Topic: patch tuesday
-
Windows 11 Update Fixes Boot Failures After Failed Installs
Microsoft resolved a Windows 11 boot failure bug with its February 2026 security update (KB5077181), which had caused commercial systems to display a black screen with an "UNMOUNTABLE_BOOT_VOLUME" error. The issue was triggered by installing certain updates on systems left in an improper state fr...
Read More » -
Critical Windows Notepad Flaw (CVE-2026-20841) Enables RCE via Markdown
A critical vulnerability (CVE-2026-20841) in Windows Notepad, stemming from its new Markdown support, allowed remote code execution via malicious links in Markdown files. Exploitation required user interaction, such as clicking a crafted link, but was made easier as Markdown files are often perce...
Read More » -
Windows 11 Notepad Bug Executes Files Via Markdown Links
A high-severity vulnerability in Windows 11 Notepad allowed attackers to execute malicious code remotely by tricking users into clicking a malicious link within a Markdown file. The flaw exploited the app's Markdown preview feature, where specially crafted links using non-standard protocols could...
Read More » -
Microsoft Fixes 59 Flaws, 6 Already Under Attack
Microsoft has patched 59 vulnerabilities, with six actively exploited flaws requiring urgent updates to prevent breaches. The exploited vulnerabilities include security bypasses and privilege escalations, which can allow attackers to disable security tools or compromise networks. Microsoft is als...
Read More » -
Notepad's Markdown Update Comes With a Critical RCE Flaw
A high-severity vulnerability (CVE-2026-20841) in Microsoft Notepad's Markdown feature allows remote code execution if a user opens a malicious file and clicks an embedded link. Microsoft has patched the flaw, noting no current active exploits, but its impact is significant due to Notepad's ubiqu...
Read More » -
Microsoft's Valentine's Day Patch: 6 Critical Zero-Day Fixes
Microsoft's February security update patched 59 vulnerabilities, with six actively exploited as zero-days before the fix, indicating a more aggressive threat landscape. Among the critical flaws patched were high-severity security feature bypasses in Windows Shell and Internet Explorer, which coul...
Read More » -
Windows 11 February Update: 8 Features to Expect
Microsoft will release a major Windows 11 update in February 2026, introducing Cross-Device Resume for Android phones to seamlessly transfer activities like media and documents to a PC. The update includes significant upgrades for audio professionals with enhanced Windows MIDI Services and allows...
Read More » -
Windows 11 Update Fixes Boot, Sign-in & Activation Problems
Microsoft released an optional Windows 11 preview update (KB5074105) with over thirty fixes for issues like boot failures, sign-in problems, and activation errors, allowing users to test improvements before the next mandatory update. Key fixes address system freezes during login or startup, boot ...
Read More » -
Microsoft fixes critical Office zero-day under active attack
Microsoft has urgently patched a critical, actively exploited zero-day vulnerability (CVE-2026-21509) in Office, which allows attackers to bypass security features by tricking users into opening malicious files. While patches are available for Office 2021, LTSC 2021/2024, and Microsoft 365, secur...
Read More » -
Windows 11 Update Warning: Patch Tuesday Boot Failures
Microsoft has confirmed its January 2026 security update for Windows 11 is causing severe boot failures, preventing some PCs from starting entirely. The issue primarily affects physical machines running Windows 11 versions 24H2 and 25H2, requiring users to manually uninstall the update to recover...
Read More » -
Microsoft's emergency Windows 11 update fixes critical Patch Tuesday bugs
Microsoft released a second emergency update (KB5078127) to fix critical issues with Outlook, OneDrive, and Dropbox that were caused by its January 2026 security patches. The update resolves problems where cloud-based applications crashed or became unresponsive, and it includes all prior security...
Read More » -
Microsoft fixes Windows 11 crash bug in Notepad, Paint, and Snipping Tool
Microsoft resolved a server-side Microsoft Store activation bug (error 0x803F8001) that was crashing core Windows 11 apps like Notepad, Paint, and the Snipping Tool. The widespread issue rendered many PCs nearly unusable, as it affected any app dependent on the Store for activation, causing persi...
Read More » -
Windows 2026 Update Bugs: Fix Outlook Freezes & App Errors
Microsoft's January security update, intended to patch critical vulnerabilities, has instead introduced several disruptive bugs affecting Windows users, with some issues resolved but others persisting. Key problems included a now-fixed remote access authentication failure and a resolved boot issu...
Read More » -
Microsoft Issues Emergency Windows Updates for Most PCs
Microsoft issued emergency updates to fix critical issues from its January security patches, resolving major problems with remote desktop logins and system shutdowns for some Windows versions. Despite these fixes, several bugs remain unresolved, including intermittent black screens, desktop backg...
Read More » -
Microsoft's First Free Windows Update for 2026 Confirmed
Microsoft has released a critical 2026 security update for Windows 10, patching over 100 vulnerabilities, as the operating system's official support ends in October 2026. Despite the approaching end-of-life, Windows 10's market share remains high, creating a security challenge as many users have ...
Read More » -
Critical Windows 0-Day Fixed: CISA Issues Urgent Alert
A critical Windows zero-day vulnerability (CVE-2026-20805) is being actively exploited, prompting urgent patching and a CISA mandate for federal agencies to apply the fix by February 3. The flaw undermines the ASLR security mechanism by leaking a memory address, which can be chained with other bu...
Read More » -
Microsoft Patch Tuesday fixes 3 zero-days, 114 flaws in January 2026 update
Microsoft's January 2026 Patch Tuesday addresses 114 vulnerabilities, including eight critical flaws and three zero-days, with one confirmed as actively exploited. The actively exploited zero-day (CVE-2026-20805) is an information disclosure flaw in the Desktop Window Manager, while the other two...
Read More » -
Microsoft's December Updates Break Message Queuing
Microsoft's December 2025 security updates are causing Message Queuing (MSMQ) to fail, disrupting business applications and IIS websites on several Windows versions. The failure occurs because the updates changed permissions on a key system folder, requiring MSMQ users to have write access typica...
Read More » -
Microsoft Patches 56 Flaws, Including Two Zero-Days Under Active Attack
Microsoft's final 2025 security update patches 56 vulnerabilities, including three critical flaws, with two already being actively exploited. The most urgent fix is for CVE-2025-62221, a privilege escalation flaw in Windows that is under active attack and requires prompt patching. Other significa...
Read More » -
Microsoft Patches 3 Zero-Days, 57 Flaws in December Update
Microsoft's December 2025 Patch Tuesday addressed 57 vulnerabilities, including three critical remote code execution flaws and three zero-day issues. One zero-day (CVE-2025-62221) is actively exploited, allowing local privilege escalation, while two others were publicly disclosed before patching....
Read More » -
Microsoft Fixes Windows 11 Update Loop in Emergency Patch
Microsoft released an emergency patch (KB5072753) to fix a Windows 11 update loop where the November 2025 security hotpatch kept reinstalling itself on version 25H2 systems. The issue caused affected devices to repeatedly download and install the same update during scans, though it didn't impact ...
Read More » -
Urgent Microsoft Update: Patch Windows 10, 11, Server Now
Microsoft has urgently patched a zero-day vulnerability (CVE-2025-62215) in the Windows Kernel, which is already being actively exploited to gain system-level privileges. The flaw involves improper synchronization in concurrent execution, allowing attackers to escalate privileges after initial ac...
Read More » -
Microsoft Fixes False Windows 10 End-of-Support Warning Bug
Microsoft resolved a software glitch that incorrectly showed Windows 10 end-of-support alerts on devices still receiving security updates, though these devices remained protected. The issue affected Windows 10 22H2 and LTSC versions enrolled in the Extended Security Updates program, with a cloud-...
Read More » -
Windows 11's 2025 Update: Top 6 AI & Start Menu Features
The Windows 11 November 2025 update introduces a redesigned Start menu with unified sections and adjustable viewing modes, alongside a refreshed settings page for better customization. Enhanced security is provided through Administrator Protection, which isolates untrusted applications in a tempo...
Read More » -
Microsoft Patches Critical Zero-Day and 63 Flaws
Microsoft's November 2025 Patch Tuesday addresses 63 vulnerabilities, including one actively exploited zero-day and four critical issues, requiring immediate deployment by system administrators. The update includes the first extended security update (ESU) for Windows 10, urging organizations to u...
Read More » -
Microsoft Issues Emergency Windows 10 Update to Fix Critical Bug
Microsoft released an urgent out-of-band update (KB5071959) to fix a critical enrollment issue in the Extended Security Updates (ESU) program for Windows 10, which had been preventing users from signing up for continued security coverage after the end of standard support. The update resolves a ma...
Read More » -
Urgent Windows Update: 2-Week Security Deadline
Microsoft has released urgent security updates addressing two actively exploited zero-day vulnerabilities, with federal agencies mandated to patch within two weeks to prevent system compromise. CVE-2025-59230 is a local privilege escalation flaw in Windows Remote Access Connection Manager, while ...
Read More » -
Microsoft Fixes 3 Actively Exploited Zero-Day Vulnerabilities
Microsoft patched three actively exploited zero-day vulnerabilities in its October 2025 Patch Tuesday, including flaws in a pre-installed modem driver, Windows Remote Access Connection Manager, and IGEL OS, requiring immediate updates. The vulnerabilities enable attackers to escalate privileges t...
Read More » -
Microsoft Patches 6 Zero-Day Exploits in Critical October Update
Microsoft's October 2025 Patch Tuesday addresses 172 vulnerabilities, including six actively exploited zero-days and eight critical-rated flaws, with a focus on remote code execution and privilege escalation risks. Windows 10 has reached its end of support, requiring users to enroll in Extended S...
Read More » -
Windows 10 Final Patch Tuesday Fixes 6 Zero-Day Flaws
Microsoft released security updates addressing 172 vulnerabilities, including six zero-day threats, with three already actively exploited, demanding immediate action from system administrators. Three critical zero-day vulnerabilities are under active exploitation: CVE-2025-59230 in Windows Remote...
Read More » -
October 2025 Patch Tuesday: Final Windows 10 Updates
Microsoft's October 2025 Patch Tuesday marks the final scheduled update for Windows 10, addressing 172 security vulnerabilities including two actively exploited zero-day flaws. Critical vulnerabilities include remote code execution bugs in Microsoft Office's Preview Pane and Windows Server Update...
Read More » -
Tenable Achieves PROTECTED IRAP & Hits Record Patch Tuesday
Tenable Cloud Security has achieved PROTECTED level certification under Australia's IRAP, validating its robust security controls for government cloud deployments and enabling informed risk-based decisions. The platform addresses multi-cloud security challenges by integrating security throughout ...
Read More » -
Windows 11 October 2025 Update: 9 Exciting New Features
Microsoft's Windows 11 October 2025 update introduces AI integrations, security enhancements, and accessibility improvements, including the migration of legacy Control Panel features to the modern Settings interface. New features include relocatable on-screen hardware indicators, AI-powered conte...
Read More » -
October 2025 Patch Tuesday: Microsoft's Decade-Long Era Ends
Multiple key Microsoft products, including Windows 10, Office 2016/2019, and Exchange Server 2016/2019, are reaching end-of-life this October, ceasing standard security updates and requiring immediate migration to supported platforms. Organizations must upgrade Office suites to Microsoft 365 Apps...
Read More » -
Windows 10 Gets Final Major Update as Windows 11 Takes the Spotlight
The final major update for Windows 10 has been released, as Microsoft shifts focus to Windows 11, with official support ending next month and users needing to upgrade or enroll in extended security services. The September update includes crucial security patches addressing 81 vulnerabilities, inc...
Read More » -
Microsoft, Adobe, SAP Issue Critical September 2025 Patch Tuesday Updates
The September 2025 Patch Tuesday included critical security updates from Microsoft, Adobe, and SAP, addressing numerous vulnerabilities not currently under active exploitation. Microsoft patched over 80 flaws, including a privilege escalation issue in Windows NTLM and a high-risk remote code exec...
Read More » -
September 2025 Patch Tuesday: What to Expect from the CVE Matrix
CVE identifiers provide a universal system for cataloging and assessing software vulnerabilities, enabling organizations to prioritize and apply security patches effectively. Vulnerability scanners and Software Bills of Materials (SBOMs) help identify and manage security risks by linking system c...
Read More » -
August 2025 Patch Tuesday: What to Expect & Key Updates
The cybersecurity landscape remains volatile, with July 2025 seeing unexpected vulnerabilities, including exploited SharePoint flaws and updates from Microsoft, Google, and Apple. CISA flagged critical SharePoint vulnerabilities, urging immediate patching and machine key rotation due to ransomwar...
Read More »