 25H2 and 24H2. The resolution was included in the February 2026 Patch Tuesday update, specifically the Windows 11 KB5077181 security update released on February 10, 2026. An initial fix was provided in the optional update KB5074105 on January 29, 2026. Affected devices experienced failures after installing the January 13, 2026, security update KB5074109. Microsoft recommends that enterprise customers with still unbootable systems contact Microsoft Support for Business for assistance.

Winsage

January 26, 2026

Microsoft releases second emergency Windows 11 update to fix Outlook crashes

Microsoft has released an out-of-band update to fix a critical bug causing Outlook to crash for Windows 11 users, following complications from the January 2026 Windows security update. The update addresses issues where applications became unresponsive or generated errors when opening or saving files in cloud-backed locations, particularly affecting PST files on OneDrive. This is Microsoft's second emergency patch this year, reflecting their commitment to urgent user concerns. Additionally, some Windows 11 devices experienced shutdown and hibernation issues, while users of Windows 10 and 11 faced login difficulties via remote connections. The update allows users to resolve these issues with a single installation, restoring application functionality.

Winsage

January 20, 2026

Microsoft issues emergency patch for latest Windows bugs

Microsoft released the January Patch Tuesday update on January 13, 2026, addressing over 110 security vulnerabilities. The update introduced bugs affecting Windows 11, Windows 10, and Windows Server. The first issue involves authentication failures when connecting to a Cloud PC via Remote Desktop, primarily affecting Windows 11 25H2, Windows 10 22H2 ESU, and Windows Server 2025. The second issue affects systems with Secure Launch enabled, causing unexpected restarts instead of shutting down or entering hibernation mode, specifically impacting Windows 11 23H2. Microsoft has released emergency patches for the affected versions, which include: - Windows 11, versions 25H2 and 24H2 (KB5077744) - Windows 11, version 23H2 (KB5077797) - Windows 10, version 22H2 ESU and Windows 10 Enterprise LTSC 2021 (KB5077796) - Windows Server 2025 (KB5077793) - Windows Server 2022 (KB5077800) - Windows Server 2019 and Enterprise LTSC 2019 (KB5077795)

Winsage

January 18, 2026

Microsoft issues emergency fix afer a security update left some Windows 11 devices unable to shut down

Microsoft has released an emergency fix to address critical bugs from the January 2026 Windows security update, which affected shutdown and hibernation functions on some Windows 11 devices, causing unexpected restarts. The update also restores remote login functionality for Windows 10 and 11 users, with issues related to credential prompts identified as the cause of previous login difficulties. Some users still report issues such as blank screens and crashes in Outlook Classic. Microsoft previously issued an emergency fix in October for complications related to the Windows Recovery Environment. Additionally, the Extended Security Updates program is available for users who want to continue using Windows 10 with security support.

Winsage

January 18, 2026

Microsoft Confirms Emergency Updates For Most Windows PCs

Microsoft has released emergency fixes in response to issues arising from January's Patch Tuesday security updates. Users experienced shutdown failures and Remote Desktop login difficulties after the updates. Microsoft has resolved two critical bugs: one related to shutdown failures on Windows 11 version 23H2 and another concerning Remote Desktop connection failures on versions 24H2 and 25H2. However, three issues remain unpatched: a black screen before the cursor appears, a glitch resetting the desktop background to black, and problems with the desktop.ini file in File Explorer. Additionally, there is an unresolved issue with Outlook Classic that may cause it to freeze for users with older POP accounts. Microsoft has provided two emergency updates: KB5077744 for Remote Desktop connection failures on versions 25H2 and 24H2, and KB5077797 for the shutdown issue on version 23H2.

Winsage

January 17, 2026

Windows 11 shutdown bug: Microsoft confirms KB5073455 issue

Microsoft has acknowledged a shutdown issue affecting Windows 11 Enterprise and IoT editions after the January 13, 2026 security update (KB5073455) for version 23H2, which prevents affected systems from shutting down properly, causing them to either hibernate or restart instead. The problem is linked to the System Guard Secure Launch feature and does not affect Windows 11 Home and Pro editions. A temporary workaround involves using the command "shutdown /s /t 0" in an elevated Command Prompt to force a shutdown, but there is no workaround for hibernation functionality. Microsoft is working on a resolution and suggests that enterprise IT administrators consider pausing the deployment of the update on unaffected devices.

Winsage

January 16, 2026

‘Fail To Shut Down’—Microsoft Issues Windows Update Warning

Microsoft has raised concerns about the shutdown process of Windows PCs, indicating complications following the January 13, 2026, security update. PCs with Secure Launch may fail to shut down or hibernate, instead restarting unexpectedly. A temporary solution is to use the Command Prompt with the command shutdown /s /t 0 for shutting down, but there is no workaround for the hibernation issue. Microsoft recommends saving work and shutting down devices to avoid power loss. Additionally, some users are facing credential prompt failures during Remote Desktop connections, affecting services like Azure Virtual Desktop and Windows 365. Alternatives include using the Remote Desktop client for Windows or the Windows App Web Client. An emergency update is expected to resolve these issues.

Winsage

December 5, 2025

Microsoft Silently Activates Critical Windows Security Update

Microsoft has enhanced its Windows security measures by addressing the CVE-2025-9491 vulnerability, which has existed for nearly eight years and was exploited by state-sponsored groups for cyber espionage and data theft. The vulnerability was previously identified as ZDI-CAN-25373 and ZDI-25-148 by Trend Micro. The November Patch Tuesday updates have fixed this issue, which was described as having been demoted from a vulnerability to a functional bug. The update modifies the Properties dialog of a .lnk file to display the entire Target command in a single line. Microsoft has not officially acknowledged the update but stated that it is continuously rolling out enhancements for security and user experience.

Winsage

November 25, 2025

JackFix Uses Fake Windows Update Pop-Ups on Adult Sites to Deliver Multiple Stealers

Cybersecurity experts have identified a new campaign that combines ClickFix tactics with counterfeit adult websites to trick users into executing harmful commands under the guise of a "critical" Windows security update. This campaign uses fake adult sites, including clones of popular platforms, as phishing mechanisms, increasing psychological pressure on victims. ClickFix-style attacks have risen significantly, accounting for 47% of all attacks, according to Microsoft data. The campaign features convincing fake Windows update screens that take over the user's screen and instruct them to execute commands that initiate malware infections. The attack begins when users are redirected to a fake adult site, where they encounter an "urgent security update." The counterfeit Windows Update screen is created using HTML and JavaScript, and it attempts to prevent users from escaping the alert. The initial command executed is an MSHTA payload that retrieves a PowerShell script from a remote server, which is designed to deliver multiple payloads, including various types of malware. The downloaded PowerShell script employs obfuscation techniques and seeks to elevate privileges, potentially allowing attackers to deploy remote access trojans (RATs) that connect to command-and-control servers. The campaign has been linked to other malware execution chains that also utilize ClickFix lures. Security researchers recommend enhancing defenses through employee training and disabling the Windows Run box to mitigate risks associated with these attacks.

Winsage

November 25, 2025

Do Not Download These Windows Security Updates, Experts Warn

Security experts at Huntress have confirmed that hackers are using ClickFix malware to distribute fake Windows security updates, deceiving users into executing harmful commands. Over the past year, these attacks have increased, with both state-sponsored actors and cybercriminal organizations employing this tactic. Microsoft has indicated that ClickFix is the most frequently used method for gaining initial access, representing 47 percent of attacks noted in Microsoft Defender notifications. A report released on November 24 revealed a new wave of ClickFix attacks utilizing realistic Windows Security Update screens to deploy credential-stealing malware. The campaign employs steganography to conceal malware within PNG images, embedding harmful code directly within the pixel data. Windows users are advised to remain vigilant and recognize that legitimate updates will never request users to cut and paste commands into the Windows run prompt from a web page.