MS Security Bulletin Summary - April 2016
FYI...
- https://technet.microsoft.com/library/security/ms16-apr
April 12, 2016 - "This bulletin summary lists security bulletins released for April 2016...
(Total of -13-)
Microsoft Security Bulletin MS16-037 - Critical
Cumulative Security Update for Internet Explorer (3148531)
- https://technet.microsoft.com/library/security/MS16-037
Critical - Remote Code Execution - Requires restart - Microsoft Windows, Internet Explorer
Microsoft Security Bulletin MS16-038 - Critical
Cumulative Security Update for Microsoft Edge (3148532)
- https://technet.microsoft.com/library/security/MS16-038
Critical - Remote Code Execution - Requires restart - Microsoft Windows, Microsoft Edge
Microsoft Security Bulletin MS16-039 - Critical
Security Update for Microsoft Graphics Component (3148522)
- https://technet.microsoft.com/library/security/MS16-039
Critical - Remote Code Execution - Requires restart - Microsoft Windows, Microsoft .NET Framework, Microsoft Office, Skype for Business, Microsoft Lync.
Microsoft Security Bulletin MS16-040 - Critical
- https://technet.microsoft.com/library/security/MS16-040
Critical - Remote Code Execution - May require restart - Microsoft Windows
Microsoft Security Bulletin MS16-041 - Important
Security Update for .NET Framework (3148789)
- https://technet.microsoft.com/library/security/MS16-041
Important - Remote Code Execution - May require restart - Microsoft Windows, Microsoft .NET Framework
Microsoft Security Bulletin MS16-042 - Critical
Security Update for Microsoft Office (3148775)
- https://technet.microsoft.com/library/security/MS16-042
Critical - Remote Code Execution - May require restart - Microsoft Office, Microsoft Office Services and Web Apps
Microsoft Security Bulletin MS16-044 - Important
Security Update for Windows OLE (3146706)
- https://technet.microsoft.com/library/security/MS16-044
Important - Remote Code Execution - Requires restart - Microsoft Windows
Microsoft Security Bulletin MS16-045 - Important
Security Update for Windows Hyper-V (3143118)
- https://technet.microsoft.com/library/security/MS16-045
Important - Remote Code Execution - Requires restart - Microsoft Windows
Microsoft Security Bulletin MS16-046 - Important
Security Update for Secondary Logon (3148538)
- https://technet.microsoft.com/library/security/MS16-046
Important - Elevation of Privilege - Requires restart - Microsoft Windows
Microsoft Security Bulletin MS16-047 - Important
Security Update for SAM and LSAD Remote Protocols (3148527)
- https://technet.microsoft.com/library/security/MS16-047
Important - Elevation of Privilege - Requires restart - Microsoft Windows
Microsoft Security Bulletin MS16-048 - Important
Security Update for CSRSS (3148528)
- https://technet.microsoft.com/library/security/MS16-048
Important - Security Feature Bypass - Requires restart - Microsoft Windows
Microsoft Security Bulletin MS16-049 - Important
Security Update for HTTP.sys (3148795)
- https://technet.microsoft.com/library/security/MS16-049
Important - Denial of Service - Requires restart - Microsoft Windows
Microsoft Security Bulletin MS16-050 - Critical
Security Update for Adobe Flash Player (3154132)
- https://technet.microsoft.com/library/security/MS16-050
Critical - Remote Code Execution - Requires restart - Microsoft Windows, Adobe Flash Player
___
MS16-037: http://www.securitytracker.com/id/1035521
MS16-038: http://www.securitytracker.com/id/1035522
MS16-039: http://www.securitytracker.com/id/1035528
- http://www.securitytracker.com/id/1035529
- http://www.securitytracker.com/id/1035530
- http://www.securitytracker.com/id/1035531
- http://www.securitytracker.com/id/1035532
MS16-040: http://www.securitytracker.com/id/1035523
MS16-041: http://www.securitytracker.com/id/1035535
MS16-042: http://www.securitytracker.com/id/1035524
- http://www.securitytracker.com/id/1035525
MS16-044: http://www.securitytracker.com/id/1035536
MS16-045: http://www.securitytracker.com/id/1035538
MS16-046: http://www.securitytracker.com/id/1035541
MS16-047: http://www.securitytracker.com/id/1035534
MS16-048: http://www.securitytracker.com/id/1035544
MS16-049: http://www.securitytracker.com/id/1035546
MS16-050: http://securitytracker.com/id/1035527
___
- https://blogs.technet.microsoft.com/...pdate-release/
April 12, 2016
Security Advisories:
Microsoft Security Advisory 3152550
Update to Improve Wireless Mouse Input Filtering
- https://technet.microsoft.com/librar...y/3152550.aspx
April 12, 2016
April 2016 Office Update Release
- https://blogs.technet.microsoft.com/...pdate-release/
April 12, 2016 - "... This month, there are -23- security updates (2 bulletins) and -47- non-security updates. Security bulletins:
MS16-039: https://technet.microsoft.com/en-us/.../ms16-039.aspx
MS16-042: https://technet.microsoft.com/en-us/.../ms16-042.aspx
All of the security and non-security updates for April are listed in KB article KB3150264:
> https://support.microsoft.com/en-us/kb/3150264
A new version of Office 2013 Click-To-Run is available: 15.0.4815.1001
A new version of Office 2010 Click-To-Run is available: 14.0.7168.5000
For information on Office 365 Click-To-Run updates, see:
- https://technet.microsoft.com/en-us/mt465751
___
ISC Analysis
- https://isc.sans.edu/mspatchdays.htm...day=2016-04-12
___
Qualys Analysis
- https://blog.qualys.com/laws-of-vuln...16/04/12/22939
___
- https://www.us-cert.gov/ncas/current...urity-Bulletin
April 12, 2016
.
Patch -reliability- is unclear...
FYI...
Patch -reliability- is unclear...
It’s NOT time to install Windows or Office updates
> http://www.askwoody.com/2016/its-not...ffice-updates/
Apr 16, 2016 - "... Right now is a -bad-time- to install updates. Check back in a-week-or-two...
(Right now I’m waiting to see what MS does with KB3146706*, but other problems may well surface)..."
* https://support.microsoft.com/en-us/kb/3146706
Last Review: 04/12/2016 18:38:00 - Rev: 1.1
___
> http://www.askwoody.com/2016/win7-se...sing-problems/
Apr 16, 2016 - "... lots of reports of MS16-044/KB3146706 throwing errors – most commonly blue screen 0x0000006B – that go away if the patch is removed..." (-aka- BSOD).
___
MS16-039: Description of the security update for Office 2010
- https://support.microsoft.com/en-us/kb/3114566
Last Review: 04/13/2016 00:37:00 - Rev: 2.0
"... Known issues in this security update:
After you install this security update, you may receive an error message that resembles the following when you try to start an Office application:
'The Windows installer service could not be accessed.'
To resolve this problem, do one of the following:
Option 1 On systems that have update 3139923* installed, make sure that update 3072630** is also installed.
Option 2 Uninstall update 3139923..."
Applies to:
Microsoft Office 2010 Service Pack 2
* https://support.microsoft.com/en-us/kb/3139923
Last Review: 03/15/2016 17:15:00 - Rev: 1.0
** https://support.microsoft.com/en-us/kb/3072630
Last Review: 12/14/2015 19:59:00 - Rev: 2.0
:fear::fear:
Speed up Win7 scans for updates
FYI...
Speed up Win7 scans for updates
- http://www.infoworld.com/article/305...r-updates.html
Apr 19, 2016 - "If you're experiencing Windows 7 update scans measured in hours - if not days... there's a newly discovered trick that -may- reduce scan times to minutes. It's an -unlikely- combination of two updates... Try it and see how it works on yours":
> http://www.askwoody.com/2016/possibl...#comment-80655
"I needed to install a COMBINATION of the following updates on Win7 SP1 – KB3138612* AND KB3145739**. I found out that patching KB3145739 alone without patching the WU Client for Win7 SP1 is not enough...
Microsoft did -not- bother patching the WU client app for Vista SP2..."
Windows Update Client for Windows 7 and Windows Server 2008 R2
* https://support.microsoft.com/en-us/kb/3138612
Last Review: 03/08/2016 18:22:00 - Rev: 2.0
MS16-039: Description of the security update for Windows Graphics Component
** https://support.microsoft.com/en-us/kb/3145739
Last Review: 04/12/2016 17:54:00 - Rev: 1.0
... YMMV.
___
MS16-044: Security Update for Windows OLE
> https://support.microsoft.com/en-us/kb/3146706
Last Review: 04/12/2016 18:38:00 - Rev: 1.1
... now "unchecked" but still listed on 'Windows Update' list (??)
:spider:
MS releases -24- 'optional' patches
FYI...
MS releases 24 'optional' patches
- http://www.infoworld.com/article/305...s-patches.html
Apr 21, 2016 - "The official Windows Update list[1] says -24- patches were released on April 19. But it seems only two of them - KB 3138378* and 3140245** - were released that day, and the rest came out on April 20. The list itself wasn't updated until April 20... Three of the patches -fix-problems- with earlier security patches..."
1] https://support.microsoft.com/en-us/kb/894199
Last Review: 04/20/2016 19:08:00 - Rev: 1.0
Update for Journal.dll binary in Windows
* https://support.microsoft.com/en-us/kb/3138378
Last Review: 04/20/2016 04:55:00 - Rev: 3.0
A new registry key enables TLS 1.1 and TLS 1.2 to default to secure protocols in WinHTTP in Windows
** https://support.microsoft.com/en-us/kb/3140245
Last Review: 04/20/2016 04:43:00 - Rev: 3.0
(-More- listed w/details at the infoworld URL above.)
:fear::fear:
KB3148812 breaks WSUS server - DO NOT INSTALL / Buggy patch KB3114941
FYI...
KB3148812 breaks WSUS server - DO NOT INSTALL
- https://myonlinesecurity.co.uk/kb314...s-wsus-server/
22 Apr 2016 - "We are seeing loads of reports of KB3148812* -breaks- WSUS server. This update is supposed to prepare WSUS (Windows Software Update Services) to be able to install W10 updates from the WSUS server. It is described as Update enables ESD decryption provision in WSUS in Windows Server 2012 and Windows Server 2012 R2. Update enables ESD decryption provision in WSUS in Windows Server 2012 and Windows Server 2012 R2..."
Update enables ESD decryption provision in WSUS in Windows Server 2012 and Windows Server 2012 R2
* https://support.microsoft.com/en-us/kb/3148812
Last Review: 04/20/2016 04:45:00 - Rev: 3.0
What you need to know about KB3148812
** http://blogs.technet.com/b/wsus/arch...kb3148812.aspx
21 Apr 2016 - "... We try not to require post-update manual effort whenever possible, and unfortunately in this case it was unavoidable. This post describes the symptoms you’ll see, details how to resolve them, and then provides some background on this change... it requires some additional manual steps to be taken afterward in order to realign the moving parts of the system. More information on that will be available via the KB article and this blog later-this-week." ??
___
Hold Off on Deploying KB3148812 for Now
>> http://windowsitpro.com/patch-tuesda...-kb3148812-now
Apr 20, 2016
> http://blogs.technet.com/b/wsus/arch...kb3148812.aspx
___
Botched WSUS patch KB 3148812 throws errors 80244019, 80244008, 8024401f
Two days after the patch rolled out, Microsoft provided instructions for dealing with reported problems - but the new fixes don't work either
- http://www.infoworld.com/article/306...-8024401f.html
Apr 22, 2016 - "... Big problem: The new fixes don't work. A tirade of complaints on the TechNet forum said the manual fixes that Microsoft offered after the fact don't fix the patch. Win10 PCs attached to the patched WSUS server still couldn't see the server. Clients are reporting errors 80244007, 80244019, 80244008, and 8024401f..."
DO NOT roll out KB3148812
___
Buggy Office 2013 patch KB 3114941
Crashes in Lync and Outlook lead to Microsoft's -fourth- official recall of a Click-to-Run version of Office in the past four months
- http://www.infoworld.com/article/306...b-3114941.html
Apr 22, 2016
Lync 2013 (Skype for Business) or Outlook 2013 Crash
- https://support.microsoft.com/en-us/kb/3158521
Last Review: 04/22/2016 22:03:00 - Rev: 6.0
"Symptoms: After you install the April 5, 2016, update for Outlook 2013 (KB3114941*), you may experience random crashes of Microsoft Lync 2013 (Skype for Business) or Microsoft Outlook 2013, or both. When this issue occurs, you may find an Application Error...
Workaround:
Method 1: -Uninstall- the April 2016 Outlook update...
> https://support.microsoft.com/en-us/kb/3114941
Last Review: 04/22/2016 19:40:00 - Rev: 3.0
"Known issue: After you install this update, you may experience frequent crashes in Outlook 2013 and Skype for Business 2013. If this behavior occurs, uninstall the update...
> Click-to-Run based Installations: Revert to the March 2016 version of Office 2013 by following the steps in the following article in the Microsoft Knowledge Base:
2770432 How to revert to an earlier version of Office 2013 or Office 2016 Click-to-Run
- https://support.microsoft.com/en-us/kb/2770432
Last Review: 02/29/2016 08:38:00 - Rev: 6.0 "
:fear::fear:
Updated: April 2016 Office Update Release
FYI...
Updated: April 2016 Office Update Release
- https://blogs.technet.microsoft.com/...pdate-release/
Apr 29, 2016 - "A new build of Office 2013 Click-To-Run – 15.0.4815.1002 – is available now. This build fixes an intermittent -crash- that may occur in Outlook or Skype for Business (see KB 3158521*). To get this build, you can either wait until you are prompted to update, or go to
File > Account and select Update Options > Update Now."
* https://support.microsoft.com/en-us/kb/3158521
Last Review: 04/28/2016 17:11:00 - Rev: 7.0
Applies to:
Microsoft Lync 2013
Skype for Business 2015
Microsoft Outlook 2013
___
Win10 nagware patch KB 3035583 back on Win7 PCs
- http://www.infoworld.com/article/306...ows-7-pcs.html
May 3, 2016
Update installs Get Windows 10 app in Windows 8.1 and Windows 7 SP1
> https://support.microsoft.com/en-us/kb/3035583
Last Review: 03/23/2016 18:07:00 - Rev: 11.0
Applies to:
Windows 8.1 Pro
Windows 8.1
Windows 7 Service Pack 1
:fear:
MS Security Bulletin Summary - May 2016
FYI...
- https://technet.microsoft.com/en-us/...urity/ms16-May
May 10, 2016 - "This bulletin summary lists security bulletins released for May 2016...
(Total of -16-)
Microsoft Security Bulletin MS16-051 - Critical
Cumulative Security Update for Internet Explorer (3155533)
- https://technet.microsoft.com/library/security/MS16-051
Critical - Remote Code Execution - Requires restart - Microsoft Windows, Internet Explorer
Microsoft Security Bulletin MS16-052 - Critical
Cumulative Security Update for Microsoft Edge (3155538)
- https://technet.microsoft.com/library/security/MS16-052
Critical - Remote Code Execution - Requires restart - Microsoft Windows, Microsoft Edge
Microsoft Security Bulletin MS16-053 - Critical
Cumulative Security Update for JScript and VBScript (3156764)
- https://technet.microsoft.com/library/security/MS16-053
Critical - Remote Code Execution - May require restart - Microsoft Windows
Microsoft Security Bulletin MS16-054 - Critical
Security Update for Microsoft Office (3155544)
- https://technet.microsoft.com/library/security/MS16-054
Critical - Remote Code Execution - May require restart - Microsoft Office, Microsoft Office Svcs and Web Apps
Microsoft Security Bulletin MS16-055 - Critical
Security Update for Microsoft Graphics Component (3156754)
- https://technet.microsoft.com/library/security/MS16-055
Critical - Remote Code Execution - Requires restart - Microsoft Windows
Microsoft Security Bulletin MS16-056 - Critical
Security Update for Windows Journal (3156761)
- https://technet.microsoft.com/library/security/MS16-056
Critical - Remote Code Execution - May require restart - Microsoft Windows
Microsoft Security Bulletin MS16-057 - Critical
Security Update for Windows Shell (3156987)
- https://technet.microsoft.com/library/security/MS16-057
Critical - Remote Code Execution - Requires restart - Microsoft Windows
Microsoft Security Bulletin MS16-058 - Important
Security Update for Windows IIS (3141083)
- https://technet.microsoft.com/library/security/MS16-058
Important - Remote Code Execution - Requires restart - Microsoft Windows
Microsoft Security Bulletin MS16-059 - Important
Security Update for Windows Media Center (3150220)
- https://technet.microsoft.com/library/security/MS16-059
Important - Remote Code Execution - May require restart - Microsoft Windows
Microsoft Security Bulletin MS16-060 - Important
Security Update for Windows Kernel (3154846)
- https://technet.microsoft.com/library/security/MS16-060
Important - Elevation of Privilege - Requires restart - Microsoft Windows
Microsoft Security Bulletin MS16-061 - Important
Security Update for Microsoft RPC (3155520)
- https://technet.microsoft.com/library/security/MS16-061
Important - Elevation of Privilege - Requires restart - Microsoft Windows
Microsoft Security Bulletin MS16-062 - Important
Security Update for Windows Kernel-Mode Drivers (3158222)
- https://technet.microsoft.com/library/security/MS16-062
Important - Elevation of Privilege - Requires restart - Microsoft Windows
Microsoft Security Bulletin MS16-064 - Critical
Security Update for Adobe Flash Player (3157993)
- https://technet.microsoft.com/library/security/MS16-064
Critical - Remote Code Execution - Requires restart - Microsoft Windows, Adobe Flash Player
V2.0 (May 13, 2016): Bulletin revised to announce the release of update 3163207 to address the vulnerabilities included in Adobe Security Bulletin APSB16-15. Note that update 3163207 replaces the update previously released in this bulletin (update 3157993). Microsoft strongly recommends that customers install update 3163207 to help be protected from the vulnerabilities described in Adobe Security Bulletin APSB16-15.
Microsoft Security Bulletin MS16-065 - Important
Security Update for .NET Framework (3156757)
- https://technet.microsoft.com/library/security/MS16-065
Important - Information Disclosure - May require restart - Microsoft Windows, .NET Framework
Microsoft Security Bulletin MS16-066 - Important
Security Update for Virtual Secure Mode (3155451)
- https://technet.microsoft.com/library/security/MS16-066
Important - Security Feature Bypass - Requires restart - Microsoft Windows
Microsoft Security Bulletin MS16-067 - Important
Security Update for Volume Manager Driver (3155784)
- https://technet.microsoft.com/library/security/MS16-067
Important - Information Disclosure - May require restart - Microsoft Windows
___
- https://blogs.technet.microsoft.com/...pdate-release/
May 10, 2016
Microsoft Security Advisory 3155527
Update to Cipher Suites for FalseStart
- https://technet.microsoft.com/librar...y/3155527.aspx
May 10, 2016
May 2016 Office Update Release
- https://blogs.technet.microsoft.com/...pdate-release/
May 10, 2016 - "... This month, there are -15- security updates (1 bulletin) and -44- non-security updates.
Security bulletins: MS16-054: https://technet.microsoft.com/en-us/.../ms16-054.aspx
All of the security and non-security updates for March are listed in KB article 3158453:
> https://support.microsoft.com/en-us/kb/3158453
A new version of Office 2013 Click-To-Run is available: 15.0.4823.1002
A new version of Office 2010 Click-To-Run is available: 14.0.7169.5000
For information on Office 365 Click-To-Run updates, see Office 365 client update branch releases:
> https://technet.microsoft.com/en-us/mt465751
May 2016 Non-Security Office Update Release
- https://blogs.technet.microsoft.com/...pdate-release/
May 3, 2016
___
MS16-051: http://www.securitytracker.com/id/1035820
MS16-052: http://www.securitytracker.com/id/1035821
MS16-053: http://www.securitytracker.com/id/1035822
MS16-054: http://www.securitytracker.com/id/1035819
MS16-055: http://www.securitytracker.com/id/1035823
MS16-056: http://www.securitytracker.com/id/1035824
MS16-057: http://www.securitytracker.com/id/1035825
MS16-058: http://www.securitytracker.com/id/1035834
MS16-059: http://www.securitytracker.com/id/1035832
MS16-060: http://www.securitytracker.com/id/1035833
MS16-061: http://www.securitytracker.com/id/1035837
MS16-062: http://www.securitytracker.com/id/1035841
MS16-064:
MS16-065: http://www.securitytracker.com/id/1035842
MS16-066: http://www.securitytracker.com/id/1035843
MS16-067: http://www.securitytracker.com/id/1035844
___
ISC Analysis
- https://isc.sans.edu/mspatchdays.htm...day=2016-05-10
2016-05-10
Qualys Analysis
- https://blog.qualys.com/laws-of-vuln...day-may-2015-2
May 10, 2016
.
MS Security Bulletin MS16-064 V2.0
FYI...
MS Security Bulletin MS16-064 - Critical
Security Update for Adobe Flash Player (3157993)
- https://technet.microsoft.com/library/security/MS16-064
Critical - Remote Code Execution - Requires restart - Microsoft Windows, Adobe Flash Player
V2.0 (May 13, 2016): Bulletin revised to announce the release of update 3163207 to address the vulnerabilities included in Adobe Security Bulletin APSB16-15. Note that update 3163207 replaces the update previously released in this bulletin (update 3157993). Microsoft strongly recommends that customers install update 3163207* to help be protected from the vulnerabilities described in Adobe Security Bulletin APSB16-15.
> https://support.microsoft.com/en-us/kb/3163207
Applies to:
Windows 10
Windows 10 Version 1511
Windows Server 2012 R2 Datacenter
Windows Server 2012 R2 Standard
Windows Server 2012 R2 Essentials
Windows Server 2012 R2 Foundation
Windows 8.1 Enterprise
Windows 8.1 Pro
Windows 8.1
Windows RT 8.1
Windows Server 2012 Datacenter
Windows Server 2012 Standard
Windows Server 2012 Essentials
Windows Server 2012 Foundation
:fear::fear:
MS Updates revisions - 5.18.2016
FYI...
MS Security Bulletin MS16-035 - Important
Security Update for .NET Framework to Address Security Feature Bypass (3141780)
- https://technet.microsoft.com/en-us/...urity/MS16-035
V2.0 (May 10, 2016): Revised bulletin to announce the security updates for Microsoft .NET Framework 4.5.2 and Microsoft .NET Framework 4.6/4.6.1 have been rereleased to address issues with certain printing scenarios. The rereleases are available via Windows Update and the Microsoft Update Catalog. Note that this re-release applies only to LDR (Limited Distribution Release) customers. GDR (General Distribution Release) customers are not affected. For more information about the specific security updates that were re-released, see the Update FAQs section of this bulletin (MS16-035).
V2.1 (May 18, 2016): Revised bulletin to clarify the distribution audience for the Microsoft .NET Framework 4.5.2 and Microsoft .NET Framework 4.6/4.6.1 security updates that were re-released on May 10, 2016, as follows: The security updates for Microsoft .NET Framework 4.5.2 have been re-released to Limited Distribution Release (LDR) customers only. The security updates for Microsoft .NET Framework 4.6/4.6.1 have been re-released to all customers.
___
MS Security Advisory 2880823
Deprecation of SHA-1 Hashing Algorithm for Microsoft Root Certificate Program
- https://technet.microsoft.com/en-us/...curity/2880823
V2.0 (May 18, 2016): Advisory updated to provide links to the current information regarding the use of the SHA1 hashing algorithm for the purposes of SSL and code signing. For more information, see Windows Enforcement of Authenticode Code Signing and Timestamping*.
* http://social.technet.microsoft.com/...estamping.aspx
___
Convenience rollup update for Windows 7 SP1 and Windows Server 2008 R2 SP1
- https://support.microsoft.com/en-us/kb/3125574
Last Review: 05/17/2016 17:38:00 - Rev: 1.0
Cautionary note - see: "... Known issue in this convenience rollup..."
> https://blogs.technet.microsoft.com/...ows-7-and-8-1/
May 17, 2016
MSI repair doesn't work when MSI source is installed on an HTTP share in Windows
- https://support.microsoft.com/en-us/kb/3139923
Last Review: 05/17/2016 19:43:00 - Rev: 3.0
>> http://www.infoworld.com/article/307...-updating.html
May 18, 2016
:fear::fear:
MS 'tactics' upgrading people to Win10
FYI...
MS 'tactics' upgrading people to Win10
- https://bgr.com/2016/05/25/microsoft...upgrade-trick/
May 25, 2016 - "For months now, Microsoft has done everything in its power to shove Windows 10 down your throat. The 'free' update is mandatory at this point, and we’ve heard from many Windows users who discovered their computers updated to the newest version automatically, -without- their knowledge or explicit permission. Microsoft kept offering excuses for these annoying occurrences, and even said it will stop pushing upgrades to Windows users refuse to hop aboard the Windows 10 train. Now, the company has come up with its most evil trick yet to get you to update your PC to Windows 10, and it’s based on the same methodology hackers use to trick people into installing malware. 'Pop-ups' often appear when you visit 'malicious' websites and when you click the “X” to close them, malware is installed on your computer. Well, Microsoft just tweaked its 'Windows 10 upgrade alert pop-up' so that the update is triggered when clicking the X, PC World explains:
> http://www.pcworld.com/article/30734...upgrading.html
May 22, 2016
>> https://boygeniusreport.files.wordpr...opup-alert.jpg
The Get Windows X app that pushes the update prompt has recently changed the behavior of the “X” button. Earlier, users would have been able to dismiss the pop-up by pressing the button, as you would expect. But you can’t do that anymore. Pressing the X now has a different function. It tells the company you’re happy to have your computer updated at the time shown inside the pop-up. The only way to get rid of it is to change the update time manually. But of course, that’s not intuitive at all and many people are about to be tricked into upgrading. The trick is disingenuous at best, since Microsoft isn’t technically doing anything wrong. It’s just turning the function of the X button from “close and do nothing” to “close and upgrade later.” You know, without explaining this tiny change to anyone. Come July 29th, Microsoft will stop prompting users to upgrade, Business Insider reminds us*, so make sure you change your Windows 10 upgrade time to August or later!"
* http://www.businessinsider.com/windo...ading-x-2016-5
>> https://www.youtube.com/watch?v=VMPeTrHNX1U
Apr 27, 2016
>> http://core0.staticworld.net/images/...62456-orig.png
May 22, 2016
???
>> http://windowssecrets.com/patch-watc...or-windows-10/
May 25, 2016
:fear::fear::fear: