|
Patch reliability is unclear. Unless you have an immediate, pressing need to install a specific patch, don't do it. |
Newsletter Archives
-
MS-DEFCON 4: A “sort of” quiet February
ISSUE 21.09.1 • 2024-02-27 
By Susan Bradley
The February updates have generally been well behaved, with one major exception: gamers.
Otherwise, things have been mostly quiet. That’s why I feel comfortable lowering the MS-DEFCON level to 4. Patches are unlikely to cause most users any problems.
Anyone can read the full MS-DEFCON Alert (21.09.1, 2024-02-27).
-
Microsoft’s groundhog — Copilot
PATCH WATCH
By Susan BradleyWill you see it, or won’t you?
In the United States and Canada, on a day in early February, a certain rodent is observed emerging from its burrow. Based upon an old Pennsylvania Dutch superstition, if the groundhog sees its shadow, it retreats into the ground for six more weeks, signaling that much more wintry weather.
I feel a bit like this with Microsoft’s release of Copilot — I never know whether a machine is going to see it or not.
Read the full story in our Plus Newsletter (21.08.0, 2024-02-19).
-
February 2024 patches for Windows
Ready or not, here comes the February updates for Windows.Will we see a fix for our KB5034441 for Windows 10 22H2 and in KB5034440 for Windows 11 woes? (so far, the answer is no)
What we will see is “Highlights for Windows 11, versions 22H2 & 23H2 (cont.) •The Copilot in Windows icon will appear on the right side of the system tray on the taskbar. Also, the display of Show desktop at the rightmost corner of the taskbar will be off by default.”
Ugh. And double Ugh.
I’ll be adding more links to this post as I digest the info.
And of course it’s a “dribbled” change
- Note Windows 11 devices will get this new functionality at different times. Some of these new features roll out gradually using controlled feature rollout (CFR) to consumers.
Remember if you get Copilot and don’t want it, we’ve got your back here and here.
Grrrrrrrrrr and double grrrrrrrrrrrrrrr
Zero day blog on the updates released today.
Exchange getting patched again today. SQL client fixes released in the OS patches so check those line of business database connections. Not seeing any automated patch for the Windows RE issues. Office and specifically Outlook is getting fixed for a preview pane security issue. Defender for endpoint getting fixes for zero day that led to malware being installed.
-
MS-DEFCON 2: Microsoft and compliance
ISSUE 21.06.1 • 2024-02-08 
By Susan Bradley
An international company must deal with the jurisdictions in which it operates. Microsoft is no different.
February is always marked on my calendar as the month in which Microsoft is back in full force, holidays behind them. That means we’ll see a rash of updates. I’m raising the MS-DEFCON level to 2 as a result.
Some of those updates will deal with the requirements of the Digital Markets Act (DMA) in the European Economic Area (EEA). Microsoft published a post in the Windows blog on this subject. The necessary changes to bring Windows into compliance will be dribbling out until the deadline — March 6, 2024 — and will be seen in updates to Windows 10 22H2 and Windows 11 23H2.
Anyone can read the full MS-DEFCON Alert (21.06.1, 2024-02-08).
-
Taming BitLocker and other encryption methods
ON SECURITY
By Susan Bradley
Our audience consists of several different segments. As a result, there are many different risk levels.
My risk tolerance may not be the same as yours, and vice versa. Ultimately, it comes down to your specific comfort level in your specific environment. And, of course, risk levels change over time.
Once upon a time, we would authenticate to our mail providers in plain text, with usernames and passwords clearly visible, and send all emails in the same fashion. You could “tap” the line with special equipment read every email – in the clear. That’s no longer considered secure, so now nearly all mail providers offer some sort of protection, especially for the credentials.
Read the full story in our Plus Newsletter (21.06.0, 2024-02-05).
-
MS-DEFCON 3: A bumpy start to 2024
ISSUE 21.05.1 • 2024-01-30 
By Susan Bradley
The partition-sizing problem that emerged earlier this month is not yet fixed.
Fortunately, our deep examination of this bug has revealed nothing of a dangerous nature. Therefore, I am lowering the MS-DEFCON level to 3. It’s now time to carefully install the January updates.
We continue to monitor the problem, described in KB5034441 for Windows 10 22H2 and in KB5034440 for Windows 11. Some, but not all, Windows 10 PCs are affected. I have urged you to check your partitions for issues with installing this update. We have written extensively about the problems, and the forums have been very active (see the From the Forums article in yesterday’s newsletter).
Anyone can read the full MS-DEFCON Alert (21.05.1, 2024-01-30).
-
KB5034441 and KB5034440
I’ve been getting some emails regarding our coverage of the Windows Recovery partition problem. One question was whether this applies to Windows 10 only, or both Windows 10 and 11.
It could be both.
There are two specific Microsoft knowledge base posts about this — KB5034441 for Windows 10 and KB5034440 for Windows 11. Both refer to CVE-2024-20666, BitLocker Security Feature Bypass Vulnerability.
As I have previously noted, the problem showed up rapidly on Windows 10 PCs and, so far, rarely on Windows 11 PCs. That accounts for our slightly one-sided coverage. Also note that KB5034440 only calls out Windows 11 21H2. For Windows 11 22H2 and 23H2, the vulnerability noted in CVE-2024-20666 is being patched as part of the cumulative windows update of KB5034123. We’ll have more on these nuances in next week’s alert.
-
KB5034441 has led us astray, in a horrible way
ISSUE 21.04 • 2024-01-22 PATCH WATCH
By Susan Bradley
What’s with this Windows recovery partition thing?
If you’ve been following along, you know we’ve been discussing the update associated with a BitLocker vulnerability (described in KB5034441) that may require a resizing of the Windows recovery partition to resolve.
Microsoft’s handling of this problem has been so terrible that I was driven to raise the MS-DEFCON level to 1, just the fifth time I’ve considered it necessary.
Read the full story in our Plus Newsletter (21.04.0, 2024-01-22).
This story also appears in our public Newsletter.
Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Recent Topics
-
24H2 fixed??
by 1 hour, 53 minutes ago
-
Uninstalr Updates
by 1 hour, 59 minutes ago
-
Apple zero days for April
by 7 hours, 23 minutes ago
-
CVE program gets last-minute funding from CISA – and maybe a new home
by 12 hours, 54 minutes ago
-
Whistleblower describes DOGE IT dept rumpus at America’s labor watchdog
by 1 day ago
-
Seeing BSOD’s on 24H2?
by 7 hours, 38 minutes ago
-
TUT For Private Llama LLM, Local Installation and Isolated from the Internet.
by 15 hours, 7 minutes ago
-
Upgrade from Windows 10 to 11
by 1 day, 9 hours ago
-
Microsoft : AI-powered deception: Emerging fraud threats and countermeasures
by 1 day, 12 hours ago
-
0patch
by 13 hours, 12 minutes ago
-
Devices might encounter blue screen exception with the recent Windows updates
by 1 day, 5 hours ago
-
Windows 11 Insider Preview Build 22631.5261 (23H2) released to Release Preview
by 1 day, 15 hours ago
-
Problem opening image attachments
by 1 day, 16 hours ago
-
advice for setting up a new windows computer
by 2 days, 7 hours ago
-
It’s Identity Theft Day!
by 1 day, 11 hours ago
-
Android 15 require minimum 32GB of storage
by 2 days, 12 hours ago
-
Mac Mini 2018, iPhone 6s 2015 Are Now Vintage
by 2 days, 12 hours ago
-
Hertz says hackers stole customer credit card and driver’s license data
by 2 days, 13 hours ago
-
Firefox became sluggish
by 5 hours, 20 minutes ago
-
Windows 10 Build 19045.5794 (22H2) to Release Preview Channel
by 2 days, 17 hours ago
-
Windows 11 Insider Preview Build 22635.5235 (23H2) released to BETA
by 2 days, 17 hours ago
-
A Funny Thing Happened on the Way to the Forum
by 1 day, 14 hours ago
-
Download speeds only 0.3Mbps after 24H2 upgrade on WiFi and Ethernet
by 11 hours, 39 minutes ago
-
T-Mobile 5G Wireless Internet
by 1 day, 15 hours ago
-
Clock missing above calendar in Windows 10
by 1 day, 16 hours ago
-
Formula to Calculate Q1, Q2, Q3, or Q4 of the Year?
by 3 days, 8 hours ago
-
The time has come for AI-generated art
by 2 days, 12 hours ago
-
Hackers are using two-factor authentication to infect you
by 2 days, 21 hours ago
-
23 and you
by 3 days, 5 hours ago
-
April’s deluge of patches
by 1 day, 9 hours ago
Remembering Woody
