Live
Windows 11 Feature Updates Can Cut Off Wired Enterprise Networks—Here’s How to Stop It·MSFT +0.1%VLCM Is Now Read-Only: How to Move Your Microsoft Volume Licensing Workflows Before It's Too Late·NVDA +3.0%Microsoft Sets Hard Deadline: SMS MFA Retires in Entra ID by 2027, Passkeys Take Over·GOOGL +1.2%Windows 11's Two-Part Search Fix: Duplicate Indexing Eliminated, But the Big Overhaul Is Still Experimental·AMZN +2.9%Your AKS Windows Server 2019 Pools Are Already Unsupported: What to Do Before Scaling Fails·MSFT +0.1%Microsoft’s GPT-4o Retirement Countdown Is Already Ticking—Here’s Your Migration Playbook·NVDA +3.0%Microsoft Sets a Deadline: Intune Will Drop RHEL 8 Support in July 2026 – Here’s the Migration Playbook·GOOGL +1.2%The Clock Is Ticking for SharePoint SMAT: Your Migration Strategy Needs a Rethink by October 2026·AMZN +2.9%Windows 11 Feature Updates Can Cut Off Wired Enterprise Networks—Here’s How to Stop It·MSFT +0.1%VLCM Is Now Read-Only: How to Move Your Microsoft Volume Licensing Workflows Before It's Too Late·NVDA +3.0%Microsoft Sets Hard Deadline: SMS MFA Retires in Entra ID by 2027, Passkeys Take Over·GOOGL +1.2%Windows 11's Two-Part Search Fix: Duplicate Indexing Eliminated, But the Big Overhaul Is Still Experimental·AMZN +2.9%Your AKS Windows Server 2019 Pools Are Already Unsupported: What to Do Before Scaling Fails·MSFT +0.1%Microsoft’s GPT-4o Retirement Countdown Is Already Ticking—Here’s Your Migration Playbook·NVDA +3.0%Microsoft Sets a Deadline: Intune Will Drop RHEL 8 Support in July 2026 – Here’s the Migration Playbook·GOOGL +1.2%The Clock Is Ticking for SharePoint SMAT: Your Migration Strategy Needs a Rethink by October 2026·AMZN +2.9%

Malware Risks

The latest Malware Risks coverage — news, analysis, and updates from the WindowsNews.AI desk.

13 stories in view AI assisted desk updated 1:04 PM
Latest Most Read Breaking
Sort
Microsoft Entra Id · Passkeys

Microsoft Sets Hard Deadline: SMS MFA Retires in Entra ID by 2027, Passkeys Take Over

Microsoft will retire its built-in SMS and voice MFA for Entra ID on February 1, 2027, forcing organizations to move users to phishing-resistant passkeys or risk account lockouts. The change brings a two-phase rollout starting September 2026, with a hard no-opt-out deadline that requires immediate planning, piloting, and communication.

Advertisement
Microsoft Patch Tuesday · Adfs Vulnerabilities

Microsoft July Patches: 2 Zero-Days Under Active Attack; Critical Fixes for Gamers and Firmware

Microsoft’s July 14, 2026 Patch Tuesday delivered 570 fixes, including actively exploited zero-days in SharePoint and ADFS that demand immediate patching. The update also patches critical gaming server and client vulnerabilities in Minecraft and Age of Empires II, DirectX privilege escalation, Lenovo BIOS flaws, and a Supermicro BMC issue. A practical, prioritized checklist helps admins and home users navigate the sprawling release.

SE Security Desk·3h ago
Windows 11 · 23H2

Windows 11 23H2 Home and Pro Are Unsupported – Enterprise Still Has Until 2026

Windows 11 version 23H2 support status depends entirely on the installed edition. Home and Pro editions lost security updates months ago, while Enterprise and Education remain supported until November 2026. Users must identify their edition and upgrade immediately if unprotected.

SE Security Desk·4h ago
Windows Server · Extended Security Updates

Last Call for Windows Server 2012 R2 Security Patches: Deadline Is October 13, 2026

Microsoft will end Extended Security Updates for Windows Server 2012 and 2012 R2 on October 13, 2026, with no further extensions. IT teams must now inventory their entire server estate, categorize each workload for retirement, rebuilding on a supported OS, migration to Azure, or temporary containment, and verify that existing ESU coverage is actually delivering patches. This article provides a practical playbook for auditing, planning, and executing the migration before the final deadline.

SE Security Desk·7h ago
Across Protocol · Solana

Across Protocol Restarts Solana Deposits After July 17 Attack; Relayer Absorbed Hit, Users Protected

Across Protocol resumed Solana deposits on July 18 after an attacker tricked a relayer into paying out on a failed transaction. The protocol's intent-based architecture ensured no user funds were lost, with the relayer (operated by Risk Labs) absorbing the financial hit. The incident echoes an April vulnerability disclosure about Solana's event model and raises broader lessons for developers and IT professionals about verifying off-chain signals.

SE Security Desk·8h ago
Windows 11 24H2 · Protected Print Mode

Windows 11 24H2's Protected Print Mode: Why Your Printers Might Vanish and How to Prepare

Microsoft's Windows 11 24H2 beta introduces Protected Print Mode, a security feature that automatically uninstalls any printer relying on third-party drivers. The move aims to eliminate print spooler vulnerabilities by forcing a modern, driverless printing stack, but it can disrupt enterprise workflows that depend on legacy software for finishing, scanning, and accounting. IT teams must audit their print queues now, test thoroughly, and prepare for manual recovery because disabling the mode doesn't restore removed printers automatically.

SE Security Desk·9h ago
Secure Boot · Windows Security

Secure Boot 2026: Why You Must Check UEFICA2023Status Right Now (and How to Do It)

The June 2026 Secure Boot certificate deadline is here, but your Windows PC likely still boots even without the 2023 trust. However, missing the UEFICA2023Status “Updated” flag means it won’t get future boot protections. This article explains exactly how to check your status in 10 seconds and provides IT admins with a complete, queue-based remediation roadmap for the entire enterprise fleet.

SE Security Desk·9h ago
Browser Security · Cybersecurity

Chrome 150 Update Seals Three Critical Use-After-Free Bugs — Time to Restart Your Browser

Google’s Chrome Stable channel update to version 150.0.7871.128/.129 fixes seven security flaws, including three Critical use-after-free bugs in CameraCapture, GPU, and Network components. No active exploitation has been confirmed, but the high-severity vulnerabilities demand immediate browser restarts to close the window before attackers can reverse-engineer the patches. Home users should manually install and restart Chrome, while enterprise administrators must track version compliance and force restarts across their fleets.

SE Security Desk·9h ago
Android Updates · Motorola Edge 70 Max

Motorola Edge 70 Max Update Policy: The Fine Print That Still Isn't Fixed

Motorola's July 17 clarification that the Edge 70 Max gets 'up to 3 OS upgrades and 5 years of security updates' does not resolve contradictory fine print on its own websites or an EU database listing showing 7 years. The conditional phrasing leaves buyers guessing about actual support, especially at the phone's premium price, complicating long-term use with Windows PCs and enterprise management.

SE Security Desk·9h ago
Android 17 · Lock Screen Security

Android 17 Slashes Unlock Attempts to 20 — Why Your Windows Logins Just Got Safer

Android 17 slashes the lifetime lock screen guess limit from 1,800 to just 20 tries, with escalating delays reaching into years. The change, backed by hardware enforcement and duplicate guess detection on some devices, drastically reduces the risk of brute-force attacks on lost or stolen Pixels. For Windows users who rely on a Pixel for Microsoft authentication, this is a quiet but critical security upgrade.

SE Security Desk·9h ago
1 2 3 4