Endpoint Security
The latest Endpoint Security coverage — news, analysis, and updates from the WindowsNews.AI desk.
The Hidden Danger in 'winget upgrade --all' That Could Break Your Company's PCs
Microsoft's WinGet package manager is being pushed as a modern way to keep Windows apps updated. But for IT administrators managing fleets of business PCs, the widely used winget upgrade --all...
UEFI Secure Boot 2011 Certificates Expire Oct 19—Use This Microsoft Script to Prepare
Microsoft’s July 15 Secure Boot Office Hours session confirmed that the final 2011-era certificate, the Windows Production PCA 2011, will expire on October 19, 2026. The event also revealed a...
21% of Windows Devices Are Still on Windows 10. The Upgrade Rush Is Over—Now Comes the Hard Part.
Eight months after Microsoft pulled the plug on Windows 10 support, roughly 21% of Windows devices are still running the obsolete operating system, according to new inventory data from Lansweeper....
Local Attacker Can Steal Personal Data via Microsoft Defender for Mac Bug — Here’s the Fix
Microsoft shipped a critical update for its Defender for Endpoint security software on macOS on July 14, 2026, patching a vulnerability that could let an attacker with low-level access to your Mac...
VS Code Flaw CVE-2026-47281 Bypasses Workspace Trust—Update to 1.123.2 Immediately
Microsoft has issued an urgent security update for Visual Studio Code, version 1.123.2, to address a critical vulnerability tracked as CVE-2026-47281. The flaw undermines the editor’s workspace...
ChatGPT Work Lands on Windows: Your AI Assistant Now Takes Action
OpenAI released a new enterprise-focused desktop application on June 9, bringing an AI agent that can take actions on your behalf—not just generate text—to Windows PCs. Called ChatGPT Work, the...
Microsoft Intune Extends Security Policies to Unenrolled Defender for Endpoint Devices
Microsoft has quietly expanded the reach of its cloud-based endpoint security management. IT administrators can now apply Intune endpoint security policies directly to devices that are onboarded to...
Your Smart TV May Be Spying on You — and 2 Other Security Alerts You Need to Act On Now
A trio of security threats escalated this week, each attacking trust in a technology millions rely on daily: smart TVs secretly running proxy services, a fresh wave of confusion and risk around...
Microsoft Confirms September 2026 Deadline for Retiring Manual AIR Triggers in Defender XDR
Microsoft will remove the ability to manually trigger automated investigations and retire the standalone Automated Investigation and Response (AIR) experience in Microsoft Defender XDR on September...
Eliminate ASR Governance Drift: The GUID-Based Solution for Defender for Endpoint Rule Alignment
A single misconfigured Attack Surface Reduction rule can leave an enterprise wide open to ransomware—and the most common culprit is a quiet drift between what’s set in Intune and what Defender...
Microsoft Supercharges SMB Security with Defender and Purview Add-Ons for Business Premium
Microsoft is closing the security gap between small businesses and large enterprises with a pair of powerful new add-ons for Microsoft 365 Business Premium. Announced quietly in late 2025 and now...
Microsoft Intune’s June 2026 Update Delivers Auto-Patching for Third-Party Apps, Zero-Trust Privilege Controls, and Frictionless Apple Onboarding
Microsoft is rolling out a significant update to its Intune endpoint management platform, with June 2026 bringing general availability for automated application patching, expanded privilege...