tldrdailynews.com logo
Tag

Vss

All articles tagged with #vss

April Windows updates block kernel driver, breaking third-party backup tools
technology1 month ago

April Windows updates block kernel driver, breaking third-party backup tools

Microsoft confirms the April 2026 security updates added psmounterex.sys to the Vulnerable Driver Blocklist, which can cause VSS-based backup programs (e.g., Macrium Reflect, Acronis Cyber Protect Cloud, UrBackup Server, NinjaOne Backup) to fail when mounting or managing backup images on Windows 10/11/Server. Symptoms include VSS timeouts and Code Integrity events (Event ID 3077). The company recommends updating affected backup apps to versions that use newer drivers and warns against uninstalling the update. Some Windows Server 2025 devices may experience BitLocker recovery prompts after KB5082063, and Microsoft issued out-of-band fixes for server install/restart issues.

via BleepingComputer|
#backup-software#psmounterex#technology
Windows 11 KB Update Triggers Backup Failures Due to VSS Timeouts
technology1 month ago

Windows 11 KB Update Triggers Backup Failures Due to VSS Timeouts

The April 2026 KB5083769 security update for Windows 11 24H2/25H2 breaks several third‑party backup apps that rely on Volume Shadow Copy Service (VSS), causing backup operations to fail with a VSS timeout; affected vendors include Acronis, Macrium, NinjaOne Backup, and UrBackup. Acronis confirms the impact on Windows 11 Pro/Home and recommends uninstalling the update and pausing updates as a workaround. Microsoft also issued out‑of‑band fixes for related server issues earlier in the month, and some Windows Server 2025 devices may receive BitLocker recovery prompts after KB5082063.

via BleepingComputer|
#acronis#backup#kb5083769
Ransomware Gang Enhances Capabilities with Custom Data-Theft Tool.
cybersecurity3 years ago

Ransomware Gang Enhances Capabilities with Custom Data-Theft Tool.

Play ransomware group has developed two custom tools, Grixba and VSS Copying Tool, to improve the effectiveness of its cyberattacks. Grixba is a network-scanning and information-stealing tool used to enumerate users and computers in a domain, while VSS Copying Tool allows attackers to interact with the Volume Shadow Copy Service (VSS) via API calls using a bundled AlphaVSS .NET library. Both tools enable attackers to gather information about security, backup, and remote administration software, and easily copy files from VSS to bypass locked files. Symantec discovered and analyzed the new tools and shared their findings with BleepingComputer before publishing their report.

via BleepingComputer|
#custom-tools#cybersecurity#data-theft