#windows-xp-support
#windows-xp-support

Privacy technologies

Microsoft faces fresh Windows Recall security concerns

Mobile UX

Microsoft kills off Outlook Lite as memory costs skyrocket

Information security

Microsoft's Windows Recall still allows silent data extraction

Mobile UX

fromTechCrunch

Microsoft is officially killing its Outlook Lite app next month | TechCrunch

Microsoft is shutting down Outlook Lite on May 26, transitioning users to Outlook Mobile.

Microsoft Issues Massive Windows Patch for 160+ Bugs, Including Two Zero-Days

Microsoft released a significant security update addressing 165 vulnerabilities, including two critical zero-days, marking one of the largest updates in its history.

3 hours ago

Microsoft closes book on rogue Windows Server 2025 upgrades

Microsoft has resolved the Windows Server 2025 upgrade issue, but new problems have emerged with the cumulative update KB5082063.

Privacy technologies

fromThe Verge

Microsoft faces fresh Windows Recall security concerns

A new tool, TotalRecall Reloaded, extracts data from Microsoft's redesigned Recall feature, raising ongoing security and privacy concerns.

Mobile UX

Microsoft kills off Outlook Lite as memory costs skyrocket

Microsoft's Windows Recall still allows silent data extraction

Microsoft needs to enhance code integrity for AIXHost.exe to prevent injection attacks.

fromTechCrunch

Mobile UX

Microsoft is officially killing its Outlook Lite app next month | TechCrunch

Microsoft Issues Massive Windows Patch for 160+ Bugs, Including Two Zero-Days

Microsoft released a significant security update addressing 165 vulnerabilities, including two critical zero-days, marking one of the largest updates in its history.

more#microsoft

58 minutes ago

Users complain of UK Azure capacity problems

Azure UK is full. Like full full. There's no additional quota available in any UK region, meaning no new VMs or AKS clusters can be created.

Tech industry

UX design

fromSmashing Magazine

1 week ago

How To Improve UX In Legacy Systems - Smashing Magazine

Improving UX in legacy systems requires gradual progress while addressing user and stakeholder needs.

Toronto startup

8 hours ago

'Technician Aura': the bugs that flee when you arrive

Technician Aura often causes tech issues to vanish when a technician is present, complicating troubleshooting efforts.

Artificial intelligence

Moving away from mainframes using AI proves unfeasible for many companies

Phasing out mainframes is often unfeasible for large organizations due to overestimated AI capabilities in modernization projects.

Windows takes a crash dump after one McDonald's too many

Windows crashed at a McDonald's order screen, displaying a Blue Screen of Death instead of order progress.

Microsoft is blocking legacy Windows drivers

Microsoft will only allow drivers approved through the Windows Hardware Compatibility Program to enhance security and compatibility in Windows.

Boston food

Windows takes a crash dump after one McDonald's too many

Windows crashed at a McDonald's order screen, displaying a Blue Screen of Death instead of order progress.

Microsoft is blocking legacy Windows drivers

Microsoft will only allow drivers approved through the Windows Hardware Compatibility Program to enhance security and compatibility in Windows.

Windows Update: Torture chamber for seldom-used PCs

Windows updates for infrequently used PCs lead to long wait times and multiple reboots, causing frustration for users.

Software development

Microsoft's Patch Fixes Are Breaking Windows, Forcing a Second Emergency Update

Windows Update: Torture chamber for seldom-used PCs

Windows updates for infrequently used PCs lead to long wait times and multiple reboots, causing frustration for users.

Software development

Microsoft's Patch Fixes Are Breaking Windows, Forcing a Second Emergency Update

Google app with AI Mode is now available for Windows worldwide

Google launched an experimental Windows app with AI Mode, allowing users to ask questions and interact with their screens.

DevOps

fromAzure DevOps Blog

April Patches for Azure DevOps Server - Azure DevOps Blog

Customers should update to the latest version of Azure DevOps Server for security and reliability.

France news

4 days ago

France is replacing 2.5 million Windows desktops with Linux - and I mapped out its new stack

France's government is transitioning from Windows to a Linux desktop, specifically using the GendBuntu distribution.

1 hour ago

Three Microsoft Defender Zero-Days Actively Exploited; Two Still Unpatched

Threat actors are exploiting three vulnerabilities in Microsoft Defender for elevated privileges, with one flaw already addressed by Microsoft.

20-year-old Enlightenment E16 bug finally gets patched

Kamila Szewczyk fixed a 20-year-old bug in the Enlightenment E16 Linux window manager, emphasizing the value of maintaining older software.

Hackers Are Using Your Home Router to Spy on Microsoft 365 Users

Russian spies exploited consumer routers to steal Microsoft 365 credentials from thousands of users, turning home devices into espionage tools.

ThreatsDay Bulletin: Defender 0-Day, SonicWall Brute-Force, 17-Year-Old Excel RCE and 15 More Stories

Hackers exploit vulnerabilities, including a fake app draining $9.5M, while new exploits like RedSun target Microsoft Defender.

CISA Adds 6 Known Exploited Flaws in Fortinet, Microsoft, and Adobe Software

CISA added six security flaws to its KEV catalog due to evidence of active exploitation.

4 days ago

Weekly Recap: Fiber Optic Spying, Windows Rootkit, AI Vulnerability Hunting and More

A critical zero-day vulnerability in Adobe Acrobat Reader is actively exploited, alongside state-sponsored cyber threats targeting U.S. infrastructure.

Privacy technologies

fromYahoo Tech

Hackers Are Using Your Home Router to Spy on Microsoft 365 Users

Russian spies exploited consumer routers to steal Microsoft 365 credentials from thousands of users, turning home devices into espionage tools.

ThreatsDay Bulletin: Defender 0-Day, SonicWall Brute-Force, 17-Year-Old Excel RCE and 15 More Stories

Hackers exploit vulnerabilities, including a fake app draining $9.5M, while new exploits like RedSun target Microsoft Defender.

CISA Adds 6 Known Exploited Flaws in Fortinet, Microsoft, and Adobe Software

CISA added six security flaws to its KEV catalog due to evidence of active exploitation.

4 days ago

Weekly Recap: Fiber Optic Spying, Windows Rootkit, AI Vulnerability Hunting and More

A critical zero-day vulnerability in Adobe Acrobat Reader is actively exploited, alongside state-sponsored cyber threats targeting U.S. infrastructure.

Microsoft attempts to untangle Windows Insider program

Microsoft is revamping the Windows Insider program to simplify user experience and enhance feature access.

17 hours ago

MCP 'design flaw' puts 200k servers at risk: Researcher

A design flaw in Anthropic's Model Context Protocol puts 200,000 servers at risk, despite repeated requests for a patch from security researchers.

fromArs Technica

Microsoft's "commitment to Windows quality" starts with overhaul of beta program

The Release Preview channel will serve as a hidden option for IT shops to test upcoming updates without needing to wipe PCs.

April Patch Tuesday Fixes Critical Flaws Across SAP, Adobe, Microsoft, Fortinet, and More

Critical vulnerabilities in Adobe, Fortinet, Microsoft, and SAP products were highlighted in April's Patch Tuesday releases.

#windows-11

Software development

Microsoft's Windows Insider Program is no longer a confusing mess

Windows users are angry, and Microsoft is finally doing something about it

Microsoft acknowledges Windows 11 complaints and promises significant changes based on user feedback.

Software development

If Microsoft really wants to fix Windows 11, it should do these four things ASAP

Software development

Windows boss promises to heal the operating system's wounds

Gadgets

Patch Tuesday update makes Windows PCs refuse to shut down

Windows 11 23H2 updates can prevent PCs with Secure Launch enabled from shutting down, restarting, or hibernating; run shutdown /s /t 0 to force power-off.

Digital life

After 30 years with Linux, I switched it for Windows 11 - and found 9 serious problems

Windows 11 produced persistent frustrations, restrictive behavior, and usability failures, making Linux a preferable operating system after a week of use.

Microsoft's Windows Insider Program is no longer a confusing mess

Microsoft is simplifying the Insider Program for Windows 11, introducing a more reliable Beta channel and easier feature management.

Windows users are angry, and Microsoft is finally doing something about it

Microsoft acknowledges Windows 11 complaints and promises significant changes based on user feedback.

If Microsoft really wants to fix Windows 11, it should do these four things ASAP

Microsoft's focus on Windows 11 fundamentals and reforming the Insider Program is essential for improving user experience.

Windows boss promises to heal the operating system's wounds

Microsoft promises improvements to Windows 11, addressing user frustrations with bugs and AI integration, but lacks genuine apologies for past issues.

Gadgets

Patch Tuesday update makes Windows PCs refuse to shut down

Digital life

After 30 years with Linux, I switched it for Windows 11 - and found 9 serious problems

Ancient Excel bug comes out of retirement for active attacks

A 17-year-old critical Excel vulnerability is actively being exploited, prompting CISA to issue a patch deadline for federal agencies.

Enterprise PCs are unreliable, unpatched, and unloved

Apple and Google devices show superior software update rates and reliability compared to Microsoft devices, according to Omnissa's findings.

Splunk Enterprise Update Patches Code Execution Vulnerability

Splunk has released fixes for high and medium-severity vulnerabilities in its products, including Splunk Enterprise, Cloud Platform, and MCP Server.

Microsoft rejiggers Intune to give patches time to prove themselves

Microsoft Intune will shift from pushing patches to measuring compliance with defined update standards, emphasizing policy and outcomes over delivery.

Two Vulnerabilities Patched in Ivanti Neurons for ITSM

Ivanti resolved two medium-severity vulnerabilities in Neurons for ITSM affecting on-premises and cloud deployments.

#windows-update

Software development

Microsoft pulls Windows update after installation problems

Microsoft has paused the rollout of Windows update KB5079391 due to installation errors affecting some users.

Microsoft Promises Fewer Disruptive Windows Updates, More User Control

Microsoft is enhancing Windows Update by providing users with more control and improving overall system reliability in Windows 11.

Software development

Microsoft pulls Windows update after installation problems

Microsoft Promises Fewer Disruptive Windows Updates, More User Control

Microsoft is enhancing Windows Update by providing users with more control and improving overall system reliability in Windows 11.

ICS Patch Tuesday: 8 Industrial Giants Publish New Security Advisories

Multiple industrial giants have released new ICS security advisories addressing various vulnerabilities since the last Patch Tuesday.

US news

Microsoft finally gets around to fixing what it broke in Oct

Microsoft fixed a Windows Recovery Environment bug introduced in Windows 10's October 14, 2025 update that prevented WinRE from launching on affected devices.

Adobe Patches 55 Vulnerabilities Across 11 Products

Adobe's Patch Tuesday updates address 55 vulnerabilities across 11 products, with critical ColdFusion flaws requiring immediate attention.

Adobe Patches Reader Zero-Day Exploited for Months

Adobe released emergency patches for a critical zero-day vulnerability in Acrobat and Reader that has been exploited for several months.

Adobe Patches Actively Exploited Acrobat Reader Flaw CVE-2026-34621

Adobe released emergency updates for a critical security flaw in Acrobat Reader that is actively exploited, allowing arbitrary code execution.

Adobe Patches 55 Vulnerabilities Across 11 Products

Adobe's Patch Tuesday updates address 55 vulnerabilities across 11 products, with critical ColdFusion flaws requiring immediate attention.

Adobe Patches Reader Zero-Day Exploited for Months

Adobe released emergency patches for a critical zero-day vulnerability in Acrobat and Reader that has been exploited for several months.

Adobe Patches Actively Exploited Acrobat Reader Flaw CVE-2026-34621

Adobe released emergency updates for a critical security flaw in Acrobat Reader that is actively exploited, allowing arbitrary code execution.

Organizations Warned of Exploited Windows, Adobe Acrobat Vulnerabilities

CISA expanded its Known Exploited Vulnerabilities catalog with seven new vulnerabilities, including critical Windows and Adobe flaws.

How Windows 95 fought off badly behaved installers

"This rule relies on the fact that Windows maintains backward compatibility, so the newer version still works even if used by an older program."

Software development

SAP Patches Critical ABAP Vulnerability

SAP released 20 new and updated security notes addressing critical vulnerabilities, including a severe SQL injection flaw with a CVSS score of 9.9.

Ransomware scum, other crims exploit 4 old Microsoft bugs

Four Microsoft vulnerabilities are actively exploited, including one from 2012, prompting CISA to urge federal agencies to patch them within two weeks.

Microsoft: Third-Party Android Vulnerability Leaves Over 50M Users Exposed

A critical flaw in the EngageLab SDK allowed malicious apps to exploit trusted permissions, affecting over 50 million Android users.

#patch-tuesday

Gadgets

Microsoft's latest update patches six zero-days and two critical flaws - but is it another buggy mess?

For March, Patch Tuesday delivers fixes for 83 vulnerabilities

Microsoft's March Patch Tuesday addresses 83 vulnerabilities including two zero-day exploits in SQL Server and .NET, while introducing Common Log File System hardening with signature verification.

Information security

For January, Patch Tuesday starts off with a bang

Information security

February's Patch Tuesday release fixes 59 flaws, including 6 being exploited

Information security

Microsoft issues emergency patch for latest Windows bugs - grab it ASAP

Gadgets

Microsoft's latest update patches six zero-days and two critical flaws - but is it another buggy mess?

For March, Patch Tuesday delivers fixes for 83 vulnerabilities

Microsoft's March Patch Tuesday addresses 83 vulnerabilities including two zero-day exploits in SQL Server and .NET, while introducing Common Log File System hardening with signature verification.

Information security

For January, Patch Tuesday starts off with a bang

Information security

February's Patch Tuesday release fixes 59 flaws, including 6 being exploited

Information security

Microsoft issues emergency patch for latest Windows bugs - grab it ASAP

Windows 12 Could Arrive in 2026 as Millions of PCs Near Windows 10 Deadline

Windows 12 is expected to launch in 2026 as Windows 10 support ends, featuring AI-centric architecture with mandatory Copilot integration and NPU-powered local processing capabilities.

Windows 12 could be the tipping point that finally pushes you to Linux - here's why

Microsoft's established pattern of controversial Windows releases will likely drive significant user migration to Linux with Windows 12.

Windows 12 Could Arrive in 2026 as Millions of PCs Near Windows 10 Deadline

Windows 12 is expected to launch in 2026 as Windows 10 support ends, featuring AI-centric architecture with mandatory Copilot integration and NPU-powered local processing capabilities.

Windows 12 could be the tipping point that finally pushes you to Linux - here's why

Microsoft's established pattern of controversial Windows releases will likely drive significant user migration to Linux with Windows 12.

A critical Windows security fix puts legacy hardware on borrowed time

Microsoft will block unvetted kernel drivers starting April 2026, impacting legacy applications while enhancing security.

Microsoft cracks down on old Windows kernel drivers

Microsoft will stop trusting kernel drivers not through the Windows Hardware Compatibility Program by April 2026 to enhance Windows kernel security.

Information security

Microsoft dials up the nagging in Windows, calls it security

A critical Windows security fix puts legacy hardware on borrowed time

Microsoft will block unvetted kernel drivers starting April 2026, impacting legacy applications while enhancing security.

Microsoft cracks down on old Windows kernel drivers

Microsoft will stop trusting kernel drivers not through the Windows Hardware Compatibility Program by April 2026 to enhance Windows kernel security.

Information security

Microsoft dials up the nagging in Windows, calls it security

more#windows-security

Microsoft releases second out-of-band fix for Windows in a week

January Windows updates caused Outlook and other apps to hang or mishandle files stored on cloud services, prompting Microsoft to release emergency out-of-band fixes.

Microsoft stays quiet while emergency Windows fixes ramp up

But are things getting worse? According to Register readers, and the company's own release health dashboard, the answer has to be yes. It isn't just you. The frequency of emergency out-of-band releases for the company's operating systems has been rapidly increasing to the point where, for every Patch Tuesday update, there'll likely be at least one out-of-band patch to fix whatever got broken.

Tech industry

Microsoft Issues Emergency Patch for Critical Windows 11 RRAS Vulnerabilities

Microsoft released an out-of-band security update for Windows 11 addressing three critical vulnerabilities in the Windows Routing and Remote Access Service that enable remote code execution through malicious server connections.

Microsoft is blocking automatic Windows installations via WDS

Microsoft is discontinuing automatic Windows network deployments via WDS and Unattend.xml due to security vulnerability CVE-2026-0386 that allows attackers to execute unauthorized code and steal credentials.

Microsoft Patches 83 Vulnerabilities

Microsoft released 83 vulnerability patches in March 2026, including one critical remote code execution flaw and several privilege escalation bugs requiring attention.

#ntlm

Software development

Microsoft Begins NTLM Phase-Out With Three-Stage Plan to Move Windows to Kerberos

Information security

Microsoft Moves Closer to Disabling NTLM

Software development

Microsoft Begins NTLM Phase-Out With Three-Stage Plan to Move Windows to Kerberos

Information security

Microsoft Moves Closer to Disabling NTLM

more#ntlm

Old Windows quirks help punch through new admin defenses

The issue focuses on how Windows handles these directories for specific user sessions. Because the kernel creates a DOS device object directory on demand, rather than at login, it cannot check whether the user is an admin during the creation process. Unlike UAC, Administrator Protection uses a hidden shadow admin account whose token handle can be returned by the system when calling the NtQueryInformationToken API function.

Information security

#windows-10

Information security

Microsoft said my Windows 10 PC was no longer eligible for updates - so I used this secure alternative instead

Information security

Microsoft said my Windows 10 PC no longer supported updates - but this software saved it

Information security

I tried 0patch as a last resort for my Windows 10 PC - here's how it compares to its promises

Information security

Microsoft said my Windows 10 PC was no longer eligible for updates - so I used this secure alternative instead

Information security

Microsoft said my Windows 10 PC no longer supported updates - but this software saved it

Information security

I tried 0patch as a last resort for my Windows 10 PC - here's how it compares to its promises

more#windows-10

Support for Windows Server 2016 is coming to an end

Microsoft is warning organizations about the impending end of support for several Windows products from 2016. These include Windows Server 2016, Windows 10 Enterprise 2016 LTSB, and Windows IoT Enterprise LTSB 2016. According to Microsoft, these products are approaching the final stage of their lifecycle, which has direct consequences for organizations that still depend on this software. The lifecycle documentation on Microsoft Learn shows that Windows Server 2016 has not received regular support since January 2022 and is now fully in the extended support phase.

Information security

#microsoft-security-updates

Critical Microsoft bug from 2024 under exploitation

A 9.8-rated SQL injection in Microsoft Configuration Manager, patched Oct 2024, is actively exploited and requires immediate patching.

Information security

Microsoft Patches 59 Vulnerabilities Including Six Actively Exploited Zero-Days

Information security

Microsoft's February Patch Tuesday Fixes 6 Zero-Days Under Attack

Information security

Microsoft Patches 59 Vulnerabilities Including Six Actively Exploited Zero-Days

more#microsoft-security-updates

Information security

Microsoft's February Patch Tuesday Fixes 6 Zero-Days Under Attack

fromComputerWeekly.com

February Patch Tuesday: Microsoft drops six zero-days | Computer Weekly

Six newly classified Microsoft zero-day vulnerabilities are actively exploited, three publicly disclosed, within over 50 patched flaws across Microsoft products.