Windows systems Archives

Winsage

March 2, 2026

NTLM is going away: what Microsoft’s phaseout means for MSPs and IT teams

The migration from NTLM to Kerberos authentication is essential for improving security in Windows systems, but it faces challenges such as legacy systems and hardcoded authentication. Organizations must identify NTLM usage, conduct testing with NTLM disabled, and make necessary adjustments or upgrades to migrate successfully. Ongoing monitoring is crucial post-migration to prevent NTLM from re-entering the network. NTLM is associated with significant security vulnerabilities and has been exploited by various threat groups, making its elimination a priority for organizations despite potential hesitations to invest in the migration process. Transitioning to Kerberos is seen as a strategic security investment.

Winsage

February 24, 2026

How to migrate applications to Windows 11

Organizations are transitioning from Windows 10 to Windows 11 following the end-of-support date for Windows 10. Windows 11 is designed to support most applications that ran on Windows 10, but challenges may arise due to undocumented legacy applications and configurations. A thorough evaluation of devices, including installed applications and data locations, is essential to minimize disruptions during the upgrade. Migrations can be categorized as clean installations or in-place upgrades. A clean installation erases the previous OS and data, while an in-place upgrade retains existing settings and applications. In-place upgrades are not allowed for certain transitions, such as from Windows 10 Home to Windows 11 Pro without first upgrading to Windows 10 Pro. IT professionals often prefer clean installations to avoid carrying over issues from the previous OS. During an in-place upgrade, data in library folders is retained, but data in the Windows folder may be at risk. Compatibility issues may arise with poorly designed applications or drivers post-upgrade, particularly with legacy applications reliant on outdated frameworks. Preparation for migration includes creating an inventory of applications, identifying potential incompatibilities, and ensuring backups of data. IT must also confirm hardware meets Windows 11 requirements. If a clean installation is chosen, strategies for application installation must be developed, utilizing tools like System Center Configuration Manager or Microsoft Intune. Validation and testing of migration tools should occur in a lab environment, followed by a pilot deployment on a small percentage of machines. After successful pilot testing, the final deployment can proceed, followed by an audit to address any issues. Careful planning and testing are crucial for a smooth migration process.

Winsage

February 24, 2026

Firefox is about to drop support for older Windows versions – says if you can’t upgrade, then switch to Linux

Firefox version 115 will be the last to support Windows 7, 8, and 8.1. Users of these operating systems must upgrade to Windows 10 or newer to continue receiving updates after February 2026. Mozilla has decided to discontinue support for these older versions of Windows due to the cessation of security updates from Microsoft since January 2023 and the associated costs and risks. Other major browsers have also stopped supporting these outdated systems. Users unable to upgrade can consider switching to a Linux-based operating system, which often comes with Firefox pre-installed. Firefox is favored in the Linux community for its open-source nature and efficient memory usage compared to browsers based on Google's Chromium codebase.

Winsage

February 18, 2026

Attackers steal Windows users’ data using fake CAPTCHA checks

Fraudsters are using counterfeit CAPTCHA confirmation pages to deploy StealC, an information-stealing malware targeting Windows systems. Users are tricked into visiting compromised websites where a fake CAPTCHA prompts them to execute a sequence of keystrokes that runs a malicious PowerShell command. This command connects to a remote server, downloads shellcode, and injects the StealC payload into svchost.exe. Once installed, StealC collects sensitive information such as browser credentials, email data, and cryptocurrency wallet details, facilitating fraud and account hijacking. The malware operates primarily in the system's RAM, making detection difficult.

Winsage

February 12, 2026

Microsoft’s latest update patches six zero-days and two critical flaws – but is it another buggy mess?

Microsoft's February Patch Tuesday update addresses feature and security bugs, continuing the refresh of Secure Boot certificates to protect against bootkit malware. Secure Boot prevents malicious software from executing during startup by using trusted certificates, many of which are set to expire in June. The update is available for both Windows 11 and Windows 10 users, with the latter needing to be enrolled in the Extended Security Updates (ESU) program until October 2026. Windows 11 fixes include resolutions for full-screen gaming and WPA3-Personal Wi-Fi connectivity issues, while Windows 10 improvements address Chinese fonts, specific graphics processing units, and custom folder names in File Explorer. A bug causing unexpected restarts in Secure Launch-compatible PCs has also been fixed. The update includes 55 security patches, a decrease from January's 114, with two classified as critical and six identified as zero-day vulnerabilities. One vulnerability exploited in the wild could allow system privilege escalation, another could disrupt network connectivity, and a third could disable security controls and access sensitive data. Users can update their Windows 11 PCs through System > Windows Update, and Windows 10 users through System > Update & Security. Due to previous buggy updates, users may consider waiting a few days before installing the February update, with the option to uninstall if issues arise.

Winsage

February 10, 2026

10 open-source apps I recommend every Windows user download

Open-source software provides flexibility and control for users, particularly on Windows. Notable applications include: 1. LibreOffice: A comprehensive office suite with a customizable interface, supports MS Office formats, and is free to download. 2. Flow Launcher: A file search and application launcher that enhances efficiency, customizable, and free to use. 3. Duplicati: A zero-trust backup solution with encryption and scheduling features, free for personal use. 4. Nextcloud: An open-source cloud service for file storage and collaboration, free to install on Windows. 5. Franz: Consolidates multiple messaging platforms into one interface, free to install and use. 6. YAZB: Allows users to create custom top bars for system information and quick access controls, enhancing the user experience. 7. File Converter: Simplifies file conversion and compression within the Windows file manager, available for free. 8. Bitwarden: A password management tool with a free version and additional paid features for collaboration. 9. AutoHotKey: Automates tasks on Windows through scripting, free to install and use. 10. Ollama: An open-source AI interaction tool that prioritizes privacy, free to use on Windows.

Winsage

January 28, 2026

Google Warns of Active WinRAR Exploits Targeting Unpatched Windows Systems

Google has raised concerns about ongoing cyberattacks exploiting a critical vulnerability in WinRAR, identified as CVE-2025-8088. This vulnerability allows malicious actors to deploy malware and espionage tools on unpatched systems. Users are advised to update WinRAR to the latest version, regularly check for software updates, employ comprehensive security solutions, and stay informed about cybersecurity threats.

Winsage

January 27, 2026

Windows 10’s extended support ends in eight month, but users are still rejecting Windows 11, at least in Germany

Windows 11's market presence in Germany is stagnant, with 48% of private households (approximately 21 million devices) still using Windows 10, which will lose official support on October 14, 2025. Users can opt for Extended Security Updates until October 13, 2026. As of August 2025, Windows 10 had around 24 million installations, while Windows 11 was on about 17 million devices, indicating only 3.6 to 3.7 million transitions to Windows 11. By December 2025, Windows 11 accounted for 66.60% of the gaming market on Steam, with approximately 71% of Windows machines used for gaming running Windows 11. Windows 10 users can extend their support, but as the October 2026 deadline approaches, they will no longer receive security updates. Microsoft may implement notifications to encourage users to upgrade to Windows 11 and consider recycling old PCs for new ones.

Tech Optimizer

January 22, 2026

Hackers Weaponized 2,500+ Security Tools to Terminate Endpoint Protection Before Deploying Ransomware

A large-scale campaign is exploiting the truesight.sys Windows security driver from Adlice Software’s RogueKiller antivirus to disable endpoint detection and response (EDR) and antivirus solutions, facilitating the deployment of ransomware and remote access malware. This attack utilizes over 2,500 validly signed variants of the driver, allowing attackers to manipulate legacy driver signing rules to load pre-2015 signed drivers on Windows 11 machines. The vulnerable TrueSight driver exposes an IOCTL command that enables attackers to terminate security processes, providing them with kernel-level access to bypass user-mode protections. The infection chain typically starts with phishing emails or compromised sites, leading to the installation of a downloader that retrieves additional malicious components. The malware establishes persistence and deploys an EDR killer module targeting nearly 200 security products. Once defenses are disabled, the final payload, often a remote access trojan or ransomware, executes with minimal visibility, completing the attack in as little as 30 minutes.

Winsage

January 19, 2026

Windows 11 PCs Fail To Shut Down After Update

Some users of Windows 11 have experienced a problem where their PCs reboot instead of shutting down after the Patch Tuesday security update KB5073455. This issue primarily affects devices with Secure Launch on Windows 11 version 23H2. Microsoft has confirmed this behavior, which disrupts the usual power-off sequence and can drain battery life for laptops and complicate remote management processes. An out-of-band update, KB5077797, has been released to restore normal shutdown and hibernation functionalities for affected systems. Users can check for this update in Windows Update or download it from the Microsoft Update Catalog. To determine if they are affected, users should look for immediate restarts when selecting Shut Down or Hibernate and check if Secure Launch is enabled in System Information.