Microsoft rolled out its September 2025 Patch Tuesday updates on Tuesday, bringing a mix of security patches and quality improvements to Windows 11 and Windows 10, alongside the release of official ISOs for the upcoming Windows 11 version 25H2 to Insiders. The update, delivered as KB5065426 for Windows 11 24H2 and KB5065431 for other Windows 11 editions, addresses long-standing audio glitches for streamers, squashes unexpected UAC prompts, and restores a full-featured clock in the taskbar calendar flyout. In parallel, Microsoft made 25H2 installation media available through the Insider ISO page, signifying that the next feature update is moving closer to general availability. The cumulative set of changes arrives amid a heated debate over SSD failures, which controller maker Phison now attributes to pre-release engineering firmware rather than any Windows update code.
Patch Tuesday arrives with a streamlined fixes
KB5065426, the cumulative update for Windows 11 24H2, is a security-first package that also bundles quality improvements from previous monthly updates. Among its most notable fixes, it resolves audio stuttering when Network Device Interface (NDI) is used alongside Display Capture in OBS, a problem that had been plaguing content creators and AV professionals since earlier updates. Streamers and broadcasters can now use NDI-based workflows without the intermittent dropouts that had forced many to downgrade or disable recent patches.
Another welcome fix addresses unexpected User Account Control (UAC) pop-ups during certain MSI installer repair operations. This change improves reliability for non-admin users performing software maintenance, reducing unnecessary friction for IT-managed environments where such repairs are common.
The update also refreshes AI component binaries that power Copilot-enabled scenarios, beefing up the on-device machine learning capabilities behind Windows Studio Effects and other AI features. Security fixes cover the OS kernel, platform, and related subsystems to address rated vulnerabilities.
The calendar clock returns to its rightful place
Among the smaller tweaks, the return of a functional clock inside the notification/calendar flyout drew cheers from community members. After previous UI iterations stripped away the ability to see seconds or a more granular time display, this Patch Tuesday restores it. Insiders had flagged the omission months ago, and the rapid reversal signals that Microsoft is sensitive to feedback that doesn't compromise security or stability. The flyout now includes options to show the clock with seconds, a subtle but highly requested convenience.
Windows 10 also gets its share of patches
Windows 10 received KB5065429, which likewise focuses on security and reliability. While Windows 10 is approaching end of mainstream support, this month's update ensures that business users still relying on the older OS continue to receive critical protections. For administrators running mixed fleets, validating these updates alongside the Windows 11 changes is essential to maintain a consistent security posture.
Insider builds and the road to 25H2
Windows Insiders across Canary, Dev, Beta, and Release Preview channels continued to receive new builds this week. Canary builds introduced experimental changes to File Explorer, including new context menu options and layout tweaks. Dev and Beta rings added support for Emoji 16.0, further Copilot UX refinements, and the gradual rollout of Copilot-driven recommendations in the Start menu. Release Preview builds, which typically serve as the final validation ring before a public deployment, now mirror the features of the upcoming 25H2 release. Microsoft pushed 25H2 ISOs to Insiders via the Insider ISO page, allowing testers to perform clean installations and IT pros to prepare deployment media ahead of the official rollout.
A critical technical note is that 25H2 will be delivered to most existing 24H2 devices as an enablement package rather than a full reinstallation. This means the underlying system files are already present, and a small update simply toggles on the new version, minimizing downtime and bandwidth. The ISO release is primarily aimed at testers, OEMs, and anyone needing to deploy fresh installs or offline media. Casual users should wait for the feature update via Windows Update unless they fully understand the risks of running pre-release builds.
Copilot+ PCs gain external camera support for Studio Effects
One of the more notable Insider improvements is the expansion of Windows Studio Effects to external and rear-facing cameras on Copilot+ PCs. Previously, the AI-powered background blur, auto-framing, and eye contact correction were exclusive to the built-in front-facing camera. With this update, users on Intel-based Copilot+ hardware can now enjoy the same enhancements on USB webcams; AMD and Snapdragon platforms will follow in subsequent builds. This move elevates the utility of AI camera processing for streamers, remote workers, and anyone connecting high-quality external cameras to their machines.
Promotional placements continue to draw community ire
Insider builds also test promotional content and "recommendations" in the shell. Copilot suggestions may appear in the Start menu's Recommended section, and full-screen upgrade or Microsoft 365 nudge screens are being A/B tested. While these can be disabled, their presence underscores Microsoft's persistent push to monetize the OS interface. For enthusiasts who prefer a clean, ad-free experience, disabling these under Settings > Personalization > Start remains an immediate step, but the trend raises questions about the long-term direction of the Windows user experience.
The SSD failure controversy and Phison's explanation
For weeks, reports circulated that recent Windows updates were causing select SSDs to fail or vanish under heavy write loads. High-profile YouTubers and forum posters suggested a systemic issue, sparking alarm. Microsoft's telemetry, however, found no fleet-wide pattern linking its updates to physical drive failures. Phison, the SSD controller vendor at the center of many reports, then stepped in with its own investigation. The company concluded that the most severe reproduction cases involved drives running engineering or preview firmware provided to reviewers and testers, not the production firmware distributed to consumers. Phison's testing, which spanned thousands of hours, could not replicate the failure mode on retail firmware versions.
This clarification shifts the blame to firmware provenance rather than any Windows update code. Administrators should verify that all SSDs in their fleet run the latest vendor-approved firmware and avoid using pre-release or evaluation firmware outside controlled lab environments. While a small number of user-reported incidents remain unresolved, the consensus is that the update is not at fault. Data-sensitive users should still maintain regular backups and exercise caution during large sustained write operations on near-capacity drives until firmware states are confirmed.
Community tooling: Flyoobe, nano11, and the risks of bypasses
The ecosystem of third-party tools continues to thrive. Flyoobe, the successor to Flyby11, released a major update that enhances Out-of-Box Experience (OOBE) controls, adds AI-related toggles, and supports scriptable extensions that allow users to bypass Windows 11's hardware checks during installation. Its GitHub repository was briefly flagged by automated abuse systems, temporarily limiting access, but the project was quickly restored. The incident serves as a reminder that such tools, while popular, exist in a fragile state—relying on them for critical deployments can introduce unanticipated risks. Bypassing TPM 2.0 and Secure Boot requirements removes fundamental platform security protections and may lead to compatibility issues with future updates.
On the debloating front, the nano11 project demonstrates just how far enthusiasts can push Windows image reduction. By aggressively stripping away drivers, Windows Defender, Windows Update, language packs, and numerous system components, nano11 can produce an install footprint of under 3 GB. However, such an image is intended for ephemeral virtual machines or forensic analysis, not daily driver usage. It lacks vital servicing and security mechanisms, making it unsuitable for any machine that handles sensitive data. For those seeking a lighter Windows experience without sacrificing updateability, conservative alternatives like the Tiny11 builder remain the safer choice.
Microsoft deprecates EdgeHTML remnants and VBScript
Microsoft updated its list of deprecated features, formally marking legacy EdgeHTML-based web components—including Legacy Web View, UWP HTML/JavaScript apps, and EdgeHTML PWAs—as deprecated. Developers are urged to migrate to WebView2 and Chromium-based PWAs. In parallel, the company published a phased timeline for the deprecation of VBScript as a core OS feature. While not immediate, the removal will progress through the remainder of the decade. Enterprises that rely on VBScript, particularly in VBA projects, should begin inventorying affected code and planning migration paths. Microsoft has provided guidance for enabling VBScript as a Feature-on-Demand in the interim and recommends upgrading Office to versions that include RegExp replacements within VBA.
Developer and gaming ecosystem updates
This week also saw Microsoft remove the $19 fee for certain developer app submissions on the Microsoft Store, lowering the barrier for indie creators. Policy clarifications around child safety and generative AI apps further refine the store's guidelines. In the gaming sphere, Xbox controller button mapping changed under Windows 11: a single press now opens Game Bar, a long press triggers Task View, and holding the button powers down the controller. Xbox Cloud Gaming expanded partnerships, including an in-vehicle streaming deal with LG, while GeForce NOW rolled out higher-tier RTX 5080-class servers—though the surge caused temporary outages. These moves signal continued investment in cloud gaming and cross-platform controller experiences.
Strengths, risks, and a practical checklist
Microsoft's cadence delivers incremental yet impactful improvements—the OBS/NDI fix and calendar clock restoration are immediate wins for power users. The 25H2 enablement package approach minimizes upgrade disruption, and the collaboration between Microsoft and Phison has, for the most part, defused a potentially wide-scale panic. However, the creeping promotional content in the shell and the reliance on unsupported bypass tools represent persistent friction points.
For enthusiasts and administrators, the following steps are recommended this week:
- Back up critical data before applying the September cumulative updates or experimenting with 25H2 ISOs.
- Update SSD firmware using vendor tools; avoid engineering/preview firmware outside lab environments.
- If using Copilot+ hardware, check vendor driver notes before enabling Studio Effects for external cameras.
- Reserve nano11 and similar extreme debloats for isolated virtual machines, never for production devices.
- Inventory VBScript and EdgeHTML dependencies now, and plan migration to WebView2 and modern alternatives.
- Disable Start menu recommendations if you prefer a promotional-free shell experience.
As the Windows ecosystem continues to evolve through iterative fixes, Insider experimentation, and community-driven customization, the responsibility for safe deployment rests with informed users. This week's developments underscore that while Microsoft provides the platform, it is the collective diligence of users, vendors, and testers that keeps the ecosystem stable and secure.