Security News

Windows 10 is getting a redesigned 'Battery' settings page that provides detailed graphs showing how your mobile device uses the battery. In yesterday's release of the Windows 10 Insider build 21313, a Windows internals sleuth known as Albacore discovered a new hidden feature for a new in-development Battery settings page.

Microsoft has started replacing the legacy version of the Edge browser with the new Chromium-based Edge in Windows 10 Dev builds. This change is rolling out to all customers installing Windows 10 Insider Preview Build 21313, offered through the Dev Channel and available after joining the Windows 10 Insider Program.

On the heels of last week's lye-poisoning attack against a small water plant in Florida, the U.S. government's cybersecurity agency is pleading with critical infrastructure defenders to rip-and-replace Windows 7 from their networks as a matter of urgency. The government's latest appeal, issued via a joint advisory from the Cybersecurity and Infrastructure Security Agency, comes amidst reports that the remote hack of the water plant near Tampa Bay was being blamed on poor password hygiene and attacks on systems running Microsoft's out-of-service Windows 7 operating system.

Microsoft has reminded customers that some editions of Windows 10, version 1909 will reach end of service in May 2021. Other versions also reaching end of support in May. "On May 11, 2021, the Home, Pro, Pro Education, Pro for Workstations editions of Windows 10 version 1909 and all editions of Windows Server, version 1909 will reach end of service," Microsoft says on the Windows 10 Health Dashboard.

Microsoft has released an emergency KB5001028 out-of-band update to fix a bug causing Windows 10 to crash when connecting to WPA3 Wi-Fi networks. According to a new support issue posted to Microsoft's Windows Message Center, the bug was introduced in the recent Windows 10 1909 cumulative updates.

Microsoft has released an emergency KB5001028 out-of-band update to fix a bug causing Windows 10 to crash when connecting to WPA3 Wi-Fi networks. According to a new support issue posted to Microsoft's Windows Message Center, the bug was introduced in the recent Windows 10 1909 cumulative updates.

Intel addressed 57 security vulnerabilities during this month's Patch Tuesday, including high severity ones impacting Intel Graphics Drivers. The security bugs are detailed in the 19 security advisories published by Intel on its Product Security Center, with security and functional updates being delivered to users through the Intel Platform Update process.

Microsoft has fixed a privilege escalation vulnerability in Microsoft Defender Antivirus that could allow attackers to gain admin rights on unpatched Windows systems. Microsoft Defender Antivirus is the default anti-malware solution on over 1 billion systems running Windows 10 according to Microsoft's stats.

As you know, our usual advice for Patch Tuesday boils down to four words, "Patch early, patch often." As well as the four potential RCE holes mentioned above, there's also a patch for a bug dubbed CVE-2021-1732 that is already being abused in the wild by hackers.

Microsoft has enabled enforcement mode for updates addressing the Windows Zerologon vulnerability on all devices that installed this month's Patch Tuesday security updates. The patch released during the August 2020 Patch Tuesday rolled out in two phases and it forces secure Remote Procedure Call communication for machine accounts on Windows devices, trust accounts, as well as all Windows and non-Windows Domain Controllers.