|
Patch reliability is unclear. Unless you have an immediate, pressing need to install a specific patch, don't do it. |
Newsletter Archives
-
Apple backports fixes
Apple released several updates on March 31, including several backports to older versions of iOS and iPadOS. These fixes retroactively addressed three actively exploited zero-day vulnerabilities affecting legacy versions of its operating systems.CVE-2025-24200: ” This issue is fixed in iPadOS 17.7.5, iOS 18.3.1 and iPadOS 18.3.1. A physical attack may disable USB Restricted Mode on a locked device. Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals.”
That means businesses, journalists, and other highly targeted individuals. It was originally patched on February 10 in iOS 18.3.1, iPadOS 18.3.1, and iPad 17.7.5, but the vulnerability remained unresolved in older operating systems until now.
Another bug, CVE-2025-24201, was patched in iOS 16.7.11, iPadOS 16.7.11, iOS 15.8.4, and iPadOS 15.8.4 and is targeting flaws in WebKit and browsers. It’s been backported to iOS and iPadOS 15 and 16.
For more information, see this post in our forums.
-
Reviewing your licensing options
ISSUE 22.13 • 2025-03-31 TAME YOUR TECH
By Susan Bradley
Can you get a license for that?
With the upcoming end of life of Windows 10, I’m often asked why I’m not recommending that you look for and install the long-term servicing channel (LTSC) version of Windows 10 or Windows 11.
LTSC is a version of Windows 10 that was designed for devices that require minimal changes over time. It is primarily used in environments where stability and consistency are crucial, such as medical devices or industrial machinery. It is not available to the public and can be purchased only through volume licensing. It’s a platform that is intentionally not bloated, and it comes with fewer pre-installed apps, such as Microsoft Store, Cortana, and Edge (until the 2021 version). While it gets regular security updates, it does not get feature releases.
Read the full story in our Plus Newsletter (22.13.0, 2025-03-31).
This story also appears in our public Newsletter. -
Removing bypassnro
We’re removing the bypassnro.cmd script from the build to enhance security and user experience of Windows 11. This change ensures that all users exit setup with internet connectivity and a Microsoft Account.
Today, Microsoft announced that the Windows 11 Insider Build (26200.5516) had been released to the Dev channel. The nugget quoted above is mentioned in that Windows Blog post.What’s it about? “Bypass” refers to the methods we’ve used in the past to avoid using a Microsoft account when installing Windows Home edition. It’s being removed.
Does this bother you? If so, it’s time to get into that feedback hub and make your voice heard. Unfortunately, you may not be able to do so, at least for the moment. Use this link, which will prompt you to open the Feedback Hub app on your PC and sign in. Microsoft may tell you that “Your account doesn’t have access to this feedback.” That happened to me on a 23H2 PC, but I was able to get there on a PC running 24H2.
Update: Click on the social media post by Will Dormann and the resulting responses. They removed the built in command file, they did not remove the ability to bypass it. You can just type in the commands by hand and still get around the mandate for a Microsoft account.
-
Where is Windows going?
When Microsoft started down the road of continuous improvements, it resulted in constant change that can annoy everyone — from end users to IT administrators. When I’m asked, “What’s this,” I must see the desktop to know what the person is talking about. They’re obviously seeing it, but I may never have seen in on my PCs.Yesterday, in the Windows IT Pro blog, Microsoft announced its Windows Roadmap. It covers only Windows 11 23H2 and 24H2. It promises to show when something is in preview, whether it’s a slow rollout, or is in general release. It provides estimated dates.
When that odd thing shows up, perhaps the Roadmap can help all of us figure out whether Windows was always like that, or the odd thing is new. I suppose we can hope.
-
System Guard service error still won’t be fixed
When the preview releases come out at the end of the month, they are a clue of nonsecurity fixes that will be included in the following month’s security patches. So, once again we turn to Windows 10 22H2’s preview update released on March 25 and find that in KB5053643, Microsoft is not prioritizing the fix for the event viewer problem — an error regarding SgrmBroker.exe. Stated reason: it’s a cosmetic issue.If you are seeing this error, you can safely ignore it. It is not a root cause for crashing PCs or blue screens of death. It’s one of many things one finds in the event viewer that are benign and can be ignored.
This fix is clearly on a slow boat. Identified in January, not yet fixed, and no sign of it for April.
-
Third party add ins reminder
One of the things that I plan to start adding as a reminder to my patching checklist/to-dos is to check your add-ins. From browser add ins to operating add-ins, all of these third-party tools mean you no longer have a bog-standard operating system and thus will always be needing to be a bit more careful before updating. Depending on what third party tool you are using make sure you check its version against whatever is the latest version on the site you originally downloaded it from.This is one of the reasons I stick with a limited number of add-ins and then get the ones that will check for updates. For example, I’m a fan of Fences that help you corral your icons on your desktop.
Bottom line: don’t forget to update those first and THEN, update your operating system.
-
MS-DEFCON 4: Mixed bag for March
ISSUE 22.12.1 • 2025-03-25 
By Susan Bradley
Although CISA has given businesses who follow its guidance until early April to install updates released in March, I’m urging you to do so now.
Accordingly, I’m lowering the MS-DEFCON level to 4. You can find CISA’s deadlines in its Known Exploited Vulnerabilities Catalog.
Note that my recommendations for businesses include some possible exceptions.
Anyone can read the full MS-DEFCON Alert (22.12.1, 2025-03-25).
-
Planning ahead for migration
TAME YOUR TECH
By Susan Bradley
March 20, last Thursday, was the spring equinox. For me, that means I start planning ahead for gardening season.
I’ll review seed catalogs and study how things worked out last year. Making a plan well ahead of turning that first bit of soil is essential for me, and I put it all on paper. From determining how much fertilizer and mulch I need to computing compost density and selecting the best seeds for this year, I want that plan.
Okay, I know that as Will was editing this column, he was asking himself, “What the heck is she talking about? This is a tech newsletter!” I’ll explain.
Read the full story in our Plus Newsletter (22.12.0, 2025-03-24).
Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Recent Topics
-
advice for setting up a new windows computer
by 12 hours, 46 minutes ago
-
It’s Identity Theft Day!
by 2 hours, 54 minutes ago
-
Android 15 require minimum 32GB of storage
by 17 hours, 36 minutes ago
-
Mac Mini 2018, iPhone 6s 2015 Are Now Vintage
by 17 hours, 46 minutes ago
-
Hertz says hackers stole customer credit card and driver’s license data
by 18 hours, 16 minutes ago
-
Firefox became sluggish
by 15 hours, 10 minutes ago
-
Windows 10 Build 19045.5794 (22H2) to Release Preview Channel
by 22 hours, 14 minutes ago
-
Windows 11 Insider Preview Build 22635.5235 (23H2) released to BETA
by 22 hours, 43 minutes ago
-
A Funny Thing Happened on the Way to the Forum
by 18 hours, 14 minutes ago
-
Download speeds only 0.3Mbps after 24H2 upgrade on WiFi and Ethernet
by 19 hours, 38 minutes ago
-
T-Mobile 5G Wireless Internet
by 4 hours, 47 minutes ago
-
Clock missing above calendar in Windows 10
by 4 hours, 38 minutes ago
-
Formula to Calculate Q1, Q2, Q3, or Q4 of the Year?
by 1 day, 13 hours ago
-
The time has come for AI-generated art
by 17 hours, 32 minutes ago
-
Hackers are using two-factor authentication to infect you
by 1 day, 3 hours ago
-
23 and you
by 1 day, 10 hours ago
-
April’s deluge of patches
by 13 hours, 46 minutes ago
-
Windows 11 Windows Updater question
by 3 hours, 11 minutes ago
-
Key, Key, my kingdom for a Key!
by 2 days, 19 hours ago
-
Registry Patches for Windows 10
by 2 days, 23 hours ago
-
Cannot get line length to NOT wrap in Outlining in Word 365
by 2 days, 6 hours ago
-
DDU (Display Driver Uninstaller) updates
by 1 day, 15 hours ago
-
Align objects on a OneNote page
by 3 days, 5 hours ago
-
OneNote Send To button?
by 3 days, 6 hours ago
-
WU help needed with “Some settings are managed by your organization”
by 3 days, 14 hours ago
-
No Newsletters since 27 January
by 1 day, 19 hours ago
-
Linux Mint Debian Edition 7 gets OEM support, death of Ubuntu-based Mint ?
by 2 days, 15 hours ago
-
Windows Update “Areca Technology Corporation – System – 6.20.0.41”
by 2 days, 13 hours ago
-
Google One Storage Questions
by 1 day, 21 hours ago
-
Button Missing for Automatic Apps Updates
by 2 days, 5 hours ago
Remembering Woody
