Security-Portal.cz je internetový portál zaměřený na počítačovou bezpečnost, hacking, anonymitu, počítačové sítě, programování, šifrování, exploity, Linux a BSD systémy. Provozuje spoustu zajímavých služeb a podporuje příznivce v zajímavých projektech.

Kategorie

Cloudflare open-sources Orange Meets with End-to-End encryption

Bleeping Computer - 29 Červen, 2025 - 16:11
Cloudflare has implemented end-to-end encryption (E2EE) to its video calling app Orange Meets and open-sourced the solution for transparency. [...]
Kategorie: Hacking & Security

Optimizing Linux Security in 2025: Key Strategies & Best Practices

LinuxSecurity.com - 29 Červen, 2025 - 13:01
Recent years have demonstrated a notable shift in the cybersecurity landscape, with Linux systems increasingly targeted by adversaries. Once considered relatively immune to malware threats , Linux servers have seen the emergence of sophisticated attack vectors, including high-profile Linux malware strains such as Cloud Snooper, HiddenWasp, and Tycoon.
Kategorie: Hacking & Security

Let’s Encrypt ends certificate expiry emails to cut costs, boost privacy

Bleeping Computer - 28 Červen, 2025 - 16:09
Let's Encrypt has announced it will no longer notify users about imminent certificate expirations via email due to high costs, privacy concerns, and unnecessary complexities. [...]
Kategorie: Hacking & Security

FBI Warns of Scattered Spider's Expanding Attacks on Airlines Using Social Engineering

The Hacker News - 28 Červen, 2025 - 11:48
The U.S. Federal Bureau of Investigation (FBI) has revealed that it has observed the notorious cybercrime group Scattered Spider broadening its targeting footprint to strike the airline sector. To that end, the agency said it's actively working with aviation and industry partners to combat the activity and help victims. "These actors rely on social engineering techniques, often impersonating Ravie Lakshmananhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

GIFTEDCROOK Malware Evolves: From Browser Stealer to Intelligence-Gathering Tool

The Hacker News - 28 Červen, 2025 - 09:58
The threat actor behind the GIFTEDCROOK malware has made significant updates to turn the malicious program from a basic browser data stealer to a potent intelligence-gathering tool. "Recent campaigns in June 2025 demonstrate GIFTEDCROOK's enhanced ability to exfiltrate a broad range of sensitive documents from the devices of targeted individuals, including potentially proprietary files and Ravie Lakshmananhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

Facebook’s New AI Tool Asks to Upload Your Photos for Story Ideas, Sparking Privacy Concerns

The Hacker News - 28 Červen, 2025 - 09:19
Facebook, the social network platform owned by Meta, is asking for users to upload pictures from their phones to suggest collages, recaps, and other ideas using artificial intelligence (AI), including those that have not been directly uploaded to the service. According to TechCrunch, which first reported the feature, users are being served a new pop-up message asking for permission to "allow Ravie Lakshmananhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

GStreamer 1.26.3 Fixes H.266 Security Flaw, Adds New Features

LinuxSecurity.com - 28 Červen, 2025 - 00:13
If you've ever set up or maintained a multimedia pipeline on Linux, you already know the stakes. Your system needs to decode, encode, stream, and sync diverse media formats flawlessly, often under significant workload. GStreamer has been the workhorse of open-source multimedia for years, but it's not unbreakable. That's why version 1.26.3 matters.
Kategorie: Hacking & Security

AI regulation freeze could fracture US digital future

Computerworld.com [Hacking News] - 27 Červen, 2025 - 23:11

The fireworks that could soon go off across the US have nothing to do with July 4 celebrations, but are reaction to a double hit that every state in the union may soon face relating to a potential reduction of connectivity capabilities and a proposed 10-year ban on its ability to regulate AI.

Drastic legislative changes around both issues are contained in the Trump administration’s Reconciliation Tax Bill, which is now before the Senate.

In early June, 260 state lawmakers from both parties in all 50 states sent a letter to Congress voicing strong opposition to the AI regulation ban. The letter, which was spearheaded by Americans for Responsible Innovation (ARI), a nonprofit policy advocacy organization, stated, “the proposed 10-year freeze of state and local regulation of AI and automated decision systems would cut short democratic discussion of AI policy in the states with a sweeping moratorium that threatens to halt a broad array of laws and restrict policymakers from responding to emerging issues.”

ARI president Brad Carson said, “lawmakers from every state in the country are sending a clear message that the proposed ban on state AI laws would freeze a whole range of common-sense laws that voters depend on.”

There is, he said, “room for a debate on pre-emption of a targeted set of state AI laws with the passage of a federal framework for AI governance. But this proposal fails on all counts, with an overbroad scope and nothing to offer when it comes to federal governance.”

Moratorium would be ‘a historic mistake’

On Thursday, lawmakers from Utah, South Carolina, Ohio, Tennessee, Wisconsin and Montana held a press conference organized by the ARI to ask Congress to remove the moratorium. There has also been a major new twist since Trump’s so-called One Big Beautiful Bill moved to the Senate for final approval, in that Senator Ted Cruz, chair of the Senate Committee on Commerce, Science, and Transportation, inserted a clause that would preclude any state receiving funding under the Broadband, Equity, Access and Deployment (BEAD) program if they refused to introduce an AI law moratorium.

Satya Thallam, senior advisor with ARI, said in a release following the press conference, “state lawmakers are sending a clear message to Congress: the moratorium threatens a range of state laws, from kids’ online safety to pro-innovation measures, and it needs to be struck from the bill.”

He added, “preventing lawmakers back home from doing the hard work of legislating on AI issues for the next decade would be a historic mistake. Congress shouldn’t be working in opposition to state lawmakers, but hand-in-hand with state legislators to get AI policy right.”

Amba Kak, co-executive director of AI Now Institute, said Thursday in an email to Computerworld, “simply put, this ban on state AI law would leave American consumers and workers with even less protections than we have today against some of the worst forms of AI-related abuse and exploitation. The moratorium rolls back the clock on the protections that are in place, and prevents new rules from coming into place. Essentially [it’s] forcing state lawmakers to turn a deaf ear to their constituents.”

‘AI being used on us, not just by us’

Who might be most at risk? “It’s all of us, any of us, that will be at the receiving end of AI mediating our life and work, whether we choose to opt in or not,” she said. “AI is routinely being used on us, not just by us. But it is most unconscionable to unleash these risks on those least well positioned to fend for ourselves — children, seniors more susceptible to AI scams and manipulation, low income people subject to faulty and error ridden AI-mediated social services systems, and those working jobs that are being aggressively devalued or replaced.” 

Kak added, “I’d also flip that question to say: who has most to gain here? Big Tech: The same industry that, by increasingly bipartisan consensus, has gotten too big for its boots. And have proven themselves to be reckless custodians of this power. This moratorium drives that impunity further, in ways that send a truly dangerous message to the Big Tech AI firms: they’re in charge, no questions asked.”

On Wednesday, Cruz issued a release which said that he had published updated text for the Commerce Committee’s portion of the budget reconciliation bill.

A backgrounder accompanying the release states that the update involves the appropriation of  “$500 million to the National Telecommunications and Information Administration (NTIA) to support deployment of AI models or systems and underlying infrastructure. The proposal uses the administrative structure of the Broadband, Equity, Access, and Deployment (BEAD) program to streamline allocation of new funding.”

It goes on to say that, in order to receive “a portion of this new $500 million federal investment to deploy AI,” states must agree to several conditions, one of which is the temporary pause of “any enforcement of any state restrictions, as specified, related to AI models, AI systems, or automated decision systems for 10 years.”

US Senator Maria Cantwell, a Democrat and Ranking Member of the committee, reacted by saying, “the newly released language by Chair Cruz continues to hold $42 billion in BEAD funding hostage, forcing states to choose between protecting consumers and expanding critical broadband infrastructure to rural communities.”

Cementing the digital divide

Drew Garner, director of policy engagement at Benton Institute for Broadband & Society, a nonprofit organization whose focus is ensuring all people in the US have access to competitive, high-performance broadband, sided with Cantwell, saying, “[it] sounds insane even not tied to BEAD, but tied to BEAD is doubly insane.”

The Trump administration and Cruz, he said, are “treating [BEAD] like a piñata right now and it’s crazy. It is an awful time to be in a state broadband office.”

This new threat worsens an already bad situation. In March, US Department of Commerce secretary Howard Lutnick announced that he had launched a “rigorous review of the BEAD program. The Department is ripping out the Biden administration’s pointless requirements. It is revamping the BEAD program to take a tech-neutral approach that is rigorously driven by outcomes, so states can provide internet access for the lowest cost.”

And following the release of revised rules earlier this month, Garner wrote, “[Lutnick’s] actions will cement the digital divide for decades. He is hurting our economic competitiveness, our healthcare and education … Secretary Lutnick wants to invest in the ‘cheapest’ broadband infrastructure, not the best infrastructure. It’s a self-inflicted wound to American competitiveness.”

Kategorie: Hacking & Security

Scattered Spider hackers shift focus to aviation, transportation firms

Bleeping Computer - 27 Červen, 2025 - 20:20
Hackers associated with Scattered Spider tactics have expanded their targeting to the aviation and transportation industries after previously attacking insurance and retail sectors [...]
Kategorie: Hacking & Security

Agentic AI – Ongoing coverage of its impact on the enterprise

Computerworld.com [Hacking News] - 27 Červen, 2025 - 19:47

Over the next few years, agentic AI is expected to bring not only rapid technological breakthroughs, but a societal transformation, redefining how we live, work and interact with the world. And this shift is happening quickly.

“By 2028, 33% of enterprise software applications will include agentic AI, up from less than 1% in 2024, enabling 15% of day-to-day work decisions to be made autonomously,” according to research firm Gartner.

Unlike traditional AI, which typically follows preset rules or algorithms, agentic AI adapts to new situations, learns from experiences, and operates independently to pursue goals without human intervention. In short, agentic AI empowers systems to act autonomously, making decisions and executing tasks — even communicating directly with other AI agents — with little or no human involvement.

One key driver is the growing sophistication of large language models (LLMs), which provide the “brains” for these agents. Agentic AI will enable machines to interact with the physical world with unprecedented intelligence, allowing them to perform complex tasks in dynamic environments, which could be especially useful for industries facing labor shortages or hazardous conditions.

The rise of agentic AI also brings security and ethical concerns. Ensuring these autonomous systems operate safely, transparently and responsibly will require governance frameworks and testing. Preventing the law of unintended consequences will also require human vigilance.

Because job displacement is a potential outcome, strategies for retraining and upskilling workers will be needed as the technology necessitate a shift in how people approach work, emphasizing collaboration between humans and intelligent machines.

To stay on top of this evolving technology, follow this page for ongoing agentic AI coverage from Computerworld and Foundry’s other publications.

Agentic AI news and insights IFS rolls TheLoops agentic AI into industrial ERP

June 27, 2025: IFS is adding AI agent development and management capabilities to its ERP platform with the acquisition of software startup The acquisition brings TheLoops’ full Agent Development life cycle (ADLC) platform into IFS, enabling enterprises to design, test, deploy, monitor, and fine-tune AI agents with built-in support for versioning, compliance, and performance optimization.

How AI agents and agentic AI differ from each other

June 12, 2025: With agentic AI in its infancy and organizations rushing to adopt AI agents, there seems to be confusion about the difference between “agentic AI” and “AI agents” technologies, but experts say there’s growing understanding that the two are separate, but related, tools.

The future of RPA ties to AI agents

June 10, 2025: RPA is accelerating toward a crossroads, with IT leaders and experts debating its future. Some IT leaders say that more powerful and autonomous AI agents will replace the two-decade-old AI precursor technology, while others predict that AI agents and RPA will work hand-in-hand.

MCP is enabling agentic AI, but how secure is it?

June 2, 2025: Model context protocol (MCP) is becoming the plug-and-play standard for agentic AI apps to pull in data in real time from multiple sources. However, this also makes it more attractive for malicious actors looking to exploit weaknesses in how MCP has been deployed. 

The agentic AI assist Stanford University cancer care staff needed

May 30, 2025: At Microsoft Build 2025 earlier this month, Nigam Shah, CDO for Stanford Health Care, discussed agentic AI’s ability to redefine healthcare, especially in oncology, as physicians get overloaded with the administrative tasks of medicine, he said, which lead to burnout.

Agentic AI, LLMs and standards big focus of Red Hat Summit

May 26, 2025: Red Hat, announced a number of improvements in its core enterprise Linux product, including better security, better support for containers, better support for edge devices. But the one topic that dominated the conversation was AI.

Putting agentic AI to work in Firebase Studio

May 21, 2025: Putting agentic AI to work in software engineering can be done in a variety of ways. Some agents work independently of the developer’s environment, working essentially like a remote developer. Other agents directly within a developer’s own environment. Google’s Firebase Studio is an example of the latter, drawing on Google’s Gemini LLM o help developers prototype and build applications .

Why is Microsoft offering to turn websites into AI apps with NLWeb?

May 20. 2025: NLWeb, short for Natural Language Web, is designed to help enterprises build a natural language interface for their websites using the model of their choice and data to answer user queries about the contents of the website. Microsoft hopes to stake its claim on the agentic web before rivals Google and Amazon do.

Databricks to acquire open-source database startup Neon to build the next wave of AI agents

May 14, 2025: Agentic AI requires a new type of architecture because traditional workflows create gridlock, dragging down speed and performance. To get ahead in this next generation of app building, Databricks announced it will purchase Neon, an open-source serverless Postgres company.

Agentic mesh: The future of enterprise agent ecosystems

May 13, 2025: Nvidia CEO Jensen Huang predicts we’ll soon see “a couple of hundred million digital agents” inside the enterprise. Microsoft CEO Satya Nadella takes it even further: “Agents will replace all software.”

Google to unveil AI agent for developers at I/O, expand Gemini integration

May 13, 2025: Google is expected to unveil a new AI agent aimed at helping software developers manage tasks across the coding lifecycle, including task execution and documentation. The tool has reportedly been demonstrated to employees and select external developers ahead of the company’s annual I/O conference.

Nvidia, ServiceNow engineer open-source model to create AI agents

May 6, 2025: Nvidia and ServiceNow have created an AI model that can help companies create learning AI agents to automate corporate workloads. The open-source Apriel model, available generally in the second quarter on HuggingFace, will help create AI agents that can make decisions around IT, human resources and customer-service functions.

How IT leaders use agentic AI for business workflows

April 30, 2025: Jay Upchurch, CIO at SAS, backs agentic AI to enhance sales, marketing, IT, and HR motions. “Agentic AI can make sales more effective by handling lead scoring, assisting with customer segmentation, and optimizing targeted outreach,” he says.

Microsoft sees AI agents shaking up org charts, eliminating traditional functions

April 28, 2025: As companies increasingly automate work processes using agents, traditional functions such as finance, marketing, and engineering may fall away, giving rise to an ‘agent boss’ era of delegation and orchestration of myriad bots.

Cisco automates AI-driven security across enterprise networks

April 28, 2025: Cisco announced a range of AI-driven security enhancements, including improved threat detection and response capabilities in Cisco XDR and Splunk Security, new AI agents, and integration between Cisco’s AI Defense platform and ServiceNow SecOps.

Hype versus execution in agentic AI

April 25, 2025: Agentic AI promises autonomous systems capable of reasoning, making decisions, and dynamically adapting to changing conditions. The allure lies in machines operating independently, free of human intervention, streamlining processes and enhancing efficiency at unprecedented scales. But David Linthicum writes, don’t be swept up by ambitious promises. 

Agents are here — but can you see what they’re doing?

April 23, 2025: As the agentic AI models powering individual agents get smarter, the use cases for agentic AI systems get more ambitious — and the risks posed by these systems increase exponentially.A multicloud experiment in agentic AI: Lessons learned

Agentic AI might soon get into cryptocurrency trading — what could possibly go wron

April 15, 2025: Agentic AI promises to simplify complex tasks such as crypto trading or managing digital assets by automating decisions, enhancing accessibility, and masking technical complexity.

Agentic AI is both boon and bane for security pros

April 15, 2025: Cybersecurity is at a crossroads with agentic AI. It’s a powerful tool that can create reams of code in a blink of an eye, find and defuse threats, and be used so decisively and defensively. This has proved to be a huge force multiplier and productivity boon. But while powerful, agentic AI isn’t dependable, and that is the conundrum. 

AI agents vs. agentic AI: What do enterprises want?

April 15, 2025:  Now that this AI agent story has morphed into “agentic AI,” it seems to have taken on the same big-cloud-AI flavor that enteriprise already rejected. What do they want from AI agents, why is “agentic” thinking wrong, and where is this all headed?

A multicloud experiment in agentic AI: Lessons learned

April 11, 2025: Turns out you really can build a decentralized AI system that operates successfully across multiple public cloud providers. It’s both challenging and costly.

Google adds open source framework for building agents to Vertex AI

April 9, 2025: Google is adding a new open source framework for building agents to its AI and machine learning platform Vertex AI, along with other updates to help deploy and maintain these agents. The open source Agent Development Kit (ADK) will make it possible to build an AI agent in under 100 lines of Python code. It expects to add support for more languages later this year.

Google’s Agent2Agent open protocol aims to connect disparate agents

April 9, 2025: Google has taken the covers off a new open protocol — Agent2Agent (A2A) — that aims to connect agents across disparate ecosystems.. At its annual Cloud Next conference, Google said that the A2A protocol will enable enterprises to adopt agents more readily as it bypasses the challenge of agents that are built on different vendor ecosystems not being able to communicate with each other.

Riverbed bolsters AIOps platform with predictive and agentic AI

April 8, 2025: Riverbed unveiled updates to its AIOps and observability platform that the company says will transform how IT organizations manage complex distributed infrastructure and data more efficiently. Expanded AI capabilities are aimed at making it easier to manage AIOps and enabling IT organizations to transition from reactive to predictive IT operations.

Microsoft’s newest AI agents can detail how they reason

March 26, 2025: If you’re wondering how AI agents work, Microsoft’s new Copilot AI agents provide real-time answers on how data is being analyzed and sourced to reach results. The Researcher and Analyst agents take a deeper look at data sources such as email, chat or databases within an organization to produce research reports, analyze strategies, or convert raw information into meaningful data.

Microsoft launches AI agents to automate cybersecurity amid rising threats

March 26, 2025: Microsoft has introduced a new set of AI agents for its Security Copilot platform, designed to automate key cybersecurity functions as organizations face increasingly complex and fast-moving digital threats. The new tools focus on tasks such as phishing detection, data protection, and identity management.

How AI agents work

March 24, 2025: By leveraging technologies such as machine learning, natural language processing (NLP), and contextual understanding, AI agents can operate independently, even partnering with other agents to perform complex tasks.

5 top business use cases for AI agents

March 19, 2025: AI agents are poised to transform the enterprise, from automating mundane tasks to driving customer service and innovation. But having strong guardrails in place will be key to success.

Nvidia launches AgentIQ toolkit to connect disparate AI agents

March 21, 2025: As enterprises look to adopt agents and agentic AI to boost the efficiency of their applications, Nvidia this week introduced a new open-source software library — AgentIQ toolkit — to help developers connect disparate agents and agent frameworks..

Deloitte unveils agentic AI platform

March 18, 2025: At Nvidia GTC 2025 in San Jose, Deloitte announced Zora AI, a new agentic AI platform that offers a portfolio of AI agents for finance, human capital, supply chain, procurement, sales and marketing, and customer service.The platform draws on Deloitte’s experience from its technology, risk, tax, and audit businesses, and is integrated with all major enterprise software platforms. 

The dawn of agentic AI: Are we ready for autonomous technology?

March 15, 2025: Much of the AI work prior has focused on large language models (LLMs) with a goal to give prompts to get knowledge out of the unstructured data. So it’s a question-and-answer process. Agentic AI goes beyond that. You can give it a task that might involve a complex set of steps that can change each time.

How to know a business process is ripe for agentic AI

March 11, 2025: Deloitte predicts that in 2025, 25% of companies that use generative AI will launch agentic AI pilots or proofs of concept, growing to 50% in 2027. The firm says some agentic AI applications, in some industries and for some use cases, could see actual adoption into existing workflows this year.

With new division, AWS bets big on agentic AI automation

March 6, 2025: Amazon Web Services customers can expect to hear a lot more about agentic AI from AWS in future with the news that the company is setting up a dedicated unit to promote the technology on its platform.

How agentic AI makes decisions and solves problems

March 6, 2025: GenAI’s latest big step forward has been the arrival of autonomous AI agents. Agentic AI is based on AI-enabled applications capable of perceiving their environment, making decisions, and taking actions to achieve specific goals. 

CIOs are bullish on AI agents. IT employees? Not so much

Feb. 4, 2025: Most CIOs and CTOs are bullish on agentic AI, believing the emerging technology will soon become essential to their enterprises, but lower-level IT pros who will be tasked with implementing agents have serious doubts.

The next AI wave — agents — should come with warning labels. Is now the right time to invest in them?

Jan.13, 2025: The next wave of artificial intelligence (AI) adoption is already under way, as AI agents — AI applications that can function independently and execute complex workflows with minimal or limited direct human oversight — are being rolled out across the tech industry.

AI agents are unlike any technology ever

Dec. 1, 2024: The agents are coming, and they represent a fundamental shift in the role artificial intelligence plays in businesses, governments, and our lives.

AI agents are coming to work — here’s what businesses need to know

Nov. 21, 2024: AI agents will soon be everywhere, automating complex business processes and taking care of mundane tasks for workers — at least that’s the claim of various software vendors that are quickly adding intelligent bots to a wide range of work apps.

Agentic AI swarms are headed your way

November 1, 2024: OpenAI launched an experimental framework called Swarm. It’s a “lightweight” system for the development of agentic AI swarms, which are networks of autonomous AI agents able to work together to handle complex tasks without human intervention, according to OpenAI. 

Is now the right time to invest in implementing agentic AI?

October 31, 2024: While software vendors say their current agentic AI-based offerings are easy to implement, analysts say that’s far from the truth.

Kategorie: Hacking & Security

Over 1,000 SOHO Devices Hacked in China-linked LapDogs Cyber Espionage Campaign

The Hacker News - 27 Červen, 2025 - 17:58
Threat hunters have discovered a network of more than 1,000 compromised small office and home office (SOHO) devices that have been used to facilitate a prolonged cyber espionage infrastructure campaign for China-nexus hacking groups. The Operational Relay Box (ORB) network has been codenamed LapDogs by SecurityScorecard's STRIKE team. "The LapDogs network has a high concentration of victims Ravie Lakshmananhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

Russia’s throttling of Cloudflare makes sites inaccessible

Bleeping Computer - 27 Červen, 2025 - 17:47
Starting June 9, 2025, Russian internet service providers (ISPs) have begun throttling access to websites and services protected by Cloudflare, an American internet giant. [...]
Kategorie: Hacking & Security

Windows 11: A guide to the updates

Computerworld.com [Hacking News] - 27 Červen, 2025 - 17:43

A Windows launch isn’t the end a process — it’s really just the beginning. Microsoft continually works on improving Windows 11 by fixing bugs, releasing security patches, and occasionally adding new features.

In this story we summarize what you need to know about each update released to the public for the most recent version of Windows 11 — currently version 24H2. For each build, we’ve included the date of its release and a link to Microsoft’s announcement about it. The most recent updates appear first.

The easiest way to install updates is via Windows Update. Not sure how? See “How to handle Windows 10 and 11 updates” for full instructions. Note that Windows 11 version 24H2 is being released as a phased rollout and may not be available to you in Windows Update yet.

If you’re still using Windows 10, see “Windows 10: A guide to the updates.” And if you’re looking for information about Insider Program previews for upcoming feature releases of Windows 11, see “Windows 11 Insider Previews: What’s in the latest build?

Updates for Windows 11 24H2 KB5060829 (OS Build 26100.4484) Preview

Release date: June 26, 2025

A wide variety of new features are being gradually rolled out in this build, including a new Settings home page that includes enterprise-specific device info cards for commercial customers on PCs managed by an IT administrator. The taskbar also now resizes icons to fit more apps when space runs low.

Users in the European Economic Area will see several small changes related to default browsers, such as mapping additional file and link types to the default browser and pinning it to the taskbar and Start menu.

A variety of bugs have also been fixed, including one that prevented the automatic renewal of expiring certificates in Windows Hello for Business.

There is one known issue in this build, in which blurry or unclear CJK (Chinese, Japanese, Korean) text appears when displayed at 96 DPI (100% scaling) in Chromium-based browsers such as Microsoft Edge and Google Chrome. 

(Get more info about KB5060829 Preview.)

KB5063060 (OS Build 26100.4351) Out-of-band

Release date: June 11, 2025

This out-of-band update replaces the KB5060842 Patch Tuesday release, fixing a bug in which Windows sometimes restarted unexpectedly when users opened games that use the Easy Anti-Cheat service. Easy Anti-Cheat automatically installs with certain games to enhance security and prevent cheating in multiplayer online PC games. 

Note: In this build there are reports of blurry or unclear CJK (Chinese, Japanese, Korean) text when displayed at 96 DPI (100% scaling) in Chromium-based browsers such as Microsoft Edge and Google Chrome. The issue is due to limited pixel density at 96 DPI, which can reduce the clarity and alignment of CJK characters. Increasing the display scaling improves clarity by enhancing text rendering.

(Get more info about KB5063060 Out-of-band.)

KB5060842 (OS Build 26100.4349)

Release date: June 10, 2025

After installing this update, Windows will retain system restore points for 60 days only. Restore points older than 60 days are not available. This 60-day limit will also apply to future versions of Windows 11, version 24H2.

The build fixes a bug that prevented users from signing in with self-signed certificates when using Windows Hello for Business with the Key Trust model.​​​​​​​ It also has a wide variety of security updates. For details, see Microsoft’s Security Update Guide and June 2025 Security Updates.

Note: In this build there are reports of blurry or unclear CJK (Chinese, Japanese, Korean) text when displayed at 96 DPI (100% scaling) in Chromium-based browsers such as Microsoft Edge and Google Chrome. The issue is due to limited pixel density at 96 DPI, which can reduce the clarity and alignment of CJK characters. Increasing the display scaling improves clarity by enhancing text rendering.

What IT needs to know: Because this is a security update, it should be applied relatively soon. Over the next few weeks, check for reports about problematic issues, and if all seems well, apply the update.

(Get more info about KB5060842.)

KB5058499 (OS Build 26100.4202) Preview

Release date: May 27, 2025

A wide variety of new features are being gradually rolled out in this build, including one in which Click to Do gets the new Ask Copilot action. When you highlight text or an image, Click to Do offers the Ask Copilot option. Selecting it opens Microsoft Copilot with your content in the prompt box. You can send the selected text or image directly to the Copilot app to complete your prompt.

A variety of bugs have also been fixed, including one in which devices with BitLocker on removable drives could encounter a blue screen error after resuming from sleep or hybrid-booting.

(Get more info about KB5058499 Preview.)

KB5061977 (OS Build 26100.4066) 

Release date: May 27, 2025

This out-of-band update fixes a bug in the direct send path for a guest physical address (GPA). This issue caused confidential virtual machines running on Hyper-V with Windows Server 2022 to intermittently stop responding or restart unexpectedly. As a result, service availability was affected, and manual intervention was required. This problem primarily impacted Azure confidential VMs.

(Get more info about KB5061977.)

KB5058411 (OS Build 26100.4061)

Release date: May 13, 2025

This update fixes two bugs, one in which your microphone might have muted unexpectedly, and the other in which the eye controller app didn’t launch. It also has a wide variety of security updates. For details, see Microsoft’s Security Update Guide and May 2025 Security Updates.

What IT needs to know: Because this is a security update, it should be applied relatively soon. Over the next few weeks, check for reports about problematic issues, and if all seems well, apply the update.

(Get more info about KB5058411.)

KB5055627 (OS Build 26100.3915) Preview

Release date: April 25, 2025

This build gradually rolls out several new features for Copilot+ PCs, including a preview of Windows Recall. When you opt in, Recall takes snapshots of your activity so you can quickly find and go back to what you have seen before on your PC. With it, you can use a timeline to find the content you remember seeing.

Copilot+ PCs also get a new natural-language Windows search in which you can search for anything on your PC without having to remember specific file names, exact words in file content, or settings names. Just describe what you’re looking for. On Copilot+ PCs, you can also more easily find photos stored and saved in the cloud by typing your own words (like “summer picnics”) in the search box at the upper-right corner of File Explorer. 

All PCs get a number of new features, including speech recap, in which you can keep track of what Narrator has spoken and access it for quick reference. With speech recap, you can quickly access spoken content, follow along with live transcription, and copy what Narrator last said using keyboard shortcuts.

A variety of bugs are being fixed, including one in which some devices experienced intermittent internet connections when resuming from sleep mode. Several AI components have also been updated.

There are two known issues in this build, including one in which players on Arm devices are unable to download and play Roblox from the Microsoft Store on Windows.

(Get more info about KB5055627 Preview.)

KB5055523 (OS Build 26100.3775)

Release date: April 8, 2025

This update includes a wide variety of security updates. For details, see Microsoft’s Security Update Guide and April 2025 Security Updates

What IT needs to know: Because this is a security update, it should be applied relatively soon. Over the next few weeks, check for reports about problematic issues, and if all seems well, apply the update.

There are two known issues in this build, including one in which players on Arm devices are unable to download and play Roblox via the Microsoft Store on Windows. 

(Get more info about KB5055523.)

KB5053656 (OS Build 26100.3624) Preview

Release date: March 27, 2025

This build gradually rolls out several new features for Snapdragon-powered Copilot+ PCs, including one in which you can search for anything on your PC without having to remember specific file names, exact words in file content, or settings names. Just describe what you’re looking for.

On Copilot+ PCs you can also more easily find photos stored and saved in the cloud by typing your own words (like “summer picnics”) in the search box at the upper-right corner of File Explorer. In addition to photos stored locally on your Copilot+ PC, photos from the cloud will now show up in the search results together. 

Snapdragon-powered Copilot+ PCs also will allow you to use natural-language processing in voice access, by using your own words rather than using rigid, predefined commands.

In addition, the build includes a variety of bugs being immediately fixed, including one in which some third-party apps rendered the graphics settings page unresponsive.

There are two known issues in this build, including one in which players on Arm devices are unable to download and play Roblox from the Microsoft Store on Windows.

(Get more info about KB5053656 Preview.)

KB5053598 (OS Build 26100.3476)

Release date: March 11, 2025

This update has a wide variety of security updates. For details, see Microsoft’s Security Update Guide and March 2025 Security Updates.

What IT needs to know: Because this is a security update, it should be applied relatively soon. Over the next few weeks, check for reports about problematic issues, and if all seems well, apply the update.

There are two known issues in this build, including one in which players on Arm devices are unable to download and play Roblox via the Microsoft Store on Windows.

(Get more info about KB5053598.)

KB5052093 (OS Build 26100.3323) Preview

Release date: February 25, 2025

In this build, a variety of new features are being rolled out gradually, including one that lets you snooze or turn off the “Start backup” reminder in the File Explorer address bar. This only applies if you are not already backing up your files and folder. To view this new option, right-click Start backup.

A number of bug fixes are being rolled out gradually, including one for a bug in which the address bar overlapped files in File Explorer when you used the F11 full-screen mode. A variety of bug fixes take immediate effect, including for a bug in which there were display rendering issues when you tried to connect to certain PCs.

There are two known issues in this build, including one in which Arm devices are unable to download and play Roblox via the Microsoft Store on Windows. In addition, devices that have certain Citrix components installed might be unable to complete installation of the January 2025 Windows security update. This issue was observed on devices with Citrix Session Recording Agent (SRA) version 2411.

(Get more info about KB5052093 Preview.)

KB5051987 (OS Build 26100.3194)

Release date: February 11, 2025

This update has a wide variety of security updates. For details, see Microsoft’s Security Update Guide and February 2025 Security Updates.

What IT needs to know: Because this is a security update, it should be applied relatively soon. Over the next few weeks, check for reports about problematic issues, and if all seems well, apply the update.

There are three known issues in this build, including one in which players on Arm devices are unable to download and play Roblox via the Microsoft Store on Windows.

(Get more info about KB5051987.)

KB5050094 (OS Build 26100.3037) Preview

Release date: January 28, 2025

In this build, a variety of new features are being rolled out gradually, including one in which an icon will appear in the system tray when you use an app that supports Windows Studio Effects. This only occurs on a device that has a neural processing unit (NPU). Select the icon to open the Studio Effects page in Quick Settings. To view the app that is using the camera, hover over the icon for a tooltip.

A number of bug fixes are being rolled out gradually, including one for a bug in which a search would sometimes repeat when you didn’t want it to. Other bug fixes are immediately available, including one in which the display of some games appears oversaturated when you use Auto HDR.

There are three known issues in this build, including one in which Arm devices are unable to download and play Roblox via the Microsoft Store on Windows. In addition, following the installation of the October 2024 security update, some customers report that the OpenSSH (Open Secure Shell) service fails to start, preventing SSH connections. And devices that have certain Citrix components installed might be unable to complete installation of the January 2025 Windows security update

(Get more info about KB5050094 Preview.)

KB5050009 (OS Build 26100.2894)

Release date: January 14, 2025

This update has a wide variety of security updates. For details, see Microsoft’s Security Update Guide and January 2025 Security Updates.

What IT needs to know: Because this is a security update, it should be applied relatively soon. Over the next few weeks, check for reports about problematic issues, and if all seems well, apply the update.

There are three known issues in this build, including one in which players on Arm devices are unable to download and play Roblox via the Microsoft Store on Windows.

(Get more info about KB5050009.)

KB5048667 (OS Build 26100.2605)

Release date: December 10, 2024

This update has a wide variety of security updates. For details, see Microsoft’s Security Update Guide and December 2024 Security Updates.

What IT needs to know: Because this is a security update, it should be applied relatively soon. Over the next few weeks, check for reports about problematic issues, and if all seems well, apply the update.

There is one known issue in this build, in which players on Arm devices are unable to download and play Roblox via the Microsoft Store on Windows.

(Get more info about KB5048667.)

KB5046740 (OS Build 26100.2454) Preview

Release date: November 21, 2024

This build adds a number of interface features are being rolled out gradually. The system tray shows a shortened date and time, and there’s a new section for touchscreen edge gestures in Settings. When you right-click an app on the Start menu, a jump list will appear (if the app has a jump list). And if you hold Ctrl + Shift down when you click a jump list item, you open the item as an admin.

A variety of bugs have been fixed in this build, including one in which the users page might have caused Task Manager to stop responding when you use the keyboard.

There is one known issue in this build, in which Arm devices are unable to download and play Roblox via the Microsoft Store on Windows.

(Get more info about KB5046740 Preview.)

KB5046617 (OS Build 26100.2314)

Release date: November 12, 2024

This update has a wide variety of security updates. For details, see Microsoft’s Security Update Guide and November 2024 Security Updates.

What IT needs to know: Because this is a security update, it should be applied relatively soon. Over the next few weeks, check for reports about problematic issues, and if all seems well, apply the update.

(Get more info about KB5046617.)

KB5044384 (OS Build 26100.2161) Preview

Release date: October 24, 2024

In this build, you can now configure the Copilot key on the keyboard. On new devices, the key opens the Copilot app. If you sign in to your account using a Microsoft Entra ID, the key opens the M365 app. You can make the key open a different app or open Search. To do this, go to Settings > Personalization > Text input

In addition, a variety of features are being rolled out gradually, including one in which you can stop the suggestions to turn off notifications from certain apps. Select the ellipsis (…) in the notification and turn it off. You can also go to Settings > System > Notifications and turn it off from there. 

A variety of bugs have also been fixed, including one in which you were unable to view some parts of the UI when you run certain apps.

There is one known issue in this build, in which Arm devices are unable to download and play Roblox via the Microsoft Store on Windows.

(Get more info about KB5044384 Preview.)

Windows 11 24H2 KB5044284 (OS Build 26100.2033)

Release date: October 8, 2024

This update has a wide variety of security updates. For details, see Microsoft’s Security Update Guide and October 2024 Security Updates.

This build also fixes one bug in which the Remote Desktop Gateway Service stopped responding when a service used remote procedure calls (RPC) over HTTP.

There is one known issue in this build, in which Arm devices are unable to download and play Roblox via the Microsoft Store on Windows.

What IT needs to know: Because this is a security update, it should be applied relatively soon. Over the next few weeks, check for reports about problematic issues, and if all seems well, apply the update.

(Get more info about KB5044284.)

Windows 11, version 24H2

Release date: October 1, 2024

The Windows 11 24H2 update (also called Windows 11 2024 Update) is now being gradually rolled out. It may take some months before it reaches everyone, so you may not have it yet. As with previous annual Windows updates, it’s not a major upgrade, but does include a variety of minor new features.

Following are the highlights for end users:

  • File Explorer gets several new features, including support for TAR and 7z compression and the ability to add metadata to PNG files, so you can add information to your images.
  • New privacy settings for Wi-Fi networks give more control over which applications can access the list of nearby Wi-Fi networks. Limiting the applications that can access that list can make it more difficult for others to pinpoint your location.
  • You can now join Wi-Fi networks by scanning QR codes, and create a QR code to allow others to share your mobile hotspot with others.
  • A new Energy Saver mode reduces electric consumption on desktop PCs as well as laptops, helping you reduce your carbon footprint and improving laptop battery life. It reduces energy consumption from background tasks as well as those running in the foreground.
  • Copilot now runs as a separate app, and is movable and resizable like any other app, rather than running in a sidebar panel.
  • Copilot+ PCs get several new features, including Cocreator in Paint, which uses AI to generate images; enhancing video calls with AI-powered noise cancellation and improved lighting; and what Microsoft calls Auto Super Resolution, which gives games higher resolution and offers smoother gameplay.

For IT admins, highlights include:

  • Policy improvements and automatic account management for Windows Local Administrator Password Solution (LAPS)
  • Personal Data Encryption (PDE) for users’ Documents, Desktop, and Pictures folders
  • App Control for Business
  • Windows protected print mode
  • Local Security Authority (LSA) protection
  • Support for Wi-Fi 7
  • SHA-3 support

See this blog post from Microsoft’s Harjit Dhaliwal for more information.

Prerelease updates for Windows 11 24H2 KB5043178 (OS Build 26100.1882) Preview

Release date: September 30, 2024

This build for Windows 11 24H2 offers a variety of new features, some of which will show up immediately and some of which are being rolled out gradually. Among the features that will roll out gradually is a new energy recommendation to turn off high dynamic range (HDR). This helps to conserve energy on devices that have HDR displays. Go to Settings > Power & battery > Energy recommendations.

Among the features available immediately is one that lets you manage your Copilot Pro subscription in Settings. Sign in to your Microsoft account and go to Settings > Accounts.

Several bugs have been fixed, including one in which Task Manager stopped responding when you switched from a high-contrast theme to a normal theme.

There is one known issue in this build, in which Arm devices are unable to download and play Roblox via the Microsoft Store on Windows.

(Get more info about KB5043178 Preview.)

KB5043080 (OS Build 26100.1742)

Release date: September 10, 2024

This update has a wide variety of security updates. For details, see Microsoft’s Security Update Guide and September 2024 Security Updates.

There is one known issue in this build, in which Arm devices are unable to download and play Roblox via the Microsoft Store on Windows.

What IT needs to know: Because this is a security update, it should be applied relatively soon. Over the next few weeks, check for reports about problematic issues, and if all seems well, apply the update.

(Get more info about KB5043080.)

KB5041865 (OS Build 26100.1591) Preview

Release date: August 27, 2024

This build for Windows 11 24H2 offers a variety of new features that are being rolled out gradually, including one in which you can share content to your Android device from the Windows Share window.

Several bugs have been fixed, including one in which a deadlock occurred in the domain controller when it started up in the DNS client.

There is one known issue in this build, in which Arm devices are unable to download and play Roblox via the Microsoft Store on Windows.

(Get more info about KB5041865 Preview.)

KB5041571 (OS Build 26100.1457)

Release date: August 13, 2024

This update has a wide variety of security updates. For details, see Microsoft’s Security Update Guide and August 2024 Security Updates. It also fixes several bugs, including one in which the “Use my Windows user account” checkbox was not available on the lock screen to connect to Wi-Fi.

There is one known issue in this build, in which Arm devices are unable to download and play Roblox via the Microsoft Store on Windows.

What IT needs to know: Because this is a security update, it should be applied relatively soon. Over the next few weeks, check for reports about problematic issues, and if all seems well, apply the update.

(Get more info about KB5041571.)

KB5040529 (OS Build 26100.1301) Preview

Release date: July 30, 2024

This build for Windows 11 24H2 offers a variety of new features that are being rolled out gradually, including the new account manager being on the Start menu. When you use a Microsoft account to sign in to Windows, you will get a glance at your account benefits. This feature also makes it easy to manage your account settings.

One feature is being rolled out immediately, in which Widgets icons on the taskbar are no longer pixelated or fuzzy. You also get a larger set of animated icons.

Several bugs have been fixed, including one in which devices that use certain WLAN cards stopped responding.

There is one known issue in this build, in which Arm devices are unable to download and play Roblox via the Microsoft Store on Windows.

(Get more info about KB5040529 Preview.)

KB5040435 (OS Build 26100.1150)

Release date: July 9, 2024

This update has a wide variety of security updates. For details, see Microsoft’s Security Update Guide and July 2024 Security Updates. It also This update adds PCR 4 to PCR 7 and 11 for the default Secure Boot validation profile.

There is one known issue in this build, in which Arm devices are unable to download and play Roblox via the Microsoft Store on Windows.

What IT needs to know: Because this is a security update, it should be applied relatively soon. Over the next few weeks, check for reports about problematic issues, and if all seems well, apply the update.

(Get more info about KB5040435.)

KB50439304 (OS Build 26100.1000) Preview

Release date: June 28, 2024

This build fixes a variety of bugs, including one in which Windows Defender Application Control (WDAC) failed to verify the policies of some apps.

There is one known issue in this build, in which Arm devices are unable to download and play Roblox via the Microsoft Store on Windows.

(Get more info about KB5041865 Preview.)

KB5039239 (OS Build 26100.863)

Release date: June 15, 2024

This build pins Copilot to the taskbar and makes it behave like a traditional app that can be resized and moved. The build also fixes several bugs, including one in which the volume of Bluetooth devices were automatically set to maximum when you connected to them.

There is one known issue in this build, in which Arm devices are unable to download and play Roblox via the Microsoft Store on Windows.

(Get more info about KB5039239.)

Updates to Windows 11 version 23H2 KB5043145 (OS Builds 22621.4249 and 22631.4249) Preview

Release date: September 24, 2024

This build, for both Windows 11 22H2 and 23H2, offers a variety of new features and bug fixes, some of which will show up immediately, and some of which are being rolled out gradually. Among the features that will roll out gradually is the ability to share local files directly from the search results that appear in the Search box on the taskbar. Among the bug fixes that roll out immediately are one that addresses an issue in which Task Manager stopped responding when you switched from a high contrast theme to a normal theme.

(Get more info about KB5043145 Preview.)

KB5043076 (OS Builds 22621.4169 and 22631.4169)

Release date: September 10, 2024

This update has a wide variety of security updates. For details, see Microsoft’s Security Update Guide and September 2024 Security Updates.

What IT needs to know: Because this is a security update, it should be applied relatively soon. Over the next few weeks, check for reports about problematic issues, and if all seems well, apply the update.

There is one known issue in this build, in which you might face issues with booting Linux if you have enabled the dual-boot setup for Windows and Linux in your device. Your device might fail to boot Linux and show the error message “Verifying shim SBAT data failed: Security Policy Violation. Something has gone seriously wrong: SBAT self-check failed: Security Policy Violation.”

(Get more info about KB5043076.)

KB5041587 (OS Builds 22621.4112 and 22631.4112) Preview

Release date: August 27, 2024

This build, for both Windows 11 22H2 and 23H2, includes the ability to share content to your Android device from the Windows Share window. To do it, must pair your Android device to your Windows PC and use the Link to Windows app on your Android device and Phone Link on your PC.

In Voice Access, you can also now dictate the characters that you spell at a faster speed, and you have more editing options for the commands that select, delete, and move within text. The build also fixes several bugs, including one in which when you pressed Ctrl + F, sometimes the search did not start.

The new features and bug fixes will roll out to users gradually.

(Get more info about KB5041587 Preview.)

KB5041585 (OS Builds 22621.4037 and 22631.4037)

Release date: August 13, 2024

This update has a wide variety of security updates. For details, see Microsoft’s Security Update Guide and August 2024 Security Updates.

What IT needs to know: Because this is a security update, it should be applied relatively soon. Over the next few weeks, check for reports about problematic issues, and if all seems well, apply the update.

(Get more info about KB5041585.)

KB5040527 (OS Builds 22621.3958 and 22631.3958) Preview

Release date: July 25, 2024

This build, for both Windows 11 22H2 and 23H2, offers a variety of new features and bug fixes, some of which will show up immediately and some of which are being rolled out gradually. Among the features that will roll out gradually is pinning apps to the taskbar by dragging them from the Pinned section of the Start menu, and right-clicking a tab in File Explorer to duplicate it. Among the bug fixes that will roll out gradually is a memory leak that occurred when you interacted with archive folders.

Among the bugs fixed immediately is one in which in Group Policy Preferences you could not choose a group from the target domain for ILT or choose an account from Local Users and Groups.

(Get more info about KB5040527 Preview.)

KB5040442 (OS Builds 22621.3880 and 22631.3880)

Release date: July 9, 2024

This update has a wide variety of security updates. For details, see Microsoft’s Security Update Guide and July 2024 Security Updates.

What IT needs to know: Because this is a security update, it should be applied relatively soon. Over the next few weeks, check for reports about problematic issues, and if all seems well, apply the update.

There is one known issue in this update, in which enterprise users may face issues while upgrading from Windows Pro to a valid Windows Enterprise subscription. OS upgrade operations may fail, and this might be shown in the LicenseAcquisition scheduled task in Task Scheduler > Task Scheduler Library > Microsoft > Windows > Subscription as ‘Access denied error (error code 0x80070005)’ under ‘Last Run Result.’

(Get more info about KB5040442.)

KB5039302 (OS Builds 22621.3810 and 22631.3810) Preview

Release date: June 25, 2024

This build, for both Windows 11 22H2 and 23H2, offers a variety of new features and bug fixes, some of which will show up immediately and some of which are being rolled out gradually. Among the bug fixes that will show up immediately is one that addresses an issue in which ejecting USB devices using the Safely Remove Hardware option failed when Task Manager was open.

Among the features that will roll out gradually is a new account manager on the Start menu that makes it easier to manage your account settings and lets you see your account benefits. Also being rolled out gradually is support for Emoji 15.1.

(Get more info about KB5039302 Preview.)

KB5039212 (OS Builds 22621.3737 and 22631.3737)

Release date: June 11, 2024

This update fixes a variety of bugs, including one in which the taskbar might briefly glitch, not respond, or disappear and reappear.

In addition, it has a wide variety of security updates. For details, see Microsoft’s Security Update Guide and June 2024 Security Updates.

What IT needs to know: Because this is a security update, it should be applied relatively soon. Over the next few weeks, check for reports about problematic issues, and if all seems well, apply the update.

(Get more info about KB5039212.)

KB5037853 (OS Builds 22621.3672 and 22631.3672) Preview

Release date: May 29, 2024

This build introduces a variety of minor feature updates, including one that lets you use your mouse to drag files between breadcrumbs in the File Explorer address bar and another that lets you create QR codes for webpage URLs and cloud files from the Windows share window.

The build also fixes a variety of bugs, including one in which File Explorer stopped responding when you swiped from a screen edge after turning off edge swiping, and another in which handwriting panels and touch keyboards did not appear when you used a pen.

(Get more info about KB5037853 Preview.)

KB5037771 (OS Builds 22621.3593 and 22631.3593)

Release date: May 14, 2024

This update fixes a bug that caused VPN connections to fail, and another in which Server Message Block (SMB) clients failed to make SMB Multichannel connections, making file transfers are slow.

In addition, it has a wide variety of security updates. For details, see Microsoft’s Security Update Guide and May 2024 Security Updates.

What IT needs to know: Because this is a security update, it should be applied relatively soon. Over the next few weeks, check for reports about problematic issues, and if all seems well, apply the update.

(Get more info about KB5037771.)

KB506980 (OS Builds 22621.3527 and 22631.3527) Preview

Release date: April 23, 2024

In this build, the Recommended section of the Start menu will show some Microsoft Store apps. In addition, widgets icons on the taskbar are no longer pixelated or fuzzy, and Windows widgets on the lockscreen are more reliable.

The build also fixes a variety of bugs, including one in which Windows Local Administrator Password Solution’s Post Authentication Actions (PAAs) did not occur at the end of the grace period. Instead, they occurred at restart.

There is one known issue in this build, in which you might be unable to change your user account profile picture.

(Get more info about KB5036980 Preview.)

KB5036893 (OS Builds 22621.3447 and 22631.3447)

Release date: April 9, 2024

This build offers a wide variety of minor new features, including dedicated mode for Windows 365 Boot. When you sign in on your company-owned device, you also are signed into to your Windows 365 Cloud PC. This uses passwordless authentication, like Windows Hello for Business.

The update also adds suggestions to Snap Layouts. When you hover over the minimize or maximize button of an app to open the layout box, app icons will display various layout options. Use them to help you to choose the best layout option.

In addition, the update changes the apps that appear in the Windows share window. The account you use to sign in affects the apps that are in “Share using.” For example, if you use a Microsoft account (MSA) to sign in, you will see Microsoft Teams (free). When you use a Microsoft Entra ID account (formerly Azure Active Directory) to sign in, your Microsoft Teams (work or school) contacts show instead.

This build also has a wide variety of security updates. For details, see Microsoft’s Security Update Guide and April 2024 Security Updates.

What IT needs to know: Because this is a security update, it should be applied relatively soon. Over the next few weeks, check for reports about problematic issues, and if all seems well, apply the update.

(Get more info about KB5036893.)

Windows 11 KB5035942 (OS Builds 22621.3374 and 22631.3374) Preview

Release date: March 26, 2024

In addition, in Windows Hello for Business admins can now use mobile device management to turn off the prompt that appears when users sign in to an Entra-joined machine. To do it, turn on the “DisablePostLogonProvisioning” policy setting. After a user signs in, provisioning is off for Windows 10 and Windows 11 devices.

There is one known issue in this build, in which Windows devices using more than one monitor might experience issues with desktop icons moving unexpectedly between monitors or other icon alignment issues when attempting to use Copilot in Windows.

(Get more info about KB5035942 Preview.)

KB5035853 (OS Builds 22621.3296 and 22631.3296)

Release date: March 12, 2024

This build fixes a bug that affected the February 2024 security and preview updates. They might not have installed, and your device might shave stopped responding at 96% with the error code “0x800F0922” and the error message, “Something did not go as planned. No need to worry – undoing changes. Please keep your computer on.”

This build also has a wide variety of security updates. For details, see Microsoft’s Security Update Guide and March 2024 Security Updates.

What IT needs to know: Because this is a security update, it should be applied relatively soon. Over the next few weeks, check for reports about problematic issues, and if all seems well, apply the update.

(Get more info about KB5035853.)

KB5034848 (OS Builds 22621.3235 and 22631.3235) Preview

Release date: February 29, 2024

In this build, you can now use the Snipping Tool on your PC to edit the most recent photos and screenshots from your Android device. You will get an instant notification on your PC when your Android device captures a new photo or screenshot. To turn this on, go to Settings > Bluetooth & devices > Mobile devices. Choose Manage devices and allow your PC to access your Android device.

The build also adds support for the USB 80Gbps standard, the next generation of USB4 that has twice the bandwidth of USB 40Gbps. To use USB 80Gbps, you must have a compatible PC and USB4 or Thunderbolt peripheral.

The build also fixes several bugs, including one in which the Windows Settings Home page randomly stopped responding when you went to the page, and another in which devices failed to make the automatic switch from cellular to Wi-Fi when they could use Wi-Fi.

There is one known issue in this build, in which Windows 11 devices attempting to install the February 2024 security update, released February 13, 2024 (KB5034765), might face installation failures and the system might stop responding at 96%.

(Get more info about KB5034848 Preview.)

KB5034765 (OS Builds 22621.3155 and 22631.3155)

Release date: February 13, 2023

In this build, the Copilot in Windows icon now appears on the right side of the system tray on the taskbar. Also, the display of “Show desktop” at the rightmost corner of the taskbar will be off by default. To turn it back on, go to Settings > Personalization > Taskbar. You can also right-click the taskbar and choose Taskbar settings. These changes will be gradually rolled out.

This build also has a wide variety of security updates. For details, see Microsoft’s Security Update Guide and February 2024 Security Updates.

What IT needs to know: Because this is a security update, it should be applied relatively soon. Over the next few weeks, check for reports about problematic issues, and if all seems well, apply the update.

(Get more info about KB5034765.)

KB5034204 (OS Builds 22621.3085 and 22631.3085) Preview

Release date: January 23, 2024

This build fixes a variety of bugs, including one that stopped search from working on the Start menu for some users because of a deadlock, and another that that caused devices to intermittently stop responding after you installed a print support app.

There is one known issue in this build, in which Windows devices using more than one monitor might experience issues with desktop icons moving unexpectedly between monitors or other icon alignment issues when attempting to use Copilot in Windows (in preview).

(Get more info about KB5034204 Preview.)

KB5034123 (OS Builds 22621.3007 and 22631.3007)

Release date: January 9, 2024

This build fixes several bugs, including one in which devices shut down after 60 seconds when you used a smart card to authenticate on a remote system, and another in which some Wi-Fi adapters could not connect to some networks, particularly those that use 802.1x to authenticate.

It also has a wide variety of security updates. For details, see Microsoft’s Security Update Guide and January 2024 Security Updates.

What IT needs to know: Because this is a security update, it should be applied relatively soon. Over the next few weeks, check for reports about problematic issues, and if all seems well, apply the update.

There are three known issues in this build, including one affecting ID admins, in which using the FixedDrivesEncryptionType or SystemDrivesEncryptionType policy settings in the BitLocker configuration service provider (CSP) node in mobile device management apps might incorrectly show a 65000 error in the “Require Device Encryption” setting for some devices in your environment. To mitigate the issue in Microsoft Intune, you can set the “Enforce drive encryption type on operating system drives” or “Enforce drive encryption on fixed drives” policies to not configured.

(Get more info about KB5034123.)

KB5033375 (OS Builds 22621.2861 and 22631.2861)

Release date: December 12, 2023

This build has a wide variety of security updates. For details, see Microsoft’s Security Update Guide and December 2023 Security Updates.

What IT needs to know: Because this is a security update, it should be applied relatively soon. Over the next few weeks, check for reports about problematic issues, and if all seems well, apply the update.

There are four known issues in this build, including one which affects ID admins, in which using the FixedDrivesEncryptionType or SystemDrivesEncryptionType policy settings in the BitLocker configuration service provider (CSP) node in mobile device management (MDM) apps might incorrectly show a 65000 error in the “Require Device Encryption” setting for some devices in your environment. To mitigate the issue in Microsoft Intune, you can set the “Enforce drive encryption type on operating system drives” or “Enforce drive encryption on fixed drives” policies to not configured.

(Get more info about KB5033375.)

KB5032288 (OS Builds 22621.2792 and 22631.2792) Preview

Release date: December 4, 2023

In this update, Copilot in Windows (in preview) can be used across multiple displays, and it can be used with Alt+Tab. When you press Alt+Tab, the thumbnail preview for Copilot in Windows appears among other thumbnail previews of open windows. You can switch between them using the Tab keystroke. This is available to a small audience initially and will deploy more broadly in the months that follow.

The update also fixes a wide range of bugs, including one in which the Copilot icon did not show as being as active when it’s open on the taskbar.

There are four known issues in this update, one applicable to IT admins, in which using the FixedDrivesEncryptionType or SystemDrivesEncryptionType policy settings in the BitLocker configuration service provider (CSP) node in mobile device management (MDM) apps might incorrectly show a 65000 error in the “Require Device Encryption” setting for some devices in your environment.

(Get more info about KB5032288 Preview.)

KB5032190 (OS Builds 22621.2715 and 22631.2715)

Release date: November 14, 2023

This build introduces a preview of the Copilot for Windows AI assistant and a File Explorer with a new interface that includes new files displayed as a carousel, and that recognizes local and cloud folders. It also introduces the Windows Backup app that can be used to quickly get your current PC backed up and ready to move to a new PC. In addition, there are many other new features and interface changes throughout Windows, including for Settings, Windows Spotlight, security graphics, voice access, Narrator, and others.

It also includes a wide variety of security updates. For details, see Microsoft’s Security Update Guide and November 2023 Security Updates.

What IT needs to know: Because this is a security update, it should be applied relatively soon. Over the next few weeks, check for reports about problematic issues, and if all seems well, apply the update.

There are three known issues in this build, including one that affects ID admins in which using the FixedDrivesEncryptionType or SystemDrivesEncryptionType policy settings in the BitLocker configuration service provider (CSP) node in MDM apps might incorrectly show a 65000 error in the “Require Device Encryption” setting for some devices in your environment. To mitigate the issue in Microsoft Intune, you can set the “Enforce drive encryption type on operating system drives” or “Enforce drive encryption on fixed drives” policies to not configured.

(Get more info about KB5032190.)

KB5031455 (OS Builds 22621.2506 and 22631.2506) Preview

Release date: Oct. 31, 2023

This update introduces a preview of the Copilot for Windows AI assistant and File Explorer with a new interface that includes new files displayed as a carousel, and that recognizes local and cloud folders. It also includes minor interface changes to many parts of the operating system, including taskbar, system tray, security notifications, and more.

There is one known issue, which applies to IT admins: using the FixedDrivesEncryptionType or SystemDrivesEncryptionType policy settings in the BitLocker configuration service provider (CSP) node in mobile device management (MDM) apps might incorrectly show a 65000 error in the “Require Device Encryption” setting for some devices in your environment.

(Get more info about KB5031455 Preview.)

KB5031455 (OS Build 22621.2506) Preview

Release date: Oct. 26, 2023

This build introduces a preview of the Copilot for Windows AI assistant and a File Explorer with a new interface that includes new files displayed as a carousel, and that recognizes local and cloud folders. It also introduces the Windows Backup app that can be used to quickly get your current PC backed up and ready to move to a new PC.

There is one known issue in this build that applies to IT admins: using the FixedDrivesEncryptionType or SystemDrivesEncryptionType policy settings in the BitLocker configuration service provider (CSP) node in mobile device management (MDM) apps might incorrectly show a 65000 error in the “Require Device Encryption” setting for some devices in your environment.

(Get more info about KB5031455 Preview.)

KB5031354 (OS Build 22621.2428)

Release date: October 10, 2023

This build includes a wide variety of security updates. For details, see Microsoft’s Security Update Guide and October 2023 Security Updates.

What IT needs to know: Because this is a security update, it should be applied relatively soon. Over the next few weeks, check for reports about problematic issues, and if all seems well, apply the update.

(Get more info about KB5031354.)

KB5030310 (OS Build 22621.2361) Preview

Release date: September 26, 2023

This update adds websites to the Recommended section of the Start menu. These websites come from your browsing history. You can remove any website URL from the Recommended section using the shortcut menu. To turn off the feature, go to Settings > Personalization > Start.

It also fixes a variety of bugs, including one in which the search box tooltip did not appear in the correct position, and another in which the search button disappeared when you interacted with the search flyout box.

In addition, if you want to use a variety of new features, such as the AI-driven Copilot for Windows and improvements to File Manager, Paint, and other apps, go to Settings > Windows Update, toggle on “Get the latest updates as soon as they’re available,” and then restart your PC. For more details, see Microsoft’s blog post.

(Get more info about KB5030310 Preview.)

KB5030219 (OS Build 22621.2283)

Release date: September 12, 2023

This build removes a blank menu item from the Sticky Keys menu and includes a variety of security updates. For details, see Microsoft’s Security Update Guide and September 2023 Security Updates.

What IT needs to know: Because this is a security update, it should be applied relatively soon. Over the next few weeks, check for reports about problematic issues, and if all seems well, apply the update.

(Get more info about KB5030219.)

Kategorie: Hacking & Security

Some Brother printers have a remote code execution vulnerability, and they can’t fix it

Computerworld.com [Hacking News] - 27 Červen, 2025 - 16:46

Brother Industries is grappling with a critical authentication bypass vulnerability affecting hundreds of different printer models, many of them used in enterprises, allowing unauthenticated remote code execution (RCE) on the devices when chained with another flaw.

The admin password bypass stems from a manufacturing issue and cannot be fixed through firmware according to Rapid7, the cybersecurity firm that discovered the vulnerability — along with seven others — affecting 689 different device models.

One of those vulnerabilities enables attackers to extract the serial number of a printer, and that’s at the root of Brother’s problems.

Kategorie: Hacking & Security

Citrix Bleed 2 flaw now believed to be exploited in attacks

Bleeping Computer - 27 Červen, 2025 - 16:18
A critical NetScaler ADC and Gateway vulnerability dubbed "Citrix Bleed 2" (CVE-2025-5777) is now likely exploited in attacks, according to cybersecurity firm ReliaQuest, seeing an increase in suspicious sessions on Citrix devices. [...]
Kategorie: Hacking & Security

PUBLOAD and Pubshell Malware Used in Mustang Panda's Tibet-Specific Attack

The Hacker News - 27 Červen, 2025 - 15:25
A China-linked threat actor known as Mustang Panda has been attributed to a new cyber espionage campaign directed against the Tibetan community. The spear-phishing attacks leveraged topics related to Tibet, such as the 9th World Parliamentarians' Convention on Tibet (WPCT), China's education policy in the Tibet Autonomous Region (TAR), and a recently published book by the 14th Dalai Lama, Ravie Lakshmananhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

Apple changes EU App Store rules, but will fight Europe’s demands

Computerworld.com [Hacking News] - 27 Červen, 2025 - 13:31

Critics might argue that Apple at the 11th hour stepped forward with new rules for developers in Europe that might be acceptable to the region’s anti-trust regulators — but that’s not how Apple sees it. That company, which is appealing the rules Europe has applied to directly constrain its business, says regulators have not been transparent throughout the process, making arbitrary decisions despite constant communication between both sides on the matter.

Apple does, however, hope the changes it has now introduced to its steering arrangements for developers in will bring its business in line with Europe’s Digital Markets Act. It certainly has reasons to think so; Apple said it worked with the regulators on the arrangements and believes they bring it into harmony there. 

Apple announced the latest rounds of EU DMA-inspired changes via a Thursday note on its developer’s website.

Malicious compliance

But there is still a problem; Apple says that even though it’s been meeting intensively with European Commission regulators for more than a year, the experience has been a frustrating one. Regulators have continuously moved the goalposts on what compliance looks like. The company complains that they have even prevented Apple from implementing new solutions to bring its business into compliance and then fined the company for not making changes. 

This has placed a big burden on the company, which has had to invest thousands of hours in attempting to meet the Commission’s ever-changing demands. From what I hear, it’s akin to throwing darts at a board attached to a rope, allowing the board to move out the way once the dart is fired. It’s an unequal, opaque process seemingly designed for Apple to lose and perhaps in itself an articulation of malicious compliance — with malice from the regulators.

We’ll have to wait and see whether the changes Apple announced do actually meet European regulators’ demands. They should, as Apple is very much giving the impression they were introduced in collaboration with EC authorities. 

Apple will appeal

That doesn’t mean Apple accepts the changes it’s been forced to make. The company has until July 7 to appeal and will do so. Apple is quite open that it opposes the demands Europe has made of it and continues to warn that the patchwork of changes it introduced will erode security and privacy, dent the user experience, and make it harder for the company to innovate. 

Apple’s enemies, typically, remain critical of the changes. Epic Games CEO Tim Sweeney, who has spent millions on his assault on Apple business practices, slams the new terms as “blatantly unlawful,” calling them a “mockery of fair competition.”

I imagine Apple might suggest that they are inherently lawful and support Europe’s view of fair competition. The changes can loosely be grouped as changes in the way steering is supported on the platform, and changes in business terms.

What steering changes did Apple introduce?

In short, the changes comprise policy and payment tweaks and the removal of some restrictions.

One of the biggest alterations concerns the warning notice Apple provides users to warn them when they tap on external links. Critics had complained this mandatory warning got in the way of consumer choice and wanted it removed. It looks as if Apple partially won that argument, in that the warning will now appear the first time a user taps on an external link, but there is now an option to opt out of seeing the warning later when tapping external links in the same app.

In other words, you’ll be warned the first time you tap out from an app but can override future warnings if you trust the developer. Apple had wanted a warning to appear each time you tap an external link.

Additionally:

  • Changes apply to all developers, whether or not they have wanted to use alternative business terms in Europe.
  • Developers can use URLs in their apps that direct traffic to external websites, other apps, and alternative app marketplaces. They can also link to in-app promotions — and they can use multiple URLs inside their app, not just one as before. 
  • The links developers put inside their apps can collect additional user information through tracking parameters, redirects, and intermediate links. This will increase the burden on consumers to verify the security and privacy of a link they find in an app before they use it.
  • Apple had originally insisted developers use its own templates for interfaces to links and promotions; under the new rules, developers can freely design these.
What business changes has Apple made?

The company also changed its business terms in the EU. These do not apply to apps sold via third-party app stores, and they are not applied against offers directed from inside an app. But they do apply to links that direct users to the web, as well as in-app alternative payment service providers.

The deal is that Apple charges an Initial Acquisition Fee, a Store Services Fee and Core Technology charges.

In brief, these consist of:

Initial Acquisition Fee

This is designed to recognize Apple’s role in connecting users to developers.

  • A 2% fee on the sale of digital goods and services to new users.
  • The fee applies for the first six months after the user first downloads an app from the app store.
  • The fee is waived for developers in Apple’s Small Business Program
  • There is no fee for existing users.
Store Services Fee

Apple’s App Store offers a range of services to developers, who can now choose between a basic set of mandatory services, or the full collection of services:

Tier One Store Services: A 5% fee in exchange for which developers get trust and safety features, app management, and app distribution and delivery services. The fee does not extend to automatic app updates or automatic downloads across devices.

Tier Two Store Services: Set at 13% (or 10% for Small Business Program members), this fee gives developers access to all the services the App Store presently provides, including promotions, search suggestions, discovery, automatic downloads and automatic updates.

Core Technology charges
  • Developers signed up to Apple’s alternative terms in the EU will pay the previously announced Core Technology Fee of €0.50 per install for each first annual install over 1 million.
  • Developers on Apple’s standard business terms will now pay a Core Technology Commission of 5% on sales made through in-app promotion of alternate payments.
  • Apple will migrate all its European developers to the new fee structure by Jan. 1, 2026.
Where can I find out more about Apple’s European changes?

The company has published a range of pages describing the changes it has applied:

What will happen?

I remain concerned about the dilution of warnings on the store and the lack of implicit control over what links developers use to direct their audiences to external traffic. I’m in no doubt whatsoever that these openings will be abused to form new attack surfaces over which Apple has little control. Enterprise users will no doubt use device management policy to forbid use of third-party payment services and installs in an attempt to protect corporate data.

Even more concerning: Apple’s accusations concerning its negotiations with the EC as if that body has been deliberately opaque, meaning enforcement of the DMA has very swiftly become a political weapon, perhaps in some unspoken European economic battle against the US. I doubt we’ve heard the last of this ongoing battle, which will likely last longer than the game that kicked it off.

You can follow me on social media! Join me on BlueSky,  LinkedIn, and Mastodon.

Kategorie: Hacking & Security

Business Case for Agentic AI SOC Analysts

The Hacker News - 27 Červen, 2025 - 13:00
Security operations centers (SOCs) are under pressure from both sides: threats are growing more complex and frequent, while security budgets are no longer keeping pace. Today’s security leaders are expected to reduce risk and deliver results without relying on larger teams or increased spending. At the same time, SOC inefficiencies are draining resources. Studies show that up to half of all [email protected]
Kategorie: Hacking & Security

Chinese Group Silver Fox Uses Fake Websites to Deliver Sainbox RAT and Hidden Rootkit

The Hacker News - 27 Červen, 2025 - 12:25
A new campaign has been observed leveraging fake websites advertising popular software such as WPS Office, Sogou, and DeepSeek to deliver Sainbox RAT and the open-source Hidden rootkit. The activity has been attributed with medium confidence to a Chinese hacking group called Silver Fox (aka Void Arachne), citing similarities in tradecraft with previous campaigns attributed to the threat actor. Ravie Lakshmananhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

Is Microsoft’s new Mu for you?

Computerworld.com [Hacking News] - 27 Červen, 2025 - 12:00

Microsoft announced this week a new generative AI (genAI) system called Mu, and it’s a true glimpse into the future of how we’ll use everything, from PCs to toasters. 

Mu lets people control their computers using plain language. For example, you can type or say, “turn on dark mode” or “make my mouse pointer bigger,” and the computer will do it. The first place Mu appears is in the Windows 11 Settings app. You say or type how you want a specific setting to change, and the genAI tool figures out what you want and makes the change for you. 

Crucially, this isn’t a large language model (LLM) running in the cloud. Mu is a small language model (SLM) with a comparatively paltry 330 million parameters, built to run on a specialized AI chip called a neural processing unit, or NPU. (This chip is found in the latest Copilot+ PCs from Microsoft, Dell, HP, Lenovo, Samsung, and Acer. These new PCs started shipping in June 2024 and are the only computers that can use Mu and other advanced AI features in Windows 11.)

It’s not an LLM-based chatbot that lives in the cloud. It’s an SLM that runs entirely on the PC, even when disconnected from the internet. 

Microsoft Copilot+ PCs can run Mu because they have an NPU that can handle at least 40 trillion operations per second. Microsoft collaborated with Qualcomm, AMD, and Intel to ensure Mu runs smoothly on their NPUs, which are now standard in all Copilot+ PCs.

Mu uses a transformer encoder-decoder design, which means it splits the work into two parts. The encoder takes your words and turns them into a compressed form. The decoder takes that form and produces the correct command or answer. 

This design is more efficient than older models, especially for tasks such as changing settings. Mu has 32 encoder layers and 12 decoder layers, a setup chosen to fit the NPU’s memory and speed limits. The model utilizes rotary positional embeddings to maintain word order, dual-layer normalization to maintain stability, and grouped-query attention to use memory more efficiently. These technical choices let Mu process more than 100 tokens per second and respond in less than 500 milliseconds.

Compared with LLM-based chatbots like OpenAI’s ChatGPT, Mu is super fast. 

Microsoft trained Mu on 3.6 million examples focused on Windows settings and related tasks. The training happened on Azure using NVIDIA A100 GPUs. After training, Microsoft fine-tuned Mu and used quantization to shrink its memory needs, so it would run well on NPUs from all three chipmakers. As a result, Mu is about one-tenth the size of Microsoft’s Phi-3.5-mini model, but performs almost as well for the tasks it was built to do.

Mu is truly groundbreaking because it is the first SLM built to let users control system settings using natural language, running entirely on a mainstream shipping device. Apple’s iPhones, iPads, and Macs all have a Neural Engine NPU and run on-device AI for features like Siri and Apple Intelligence. But Apple does not have a small language model as deeply integrated with system settings as Mu. Siri and Apple Intelligence can change some settings, but not with the same range or flexibility. 

Samsung’s Galaxy S25 and other recent flagship phones feature a custom NPU and Galaxy AI, which can perform various device control and personal assistant tasks. However, they too lack an SLM for comprehensive system settings control. 

Google’s Chromebook Plus devices have an NPU and support on-device AI, but it don’t use an SLM for system settings in the way Mu does.

By processing data directly on the device, Mu keeps personal information private and responds instantly. This shift also makes it easier to comply with privacy laws in places like Europe and the US since no data leaves your computer.

The industry is moving in this direction for obvious reasons. SLMs are now powerful enough to handle focused tasks on par with larger cloud-based models. They are cheaper to run, use less energy, and can be tailored for specific jobs or languages. 

Note that NPUs are not rare. They’re currently available in new phones, tablets, and even home appliances. These chips are designed to run neural networks efficiently and with low power, making it possible to offer smart features that work anywhere, even without a reliable internet connection. 

Most importantly, SLMs running on NPUs are a BFD — not just for PCs, phones, and tablets, but for everything. As the power and capabilities go up and the costs come down, we can expect car dashboards, thermostats, washing machines, tractors, and everything else (including toasters) to eschew nested menus for user control in favor of voice-controlled settings. 

You’ll walk into the kitchen and tell the toaster to toast your bagel lightly in about 20 minutes before telling the coffee maker to make you a flat white. After breakfast, you’ll go into your home office and remotely control all manner of IoT devices and other objects by talking to an SLM dedicated to each device. 

Note that these SLMs for device control will also work directly with LLMs for information and other actions, like writing code, building websites and apps, and facilitating all your business communications. That SLM you’ll be talking to will mainly live and execute locally on your smart glasses. 

You may never own or use a Copilot+ PC. But you will definitely use something like Mu every day for most of your professional and personal life on many devices. It’s a true glimpse of the future of how we interact with machines. 

Kategorie: Hacking & Security
Syndikovat obsah