windows security

Microsoft is preparing Windows PCs for a Secure Boot certificate rollover beginning in late June 2026, when original 2011-era certificates start expiring and unsupported Windows 10 systems outside Extended Security Updates will not receive the replacement certificates. This is not a theatrical...

ZDNET’s latest Windows Defender guidance argues that five optional protections in Windows Security—Controlled folder access, Memory integrity, Potentially unwanted app blocking, Smart App Control, and Tamper protection—deserve a second look because several are still disabled or conditional by...

Microsoft will begin escalating Windows Security warnings on May 13, 2026 for Windows 10 and May 16, 2026 for Windows 11 when PCs still lack updated Secure Boot certificates needed before the original 2011 trust certificates start expiring in June. This is not another cosmetic Windows Update...

Set Up and Customize Windows Security Account Protection Alerts in Windows 10/11 Difficulty: Beginner | Time Required: 10 minutes Windows Security does more than scan for viruses. It also keeps an eye on your account protection, which includes things like your Microsoft account sign-in status...

Microsoft made Agent 365 generally available for commercial customers on May 1, 2026, positioning it as a Microsoft 365 control plane for discovering, governing, and securing AI agents across Microsoft, SaaS, endpoint, and multicloud environments. That framing sounds tidy, but the announcement...

Microsoft’s Security Update Guide now lists CVE-2026-25645, a medium-severity flaw in Python Requests before 2.33.0 where extract_zipped_paths() can reuse predictable temporary files, allowing a local attacker to substitute malicious content under specific environmental conditions. The...

CVE-2026-7360 is a high-severity Chromium compositing flaw fixed in Google Chrome 147.0.7727.137/138 on April 28, 2026, affecting desktop Chrome before 147.0.7727.138 and allowing an attacker who already compromised the renderer process to bypass site isolation using a crafted HTML page. The...

Microsoft confirmed in late April 2026 that new Windows security warnings for Remote Desktop .rdp files can render incorrectly on supported Windows 11, Windows 10, and Windows Server systems when multi-monitor setups use different display scaling values. The bug is narrow, almost comically...

CVE-2026-34591 is a reminder that the most dangerous software supply chain bugs are not always found in operating systems, browsers, or cloud control planes. This newly disclosed Poetry wheel path traversal vulnerability affects a widely used Python dependency and packaging tool, allowing a...

CVE-2026-23360 is not the sort of Linux kernel flaw that produces dramatic headlines, but it is exactly the kind of storage-layer regression that enterprise administrators ignore at their peril. The issue, now tracked through Microsoft’s security update ecosystem as well as Linux vulnerability...

CVE-2026-31622 is not a noisy internet-facing vulnerability, but it is exactly the kind of low-level kernel flaw that deserves attention from Windows, Linux, and mixed-fleet administrators alike. The issue sits in the Linux kernel NFC digital stack, where a malicious NFC peer can reportedly...

Windows RPC has long been one of the most security-sensitive subsystems in the operating system, but the newly disclosed PhantomRPC research suggests that the real risk is not just in individual bugs, but in the way Windows lets unrelated processes reach for the same privileged RPC endpoints. In...

Windows 11 users are getting a clearer warning system for one of the platform’s most important security foundations, and that matters far beyond a simple UI tweak. Microsoft is now surfacing Secure Boot certificate status directly in the Windows Security app, giving people a fast answer to a...

Microsoft’s latest guidance on Windows 11 security settles a question that has lingered for years: for most people, Microsoft Defender is enough. In a new Microsoft Windows article published in April 2026, the company says Windows 11 includes built-in antivirus protection that is active by...

Microsoft’s latest Windows 11 security guidance settles a question that has lingered for years: for many users, Microsoft Defender Antivirus is enough. In a new Microsoft article, the company says Windows 11 includes built-in antivirus protection that is active by default, continuously updated...

The latest Windows 11 April update is doing something quietly important: it now tells you whether your PC has received Microsoft’s newer Secure Boot 2023 certificates. That matters because the older certificates issued in 2011 begin expiring in June 2026, and Microsoft has been working to move...

Microsoft’s latest guidance on Windows 11 security is simple, but it lands in a noisy market: for most people, Microsoft Defender Antivirus is enough, and third-party antivirus is no longer a default necessity. That does not mean every PC owner should uninstall their security suite tomorrow, but...

Microsoft’s latest Windows 11 security guidance makes a long-running debate much simpler: for most people, a third-party antivirus is no longer necessary. The company now says the built-in protection stack in Windows 11 is designed to run by default, update automatically, and handle the everyday...

Starting in April 2026, Microsoft is doing something Windows users have not seen before: surfacing Secure Boot certificate status directly inside the Windows Security app. That matters because the company’s original Secure Boot certificates, issued in 2011, are now approaching expiration in June...

Microsoft’s latest Windows security rollout marks a notable shift not because Windows Update is new, but because the company is changing how it manages one of the platform’s most sensitive trust layers: Secure Boot. Beginning in April 2026, Microsoft started surfacing certificate status in the...