Tag

Patch Tuesday

All articles tagged with #patch tuesday

AI-Driven Flaw Hunting to Drive More Windows Security Patches
technology1 day ago

AI-Driven Flaw Hunting to Drive More Windows Security Patches

Microsoft says AI-powered vulnerability discovery is accelerating the identification of Windows flaws, leading to more security updates in each Patch Tuesday. Its MDASH system scans critical Windows binaries, validates findings with multiple AI models, and reduces false positives before engineers review and ship fixes. The company is also updating Secure Development Lifecycle practices to account for AI-enabled attacks, and CISA is using Anthropic's Fable AI for government software audits, highlighting a broader trend toward AI-assisted cybersecurity.

RoguePlanet Privilege Escalation in Defender Finally Patched, No Action Needed
security1 day ago

RoguePlanet Privilege Escalation in Defender Finally Patched, No Action Needed

Microsoft issued security updates addressing RoguePlanet, a privilege-escalation flaw in the Microsoft Malware Protection Engine (mpengine.dll) that could spawn a SYSTEM shell. The fix arrives in Defender engine version 1.1.26060.3008 with defense-in-depth hardening. Disclosed by Chaotic Eclipse, RoguePlanet can be exploited on Windows systems with the June 2026 Patch Tuesday and works regardless of real-time protection. Microsoft says no customer action is required beyond automatic updates.

technology4 days ago

Windows 11 storage bug can eat up to 500GB—how to check and fix

A Windows 11 bug in the Capability Access Manager can balloon its database file (CapabilityAccessManager.db-wal) to hundreds of gigabytes, potentially filling drives and slowing the system. It’s not obvious from the usual storage view, so use disk-space tools like TreeSize, WinDirStat, or WizTree (or run a robocopy check) to locate the large file. Microsoft has a fix in the June 2026 optional update KB5095093, with full rollout slated for July Patch Tuesday; install via Windows Update → Advanced options → Optional updates. Do not delete or uninstall the component while the fix is pending.

Windows 11 26H2: A shift to tiny, continuous updates
technology19 days ago

Windows 11 26H2: A shift to tiny, continuous updates

Microsoft continues its shift to small, enablement-package updates for Windows 11 26H2, which toggles existing features rather than delivering new ones; upgrades on devices already on 24H2/25H2 are quick and largely invisible, while new features arrive through monthly patches and the annual update mainly extends support timelines. 26H2 extends support to 2028–2029, with 26H1 targeting newer silicon but not offering user-facing changes for most, signaling a broader move toward continual, lower-disruption updates—though the path beyond 2026 is not confirmed.

June Windows 11 patch spawns Recycle Bin glitch and broader stability woes
technology21 days ago

June Windows 11 patch spawns Recycle Bin glitch and broader stability woes

Microsoft confirms a bug in the June 2026 Windows 11 Patch Tuesday (KB5095051) where the Recycle Bin’s delete-confirmation shows cryptic internal filenames like $Rxxxx.ext, though the delete action still works and items retain their original names in the window; a workaround is available for commercial devices via Microsoft Support for Business, with a permanent fix coming in a future update. The update also brings issues such as OneDrive access problems, slow File Explorer performance, sporadic BSODs on some HP machines, freezes on some Lenovo PCs, and BitLocker Recovery triggers on devices with local accounts.

June 2026 Patch Tuesday Breaks Windows 11: Freezes, BitLocker Recovery, and OneDrive Glitches
technology25 days ago

June 2026 Patch Tuesday Breaks Windows 11: Freezes, BitLocker Recovery, and OneDrive Glitches

Microsoft’s June 2026 Patch Tuesday update KB5094126 for Windows 11 (versions 24H2 and 25H2) has triggered widespread issues, including rapid system freezes requiring WinRE or OS reinstall, forced BitLocker recovery on reboot, and broken OneDrive Explorer integration on domain PCs. Some devices also face LAN outages while staying online, with HP machines reporting BSOD tied to ESP space. Workarounds include registry tweaks to bypass ESP failures and rolling back via WinRE, though Microsoft has not publicly acknowledged these problems in the KB. The update does deliver security fixes plus features like Bluetooth LE Audio and Windows Hello improvements, but reliability has been adversely affected for many users.

Windows 11 Secure Boot certificates roll out to most devices in June 2026
technology26 days ago

Windows 11 Secure Boot certificates roll out to most devices in June 2026

Microsoft’s June 2026 Patch Tuesday update KB5094126 delivers Secure Boot 2023 certificates to a broader set of Windows 11/10 devices, replacing expiring 2011 certificates; home users typically don’t need to act as updates are delivered via Windows Update. You can verify status in Windows Security > Device Security > Secure Boot: green means fully updated, yellow indicates you’re waiting on more compatibility data, and red signals a firmware issue that requires an OEM BIOS/UEFI update. Expect several reboots as the certificates are staged into firmware. A new SecureBoot folder in C:\Windows may appear and should be left alone. Older PCs may take longer; devices with Secure Boot disabled cannot be updated. For IT admins, high-confidence devices auto-update (Intune); others can trigger via registry key AvailableUpdates=5944 or an Intune policy. HP devices had BIOS issues causing BitLocker prompts—update HP BIOS first. Note KEK expires June 24, 2026, with the DB key valid until October 2026; see aka.ms/GetSecureBoot for details.

Microsoft Patches Trio of Windows Zero-Days Exploited by Nightmare Eclipse
security1 month ago

Microsoft Patches Trio of Windows Zero-Days Exploited by Nightmare Eclipse

Microsoft released June 2026 Patch Tuesday fixes for three Windows zero-days—GreenPlasma and MiniPlasma privilege-escalation flaws in the Collaborative Translation Framework and Cloud Files Mini Filter Driver, and YellowKey in WinRE—that could allow attackers to gain SYSTEM-level access or bypass BitLocker on patched Windows 11 and Windows Server 2022/2025 systems. The flaws were disclosed by Nightmare Eclipse in protest of MSRC handling, continuing a series of leaks and PoCs (BlueHammer, RedSun, UnDefend, RoguePlanet). Microsoft provided mitigations and warned about PoC disclosures, while saying it would coordinate with law enforcement if needed.

BitLocker’s Physical‑Access Flaw Triggers June Patch Rush (CVE-2026-50507)
technology1 month ago

BitLocker’s Physical‑Access Flaw Triggers June Patch Rush (CVE-2026-50507)

Microsoft disclosed a BitLocker vulnerability (CVE-2026-50507) that lets an attacker with physical access bypass BitLocker Device Encryption and read data on the drive. The flaw, mapped to CWE-306, affects a broad range of Windows clients and servers from Windows 10/11 to Windows Server 2012 R2–2025, with a CVSS v3.1 base score of 6.8. Patches were released on June 9, 2026 as part of the June Patch Tuesday updates (KB5094041, KB5094122, KB5094123, KB5094126, KB5094127, KB5094128, KB5095051). Exploitation requires physical access, low complexity, no privileges, and no user interaction, and proof‑of‑concept code exists. Guidance: deploy the June 2026 updates promptly, verify BitLocker health, enforce TPM+PIN where possible, and strengthen physical security and incident response for unpatched or remote devices until patches are fully rolled out.

Microsoft Deploys Record Patch Tuesday: 206 Flaws, Three Zero-Days, and High-Impact RCEs
security1 month ago

Microsoft Deploys Record Patch Tuesday: 206 Flaws, Three Zero-Days, and High-Impact RCEs

Microsoft released its largest patch batch to date, fixing 206 vulnerabilities across its software, including three publicly disclosed zero-days and multiple critical remote-code-execution flaws in Windows kernel, HTTP.sys, DHCP Client, and BitLocker. The update also addresses two non-Microsoft CVEs and introduces mitigations such as MaxHeadersCount to curb HTTP/2/3 abuse. The release follows AI-driven vulnerability discovery and recent PoCs like RoguePlanet and MiniPlasma, underscoring increasing exploitation risk and the ongoing need to apply patches promptly.

technology1 month ago

June 2026 Patch Tuesday Sets Record With 200 Fixes and New Zero-Days

Microsoft's June 2026 Patch Tuesday delivered a record ~200 fixes across Windows and related software, with about 36 rated critical and several publicly exploited flaws. Highlights include IIS zero-day CVE-2026-49160, Nightmare Eclipse-linked Windows flaws (e.g., CVE-2026-45586) and a BitLocker privilege escalation (CVE-2026-50507), plus a Visual Studio Code zero-day exposing GitHub tokens. The patch surge comes amid a broader spike in browser vulnerabilities and other vendor updates (Adobe, Chrome); Nightmare Eclipse has pledged more zero-days for July 14, and Microsoft urges users to back up data before updating.

Microsoft patches Windows 11 update failures by addressing ESP space issue
technology1 month ago

Microsoft patches Windows 11 update failures by addressing ESP space issue

Microsoft says Windows 11 update failures are caused by insufficient ESP (EFI System Partition) space and has released an optional fix KB5089573 to prevent ESP-space from blocking updates; install it if May 2026 updates failed, or wait for the next Patch Tuesday (June 9) when the fix will be included in future updates. Do not manually resize ESP unless you know what you’re doing, as ESP space can grow from OEM BIOS updates; you can check ESP space with a PowerShell command.

Active Exploitation of Critical Netlogon Flaw Prompting Immediate Patch urged
technology1 month ago

Active Exploitation of Critical Netlogon Flaw Prompting Immediate Patch urged

Belgium’s national cybersecurity authority warns threat actors are actively exploiting CVE-2026-41089, a critical Netlogon vulnerability patched in May 2026, to achieve remote code execution on domain controllers across all supported Windows Server versions; admins should patch immediately as exploitation is underway and advisories from Microsoft have not yet been updated.