Tag

Windows

All articles tagged with #windows

technology1 day ago•8 min saved

Tiny11: A lean Windows 11 path to rescue older Windows 10 PCs

As Windows 10 reaches its end of life with no future security updates, Tiny11 offers an unofficial, stripped-down Windows 11 that can run on older hardware by removing bloat. It isn’t endorsed by Microsoft, lacks regular updates, and requires a valid Windows 11 license. You can obtain or build a Tiny11 ISO (Internet Archive or tiny11maker.ps1 from GitHub), then use Rufus to create a bootable USB and install. Be mindful of caveats and consider alternatives like Linux or ChromeOS Flex.

via WIRED|

#bootable-usb #technology #tiny11

technology2 days ago•12 min saved

Legacy Secure Boot certificates set to expire, risking future boot security updates

Microsoft’s 2011-era Secure Boot certificates expire in 2026 (June 24 for KEK CA 2011, June 27 for UEFI CA 2011, October 19 for Windows Production PCA 2011). After June 24, devices will still boot but won’t receive new boot-level security updates or patches for boot vulnerabilities unless they’re on updated builds via the 2023 certificate rollout (KB5089549). Some older hardware may require OEM firmware updates to align with the new chain. Check KB5062710 for status and ensure the latest Windows updates are installed; Windows 10 users outside the Extended Security Updates program may have limited remediation paths.”,

via Notebookcheck|

#certificates #secure-boot #technology

technology4 days ago•2 min saved

Nvidia Warns of Critical GPU Driver Flaw, Demands Immediate Update to 596.49

Nvidia warns of a high-severity vulnerability in Windows and Linux GPU drivers and urges users to update to driver version 596.49 (older 596.36 or 482.53 for GTX 10-series are at risk); Linux users should upgrade to 590.48.01. The patch prevents attackers from gaining access to data or injecting malicious code, while Nvidia also previews a beta Auto Shader Compilation feature for RTX 50-series.

via GameSpot|

#driver-update #linux #nvidia

business4 days ago•3 min saved

Microsoft Veteran Yusuf Mehdi to Depart After AI-Driven Leadership Shift

Yusuf Mehdi, a 35-year Microsoft veteran and the company’s consumer chief marketing officer since 2023, says he will leave after the next fiscal year to help reimagine Windows for the AI era, grow Microsoft 365 services, and push the One Copilot vision, as Microsoft reshapes leadership amid Satya Nadella’s AI reboot.

via Business Insider|

#ai #business #copilot

security5 days ago•3 min saved

Microsoft Unveils Mitigations for Windows YellowKey Zero-Day

Microsoft released mitigations for the YellowKey Windows BitLocker zero-day (CVE-2026-45585) after a PoC disclosure by Nightmare Eclipse, detailing steps to prevent exploitation—removing the autofstx.exe entry from the Session Manager BootExecute to stop FsTx replay, reestablishing BitLocker trust for WinRE, and enforcing TPM+PIN startup or a startup PIN with TPM on devices (via PowerShell, Intune, or Group Policy)—to block attacks until a patch is available.

via BleepingComputer|

#bitlocker #mitigations #security

cyber-security-news7 days ago•57 min saved

Public PoC Unleashes Windows 'MiniPlasma' Privilege-Escalation to SYSTEM

A publicly released PoC for the Windows 'MiniPlasma' zero-day privilege-escalation flaw lets unprivileged users gain SYSTEM privileges by exploiting the Cloud Filter driver’s HsmOsBlockPlaceholderAccess race condition and writing to the .DEFAULT hive. The bug traces to CVE-2020-17103 (originally patched in 2020 by Microsoft) but the PoC shows the flaw remains exploitable; Nightmare-Eclipse released the exploit on GitHub on May 13, 2026, after May Patch Tuesday, increasing risk as weaponized code circulates and affects all Windows versions. Organizations should monitor Microsoft’s response and apply patches when available.

via CyberSecurityNews|

#cyber-security-news #miniplasma #nightmare-eclipse

security8 days ago•1 min saved

MiniPlasma PoC Prompts SYSTEM Privilege Escalation on Windows

Security researcher Chaotic Eclipse released a MiniPlasma PoC that can grant SYSTEM privileges on patched Windows by abusing cldflt.sys (Cloud Files Mini Filter Driver); the flaw traces to CVE-2020-17103 and may be unpatched on many systems, suggesting broad impact across Windows versions. The PoC exploits a race condition and has shown reliability on Windows 11 May 2026 builds, though results vary by build (Insider Canary sometimes unaffected). Microsoft had addressed a related issue in 2025 (CVE-2025-62221).

via The Hacker News|

#cldfltsys #miniplasma #poc

technology9 days ago•4 min saved

MiniPlasma PoC: New Windows zero-day grants SYSTEM on patched PCs

A security researcher released a GitHub proof-of-concept for a Windows privilege-escalation zero-day named MiniPlasma, which reportedly lets attackers obtain SYSTEM privileges on patched Windows by abusing the Cloud Filter driver (cldflt.sys) and the HsmOsBlockPlaceholderAccess path; the issue traces to CVE-2020-17103, first reported by Google Project Zero and allegedly fixed in December 2020, though the author claims it remains exploitable. BleepingComputer verified the PoC on Windows 11 Pro with May 2026 updates, while a vulnerability analyst confirmed it works on public builds but not on Canary; the disclosure follows Chaotic Eclipse's ongoing sequence of Windows zero-days and public protest against Microsoft’s handling of bug bounties. Microsoft has not publicly responded to this additional disclosure.

via BleepingComputer|

#cybersecurity #poc #privilege-escalation

security12 days ago•4 min saved

New Windows Zero-Days Target WinRE BitLocker Bypass and SYSTEM Privilege Escalation

Researchers Chaotic Eclipse and Nightmare-Eclipse disclosed two Windows zero-days: YellowKey, a BitLocker bypass in Windows Recovery Environment via specially crafted FsTx files on USB or the EFI partition, and GreenPlasma, a privilege-escalation flaw tied to Windows CTFMON that could let an unprivileged user create arbitrary memory sections and potentially control privileged services. A separate BitLocker downgrade chain described by Intrinsec (CVE-2025-48804) could defeat encryption on fully patched systems with physical access by boot-image tampering. Mitigations include enabling BitLocker startup PIN, migrating the boot manager to CA 2023 certificates, and revoking PCA 2011 certificates as older certificates are retired; Microsoft notes coordinated vulnerability disclosure and upcoming Patch Tuesday updates in June 2026.

via The Hacker News|

#bitlocker #privilege-escalation #security

security12 days ago•4 min saved

Rogue researcher unleashes BitLocker bypass and SYSTEM-level Windows zero-days after Patch Tuesday

After Patch Tuesday, a rogue researcher released a third wave of Windows zero-days, including a BitLocker bypass dubbed 'Yellow key' and a privilege-escalation called 'GreenPlasma' that could grant SYSTEM-level access; the flaws affect Windows 11, Windows Server 2022, and Windows Server 2025, with Windows 10 reportedly unaffected. The exploits are publicly available on GitHub, and the researcher frames the disclosures as a backdoor-style challenge and warns of additional releases.

via Cybernews|

#bitlocker #cybersecurity #patch-tuesday

technology12 days ago•6 min saved

Chaotic Eclipse leaks PoCs for Windows BitLocker bypass and privilege escalation

Cybersecurity researcher Chaotic Eclipse has released PoCs for two Windows zero-days, YellowKey (BitLocker bypass) and GreenPlasma (privilege escalation), linked to the Chaotic Eclipse/Nightmare Eclipse set. YellowKey exploits WinRE via specially crafted FsTx files to bypass BitLocker on Windows 11 and Server 2022/2025, potentially affecting TPM-only configurations; GreenPlasma could enable a SYSTEM-level shell, though its PoC is incomplete. The disclosures follow earlier flaws (BlueHammer, RedSun) and ongoing leaks, with Microsoft saying it is investigating and supporting coordinated disclosure as Patch Tuesday nears.

via BleepingComputer|

#bitlocker #chaotic-eclipse #technology

security14 days ago•7 min saved

Microsoft May 2026 Patch Tuesday patches 120 flaws, no zero-days detected

Microsoft's May 2026 Patch Tuesday fixes around 120 vulnerabilities across Windows, Azure, Office, and developer tools, with no zero-day exploits disclosed. The updates address critical and important flaws including remote code execution, privilege escalation, spoofing, and data disclosure across core components like Windows TCP/IP, Netlogon, the DWM core library, Office apps, Visual Studio Code, and Azure services. Administrators should apply updates promptly, especially for exposed remote services and internet-facing apps.

via BleepingComputer|

#microsoft #office #patch-tuesday

technology15 days ago•7 min saved

A Cat Walks Across My Keyboard, Revealing Hidden Shortcuts

A cat walking across keyboards accidentally triggers a range of Mac and Windows shortcuts—hiding windows, switching virtual desktops, taking area screenshots, toggling the Dock—and even hints at accessibility features like Sticky Keys and FilterKeys, turning a pet moment into a quick lesson on how computers work.

via WIRED|

#accessibility #cat #keyboard-shortcuts

technology16 days ago•5 min saved

JDownloader supply-chain breach delivers Python RAT through fake installers

From May 6–7, 2026, the official JDownloader site was compromised to redirect Windows and Linux installer downloads to malicious payloads. The Windows dropper is a Python-based RAT; the Linux installer downloads two ELF binaries, sets up persistence, and masquerades as a system process. The attack exploited CMS access but did not give attackers full OS control. Only the alternative Windows installer and Linux shell installer were affected; other downloads remained safe. Users should verify Digital Signatures (AppWork GmbH) to confirm legitimacy, avoid unsigned or differently signed files, and, if infected, reinstall the OS and reset passwords. Researchers provided IOCs for further analysis.

via BleepingComputer|

#jdownloader #linux #malware

technology18 days ago•3 min saved

Windows 11's backbone: Win32 from Windows 95 still powers today

Microsoft CTO Mark Russinovich confirms Windows 11 still relies on the Win32 API dating back to Windows 95 for core operations, with a vast ecosystem built on it. Efforts like WinRT to modernize the API didn’t replace Win32, so much of today’s OS and applications remain grounded in decades-old code, even as Microsoft markets Windows 11 as the most modern and secure Windows yet.

via PCWorld|

#legacy-code #microsoft #technology