Financial Cybersecurity
The latest Financial Cybersecurity coverage — news, analysis, and updates from the WindowsNews.AI desk.
LineageOS Makes Flashing ROMs as Easy as Opening a Web Page
LineageOS’s July 2026 update introduces a web-based flashing tool that lets users install the custom ROM straight from a browser, eliminating the need for command-line tools. The release also includes a faster delta OTA updater, quicker security patches, and support for new devices like the Galaxy S23 series and Pixel 8a.
What Android's Tightened USB Security Means for Your Windows PC Connection
Google's Android Auto 17.2 update now explicitly warns drivers when a locked phone blocks a wired connection. This change highlights a long-standing Android USB security policy that also affects Windows users, who often face silent failures when connecting a locked Android phone to their PC. The article explains the background, impact, and practical steps for home users, developers, and IT professionals to avoid frustration.
libssh2 Bug Exposes Windows SFTP Connections to Heap Overread Attacks — What to Patch Now
A high-severity heap buffer overread vulnerability (CVE-2025-15661) in libssh2 versions up to 1.11.1 exposes Windows users to data leaks and denial-of-service attacks through compromised SFTP servers. The library, embedded in Git, curl, and many automation tools, requires immediate patching to version 1.11.2. Users must identify affected software, update, and enforce host-key checks to mitigate man-in-the-middle risks.
Microsoft to Retire Phone and Email Password Resets in Entra ID by September 2026
Microsoft will block the use of directory-sourced phone numbers and alternate email addresses for Entra ID self-service password resets starting September 7, 2026. The change requires administrators to migrate users to verified authentication methods before the deadline to avoid user lockouts. This article explains the timeline, impact on different audiences, and provides a step-by-step remediation plan.
Microsoft Adds In-Alert File Previews to Purview Insider Risk Management, Speeding Up Investigations
Microsoft has begun rolling out content preview inside Purview Insider Risk Management alerts, letting investigators inspect files directly from alerts without switching tools. The change, launched July 7, 2026, speeds up triage, reduces false positives, and respects existing permissions and audit controls. Admins should verify role assignments, alert policies, and licensing to make the most of the update.
Microsoft Teams to Lock Down Event Presenter Access with One-Time Email Passcodes in April 2026
Microsoft Teams will require one-time email passcodes for external presenters in events starting April 2026, adding a critical layer of identity verification to prevent unauthorized access. The desktop feature gives organizers a simple toggle to enforce presenter authentication while keeping the join flow quick for invited speakers. IT admins and event organizers should begin familiarizing themselves with the workflow ahead of the general-availability rollout.
Microsoft Edge Will Save Work Downloads to OneDrive by Default Starting July 2026
Microsoft has announced that starting July 2026, Edge will save downloads protected by Intune MAM policies to OneDrive for Business instead of the local Downloads folder, bolstering data protection and mobility. The change affects work profiles in Edge on all platforms and requires no user action, though IT admins should review MAM configurations and prepare their organizations ahead of the deadline. This shift aligns with Microsoft’s Zero Trust strategy and marks the latest step in tighter Edge-Intune integration.
Microsoft Purview to Introduce Pre-Curated File Extension Picker for Endpoint DLP by September 2026
Microsoft has placed a new feature on its Microsoft 365 roadmap (ID 562993) that will add a pre-curated file extension picker to Purview Endpoint DLP policies. The tool, expected by September 2026, will let administrators select common file extensions from a list instead of typing them manually, reducing misconfiguration risks and streamlining policy creation for worldwide commercial tenants.
Preview: Purview Insider Risk Management Now Catches Data Leaks in Microsoft Fabric and Cloud Apps
Microsoft has launched a public preview of new triggers in Purview Insider Risk Management that allow detection of data leaks through Microsoft Fabric activities and cloud storage apps like Box and Dropbox. The update helps security teams close visibility gaps in analytics platforms and unsanctioned cloud services. Organizations with E5 licenses can enable the preview and configure test policies to evaluate the new capabilities.
Microsoft Extends Windows 10 Support for Home Users: Patches Now Available Until October 2027
Microsoft has extended the consumer Extended Security Updates program for Windows 10 until October 12, 2027, giving home users an extra year of security patches beyond the original 2026 cutoff. The paid program provides critical updates only, with an expected cost of $30 per year, and is ideal for PCs that cannot upgrade to Windows 11. This move acknowledges the large Windows 10 user base and offers a temporary reprieve, but users should plan to transition to a supported OS before 2027.
CISA Orders Agencies to Patch Actively Exploited Adobe ColdFusion Path Traversal Flaw
CISA added CVE-2026-48282, a critical path traversal vulnerability in Adobe ColdFusion, to its Known Exploited Vulnerabilities catalog on July 7, 2026, due to active exploitation. Federal agencies must patch within two weeks, but all organizations should treat this as an emergency. The article provides practical steps for system administrators to patch, detect intrusions, and implement compensating controls.
OpenSSH 10.4 Security Update Patches 8 Vulnerabilities, Adds Post-Quantum Crypto
OpenSSH 10.4, released July 6, 2026, contains fixes for eight security vulnerabilities across its client, server, and file transfer tools, and introduces experimental post-quantum signature algorithms. Windows users running the built-in optional feature or standalone Win32-OpenSSH should update immediately to protect against potential exploits, while the quantum-resistant authentication feature offers a preview of future cryptographic defenses.
Siemens Demands Immediate Patching of RUGGEDCOM Switches as SINEC OS Flaw Gets 9.8 CVSS Score
Siemens has released SINEC OS version 4.0 to fix a critical 9.8 CVSS vulnerability in its RUGGEDCOM RST2428P industrial switches, disclosed June 2, 2026, and republished by CISA on July 7, 2026. The flaw allows remote attackers to compromise unpatched devices, demanding immediate action from OT operators to protect critical infrastructure.