Security News

Microsoft has resumed the rollout of the June Windows 11 KB5039302 update, now blocking the update only for those using virtualization software. On Wednesday, Microsoft pulled the KB5039302 update after Windows 11 users found that their devices went into a reboot loop after it was installed.

Microsoft pulled the June Windows 11 KB5039302 update after finding that it causes some devices to restart repeatedly. The KB5039302 update is the June preview update released this week, allowing consumers and the enterprise to test new bug fixes and changes before they go live for everyone as part of July's Patch Tuesday.

The June 2024 optional update for Windows 11 is now available. The latest update, KB5039302, is for Windows 11 version 22H2 and newer and brings several new features and fixes.

The June 2024 optional update for Windows 10 is now available. Today's update brings KB5039299 for Windows 10 version 22H2 with up to ten bug fixes or changes.

A novel command execution technique dubbed 'GrimResource' uses specially crafted MSC and an unpatched Windows XSS flaw to perform code execution via the Microsoft Management Console. After Microsoft fixed this issue in ISO files and 7-Zip added the option to propagate MoTW flags, attackers were forced to switch to new attachments, such as Windows Shortcuts and OneNote files.

Microsoft's updated Photos app is now available for Windows 11 in the Windows Insider Program, bringing requested interface changes and better image quality. Microsoft has also moved the Photos app from UWP to Windows App SDK, as announced earlier this month.

Microsoft has confirmed that Windows 10 apps will mistakenly display an "How do you want to open this file?" dialog box when attempting to right-click on the program's icon and perform a registered task. "Following installation of the Windows update released April 23, 2024and updates released after that, certain apps might display an"Open With" dialog box asking, 'How do you want to open this file?'," reads the status update.

Legitimate-but-compromised websites are being used as a conduit to deliver a Windows backdoor dubbed BadSpace under the guise of fake browser updates. "The threat actor employs a multi-stage...

The U.S. Cybersecurity and Infrastructure Security Agency has added a high-severity Windows vulnerability abused in ransomware attacks as a zero-day to its catalog of actively exploited security bugs. Successful exploitation lets local attackers gain SYSTEM permissions in low-complexity attacks that don't require user interaction.

Microsoft says it removed a Copilot app that was "Incorrectly" added to Windows 10 and Windows 11 systems in April due to buggy Microsoft Edge updates. The AI-powered Copilot digital assistant was also added to some Windows Server 2025 preview builds earlier this year, but the company removed it after backlash from Windows admins.