Filesystem Security
The latest Filesystem Security coverage — news, analysis, and updates from the WindowsNews.AI desk.
Android 16 Lock-Screen Flaw Lets Anyone Send Texts via Gemini—Here's How to Block It Now
A lock-screen vulnerability in Android 16 allows anyone with physical access to a phone to send SMS messages via Google Gemini without a PIN, even when the user had revoked messaging permissions. Google is rolling out a fix, but as of July 19 there's no device-by-device confirmation, so affected users should immediately disable Gemini's lock-screen messaging features and check for unauthorized app integrations.
Microsoft Sets Hard Deadline: SMS MFA Retires in Entra ID by 2027, Passkeys Take Over
Microsoft will retire its built-in SMS and voice MFA for Entra ID on February 1, 2027, forcing organizations to move users to phishing-resistant passkeys or risk account lockouts. The change brings a two-phase rollout starting September 2026, with a hard no-opt-out deadline that requires immediate planning, piloting, and communication.
Office LTSC 2021’s Final Countdown: Plan Your Exit Before the 2026 Security Shutdown
Microsoft will end support for Office LTSC 2021, Project LTSC 2021, and Visio LTSC 2021 on October 13, 2026. After that date, no security updates or technical support will be provided, leaving users at risk. This article explains the practical impact, offers a step-by-step migration plan to Microsoft 365 Apps or Office LTSC 2024, and highlights the special considerations for Project and Visio.
The Hidden Danger in 'winget upgrade --all' That Could Break Your Company's PCs
The 'winget upgrade --all' command is popular for updating Windows apps, but it lacks a critical filter to separate apps that need administrator rights from those that don't. This flaw, tracked in GitHub issue #2706 since 2022, can cause broken installs, lost user settings, and compliance headaches on managed PCs. IT teams should replace blanket updates with a curated, tested catalog and script narrow upgrades by package ID—using WinGet as an engine, not a policy manager.
Windows 10 security updates just stopped—how to enroll in paid patches before the October 2026 cutoff
Windows 10 support ended on October 14, 2025. Here’s how consumers and businesses can enroll in paid Extended Security Updates to keep getting critical fixes, and what deadlines they face.
Microsoft July Patches: 2 Zero-Days Under Active Attack; Critical Fixes for Gamers and Firmware
Microsoft’s July 14, 2026 Patch Tuesday delivered 570 fixes, including actively exploited zero-days in SharePoint and ADFS that demand immediate patching. The update also patches critical gaming server and client vulnerabilities in Minecraft and Age of Empires II, DirectX privilege escalation, Lenovo BIOS flaws, and a Supermicro BMC issue. A practical, prioritized checklist helps admins and home users navigate the sprawling release.
Windows 11 23H2 Home and Pro Are Unsupported – Enterprise Still Has Until 2026
Windows 11 version 23H2 support status depends entirely on the installed edition. Home and Pro editions lost security updates months ago, while Enterprise and Education remain supported until November 2026. Users must identify their edition and upgrade immediately if unprotected.
Last Call for Windows Server 2012 R2 Security Patches: Deadline Is October 13, 2026
Microsoft will end Extended Security Updates for Windows Server 2012 and 2012 R2 on October 13, 2026, with no further extensions. IT teams must now inventory their entire server estate, categorize each workload for retirement, rebuilding on a supported OS, migration to Azure, or temporary containment, and verify that existing ESU coverage is actually delivering patches. This article provides a practical playbook for auditing, planning, and executing the migration before the final deadline.
Across Protocol Restarts Solana Deposits After July 17 Attack; Relayer Absorbed Hit, Users Protected
Across Protocol resumed Solana deposits on July 18 after an attacker tricked a relayer into paying out on a failed transaction. The protocol's intent-based architecture ensured no user funds were lost, with the relayer (operated by Risk Labs) absorbing the financial hit. The incident echoes an April vulnerability disclosure about Solana's event model and raises broader lessons for developers and IT professionals about verifying off-chain signals.
Windows 11 24H2's Protected Print Mode: Why Your Printers Might Vanish and How to Prepare
Microsoft's Windows 11 24H2 beta introduces Protected Print Mode, a security feature that automatically uninstalls any printer relying on third-party drivers. The move aims to eliminate print spooler vulnerabilities by forcing a modern, driverless printing stack, but it can disrupt enterprise workflows that depend on legacy software for finishing, scanning, and accounting. IT teams must audit their print queues now, test thoroughly, and prepare for manual recovery because disabling the mode doesn't restore removed printers automatically.
Secure Boot 2026: Why You Must Check UEFICA2023Status Right Now (and How to Do It)
The June 2026 Secure Boot certificate deadline is here, but your Windows PC likely still boots even without the 2023 trust. However, missing the UEFICA2023Status “Updated” flag means it won’t get future boot protections. This article explains exactly how to check your status in 10 seconds and provides IT admins with a complete, queue-based remediation roadmap for the entire enterprise fleet.
Chrome 150 Update Seals Three Critical Use-After-Free Bugs — Time to Restart Your Browser
Google’s Chrome Stable channel update to version 150.0.7871.128/.129 fixes seven security flaws, including three Critical use-after-free bugs in CameraCapture, GPU, and Network components. No active exploitation has been confirmed, but the high-severity vulnerabilities demand immediate browser restarts to close the window before attackers can reverse-engineer the patches. Home users should manually install and restart Chrome, while enterprise administrators must track version compliance and force restarts across their fleets.
Motorola Edge 70 Max Update Policy: The Fine Print That Still Isn't Fixed
Motorola's July 17 clarification that the Edge 70 Max gets 'up to 3 OS upgrades and 5 years of security updates' does not resolve contradictory fine print on its own websites or an EU database listing showing 7 years. The conditional phrasing leaves buyers guessing about actual support, especially at the phone's premium price, complicating long-term use with Windows PCs and enterprise management.