windows
Microsoft: Windows 11 24H2 now ready to rollout to everyone
Microsoft announced over the weekend that the Windows 11 24H2 update is ready to roll out to all compatible PCs, excluding those with safeguard holds. Also known as the Windows 11 2024 Update, this release will now be offered to all Windows devices that aren’t configured to defer feature updates. “We have reached the last […]
Microsoft makes all new accounts passwordless by default
Microsoft has announced that all new Microsoft accounts will be “passwordless by default” to secure them against password attacks such as phishing, brute force, and credential stuffing. The announcement comes after the company started rolling out updated sign-in and sign-up user experience (UX) flows for web and mobile apps in March, optimized for passwordless and passkey-first authentication. […]
Microsoft: Windows Server hotpatching to require subscription
Microsoft has announced that it will soon introduce paid subscriptions for Windows Server 2025 hotpatching, a service that enables admins to install security updates without restarting. The company urged admins to try hotpatching free of charge before it becomes generally available in July, when they’ll have to pay for a subscription to test it. However, […]
Windows “inetpub” security fix can be abused to block future updates
A recent Windows security update that creates an ‘inetpub’ folder has introduced a new weakness allowing attackers to prevent the installation of future updates. After people installed this month’s Microsoft Patch Tuesday security updates, Windows users suddenly found an “inetpub” folder owned by the SYSTEM account created in the root of the system drive, normally the C: drive. It […]
Microsoft announces fix for CPU spikes when typing in Outlook
Microsoft says it will soon fix a known issue causing CPU spikes when typing messages in recent versions of its classic Outlook email client. Redmond confirmed this bug last week after a wave of user reports on various online platforms since early November, including Microsoft’s community website, with those affected saying that disabling all spell-check options and add-ins […]
Microsoft fixes bug causing incorrect 0x80070643 WinRE errors
Microsoft says it resolved a known issue causing erroneous 0x80070643 installation failure errors when deploying the April 2025 Windows Recovery Environment (WinRE) updates. When it acknowledged the bug two weeks ago, Redmond told those affected that these errors can be ignored since they’re inaccurate and don’t impact their Windows device’s functionality. The known issue impacts the KB5057588 WinRE update […]
Microsoft fixes Remote Desktop freezes caused by Windows updates
Microsoft has resolved a known issue causing Remote Desktop sessions to freeze on Windows Server 2025 and Windows 11 24H2 devices. While the issue affecting Windows 11 systems was addressed on February 25 with the KB5052093 optional update, Microsoft says it has also fixed it on impacted Windows Server devices with the KB5055523 Patch Tuesday cumulative update on April […]
Microsoft fixes Windows Server 2025 blue screen, install issues
Microsoft has fixed several known issues that caused Blue Screen of Death (BSOD) and installation issues on Windows Server 2025 systems with a high core count. As Redmond said when it acknowledged this known issue in October, impacted devices may experience a wide range of symptoms, including Windows Server 2025 installation or upgrading processes failing or hanging, […]
Widespread Microsoft Entra lockouts tied to new security feature rollout
Windows administrators from numerous organizations report widespread account lockouts triggered by false positives in the rollout of a new Microsoft Entra ID’s “leaked credentials” detection app called MACE. These alerts and lockouts began last night, with some admins believing they were false positives as the accounts have unique passwords that are not used on any […]
Windows NTLM hash leak flaw exploited in phishing attacks on governments
A Windows vulnerability that exposes NTLM hashes using .library-ms files is now actively exploited by hackers in phishing campaigns targeting government entities and private companies. The flaw tracked as CVE-2025-24054 was fixed in Microsoft’s March 2025 Patch Tuesday. Initially, it was not marked as actively exploited and was assessed as ‘less likely’ to be. However, Check Point researchers […]