BetaNews: Microsoft releases KB5005565 and KB5005566 Windows 10 updates to fix PowerShell bug and more

BetaNews: Microsoft releases KB5005565 and KB5005566 Windows 10 updates to fix PowerShell bug and more . “With another Patch Tuesday rolling around, Microsoft has released a pair of new updates for Windows 10 — KB5005565 and KB5005566. Serving the same purpose, KB5005566 is available for Windows 10 version 1909, and KB5005565 is available for Windows 10 versions 2004, 20H2 and 21H1. These cumulative updates include security fixes, so they are important to install, but they also address non-security bugs including one affecting PowerShell.”

ZDNet: What’s the fastest Windows 10 web browser in 2021?

ZDNet: What’s the fastest Windows 10 web browser in 2021?. “The most important program on your PC is your web browser. Oh sure, your bread and butter work may be on QuickBooks, Photoshop, or Premiere Pro, but where do you find information or exchange emails? Answer: Your web browser. Heck, Google has proven that all you really need to do most work is the Chrome web browser on a Chromebook. And, Microsoft wants you to move to the web-based Windows 365 Cloud PC. And, what do you need to get the most from your web browser? Speed, speed, and still more speed.”

Ars Technica: Windows Movie Maker Redux? Microsoft acquires web-based video editor Clipchamp

Ars Technica: Windows Movie Maker Redux? Microsoft acquires web-based video editor Clipchamp. “Microsoft hasn’t updated its old Windows Movie Maker software since 2012, and it hasn’t even offered the old version for download since 2017, leaving Windows users to fend for themselves when it comes to beginner-friendly editing and sharing of video clips. That situation will hopefully change thanks to Microsoft’s acquisition of Clipchamp, a web-based video-editing tool. Clipchamp includes a variety of built-in templates for family-video editors, Twitch and YouTube streamers, and businesses putting together ads or other branded videos.”

Microsoft: Attackers Exploiting Windows Zero-Day Flaw (Krebs on Security)

Krebs on Security: Microsoft: Attackers Exploiting Windows Zero-Day Flaw . “Microsoft Corp. warns that attackers are exploiting a previously unknown vulnerability in Windows 10 and many Windows Server versions to seize control over PCs when users open a malicious document or visit a booby-trapped website. There is currently no official patch for the flaw, but Microsoft has released recommendations for mitigating the threat.”

Engadget: Microsoft releases an improved Windows 11 PC health check app

Engadget: Microsoft releases an improved Windows 11 PC health check app. “When Microsoft released the Windows 11 Insider preview earlier this summer, it did so with some confusion around minimum system requirements. It quickly reversed course, saying that more people could install the software update than its requirements originally stated so the company could gather more performance on how the OS performed. After a few months of users testing and providing feedback, Microsoft says that, for the most part, its system requirements from June will stand — but there are a few notable changes.”

PC Gamer: Here’s how to try Windows 11 right now without installing a thing

PC Gamer: Here’s how to try Windows 11 right now without installing a thing. “If you find yourself curious about the Windows 11 UI, and feel like trying it out before you commit to a clean ISO install, it’s now possible to do so through the comfort of your browser. Developer, Blue Edge, built the Windows 11 demo webpage so users could test drive the operating system software, even if their PC doesn’t meet the stringent hardware requirements.”

Security: plug in a Razer mouse or keyboard and gain admin privileges in Windows 10 (BetaNews)

BetaNews: Security: plug in a Razer mouse or keyboard and gain admin privileges in Windows 10. “A worrying security flaw has been discovered in Razer Synapse software which can be exploited to gain administrator privileges in Windows 10. What is particularly concerning about this vulnerability — aside from the fact that there is no patch available yet — is that exploitation is possible by simply plugging in a Razer mouse, keyboard or dongle.” Of course this also means that an attacker also has to have physical access, but GEEZ.

Ars Technica: The once-doomed MS Paint gets its first redesign in over a decade

Ars Technica: The once-doomed MS Paint gets its first redesign in over a decade. “The latest Windows 11 app to get a coat of paint is Paint, everyone’s favorite meme-making sketching and doodling app. It’s not available for download for Windows Insiders yet, but Microsoft Chief Product Officer Panos Panay posted a brief video of the new design, showing off its updated look, a new dark mode, better text tools, updated brushes, and other tweaks that collectively serve to modernize the app a bit.”

PC World: This free Windows text tool will change the way you type

PC World: This free Windows text tool will change the way you type. “For a while, I used a program called PhaseExpress for text shortcuts. It didn’t always work reliably, and I got tired of its periodic nags to pay for unnecessary extra features. Earlier this year, I started looking for text expander alternatives, which led me to a brilliant app—with an even more brilliant name—called Beeftext.”

Microsoft Warns: Another Unpatched PrintNightmare Zero-Day (ThreatPost)

ThreatPost: Microsoft Warns: Another Unpatched PrintNightmare Zero-Day. “One day after dropping its scheduled August Patch Tuesday update, Microsoft issued a warning about yet another unpatched privilege escalation/remote code-execution (RCE) vulnerability in the Windows Print Spooler. The zero-day bug, tracked as CVE-2021-36958, carries a CVSS vulnerability-severity scale rating of 7.3, meaning that it’s rated as ‘important.’”

BetaNews: PrintNightmare fixing KB5005033 update is causing performance issues in Windows 10

From BetaNews with a side order of head-desk: PrintNightmare fixing KB5005033 update is causing performance issues in Windows 10. “Windows 10 users who have installed the KB5005033 update that was supposed to fix the PrintNightmare security flaw are reporting unwanted side effects. Among the problems being reported are issues with reduced performance, particularly in games.”

BetaNews: Microsoft finally fixes PrintNightmare vulnerability with KB5005031 and KB5005033 updates

BetaNews: Microsoft finally fixes PrintNightmare vulnerability with KB5005031 and KB5005033 updates. “To help address the ongoing problems with the so-called PrintNightmare vulnerability (CVE-2021-34527), Microsoft has announced a change to the default behavior of the Point and Print feature in Windows. The change has been delivered via the KB5005033 and KB5005031 update and means that in order to install printer drivers, users will have to have administrative privileges.”

Neowin: Windows 7 and 8.1 Patch Tuesday updates are out, here’s what’s new

Neowin: Windows 7 and 8.1 Patch Tuesday updates are out, here’s what’s new. “It’s the second Tuesday of the month, which is when all supported Windows versions receive cumulative updates. This includes supported Windows 10 versions such as the three latest versions based on the same codebase, Windows 8.1, and Windows 7 users who have opted for extended security updates (ESU). Unlike Windows 10, Windows 7 and 8.1 users receive one update a month, with there being some exceptions for when there are critical vulnerabilities.”

Bleeping Computer: Windows PetitPotam vulnerability gets an unofficial free patch

Bleeping Computer: Windows PetitPotam vulnerability gets an unofficial free patch. “A free unofficial patch is now available to block attackers from taking over domain controllers and compromising entire Windows domains via PetitPotam NTLM relay attacks. The PetitPotam attack vector that forces Windows machines to authenticate against threat actors’ malicious NTLM relay servers using the Microsoft Encrypting File System Remote Protocol (EFSRPC) was disclosed last month by security researcher Gilles Lionel (aka Topotam).”