|
Patch reliability is unclear. Unless you have an immediate, pressing need to install a specific patch, don't do it. |
Newsletter Archives
-
MS-DEFCON 4: Mixed bag for March
ISSUE 22.12.1 • 2025-03-25 
By Susan Bradley
Although CISA has given businesses who follow its guidance until early April to install updates released in March, I’m urging you to do so now.
Accordingly, I’m lowering the MS-DEFCON level to 4. You can find CISA’s deadlines in its Known Exploited Vulnerabilities Catalog.
Note that my recommendations for businesses include some possible exceptions.
Anyone can read the full MS-DEFCON Alert (22.12.1, 2025-03-25).
-
The annoyances of a new computer
WINDOWS 11
By Susan Bradley
There is a dirty little secret in corporate technology — we don’t care about your operating system.
If it misbehaves, we blow it off. If your computer doesn’t work, we issue you a new one. Don’t like that keyboard? Throw it away. Get a new release of Windows? We redeploy the entire operating system, using one of our various methodologies.
It’s my opinion that this mentality — that the desktop doesn’t matter and can be easily wiped away — persists inside the Microsoft organization.
Read the full story in our Plus Newsletter (21.07.0, 2024-02-12).
-
KB5034441 and KB5034440
I’ve been getting some emails regarding our coverage of the Windows Recovery partition problem. One question was whether this applies to Windows 10 only, or both Windows 10 and 11.
It could be both.
There are two specific Microsoft knowledge base posts about this — KB5034441 for Windows 10 and KB5034440 for Windows 11. Both refer to CVE-2024-20666, BitLocker Security Feature Bypass Vulnerability.
As I have previously noted, the problem showed up rapidly on Windows 10 PCs and, so far, rarely on Windows 11 PCs. That accounts for our slightly one-sided coverage. Also note that KB5034440 only calls out Windows 11 21H2. For Windows 11 22H2 and 23H2, the vulnerability noted in CVE-2024-20666 is being patched as part of the cumulative windows update of KB5034123. We’ll have more on these nuances in next week’s alert.
-
Making sense of Windows 11’s 2023 updates
ISSUE 21.03 • 2024-01-15 WINDOWS 11
By Lance Whitney • Comment about this article
Not sure which features were added to Windows 11 last year?
2023 was a busy year for Windows 11. Microsoft pushed out a series of updates to the OS, adding new features and revamping others. But because the update process was confusing and convoluted, you may not know exactly what changed throughout the year. To try to make sense of it all, I’ve compiled all the major 2023 updates and the most significant features, many of which you may not even know are now part of Windows 11.
Here’s what you’ll ultimately find if you’ve installed all the major updates.
Read the full story in our Plus Newsletter (21.03.0, 2024-01-15).
This story also appears in our public Newsletter. -
MS-DEFCON 3: Patch carefully
ISSUE 20.34.1 • 2023-08-22 
By Susan Bradley
August can be a weird month where patching is concerned.
I’m lowering the MS-DEFCON level, but with caution. I usually hope to give time near the end of the month for patches to be applied, by lowering the level to 4 and sometimes 5. This time, I’m wishy-washy. Caution is the order of the day, so I’m lowering the level to just 3.
In my house, August represents a tradition — things occur that make me think technology wants to take a vacation, just like the rest of us.
Anyone can read the full MS-DEFCON Alert (20.34.1, 2023-08-22).
-
MS-DEFCON 2: Last call for 22H2
ISSUE 20.27.1 • 2023-07-06 
By Susan Bradley
Starting next week, you will not receive security updates for any version of Windows 10 except 22H2.
If your PC has not received 22H2 via Windows Update, chances are that your PC has a setting keeping Windows on the version you have installed — or corruption in the operating system is preventing the update from being accepted. But Patch Tuesday is just around the corner, so it’s time to become cautious again by raising the MS-DEFCON level to 2.
Anyone can read the full MS-DEFCON Alert (20.27.1, 2023-07-06).
-
MS-DEFCON 4: Wrapping up a short month
ISSUE 20.09.1 • 2023-02-28 By Susan Bradley
February’s patches affected you either severely, or not at all.
The good news: If you are a consumer, home user, or business that does not use Windows Server 2022 or any version of on-premises Exchange server, you will be just fine installing the updates at this time. Therefore, I am very comfortable with lowering the MS-DEFCON level to 4.
However, if you are a business patcher with Windows Server 2022 hosted in VMware, you may have been significantly impacted. In addition, patch administrators are still dealing with the side effects of the Exchange updates.
Anyone can read the full MS-DEFCON Alert (20.09.1, 2023-02-28).
-
Dealing with incremental updates, aka “dribbles”
PATCH WATCH
By Susan Bradley
Last year, Microsoft announced that Windows was moving to an annual release schedule rather than the twice-a-year release cadence.
The impression at that time was that Microsoft would be settling into a nice, boring release schedule with only one disruption per year. But the reality so far has been the exact opposite. Even with the Insider testing program, the timing is such that you can’t really test things until they get to the general public.
Read the full story in our Plus Newsletter (19.45.0, 2022-11-07).
Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Recent Topics
-
Windows 11 Insider Preview Build 26100.3902 (24H2) released to Release Preview
by 2 hours, 23 minutes ago
-
Oracle kinda-sorta tells customers it was pwned
by 8 hours, 24 minutes ago
-
Global data centers (AI) are driving a big increase in electricity demand
by 18 hours, 44 minutes ago
-
Office apps read-only for family members
by 21 hours, 21 minutes ago
-
Defunct domain for Microsoft account
by 18 hours, 12 minutes ago
-
24H2??
by 8 hours, 24 minutes ago
-
W11 23H2 April Updates threw ‘class not registered’
by 2 hours, 38 minutes ago
-
Master patch listing for April 8th, 2025
by 2 hours, 52 minutes ago
-
TotalAV safety warning popup
by 14 minutes ago
-
two pages side by side land scape
by 2 days, 19 hours ago
-
Deleting obsolete OneNote notebooks
by 2 days, 21 hours ago
-
Word/Outlook 2024 vs Dragon Professional 16
by 2 days ago
-
Security Essentials or Defender?
by 2 days, 2 hours ago
-
April 2025 updates out
by 3 hours, 2 minutes ago
-
Framework to stop selling some PCs in the US due to new tariffs
by 1 day, 20 hours ago
-
WARNING about Nvidia driver version 572.83 and 4000/5000 series cards
by 1 day, 10 hours ago
-
Creating an Index in Word 365
by 2 days, 12 hours ago
-
Coming at Word 365 and Table of Contents
by 1 day ago
-
Windows 11 Insider Preview Build 22635.5170 (23H2) released to BETA
by 3 days, 16 hours ago
-
Has the Microsoft Account Sharing Problem Been Fixed?
by 3 days, 19 hours ago
-
W11 24H2 – Susan Bradley
by 3 days, 21 hours ago
-
7 tips to get the most out of Windows 11
by 3 days, 19 hours ago
-
Using Office apps with non-Microsoft cloud services
by 3 days, 12 hours ago
-
I installed Windows 11 24H2
by 1 day, 19 hours ago
-
NotifyIcons — Put that System tray to work!
by 4 days, 1 hour ago
-
Decisions to be made before moving to Windows 11
by 1 hour, 5 minutes ago
-
Port of Seattle says ransomware breach impacts 90,000 people
by 4 days, 9 hours ago
-
Looking for personal finance software with budgeting capabilities
by 3 days, 17 hours ago
-
ATT/Yahoo Secure Mail Key
by 3 days, 17 hours ago
-
Devices with apps using sprotect.sys driver might stop responding
by 5 days, 2 hours ago
Remembering Woody
