Microsoft recently released updates for their Windows operating systems, fixing 172 security vulnerabilities. Among these are two serious bugs that are already being targeted by cyber attackers. This update also marks the last batch of security patches for Windows 10, as the operating system reaches the end of its support lifecycle.
One crucial flaw is tied to a modem driver called Agere Modem, which has been part of Windows for over 20 years. Microsoft has removed this driver entirely from Windows to protect users from ongoing attacks.
Another significant concern is an elevation of privilege vulnerability in Windows Remote Access Connection Manager (RasMan). This service manages remote network connections and has been a repeated concern on Patch Tuesdays for over two years. As Satnam Narang from Tenable points out, this is the first time the flaw has been exploited in the wild.
Microsoft Office users should also be aware of vulnerabilities that exploit the “Preview Pane.” With these, attackers can compromise systems simply by enticing users to preview malicious documents in their emails. This underlines the importance of being cautious with email attachments.
Adding to the intrigue, Microsoft has updated Microsoft Word to automatically save new documents to OneDrive. While some may welcome this change, others may prefer to disable it for privacy reasons. Fortunately, users can adjust this setting easily.
In terms of potential risks, another vulnerability, CVE-2025-59287, affects the Windows Server Update Service. It has a concerning threat score of 9.8 out of 10. While Microsoft hasn’t reported any active exploitation, this flaw could allow unauthorized users to access essential system areas without authentication.
For those still using Windows 10, there are alternatives to consider. Microsoft offers an Extended Security Updates (ESU) program. For a fee, users can continue to receive critical security patches for another year. This can cost around $30 without a Microsoft account, or it may be free if the PC is registered with one. However, enrolling doesn’t offer other fixes or support.
If transitioning to Windows 11 feels daunting, users might want to explore installing Linux. A popular choice is Linux Mint, known for its user-friendly interface. It works well on older systems, making it a suitable option for many. Linux Mint also includes LibreOffice, a suite that can handle Microsoft Office files seamlessly.
If you’re unsure about switching to Linux, you can try it from a USB drive without making changes to your current system. This trial run allows users to explore the operating system without risk. If something goes wrong, simply rebooting will restore your setup.
For a comprehensive overview of all the updates and fixes, check the SANS Internet Storm Center, which details everything by urgency and severity.
As always, if you encounter issues during this update or have questions, feel free to share your experiences in the comments.
Source link
