Updates 2025-11-11

Posted on November 11, 2025 by Shawn K. Hall

Happy Veteran’s Day, Folks!

Today is Patch Tuesday for November, 2025.

If your Windows 10 computer can not be upgraded to Windows 11 then you should either replace your device or use the Windows 10 ESU program to get another year out of it.

Windows 11 25H2 is now available and Windows 11 23H2 and older are no longer supported. Treat Windows 11 25H2 as beta software and wait a few months before upgrading.

macOS 26 Tahoe is now available and macOS 13 Ventura and older are no longer supported. Treat macOS 26 as beta software and wait a few months before upgrading.

There were 750+ major hacks, and over 650 application updates this month. It’s a relatively small month, with about 4.0 GB of updates for most users.

This Month in Technology

5CA, Abilene Family Medical Associates, Accord Carton, Adichunchanagiri Institute Of Technology, Adobe Commerce, Adobe Experience Manager, Adore Children and Family Services, Advanced Delivery Services, Advanced Installer, Afghan Ministry of Defence, AGFA, Agri-Food and Biosciences Institute (AFBI), (at least) 2/3rds of AI companies, Air Arabia, Al Ahly Leasing & Factoring Company, Al Rimal Group, Albanese Physical Therapy, Albert Heijn, Alibaba Cloud Workspace Client, Alight Solutions, Alios Finance Group, Alissa Group, Alitech, Alpha Omega Winery, LLC, Altimedia, Amazon Smart plugs, AMD CPU VM (RMPocalypse), AMD CPUs (TEE.fail), American Airlines, American PowerNet, Ami Bearings, Anderson-Moore Construction, Android, ANIA KRUK, Ansell, Antigo Construction, Apache OpenOffice, Aphase II, ApleNet, Applied Technology Resources, Aptura Group & Central Indiana Hardware, ArcGIS, Armed Forces of the Philippines, Artistica Rubens, Asahi Group Holdings, Ashlar-Vellum Cobalt, Askul, ASP.NET Core, Assemblée Nationale, Astra Nova, AT&T Careers, Athol Hospital, ATIRG, Atrium Living Centers, Auckland City, Aunt Martha’s Health and Wellness, Aussie Fluid Power, Autodesk AutoCAD, Autodesk On-Demand Install Services, Automated Logistics Systems, Autorotor, Avast, AVG, Axelson, Williamowsky, Bender & Fishman, Badger Popcorn and Concession Supply, BAE Systems SOCET, Balancer, Bank3, BARCO Rent-A-Truck, Batta Fulkerson Law Group, Bay West, Bayu Buana Travel, Beijing Time Systems, Bell Engineering, Bellflower Unified School District, Benda Grace Stulz, Benefitelect, Benworth Capital Partners, Bergman Dacey Goldsmith, Berkeley Research Group, LLC, Bestlog Logistic Solutions, Beta Dyne, Beverly Hills Oncology Medical Group, Bicing, BIND DNS, BK Technologies, Black Hills Bentonite, Blavity Inc, blockchain smart contracts (EtherHiding), Blue Cross Blue Shield of Montana, BMP Worldwide, Boilersource, Bolt Electricity, Oil & Gas, Bovavet, Boyer, BRDSoft, Bridgehead IT, Brihta, Bristol Student Union, Buffalo Games, Edaron, Ceaco, Cabinets 2000, LLC, Canada water and energy facilities, Canadian Tire, Canon imageCLASS MF654Cdw, Cape Dara Resort Pattaya, CapitalPlus Exchange, Castilla, Cavalry Consulting, CCI Tax Pros, CDS, CentOS Web Panel, Central Jersey Medical Center, Central Plate Services Limited, CESO, CEVA Logistics, CHDFS, Chi Rho Chiropractic, Chiapas Health Secretariat, Christina Development, Cisco ASA firewalls, Cisco FTD firewalls, Cisco IOS XE, Cisco networking devices (SNMP), Cisco Snort, Cisco Unified Contact Center Express (UCCX), City of Gloversville, NY, City of Houston Fire Department, TX, City of La Vergne, TN, City of Ottawa, Canada, City of Riviera Beach, FL, City of Sugar Land, TX, Clackamas Community College, Claimlinx, Clarion Safety Systems, Claude Desktop, ClearCare Periodontal & Implant Centre, Co-op Credit Union, Cocamar Cooperativa Agroindustrial, Cohen’s Fashion Optical, Coilplus, Cole Huber, LLP, Collins Aerospace, Colombia’s CNSC, Comcast, Community Unit School District 201, Computer World WLL, Conduent Business Services, LLC, ConnectWise Automate, Consolidated Restaurant Operations, ConvExx, Cooperativa Esercenti Farmacia Scrl, Core Resources Inc, Crave Management, Crenshaw Community Hospital, Crown Automotive Sales, Cursor, CyPark, D Magazine Partners, Dairy Farmers of America, Dakota Dostavka, Darvin Furniture, DataChain, Dayal Metal Containers Factory LLC, DCS Technologies Inc, Deco Dental, Defensoría del Pueblo de Colombia, Dekalb County, GA, Dell BSAFE Crypto-C, Dell CloudLink, Delmia Apriso, Delta Electronics ASDA-Soft, Delta Electronics CNCSoft-G2, Delta Electronics DIAScreen, Delta, Dental Society of La Plata, Dentsu Merkle, Dermatology Associates, Designs for Vision, Desjardin Bank Group, Desjardins, Devolutions, Dilosa Food Companies, Dimarco Group LLC, Disseny Dental, Django, dmwapp, Docker runC, Doctor Alliance, Docurail, Dodo, Doha British School, DomeWatch, Domy, Double Oak Construction, Dublin Airport, DUC App, Dulcich, Dundee City Council, Durvet, E-First Aid Supplies, East Jefferson General Hospital, Eastern Cape Department of Human Settlements, South Africa, Easterseals Arc of Northeast Indiana, Echo Lake Foods, Econo-Pak, Eligibility Tracking Calculators, Elliott Tax Service, Elmcrest Children’s Center, Encore Repair Services, ENEA, Enem Nostrum Remedies, Enessance Holdings, Engineered Profiles, Entr’ouvert Lasso, Envoy Air, Episource, LLC, Ernst & Young, Essential Cabinetry Group, Essilor of America, Eticex Hosting, evernote-mcp-server, Evogence, Evolve Mortgage Services, over 266,000 F5 BIG-IP instances, FA Servers, Fast Freight, Fatih Turizm, Fellou browser, Fidelity Pension Managers, Nigeria, Figment POS, FinWise, Fleet Landing, Flegenheimer International, Flock, Florida Marking Products, Florida-Spectrum Environmental Services, Form Energy, Inc, Fort Wayne Medical Education Program, Fouad Alghanim & Sons Group of Companies Holding, Fountains Condominium Operations, Framework Secure Boot, Francehopital, Fujifilm Biotechnologies, Fédération Internationale de l’Automobile (FIA), G & H Distributing, G-Plans, G-Xchange, Inc, G. Hauswirth Architects, Galine, Frye, Fitting & Frangos, LLP, Gardiners Solicitors, Garvin Promotion Group, Gas Generator Solutions, Gateworks Corporation, GB Mail, GCC Productions Inc. Fade In, GeBePro, Gemini Group, General Micro Systems (GMS), George E. Weems Memorial Hospital, Gerar, Gericke AG, Gerson & Schwartz Accident & Injury Lawyers, GIMP, Gittens Healthcare, Gladinet CentreStack, Gladinet Triofox, Global Go, GlobalLogic Inc, Goglia Nutrition LLC, Goodfellow & Schuettlaw, Google Chrome, Google’s Find Hub, Grande Prairie Public Library, Greater Mental Health of New York, Gulf Warranties LLC, Gullco International, Gun Accessory Supply, Habib Bank AG Zurich, Hall Estill, Harmony Brands, Harvard University, Health and Vitality Center, Health Dimensions Group, Healthy Living Market and Café, Heart South Cardiovascular Group, Heartland Health Center, Heimbrock, Heimdall Data, HeiTech Padu Berhad, Hello Cake, Hematology Oncology Consultants, Henrietta Ezeoke Law Firm, Henry Raymond & Thompson, Heywood Hospital, Hikvision iSecure Center, Hitzinger, HMP Global, Holtz Office Support, Home Assistant Green, Hometown Credit Union, Hongji Metal, Hosteur, HSBC USA, Huber, Erickson & Bowman, Huddle01, Hyundai AutoEver America, I-Tek Medical Technologies, IBEW Local 697, iCare Software, ICET Studios, ICTBroadcast, IKAD, Il Manifesto, Imagicle, Indian Spring Country Club, ING Bank, Instituto Nacional de Oftalmologia, Peru, Integrated Silicon Solution, Inc, Intel CPUs (TEE.fail), International Social Survey Programme (ISSP), International.com, Invacare, Ioxo & Stream Computers, IPrimus, Iran’s Ravin Academy, Iraqi Electoral Commission, IREM companies, Irwin Car, Izaki Group Investments, J & S Electrical And Lighting Supply, JA Jennings, Jack’s Family Restaurants, JavaScript expr-eval, Jazeera Airways, JC Auto Accident Law Firm, Jean-Georges, Jewett-Cameron, JFS Wealth Advisors, Kansas City Police Department, KS, Karnes Electric Cooperative, Kasmawi, Kaufman & Stigger, Kaufman County, Texas (twice), Kearney Public Schools, NE, Kelowna airport, BC, Kettering Health, Khan and Associates CPA, Khatami Law, KHL Printing, Kipp & Christian, Kirby Corporation, KIS Asset Evaluation, KISS FM, Kitchen Design Concepts, KLA Instruments, Klae Construction, Kobayashi, Koch & Co, Koch & White Heating & Cooling, Koncise Company, Kottster Server, Krita, KT Corp, Kubernetes runC, Kudela & Weinheimer, Kumwell, Kwik Mix Materials, LaBonne, Land Title Guaranty, Lanscope Endpoint Manager, LaRosa’s Pizzeria, Latona Trucking, 42 Latvian municipalities, Laxmi Niwas Palace, Legacy Health, Legacy Manufacturing, Legal Aid Agency, Lexmark CX532adwe, LG U+, LGAA LLC, Lidera Network, LifeBridge Health, Limocar, Lincoln University, LMHT Associates, LNER, Logitech, Long Island Weight Loss Institute, Lorber, Greenfield & Polito, LLP, Louvre Museum, LP Insurance, LuBian, Ludwigshafen, Germany, Luis Garratón, Lumma Stealer, Luxury Escapes, Lüks Artvin Seyahat, M-TIBA, Mack Energy, Magna Hospitality Group, Mailing.com, Maine Course Hospitality Group, Mainetti UK, Maki Building Centers, Malibu Boats Australia, Manassas City Public Schools, Mango, Mango’s Tropical Cafe, Manko Window Systems, Marine Turbine Technologies, Marmotech, Matlusky, Max.ru, Mayco International, McDonald Building, McIntosh Labs, Mciver Engineering & Controls, Mecanex USA, MedImpact, Meinhardt Group, Meritage Hospitality, Metal Pros, Methodist Homes of Alabama & Northwest Florida, MetroWest Community FCU, Mexican Bank Debtor, Michael R. Schwartz, MD, FACS, Microbix Biosystems, Microsoft SharePoint, Microsoft Teams, Microsoft Windows, Middlesex Appraisal Associates, Middlesex Endodontics, Miljödata, Mission City Community Network, Inc, Modernizing Medicine (ModMed), Mold In Graphic Systems, Monsta FTP, Montage Marketing Services, Moonlight Basin, More Than Gourmet, Morris Communications Company LLC, Motex Lanscope Endpoint Manager, Mountain West, Moxa security appliances, MS Metal Solutions, MSC-Wireless, Mt. Baker Imaging, Muji, MusikComputer GmbH, MyCardiologist, MyVidster, NAHGA Claims Services, NasDem Party, National Coatings, National Informatics Centre (NIC) Kavach, National Institute of Administration, Navigator Business Solutions, Nelligan White Architects, NetcoreCloud, Netgate pfSense CE, New Toyo International Holdings Ltd, Newk, Newmark Healthcare Services, Nikkei, Nintendo, NJ Lenders Corp, Noble Compaña de Seguros, Nobu Restaurants, Noroaco, Northern Light Technologies, Northern Montana Health Care (NMHC), Northwest Radiologists, NurseSpring, NVIDIA CPUs (TEE.fail), OB-GYN Associates, OCI International Holdings, Oglethorpe, OMS, One Agency Eastlakes, oobabooga, OpenAI Assistants API, OpenAI Atlas browser, OpenEyes Technologies, Opera Neon, Oracle E-Business Suite, Oracle VirtualBox, Origin Energy, Origin, Oscars Group, Ouranos, Outcomes One, Inc, OYO Hotel & Casino Las Vegas, Palacios Marine Industrial (PMI), Palomar Health Medical Group, Pan-American, Pangea, Paris Rétina Vision, Paterson & Dowding, Patron Insurance, Patterson-Schwartz & Associates, Inc, PCB Uitvaartzorg, People’s Postcode Lottery, PeopleGuru Holdings, Inc, Peppermint Properties, Peraso, Perplexity Comet, Phia Group, Phillips Hue Bridge, Phillips Printing Company, Phoenix Village Dental, PHP CGI, PHPUnit, Pine Pharmaceuticals, Pinto Coates Kyre & Bowers, Pittsburgh Gastroenterology Associates, Pixar OpenUSD, Plastics Extrusion Machinery, Platinum Wines & Spirits, PLP SoCal, Pocatello Ready Mix, Polymarket, Ponzini SPA, Post Ranch Inn, PQCNC Hospitals, Precision Machined Products, Prime Dental, Pritchard Brown & Chillicothe Metal, Productive Tool Products, Professional’s Choice Sports, Propertyfinder / PropSpace CRM, Prosper, Prova, Provincial Department of Health Services Sri Lanka, Pruksa Holding, PT Kalimantan Prima Persada, Pulse Urgent Care Center, Punjab Forensic Science Agency, Qatar Gas and Tar Company, Iran, QNAP Qhora-322, QNAP TS-453E, Radiant Capital, Ravin Academy, React Native CLI, Real Estate Specialists, Reese Group, Regency Specialist Hospital, Resana, Revive Adserver, Rex-Hide, Ribbon Communications, Richmond Behavioral Health Authority, Riddell Law Group, Right at Home, Ringmor, Rios Espinosa, Ritz, Clark & Ben-Asher, River City Eye Care, RKA Consulting Group, Roblox, Rockhill Women’s Care, Rockstar, Rogers Mechanical, Romanian National Penitentiary Association (ANP), Ronemus & Vilensky, Royal Thai, RPI Roofing, Sai Mai Hospital, Saigon Industrial Service, Samera Health, Samsung Android, Samsung Galaxy S25, San Benito County, CA, San Bernard Electric Cooperative, San Diego Automotive Museum, Santander Bank, SAP Solution Manager, Sarulla Operation, Saturday Spotlight, Saturn Machine, Sauter Modulo, Saxun, Scales Sales & Service, Scouts Canada, Seasons Federal Credit Union, Sedgebrook, Selig Enterprises, Sellars Absorbent Materials, Sensational Teeth, Sensory, Servicios del Valle del Fuerte, Mexico, Seward County, KS, Shadrix & Parmer, Shands Elbert, Shaparak, Shelbyville Police Department, Shollenberger Januzzi & Wolfe, SHRM New Mexico, SIAD, Sierra Vista Hospital & Clinics, Signet Armorlite, Silverado Contractors, Inc, Silverlake Axis, Simon Property Group, Sincros Lab, SK Shieldus, SK-Telecom, Snipe-IT, Soapy Joe’s Car Wash, Soft Serve, Software Unlimited Corp, Sold Real Estate, SonicWall, Sonos Era 300, Sotheby’s, SourceOne Corporation, South African Revenue Service (SARS), South Alabama Regional Planning Commission, South Atlanta Medical Clinic, Speedmais, Spijkermat, Spindletop Center, Sports Medicine and Orthopaedics, Sprague & Jackson, St Stephen’s International, Stephenson’s Rental Services, Stowaway Storage, Studio Corvo Parma, Sullivan Interests, Summit Golf Brands, Summit Hotel Properties, Sunnyvale Elementary School District, Super Quik, Super Value, SuperGrosz, Superior Air Parts, Superior Court of California for the County of San Joaquin, Superior Linen Service, Svenska Kraftnät, Sydney Centre for Ear, Nose & Throat, Sylvester Roofing, SymbolTransport, Synnovis, Synology ActiveProtect Appliance DP320, Synology BeeStation Plus, Synology CC400W, Synology DiskStation DS925+, Systems Integrated, Tass Meister Patent Firm, Tavo Packaging Inc, TBM Service Group, TELACU Property Management, Inc, TENAX Law Group PC, Tenryu America, Tex-Tube, Thailand’s Department of Agricultural Extension (DOAE), The Blood and Marrow Transplant Group of Georgia, The Fence People, The Gerson, The Job Shop, The Laxmi Niwas Palace, The Phia Group, The Thayer Hotel, The Union League of Philadelphia, ThinkPHP, Thompson Dorfman Sweatman, Time Equities, TISZA Világ, TMF Logistics, Toys R Us Canada, TP-Link Festa routers, TP-Link Omada gateways, Trans7, Travere Therapeutics, Tri City Foods, Tri-Century Eye Care, Trojan Construction & Holding Group, Truffle Security Co. TruffleHog, Truro Cannabis, Tryon Distributing, Ubiquiti AI Pro, 8 UK Ministry of Defence bases, UK National Health Service (NHS), UniCursos, Unigym Gatineau, UnitedLayer, University of Cádiz, University of Pennsylvania, UrbanX, US Attorneys Office (USAO), US Congressional Budget Office (CBO), US Department of Homeland Security (DHS), US Department of Justice (DOJ/FBI), US Federal Aviation Authority (FAA), US Immigration and Customs Enforcement (ICE), US National Security Administration (NSA), USB Memory Direct, UScraft, Vanan Online Services, Vascara, Vietnam, Veeam Agent, Verdugo Hills Dental, Verisure, Vertikal Systems, Vexels, Vibra Hospital, Victorian Chemical, Victory Christian Center, Village of New Lenox, Ville de MontLaurier, Vinomofo, Vitalmex, VIZ Media, Volkswagen, Vrata Tech, VZW Avalon, Wakefield & Associates, WarmBlue, Washington Post, WatchGuard Firebox, WatchGuard Fireware, Watsonville Community Hospital, Waveny LifeCare, We R Family Foundation, Weber, Weintraub Traub Tracy & Virk Cra’s LLP, West Welch Reed Engineers, Western Sydney University, WhatsApp, Wheale Law Firm, Windows Server Update Service (WSUS), Windsurf, Winholt Equipment Group, Wisconsin Department Of Corrections, Wits University, Wood PLC, WordPress Anti-Malware Security and Brute-Force Firewall plugin, WordPress Gravity Forms plugin, WordPress GutenKit plugin, WordPress Hunk Companion plugin, WordPress JobMonster theme, WordPress King Addons for Elementor plugin, WordPress Post SMTP plugin, WordPress Slider Revolution plugin, Workers Compensation Insurance Rating Bureau of California, Wright Tool, Wright-Gardner Insurance, X.Org Server, Xortec, Xubuntu website, XWiki, Yaesu, Yas Takaful Dubai Insurance, Zacho-Lind, Zierick Manufacturing Corporation, Zoho ManageEngine, Zoom Workplace, and ZZ Dats have reported hacking or compromises this month.

Amazon Web Services (AWS US-EAST-1), Microsoft 365, Microsoft Azure (more than once), Microsoft Security Response Center, and YouTube have suffered from outages this month.

Internet access throughout Bermuda, Cameroon, Dominican Republic, Italy, Jamaica, Kenya, Pakistan, Philippines, Tanzania, and Ukraine has been blocked our down for extended periods.

Last months updates broke Cisco Duo, HP OneAgent / Microsoft Entra ID, Microsoft Internet Information Server (IIS), Microsoft Outlook, smart card authentication, sprotect.sys compatibility, USB mouse and keyboard in WinRE, wallpaper managers, Windows 11 Media Creation Tool, Windows Task Manager and Start menu, and the Windows Update Hotpatch service.

There’s a new type of worm out there. GlassWorm uses a combination of Solana, UTF-concealed code, and remote access trojans to ensure that it’s impossible to shut down or kill from the top-down while still being fully manageable by the people behind it. In addition, it uses compromised developer accounts to propagate by uploading itself to their repositories in order to grow the botnet to new audiences. This signals the first major use of these three aspects in combination and the first software of its kind to operate with no centralized command-and-control server. This evolution is going to cause a massive change in how we deal with security incidents and how we protect our devices.

Half of all the satellites in orbit are exposing your information in clear text.

Nearly 2 billion accounts from hundreds of thousands of different platforms have been disclosed in a credential stuffing database (Synthient). While this appears to mostly be the result of stealer logs (the result of hacked devices), there is a lot of duplication in the data which demonstrates a lot of password re-use and thus a high chance of other accounts being abused as a result.

The boss of a defense contractor, Trenchant, has been selling exploits to foreign governments.

The Louvre Museum security system was “hacked” in order to enable thieves to steal the crown jewels. It’s hardly hacking when the password was so stupid.

“Beware that, when fighting monsters,
you yourself do not become a monster.”
— Friedrich Nietzsche

Now for the good news:

SpaceX disabled 2,500 Starlink terminals in Asia to curb their use by scammers.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is relatively small this month. The typical computer should see roughly 4.0 GB in updates today. Let’s get started.

Microsoft released 41 updates to address 68 vulnerabilities in Azure Monitor Agent, Customer Experience Improvement Program (CEIP), Dynamics 365 Field Service (online), GitHub Copilot and Visual Studio Code, Host Process for Windows Tasks, Microsoft Configuration Manager, Microsoft Dynamics 365 (on-premises), Microsoft Edge, Microsoft Graphics Component, Microsoft Office, Microsoft Office Excel, Microsoft Office SharePoint, Microsoft Office Word, Microsoft Streaming Service, Microsoft Wireless Provisioning System, Multimedia Class Scheduler Service (MMCSS), Nuance PowerScribe, OneDrive for Android, SQL Server, Storvsp.sys Driver, Visual Studio, Visual Studio Code CoPilot Chat Extension, Windows Administrator Protection, Windows Ancillary Function Driver for WinSock, Windows Bluetooth RFCOM Protocol Driver, Windows Broadcast DVR User Service, Windows Client-Side Caching (CSC) Service, Windows Common Log File System Driver, Windows DirectX, Windows Hyper-V, Windows Kerberos, Windows Kernel, Windows License Manager, Windows OLE, Windows Remote Desktop, Windows Routing and Remote Access Service (RRAS), Windows Smart Card, Windows Speech, Windows Subsystem for Linux GUI, Windows TDX.sys, Windows WLAN Service, and MSRT. This includes security updates. A reboot is required.

Oracle released 374 security updates this quarter to address 170 vulnerabilities in 29 product lines.

Apple released updates for iOS 18.7.2, iOS 26.1, iPadOS 18.7.2, iPadOS 26.1, macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS Tahoe 26.1, Safari 26.1, tvOS 26.1, visionOS 26.1, watchOS 26.1, and Xcode 26.1. This includes security updates. Use Apple Software Update to install the most current versions.

iOS 18.7.2 and 26.1 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 18.7.2 and 26.1 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 26.1 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 26.1 is a security update. Use System, Software Update to install the most current version.

visionOS 26.1 is a security update. Use System, Software Update to install the most current version.

Google ChromeOS 141.0.7390.115 and ChromeOS LTS 138.0.7204.296 are security updates. Use Menu, Help, About to install the most current version. A reboot is required.

Fedora 43 updates libraries, adds Hare support, changes UEFI+MBR requirements, and enables automatic updates. This is not a security update.
https://getfedora.org/en/workstation/download/

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Tahoe (26.x) means that macOS Ventura (13.x) and older are no longer supported. If you can not install at least macOS Sonoma (14) on your Mac then you should immediately remove your device from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The current — and final — release of the Windows 10 (v22H2) is end of life (EOL). All non-LTS versions of Windows 10 without ESU are now out of support, with the sole alternatives being to upgrade to Windows 11 or enable Extended Service Updates (ESU). If you aren’t sure whether you are using LTS, you aren’t. Enable the ESU now.

The current release of the Windows 11 (v25H2) is very large (30% larger than any previous release) so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is now stable and can be upgraded to if your hardware supports it. If not, switch to Linux (Mint is nice) or replace your computer.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, drivers for hardware you’re not using (like old printers), and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with a SaferPC Subscription and we will install updates each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 25.10.2 is a security update.
https://www.amd.com/en/support

BullZip PDF Printer 2025.2.0.2990 is a security update.
https://www.bullzip.com/products/pdf/info.php#download

Epson ET-2720 2.100.00 is a security update.
https://epson.com/Support/Printers/All-In-Ones/ET-Series/Epson-ET-2720/s/SPT_C11CH42201?review-filter=Windows+10+64-bit

Epson ET-2988 3.60.00 is a security update.
https://epson.com/Support/Printers/All-In-Ones/ET-Series/Epson-ET-2988/s/SPT_C11CL41203?review-filter=Windows+11

Epson ET-15000 3.60.00 is a security update.
https://epson.com/Support/Printers/All-In-Ones/ET-Series/Epson-ET-15000/s/SPT_C11CH96201?review-filter=Windows%2010%2064-bit

MTPdrive 4.5.179 resolves a stability bug. This is not a security update.
https://www.mtpdrive.com/

Plustek ePhoto Z300 6.7.0.5 resolves a couple bugs. This is not a security update.
https://plustek.com/us/products/film-photo-scanners/ephoto-z300/support.php

TP-Link Archer A6 v3 250718 improves stability and PPPoE support. This is not a security update.
https://www.tp-link.com/us/support/download/archer-a6/v3/#Firmware

TP-Link Archer AX72 v1.60 250814 is a security update.
https://www.tp-link.com/us/support/download/archer-ax72-pro/#Firmware

UniFi U6 Professional 6.7.33 adds packet capture, Roaming Assistant, 5GHz channel selection, mesh improvements, and resolves a dozen bugs. This is not a security update.
https://www.ui.com/download/software/u6-pro

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.84.132 is a security update.
https://brave.com/

Firefox 145.0 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 140.5.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Google Chrome 142.0.7444.134 is a security update.
https://www.google.com/chrome/

Microsoft Edge 142.0.3595.69 is a security update.
https://www.microsoft.com/en-us/edge/business/download

SeaMonkey 2.53.22 is a security update.
https://www.seamonkey-project.org/

Email Updates

One or more of these are likely to be of interest to everyone.

DavMail Gateway 6.5.1 resolves several bugs. This is not a security update.
https://davmail.sourceforge.net/

Spark 3.27.2.122708 ramps up the AI integration. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.27.2.122707 ramps up the AI integration. This is not a security update.
https://sparkmailapp.com/

Thunderbird 144.0.1 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 9.6.4 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

AnyDesk (macOS) 9.5.1 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

curl 8.17.0 resolves dozens of bugs. This is a security update.
https://curl.haxx.se/windows/

Discord November 4, 2025 resolves dozens of bugs. This is not a security update.
https://discord.com/download

Dropbox 236.4.5918 resolves several bugs and improves stability. This is not a security update.
https://www.dropbox.com/

Google Drive 117.0 is a security update.
https://drive.google.com/start

MeshCentral 1.1.53 resolves a couple bugs and improves UI controls. This is not a security update.
https://meshcentral.com/info/downloads.html

Mumble 1.5.857 is a security update.
https://www.mumble.info/

Nextcloud Server 32.0.1 updates libraries and resolves dozens of bugs. This is a security update.
https://nextcloud.com/

OneDrive 25.184.0921.0004 adds Copilot actions, improves offline mode, renames binaries, and adds the ability to cleanly opt out of the OneDrive Backup service. This is not a security update.
https://support.microsoft.com/en-us/onedrive

Rclone 1.71.2 updates libraries and resolves several bugs. This is a security update.
https://rclone.org/

Signal 7.78.0 resolves a couple bugs. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 7.63.3 adds split-screen support, improves performance and resolves many bugs. This is not a security update.
https://signal.org/android/apk/

Syncthing 2.0.11 migrates database to SQLite, improves log structure, changes CLI syntax, and resolves several bugs. This is not a security update.
https://syncthing.net/

Technitium DNS Server 14.0.1 is a security update.
https://technitium.com/dns/

Telegram 6.2.4 makes a couple minor changes in the UI and resolves crash bugs. This is not a security update.
https://telegram.org/

WinSCP 6.5.4 is a security update.
https://winscp.net/eng/index.php

Zoom 6.6.6.19875 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 4.0.22 resolves several bugs related to facial tracking. This is not a security update.
https://en.3tene.com/

Grayjay 342 resolves a couple bugs. This is not a security update.
https://grayjay.app/index.html

iTunes 12.13.9.1 is a security update.
https://www.apple.com/itunes/download/

Game Updates

These are unlikely to be of interest to most people.

Minecraft Server (Bedrock) 1.21.122.2 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

Nintendo Switch 21.0.0 updates cosmetics and cloud settings, and resolves a couple bugs. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PS5 2025.101 displays more hardware details and messaging. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

SteamOS SteamDeck Update 2025.11.06 improves UI and resolves a couple bugs. This is not a security update.
https://store.steampowered.com/news/app/1675200/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Format Plugins 1.1.2 is a security update.
https://helpx.adobe.com/security/products/formatplugins/apsb25-114.html

Adobe Illustrator 29.8.3 and 30.0 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb25-109.html

Adobe Illustrator Mobile 3.0.10 is a security update.
https://helpx.adobe.com/security/products/illustrator-mobile-ios/apsb25-111.html

Adobe InCopy 21.0 and 20.5.1 are security updates.
https://helpx.adobe.com/security/products/incopy/apsb25-107.html

Adobe InDesign ID21.0 and ID20.5.1 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb25-106.html

Adobe Pass 3.8.0 is a security update.
https://helpx.adobe.com/security/products/pass/apsb25-112.html

Adobe Photoshop 26.9 is a security update.
https://helpx.adobe.com/security/products/photoshop/apsb25-108.html

Adobe Reader DC 25.001.20844 resolves stability bugs. This is not a security update.
https://get.adobe.com/reader

Adobe Substance 3D Stager 3.1.6 is a security update.
https://helpx.adobe.com/security/products/substance3d_stager/apsb25-113.html

Calibre 8.14.0 resolves several bugs. This is a security update.
https://calibre-ebook.com/

Columns++ 1.3 resolves several bugs and improves compatibility. This is not a security update.
https://github.com/Coises/ColumnsPlusPlus

LibreOffice 25.2.7 resolves over 40 bugs. This is not a security update.
https://www.libreoffice.org/

Nextcloud Desktop 4.0.1 resolves several bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.8.7 adds a publisher certificate for the installation packages and resolves several bugs. This is a security update.
https://notepad-plus-plus.org/

OpenOffice 4.1.16 is a security update.
https://www.openoffice.org/download/

Paint.net 5.1.11 resolves several bugs. This is not a security update.
https://www.getpaint.net/

PDF-XChange Editor 10.7.5.403 updates libraries and resolves several bugs. This is a security update.
https://www.pdf-xchange.com/product/pdf-xchange-editor

Operating System Updates

These are for specific Linux flavors and alternative operating systems and, sadly, are unlikely to be of interest to most people.

Fedora 43 updates libraries, adds Hare support, changes UEFI+MBR requirements, and enables automatic updates. This is not a security update.
https://getfedora.org/en/workstation/download/

Google ChromeOS 141.0.7390.115 is a security update. Use Help, About to install this update.

Google ChromeOS LTS 138.0.7204.296 is a security update. Use Help, About to install this update.

iOS 18.7.2 and 26.1 are security updates.
https://support.apple.com/en-us/100100

iPadOS 18.7.2 and 26.1 are security updates.
https://support.apple.com/en-us/100100

macOS Tahoe 26.1 is a security update.
https://support.apple.com/en-us/100100

macOS Sequoia 15.7.2 is a security update.
https://support.apple.com/en-us/100100

macOS Sonoma 14.8.2 is a security update.
https://support.apple.com/en-us/100100

tvOS 26.1 is a security update.
https://support.apple.com/en-us/100100

visionOS 26.1 is a security update.
https://support.apple.com/en-us/100100

watchOS 26.1 is a security update.
https://support.apple.com/en-us/100100

Security Software Updates

One or more of these is likely to be of interest to most people.

KeePass 2.60 adds group path search, consistent shortcuts and hot keys, improved import options, and improves several other UI and integration features. This is not a security update.
https://keepass.info/

ProtonVPN 4.3.5 resolves several bugs and adds FIDO2 security key support. This is not a security update.
https://github.com/ProtonVPN/win-app/releases/latest

RogueKiller 16.5.1 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

SanDisk PrivateAccess 6.4.14.0 adds messaging signaling that the software is now end of life and should be removed as soon as possible. Migrate your data out of PrivateAccess and remove it.
https://support-en.wd.com/app/answers/detailweb/a_id/48025

Stinger 13.0.0.562 adds support for new detections. This is not a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

uBlock Origin 1.67.0 resolves a couple bugs and improves various features. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

WebBrowserPassView 2.18 improves compatibility. This is not a security update.
https://www.nirsoft.net/utils/web_browser_password.html

YARA 4.5.5 resolves several bugs. This is not a security update.
https://github.com/VirusTotal/yara/

Capture Updates

These are unlikely to be of interest to most people.

Open Broadcaster Software 32.0.2 resolves a couple crash bugs. This is not a security update.
https://obsproject.com/

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.5.1 adds support for new encodings and improves menu editing. This is not a security update.
https://www.dvdfab.cn/download.htm

StreamFab 6.2.6.2 adds multithreading, improves compatibility, and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 3.0.3.1 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Education updates

One or more of these are likely to be of interest to most people.

Zotero 7.0.27 resolves several bugs. This is not a security update.
https://www.zotero.org/

Zotero (macOS) 7.0.29 resolves Safari and Word clipboard issues. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.11.18 resolves several bugs. This is not a security update.
https://1password.com/downloads/

Beyond Compare 5.1.6.31527 resolves several bugs. This is not a security update.
https://www.scootersoftware.com/download

Bitwarden 2025.10.0 improves observation of data ownership policies, adds direct importer for Chromium browser accounts, and resolves several bugs. This is not a security update.
https://bitwarden.com/

BulkFileChanger 1.74 resolves a field copy bug. This is not a security update.
https://www.nirsoft.net/utils/bulk_file_changer.html

CCleaner 7.01.1042 resolves several bugs and renames several features. This is not a security update.
https://www.ccleaner.com/

Cygwin 3.6.5 resolves several bugs. This is a security update.
https://cygwin.com/

DesktopOK 12.21 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.6.39.0 resolves several bugs. This is a security update.
https://dngrep.github.io/

Everything 1.4.1.1030 is a security update.
https://www.voidtools.com/

Everything SDK 1.4.1.1030 is a security update.
https://www.voidtools.com/support/everything/sdk/

Everything Toolbar 2.1.1 resolves a couple bugs. This is a security update.
https://github.com/stnkl/EverythingToolbar/

ExplorerPatcher 26100.4946.69.6 improves compatibility and resolves several bugs. This is not a security update.
https://github.com/valinet/ExplorerPatcher/

Fing 3.9.2 adds PDF reporting and resolves several bugs. This is not a security update.
https://www.fing.com/products/fing-desktop-download-windows

Git SCM 2.51.2 resolves several bugs. This is not a security update.
https://git-scm.com/

GoodSync 12.9.14 resolves several bugs. This is not a security update.
https://www.goodsync.com/

Homedale 2.22 improves filtering. This is not a security update.
https://www.the-sz.com/products/homedale/

LessMSI 2.10.4 resolves a selection bug. This is not a security update.
https://lessmsi.activescott.com/

MPAM 1.441.121.0 adds support for new detections. This is not a security update.
https://www.microsoft.com/en-us/wdsi/defenderupdates

MultiMonitorTool 2.21 resolves a stability bug. This is not a security update.
https://www.nirsoft.net/utils/multi_monitor_tool.html

NTLite 2025.11.10669 adds support for Windows 24H1 and updates component support. This is not a security update.
https://www.ntlite.com/download/

PolicyPlus October 2025 updates included policies. This is not a security update.
https://github.com/Fleex255/PolicyPlus/releases

PowerToys 0.95.1 resolves several bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

Process Explorer 17.07 adds strings for Arm64 binaries and fixes a notification bug. This is not a security update.
https://learn.microsoft.com/sysinternals/downloads/process-explorer

PSAppDeploy 4.1.7 resolves several bugs and improves compatibility. This is not a security update.
https://psappdeploytoolkit.com/

Remotly 1.35.0 adds UPnP port forwarding. This is not a security update.
https://remotly.com/

RDCMan 3.11 enables Entra ID login. This is not a security update.
https://learn.microsoft.com/sysinternals/downloads/rdcman

ripgrep 15.1.0 resolves a bug with line buffering. This is not a security update.
https://github.com/BurntSushi/ripgrep/releases/latest

RoboForm 9.8.3 resolves a security bug. This is a security update.
https://www.roboform.com/

WinGet 1.12.350 improves compatibility and resolves several bugs. This is not a security update.
https://github.com/microsoft/winget-cli/releases/latest

WinScan2PDF 9.44 adds support for newer hardware. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

ZoomIt 9.20 adds ability to export to MP4 and GIF. This is not a security update.
https://learn.microsoft.com/sysinternals/downloads/zoomit

Developer Updates

These are unlikely to be of interest to most people.

.NET Runtime 9.0.10 and 10.0.0 are security updates.
https://dotnet.microsoft.com/en-us/download/dotnet

Android Studio 2025.2.1.7 resolves several bugs. This is not a security update.
https://developer.android.com/studio

DB Browser for SQLite 3.13.1 resolves several bugs and improves compatibility. This is not a security update.
https://sqlitebrowser.org/

GameMaker Studio 2024.14.0.207 is a security update.
https://www.yoyogames.com/en/gamemaker

GDevelop 5.5.245 adds new templates and resolves several bugs. This is not a security update.
https://gdevelop.io/download

GitHub Desktop 3.5.4 is a security update.
https://desktop.github.com/

Go 1.25.4 resolves several bugs. This is not a security update.
https://go.dev/

Inno Setup 6.6.0 improves dark mode, custom styling support, and pascal scripting. This is a security update.
https://www.jrsoftware.org/isdl.php

Java 8u471 is a security update.
https://www.java.com/en/download/manual.jsp

Node.js 22.21.1 resolves several bugs. This is not a security update.
https://nodejs.org/en/

Node.js 24.11.0 marks the transition to LTS. This is not a security update.
https://nodejs.org/en/

Node.js 25.1.0 updates libraries and resolves several bugs. This is not a security update.
https://nodejs.org/en/

SQLite 3.51.0 adds a couple new macros, improves JSON support and CLI capabilities, and resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

TortoiseGit 2.18.0 updates libraries and resolves several bugs. This is not a security update.
https://tortoisegit.org/

Visual Studio Code 1.105.1 resolves several bugs. This is not a security update.
https://code.visualstudio.com/

WinMerge 2.16.52 resolves several bugs. This is not a security update.
https://winmerge.org/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 7.2.4 resolves several bugs and improves compatibility. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

HumHub 1.17.4 adds a nonce for OEmbeds and resolves several bugs. This is a security update.
https://www.humhub.com/en

MailEnable 10.54 resolves several bugs and improves logging. This is a security update.
https://www.mailenable.com/

ownCloud Client 6.0.2.17506 is a security update.
https://owncloud.com/desktop-app/

Piwigo 15.7.0 is a security update.
https://piwigo.org/

Contact Form 7 6.1.3 resolves a couple bugs. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Email Log 2.62 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/email-log/

WordPress Importer 0.9.5 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/wordpress-importer/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2025-08-12

Posted on August 12, 2025 by Shawn K. Hall

Welcome back, Folks!

Today is Patch Tuesday for August, 2025.

It’s as safe as it’s going to be to upgrade to Windows 11 24H2 or macOS 15/Sequoia.

If your Windows 10 computer can not be upgraded to Windows 11, or if you used a registry or installation bypass to install an older version of Windows 11 on it that is no longer supported, then you might be able to use one of the several Windows 10 extended servicing options to get another year out of it.

There were 1150+ major hacks in the last two months (last month is included here), and over 650 application updates this month. It’s an enormous month, with about 6.5 GB of updates for most users.

This Month in Technology

32 Pearls, WA, 4 Corners Repair & Restoration, 7-Zip, a banking network, A&R Engineering, Able Home Care, Acadiana Radiation Therapy, LLC, LA, Acarlar Ltd, ACCU Reference Medical Laboratory, Ace Wire Spring & Form, Act Legal, ActFax Server, Adidas, Aditya Birla Capital Unit, Admiral Gaming Network, Adobe Acrobat Reader DC, Advance Ready Mix, AEROBLOX, Aeroflot, Aflac, AFPA, Aftership, Aggressive Air Compressor, Agura B.C. Ltd, AGX Financeira, Ahold Delhaize, Air France and KLM, Air Serbia, Airedale Springs, Airpay, AIS InfoSource LP, Akribis Systems, Alaska Airlines, Albany College of Pharmacy and Health Sciences, Albavisión, Albemarle County, VA, Alera Group, IL, Alert Medical Alarms, Algeria’s National Bank System, All Choice Rentals, All India Institute of Medical Sciences (“AIIMS”), Allegra, Allianz Life Insurance Company of North America, Allianz Seguros Spain, Allied Services Division Welfare Fund, Allied Steel Buildings, Alliedbankers Insurance Corporation, Alpha Wellness & Alpha Medical Centre, GA, Alpine iLX-507, AltaMed Health Services Corporation, CA, Altos, Inc, Amazon AWS Client, Amazon Elastic Container Service (ECS), AMEOS Group, American Consumer Credit Counseling, Inc, AMI Group, AMI’s MegaRAC BMC, Anadolu Hastaneleri, Anderson & Karrenberg, Android Enterprise, Anne Arundel Dermatology, MD, Anritsu ShockLine, Antalya Veterinary Doctors Association, Anthropic MCP, AOMEI Backupper Workstation, AOMEI Cyber Backup, Apache Traffic Server, Apex Global Solutions, LLC, NY, APL, Apollo MD, Apple iOS, Apple macOS, Apple Safari, Arbor Associates, Inc, MI, Arbor Associates, MA, Arbour Volkswagen, Arcadia Finance, Arch Linux, Arctic Glacier Premium Ice, Arctic Group, Ark Consultancy, Arlington Occupational Health and Wellness, TX, Artex Management, Artivion, GA, Asana MCP AI, Asefa Insurance, Asemas, Ashland schools, MA, Ashlar-Vellum Cobalt, Ashlar-Vellum Graphite, Associated Packaging, Astro Industries, ASUS Armoury Crate, ATEN eco DC, atHome, Atlantis Submarines, Audio Geeks, Australian Office of the Migration Agents Registration Authority, Autel MaxiCharger AC Wallbox, Autodesk AutoCAD, Autodesk Revit, an auto dealer portal granted access to personal information, financials, and even remotely unlock tens of thousands of vehicles, Avala Holdings, LA, Avantic Medical Lab, NJ, AVG TuneUp for PC, Axis CCTV cameras, Axis Max Life Insurance, Axis Servers, Azure Machine Learning, B&M, Backstage Library Works, BAF Management Consulting, Baillie Lumber, Bajaj Finserv, Balance Diagnostics, NY, Baltimore Archdiocese, Bangladesh Government Portal, Bar Harbor, Bardmoor Cancer Center, FL, Barrett-Jackson Holdings, LLC, Base44, Basecamp, Becker Robotic, Beep Systems, Belk, Belmont Christian College, Beluga, Benefits Management Group, Inc, Best Price Financial Services, Bevolkingsonderzoek Nederland, BeyondTrust Remote Support and Privileged Remote Access, Big Rock Resort, BIG Silver, BigONE, Biletall, Bing, Binghatti, Bitbox, Bitcoin Depot, Inc, BitoPro, Bitpanda, BlackSuit, Blanco Creek Farms, Bloomberg Comdb2, Blue Cross and Blue Shield of Massachusetts, Blue Shield of California, Bluetooth chips from ten vendors, Bluewater Yacht Sales, BMS Holdings, LP, BMW Financial Services NA, LLC, Bogota Government, Boley Centers, Bolton Walk-In Clinic in Ontario, Boutin Jones, Bouygues Telecom, Bowles, Womack & Company, PC, Brandt Kettwick Defense, Brazil’s Central Bank, BreachForums, Bridges Experience, Inc, Bridgewater Associates, Brien Center for Mental Health and Substance Abuse Services, MA, Bristol Hose, British Horseracing Authority, Broadcom chips, Broadleaf Game, Broadwest Specialty Surgical Center, IN, Broken Bow Public Schools, Bronze Craft, 689 models of Brother printers, Brownie, Brunton-Shaw, Brussels Parliament, BTS Group Holdings, Budget Electric, Budinger & Associates, Buffalo Marine, Burmann and EMPUR Produktions GmbH, public transit buses, BYU-Pathway Worldwide, C B King Memorial School, C&M, California Cancer Associates for Research and Excellence – Fresno, California Cancer Associates for Research and Excellence – High Desert, California Cancer Associates for Research and Excellence – San Diego, Call of Duty: WWII, Calton & Associates, Inc, Cameron, Hodges, Coleman, LaPointe, Cancer Care Center of North Florida-Lake Butler, FL, Canonical Ubunto Kernel, Capitol Taxes, Cappuccino Hotel, Cardinal Services, Cardiology Associates of Fredericksburg, VA, Carolyn Young, Carrollton ENT, CARSTAR Business Group, Cartel Communication Systems, Carter Manufacturing, Casa Dorita, Casino de Monte Carlo, Cathay Pacific, Catwatchful, cCARE Fresno, CCI Torrevieja, CDMX Auxiliary Police, Cegid, Cenomi Retail, Center for Clinical Research, Centers for Medicare & Medicaid Services, MD, Central Kentucky Radiology, KY, Central Maine Healthcare, Century Support Services, Cerner Corporation, MO, Cetdigit, CF Construction, CGP&H, Chain IQ, Chanel, Chicago’s WFMT radio station, Christian Brothers Academy, Christian Dior Couture SAS, ci-Fabrics, Cibraco, Cierant Corporation, CT, Cineverse, Cisco.com, Cisco Identity Services Engine (ISE), Citrix devices (CitrixBleed2), City of Gardendale, City of Green River, City of Keene, NH, City of Peabody, MA, Clam AntiVirus, Clarkston Chiropractic Sports & Wellness, MI, Clement Manor, WI, Cleo, Clinica Family Health & Wellness, CO, Clive Palmer’s Mineralogy, ClockWorkAdmin, Club Grido, Clymene Management Services, LLC, Coalinga Regional Medical Center, Cock.li, CoinDCX, CoinMarketCap, ColdFusion, College Saint Jean-Baptiste de La Salle, Colorado West Construction, Columbia University, Come to Paris, Сomet Strip Enterprises, Compass Counseling Services, FL, Complete Care Rehab, MI, Compumedics, NC, Computer Ingenuity Associates, Comyns, Smith, McCleary & Deaver LLP, ConnectWise ScreenConnect, Connex Credit Union, CONTRAQI, Cookville Regional Medical Center, TN, Corinthian Media, Correos de Chile, Covenant Health of Tewksbury, MA, Creams Cafe, CrediX, Crenshaw Community Hospital, AL, Crompton Lamps, Crumbl, 1,000 CrushFTP servers, Cryoviva, 3,500 websites hijacked to mine crypto, Cucamonga Valley Water District, Culver’s Lawn & Landscape, Cumberland County Hospital Association, KY, Cursor, Custom Food Ingredients, Cutcliffe, Archetto & Santilli, CyberlinkASP, Cycle & Carriage, Cyclope Employee Surveillance Solution, DA Whitacre Construction, Dairy Farmers of America, Daniels Law Group LLC, Dansoft, DARA Pharma, Darien Telephone, Dassault Systèmes eDrawings Viewer, DataSafeApps, DC Investors, Deakin Medical Centre, Dealmed Medical Supplies, Decisely Insurance Services, LLC, GA, Delhi Hospitals, Dell, Dell ControlVault3, Dell laptops (ReVault), Dell Technologies, Delta Electronics CNCSoft, Delta Electronics DTM, Denali Biomedical, AK, Deutsche Telekom, Disk Union, Disneyland Paris, Dithelm Travel Group, Diversified Services Enterprises, FL, DKN Hotels, Doctors Memorial Hospital, FL, DOJ Forensic Science Division, MT, Dollar Tree, Donlar Construction, Dordt University, Doyon, Limited, DP Systems, Druni, DTiQ Technologies Inc, Dtunes.ng, DTX Studio, Duke Regional Hospital, Dumfries and Galloway Council, Dunlop Codding, Dyalcom, Dynamic Netsoft, Dyrham Park, e+ Oncologics Louisiana, LLC, LA, E-Mail Security Virtual Appliance, Eagle Builders, Eastern Platinum Limited, Ebber Restaurant Group, Eclipse ThreadX, Effortless Office Enterprises, LLC, EGallery, EIA Global, Eiffage, El Paso Glass, El Paso Quality Dentistry, TX, Electronics For Imaging, Inc, Elematec Corporation, Eleos Wellness, FL, Ellis Medicine, NY, Elmo, Elmore County, ID, EmCentrix, eMedia, Emerson Chiropractic, IN, EMM Corp, Emprise, Emtech Inc, Endgame Gear, ENENSYS IPGuard, Episource, Epsimed MN-120, Epworth HealthCare, Equilibria Mental Health Services, PA, Erie Insurance, Esse Health, MO, Estes Forwarding Worldwide, ESTT, EupFin, Eurofins Scientific, Everglades Correctional Institution, Eversendai, Evoke Wellness, Exel Composites, ExpressVPN, F&P Georgia Mfg, Fairbanks Urology, AK, Family & Community Services, Inc, Family Centers Inc, Family Service League, Fasana, Fayrefield Foods, FC Barcelona, Federassantas, Fenol Kimya, Finastra Technology, Inc, First Baptist Church of Hammond, Fishman, Larsen & Callister, FJD AT2 smart tractors, Florida Hand Center, FL, Florida Internal Medicine, Florida Lung, Asthma & Sleep Specialists, FL, Flutter Entertainment, Food Lion, FormWood Industries, Fort Smith Public School District, Fortinet FortiWeb, Forward, Four Quarters, FoxCMS, Foxit Reader, France Travail, Franchise Tax Board, Frank D. Lanterman Regional Center, CA, Franklin Pierce Schools, Frazier & Bowles, Freedman Healthcare, Freedom Plaza Senior Living, FL, Freedom Square of Seminole, FL, Freedom Wood Doors, FreeFloat FTP Server, French Ministry of Education, French National Agency for Adult Vocational Training AFPA, Frontline Bioenergy, Fuji Electric Smart Editor, Fund for Reformed Companies, G DATA Total Security, Gardner Orthopedics, Florida, Garmon and Company, Gaskar Integration, Gastroenterology Consultants of South Texas, Gateway Community Services, FL, Gemini CLI, General Physician PC, Genesis Billing Services, Genex Services, LLC, Genoa Community Hospital, NE, Genoa Medical Facilities, GFI Archiver, GFI Kerio Control, Ghana Police Service, Gigabyte UEFI, Gladney Adoption Center, Glens Falls, Gmail AI, GMX, Goldberg & Osborne, Golden State Radiation Oncology, CA, Good Samaritan Health, Google Ads, Google Chrome, Google Drive, Google Gemini, Google’s Gemini CLI, Grafana Image Renderer, Grayscale Investments, Great CDL Training, Great Lakes Carpet & Tile, Green River City, GreenLight Biosciences, Greta Group, GRS Informatica, GStreamer, Guyana Sugar, Habitat for Humanity of Greater Sioux Falls, Hacienda La Puente Unified School District, Hacken, HackerOne sandbox, Haha Graby World, Halvorsen Family Law Group, Hannaford, Har Hevron Regional Council, Harbor, OH, Haruv Institute, Have Fun Teaching, Hawaiian Airlines, HCK Capital Group, Health Care and Rehabilitation Services of Southeastern Vermont, Healthcare exchanges in Nevada, Maine, Massachusetts and Rhode Island, Heartline, OK, Helical Auto Technology, Herrman Law Firm, HEXPOL Holding Inc, High Point Treatment Center, MA, Highlands Oncology Group, AR, Hollywood Dermatology, Holscher Holding, Honeywell middleware, Hongkong Post, HopeHealth Inc, SC, Horizon Blue Cross Blue Shield, Horizon Healthcare RCM, IN, Hospital Auxilio Mutuo, Hospital Management System, Hotam EC, House of Dior, Howard Financial & Associates, HPE Aruba Instant On Access Points, HPTC, HRConnects, LLC, Hulberg & Associates, Human Development Services of Westchester, NY, Hungryroot, Huntington Hospitality Financial Corp, Hôpital Privé de la Miotte, IBM, iBUYPOWER, IdeaLab, IES Communications, Illinois Department of Healthcare and Family Services, Imblum Law Offices, IMDataCenter, IMSSA Manufacturing, Income Property Investments, CA, Indaco, Independent Title Agency, Indian Institute of Technology Roorkee, Infinite Services, NY, Infinity Plumbing Designs, Inc, Inflite Engineering Services, Informatika AD, Infosys McCamish Systems (IMS), Ingram Micro, InnoMedica, Inside One, Inspira Financial Trust, LLC, Integrated Oncology Network, TN, Integrated Specialty Coverages, LLC, Integrity Mortgage, International Criminal Court (ICC), INVT HMITool, INVT VT-Designer, iPROMOTEu, Iran International Network, Iranian Government Portal, Iranian TV, Ireland National Treasury Management Agency (NTMA), IrfanView, IROAD Dashcam FX2, Iron County Medical Center, MO, Islington Golf Club, Israel Antiquities Authority, IT Access PTE, ITIM, Ivri, Kerner & Co, IWACLUB, Jack L Marcus Inc, WI, Jacksonville Beach Dermatology, Jamco Aerospace, Jean Bakhos, Jenkins servers, JFC Electric, JIEI CO, JNE, JobPlace, Johnson Controls, Jordan Drug, Inc, KY, JupyterLab, K&E Advanced Dentistry, OH, K2L, Kalad, Karunia Group, Katz & Doorakian Law, Kayan Aero, Kelly & Associates Insurance Group, Kengen, Kentfield Hospital, CA, Kenwood DMX958XR, KEP Credit Union, Kerrville ISD, Kettering Health, Keys Pathology Associates, PA, FL, Keystone Shipping, KIA Vehicles, Kigen eUICC cards, Kimsuky, Kingdom of Tonga’s Ministry of Health, Kingsford Development, Kirkor Architects and Planners, KLM, KNP Logistics Group, Koch Eye Associates, Koenig Hausverwaltung, Kokomo24/7, Krispy Kreme, Krusell, Kyrgyzstan’s Foreign Ministry, L3Harris, Lafayette Family YMCA, Lafayette Federal Credit Union, Lake Barkley State Resort Park, Lake City Cancer Care, FL, Lake Region Healthcare, Lake Risevatnet dam, Norway, Lamberts Business Systems, Landscape Hawaii, Langdon & Company, LLP CPA, NC, Lanterman Regional Center, Lawton Partners, LEADBUILD Construction Pte Ltd, Lee & Associates, Legal Aid Agency, Lemonade, Inc, Lenovo UEFI, LexisNexis, Liberty Township, Life Care Services, AL, Life Care Services, FL, Lincoln Law, Linux PAM and libblockdev, Linux Sudo, London Properties, LTD, Lorain County Auditor, Lorex 2K Indoor Wi-Fi Security Camera, Los Angeles LGBT Center, Louis Vuitton, Lovense, LP Charpente, Luxion KeyShot, LVMH, Lydig Construction, Lynkspot, Machu Picchu Foods, Mack Energy Corp, macOS (Sploitlight), Magellan Financial Group, Mailchimp, Mainetti, Mainline Health Systems, AK, Majestic, Manassas Park Schools, Manhattan Parking Group, Manning, Fulton & Skinner, PA., Manpower, Marbella KR8s Dashcam, MaReads, Marin Housing Authority, Marquette County Medical Care Facility, MI, Marquette County Medical Care Facility, OH, Martin, Showers, Smith, & McDonald, Marvell QConvergeConsole, Mastery Charter High School, Mauritanian Government Employability Platform, Max Financial, McCracken Financial Solutions, McDonald’s McHire, McKay Wealth Management, McKenzie Health System, McKenzie Memorial Hospital, MI, McLaren Health Care, MI, McLean Mortgage, McNealy Brown, MedDream PACS Premium, Media Broadcast Satellite, Medical Center of Marin, Medical Village LIV, Medicare.gov, MedicareCompareUSA, Medicover, Medusa, Meleam SpA, Memorial Radiation Oncology Medical Group, Mercedes-Benz AG, Merlin Industries, Mescius ActiveReports.NET, Meta AI, Meta Pool, MetaMask, Metricon Homes, MGI Singapore PAC, MGM Transformer, Microsoft 365 Copilot, Microsoft 365 Direct Send, Microsoft Bing AI, Microsoft Exchange Server, Microsoft PC Manager, Microsoft PowerShell, Microsoft SharePoint, Microsoft Visual Studio, Microsoft Windows Remote Desktop Gateway, Microsoft WinJS, Mid America Health, IN, Mid America Physician Services, MO, Milberg, Minnesota Epilepsy Group, Minnesota Lawyers Mutual Insurance, Mint, Mission City Community Network, MiVoice MX-ONE, Mizuha Financial Group, MJQ Education, Mohammed VI Polytechnic University, Mojave Radiation Oncology Medical Group, CA, Montalvo Institute, Mor-logistics, Moreno Valley Unified, CA, Morocco Clinic System, Morpeth Pharmacy, Morrison Companies, Morrow Equipment, Mortensen Law Offices, Mosaic Life Care, MO, Moti, Mount Baker Imaging, Mount Rogers Community Services, VA, Mount Vernon Property Management, Mountain Laurel Dermatology, NC, MOVEit Transfer, Mower County, Minnesota, Mozilla Firefox, Mozilla VPN, Multilift Logistic Group, Murex Petroleum, MyBloodMiles, MyClic.fr, Myrtue Medical Center, IA, Món Sant Benet, Nanino, Naper Grove Vision Care, IL, NASCAR, National Health Information System of Tonga, National Institute of Water Resources, Nationwide Care Services, Naval Group, Neot Hovav, Nessus Security Scanner, Netherlands Public Prosecution Service (OM), New American Funding, New South Wales Christian, New York University, NewGen, Next Level Construction Services, NI LabVIEW, Niflaot Hatzuna Ltd, Nintendo consoles, Nippn TH, NK Customer Solutions, NKS Super Speciality Hospital, India, Nobitex, Nokia, Norpak, Norsk Global, North Country HealthCare, AZ, Northern Light Health, Northwest Medical Homes, LLC, OR, Northwest Radiologists, Nova Recovery Center, TX, Nova Scotia Power, Novabev, NPD Products, NPK, Nth Degree Investment Group, NuCamp RV, Nucor, NVIDIA Container Toolkit, NVIDIA Triton, OB/GYN Medical Center Associates, TX, Ocuco Inc, OKA, Olde Towne Medical and Dental Center, VA, Olivera Canarias, Omnicuris, One Gold Italia, ONEX Canada Asset Management, ONGC Petro Additions Limited, Openprovider, Optima Tax Relief, Oracle Code Editor, Oracle VirtualBox, Orange County Radiation Oncology Medical Group, CA, Orange Telecom, Oregon Specialty Group, OR, OrthoAtlanta LLC, GA, Otjiwarongo Municipality, Oxford City Council, Oxford Universal Corp, Pacific Biolabs, Pacific HealthWorks, Palawan Medical Mission Group Multipurpose Cooperative, Palm Bay International, Palomar Insurance, Pandora, PANSARD & ASSOCIES, PaperCut NG/MF, Paraguayan Public Defender’s Office, Paraguayan Superior Court of Electoral Justice, Paraguayan Vice Ministry of Economy, Parallels Client, Patron Insurance Services, Paul Wilkinson Law Firm, PBS, PDCM Insurance, IA, PDF-XChange Editor, PDI Health, NY, PEAK-System Driver, Pelindo, Pembroke Regional Hospital, Pennant Park, Pennsylvania Attorney General, PeopleCheck, Pergamon Status, PET Imaging of Dallas Northeast, TX, PET Imaging of Houston Medical Center, TX, PET Imaging of Northern Colorado, CO, PET Imaging of Sugar Land, TX, PET Imaging of The Woodlands, TX, PET Imaging of Tulsa, OK, Phil Smith Automotive, Philadelphia Indemnity Insurance, Phoenix Contact CHARX SEC-3150, Phoenix Lighting, PhyNet Dermatology, Pi-hole, Pilipili, Pinnacle Roofing, Pinnacle Woodwork, Pioneer DMH-WT7600NEX, Polykar, Pond North LLP, Portel Logistic Technologies, Positive Solutions, Precision Endodontics of Raleigh, NC, Premier 1888 Ltd, Premier Health Partners, OH, Premiere Surfaces, Inc, Prestige Maintenance USA, Primary Health Services Center, LA, Prime Retirement Solutions, LLC, Proactive Engineering Consultants, ProActive Solutions, Progressive Auto Group, Progressive Southeastern Insurance Company, Prosecuting Attorneys’ Council of Georgia, Protech Medical, Proton Authenticator, PT BPR Serang, Punta Del Agua, PZS Architects, Qantas, QHR, Qilin, QNAP QHora-322, QNAP TS-464, Quartas Engineering, Quaser Machine Tools, Quintana Roo Mobility Institute, Racine Olson, Radford City Schools, Radiation Oncology Network of Southern California, LLC, CA, Radiology Associates of Richmond, VA, Radix, Ralph S Livingston, CPA An Accountancy Corporation, Rare Breed TV, RattanIndia Power, Red Hat Enterprise, Regency Oaks, FL, Regional Center of the East Bay, CA, Reimo, Reizen Law, Remitly, Renkim Corporation, Repay Management Services, LLC, GA, Resource Energy, Retina Associates of Cleveland, OH, Rezayat Group, Rhode Island Airport Corporation, Ridewill SRL, Ridgefield, Rite Track, RiteCheck, Ritenour School District, Robinsons Malls, Rockerbox, rocket.chat, Rockrose Development, Rocky Mountain Oncology Care, WY, Rollex, 84,000 Roundcube Servers, Rosewood Farm, Royal Enfield, RS Polri Kramat Jati, RTE, Ruckus Networks, RUKU Tore-Turen, Rural Health Services, SC, S&H Express, SaaStr via Replit AI (this is funny), Sabine County Hospital, TX, Sacred Heart School, SAFE CREDIT UNION, Saint Paul, MN, Salamander Resort & Spa, Salesforce OmniStudio, Salvation Army, Samsung MaginINFO 9 Server, San Diego police, CA, Sanderling Healthcare, Sant Parmanand Hospital, India, SAP NetWeaver, SatuSehat Kotim Kabupaten, Saudi Games, Scania, Sedgebrook, Self Regional Healthcare, SC, Sensata Technologies, Seppeler Gruppe, Sermo, ServiceNow, ServiceStack, Servoescolar, Seychelles Commercial Bank, SGI Seoul Guarantee, Sharp HealthCare, Siemens SINEC NMS, Siemens TeleControl Server, Silverdale BC, SilverLake Axis, Simple Web Server, Singapore Police Force, SinoTrack GPS devices, Sitecore CMS, SK Telecom, Skin Care Specialty Physicians, MD, Skirball Cultural Center, Skoda, Skyline Dubuque, Skype, Société Générale, Sogedis, SolarWinds Agent, SolarWinds Serv-U FTP Service, SolarWinds TFTP, SolarWinds Web Help Desk, Solix, SonicWall SMA 100, SonicWall SSL VPNs, Sony WM-1000XM5, Sony XAV-AX8500, Sophos Firewall, South African Broadcasting Corporation, South Ayrshire Council, South Coast Pediatrics, South Georgia Center for Cancer Care, LLC, GA, Southeast Series of Lockton Companies, LLC, Southern Connecticut Vascular Center, CT, Southern Immediate Care, Southern Tire Mart, Southwest CARE Center, Southwest Florida Dermatology, Southwest Urology, OH, Southwood Financial, Spanish Politicians, SPANN Roofing & Sheet Metal, Spartanburg County, SC, Specialty Components, State of California, Department of Child Support Services, Steadfast Companies, Stihl Shop New Zealand, Stratascorp Technologies, Studio C, Studio Verna Società Professionale, SubsCorp, Sunrise Springs Spa Resort, Superior Court of Justice of North Lima, Surmodics, MN, Susan B. Allen Memorial Hospital, KS, Sweeney Design, Swissquote, Switzerland, Synergy Radiation Oncology Medical Group, SysAid IT service management (ITSM), T2 Group, TABB Inc, Taiwan Digital Streaming, Tallahassee Memorial Healthcare, FL, Tan Chong Motor Holdings, Tappoo Group, Tara Pac, TCI Doors, Tea App (twice), Team Signal, TeamViewer, TeaOnHer, Tech Mahindra, Tech Trivial, Tecore, Telcom Insurance Group, Telecall, Telefónica, TeleMessage, Tenacious Marketing, Terillium, Tesla PowerWall Connector, TETRA, Texas Centers for Infectious Disease Associates, Texas Department of Transportation, Texture Finance, The Colgin Companies, The Lowell Hotel New York, The Magni Group, The Mindfuel Foundation, The Morton Forum, The Providence Warwick Convention, The Scharine Group, Thern, Think Big Health Care Solutions, Think Tax Solutions Inc, Thomas Bennett & Hunter, Tiger Communications, TikTok LIVE, TIMEC Oil & Gas, Inc, Tiscali SPA, Titan Trailers, TO Brasil, TOMEI GROUP, Tooling Systems Group, Toptal’s GitHub, Towne Mortgage, TRAC Intermodal, Trans-Tex, Travancore Analytics, Trend Micro Apex Central, Trend Micro Apex One, Trend Micro Cleaner One Pro, Trend Micro Endpoint Encryption, Trend Micro Maximum Security, Trend Micro Password Manager, Trend Micro Worry-Free Business Security, Trezor, TRG, LLC, OR, TruCSR, Trumpet of Patriots, TSAI Capital, Tuna Processors Phillipines, Turbo FTP Server, Twaweza, Tyree Oil, UAE Equestrian Federation, Ualabee, Ubiquiti Networks AI Bullet, Ubiquiti Networks UniFi, Ubon Ratchathani University, UBS, UK Afghan migration data, UK special forces, Ulster County, Unigame, Union Home Mortgage, United Australia Party, UnitedHealth Group (again), Universidad Mayor, University of California, Berkeley, University of Puerto Rico, University of Western Australia, University of Zagreb Faculty of Science, Upper Dublin Family Dentistry, Upstart Power, Urology Associates of Charleston, SC, US Army National Guard, US Bank, US Court filing system, US FBI, US Judiciary, US National Nuclear Security Administration, US train braking safety system, Vacron Camera, Vail Summit Orthopaedics, CO, Valley Mountain Regional Center, CA, Vantage Finance, Vector Security, Veeam Agent, Veeam Backup Enterprise Manager, Venice Film Festival, Venice Hotel Ca’ dei Conti, Vero Foods, Vertel, Vest Tube, LLC, Viasat, Victoria Garden, View Zuellig Industrial, Vino Farms, LLC, VirtualMacOSX, Virtualweb Technologies, Vistra Group, Vitec, VM Racing, Vodafone Egypt, Volkswagen, Volvo, VS Associates, Vynopsis, Walmart, Warisan TC Holdings, Warwick Student Union, Washington Post, Watchfinder & Co, Watermark Marine Systems, Wazuh, 269,000 websites (JSFireTruck), Wedlich, Wegley, Higginbotham & Associates, Weizmann Institute, West Java Provincial Government, West Texas Oral Facial Surgery, TX, Western Australia Firearm Portal, Western Montana Clinic PC, MT, Western Montana Mental Health Center, MT, WestJet, WH Rogers Sheet Metal, Whim Hospitality, White Coffee Corp, White Horse Packaging, Whittaker & Company, Wilson Appliance, Wilsonville Toyota-Scion, Windows CAB parsing, Windows Hello, Windows SmartScreen, Windows ZIP parsing, Windsor Door, WineLab, Wing FTP Server, Winkler County Hospital District, TX, WinRAR, WiredBucks, Wispone, WL Foods, WOO X, Wood River Health, RI, Wood, Patel & Associates, Woodtect, WordPress Advanced Custom Fields plugin, WordPress Alone theme, WordPress Asset-Manager plugin, WordPress Brave Conversion Engine plugin, WordPress bSecure plugin, WordPress Ebook Store plugin, WordPress Forminator plugin, WordPress FoxyPress plugin, WordPress GiveWP plugin, WordPress Gravity Forms plugin, WordPress HT Contact Form plugin, WordPress LoginPress Pro plugin, WordPress Melapress Login Security plugin, WordPress Motors theme, WordPress ONLYOFFICE Docs plugin, WordPress PayU plugin, WordPress Platform theme, WordPress Post SMTP plugin, WordPress Support Board plugin, WordPress Website Contact Form With File Upload plugin,WordPress Woocommerce plugin, WordPress WP Database Backup plugin, WordPress WP-Property plugin, WordPress WPBookit plugin, WOW Pictures, WV PCA, WWBN AVideo, Xerox FreeFlow Core, Xerox printers, XSS.is, Yapi Teknik Proje, Yes24 (twice), Yinon Magal, Young Consulting LLC, Your Building Centers, Zinli, Zoomcar Holdings, and Zumpano Patricios, FL have reported hacking or compromises this month.

Apple iCloud, Cloudflare, Google Cloud, Microsoft 365 admin center, National Bank of Canada, Spectrum, Starlink, Truth Social, and X (formerly Twitter), twice, have suffered from outages this month.

Internet access throughout Angola, Egypt, Gaza, Iran (repeatedly), Iraq, Kamchatka, Russia, Kenya, Maldives, Panama, Sudan, Togo, Ukraine, and Yemen have been blocked or down for days, but not in Israel.

Last months updates broke DHCP on Windows Server, Exchange Online, Google Chrome (via Microsoft Family Safety), Microsoft Print to PDF, Nobitex, Outlook, Surface Hub v1, Veeam Recovery Orchestrator, Windows Server 2019, Windows Server Update Services (WSUS), and Windows when Easy Anti-Cheat was installed.

Intel is killing off Clear Linux OS. AOL is killing off it’s dial-up Internet service. It’s really no surprise considering phone lines don’t even exist anymore. Microsoft is killing off the Movies & TV storefront – once the apple in the eye of their online media strategy for Windows. Smarthome company goes bankrupt, new owner ransoms everyone’s house: $5000 bounty to crack firmware! Skype is dead (and hacked), there’s better options.

Ads are so much more evil than you realize. Win11 nagware is already installed on many win10 computers. The state of California sent residents’ personal health data to LinkedIn. Hidden in-chip operating systems can’t be tracked, controlled or managed – or secured.

Perplexity AI ignores website requests to not scrape them.

Apple hit with a new antitrust lawsuit by Proton over iOS monopoly

In article exposing the evils of allowing AI to access your private data, the author shows you how an “evil” AI can access your Google account data (used to feed Google’s AI), and probably wrote his draft in Microsoft Word (feeding his data to Microsoft’s AI), to publish his article on the public Internet (feeding every other AI). While I agree with the premise – don’t feed the beast – it’s such a tiny ridiculous example of how data is sucked up by third parties that use it for their own purposes. The world we live in never ceases to amaze.

Now for the good news:

Sometimes, persistence pays off.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is enormous this month. The typical computer should see roughly 6.5 GB in updates today. Let’s get started.

Microsoft released 57 updates to address 119 vulnerabilities in Azure File Sync, Azure OpenAI, Azure Portal, Azure Stack, Azure Virtual Machines, Desktop Windows Manager, GitHub Copilot, Graphics Kernel, Kernel Streaming WOW Thunk Service Driver, Kernel Transaction Manager, Microsoft 365 Copilot’s Business Chat, Microsoft Brokering File System, Microsoft Dynamics 365 (on-premises), Microsoft Edge for Android, Microsoft Edge, Microsoft Exchange Server, Microsoft Graphics Component, Microsoft Office, Microsoft Office Excel, Microsoft Office PowerPoint, Microsoft Office SharePoint, Microsoft Office Visio, Microsoft Office Word, Microsoft Teams, Remote Access Point-to-Point Protocol (PPP) EAP-TLS, Remote Desktop Server, SQL Server, Storage Port Driver, Visual Studio, Web Deploy, Windows Ancillary Function Driver for WinSock, Windows Cloud Files Mini Filter Driver, Windows Connected Devices Platform Service, Windows DirectX, Windows Distributed Transaction Coordinator, Windows File Explorer, Windows GDI+, Windows Hyper-V, Windows Installer, Windows Kerberos, Windows Kernel, Windows Local Security Authority Subsystem Service (LSASS), Windows Media, Windows Message Queuing, Windows NT OS Kernel, Windows NTFS, Windows NTLM, Windows PrintWorkflowUserSvc, Windows Push Notifications, Windows Remote Desktop Services, Windows Routing and Remote Access Service (RRAS), Windows Security App, Windows SMB, Windows StateRepository API, Windows Subsystem for Linux, Windows Win32K – GRFX, Windows Win32K – ICOMP,
and MSRT. This includes security updates. A reboot is required.

Oracle released 238 security updates this quarter to address 309 vulnerabilities in 111 products.

Apple released updates for iOS 18.6, iPadOS 17.7.9, iPadOS 18.6, macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7, Safari 18.6, tvOS 18.6, visionOS 2.6, and watchOS 11.6. This includes security updates. Use Apple Software Update to install the most current versions.

iOS 18.6 is a security update. Use Settings, General, Software Update to install the most current update.

iPadOS 18.6 and 17.7.9 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 11.6 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 18.6 are security updates. Use System, Software Update to install the most current version.

visionOS 2.6 are security updates. Use System, Software Update to install the most current version.

Google ChromeOS 138.0.7204.232 and ChromeOS LTS 138.0.7204.221 are security updates. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

The release of macOS Sequoia (15.x) means that macOS Monterey (12.x) and older are no longer supported. If you can not install at least macOS Ventura (13) on your Mac then you should immediately remove your device from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current — and final — release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. All non-LTS versions of Windows 10 other than v22H2 are now out of support, upgrade to v22H2 now. If you aren’t sure whether you are using LTS, you aren’t. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v24H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is now stable and can be upgraded to if your hardware supports it. If not, switch to Linux (Mint is nice) or replace your computer.

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 25.8.1 is a security update.
https://www.amd.com/en/support

Display Driver Uninstaller 18.1.3.0 improves cleanup. This is not a security update.
https://www.wagnardsoft.com/forums/viewforum.php?f=5

Logitech Options 10.26.12 changes function key shortcuts and on screen display behavior. This is not a security update.
https://www.logitech.com/en-us/product/options

TP-Link Archer AX55 v1 241211 resolves several bugs. This is not a security update.
https://www.tp-link.com/us/support/download/archer-ax55/v1/#Firmware

UniFi airMAX NanoStation 5AC Loco 8.7.19 is a security update.
https://www.ui.com/download/software/loco5ac

UniFi Network Server 9.3.45 resolves several bugs. This is not a security update.
https://www.ui.com/download/releases/network-server

VIISAN OfficeCam 7.2.11 doesn’t provide a change log so should be treated as a security update.
https://www.viisan.com/en/download/type1.html

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.81.131 is a security update.
https://brave.com/

Google Chrome 139.0.7258.127 is a security update.
https://www.google.com/chrome/

Microsoft Edge 139.0.3405.86 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Firefox 141.0.3 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Vivaldi 7.5.3735.58 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Mailspring 1.16.0 adds autoconfiguration and resolves several bugs. This is a security update.
https://getmailspring.com/

Spark 3.24.7.113690 improves integration and composer, resolves several bugs. This is a security update.
https://sparkmailapp.com/

Thunderbird 141.0.0 resolves dozens of bugs. This is not a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 9.5.11 resolves a bunch of bugs. This is not a security update.
https://anydesk.com/en/downloads

curl 8.15.0 resolves over a dozen bugs and removes older protocol support. This is not a security update.
https://curl.haxx.se/windows/

Discord August 4, 2025 improves search and resolves dozens of bugs. This is not a security update.
https://discord.com/download

Dropbox 230.4.8797 resolves a couple bugs. This is not a security update.
https://www.dropbox.com/

FileZilla Client 3.69.3 is a security update.
https://filezilla-project.org/

FileZilla Server 1.10.5 is a security update.
https://filezilla-project.org/

FreeFileSync 14.4 updates libraries. This should be treated as a security update.
https://www.freefilesync.org/download.php

Google Drive 112.0 resolves a couple bugs. This is not a security update.
https://drive.google.com/start

MeshCentral 1.1.48 is a security update.
https://meshcentral.com/info/downloads.html

Microsoft Teams 1.8.00.21151 improves notification controls, adds custom dictionary support, and enables attribution by default. This is not a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 31.0.7 resolves dozens of bugs. This is not a security update.
https://nextcloud.com/

Npcap 1.83 is a security update.
https://nmap.org/npcap/

OneDrive 25.130.0706.0004 improves reliability and performance. This is not a security update.
https://support.microsoft.com/en-us/onedrive

Pocketnet-Core 0.22.18 improves logging and resolves several bugs. This is not a security update.
https://pocketnet.app/

Rclone 1.70.3 resolves several bugs. This is not a security update.
https://rclone.org/

Signal 7.65.0 improves emoji access. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 7.51.2 improves performance. This is not a security update.
https://signal.org/android/apk/

Syncthing 2.0.0 is a major update. This version switches the backend to SQLite, improves logging, adds Docker support, and resolves over a dozen bugs. This is not a security update.
https://syncthing.net/

Telegram 6.0.2 improves stability, public searc, gifting and resolves several bugs. This is not a security update.
https://telegram.org/

WinSCP 6.5.3 is a security update.
https://winscp.net/eng/index.php

Zoom 6.5.9.11873 is a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 4.0.19 updates libraries. This is a security update.
https://en.3tene.com/

Bitwig Studio 5.3.12 resolves a couple bugs. This is not a security update.
https://www.bitwig.com/download/

darktable 5.2.1 resolves almost a dozen bugs, improves stability and compatibility. This is not a security update.
https://www.darktable.org/

Plex Home Theater 1.71.1.346 improves stability. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.42.1.10060 is a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Wave Cast 1.0.1 improves layout and device selection. This is not a security update.
https://marketplace.elgato.com/product/wave-cast-2c92e60c-8508-4d5c-8b5f-8d02029b881c

Game Updates

These are unlikely to be of interest to most people.

Minecraft Server (Bedrock) 1.21.100.7 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

Minecraft Server (Java) 1.21.8 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server

Nintendo Switch 20.3.0 improves stability. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PS5 2025.722 improves stability. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Animate 23.0.13 and 24.0.10 are security updates.
https://helpx.adobe.com/security/products/animate/apsb25-73.html

Adobe Commerce 2.4.4-p15, 2.4.5-p14, 2.4.6-p12, 2.4.7-p7, 2.4.8-p2, and 2.4.9-alpha2 are security updates.
https://helpx.adobe.com/security/products/magento/apsb25-71.html

Adobe Commerce B2B 1.3.3-p15, 1.3.4-p14, 1.4.2-p7, 1.5.2-p2, and 1.5.3-alpha2 are security updates.
https://helpx.adobe.com/security/products/magento/apsb25-71.html

Adobe Dimension 4.1.4 is a security update.
https://helpx.adobe.com/security/products/dimension/apsb25-84.html

Adobe FrameMaker 2020.9 and 2022.7 and security updates.
https://helpx.adobe.com/security/products/framemaker/apsb25-83.html

Adobe Illustrator 28.7.9 and 29.7 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb25-74.html

Adobe InCopy 19.5.5 and 20.5 are security updates.
https://helpx.adobe.com/security/products/incopy/apsb25-80.html

Adobe InDesign ID19.5.5 and ID20.5 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb25-79.html

Adobe Photoshop 25.12.4 and 26.9 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb25-75.html

Adobe Reader DC 25.001.20623 resolves several bugs and improves compatibility. This is not a security update.
https://get.adobe.com/reader

Adobe Substance 3D Modeler 1.22.2 is a security update.
https://helpx.adobe.com/security/products/substance3d-modeler/apsb25-76.html

Adobe Substance 3D Painter 11.0.3 is a security update.
https://helpx.adobe.com/security/products/substance3d_painter/apsb25-77.html

Adobe Substance 3D Sampler 5.1.0 is a security update.
https://helpx.adobe.com/security/products/substance3d-sampler/apsb25-78.html

Adobe Substance 3D Stager 3.1.4 is a security update.
https://helpx.adobe.com/security/products/substance3d_stager/apsb25-81.html

Adobe Substance 3D Viewer 0.25.1 is a security update.
https://helpx.adobe.com/security/products/substance3d-viewer/apsb25-72.html

Audacity 3.7.5 adds partial ARM support, updates libraries and resolves several bugs. This is not a security update.
https://www.audacityteam.org/download/

Calibre 8.8.0 resolves several bugs. This is not a security update.
https://calibre-ebook.com/

Krita 5.2.11 resolves several bugs. This is not a security update.
https://krita.org/en/download/

LibreOffice 25.2.5 resolves over 60 bugs. This is not a security update.
https://www.libreoffice.org/

Magento Open Source 2.4.5-p14, 2.4.6-p12, 2.4.7-p7, 2.4.8-p2, and 2.4.9-alpha2 are security updates.
https://helpx.adobe.com/security/products/magento/apsb25-71.html

Manager 25.8.3.2541 doesn’t provide a current change log so should be treated as a security update.
https://www.manager.io/

Notepad++ 8.8.5 has changed their publishing practice to sign their binaries using a self-signed certificate along with a new certificate authority they are encouraging users to install. This is a security update – not just to publish using their own certificate – but to resolve two separate security issues. Again, this is a security update.
https://notepad-plus-plus.org/

Paint.net 5.1.9 adds translations and resolves several bugs. This is not a security update.
https://www.getpaint.net/

PDF-XChange Editor 10.6.1.397 is a security update.
https://www.pdf-xchange.com/product/pdf-xchange-editor

Operating System Updates

These are for specific Linux flavors and alternative operating systems and, sadly, are unlikely to be of interest to most people.

ChromeOS 137.0.7151.137 and ChromeOS 138.0.7204.178 are security updates.
https://chromereleases.googleblog.com/search/label/Stable%20updates+ChromeOS

iOS 18.6 is a security update.
https://support.apple.com/kb/HT204204

iPadOS 18.6 is a security update.
https://support.apple.com/kb/HT204204

macOS 15.6 is a security update.
https://support.apple.com/kb/HT201541

Tails 6.18 is a security update.
https://tails.net/install/download/index.en.html

tvOS 18.6 is a security update.
https://support.apple.com/kb/HT202716

watchOS 11.6 is a security update.
https://support.apple.com/kb/HT204641

Security Software Updates

One or more of these is likely to be of interest to most people.

.NET Runtime 9.0.8 is a security update.
https://dotnet.microsoft.com/en-us/download/dotnet

Java 8u461 is a security update.
https://www.java.com/en/download/manual.jsp

DNSQuerySniffer 1.97 adds a button to clear all current items. This is not a security update.
https://www.nirsoft.net/utils/dns_query_sniffer.html

Hashcat 7.0.0 is a major update, adding several new hash modes and constructs, as well as Docker support, end-point improvements, hardware support, resolves dozens of bugs, and more. This is a massive feature upgrade. This is a security update.
http://hashcat.net/hashcat/#downloadlatest

HTTP Toolkit 1.22.0 doesn’t provide a change log so should be treated as a security update.
https://httptoolkit.tech/

KeePass 2.59 improves performance and resolves several bugs. This is not a security update.
https://keepass.info/

OpenSSL 3.5.2 is a security update.
https://slproweb.com/products/Win32OpenSSL.html

ProtonVPN 4.2.1 resolves a couple bugs. This is not a security update.
https://github.com/ProtonVPN/win-app/releases/latest

RogueKiller 16.2.4 resolves a couple bugs and improves stability. This is not a security update.
https://www.adlice.com/download/roguekiller/

Stinger 13.0.0.429 adds new detections. This is not a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

uBlock Origin 1.65.0 resolves a dozen bugs. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

Greenshot 1.3.296 introduces user/system installation options. This is not a security update.
https://github.com/greenshot/greenshot/releases/latest

Open Broadcaster Software 31.1.2 resolves several bugs. This is not a security update.
https://obsproject.com/

SnagIt 25.3.0 improves step capture, Camtasia integration, and resolves over a dozen bugs. This is not a security update.
https://www.techsmith.com/screen-capture.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.4.6 adds support for new encodings and resolves a couple bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

HandBrake 1.10.0 updates libraries and resolves dozens of bugs. This is not a security update.
https://handbrake.fr/

StreamFab 6.2.4.8 improves parsing and resolves dozens of bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 3.0.2.4 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Education updates

One or more of these are likely to be of interest to most people.

Zotero 7.0.22 resolves several bugs. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password for Mac 8.11.4 improves localization, notifications, and resolves several bugs. This is not a security update.
https://1password.com/downloads/

7-Zip 25.01 is a security update.
https://www.7-zip.org/

7-Zip cmd 25.01 is a security update.
https://www.7-zip.org/

AOMEI Partition Assistant 10.8.2 resolves several bugs. This is not a security update.
https://www.diskpart.com/

Beyond Compare 5.1.2.31185 resolves several bugs. This is a security update.
https://www.scootersoftware.com/download

Bitwarden 2025.7.0 resolves several bugs. This is not a security update.
https://bitwarden.com/

CCleaner 6.38.11537 improves chromium cleaning. This is not a security update.
https://www.ccleaner.com/

Cygwin 3.6.4 resolves several bugs. This is not a security update.
https://cygwin.com/

DesktopOK 11.94 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.5.55.0 updates libraries. This is not a security update.
https://dngrep.github.io/

Etcher 2.1.4 resolves several bugs. This is not a security update.
https://www.balena.io/etcher/

Everything Toolbar 2.0.3 resolves several bugs. This is not a security update.
https://github.com/stnkl/EverythingToolbar/

FoneTool 3.1.0 improves parsing and resolves several bugs. This is not a security update.
https://www.fonetool.com/download.html

GoodSync 12.9.5 resolves several bugs. This is a security update.
https://www.goodsync.com/

grepWin 2.1.11 resolves a replacement bug. This is not a security update.
https://github.com/stefankueng/grepWin/releases/latest

Homedale 2.20 resolves a couple bugs. This is not a security update.
https://www.the-sz.com/products/homedale/

HWiNFO 8.30 adds support for new hardware and improves compatibility. This is not a security update.
https://www.hwinfo.com/download/

IsMyHdOK 4.24 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

MobileFileSearch 1.50 adds encoding support. This is not a security update.
https://www.nirsoft.net/utils/mobile_device_file_search.html

MPAM 1.435.61.0 updates definitions. This is not a security update.
https://www.microsoft.com/en-us/wdsi/defenderupdates

NTLite 2025.08.10552 improves component controls and resolves a couple bugs. This is not a security update.
https://www.ntlite.com/download/

OSForensics 11.1.1010 is a security update.
https://www.osforensics.com/download.html

osquery 5.18.1 resolves several bugs. This is not a security update.
https://osquery.io/downloads

PSAppDeploy 4.1.0 is a major update introducing SYSTEM deployment options, dozens of new and improved functions and resolves several bugs. This is not a security update.
https://psappdeploytoolkit.com/

RoboForm 9.7.9 resolves a couple bugs. This is not a security update.
https://www.roboform.com/

SearchMyFiles 3.35 adds encoding support and a command-line option to select specific columns. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

TraceRouteOK 3.49 improves testing and updates language support. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/TraceRouteOK

WinGet 1.11.430 removes 32-bit ARM support, adds DSCv3 support, and resolves a couple bugs. This is not a security update.
https://github.com/microsoft/winget-cli/releases/latest

WinRAR 7.13 is a security update.
https://www.rarlab.com/

WinScan2PDF 9.39 improves testing and updates language support. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

Developer Updates

These are unlikely to be of interest to most people.

Android Studio 2025.1.2.11 resolves several bugs. This is not a security update.
https://developer.android.com/studio

cx_Freeze 8.4 updates libraries and resolves dozens of bugs. This is not a security update.
https://cx-freeze.readthedocs.io/en/latest/index.html

GDevelop 5.5.238 adds AI side panel and resolves several bugs. This is not a security update.
https://gdevelop.io/download

GitHub Desktop 3.5.2 resolves several bugs. This is not a security update.
https://desktop.github.com/

Go 1.24.6 is a security update.
https://go.dev/

Inno Setup 6.5.0 adds commercial licensing, dozens of new features, including improved encryption and compression and signature verification. This is a security update.
https://www.jrsoftware.org/isdl.php

Microsoft Visual C++ 2022 Redistributable 14.44.35211.0 is a security update.
https://learn.microsoft.com/en-us/cpp/windows/latest-supported-vc-redist

Node.js 20.19.4 is a security update.
https://nodejs.org/en/

Node.js 22.18.0 is a security update.
https://nodejs.org/en/

Node.js 24.5.0 is a security update.
https://nodejs.org/en/

Python 3.13.6 is a security update.
https://www.python.org/downloads/

SQLite 3.50.4 resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

Visual Studio Code 1.103 resolves several bugs. This is not a security update.
https://code.visualstudio.com/

WinMerge 2.16.50 updates libraries and resolves several bugs. This is a security update.
https://winmerge.org/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 7.1.12 is a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Coppermine Gallery 1.6.27 improves compatibility and resolves several bugs. This is not a security update.
https://coppermine-gallery.net/

HumHub 1.17.3 resolves several bugs. This is not a security update.
https://www.humhub.com/en

MAC Vendors 25-08-12 updates definitions. This is not a security update.
https://maclookup.app/

Piwigo 15.6.0 resolves a couple bugs. This is not a security update.
https://piwigo.org/

YOURLS 1.10.2 changes container port defaults and resolves several bugs. This is not a security update.
https://yourls.org/

WordPress 6.8.2 resolves dozens of bugs. This is not a security update.
https://wordpress.org/

Antispam Bee 2.11.8 improves documentation. This is not a security update.
https://wordpress.org/extend/plugins/antispam-bee/

Contact Form 7 6.1.1 is a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Duplicator 1.5.13.1 resolves several bugs. This is not a security update.
https://wordpress.org/plugins/duplicator

Postie 1.9.70 improves draft support and resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/postie/

Sucuri Security 2.3 provides several cosmetic improvements. This is not a security update.
https://wordpress.org/extend/plugins/sucuri-scanner/

WP Add Custom CSS 1.2.0 improves performance. This is not a security update.
https://wordpress.org/extend/plugins/wp-add-custom-css/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2025-04-08

Posted on April 8, 2025 by Shawn K. Hall

Happy Easter, Folks!

Today is Patch Tuesday for April, 2025.

It’s as safe as it’s going to be to upgrade to Windows 11 24H2 or macOS 15/Sequoia.

If your Windows 10 (or older) computer can not be upgraded to Windows 11, or if you used a registry or installation bypass to install an older version of Windows 11 on it that is no longer supported, then it’s time for you to start looking for a replacement computer. Actually, the time was 3 months ago. Pickin’s are thin right now. 🙁

There were 320+ major hacks, and over 360 application updates this month. It’s a relatively small month, with about 2.5 GB of updates for most users.

This Month in Technology

13cabs, 9,300 WordPress websites (ClearFake), 150,000 WordPress websites (DollyWay), 70mai A510, Abracadabra, Access TeleCare, Adobe Acrobat Reader, ALN Medical Management, Amazon AWS CloudFormation, AMI MegaRAC, an Asian telecom, Android, Apache Parquet, Apache Pinot, Apache Tomcat, APIsec, Apple macOS, Apple Passwords app, Apple WebKit, Arista NG Firewall, Around the Clock Companies, Arts Council England, Ascoma Group, Association of Superannuation Funds of Australia, Astral Foods, Atlantis Operating LLC, Atlas CPAs & Advisors, Atutech, AustralianSuper, Autodesk AutoCAD, Autodesk Navisworks, Autodesk Payapps, Baidu, Bank of China, Barebox, Baylor Scott & White Texas Spine & Joint Hospital, Bdrive NetDrive, BDSM People, Beacon Health System, BEC Technologies Routers, Bigfork Valley Hospital, Blue Shield of California, Boulanger, Brave browser, Brish, Brocade Fibre Channel switches, BTS member Jungkook, Buckinghamshire Council, Bybit, California Cryobank, Canon printers, Capilano University (CapU), Cardiff City Council Department of Children’s Services, Cargills Bank, CarlinKit CPC200-CCPA, CDHA Management, Center for Digestive Health, CHC Solutions, Inc, Check Point, Check Point ZoneAlarm, Cherokee County School District, Chica, Choco Tei Camera, Chord Specialty Dental Partners, Chrome, Cisco IOS XR, Cisco Smart Licensing Utility, City of Lubbock, Ciuni & Panichi, Clinic’s Patient Management System, Cloudflare WAF, Columbia Eye Clinic, Compumedics, Concord Orthopaedics, Costa Rican President’s YouTube, Cottrill’s Pharmacy, Crossroads Trading Co, CrushFTP, CSG Consultants, D&S Insurance Agency, Dameron Hospital, DBS Signapore, Dell Unity, Dignity Health Lassen Medical Clinic, Dove Healthcare, DrayTek routers, Drugs.com, Dutch Public Prosecution Service, Edimax Cameras, El Camino Real Academy, Eprice, Erickson Companies, ESET security, ESHYFT, Europcar Mobility Group, Everest ransomware gang, Exim, Facebook FreeType 2, FacePass, Fidelity Life, First City Credit Union, Food For The Poor, Fortinet FortiWeb, French Department of Education, Gay Daddy, Georgia Urology, German Doner Kebab, Gilead Sciences, GIMP, GitLab Community Edition, GitLab Enterprise Edition, Google Quick Share, Grede Holdings, Growatt, GRUB2, Guardian Life Insurance, Hamilton County, Hand & Plastic Surgery Centre, Harcourts Prime Properties, Health NZ, HealthEquity, Hellenic Open University, HHH Acquisition, LLC, Highline Public Schools, Hillcrest Convalescent Center, Hokkaido Jalan, Houston Housing Authority, Houston Surgery Center, HTW Dresden, Hydro-Vacuum SA, ImagineX, Infosys McCamish Systems, Insignia, IOU Financial, Iraqi Council of Ministers, Iraqi Ministry of Finance, Islamic Republic of Iran Shipping Company, Ivanti Connect Secure, Jaguar Land Rover, Jira, Junos OS, Karl Malone Auto Group, Keeco Home, Klickitat Valley Health, Korea Aerospace Research Institute, Kronick Moskovitz Tiedemann & Girard, Kuala Lumpur Airport, Kubernetes Ingress Nginx Controller, LA Financial Federal Credit Union, Laborers’ International Union of North America, Local 1184, Lafayette Federal Credit Union, Lake Psychological Services, Lake Washington Vascular, Lee University, Legacy Professionals LLP, Lena Pope Home Inc, LensDeal, Lexipol, Life University, LiUNA, Lloyds Bank, Lukoil, Luxion KeyShot, Lyon Living, Lyon Management Group, M.A.D Mobile, Madison County, Mississippi, Malaysia Airports Holdings Bhd, Marina Bay Sands Singapore, Mark Thomas, Medway Community Healthcare, Meigs County Emergency Medical Services, Mercado Libre, Mercer County Joint Township Community Hospital, Merkur, Microsoft Exchange Online and M365, Microsoft SharePoint, Microsoft’s Trusted Signing platform, Microsoft’s Visual Studio Code Marketplace, Millennium Home Health Care, Mirror Mirror Beauty Boutique, Mission Bell Mfg, Mission, Texas, Monro, Inc, Morton Golf LLC, mySCADA myPRO, NAKIVO Backup & Replication, National Defense Corporation, National Iranian Tanker Company, NetApp SnapCenter, Nevro, New Era Life Insurance Companies, New South Wales Court Registry, New York University (NYU), NewAgeSys, NexOpt, Next.js, NI FlexLogger, NI Vision Builder AI, Nice Healthcare, Northern Ireland Commission, Northwest Retirement Plan Consultants, NTT, Numotion, NVIDIA Riva, OBI Seafoods, Oracle Cloud (from 2017!), Oracle Health, OrthoMinds, Pacific Residential Mortgage, Palmetto Subacute Care Center, Palo Alto Deep Packet Inspection, PAR Rehab, Parascript, Parcel Plus, PDF-XChange Editor, Pennsylvania State Education Association, pgAdmin, Pinehurst Radiology Consultants, Pineland Community Service Board, Pink, Port of Seattle, Presbyterian Health Plan, Progress Software Kemp LoadMaster, PTS News, Rakuten Securities, RansomHub, Red Lion Borough, PA, Rinehart Dentistry, Riverdale Joint Unified School District, Rodl Management, Royal Mail, SAG-AFTRA Health Plan, Sam’s Club, Samsung Germany, Sentara Health, Shopify Collabs, Shopify Pitchfork, Siegel Group, Siemens Simcenter, SimonMed, SIR.trading, SMA, Smart ERP Solutions, SoloPoint Solutions, Southeast Series of Lockton Companies, Spark DSO, SpotBugs, SpyX, St. Joseph’s College of Maine, State Bar of Texas, State of California, Department of Child Support Services, STE Group, STMicroelectronics X-CUBE, Stram Center for Integrative Medicine, StreamElements, Sungrow, Sydney Tools, Tata AIG, Tata Technologies, Tesla, TFE hotels group, Thailand Post, The Junction Casino Hotel, The Pension Specialist, Three Rivers Hospital, Toppan Next Tech, Topy America Inc, Tor Browser, Translove, Trend Micro Cleaner One, Trinity Petroleum Management, Troy Hunt’s Mailchimp List, Twilio SendGrid, Twitter (X), U-Boot, UAE Water & Electric Power, Ubuntu Linux, Ukrzaliznytsia, Ulrich Investment Consultants, Union County, United Domestic Workers of America, United Faith Ministries, United Seating and Mobility, Unitree Go1 robot dogs, University Diagnostic Medical Imaging, University of Notre Dame Fremantle, Urban Dictionary, Verizon Call Filter, VF Outdoor, Virginia Attorney General’s Office, Vista Point Mortgage, Vitenas Cosmetic Surgery, VMware Tools for Windows, Vroom, Watcher Guru, Welts, White, & Fontaine, WEMIX, Wesizwe, Western Alliance Bank, Western Wayne Family Physicians, WhatsApp, Whitman Hospital & Medical Clinics, WideOpenWest, William F Rinehart DMD PA, Windows, Windows Kernel, WinRAR, WK Kellogg Co, Woori Card, Word & Brown Insurance Administrators, WordPress Simple WP Events plugin, WordPress WooCommerce plugin, WordPress WP Ghost plugin, WordPress WP RealEstate plugin, WordPress WP Ultimate CSV Importer plugin, X.Org Server, Xen HVM, YAP Health Services, Yucatán Government, ushin America, zkLend hacker (lol), and Zoth Protocol have reported hacking or compromises this month.

ChatGPT, Cloudflare R2, DrayTek routers, Microsoft Exchange Online, Moscow Metro, and Naval Station Norfolk have suffered from outages this month.

Last months updates broke Microsoft Snipping Tool, Remote Desktop, security services including SenseShield on Windows 11 24H2, the ability to return to Outlook “Classic”, USB printers, Veeam recovery, and VMware Workstation updates.

23andMe has filed for bankruptcy, but not before they created plans to sell off all your DNA details.

Apple broke their N+2 trend and released security updates for much older devices to address critical vulnerabilities.

DoH (DNS over HTTPS) is being used to hijack mail accounts with extremely well-targeted phishing pages. How effective are phishing websites? Effective enough to get even the creator of Have I Beep Pwned to fall for it.

Microsoft has changed their mind on disabling WSUS driver sync. Microsoft is testing a new “quick machine recovery” platform to recover from buggy driver updates preventing the operating system from booting. Microsoft is removing the BypassNRO script from Windows 11 installers, but the underlying registry settings will still be available (for now).

Now for the good news:

Linux is making headway – more than 2% of devices running Steam are now actively using Linux.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is relatively small this month. The typical computer should see roughly 2.5 GB in updates today. Let’s get started.

Microsoft released 78 updates to address 128 vulnerabilities in Active Directory Certificate Services, Active Directory Domain Services, ASP.NET Core, Azure Local, Azure Local Cluster, Azure Portal Windows Admin Center, DirectX Graphics Kernel, HTTP.sys, Kerberos Key Distribution Proxy, Microsoft AutoUpdate (MAU), Microsoft Dynamics Business Central, Microsoft Edge, Microsoft Edge for iOS, Microsoft Excel, Microsoft Message Queuing (MSMQ), Microsoft Office, Microsoft Office Excel, Microsoft Office OneNote, Microsoft Office SharePoint, Microsoft Office Word, Microsoft OneNote, Microsoft SharePoint, Microsoft Streaming Service, Microsoft System Center, Microsoft Virtual Hard Drive, Microsoft Word, OpenSSH for Windows, Outlook for Android, Remote Desktop Client, Remote Desktop Gateway Service, RPC Endpoint Mapper Service, Servicing Stack Updates, Visual Studio, Visual Studio Code, Visual Studio Tools, Windows Active Directory Certificate Services, Windows BitLocker, Windows Bluetooth Service, Windows Common Log File System Driver, Windows Cryptographic Services, Windows Defender Application Control (WDAC), Windows Digital Media, Windows Hello, Windows Hyper-V, Windows Installer, Windows Kerberos, Windows Kernel, Windows Kernel Memory, Windows Kernel-Mode Drivers, Windows Lightweight Directory Access Protocol (LDAP), Windows Local Security Authority (LSA), Windows Local Session Manager (LSM), Windows Mark of the Web (MOTW), Windows Media, Windows Mobile Broadband, Windows NTFS, Windows Power Dependency Coordinator, Windows Process Activation, Windows Remote Desktop Services, Windows Resilient File System (ReFS), Windows Routing and Remote Access Service (RRAS), Windows Secure Channel, Windows Security Zone Mapping, Windows Shell, Windows Standards-Based Storage Management Service, Windows Subsystem for Linux, Windows TCP/IP, Windows Telephony Service, Windows Universal Plug and Play (UPnP) Device Host, Windows Update Stack, Windows upnphost.dll, Windows USB Print Driver, Windows Virtualization-Based Security (VBS) Enclave, Windows Win32K – GRFX, and MSRT. This includes security updates. A reboot is required.

Apple released updates for iOS 15.8.4, iOS 16.7.11, iOS 18.4, iPadOS 15.8.4, iPadOS 16.7.11, iPadOS 17.7.6, iPadOS 18.4, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, Safari 18.4, tvOS 18.4, visionOS 2.4, watchOS 11.4, and Xcode 16.3. This includes security updates. Use Apple Software Update to install the most current versions.

iOS 15.8.4, 16.7.11, and 18.4 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 15.8.4, 16.7.11, 17.7.6, and 18.4 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 11.4 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 18.4 is a security update. Use System, Software Update to install the most current version.

visionOS 2.4 is a security update. Use System, Software Update to install the most current version.

Google ChromeOS 134.0.6998.183 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Windows 11 is now stable and can be upgraded to if your hardware supports it. If not, switch to Linux (Mint is nice) or replace your computer.

Driver Updates

If you’re using this hardware – these updates are for you.

GoXLR Utility 1.2.0 resolves several bugs and improves firmware update. This is not a security update.
https://github.com/GoXLR-on-Linux/goxlr-utility/

Logitech Options 10.24.3 improves compatibility with Microsoft Office. This is not a security update.
https://support.logi.com/hc/en-us/articles/360025297893

TP-Link Archer AX73 v2.0 250210 is a security update.
https://www.tp-link.com/us/support/download/archer-ax73/v2.0/#Firmware

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.77.95 is a security update.
https://brave.com/

Firefox 137.0.1 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 128.9.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Google Chrome 135.0.7049.52 is a security update.
https://www.google.com/chrome/

Vivaldi 7.3.3635.7 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Spark 3.22.6.104601 resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.22.6.104600 resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Thunderbird 137.0.1 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 9.5.0 resolves more than a dozen bugs and improves multiple monitor support and AnyDeskOne compatibility. This is not a security update.
https://anydesk.com/en/downloads

AnyDesk (macOS) 9.0.1 is a security update.
https://anydesk.com/en/downloads

BrowsingHistoryView 2.60 adds black background support. This is not a security update.
https://www.nirsoft.net/utils/browsing_history_view.html

curl 8.13.0 improves debugging and resolves nearly 300 bugs. This should be treated as a security update.
https://curl.haxx.se/windows/

Discord April 3, 2025 resolves dozens of bugs. This is not a security update.
https://discord.com/download

Dropbox 221.4.5365 resolves a cosmetic bug. This is not a security update.
https://www.dropbox.com/

FileZilla Server 1.10.1 resolves several bugs. This is not a security update.
https://filezilla-project.org/

FreeFileSync 14.3 adds IDN support and resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 106.0 now officially supports ARM64 on Windows. This is not a security update.
https://drive.google.com/start

Grocy Desktop 2.14.0 improves compatibility. This is not a security update.
https://github.com/grocy/grocy-desktop

MeshCentral 1.1.43 resolves several bugs. This is not a security update.
https://meshcentral.com/info/downloads.html

Microsoft Teams 1.8.00.6262 adds one-time passcode authentication, Storyline integration, chat controls and increases attendees to a max of 50,000 for Premium. This is not a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 31.0.2 updates libraries and resolves dozens of bugs. This is not a security update.
https://nextcloud.com/

Pocketnet-Core 0.22.14 resolves several bugs. This is not a security update.
https://pocketnet.app/

Pocketnet-GUI 0.9.116 is a security update.
https://pocketnet.app/

Signal 7.49.0 now synchronizes recent activity to new devices. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 7.38.7 now synchronizes recent activity to new devices. This is not a security update.
https://signal.org/android/apk/

Syncthing 1.29.4 resolves a couple bugs. This is not a security update.
https://syncthing.net/

Technitium DNS Server 13.5 resolves several bugs and implements new features. This is not a security update.
https://technitium.com/dns/

Telegram 5.13.1 resolves a crash bug. This is not a security update.
https://telegram.org/

WinSCP 6.5 resolves several bugs. This is not a security update.
https://winscp.net/eng/index.php

Zoom 6.4.3.63669 resolves several bugs. This is not a security update. The recent 6.4 update adds dozens of new features and a new user interface – it is also a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 4.0.16 adds several new 3D environments. This is not a security update.
https://en.3tene.com/

Grayjay 291 adds search and sorting to playlists, improves filters and search, and resolves several bugs. This is not a security update.
https://grayjay.app/index.html

iTunes 12.13.7.1 improves compatibility. This is a security update.
https://www.apple.com/itunes/download/

Game Updates

These are unlikely to be of interest to most people.

Minecraft Server (Bedrock) 1.21.72.01 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

Minecraft Server (Java) 1.21.5 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server

PS5 2025.314 improves compatibility and parental controls. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2025.04.01 improves compatibility and resolves several bugs. This is not a security update.
https://store.steampowered.com/news/app/593110

SteamOS SteamDeck Update 2025.03.31 improves compatibility and resolves several bugs. This is not a security update.
https://store.steampowered.com/news/app/1675200/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe AEM Forms 6.5.22.0 is a security update.
https://helpx.adobe.com/security/products/aem-forms/apsb25-27.html

Adobe AEM Screens 6.5 FP11.4 is a security update.
https://helpx.adobe.com/security/products/aem-screens/apsb25-32.html

Adobe After Effects 24.6.5 and 25.2 are security updates.
https://helpx.adobe.com/security/products/after_effects/apsb25-23.html

Adobe Animate 23.0.11 and 24.0.8 are security updates.
https://helpx.adobe.com/security/products/animate/apsb25-31.html

Adobe Bridge 14.1.6 and 15.0.3 are security updates.
https://helpx.adobe.com/security/products/bridge/apsb25-25.html

Adobe ColdFusion 2025.1, 2023.13 and 2021.19 are security updates.
https://helpx.adobe.com/security/products/coldfusion/apsb25-15.html

Adobe Commerce B2B 1.5.2, 1.4.2-p5, 1.3.5-p10, 1.3.4-p12, and 1.3.3-p13 are security updates.
https://helpx.adobe.com/security/products/magento/apsb25-26.html

Adobe Commerce 2.4.8, 2.4.7-p5, 2.4.6-p10, 2.4.5-p12, and 2.4.4-p13 are security updates.
https://helpx.adobe.com/security/products/magento/apsb25-26.html

Adobe FrameMaker 2020.8 and 2022.6 are security updates.
https://helpx.adobe.com/security/products/framemaker/apsb25-33.html

Adobe Magento Open Source 2.4.8, 2.4.7-p5, 2.4.6-p10, 2.4.5-p12, and 2.4.4-p13 are security updates.
https://helpx.adobe.com/security/products/magento/apsb25-26.html

Adobe Media Encoder 24.6.5 and 25.2 are security updates.
https://helpx.adobe.com/security/products/media-encoder/apsb25-24.html

Adobe Photoshop 26.5 and 25.12.2 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb25-30.html

Adobe Premiere Pro 25.2 and 24.6.5 are security updates.
https://helpx.adobe.com/security/products/premiere_pro/apsb25-28.html

Adobe XMP Toolkit SDK 2025.03 is a security update.
https://helpx.adobe.com/security/products/xmpcore/apsb25-34.html

Aronium 1.45.0.1 resolves a bug in the Z report. This is not a security update.
https://aronium.com/

Artweaver 7.0.18 is a security update.
https://www.artweaver.de/

Audacity 3.7.3 resolves several bugs. This is not a security update.
https://www.audacityteam.org/download/

Calibre 8.2.1 improves compatibility and resolves a couple bugs. This is not a security update.
https://calibre-ebook.com/

Ghostscript 10.05.0 adds several new syntax controls. This is a security update.
https://www.ghostscript.com/releases/gsdnld.html

GIMP 3.0 is a major update (the first in 7 years!) which adds huge strides in many features and improves compatibility and stability. GIMP 3.0.2 resolves several bugs. This is not a security update.
https://www.gimp.org/

GnuCash 5.11 resolves almost 20 bugs and improves stability. This is not a security update.
https://www.gnucash.org/

LibreOffice 24.8.6 resolves over 30 bugs. This is not a security update.
https://www.libreoffice.org/

LibreOffice Fresh 25.2.2 resolves over 80 bugs. This is a security update.
https://www.libreoffice.org/

Manager 25.4.3.2227 doesn’t provide a detailed change log so should be treated as a security update.
https://www.manager.io/

Nextcloud Desktop 3.16.2 resolves several bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.7.9 resolves several bugs. This is not a security update.
https://notepad-plus-plus.org/

Paint.net 5.1.7 resolves a couple bugs. This should be treated as a security update.
https://www.getpaint.net/

Operating System Updates

These are for specific Linux flavors and alternative operating systems and, sadly, are unlikely to be of interest to most people.

ChromeOS 134.0.6998.183 is a security update.
https://chromereleases.googleblog.com/search/label/Stable%20updates+ChromeOS

iOS 18.4 is a security update.
https://support.apple.com/kb/HT204204

iPadOS 18.4 is a security update.
https://support.apple.com/kb/HT204204

macOS Sequoia 15.4, Sonoma 14.7.5 and Ventura 13.7.5 are security updates.
https://support.apple.com/kb/HT201541

Tails 6.14.1 is a security update.
https://tails.net/install/download/index.en.html

tvOS 18.4 is a security update.
https://support.apple.com/kb/HT202716

watchOS 11.4 is a security update.
https://support.apple.com/kb/HT204641

Zorin OS 17.3 is a huge compatibility update, adds improved alternative detections and suggestions, changes the default browser to Brave, and improves the Zorin Connect app to better function as an input device for the latest Zorin OS release. This should be treated as a security update.
https://zorin.com/os/mirrors/

Security Software Updates

One or more of these is likely to be of interest to most people.

Caine 14.0 improves UEFI support and updates kernel. This is a security update.
https://www.caine-live.net/

Chainsaw 2.12.2 is a housekeeping release. This is not a security update.
https://github.com/countercept/chainsaw

MalwareBytes Desktop Security 5.2.10.182 is a security update.
https://www.malwarebytes.org/antimalware/

ProtonVPN 4.1.10 updates the user interface, adds a list of recent connections to quick access, and adds advanced profile settings such as port forwarding and autolaunch behaviors. This is not a security update.
https://github.com/ProtonVPN/win-app/releases/latest

RogueKiller 16.1.2 expands the monitoring capabilities and improves detection logic. This should be treated as a security update.
https://www.adlice.com/download/roguekiller/

Stinger 13.0.0.342 adds support for new detections. This is not a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

SuperAntiSpyware 10.0.1274 resolves several bugs. This is not a security update.
https://www.superantispyware.com/download.html

uBlock Origin 1.63.2 resolves a major stability issue. This should be treated as a security update.
https://github.com/gorhill/uBlock/releases/latest

Velociraptor 0.74.1 improves the Sigma editor and adds new live event sources. This is not a security update.
https://github.com/Velocidex/velociraptor/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

ScreenToGif 2.41.2 adds AVIF support and resolves a couple bugs. This is not a security update.
https://github.com/NickeManarin/ScreenToGif/releases/latest

SnagIt 25.1.0 updates libraries, improves step capture, smart redact, stability and performance, and resolves several bugs. This is a security update.
https://www.techsmith.com/screen-capture.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.3.8 adds support for new encodings and improves OCR detection for subtitles. This is not a security update.
https://www.dvdfab.cn/download.htm

MakeMKV 1.18.1 adds support for new encodings and resolves a couple bugs. This is not a security update.
https://www.makemkv.com/download/

StreamFab 6.2.2.8 improves compatibility, adds support for newer playlist and distribution formats, and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 3.0.1.2 resolves several bugs and adds faster upscaling model. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Education updates

One or more of these are likely to be of interest to most people.

Zotero 7.0.15 resolves several bugs. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.10.70 adds new internetional keyboard layout support. This is not a security update.
https://1password.com/downloads/

AOMEI Partition Assistant 10.8.0 finally adds a built-in update mechanism, improves Windows-To-Go support, and resolves several bugs. This is not a security update.
https://www.diskpart.com/

Bitcoin 28.1 adds new features, bug fixes and performance improvements. This is not a security update.
https://bitcoin.org/en/download

Bitwarden 2025.3.0 adds 2SL login support to the user interface and resolves several bugs. This is not a security update.
https://bitwarden.com/

CCleaner 6.34.11482 resolves several bugs. This is not a security update.
https://www.ccleaner.com/

CPU-Z Installer 2.15 adds support for newer hardware. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

Cygwin 3.6.0-1 adds several new APIs, improves compatibility and resolves several bugs. This is not a security update.
https://cygwin.com/

Dell Command Update 5.5 adds automatic driver downloads to the Advance Driver Restore operation. This is not a security update.
https://www.dell.com/support/article/us/en/04/sln311129/dell-command-update?lang=en

DesktopOK 11.71 resolves a couple bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

DiskCheckup 3.6 doesn’t provide a detailed change log so should be treated as a security update.
https://www.passmark.com/products/diskcheckup/

dnGrep 4.4.9.0 resolves several bugs. This is a security update.
https://dngrep.github.io/

email-oauth2-proxy 2025-03-14 resovles several bugs. This is not a security update.
https://github.com/simonrob/email-oauth2-proxy

Eraser 6.2.0.2996 doesn’t provide a change log so should be treated as a security update.
https://eraser.heidi.ie/download/

ESEDatabaseView 1.78 adds an optional black background. This is not a security update.
https://www.nirsoft.net/utils/ese_database_view.html

Everything Toolbar 1.5.2 improves compatibility and resolves a couple bugs. This is not a security update.
https://github.com/stnkl/EverythingToolbar/

FoneTool 2.10.0 adds support to back up ringtones, improves System Repair and iTunes compatibility and resolves several bugs. This is not a security update.
https://www.fonetool.com/download.html

GoodSync 12.8.7 resolves several bugs. This is not a security update.
https://www.goodsync.com/

HWiNFO 8.24 adds support for newer hardware. This is not a security update.
https://www.hwinfo.com/download/

ImageUSB 1.5.1007 resolves a hardware compatibility bug. This is not a security update.
https://www.osforensics.com/tools/write-usb-images.html

Kingston SSD Manager 1.5.4.9 doesn’t provide a change log so should be treated as a security update.
https://www.kingston.com/us/support/technical/ssdmanager

ManageWirelessNetworks 1.16 adds option to save all items. This is not a security update.
https://www.nirsoft.net/utils/manage_wireless_networks.html

NConvert 7.221 doesn’t provide a change log so should be treated as a security update.
https://www.xnview.com/en/nconvert/

NTLite 2025.03.10351 improves new Windows UEFI build behavior and updates libraries. This is not a security update.
https://www.ntlite.com/download/

OSForensics 11.1.1004 resolves several bugs. This is not a security update.
https://www.osforensics.com/download.html

PowerToys 0.90.0 adds several new features and resolves a bunch of bugs. This is a security update.
https://github.com/microsoft/PowerToys/releases/latest

RoboForm 9.6.6 changes a couple behaviors and resolves several bugs. This is not a security update.
https://www.roboform.com/

ScreenConnect 25.2.3.9216 resolves several bugs and now imposes a hardcoded email limit in the name of security – which means that monitoring events using the email action will no longer be reliable.
https://screenconnect.connectwise.com/download

SSD Life 2.5.82 adds support for newer hardware. This is not a security update.
https://ssd-life.com/eng/download-ssdlife.html

Starwind V2V Converter 9.626 improves conversions from Hyper-V to ESXi. This is not a security update.
https://www.starwindsoftware.com/starwind-v2v-converter

TeamViewer 15.64.3 adds several new management features and resolves a couple bugs. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

WakeMeOnLan 1.93 adds a black background option. This is not a security update.
https://www.nirsoft.net/utils/wake_on_lan.html

WinRAR 7.11 resolves several bugs. This is not a security update.
https://www.rarlab.com/

WinScan2PDF 9.31 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WizFile 3.12 resolves a bug. This is not a security update.
https://antibody-software.com/wizfile/

Developer Updates

These are unlikely to be of interest to most people.

Android Studio 2024.3.1.14 resolves several bugs. This is not a security update.
https://developer.android.com/studio

cx_Freeze 8.1 updates libraries and resolves several bugs. This should be treated as a security update.
https://cx-freeze.readthedocs.io/en/latest/index.html

GameMaker Studio 2024.13.0.190 resolves over 500 bugs. This should be treated as a security update.
https://www.yoyogames.com/en/gamemaker

GDevelop 5.5.228 resolves a couple cosmetic bugs. This is not a security update.
https://gdevelop.io/download

Go 1.24.2 is a security update.
https://go.dev/

Godot 4.4.1 is a security update.
https://godotengine.org/

Inno Setup 6.4.2 adds a new setup directive. This is not a security update.
https://www.jrsoftware.org/isdl.php

Node.js 18.20.8 is a security update.
https://nodejs.org/en/

Node.js 20.19.0 resolves several bugs. This is not a security update.
https://nodejs.org/en/

Node.js 23.11.0 updates libraries and resolves several bugs. This is not a security update.
https://nodejs.org/en/

Python 3.13.3 resolves dozens of bugs. This is a security update.
https://www.python.org/downloads/windows/

Visual Studio Code 1.99.1 resolves several bugs. This is a security update.
https://code.visualstudio.com/

Web Package Updates

These are likely to be of interest only to web developers.

Adminer 5.2.0 resolves several bugs and adds cosmetic improvements. Adminer has been under very active development the last couple months so expect many more future updates over time.
https://www.adminer.org/en/

Grocy 4.5.0 implements a new barcode reader and resolves a couple bugs. This is not a security update.
https://github.com/grocy/grocy

HumHub 1.17.2 resolves several bugs. This is not a security update.
https://www.humhub.com/en

Joomla 5.2.6 and 4.4.13 are security updates.
https://www.joomla.org/

MailEnable 9.88 and 10.52 are security updates.
https://www.mailenable.com/

OpenCart 4.1.0.3 resolves several bugs. This is not a security update.
https://www.opencart.com/

Piwigo 15.5.0 resolves several bugs. This is not a security update.
https://piwigo.org/

YOURLS 1.10.0 updates requirements, dependences and resolves several bugs. This is not a security update.
https://yourls.org/

BuddyPress 14.3.4 is a security update.
https://wordpress.org/extend/plugins/buddypress/

My Sticky Bar 2.7.8 improves user interface. This is not a security update.
https://wordpress.org/extend/plugins/mystickymenu/

WordPress Importer 0.8.4 resolves a couple bugs. This should be treated as a security update.
https://wordpress.org/extend/plugins/wordpress-importer/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2024-11-12

Posted on November 12, 2024 by Shawn K. Hall

Happy Thanksgiving, Folks!

Today is Patch Tuesday for November, 2024.

Hold the line: do not upgrade to 24H2 yet. There have been quite a few issues. Let everyone else be the guinea pigs.

Windows 10 now has only 11 months of support left. If your computer can not be upgraded to Windows 11 either start planning for a switch to Linux or replacing your computer.

There are critical security updates for all supported Apple products and (as is now the norm) new critical security updates for every browser every single week.

QuickBooks Desktop 2025 will be released later this month, and on November 1st all previous versions of QuickBooks Desktop will be end-of-life (EOL).

Windows Server 2025 has been released. And it’s “accidentally” being force-installed on recent Windows Server builds.

Entrust certificates are being disavowed as soon as today. There have been months to prepare, but this will still kill off about 0.1% of active SSL certificates.

There were 645+ major hacks and over 525 application updates this month.
It’s a huge month, with about 5 GB of updates for most users.

This Month in Technology

1st Credentialing, 1StopBedrooms, 1stUnited Credit Union, 20 Canadian government networks, 5.11, Abbott Laboratories Employees Credit Union, Absolute Machine Tools, Acadian Ambulance Service, Inc, Accounting Resource Group, Acko.ru, Action Heating & Cooling, Adguard Home, ADT, Advanced Accounting & Business Advisory, Advanced Recovery Equipment & Supplies, AeoTec Smart Home Hub, AEP, Air Specialists Heating & Air Conditioning, Al Ahly SC, Al Fajer School, Alliance Laundry Systems, AlpineReplay, Altenen, Amazon, Ambica Steels, American Mechanical, Inc, American Medical Billing, American River College, American Water, Amourgis & Associates, Android, ANU Enterprise, Apache Mills, Inc, Apache Solr, Apex, Apple iPhone, Apple macOS, Arango Billboard, Arctrade, Arkansas Blue Cross and Blue Shield, Asheville Arthritis Centre, Aspen Healthcare, Astac, Atlantic Coast Consulting Inc, Atlantic Medical Management, ATSG Inc, AudoCAD, Australian Nursing Home Foundation, Aviva Spain, Axis Health System, Ayurvedic Herbs Online, Azure AI, Bahrain government, Banco Sucredito Regional, Barnes Cohen and Sullivan, Bel-Air Bay Club Ltd, Belle Tire, Berling.gr, Berridge Manufacturing Co, Bethalto School District, Birth Choice of San Marcos, Blackburn College, Bliss Worldwide, BNBuilders, Boart Longyear, Boston Children’s Health Physicians, Brandenburger Plumbing, Brazil’s SAIC, BrightStar Care, BSN Sports, Bucharest’s District 5 City Hall, Buenos Aires, Burgess Kilpatrick, Bury Council, UK, BWD Technology, By Design LLC, Byerly Aviation, C & C Industries, Caleb & Brown, Calgary Public Library, California Department of Social Services, Call of Duty, Campus.gov.il, Canon imageCLASS MF656Cdw, Cape Cod Regional Technical High School, Cardiology of Virginia, Carolina Arthritis, CAS Software, Casio, Cathexis Holdings LP, Center for Urban Community Services, Central Pennsylvania Food Bank, Central Tickets, Centreon, CGR Technologies, Cheasapeake Regional Information System for our Patients, Inc, Chicago Cardiology Institute, Children’s Health Ireland, Chimienti & Associates, CIIT Wah, Cisco DevHub, City of Sheboygan, CLAS Information Services, Clay Platte Family Medicine, Clayton Properties Group, Clear Connection, ClickFix, Club Vélez Sarsfield, College of Business – Tanzania, Columbus, OH, Comcast, Community Day School, Community Dental in Portland, Compex Legal Services Inc, Compound, Continental Casualty Company, CoPilot, Cordogan Clark and Associates, Cornerstone Healthcare Group Management Services LLC, Corporate Job Bank, Costa Del Sol Hotels, Cottonwood Union School District, Country Club El Bosque, Country Inn & Suites by Radisson, CreaGen Inc, CreditRiskMonitor, Crypto Vеnturе Cаpitаl, CSU Contracting, Cucamonga Valley Water District, CUSO Financial Services, LP, CyberPanel, D-Link routers, Dana Safety Supply, De Rose Lawyers, Delfin Design & Manufacturing, Delta Electronics CNCSoft-G2, Delta Electronics DIAScreen, Delta Electronics InfraSuite, Dennis Kirk, Department of Occupational Safety and Health (Malaysia), Detroit Wayne Integrated Health Network, Devtron, DieTech North America, Dietzgen Corporation, digiDirect, Diligent Delivery Systems, Directorate for Combating Organised Crime, Disney World, DMEScripts, Doctors Regional Cancer Center, DoctorsToYou, DocuSign, Dohman, Akerlund & Eddy, Dome Construction, Doscast, DR Butler and Associates, Dr.Web, Drug and Alcohol Treatment Service, Dstat.cc, Dudley Council, UK, Eagle Industries, Eagle Recovery Associates, Earth 2, Easterseals, EasyPay, Ecovacs, EIGEN Holdings, Elections Nova Scotia, Embody Performance & Recovery, Empower Management Group, English Construction Company, Epicor Software Corporation, Equalize, Equator Worldwide, Ericsson codechecker, ESET, European External Action Service, Evergreen Public Schools, Exeter City Council, Eye Clinic Surgicenter, Fair Vote Canada, Fairfield Memorial Hospital, Falo, Family Medical Center in Mount Airy, Federal Board of Revenue (Pakistan), Fidelity Investments, Firefox, First Nations Health Authority, Fiskars, Fitzgerald, DePietro & Wojnas, FloridaCentral, Floyd County Public Schools, Followmont TransportPty, Food Sciences Corporation, Form I-9 Compliance, Fortinet FortiManager, Fortis, Fractal ID, France’s Ministry of Labour and Employment, Free (ISP), Freedom Home Care, Fromm, Funadmin, Funlab, Fylde Coast Academy Trust, Game Freak, Gandara Mental Health Center, General Physician, PC, German Chamber of Commerce, GitLab, Globe Life, Gluckstein Personal Injury Lawyers, Google Scholar, Goshen Central School District, Grafana, Granite School District, Gryphon Healthcare, GSR Andrade Architects, Guardian Healthcare, H&R Block Canada, Hafetz and Associates, Harris Personal Injury, Hawaii State Judiciary, Health & Palliative Services of the Treasure Coast, Healthcare Management Systems, Healthfund Solutions, Hemel Hempstead Council, UK, Henry County Schools, Henry Schein, Hewlett Packard Enterprise Aruba OS, Holistix Treatment Center, Hope Valley Recovery, Hot Topic, Housing Authority of the City of Los Angeles, Houston Housing Authority, Howell Electric Inc, HP Color LaserJet Pro MFP 3301fdw, Hyundai, IBM Security Verify, Icedrive, IdeaLab, iFocus Consulting, Illumin8 Global, IM Cannabis, Immuno Laboratories, IMPAXX, InCare Technologies, Indian government email, India’s COVID-19 tracking platform, Indonesia’s E-Visa System, Infosys McCamish Systems LLC, Inner City Education Foundation, Insurance Regulatory and Development Authority of India (IRDAI), Interbank, Interbel, International University of Sarajevo, Internet Archive (three times!), Intesa Sanpaolo Bank of Italy, IrfanView, Iron World Manufacturing, Israeli Ministry of National Security, Israeli Ministry of Welfare, Ivanhoe Club, Ivanti Cloud Services Appliance (CSA), Jacksonville Children’s Multispecialty Clinics, Jardine Aviation Services, Jillamy, Johnson & Johnson, Jomar Electrical Contractors, Jordan Ministry of Education, Jordan Public Schools, JS McCarthy Printers, Justice.fr, K&S Tool & Mfg Co, Kaiser Foundation Hospitals, Kaiser Permanente, Kansas City Hospice, Karman Inc, KEE Process, Kenana Sugar Company, KMC Controls, Knox Law Center, Konecta Group, Kubernetes Image Builder, Kuhn and Associates, Kulicke and Soffa Industries, L & B Transport, LLC, La Tazza D’oro, Lampard Community School, Landmark Admin, Laravel Reverb, Law Office of Omar O Vargas, Legacy Treatment Services, Lein Law Offices, Levales Solicitors LLP, LevelOne WBR-6012, Lexco, Lexmark CX331adwe, LG Electronics, LifeMine, Lincoln University, Linux Kernel, Long Island Plastic Surgical Group, Lorex cameras, Loring, Wolcott & Coolidge, LottieFiles Lotti-Player, Luxwood Software Tools, Magento Open Source, Mainelli Mechanical Contractors, Marisa SA, Maval Industries, Maxxis International, Mazda Connect Connectivity Master Unit (CMU), McElroy, Quirk & Burch, APC, McMillan Electric Company, MCNA Dental, MedElite Group, Memorial Hospital and Manor, GA, Mercury Theatre, Meshworks, Metawin, MiCare Health Center, Michael J Gurfinkel, Microlise, Microsoft Bookings, Microsoft SharePoint, Mid State Electric, Middlesborough Council, UK, Minuteman Senior Services (MSS), MiPC Mexico, MIT Technology Review, Mixfame, Mizuno USA, MMI Services, Inc, MMP Union, Model Die & Mold, Moldova’s parliamentary email servers, MoneyGram, Moodle, Mozilla Firefox, Mr. Winter Wheels, Muah.AI, Muskogee City County Enhanced 911 Trust Authority, MVES, MWI Veterinary Supply, Inc, MySQL Connector/Python, Mystic Valley Elder Services, Nagoya Stock Exchange, NARSTCO, National Financial Services, National Institute of Administration, Native Village of Eyak Ilanka Community Health Center, Navarra & Marzano, Neighbors Credit Union, New Law, New York Plastic Surgery, Newpark Resources, Nidec Precision, Niko Resources Ltd, Nikon NEF, NoBroker, Noida Metro, Nokia, Nor-Well, Northeast Professional Caregivers, Northeast Spine and Sports Medicine, NVIDIA Container Toolkit, NVIDIA GeForce, NVIDIA Onyx, NW Health Porter, Okta, Ollama AI, OMA, Omni, OnePoint Patient Care, Open Range Field Services, Opera Browser, Oracle VirtualBox, ORBCOMM, Orbit Software, Inc, Oregon Department of Corrections, ORM Fertility, Orthopedics Rhode Island, OrthopedicsNY, Osmedeus Web Server, Ottawa Valley Handrailing Company, Over a thousand online shops, OwlTing, OxyHealth, OzarksGo, Pacific Pulmonary Medical Group, PAJ GPS, Palm Hills Developments, Palmisano & Goodman, PA, Palo Alto Networks PAN-OS, Panda Security Dome, Paragon Plastics, Parkland Health, Parnell Defense, Paul White Company, PayDo, Paystack, pCloud, Peoria Lawyers, Petropolis Pet Resort, Pheim Unit Trusts Berhad, Philadelphia Macaroni, Philips Smart Lighting, Phoenix Contact EV chargers, Physical Medicine & Rehabilitation Center, Planned Parenthood of Montana, PlayBoy, Portsmouth City Council, UK, Positive Business Solutions, Postcard Mania, PostHog, Potomac Medical Aesthetics, PRC-Saltillo, Precision Steel Services, Preferred Travel Group, Presbyterian Healthcare Services, PrestaShop, PriceBlink, Professional Probation Services, Promise Technology, Inc, Protective Industrial Products, PT Haleyora Power, PTZOptics cameras, Pureflow Airdog, qBittorrent, QEMU, QNAP QHora-322, QNAP TS-464, QNQB, Qualcomm chips, Quest Diagnostics Inc, Racing Forensics Inc, Radiant Capital, Radisson’s Country Inn and Suites, Raeyco Lab Equipment, Raimondo Pettit Group, Rancher, RANEPA University, RDC Control Ltd, Redwood Coast Regional Center, Regional Government of Ica, ReliaQuest, RENIEC, Rhode Island Orthopedic Practice, Ridgewood Public School District, Rim Country Health and Rehabilitation, Riverview Health, Rockstar Games, Rockwool, Rocky Mountain Gastroenterology, Rosen Legal, Roundcube Webmail, Royal Thai Police, RRCA Accounts Management, Inc, Rumpke Consolidated Companies, Russell Law Firm, LLC, Russian Foreign Ministry, Russian State TV VGTRK, S & W Kitchens, Sage Automotive Interior, Saint Xavier University, SalesGig, Salford Council, UK, Samsung, Samsung Galaxy S24, San Joaquin County Superior Court, Sanglier Limited, Sango Family Dentistry, Sarah Bush Lincoln Fayette County Hospital, Saratoga Liquor, Save Mart Supermarkets, LLC, Schneider Electric, Schneider Electric EcoStruxure, Schneider Electric Zelio Soft 2, Schreck Financial Group, Schweiger Transport, Scullion LAW, Seafile, Sector 5, Bucharest, SelectBlinds, SEP, Set Forth, Inc, Seven Counties Services, Shareholders in Hong Kong, Sit & Sleep, Smart Media Group Bulgaria, SmartSource, Smeg, Smile Design Management, Smiles in the Pines, Smitty’s Supply, Smoker’s Choice, Solairus Aviation, LLC, SolarWinds Web Help Desk, Soliant Health, SonicWall firewalls, Sonoma County Superior Court, Sonos Era 300, Sophos Firewall, South China Athletic Association, South West Family Medicine Associates, South-East Technological University Waterford, Spine by Villamil MD, Spirit Lake Community School District, SRS-Stahl GmbH, St Albans Council, UK, St. Anthony Regional Hospital, Stalker Online, Standard Bank, Star Health Insurance, Stark County Criminal Justice Information Systems, Starkweather and Shepley Insurance Brokerage, Steel Art Signs, Strava, StreamCraft, Strike Bowling, Structural and Steel Products, Sumitomo, Summit Pathology and Summit Pathology Laboratories, Inc, Sunrise Express, Suntrust Properties, Superior Quality Insurance Agency, Supply Technologies, Surfnet Communications, Survival Flight, Inc, SVP Worldwide, Swalekha.in, Switch, Symetra Life Insurance Company, Symfony, Sync, Synology BeeStation, Synology DiskStation, Synology TC500, Systems Application & Technologies Inc, T-Space, Tameside Council, UK, TargetMaps, TaxPros of Clermont, TDM Technical Services, TEAM Software, Texas Department of Public Safety, Texas Spine Consultants, Texas Tech University Health Sciences Center, The Club Penguin Experience, The Getz Group, The Knesset, The Law Offices of Jed Silverman, The Nolan Financial Group, The Physical Medicine & Rehabilitation Center, PA, The Povman Law Firm, The Strainrite Companies, Therabel Lucien Pharma SAS, TheraCom, ThinkPHP, Thompson Coburn, Tiketek, TNAFlix, Toro Enterprises, Inc, Totally Promotional, Tower Clock Eye Center, TrackMan, Trafford Council, UK, Transak, Trend Micro Cloud Edge, Trend Micro Deep Security, Tresorit, Tri-City Healthcare District, Tri-City Medical Center, Tricon Energy, Trimarc Financial, Trimble SketchUp, True World Group, TrueNAS Mini X, TrueNAS X, Truist Bank, TU Parks, Tungsten Automation Power PDF, TV Guide Magazine, Ubiquiti AI Bullet, UK Ambulance Services, UK Biobank, Ultra Tune, United Sleep Diagnostics, Universal Companies, Universal Health Corporation, Universal Music Group, University Medical Center, University of California, Unlimited Lawn Care, US Customs and Border Protection, Uttarakhand State Data Center, Valleygate Dental Surgery Centers, Value City NJ, Van Wagner Group, LLC, Varsity Brands, VasTopUp, Venezuelan Government, VeriSource Services, Inc, Verizon Wireless, Vermilion Parish Schools, VimeWorld, Visionworks of America, Inc, VMware HCX, VMware vCenter Server, Volkswagen, Volta River Authority, Wacom Center, Washington courts, Wayne County, Webb Institute, Weber Packaging, Weiser Memorial Hospital, Well Chip Group, Wellfleet Group, Wells Fargo, Western Sydney University, Westwood Country Club, Wetherby Town Council, Wexford County, WhatsUp Gold, Whitaker Construction Group, Wichita County, Wilson & Lafleur, Wilson Tarquin, WimCoCorp, Windows Driver Signature, Windows Themes, Winestyle, Winnebago Public School Foundation, WordPress Jetpack, WordPress LiteSpeed Cache, X.Org Server, Youngs Timber Builders Merchants, Z-lib, Zalo.vn, Zamalek Club, Zendesk, ZicroDATA, Zierick Manufacturing Corporation, and Zimbra GraphQL have reported hacking or compromises this month.

Calgary Public Library, DHL, Microsoft, Serco, and The Internet Archive have suffered from outages this month.

Last months updates broke Microsoft 365 Outlook, Microsoft Azure Virtual Desktop, Microsoft OneDrive, Microsoft’s “New” Outlook, OpenSSH on Windows Server, Windows 10, and Windows Remote Desktop.

Never again use a third-party charging cord. Treat your USB ports with more concern.

Half of US county websites can be spoofed.

iPhones will now force restart after idle in order to reencrypt data.

Now for the good news:

The Mozilla Foundation has finally dropped their advocacy division. Unfortunately, they’ll be rolling it into their other programs. It still could mean that tech companies might actually start prioritizing their tech instead of politics or other agendas.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is huge this month. The typical computer should see roughly 5 GB in updates today. Let’s get started.

Microsoft released 98 updates to address 88 vulnerabilities in .NET and Visual Studio, airlift.microsoft.com, Azure CycleCloud, Azure Database for PostgreSQL, LightGBM, Microsoft Defender for Endpoint, Microsoft Edge, Microsoft Office SharePoint, Microsoft PC Manager, Microsoft SharePoint Server, Microsoft SQL Server, Microsoft Virtual Hard Disk (VHDX), Microsoft Virtual Hard Drive, Microsoft Windows DNS, Microsoft Windows VMSwitch, TorchGeo, Visual Studio, Visual Studio Code, Win32k Elevation of Privilege Vulnerability, Windows Active Directory Certificate Services, Windows CSC Service, Windows Defender Application Control, Windows DNS, Windows DWM Core Library, Windows Hyper-V, Windows Kerberos, Windows Kernel, Windows NT OS Kernel, Windows NTLM, Windows Package Library Manager, Windows Registry, Windows Secure Kernel Mode, Windows SMB, Windows SMBv3 Client/Server, Windows Telephony Service, Windows Update Stack, Windows USB Video Driver, Windows VMSwitch, Windows Win32 Kernel Subsystem, Winlogon, and MSRT. This includes security updates. A reboot is required.

Oracle released 334 security updates this quarter to address vulnerabilities in 109 applications and service.

Apple released updates for iOS 17.7.1, iOS 18.1, iPadOS 17.7.1, iPadOS 18.1, macOS Sequoia 15.1, macOS Sonoma 14.7.1, macOS Ventura 13.7.1, Safari 18.1, tvOS 18.1, visionOS 2.1, and watchOS 11.1. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 17.7.1 and 18.1 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 17.7.1 and 18.1 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 11.1 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 18.1 is a security update. Use System, Software Update to install the most current version.

visionOS 2.1 are security updates. Use System, Software Update to install the most current version.

Google Chrome OS 130.0.6723.101 and Google Chrome OS LTS 126.0.6478.257 are security updates. Use Menu, Help, About to install the most current version. A reboot is required.

Fedora 41-1.4 is a major update, adding many new features, removing unsupported and deprecated tools and applications, and hardening the operating system. This should be treated as a security update.
https://getfedora.org/en/workstation/download/

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Windows 11 is now stable and can be upgraded to if your hardware supports it, but I recommend you continue to use Windows 10 until early 2025 before you consider switching to it.

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 24.10.1 resolves several bugs and improves stability. This is not a security update.
https://www.amd.com/en/support

Intel Driver and Support Assistant 24.5.40.11 resolves several bugs. This is not a security update.
https://www.intel.com/p/en_US/support/detect

Nvidia Driver 566.03 resolves several bugs. This is not a security update.
https://www.nvidia.com/Download/index.aspx?lang=en-us

UniFi AC Professional 6.6.77 resolves several bugs and improves performance, reliability and stability. This is not a security update.
https://www.ui.com/download/software/uap-ac-pro

UniFi airMAX NanoStation 5AC Loco 8.7.14 resolves several bugs. This is not a security update.
https://www.ui.com/download/software/loco5ac

UniFi Network Server 8.6.9 improves SIEM integration, dozens of improvements and bug fixes. This is a security update.
https://www.ui.com/download/releases/network-server

UniFi U6 Professional 6.6.77 resolves several bugs and improves performance, reliability and stability. This is not a security update.
https://www.ui.com/download/software/u6-pro

VIISAN OfficeCam 7.2.4.0 doesn’t provide a detailed change log so should be treated as a security update.
https://www.viisan.com/en/download/type1.html

Xerox Smart Start 2.1.22.0 doesn’t provide a detailed change log so should be treated as a security update.
https://www.support.xerox.com/en-us/content/143617

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.71.123 is a security update.
https://brave.com/

Firefox 132.0.2 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 128.4.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Google Chrome 130.0.6723.116 is a security update.
https://www.google.com/chrome/

Vivaldi 7.0.3495.6 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

ProtonMail (Android) 4.2.1 resolves several bugs. This is not a security update.
https://proton.me/mail/download

Spark 3.17.11.89740 resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.17.12.90683 resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Thunderbird 128.4.2 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk (macOS) 8.1.4 improves compatibility and requires re-granting persmissions. This is a security update.
https://anydesk.com/en/downloads

BrowsingHistoryView 2.59 improves compatibility. This is not a security update.
https://www.nirsoft.net/utils/browsing_history_view.html

curl 8.11.0 resolves dozens of bugs. This is a security update.
https://curl.haxx.se/windows/

Dropbox 211.4.6008 doesn’t provide a change log so should be treated as a security update.
https://www.dropbox.com/

FileZilla Client 3.68.1 resolves several bugs. This should be treated as a security update.
https://filezilla-project.org/

FileZilla Server 1.9.4 resolves several bugs, including improved Let’s Encrypt compatibility.
https://filezilla-project.org/

FreeFileSync 13.8 adds SFTP support for IPv6, improves copmatibility and resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 99.0 *finally* adds differential uploads, which will save huge amounts of bandwidth for large files with minor changes. This is not a security update.
https://drive.google.com/start

MeshCentral 1.1.33 resolves dozens of bugs. This is not a security update.
https://meshcentral.com/info/downloads.html

Microsoft Teams 1.7.00.27855 improves BYOD and audio source detection. This is not a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 30.0.2 resolves dozens of bugs. This is a security update.
https://nextcloud.com/

Omada Software Controller 5.14.32.3 resolves a dozen bugs and improves the GUI. This is not a security update.
https://www.tp-link.com/us/support/download/omada-software-controller/

Signal 7.32.0 improves performance, bulk downloads, and adds Call Links. This is not a security update.
https://signal.org/download/

Signal (Android) 7.23.1 adds chat folders. This is not a security update.
https://signal.org/android/apk/

Syncthing 1.28.0 resolves several bugs. This is not a security update.
https://syncthing.net/

Technitium DNS Server 13.1.1 resolves several bugs and improves protocol support. This is not a security update.
https://technitium.com/dns/

Telegram 5.7.2 resolves over a dozen bugs. This is not a security update.
https://telegram.org/

Zoom 6.2.7.49583 is a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 4.0.11 improves compatibility. This is not a security update.
https://en.3tene.com/

Bitwig Studio 5.2.5 resolves several bugs. This is not a security update.
https://www.bitwig.com/download/

iTunes 12.13.4.4 is a security update.
https://www.apple.com/itunes/download/

KaraFun Player 3.2.2.56 resolves a dozen bugs. This is not a security update.
https://www.karafun.com/karaokeplayer/

Plex Desktop 1.104.0.241 now includes an advertising consent popup.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.41.1.9057 improves hardware-encoding for DVR, media support, and metadata. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

Minecraft Server (Bedrock) 1.21.44.01 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

Minecraft Server (Java) 1.21.3 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server

Nintendo Switch 19.0.1 improves compatibility. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PS5 2024.101 resolves several bugs. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2024.11.05 adds Steam Game Recording and resolves dozens of bugs. As of this version Windows 7 and 8 are no longer supported. These end-of-life operating systems can continue to use the prior build (for now). https://help.steampowered.com/en/faqs/view/4784-4F2B-1321-800A
https://store.steampowered.com/news/app/593110

SteamOS SteamDeck Update 2024.11.06 resolves several bugs. This is not a security update.
https://store.steampowered.com/news/app/1675200/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe After Effects 24.6.3 & 25.0 are security updates.
https://helpx.adobe.com/security/products/after_effects/apsb24-85.html

Adobe Audition 24.6.3 and 25.0 are security updates.
https://helpx.adobe.com/security/products/audition/apsb24-83.html

Adobe Bridge 14.1.3 and 15.0 are security updates.
https://helpx.adobe.com/security/products/bridge/apsb24-77.html

Adobe Commerce 3.2.6 is a security update.
https://helpx.adobe.com/security/products/magento/apsb24-90.html

Adobe Illustrator 28.7.2 and 29.0.0 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb24-87.html

Adobe InDesign 18.5.3, 18.5.4 and 20.0 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb24-88.html

Adobe Photoshop 24.7.4 and 25.12 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb24-89.html

Adobe Reader DC 24.004.20243 resolves several bugs. This is not a security update.
https://get.adobe.com/reader

Adobe Substance 3D Painter 10.1.1 is a security update.
https://helpx.adobe.com/security/products/substance3d_painter/apsb24-86.html

Audacity 3.7.0 resolves more than a dozen bugs. This is not a security update.
https://www.audacityteam.org/download/

Blender 4.2.3 resolves dozens of bugs. This is not a security update.
https://www.blender.org/download/

Calibre 7.21.0 resolves over a dozen bugs. This is not a security update.
https://calibre-ebook.com/

Columns++ 1.1.3 resolves several bugs. This is not a security update.
https://github.com/Coises/ColumnsPlusPlus

Inkscape 1.4 resolves several bugs. This is not a security update.
https://inkscape.org/release/

Kdenlive 24.08.3 resolves dozens of bugs. This is not a security update.
https://kdenlive.org/

LibreOffice 24.2.7 resolves over 50 bugs. This is a security update.
https://www.libreoffice.org/

Manager 24.11.11.1937 resolves several bugs and improves inventory support. This is not a security update.
https://www.manager.io/

Nextcloud Desktop 3.14.3 resolves dozens of bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.7.1 resolves a couple bugs. This is a security update.
https://notepad-plus-plus.org/

PDF-XChange Editor 10.4.3.391 resolves almost a dozen bugs. This is not a security update.
https://www.pdf-xchange.com/product/pdf-xchange-editor

QuickBooks Pro 2022 20240726-R17_41 doesn’t provide a detailed change log so should be treated as a security update.
https://downloads.quickbooks.com/app/qbdt/products

QuickBooks Pro 2023 20240726-R14_49 doesn’t provide a detailed change log so should be treated as a security update.
https://downloads.quickbooks.com/app/qbdt/products

Operating System Updates

These are for specific Linux flavors and alternative operating systems and, sadly, are unlikely to be of interest to most people.

Google Chrome OS 130.0.6723.101 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

iOS 18.1 is a security update.
https://support.apple.com/kb/HT204204

iPadOS 18.1 is a security update.
https://support.apple.com/kb/HT204204

macOS 15.1 is a security update.
https://support.apple.com/kb/HT201541

Tails 6.9 is a security update.
https://tails.net/install/download/index.en.html

tvOS 18.1 is a security update.
https://support.apple.com/kb/HT202716

watchOS 11.1 is a security update.
https://support.apple.com/kb/HT204641

Security Software Updates

One or more of these is likely to be of interest to most people.

Chainsaw 2.10.1 resolves several bugs. This is not a security update.
https://github.com/countercept/chainsaw

FRST 2024.11.12 doesn’t provide a change log so should be treated as a security update.
https://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/

FSS 2024.10.30 doesn’t provide a change log so should be treated as a security update.
https://www.bleepingcomputer.com/download/farbar-service-scanner/dl/62/

HTTP Toolkit 1.19.1 doesn’t provide a change log so should be treated as a security update.
https://httptoolkit.tech/

MalwareBytes Anti-Malware 5.2.1.144 resolves several bugs and hardens security controls. This should be treated as a security update.
https://www.malwarebytes.org/antimalware/

OpenSSL 3.4.0 is a security update.
https://slproweb.com/products/Win32OpenSSL.html

ProtonVPN (macOS) 4.5.0 improves WireGuard connectivity and improves stability. This is not a security update.
https://protonvpn.com/download

RogueKiller 15.19.2 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

Stinger 13.0.0.215 adds support for new detections. This should be treated as a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

uBlock Origin 1.61.0 resolves over a dozen bugs. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.3.0 adds support for new encodings. This is not a security update.
https://www.dvdfab.cn/download.htm

PDF Creator 5.3.2 resolves several bugs and updates libraries. This is a security update.
https://www.pdfforge.org/pdfcreator

StreamFab 6.2.0.4 adds support for new sources and resolves several bugs.
https://www.dvdfab.cn/downloader-new.htm

UniFab 2.0.3.7 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Education updates

One or more of these are likely to be of interest to most people.

Zotero 7.0.9 resolves several bugs. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.10.52 resolves a dozen bugs. This is not a security update.
https://1password.com/downloads/windows/

AppResourcesUsageView 1.06 improves compatibility. This is not a security update.
https://www.nirsoft.net/utils/app_resources_usage_view.html

balenaEtcher 1.19.25 updates SDK. This is not a security update.
https://etcher.balena.io/

Beyond Compare 5.0.3.30258 improves shell menu, updates libraries and resolves dozens of bugs. This is not a security update.
https://www.scootersoftware.com/download

Bitwarden 2024.10.4 resolves several bugs and improves auth methods and recovery. This is not a security update.
https://bitwarden.com/

CCleaner 6.29.11342 resolves several bugs. This is not a security update.
https://www.ccleaner.com/

CPU-Z Installer 2.12 adds support for newer hardware. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

Dell OS Recovery Tool 2.4.1.2181 doesn’t provide a change log so should be treated as a security update.
https://www.dell.com/support/home/uk/en/ukbsdt1/drivers/osiso/recoverytool

DesktopOK 11.45 improves configuration and language files. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.2.95.0 resolves several bugs and updates libraries. This is a security update.
https://dngrep.github.io/

email-oauth2-proxy 2024-11-11 improves compatibility and adds a couple new features. This is not a security update.
https://github.com/simonrob/email-oauth2-proxy

ESEDatabaseView 1.75 improves compatibility. This is not a security update.
https://www.nirsoft.net/utils/ese_database_view.html

Etcher 1.19.25 updates SDK. This is not a security update.
https://www.balena.io/etcher/

ExplorerPatcher 22621.4317.67.1 improves compatibility. This is not a security update.
https://github.com/valinet/ExplorerPatcher/

Fing 3.7.2 improves network insights and resolves several bugs. This is not a security update.
https://www.fing.com/products/fing-desktop-download-windows

FoneTool 2.9.2 adds support for iOS 18 and iPhone 16. This is not a security update.
https://www.fonetool.com/download.html

Free Virtual Serial Ports 6.20.00.1466 adds support for virtual script ports and resolves a compatibility bug. This is not a security update.
https://freevirtualserialports.com/

GoodSync & GoodSync2Go 12.7.7 resolves several bugs and improves compatibility. This is not a security update.
https://www.goodsync.com/

grepWin 2.1.6 resolves several bugs. This is not a security update.
https://github.com/stefankueng/grepWin/releases/latest

GSmartControl 2.0.0 is a major update, reduces dependencies, improves input/output and scaling support. This is not a security update.
https://gsmartcontrol.shaduri.dev/

Homedale 2.14 is a cosmetic change. This is not a security update.
https://www.the-sz.com/products/homedale/

HWiNFO 8.14 adds support for newer hardware, improves output details, and logging. This is not a security update.
https://www.hwinfo.com/download/

Memtest86+ 7.20 adds support for new hardware and resolves several bugs. This is not a security update.
https://www.memtest.org/

MultiMonitorTool 2.15 improves compatibility and adds monitor position support. This is not a security update.
https://www.nirsoft.net/utils/multi_monitor_tool.html

NTLite 2024.11.10163 adds support for new components and resolves a couple bugs. This is not a security update.
https://www.ntlite.com/download/

OSForensics 11.0.1015 updates libraries, resolves a crash bug and improves clarity for sparse records. This is not a security update.
https://www.osforensics.com/download.html

osquery 5.14.1 resolves several bugs. This is not a security update.
https://osquery.io/downloads

PowerToys 0.86.0 resolves several bugs and improves Advanced Paste, Workspaces, Mouse Jump and more. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

RoboForm 9.6.3 resolves several bugs. This is not a security update.
https://www.roboform.com/

Rufus 4.6 improves compatibility and resolves several bugs. This is not a security update.
https://rufus.ie/en_US/

ScreenConnect 24.3.7.9067 resolves several bugs. This is not a security update.
https://screenconnect.connectwise.com/download

Starwind V2V Converter 9.554 adds support for new disk image formats. This is not a security update.
https://www.starwindsoftware.com/starwind-v2v-converter

TeamViewer 15.59.3 adds AI log generation, improved address book, reporting and a dozen bug fixes. This is not a security update.
https://www.teamviewer.com/en-us/download/

WhyNotWin11 2.6.1.1 adds TSV, improved logging, and resolves a couple bugs. This is not a security update.
https://github.com/rcmaehl/WhyNotWin11

WifiInfoView 2.95 improves error reporting. This is not a security update.
https://www.nirsoft.net/utils/wifi_information_view.html

WinGet 1.9.25180 resolves more than 100 bugs. This is not a security update.
https://github.com/microsoft/winget-cli/releases/latest

WinScan2PDF 9.11 improves compatibility and resolves a couple bugs. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WizTree 4.22 adds MTP/PTP device support, improves compatibility, scaling support and resolves several bugs. This is not a security update.
https://www.diskanalyzer.com/

Developer Updates

These are unlikely to be of interest to most people.

Android Studio 2024.2.1.11 resolves several bugs. This is not a security update.
https://developer.android.com/studio

DB Browser for SQLite 3.13.1 resolves several bugs. This is not a security update.
https://sqlitebrowser.org/

GDevelop 5.4.217 resolves several bugs. This is not a security update.
https://gdevelop.io/download

GitHub Desktop 3.4.9 resolves several bugs and updates libraries. This is not a security update.
https://desktop.github.com/

Go 1.23.3 resolves several bugs. This is not a security update.
https://go.dev/

Java 8u431 is a security update.
https://www.java.com/en/download/manual.jsp

Microsoft Visual C++ 2017 Redistributable 14.16.27052.0 is a security update.
https://learn.microsoft.com/en-us/cpp/windows/latest-supported-vc-redist

Microsoft Visual C++ 2019 Redistributable 14.29.30156.0 is a security update.
https://learn.microsoft.com/en-us/cpp/windows/latest-supported-vc-redist

Microsoft Visual C++ 2022 Redistributable 14.40.33816.0 is a security update.
https://learn.microsoft.com/en-us/cpp/windows/latest-supported-vc-redist

MySQL ConnectorNet 9.1.0 resolves several bugs, including crash bugs. This is not a security update.
https://dev.mysql.com/downloads/connector/net/

Node.js 22.11.0 is a security update.
https://nodejs.org/en/

Node.js 23.2.0 is a security update.
https://nodejs.org/en/

Redemption 6.6.0.6338 resolves several bugs. This is not a security update.
https://www.dimastr.com/redemption/

SQLite 3.47.0 resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

TortoiseGit 2.17.0.2 improves compatibility. This is not a security update.
https://tortoisegit.org/

TortoiseSVN 1.14.8 resolves several bugs. This is not a security update.
https://tortoisesvn.net/downloads.html

Visual Studio Code 1.95.2 resolves several bugs. This is not a security update.
https://code.visualstudio.com/

WinMerge 2.16.44 resolves several bugs. This is not a security update.
https://winmerge.org/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 7.1.4 resolves several bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Invision Community 4.7.19 is a security update.
https://invisioncommunity.com/

Joomla 5.2.1 is a security update.
https://www.joomla.org/

Piwigo 15.1.0 is a security update.
https://piwigo.org/

Antispam Bee 2.11.7 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/antispam-bee/

BuddyPress 14.2.1 is a security update.
https://wordpress.org/extend/plugins/buddypress/

Contact Form 7 6.0 provides more than a dozen code and feature changes. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Duplicator 1.5.11.2 resolves a charset bug. This should be treated as a security update.
https://wordpress.org/plugins/duplicator/

Interactive World Map 3.4.8 is a security update.
https://wordpress.org/extend/plugins/interactive-world-map/

Sucuri Security 1.9.6 improves reporting and log behavior. This is not a security update.
https://wordpress.org/extend/plugins/sucuri-scanner/

WordPress Importer 0.8.3 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/wordpress-importer/

WP Plugin Update Checker 5.5 resolves a couple bugs and improves debug and ZIP support. This is not a security update.
https://github.com/YahnisElsts/plugin-update-checker/releases/latest

WPBakery 8.0 adds new features, improves controls, and resolves several bugs. This is not a security update.
https://wpbakery.com/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2024-05-14

Posted on May 14, 2024 by Shawn K. Hall

Welcome back, Folks!

Today is Patch Tuesday for May, 2024.

There were 580+ major hacks, and over 460 application updates this month. It’s an insanely big month, with about 5 GB of updates for most users.

This Month in Technology

First, let me apologize for this list. It’s 3x longer than it was only a couple months ago and that’s not really my fault. I really want to keep sharing the hacked lists but at the rate it’s going 3/4 of the newletter will just be the list by the end of Summer. I’m going to need to rework this next month when I have more time.

1+1 Media, 4LEAF, Inc, A123 Systems, Access Intelligence, Accor, ACFIN SA, Active PCB Solutions, Acurrate Lock & Hardware, ADCOM911, Advanced Business Networks, Advarra, Inc., Aero Tec Laboratories Inc, Aetna ACE, Affordable Payroll & Bookkeeping Services, Agate Construction, Agency for the Sustainable Development of the Saint Nazaire Region, France, AirAsia Group, Airsoft, Allianz Global Risks U.S. Insurance Company, Alltruck Bodies, Alrajhi Bank, Altipal S.A.S, Amazon, Amberstone Security, AMD Radeon DirectX 11 Driver, American Builders Outlet, American Renal Associates, American Renal Management, Andovers Federal Credit Union, APS – Automotive Parts Solutions, Arbitrum, Argentina’s national registry, Army Welfare Trust, Array Networks, Asantee Games, Asbury Automotive Group, Ascension healthcare, Ashley Home Stores, Aspire Health Alliance, Astra Daihatsu Motor (ID), AT&T, Atlantic States Marine Fisheries Commission (ASMFC), Aussizz Group, Autodesk Drive, Axip Energy Services, Ayesa, B&G Foods, Badger Tag & Label, Banco Santander, Banten Regional Development Bank Tbk, Barclays Bank, Base Network, Bay Oral Surgery & Implant Center, Bağcılar Training and Research Hospital, Bega Valley Council, Belarusian KGB, Belvedere Vodka UK, BenefitsCal, Berry, Dunn, McNeil & Parker, Best Reward Federal Credit Union, BetterHelp, Bharat Sanchar Nigam Limited (BSNL), BHF Couriers, Biggs Cardosa Associates, Inc., Bira 91, Bitfinex, Blackstone Valley Community Health Care, Blooms Today, Bluebonnet Trails, Bluegrass Care Navigators, BMW BANK, Bodyartforms LLC, Boeing, Bradford-Scott, Brandywine Realty Trust, BreachForums, Bridgeway Center, Inc., British Columbia, Canada, Brocade SANnav SAN Management Software, Brovedani Group, Bundeswehr, Byron council, Café Soluble, California library system, Calumet Civil Contractors, Inc, Camino Nuevo Charter Academy, Canatal Industries, Canberra club, Cannes hospital, Cariboo library system, Carpetright, Catholic Diocese of Cleveland, Catholic Medical Center (CMC), CCM Health, Central Bank Argentina, Central Carolina Insurance Agency Inc, Central Florida Equipment, Central Power Systems & Services, Central Virginia Federal Credit Union, Change Healthcare, Channel Logistics LLC, Chemring Group, Cherry Health, Chicony Electronics, Chirp Systems, Christie’s Auction House, Cisco Duo, Cisco Integrated Management Controller (IMC), City of Buckeye, AZ, City of Donges, France, City of El Cerrito, California, City of London, UK, City of Pensacola, Florida, City of Wichita, Kansas, Cleveland Catholic Diocese, Community First Credit Union, Confins Transport, Consensus Medical Group, Consol Energy, Continuum Health, Coppel, Coradix-Magnescan, CorporateStack, Costa Edutainment SPA, Council for Relationships, County of Coffee, Georgia, County of Hernando, FL, County of Jackson, MO, County of Los Angeles, CA, Department of Health Services, County of Robeson, NC, County of San Bernardino, CA, CrushFTP, Cushman Contracting Corporation, CyberPower UPS, D-Link Devices, Daoust, Dawson Creek, Deeside Timberframe, Delinea Secret Server, Dell, Dental Group of Amarillo, Dental Health Services, DES Architects and Engineers,
Designed Receivable Solutions, Deutsche Telekom, Digi Yatra Foundation, Dijk, Discord, District of Columbia’s Department of Insurance, Securities and Banking (DISB), DocGo, Dominican Republic vaccination data, Donco Air, Doyon Drilling, Drive Sally LLC, DRM Arby’s, Dropbox Sign, Duvel Moortgat, D’amico & Pettinicchi, LLC, E-ZPass, East Central University, OK, Eden Project, Edlong and Holstein Association USA, Educational Computer Systems, EduMarket, Efrat Airlines, Egypt Ministry of Supply and Internal Trade, El Salvador, El Salvador’s Chivo Wallet, Electric Mirror, Empath Health, Engineered Automation of Maine, Enstar, Epilepsy Foundation of Metro NY, EqualizeRCM and 1st Credentialing, Ernest Health, Eucatex, European Parliament, Europol, EvoBanco, F5 Central Manager, Feldstein & Stewart, Fic Expertise, Financial Business and Consumer Solutions (FBCS), Firstmac, FiXBET, Floirac, Footdistrict, Fort Worth, Texas, Foxit Reader, French Ministry of Agriculture, Frontier Communications, FrotCom, GBI Genios, Gerber Life Insurance Company, Giant Tiger, GitHub Search, GitLab, Glendale Unified School District, Glints, Global Tel Link, Google Chrome, Google, Graphic Solutions Group Inc, Grassroot DICOM, Great Firewall of China, Green Diamond Resource Company, Greylock McKinnon, Grindr, Grodno Azot, Group Health Cooperative of South-Central Wisconsin (GHC-SCW), Guadeloupe, Canada, Guardant Health, Inc., Guardian Analytics, Hapy Bear Surgery Center, Hardeman County Community Health Center, Hedgey Finance, Helapet Ltd, Helsinki Education Division, Heritage Cooperative, High Performance Services, Hillsong Church, Hirsh Industries, Hit Promotional Products, Home Depot, Hong Kong Arts Development Council, Hong Kong College of Technology, Hong Kong Fire Department, Hong Kong Union Hospital, Hooker Furniture, Hosocongty, Hospital Simone Veil, 100 hotels in Japan, Houser LLP, Hoya Optics, HP, HPE ArubaOS Devices, HSBC Bank, HTW, Hub International Limited, Human Events, IBM’s Enterprise Terminal, iCabbi, ICICI Bank, IDS Michigan, Illinois State Credit Union, Illinois Tollway, In The Know, India’s Central Board of Secondary Education (CBSE), India’s HRYLabour, India’s ICICI Bank, Ingo Money Inc, Inland Physicians Billing Services, Intel CPUs (Spectre v2), Intel Hardware Firmware, Interim Healthcare of Lubbock, International Baccalaureate Exam, Inventum Øst, Iranian Pipeline Company, Iress Ltd, Israel Electric Corporation (IEC), Israeli Real Estate Companies, ISTA International GmbH, It4 Solutions Robras Corp, Italian Red Cross Network, Ivanti Avalanche, J.P. Morgan Chase, JE Owens, Kaiser Foundation Health Plan, Inc., Kaiser Permanente, Kameymall, Kansas City Scout System, Keenan & Associates, Kintetsu World Express, Kisco Senior Living, KISTI SMART K2C, Kowloon Shangri-La, La Chapelle-des-marais, France, Ladakh Social Welfare Department, Lamont Hanley & Associates, Latvian TV Channels, LDLC, Le Slip Français, Leicester City Council, Lenovo Hardware Firmware, Lewis & Clark College, LG TVs, Lieberman LLP, Lilly Drogerie, Lincoln Project, LiteSpeed Cache, LivaNova, LiveHelpNow, LocalPlace JP, London Drugs, London Stock Exchange Group, Lopesan Hotels, Lotz Trucking, Lpdb Kumkm, LRB Info Tech, Lukfook Jewellery, Lumina Americas, Luxor, LYON TERMINAL, M2E Consulting Engineers, Macedonian Joint Stock Company, Madata, Magnet+, Malone & Co, Manchester’s Catholic Medical Center, Marpai Health, Mauritzon, McKinley Packing, Medequip Assistive Technology, Medical Home Network, MediExcel, Medios de Prevención Externos Sur SL, MedStar Health, Meduza, Mellitah Company, Mercedes, Merchants Benefit Administration, Metropolitan Life Insurance Company, Microsoft, Microsoft Azure Entra ID, Microsoft Outlook, Missouri Electric Cooperatives, Moffitt Cancer Center and Research Institute, Moldova Government, MoldTech, Molen & Associates, Monash Health, Monday.com, MongoDB, Monocon, Montoir-de-Bretagne, France, Moscow Moskollector, MovieBoxPro, MRA – The Management Association, Mt Hira College, Myers Automotive Group, National Energy Research Scientific Computing Center (NERSC), Nespresso, Nestle, New Boston Dental Care, New Hudson Facades, New Mexico Administrative Office of the District Attorneys, New Mexico Highlands University, New York’s state legislature, Nexperia, NHS Dumfries and Galloway, NK Parts Industries, NorthBay Health, Nota by M&T Bank and TTEC Databases, Nothing, Nova Scotia Health, NRS Healthcare, Numotion, NVIDIA, OakBend Medical, Octopharma Plasma, OE Federal Credit Union, Ogero, Ohio Lottery, Okta, Olson Steel, Olympus Group, OracleCMS, OraSure, Original Herkimer Cheese, OrthoConnecticut, Outabox, Pacific Guardian, Pak Suzuki, Palo Alto Networks PAN-OS, Panda Restaurant Group, Pandemonium Rocks, Panoramic Health, Parent Teacher Association (PTA), Paris Saint-Germain (PSG), Parklane Group, Patricia AI, Paychex, Inc., Paytm, Pennsylvania Convention Center, Pennsylvania Insurance Department, Peplink Smart Reader, Persyn, Philadelphia Inquirer, Philips Respironics, Phoenix Business Consulting, PHP, Pifer’s Auction & Realty, Pilot, Pinnacle Engineering, Pinnacle Orthopaedics, Pioneer Oil Company, Inc, Piping Rock, Police Service of Northern Ireland (PSNI), Porniche, France, Pratham, Precision Fluid Controls, Premier Dermatology, Prisma Finance, Pro Metals LLC, Process Solutions, Procuraduría General de la República, Profile Products, Progress Flowmon, Promarka Peru, Pub And Club, Public service of Wallonia, PWS – The Laundry Company, Qantas, QNAP, Quebec CEGEPs, RAF El Salvador, Randolph Health, RaySharp, RB Woodcraft, Reading Electric, Rebound Orthopedics & Neurosurgery, Recology, Redwood Coast Regional Center, Rehabilitation Hospital of Southern New Mexico, Reliable Networks, Rocky Mountain Sales, Roku, Romeo Pitaro Injury and Litigation Lawyers, Rushd Bookstore, Rutgers University, Räddningstjänsten Vä stra Blekinge, Sachkhere, Sahara Bank, Saint-Nazaire, France, Sanok Rubber Company, Saudi Water Facilities, Scanda Group, Scigames, Scottish health board, Seaman’s Mechanical, SEK Studio, Seneca Nation Health System, Sentry Data Management, Servicio Móvil, Shadow, Siemens Manufacturing, Sigmund Espeland, Signature Healthcare Services LLC, SigningHub, Simmons Perrine Moyer Bergman PLC, Singapore’s Ministry of Education, Singapore’s Mobile Guardian, SinglePoint Outsourcing, Inc., SIS Automatisering, Sisense, Skanlog, Sleep Data Holdings, LLC, Sleep Management Institute, Smoke Alarm Solutions, SOA Architecture, Softura, Somerset Dental Las Vegas, Somerville, Sonadev, France, South Africa’s International Trade Administration Commission (ITAC), South Korean courts, South Korean cable & satellite, South Korean Defense Companies, South Texas Oncology and Hematology, Space X, Space-Eyes, Speedy France, Sri Lanka’s visa system, SSCL, SSS Australia, St-Jerome Company, St. Helena Public Library, Stainless Foundry & Engineering, StarWallets, States of Guernsey, Sterling Holidays, Sterling Plumbing Inc., Studio LAMBDA, Swisspro, SynLab Italia, Sysmex America, Inc, T2 Tea Australia, Tamil Nadu Police, Tappware, Targus, Tatarstan, Russia, Taxi Software, Ted Brown Music, Telecom Argentina, Telit Cinterion modems, Texas Retina Associates, The Epilepsy Institute, The Georgia Institute for Plastic Surgery, The Heritage Foundation, The Kennedy Collective, The Lagunitas Brewing Company, The Line Up, Inc, The May Institute, Inc., The Philadelphia Inquirer, PBC, The Post and Courier, The Post Millennial, The Prudential Insurance Company of America, The Roman Catholic Diocese of Phoenix, The State of Kansas Office of Judicial Administration, The Tech Interactive, Theatrixx Technologies, Therapeutic Health Services, 50,000 Tinyproxy servers, Tipton Municipal Utilities, IN, Toolmarts, Toronto Transit Commission, Transamerica Life Insurance Company, Trib Total Media, True Homes, LLC, TRUE Solicitors, Trylon Srl, Tyler Technologies, UAE Government, UK Government’s System Database, UK Ministry of Defence, UK Royal Mail, 20 Ukrainian Energy and Water Sites, Ukrainian TV, United Nations Development Programme, University of Alabama, University of Alberta, University System of Georgia (USG), US Air Force Academy (USAFA), US Atlantic Fisheries, US Coast Guard Reserve, US Consumer Database, US Health and Human Services (HHS), US Internal Revenue Service (IRS), US Medicare, US Patent and Trademark Office, US Space Forces (USSF) Military Bases, USA Health Providence Hospital, Utica Mack, Valley Mountain Regional Center, Valley Veterinary Clinic, LLC, Van Gogh Museum, Varo Bank, N.A., Veeam, Velvet Capital, Verizon, Victorian Ambulance Union, Virginia Union University, VirtualBox, Visionary Integration Professionals, VMware Cloud Foundation, VMware ESXi, VMware Fusion Pro/Fusion, VMware Workstation Pro/Player, Void Interactive, Volkswagen, VPN traffic (TunnelVision), VTRP, W.I.S. Sicherheit-Service GmbH & Co. KG, Washington State’s Swinomish Casino and Lodge, WebTPA Employer Services, LLC, WEL Partners, Wells Fargo, Welsh Government, Wescom Central Credit Union, West Idaho Orthopedics and Sports Medicine, Westboro Baptist Church, WhatsApp, Windows, Windows Apps, Windows Print Spooler, WOM, World Architects, World-Check, WP Forminator plugin, WP-Automatic Plugin, Xiaomi, Yale Mortgage, YRW Limited – Chartered Accountants, ZA Government Employees Pension Fund’s (GEPF), ZircoDATA, and Zscaler Inc have reported hacking or compromises this month.

Central Power Systems & Services, Final Fantasy, Frontier Communications, Kansas City’s official website, Ogero, Reddit, and Telegram have suffered from outages this month.

Last months updates broke Outlook, Windows (thanks ManageEngine), and VPN connections.

An update to ManageEngine has caused thousands of Windows machines to fail to boot. I guess that’s one way to make sure that they can’t be hacked through ManageEngine vulnerabilities?

Windows has officially added advertisements to the Windows 11 Start Menu.

The PuTTY Pageant key generation weakness will require millions upon millions of certificates to be rekeyed.

The Windows Boot Manager update released in January still has no automated fix from Microsoft. Third parties have created several methods of installing the update, and the closest-to-perfect automation yet requires seven (7!) restarts.

Microsoft has announced plans to implement fully locked down DNS via a pairing of DNS and the firewall, branded Zero Trust DNS – ZTDNS.

A recent technical paper described the process of using LLM (GPT-4) to automate the process of building exploits for newly discovered vulnerabilities. Reviews of the paper tend to acknowledge that it can be used in this fashion but focus instead on the use of the word “autonomously” which they treat as sentience. No guys, the paper isn’t saying that Skynet is here, just that LLMs are getting to the point where they can build functional exploit code based on brief descriptions of vulnerabilities.

I first saw the description of “Kobold Letters” a couple months ago. While a very creative use of CSS and an interesting idea, what are the chances that this kind of thing would actually be used in real life? 100%. I’ve now seen this behavior on three different client mail accounts in Microsoft Online and Gmail.

The founder of Telegram has publicly reported that the FBI pressured an employee to build a backdoor into the system. They refused.

Thunderbird has added Microsoft Exchange support. This means you won’t be forced to use the “New Outlook” crapp to access your Microsoft Exchange accounts. 🙂

Now for the good news:

We won. Sony caved on the Helldivers 2 privacy-violating “account linking” change. 🙂

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is insane this month. The typical computer should see roughly 5 GB in updates today. Let’s get started.

Microsoft released updates to address 67 vulnerabilities in .NET and Visual Studio, Azure Migrate, Microsoft Bing, Microsoft Brokering File System, Microsoft Dynamics 365 Customer Insights, Microsoft Edge (Chromium-based), Microsoft Intune, Microsoft Office Excel, Microsoft Office SharePoint, Microsoft WDAC OLE DB provider for SQL, Microsoft Windows SCSI Class System File, Microsoft Windows Search Component, Power BI, Visual Studio, Windows Cloud Files Mini Filter Driver, Windows CNG Key Isolation Service, Windows Common Log File System Driver, Windows Cryptographic Services, Windows Deployment Services, Windows DHCP Server, Windows DWM Core Library, Windows Hyper-V, Windows Kernel, Windows Mark of the Web (MOTW), Windows Mobile Broadband, Windows MSHTML Platform, Windows NTFS, Windows Remote Access Connection Manager, Windows Routing and Remote Access Service (RRAS), Windows Task Scheduler, Windows Win32K – GRFX, Windows Win32K – ICOMP, and MSRT. This includes security updates. A reboot is required.

Oracle released 441 security updates this quarter to address vulnerabilities in 119 applications.
https://www.oracle.com/security-alerts/cpuapr2024.html

Apple released updates for iOS 16.7.8, iOS 17.5, iPadOS 16.7.8, iPadOS 17.5, iTunes 12.13.2 for Windows, macOS Monterey 12.7.5, macOS Sonoma 14.5, macOS Ventura 13.6.7, Safari 17.5, tvOS 17.5, and watchOS 10.5. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 16.7.8 and 17.5 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 6.7.8 and 17.5 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 10.5 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 17.5 is a security update. Use System, Software Update to install the most current version.

Google Chrome OS 124.0.6367.154 and 120.0.6099.310 are security updates. Use Menu, Help, About to install the most current version. A reboot is required.

Fedora 40-1.14 is a major update, replacing BerkeleyDB with alternatives, updating libraries, and including adding new features and defaults. This should be treated as a security update.
https://getfedora.org/en/workstation/download/

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

The release of macOS Sonoma (14.x) means that macOS Big Sur (11.x) and older are no longer supported. If you can not install at least macOS Monterey (12) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 11 (v23H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is now stable and can be upgraded to if your hardware supports it, but I recommend you continue to use Windows 10 until early 2025 before you consider switching to it.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 24.4.1 adds support for new software, performance improvements, and resolves several bugs. This is not a security update.
https://www.amd.com/en/support

Daemon Tools Lite 12.1.0 improves tooltips, and resolves a couple bugs. This is not a security update.
https://www.daemon-tools.cc/products/dtLite

Dymo Connect for Desktop 1.3.2.18 doesn’t provide a detailed change log so should be treated as a security update.
https://www.dymo.com/label-makers-printers/labelwriter-label-printers/dymo-labelwriter-450-duo-thermal-label-printer/SAP_1752267.html

TP-Link Archer AX55 v1 240325 adds almost a dozen new features, improves stability and resolves several bugs. This is a security update.
https://www.tp-link.com/us/support/download/archer-ax55/v1/#Firmware

TP-Link Archer AX73 v2.0 240323 resolves several bugs. This is a security update.
https://www.tp-link.com/us/support/download/archer-ax73/v2.0/#Firmware

UniFi Network Server 8.1.127 enhances firewall rules visibility, adds tunnel IP addresses, OSPF dynamic routing support, and resolves a dozen bugs. This is not a security update.
https://www.ui.com/download/releases/network-server

VIISAN OfficeCam 7.1.19.0 doesn’t provide a change log so should be treated as a security update.
https://www.viisan.com/en/download/type1.html

Wacom Driver 6.4.6-1 adds support for newer hardware, resolves several bugs and improves stability.
https://www.wacom.com/en-us/support/product-support/drivers

Xerox Smart Start 2.0.34.0 doesn’t provide a change log so should be treated as a security update.
https://www.support.xerox.com/en-us/content/143617

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.65.133 is a security update.
https://brave.com/

Firefox 126 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 115.11.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Google Chrome 124.0.6367.207 is a security update.
https://www.google.com/chrome/

Microsoft Edge 124.0.2478.97 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Vivaldi 6.7.3329.29 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Spark 3.15.5.72973 resolves several AI-related bugs. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.15.5.72972 resolves several AI-related bugs. This is not a security update.
https://sparkmailapp.com/

Thunderbird 115.10.2 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 8.0.10 is a security update.
https://anydesk.com/en/downloads

AnyDesk (macOS) 8.0.1 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

Dropbox 199.4.6287 removes a cosmetic defect. This is not a security update.
https://www.dropbox.com/

Facebook Messenger 211.0.0.18.236 is a security update.
https://www.messenger.com/download

FileZilla Client 3.67.0 is a security update.
https://filezilla-project.org/

FileZilla Server 1.8.2 is a security update.
https://filezilla-project.org/

FreeFileSync 13.6 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 90.0 resolves several bugs. This is the last version to support macOS 10.15 – if your hardware can not support macOS 11 you should have already removed it from the Internet, but if not, please take this as one more signal that it’s time to replace it.
https://drive.google.com/start

Microsoft Teams 1.7.00.10152 resolves several bugs. This is not a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 29.0.0 is a major update, resolving dozens of bugs, updating libraries, and improving workflow and design. This should be treated as a security update.
https://nextcloud.com/

Nmap 7.95 adds over 6,500 more fingerprints, new scripts and resolves several bugs. This is a security update.
https://nmap.org/

PuTTY 0.81 is a security update.
https://www.chiark.greenend.org.uk/~sgtatham/putty/latest.html

Signal 7.8.0 adds emoji call responses and resolves several bugs. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 7.6.2 adds emoji call responses, adds sent message editing, and resolves several bugs. This is not a security update.
https://signal.org/android/apk/

Skype 8.116.0.213 improves stability. This is not a security update.
https://www.skype.com/

Syncthing 1.27.7 resolves a potential security bug.
https://syncthing.net/

Telegram 5.0.1 resolves several bugs. This is not a security update.
https://telegram.org/

USB Drive Log 1.13 adds black background support. This is not a security update.
https://www.nirsoft.net/utils/usb_drive_log.html

Z-Library 1.02 doesn’t provide a change log so should be treated as a security update.
https://z-library.se/z-access#desktop_app_tab

Zoom 6.0.4.38135 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 4.0.4 resolves several bugs. This is not a security update.
https://en.3tene.com/

Bitwig Studio 5.1.9 resolves several bugs. This is a security update.
https://www.bitwig.com/download/

Grayjay 240 adds several new features, sources, improvements, and resolves a dozen bugs. This is not a security update.
https://grayjay.app/index.html

iTunes 12.13.2.3 is a security update.
https://www.apple.com/itunes/download/

Plex Desktop 1.92.1.140 doesn’t provide a detailed change log so should be treated as a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.60.1.134 updates libraries. This should be treated as a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.40.2.8395 resolves several bugs, including an installation path issue. If you used a custom path you will need to uninstall and reinstall in order for future automatic updates to work correctly. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

GameMaker Studio 2024.4.0.137 changes homepage. This is not a security update.
https://www.yoyogames.com/en/gamemaker

GDevelop 5.3.201 resolves several bugs and improves interface. This is not a security update.
https://gdevelop.io/download

Minecraft Server (Bedrock) 1.20.81.01 does not provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

Minecraft Server (Java) 1.20.6 does not provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server

Nintendo Switch 18.0.1 resolves several bugs. This is a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PS5 2024.430 resolves several bugs and improves hardware support. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2024-05-13 resolves several bugs. This is not a security update.
https://store.steampowered.com/news/app/593110
By the way, we won. Sony caved on the Helldivers 2 privacy-violating “account linking” change. 🙂

SteamOS SteamDeck Update 2024-05-03 is a security update.
https://store.steampowered.com/news/app/1675200/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Acrobat and Reader 24.002.20759 and 20.005.30636 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb24-29.html

Adobe Aero 0.24.4 is a security update.
https://helpx.adobe.com/security/products/aero/apsb24-33.html

Adobe Animate 23.0.6 and 24.0.3 are security updates.
https://helpx.adobe.com/security/products/animate/apsb24-36.html

Adobe Dreamweaver 21.4 is a security update.
https://helpx.adobe.com/security/products/dreamweaver/apsb24-39.html

Adobe FrameMaker 2020.6 and 2022.4 are security updates.
https://helpx.adobe.com/security/products/framemaker/apsb24-37.html

Adobe Illustrator 28.5 and 27.9.4 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb24-30.html

Adobe Substance 3D Designer 13.1.2 is a security update.
https://helpx.adobe.com/security/products/substance3d_designer/apsb24-35.html

Adobe Substance 3D Painter 10.0.0 is a security update.
https://helpx.adobe.com/security/products/substance3d_painter/apsb24-31.html

Aronium 1.43.0.2 adds dual currency and night theme, improves refund behavior, and resolves several bugs. This is not a security update.
https://aronium.com/

Audacity 3.5.1 adds a bunch of new features and resolves dozens of bugs. This is not a security update.
https://www.audacityteam.org/download/

Calibre 7.10.0 adds export support, spell check, color inversion and resolves several bugs. This is not a security update.
https://calibre-ebook.com/

Columns++ 1.0.6 improves wrapped line caompatibility. This is not a security update.
https://github.com/Coises/ColumnsPlusPlus

Formatta Filler 8.19.0.4 doesn’t provide a change log so should be treated as a security update.
https://formatta.com/formatta-products/complete-submit/

GIMP 2.10.38 doesn’t provide a detailed change log so should be treated as a security update.
https://www.gimp.org/

Java 8u411 is a security update.
https://www.java.com/en/download/manual.jsp

JShelter 0.18 improves compatibility. This is not a security update.
https://jshelter.org/install/

Kdenlive 24.02.2 improves compatibility and resolves several bugs. This is not a security update.
https://kdenlive.org/

Kindle for PC 2.3.70840 doesn’t provide a change log so should be treated as a security update.
https://www.amazon.com/kindleforpc

LibreOffice 7.6.7 resolves over 40 bugs. This is a security update.
https://www.libreoffice.org/

LibreOffice Fresh 24.2.3 resolves over 75 bugs. This is a security update.
https://www.libreoffice.org/

Manager 24.5.13.1531 adds several new features and improves email integration and display. This is not a security update.
https://www.manager.io/

Nextcloud Desktop 3.13.0 resolves dozens of bugs and updates libraries. This is a security update.
https://nextcloud.com/

Notepad++ 8.6.7 improves multiedit and language support, and resolves several bugs. This is not a security update.
https://notepad-plus-plus.org/

PDF-XChange Editor 10.3.0.386 adds page extraction, label modification, improves sort and group behavior and resolves dozens of bugs. This is not a security update.
https://www.pdf-xchange.com/product/pdf-xchange-editor

QuickBooks Pro 2022 20240509-R15_25 updates to backend processes. This is not a security update.
https://downloads.quickbooks.com/app/qbdt/products

QuickBooks Pro 2023 20240509-R12_15 updates to backend processes. This is not a security update.
https://downloads.quickbooks.com/app/qbdt/products

Security Software Updates

One or more of these is likely to be of interest to most people.

Chainsaw 2.9.0 adds native rules, timezone improvements, and adds ability to change default conditional when searching. This is not a security update.
https://github.com/countercept/chainsaw

Microsoft Edge Policy 2024.05.07 updates policies. This is not a security update.
https://github.com/MicrosoftDocs/Edge-Enterprise/blob/public/edgeenterprise/microsoft-edge-policies.md

OpenSSL 3.3.0 is a security update.
https://slproweb.com/products/Win32OpenSSL.html

ProtonVPN (macOS) 4.2.2 improves performance. This is not a security update.
https://protonvpn.com/download

RogueKiller 15.16.1 updates engine and resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

Stinger 13.0.0.118 adds support for more detections. This is not a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

SuperAntiSpyware 10.0.1266 resolves several bugs. This is not a security update.
https://www.superantispyware.com/download.html

Tails 6.2 is a security update.
https://tails.net/install/download/index.en.html

Velociraptor 0.72 adds EWF support and resolves several bugs. This is not a security update.
https://github.com/Velocidex/velociraptor/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

SnagIt 24.1.3 improves OCR, performances, updates libraries and resovles several bugs. This is a security update.
https://www.techsmith.com/screen-capture.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.1.7 resolves several couple bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

StreamFab 6.1.7.7 improves compatibility and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 2.0.2.0 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.10.32 improves compatibility, adds support to import from more third-party platforms, and resolves several bugs. This is a security update.
https://1password.com/downloads/

Agent Ransack 2022.3434 adds support for OneNote and resovles several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

AOMEI Partition Assistant 10.4.0 improves the user interface. This is not a security update.
https://www.diskpart.com/

Bitwarden 2024.4.2 improves passkeys support and secrets manager, and adds a new Authenticator app. This is not a security update.
https://bitwarden.com/

BulkFileChanger 1.73 resolves a timezone-related bug. This is not a security update.
https://www.nirsoft.net/utils/bulk_file_changer.html

CCleaner 6.23.11010 resolves several bugs. This is a security update.
https://www.ccleaner.com/

DesktopOK 11.21 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.1.92.0 resolves a .git/.gitignore bug, updates .NET library and translations. This is a security update.
https://dngrep.github.io/

ExplorerPatcher 22621.3527.65.2 resolves several bugs. This is not a security update.
https://github.com/valinet/ExplorerPatcher/

FileLocator Pro 2022.3434 adds support for OneNote and resovles several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

FoneTool 2.6.1 adds iOS Data Recovery and resolves a crash bug. This is not a security update.
https://www.fonetool.com/download.html

Git SCM 2.45.0 adds dozens of new features and behaviors, and resolves over 50 bugs. This is not a security update.
https://git-scm.com/

Go 1.22.3 is a security update.
https://go.dev/

GoodSync 12.6.5 improves compatibility and resolves several bugs. This is not a security update.
https://www.goodsync.com/

HWiNFO 8.02 doesn’t provide a change log so should be treated as a security update.
https://www.hwinfo.com/download/

InstalledAppView 1.08 resolves a CLI bug. This is not a security update.
https://www.nirsoft.net/utils/installed_app_view.html

IsMyHdOK 3.96 improves performance and testing accuracy. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

LessMSI 2.0.1 updates dependencies and build environment, and resolves a stability bug. This is not a security update.
https://lessmsi.activescott.com/

NirCmd 2.87 adds and resolves ~$ variables. This is not a security update.
https://www.nirsoft.net/utils/nircmd.html

NTLite 2024.5.9931 resolves dozens of bugs. This is not a security update.
https://www.ntlite.com/download/

osquery 5.12.1 is a security update.
https://osquery.io/downloads

PingInfoView 3.05 adds option to map source IPv4 Address. This is not a security update.
https://www.nirsoft.net/utils/multiple_ping_tool.html

PowerToys 0.80.1 improves stability. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

PSAppDeploy 3.10.1 adds a dozen features and parameters, improves stability and reliability, and resolves several bugs. This is not a security update.
https://psappdeploytoolkit.com/

RoboForm 9.5.8 improves GUI. This is not a security update.
https://www.roboform.com/

ScreenConnect 24.1.7.8892 resolves dozens of bugs and improves compatibility. This should be treated as a security update.
https://screenconnect.connectwise.com/download

Starwind V2V Converter 9.444 adds support for new conversions. This is not a security update.
https://www.starwindsoftware.com/starwind-v2v-converter

WinGet 1.7.11261 fixes elevation issues, updates dependencies and libraries. This is a security update.
https://github.com/microsoft/winget-cli/releases/latest

WinScan2PDF 8.81 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WUMT 04.22.2022 improves Windows 11 compatibility. This is not a security update.
https://www.oldergeeks.com/downloads/file.php?id=1366

Developer Updates

These are unlikely to be of interest to most people.

.NET Runtime 8.0.5 is a security update.
https://dotnet.microsoft.com/en-us/download/dotnet

Android Studio 2023.3.1 adds device streaming for testing, integrates crashlytics, improves App Quality Insights, and adds audio redirection. This is not a security update.
https://developer.android.com/studio

AutoHotkey 2.0.14 resolves several bugs. This is not a security update.
https://www.autohotkey.com/download/

cx_Freeze 7.0 updates dependencies and libraries and resolves hundreds of bugs. This should be treated as a security update.
https://cx-freeze.readthedocs.io/en/latest/index.html

GitHub Desktop 3.3.17 removes support for older macOS versions, resolves a dozen bugs and improves user interface. This is not a security update.
https://desktop.github.com/

Godot 4.2.2 improves CLI support, resolves the audio bug, and more than 200 other issues. This is a security update.
https://godotengine.org/

MySQL ConnectorNet 8.4.0 updates libraries and resolves several bugs. This is a security update.
https://dev.mysql.com/downloads/connector/net/

MySQL Server 8.0.37 resolves dozens of bugs. This is a security update.
https://dev.mysql.com/downloads/installer/

NASM 2.16.03 improves the build process. This is not a security update.
https://www.nasm.us/index.php

Node.js 18.20.2 is a security update.
https://nodejs.org/en/

Node.js 20.13.1 resolves several bugs and updates libraries. This is a security update.
https://nodejs.org/en/

Node.js 21.7.3 is a security update.
https://nodejs.org/en/

Node.js 22.1.0 is a major update. This is a security update.
https://nodejs.org/en/

Redemption 6.5.0.6294 improves integration and resolves several bugs. This is not a security update.
https://www.dimastr.com/redemption/

Rustup 1.27.1 resolves several bugs. This is not a security update.
https://www.rust-lang.org/

SQLite 3.45.3 adds new JSON handling behaviors and resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

TortoiseGit 2.16.0 resolves a dozen bugs and updates libraries. This is a security update.
https://tortoisegit.org/

TortoiseSVN 1.14.7 resolves several bugs. This is a security update.
https://tortoisesvn.net/downloads.html

Visual Studio Code 1.89.1 adds support to exclude content from Copilot and resolves several bugs. This is not a security update.
https://code.visualstudio.com/

WinMerge 2.16.40 resolves several bugs. This is not a security update.
https://winmerge.org/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 7.0.18 resolves over a dozen bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

HumHub 1.15.5 resolves several bugs. This is not a security update.
https://www.humhub.com/en

Joomla 5.1.0 adds more than a dozen features and code and performance improvements. This is not a security update.
https://www.joomla.org/

MAMP 5.0.6 updates dependencies. This should be treated as a security update.
https://www.mamp.info/en/mamp/windows/

phpList 3.6.15 is a security update.
https://www.phplist.org/

Piwigo 14.4.0 resolves several bugs. This is not a security update.
https://piwigo.org/

WordPress 6.5.3 is a security update.
https://wordpress.org/

BuddyPress 12.4.1 is a security update.
https://wordpress.org/extend/plugins/buddypress/

Contact Form 7 5.9.4 resolves a couple bugs. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Duplicator 1.5.9 improves compatibility and resolves a bug. This is not a security update.
https://wordpress.org/plugins/duplicator/#developers

My Sticky Bar 2.7 resolves a cosmetic bug. This is not a security update.
https://wordpress.org/extend/plugins/mystickymenu/

Postie 1.9.69 should be treated as a security update.
https://wordpress.org/extend/plugins/postie/

Slider Revolution 6.7 resolves several bugs. This is a security update.
https://revolution.themepunch.com/

Social Post Feed 4.2.4 improves integration. This is not a security update.
https://wordpress.org/extend/plugins/custom-facebook-feed/

Sucuri Security 1.8.44 improves API key controls. This is not a security update.
https://wordpress.org/extend/plugins/sucuri-scanner/

W3 Total Cache 2.7.2 resolves several bugs and improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/w3-total-cache/

WooCommerce 8.9.0 improves compatibility and resolves dozens of bugs. This is not a security update.
https://wordpress.org/extend/plugins/woocommerce/

WPBakery 7.6 resolves several bugs. This is a security update.
https://wpbakery.com/

WPtouch 4.3.59 adds support for Reddit, improves compatibility, and resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/wptouch/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/