Happy Valentine’s Day, Folks!
Today is Patch Tuesday for February, 2026.
If your Windows 10 computer can not be upgraded to Windows 11 then you should either replace your device or use the Windows 10 ESU program to get another year 8 months out of it.
There were 1530+ major hacks, and over 530 application updates this month. It’s a large month, with about 4.5 GB of updates for most users.
Merry Christmas, Folks!
Today is Patch Tuesday for December, 2025.
If your Windows 10 computer can not be upgraded to Windows 11 then you should either replace your device or use the Windows 10 ESU program to get another year out of it.
Windows 11 25H2 is now available and Windows 11 23H2 and older are no longer supported. Treat Windows 11 25H2 as beta software and wait a few months before upgrading.
macOS 26 Tahoe is now available and macOS 13 Ventura and older are no longer supported. Treat macOS 26 as beta software and wait a few months before upgrading.
There were 975+ major hacks, and over 525 application updates this month. It’s an average month, with about 3.5 GB of updates for most users.
1Panel, 3S Group, 3S Software, 7-Zip, 700Credit, A-B Communications, A10 Networks, Abbott, ABC Home & Commercial Services, Abdulhadi Hospital, Abhe & Svoboda, Access Search, ACE Forwarding, Acoustical Control, Acroni, Acu Trans Solutions, ADC Aerospace, ADDA, ADEPT, Advanced Power, Advantage 360, Aero Precision, Afternic, AG Displays, AGS, Ahome, Ahtna, Inc, Air Design Systems, Air Miles España, AJ Jersey, Akehurst Landscape Service, AkroStar Technology, Al Quraishi Marketing, Al-Ettifag Academy, Aljomaih Automotive, AllerVie Health, Alma Realty, Almaviva, Alpha Omega Winery, Alshaya Group, Amcore, American Associated Pharmacies, American Israel Public Affairs Committee (AIPAC), American Pools & Spas, American Public Television, American Soccer Company Inc, American Trust Administrators, AMH Philippines, Anchorage Neighborhood Health Center, Anderson Bancshares, Android, Ansible Community, Anthem, Inc, Anywhere RE, Anywhere Real Estate, Apache Struts, Apache Syncope, Apache Tika, Appalachian Community Federal Credit Union, Apple macOS, Apple Safari, Appleton UPSMON-Pro, Applied Energy Systems, Arabia Holding, Arabian Escapes, Archer Health, ARH Associates, Arista NG Firewall, ARKo, Armis Group, Array AG Series VPN, Artesian Insurance, Artists & Clients, Asahi Kasei Microdevices, Asia Condominium Association, ASL HR Solutions, Aspen Distribution, Astrofein, over 50,000 ASUS routers, ASUS AiCloud routers, ASUS DSL routers, ASUS MyASUS, ATIC TS, Atrium Living Centers, AudioCodes Fax/IVR Appliance, Avery Dennison, AVR Industries, AvtechTyee, B&J Rocket Sales, B2BE, Badan Pengelola Keuangan Haji, Badr Airlines, Bais Yaakov Elementary School, Balkrishna Paper Mills, Baltimore City Fire and Police Employees’ Retirement System, BanBan Play, Bangkok Eagle Wings, Bank of Cyprus Oncology Centre, Barbizon Lighting, Barnhart, Barts Health NHS Trust, Basecamp, Basin Harbor, Basra Transports, Battaglioli, Baxter Life 2000 Ventilation System, BayFirst, Bechtel, Beckett Collectibles, Becks Group Australia, Bel Fuse, Bellwether Community Credit Union, Benchmark Connector, Bergeson, Berjaya Air, BestAdsOnTV, Betterhomes, Big Lar, Bilsam, BioPharma Services, Bison Family Medical Clinics, BK Precision, Bleyl Engineering, Blossom Cloud, Blue Projects, BMS HS, Bo Beuckman Ford, Bodegas San Huberto, Bodhi Media Corp, BOLD Furniture, Bomchil, Bosch Choice Welfare Benefit Plan, Boutin Jones, Brahma Kumaris Columbia, Brenda Richardson Memorial Care Home, Brian-Kyles Construction, Broadcom, Brodosplit, Brsk, Brumfield Construction, Burnham Brown, Byzfunder NY LLC, Cabify, Cache Valley ENT, Cadman Power Equipment, Cal-Comp Electronics de México, Caldwell & Company Accounting, California Casualty Indemnity Exchange, Calmec, Camomilla Italia, Canno Design, Canon, Canvas Church, Capital Star Oil & Gas Inc, Capo Brothers, Capp Shupak, Carbon Graphics Group, Cardinal Services, CareTracker, Cargus, Carlton Fields, Caros, Cartones Villa Marina, Castel, Casting House, Cayuga Milk Ingredients, CC Johnson & Malhotra, CDU Beauty Medical Center, Center for Urologic Care, Cera Stribley, Chairmans Foods, Changepond Technologies, Charles Rutenberg Realty, Checkout, Chenango Valley Technologies, China Software Developer Network (CSDN), Chinese Military, ChristianaCare, Christofle, Church of the Ascension, Cimertex, Citi, City of Attleboro, MA, City of La Vergne, TN, City of Leavenworth, KS, City of Nuenen, NL, City of Urbana, IL, CJW, Clark & Sullivan Constructors, Claude AI, Clayco Solar, Clemar Assessoria e Logística em Comércio Internacional, Cleveland County Sheriff’s Office, Clipim, Cloudeka, Cloudflare, Clínica Villa Zaita, CodeStepByStep, Coldwell Banker UAE, Columbia Medical Practice, Comansco, Community 1st, Companjon, Complexo Hospitalar Municipal de Sao Bernardo do Campo, Comune di Balmuccia, Conasems, Concord Academy, Conduent Business Services, LLC, ConfortChem, Consero Global Solutions, LLC, Consolidated Sterilizer Systems, Copper Steel Fabricators, Coral, Cornerstone Staffing Solutions, Cottage Hospital, Country Club Enterprises, Coupang, CoVantage Credit Union, Cox Enterprises, Crisis24, Croft, CrowdStrike, Crucible Industries, Cryo Pur, CST Coal, CT Dent, Curtis Investment Group, Custom Engineered Wheels, Cytiva, D-Link DIR-878 routers, Dartmouth College, Dartmouth, Data Enterprises of the Northwest, Datenlotsen, David M. Schwarz Architects, Davies, McFarland & Carroll LLC, Davis Kitchens, DealMed Medical Supplies, Dell ControlVault3, Delta Coast Consultants, Delta Dental of Virginia, Demi Group, Dentsu, Dermatology Associates of Concord, Design Team Sign Company, Devereux Advanced Behavioral Health, DeWalch Technologies, DHK Architects, DIE, Diesel Electric, Discord Inc, Disston, Division 10, Django, Dobco, Doctor Alliance, Doka, Dooney & Bourke, DoorDash, Dover Area School District, Dr Isaac Gertz, DreamFactory, Drivestream, DTG Consulting Solutions, Dubois Wood, Dubroff, Easley, & Lovell, LLP, Duhabex, Dulay & Dulay, Eagle Oil & Gas, Eakas, Eastek International, Echo Design Group, ECI, EDIS, Edmunds, Eggelhof, Egovframe, Eighteen, Electricidad Panamericana, Electronic Products Shop, Elite Flower, Elundini Local Municipality, Elysian Real Estate, Emby Server, Emerson Movicon, Emond Publishing, ENEA, Enerre Pharma Lda, Ennoble Care & Circa Health, Enovis, EnQuest, Entrust, Envirotech Services, Episource, LLC, Ermat Grup, Ernest Käslin, ERR Raumplaner, ES Synergy, ESH7Enly, Espaço Casa, Eurofiber France, Eurofiber, Everbiz Industrial, Evytra, Exegy, ExeVision, F-W-S Countertops, Family Farm and Home, Fargo Park District, Farmers Insurance Exchange, Farmers Group, Inc, Fayette County, FDC Interiors, Felixvet, Fianzas Avanza, Fieldtex Products, FiinGate, Fineline Architectural Millwork, First Fruits Farms, Fishbowl Solutions, FIT, Fix Tecnologia, Fleet Management, Flock license readers, FloorHeat, Florida District 1 Medical Examiner, Forbes Marshall, Force Brokerage, Forensic Medical Management Services, Form Energy, Inc, Fortinet FortiWeb, Foster & Eldridge, Four Points by Sheraton, Foxconn Interconnect Technology, FR Express, France terre d’asile, Franklin County Engineer, OH, FreedL Group, Freedom Mobile, French Football Federation, Frontrol, Fruit of the Loom, FS Italiane Group, Fueling Solutions, Fuji Vegetable Oil, Fulgar, Fulkocha College, FullBeauty Brands, Fun For Less Tours, Fundidora de Cananea, Futureal, Gainesville Regional Airport, Galesi Group, Gana Payment, Garden of Life, Garland ISD Schools, Garrett Taylor, DDS, Gemeinde Untereisesheim, General Distributing, Genrose Stone + Tile, GeoHealthResearch, Gershow Recycling, Gl Veneer, Inc, GL0Inet GL-AXT1800, Gladinet’s Triofox, Glendale Obstetrics and Gynecology, GlobalLogic, GlobalProtect VPN portals, Globatech, Gmarket, Gold Coast Health Plan, Golden Artist Colors, Goldenrod, Goldhorse Capital, Goodman Air Conditioning & Heating, Google Chrome, Gopher Industrial, Government of Argentina, Government of Bangladesh, Government of Bolivia, Government of Brazil, Government of Columbia, Government of Ecuador, Government of Ethiopia, Government of Honduras, Government of India, Government of Indonesia, Government of Iran, Government of Jordan, Government of Kenya, Government of Malaysia, Government of Mexico, Government of Nigeria, Government of Pakistan, Government of Peru, Government of Philippines, Government of South Africa, Government of Syria, Government of Thailand, Government of Timor Leste, Government of Viet Nam, Goyal Books, Grafana, Granjas 4 Irmãos, Greater Cleveland Regional Transit Authority, Greenball, GreenBest, Grinding & Dicing Services, Gruenberg Kelly Della, Grupo Via Argentina, GSCCCA, GuestTek, GV Service, Habib Bank AG Zurich, Hall Aluminum Products, Hamilton Construction, Harbor Real Estate, Harbor Regional Center, Harvard Alumni Affairs, Harvard University, HASCO Hasenclever, Hazel Mercantile, HCMS Partners, Healthcare Interactive, Inc, Healthcare Retroactive Audits, Helix Energy Solutions, Heritage Communities, Herman & Chamow, HESCO Foodservice, HG Reynolds, Highmark, Hitech, Holiday Palace, HollySys Asia Pacific, Homes 4 Life, Homestead Museum, Horst Realty, HostingFest, House of Hope, Humana Inc, Hunt & Harris Real Estate, Hydroscand, Hyperdome Medical Centre, HYTORC, Hyundai AutoEver America, Hyundai Nishat Motor, Iberia, iBizSoft, IBM AIX, ILCA Targhe, ILM College, Ilustre Colegio de la Abogacia de Barcelona, Immling Festival, ImunifyAV, Incentive Concepts, Incolease, Information Communication Board of the Sarawak Chinese Annual Conference (ICBSCAC), Ingenieurbüro Laudi, Innomotive Solutions Group, Innovex International, Inotiv, Inspire Communities, Institutional & Supermarket Equipment, Integra Life, Intellexa, IntelliVIX, Interlink Trade Services, International Kiteboarding Organization, Interoil, Inventive IT, 120,000 Korean IP cameras, Irwin Car, Iscot Italia, Issaqueena Pediatric Dentistry & Orthodontics, Istituto Comprensivo di Cavaglià, ITL Systemhaus, Jack Levine, Japan Exchange Group, Japan Financial Investment Education Association, JASCO Applied Sciences, Jason Finch & Associates, Jefferson Enterprises, LLC, Jeffrey W. Krol & Associates, Jewell Engineering, JingHang Network Technology, Jobbers Moving & Storage, JPMorgan Chase, JR Engineering, Julius Koch, multiple jury systems across the US and Canada, K3G Solutions LTDA, Kaan Cronenberg & Partners Law, Kaener Personal, Kajima Europe, Kana Pipeline, Kane’s Furniture, Kansas City Behavioral Health Center, Kasapreko, Kaslin, Katch Kan, Kaufman County, KDR Real Estate Services, Kelly Wearstler Gallery, Kensington and Chelsea, Kensington Court, Kern Oil & Refining Co, Kettle, Sánchez & Co, Kewaunee Scientific, Keystone Fabricating, Khazzan Logistics Management Services, Kids & Company, Killingly Public Schools, Kimber Manufacturing, King City Lumber, Kingsford Group, KinoKong, Klüber Elektroanlagenbau, Knex Technology, Koha Foods, KohaFoods Hawaii, Korean Air C&D Service, KorPath, Kröger, Rehmann & Partner, Kudun & Partners, Kulturrådet, L&L Products, La Costa Dental Excellence, LA Injury Attorneys, Lake Superior State University, LAMAICA, Egypt, Landis, LatamLex, Law Office of Ronald W Hillberg, Lawyers’ Mutual Insurance Company of California, Legacy Classic, lemlist, Leroy Merlin, Lesker, LG, LG Energy Solution, Liat Gallery, Liberty Gold Fruit, Liberty Resources, Liberty Shoes, Life Fitness, Lincoln IT, Lithographix, Live Auctioneers, LL Products, LMG Holdings, Logitech, Lone Rock Timber, Lotus Powergear, Lows Orkney, LSA, Lynx+ Gateway, M&BM, Inc, M&Y Personal Injury Lawyers, MacTavish, Macy’s, Madison Square Garden, Mae Krathing Power Company, Mae Krating Power, MAG Aerospace, MagicSeller, Maheu & Maheu, Mainetti UK, Makro, Manusos General Contracting, Maresa Logística, MariaDB, Marlex Human Capital, Marquis Software Solutions, Maset, McKay Empire, McManes Law, MD Manouel Insurance Agency, Mechanical Systems, Medidores Industriales, Medisend College, Medsi Group, Meena Health, Mehri & Skalet, PLLC, Memorial Hospital and Manor, Metrocare Services, Metropolitan Adjustment Bureau, MFE Formwork Technology, Michelin Group, Microsoft’s Visual Studio Code Marketplace, Milano Ristorazione, Millicom, Miromar Development, Mishan, Mister Guns, MITACHI, Mitchell Silberberg & Knupp, MMC Studios, MOBI Technologies, Mobilelink USA, Modern Display, Money Mart, Morgan Stanley, Morton LTC, Motors City Center, Motorsportmarkt, Moyes, Mqd, Mr Christmas, MSP360 Free Backup, mToilet, MultistateTax Inc, Murphy, Pearson, Bradley & Feeney, APC, Muskoka Brewery, N15 Technology, Nadel Architects, Naffco, Nahant, Nasajon, National Health Insurance Management Authority, National University of Natural Medicine, Nationwide Legal LLC, NC Machinery, NetScaler ADC and Gateway, NETTTS, New England Tractor Trailer Training School, New Haven Public Schools, New Horizons Medical, Newgen Digital Works, Newline Cloud, Next Generation Logistics, Nickman’s Drug, Ninas Jewellery, Nita Transfert, NKC Health, Noment, NONC, North Kansas City Hospital, Northcroft, Norway Savings Bank, Nottingham Village, NovAtel, Nugent Supply, Numalliance, NVIDIA AIStore, NVIDIA Isaac-GROOT, NVIDIA Megatron, Oakland Museum of California, Omega Tool, Omnium International, OncoHealth, One Broker Group, One Source Associates, OnSolve CodeRED, OpenAI ChatGPT API, Optima Tax Relief, LLC, Orchid Island Golf and Beach Club, Oriental Castle Group, Oscars Group, Outback Pharmacies, Paal, Paccar, Pajemploi, Pan-O-Gold Baking, Panini Kabob Grill, Parallels Toolbox, Parrish Tire, Parsirang, Pathmaker Group, PDF-XChange, Pearl River Valley Electric Power Association, Pennsylvania Attorney General, PEPE, Perry Brothers Oil, Persante Health Care, Persianas Canet, Personic, Petco Animal Supplies Stores, Inc (“Petco”), Peter Meijer Architect, Petra, Petro Environmental, Petrobras Campos, PFMI, PH Molds, PHA Body Systems, Phillipine Department of the Interior and Local Government, Physiothletics, Pilgrim Packaging, Pioneer Ocean Freight Co, Pipeline Inc, Pixtura, PJSI Consultants, Platinum Healthcare Staffing, PlatinumOne Business Services, Playroll, PM Plastics, Poe’s Accounting Services, Point Construction Advisory Group, Poland’s military, Polidano Group, Poliserv, Portal Emploi, Portland’s Living Room Theater, Poyntell, Precision Compounding Pharmacy, Princeton University, Prismier, Privia Medical Group, Pro Medicus, ProAgro Seguros, ProCure Proton Therapy, Profondia, Propeller Industries, Protei, Providence Academy, Puerto Rico government agencies, Puerto Rico Warehousing, QPrint Digital, QuaLex Manufacturing, Quality Companies, Quality Engineered Homes, Quasar Inc, Quinn Jay Patent, Radio Sound, RaidForums, Ralph McKay Industries, Rama Judicial de Colombia, Rasen Insaat Ve Yatirim Ticaret, Ravand Cybertech, Ray Clusters, React Server (at least 30 organizations), Reading Elevator Service, Redi Carpet, Reed Pope Law, Refer Life, Regional Business Systems, Reliable Van & Storage, Remarket Space, Rempe Construction, Renesas Electronics, Repka, Reporters Without Borders, Revive Adserver, Revnomix, Rhodes Young Black & Duncan, Ripley Academy, Risk & Insurance Education Alliance, Riyadh Airports, RJ Walker, Roblox Developers Conference, Rochester Philharmonic Orchestra, Rockhill Women’s Care, Roebbelen Contracting, Inc, Rogitex, Rollingertec, Rose Displays, Roseburrough Tool, Rosland Capital, Rossit, Rouse Frets White Goss Gentile Rhodes, RR Lalan College, RUEZ, Running Aces, Saca Industrie SpA, SAExploration, Sakol Energy Public, Salesforce, Samsung, San Miguel, Sanko Air Plant, Sansala, Santa Paula, Sarmap, Savills Middle East, SBLM Architects, Scalextric, Schlenker & Cantwell, Schmidt’s, Scientology, Scrap Market, Search, Inc, Secure Network Solutions, SecureTeen, Security First Bank, Seipi, SEKISUI Aerospace, Sellers Publishing, SEPE-USET, Serratelli Hat, SES Société Energies Services, SEV-CI, SGK INC, Shelbra International, Shumate Mechanical, Sieger Design, Siemens SINEC NMS, Simmons Electrical, Simsekas, Singapore City Development, SitusAMC, SLA, Slimsoft, SmartTube YouTube client for Android TV, Smith Fire Systems, Smith Gardner, Smoll & Banning, Snyder Cohn, Socomec DIRIS Digiware, Soderstrom Architects, Sodise, SOKOL, Sol Trading, Soleol, SomnoSleep Consultants, SonicWall SonicOS, Sorbonne Université, Sotheby’s International Realty, South Island Public Service District, Southern Lion, Spark Innovation, Spark Power, Spoleta Construction, SSA Holdings, LLC, Stacey L Tokunaga, Standing Chapter 13 Trustee, Stark Shipping, StatMedPlus LLC, Sterling Biotech, Stoss Landscape Urbanism, SuKarne, Sumitomo Chemical, Summit Hotel Properties, SUNAFIL, Sunny Go, Svenska kraftnät, Swan Bitcoin, Swift Filters, Synergy (no public disclosure), Synnovis, Söllner, TAJMAC-ZPS, Takeuchi, Talarico, Talbot & Associates, Tami J. Dunham, CPA, Tawasol Solution & Services, TBC Consoles, TCG, TEAM Companies, Tencent Hunyuan3D, Tencent HunyuanDiT, Tencent HunyuanVideo, Tencent MedicalNet, Tencent NeuralNLP, Tencent PatrickStar, Tencent TFace, TFC Poultry, The American School Foundation, The Foot Doctors, The Hunnicutt Law Group, The InterTech Group, The Landreau Group, The Minor Firm, The Smith Companies, The TEAM Companies, LLC, The University of Pennsylvania, The Westin San Diego, ThinkMarkets, Thob Al Aseel, Thomas Davies, DPM, Thomas Safran & Associates, Tlusty & Kennedy, TMC Transformers, TOC Building, Toledo Transducers, Towerstream, TPI Composites, Tracsa Cat, Trane Technologies, Tranimpex, Transpedrosa, Treet, Treetop, Tri-Century Eye Care, Trigg Laboratories, Trolec, Tru Universe, Truenorth Corporation, Trumbull County, Tuan Le Construction, Tulane University, Turknet, Turkstra Trusses, Twonky, TypeCase Marketing Resource, UAM, UNDER ARMOUR, UniqueTech Engineering, United Food & Commercial Workers Local No. 7, United Volleyball Supply, Universidade Municipal de São Caetano, University Loft, University of Gävle, University of Pennsylvania, University of Phoenix, University of St. Thomas, UNOde50, Upbit, multiple US government agencies, Valley Banks, Valley Eye Associates, Valley Plains Equipment, Vanguard Business Information & Risk Management, Vantec Europe, Vennerhus Weine, VENZI & PAGANINI AG, Veton Ai, Viabizzuno, Victor Insulators, Vikor Scientific, VIP Apps Consulting, VIPRE Advanced Security, Virtualware Solutions, Visage Imaging, Vitamix, VITAS Hospice Services, LLC, VoiceTeam Call, Volkswagen Mandi, VS Gandía Palace Hotel, Vultr, Wachtmann Rohstoffhandel, Wachusett Regional School District, Wakefield & Associates, Walgreens Boots Alliance, Washington Post, Watson Clinic, Waukegan Steel, Webseeds, Wedge Holdings, Weiss, WEL Companies, Inc, West Donegal Credit Union, WhatsApp, Whitinger Strategic Services, Wibu-Systems WibuKey, Williams & Sparages, Williamson County, TX, Wiltshire Police, UK, Windows CLFS, Wisconsin Knife Works, WLR Precision Engineering, Woom GmbH, WordPress King Addons for Elementor plugin, WordPress W3 Total Cache plugin, Workflow Concepts, World Liberty Financial, WR Comercial, Wright Architectural Millwork, Wyandot Center, Wynn & Wynn, XOX Mobile, XWiki, Yearn Finance, Yellow Cab of Columbus, Yutong electric buses, Zadro, Zecher, Ziglin Signs, Zilvia, ZITADEL, Znojma Czechia, Zoetis, Zoya, Zuber Aussenwelten, and Şimşek have reported hacking or compromises this month.
ChatGPT, City of Leavenworth, Kansas, Cloudflare (quite a few times), Microsoft Defender portal, Microsoft Exchange Online, Royal Borough of Kensington and Chelsea, Westminster City Council, and X (repeatedly) have suffered from outages this month.
Internet access throughout Darwin, Australia, Dominican Republic, Donetsk Oblast, Ukraine, Russia, Sri Lanka, Sumy, Ukraine, Thailand, Ukraine (many times), Wyoming and South Dakota has been blocked our down for extended periods.
Last months updates broke Dell video packages, Microsoft 365 desktop, Microsoft Outlook desktop, “new” Outlook, Nvidia drivers, Windows 10 ESU enrollment, Windows 11 login button, Windows 11 Start Menu & File Explorer, Windows File Explorer, and X.
The Germans are now silencing US-based first-amendment protected content across the world through Cloudflare.
Code “beautifiers” (and other anonymous free services) have been publicly sharing secrets of unwitting users for years.
Sigh. The FCC has rolled back their new security requirements for US telecommunications operators that were imposed after they fell victim to the Salt Typhoon attack that exploited a weakness that has been in use for over 20 years.
Google has changed course on their draconian requirements that would have prevented all non-corporate developers from releasing software for Android.
Now back to our regularly scheduled program.
Patch Tuesday is average this month. The typical computer should see roughly 3.5 GB in updates today. Let’s get started.
Microsoft released 34 updates to address 69 vulnerabilities in Application Information Services, Azure Monitor Agent, Copilot, Microsoft Brokering File System, Microsoft Edge, Microsoft Edge for iOS, Microsoft Exchange Server, Microsoft Graphics Component, Microsoft Office, Microsoft Office Access, Microsoft Office Excel, Microsoft Office Outlook, Microsoft Office SharePoint, Microsoft Office Word, Storvsp.sys Driver, Windows Camera Frame Server Monitor, Windows Client-Side Caching (CSC) Service, Windows Cloud Files Mini Filter Driver, Windows Common Log File System Driver, Windows Defender Firewall Service, Windows DirectX, Windows DWM Core Library, Windows Hyper-V, Windows Installer, Windows Message Queuing, Windows PowerShell, Windows Projected File System, Windows Projected File System Filter Driver, Windows Remote Access Connection Manager, Windows Resilient File System (ReFS), Windows Routing and Remote Access Service (RRAS), Windows Shell, Windows Storage VSP Driver, Windows Win32K – GRFX, and MSRT. This includes security updates. A reboot is required.
Apple released updates for Compressor 4.11.1. This is a security update. Use Apple Software Update to install the most current versions.
Google ChromeOS 142.0.7444.220 and ChromeOS LTS 138.0.7204.298 are security updates. Use Menu, Help, About to install the most current version. A reboot is required.
Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.
Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.
The release of macOS Tahoe (26.x) means that macOS Ventura (13.x) and older are no longer supported. If you can not install at least macOS Sonoma (14) on your Mac then you should immediately remove your device from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.
The current — and final — release of the Windows 10 (v22H2) is end of life (EOL). All non-LTS versions of Windows 10 without ESU are now out of support, with the sole alternatives being to upgrade to Windows 11 or enable Extended Service Updates (ESU). If you aren’t sure whether you are using LTS, you aren’t. Enable the ESU now.
The current release of the Windows 11 (v25H2) is very large (30% larger than any previous release) so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.
Windows 11 is now stable and can be upgraded to if your hardware supports it. If not, switch to Linux (Mint is nice) or replace your computer.
Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.
It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, drivers for hardware you’re not using (like old printers), and games you do not actually play.
Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available.
Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with a SaferPC Subscription and we will install updates each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com
If you’re using this hardware – these updates are for you.
AMD Adrenalin 25.11.1 resolves several bugs and improves stability. This is not a security update.
https://www.amd.com/en/support
Crucial Storage Executive 11.11 does not provide a change log so should be treated as a security update.
https://www.crucial.com/support/storage-executive
Epson ET-2750 2.100.00 does not provide a detailed change log so should be treated as a security update.
https://epson.com/Support/Printers/All-In-Ones/ET-Series/Epson-ET-2750/s/SPT_C11CG22201
Epson ET-2760 2.100.00 does not provide a detailed change log so should be treated as a security update.
https://epson.com/Support/Printers/All-In-Ones/ET-Series/Epson-ET-2760/s/SPT_C11CG22203
Epson ET-4760 2.100.00 does not provide a detailed change log so should be treated as a security update.
https://epson.com/Support/Printers/All-In-Ones/ET-Series/Epson-ET-4760/s/SPT_C11CG19203
Epson WF-4730 2.100.00 does not provide a detailed change log so should be treated as a security update.
https://epson.com/Support/Printers/All-In-Ones/WorkForce-Series/Epson-WorkForce-Pro-WF-4730/s/SPT_C11CG01201
MTPdrive 5.0.200 updates driver. This is not a security update.
https://www.mtpdrive.com/
Stream Deck 7.1 adds in-app marketplace search, NodeJS sideloading, improved profile management and storage, cosmetic improvements and resolves several bugs. This is not a security update.
https://help.elgato.com/hc/en-us/categories/360001636492-Stream-Deck
TP-Link Archer A6 v3 250716 is a security update.
https://www.tp-link.com/us/support/download/archer-a6/v3/#Firmware
UniFi AC Professional 6.7.35 improves stability and resolves over a dozen bugs. This is not a security update.
https://www.ui.com/download/software/uap-ac-pro
UniFi airMAX NanoStation 5AC Loco 8.7.19 is a security update.
https://www.ui.com/download/software/loco5ac
UniFi Network Server 10.0.160 resolves over a dozen bugs and offers improvements in controls, filters, and reporting. This is a security update.
https://www.ui.com/download/releases/network-server
UniFi U6 Professional 6.7.35 improves stability and resolves over a dozen bugs. This is not a security update.
https://www.ui.com/download/software/u6-pro
VIISAN OfficeCam 7.2.14 does not provide a change log so should be treated as a security update.
https://www.viisan.com/en/download/type1.html
One or more of these are likely to be of interest to everyone.
Brave 1.85.111 is a security update.
https://brave.com/
Firefox 146.0 is a security update.
https://www.mozilla.org/en-US/firefox/new/
Firefox ESR 140.6.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/
Google Chrome 143.0.7499.40 is a security update.
https://www.google.com/chrome/
Microsoft Edge 143.0.3650.75 is a security update.
https://www.microsoft.com/en-us/edge/business/download
Vivaldi 7.7.3851.58 is a security update.
https://vivaldi.com/
One or more of these are likely to be of interest to everyone.
OutlookAttachView 3.55 resolves a minor cosmetic bug. This is not a security update.
https://www.nirsoft.net/utils/outlook_attachment.html
Spark 3.27.4.124849 resolves several stability bugs. This is not a security update.
https://sparkmailapp.com/
Spark (macOS) 3.27.4.124850 resolves several stability bugs. This is not a security update.
https://sparkmailapp.com/
Thunderbird 145.0.0 is a security update.
https://www.thunderbird.net/en-US/
One or more of these are likely to be of interest to everyone.
AnyDesk 9.6.6 resolves several stability and reliability bugs and improves compatibility. This is a security update.
https://anydesk.com/en/downloads
AnyDesk (macOS) 9.6.0 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads
Discord December 8, 2025 is a security update.
https://discord.com/download
FileZilla Client 3.69.5 updates libraries and resolves a cosmetic bug. This is not a security update.
https://filezilla-project.org/
FileZilla Server 1.12.0 resolves several bugs. This is not a security update.
https://filezilla-project.org/
FreeFileSync 14.6 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php
Google Drive 118.0 improves performance. This is not a security update.
https://drive.google.com/start
MeshCentral 1.1.54 updates libraries, resolves dozens of bugs, and improves compatibility and reliability. This is not a security update.
https://meshcentral.com/info/downloads.html
Nextcloud Server 32.0.2 updates libraries and resolves dozens of bugs. This is a security update.
https://nextcloud.com/
Npcap 1.85 is a security update.
https://nmap.org/npcap/
Rclone 1.72.0 updates libraries and resolves dozens of bugs. This is a security update.
https://rclone.org/
Signal 7.81.0 updates gallery previews. This is not a security update.
https://signal.org/download/windows/
Signal (Android) 7.66.5 adds polling. This is not a security update.
https://signal.org/android/apk/
Syncthing 2.0.12 updates libraries. This is not a security update.
https://syncthing.net/
Technitium DNS Server 14.2 resolves several bugs and improves cluster support. This is not a security update.
https://technitium.com/dns/
Telegram 6.3.6 resolves a couple crash bugs. This is not a security update.
https://telegram.org/
WinSCP 6.5.5 resolves three bugs. This is not a security update.
https://winscp.net/eng/index.php
Zoom 6.6.11.23272 is a security update.
https://zoom.us/
These are unlikely to be of interest to most people.
3tene 4.0.23 resolves several bugs, improves integration and default behaviors. This is not a security update.
https://en.3tene.com/
Grayjay 355 adds casting, playlist looping, improves update process and resolves several bugs. This is not a security update.
https://grayjay.app/index.html
KaraFun Player 3.10.3 improves performance and responsiveness, audio sync over Bluetooth and resolves several bugs. This is not a security update.
https://www.karafun.com/karaoke-windows/
Plex Desktop 1.112.0.359 updates libraries. Be aware that Plex recently changed their licensing terms to now require subscriptions for anyone viewing shared media.
https://www.plex.tv/media-server-downloads/#plex-app
These are unlikely to be of interest to most people.
Minecraft Server (Bedrock) 1.21.130.42 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock
Minecraft Server (Java) 1.21.11 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server
Nintendo Switch 21.1.0 improves stability. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989
PS5 2025.111 improves performance and stability. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/
Steam 2025.11.18 resolves over a dozen bugs. This is a security update.
https://store.steampowered.com/news/app/593110
One or more of these are likely to be of interest to most people.
Adobe Acrobat Reader 25.001.20997, 24.001.30307, 24.001.30308, and 20.005.30838 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb25-119.html
Adobe ColdFusion 2025u5, 2023u17, and 2021u23 are security updates.
https://helpx.adobe.com/security/products/coldfusion/apsb25-105.html
Adobe Creative Cloud Desktop 6.8.0.821 is a security update.
https://helpx.adobe.com/security/products/creative-cloud/apsb25-120.html
Adobe DNG SDK 1.7.1 build 2140 is a security update.
https://helpx.adobe.com/security/products/dng-sdk/apsb25-118.html
Adobe Experience Manager 2025.12, 6.5 LTS SP1 61551, and 6.5.24 are security updates.
https://helpx.adobe.com/security/products/experience-manager/apsb25-115.html
Artweaver 8.1 improves cosmetics and resolves several bugs. This is not a security update.
https://www.artweaver.de/
Audiate 2026.0.0 improves avatar generation. This is not a security update.
https://www.techsmith.com/camtasia/audiate/
Calibre 8.16.2 adds AI integration to your library and resolves several bugs. This is not a security update.
https://calibre-ebook.com/
LibreOffice Fresh 25.8.3 resolves over 65 bugs. This is not a security update.
https://www.libreoffice.org/
Nextcloud Desktop 4.0.3 resolves several bugs. This is not a security update.
https://nextcloud.com/
Notepad++ 8.8.9 is a security update.
https://notepad-plus-plus.org/
PDF-XChange Editor 10.7.6.404 resolves several bugs. This is not a security update.
https://www.pdf-xchange.com/product/pdf-xchange-editor
Xspouse 2025-2 implements compatibility with recent federal legislative changes. This is not a security update.
https://www.xspouse.com/
These are for specific Linux flavors and alternative operating systems and, sadly, are unlikely to be of interest to most people.
Tails 7.2 updates apps and libraries and improves security. This is a security update.
https://tails.net/install/download/index.en.html
One or more of these is likely to be of interest to most people.
HTTP Toolkit 1.24.1 doesn’t provide a change log so should be treated as a security update.
https://httptoolkit.tech/
MalwareBytes Anti-Malware Mac 5.19 reduces resource abuse and resolves several bugs. This is not a security update.
https://www.malwarebytes.com/mac/
RogueKiller 16.5.3 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/
Stinger 13.0.0.571 adds support for new detections. This is not a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx
uBlock Origin 1.68.0 resolves several bugs. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest
These are unlikely to be of interest to most people.
Camtasia 2026.0.0 improves integration with Audiate and resolves several bugs. This is not a security update.
https://www.techsmith.com/video-editor.html
SnagIt 2025.4.0 updates libraries and resolves several bugs. This is a security update.
https://www.techsmith.com/screen-capture.html
These are unlikely to be of interest to most people.
BookFab 1.2.1.5 adds Audible conversion, Calibre integration, and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/kindle-converter.htm
DVDFab 13.0.5.2 adds support for new encodings. This is not a security update.
https://www.dvdfab.cn/download.htm
IsoBuster 5.7 adds support for several new media formats and improves hardware and file type detection. This is not a security update.
https://www.isobuster.com/download.php
PDF Creator 6.2.0 adds HotFolder integration and resolves several bugs. This is not a security update.
https://www.pdfforge.org/pdfcreator
StreamFab 7.0.0.0 is a major update, adding multithreading support, bookmarks, improved interface and controls. This is not a security update.
https://streamfab.dvdfab.cn/downloader.htm
UniFab 3.0.3.3 adds AI translation, improves stability and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm
One or more of these are likely to be of interest to most people.
Zotero 7.0.30 improves compatibility and resolves several bugs. This is not a security update.
https://www.zotero.org/
These are unlikely to be of interest to most people.
1Password 8.11.22 improves duplicate detection, adds support for new browsers, and resolves several bugs. This is not a security update.
https://1password.com/downloads/
Agent Ransack 2022.3544 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/
AOMEI Partition Assistant 10.9.2 adds support for active diagnostics. This is not a security update.
https://www.diskpart.com/
Bitwarden 2025.11.5 resolves several bugs. This is not a security update.
https://bitwarden.com/
CCleaner 7.02.1080 improves settings user interface, adds scheduling, and resolves several bugs. This is not a security update.
https://www.ccleaner.com/
ControlMyMonitor 1.40 improves performance and stability, and adds a column to display supported VCP value range if the monitor provides it. This is not a security update.
https://www.nirsoft.net/utils/control_my_monitor.html
Dell Command Update 5.6 doesn’t provide a change log so should be treated as a security update.
https://www.dell.com/support/article/us/en/04/sln311129/dell-command-update?lang=en
DesktopOK 12.24 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK
dnGrep 4.6.52.0 adds search/replace swap, string replacements, updates libraries and resolves several bugs. This is not a security update.
https://dngrep.github.io/
FileLocator Pro 2022.3544 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download
Fing 3.9.3 improves stability and resolves several bugs. This is not a security update.
https://www.fing.com/products/fing-desktop-download-windows
FoneTool 3.3.0 resolves several bugs. This is not a security update.
https://www.fonetool.com/download.html
Free Virtual Serial Ports 7.07.00.1636 resolves a protocol bug. This is not a security update.
https://freevirtualserialports.com/
GoodSync 12.9.18 resolves several bugs. This is not a security update.
https://www.goodsync.com/
Inkchip WIC 1.18 doesn’t provide a change log so should be treated as a security update. This is not a security update.
https://inkchip.net/wic/
Kingston SSD Manager 1.5.6.1 doesn’t provide a change log so should be treated as a security update. This is not a security update.
https://www.kingston.com/us/support/technical/ssdmanager
LessMSI 2.11.2 improves language support. This is not a security update.
https://lessmsi.activescott.com/
Memtest86+ 8.00 adds support for new hardware, improves performance and stability, and resolves several bugs. This is not a security update.
https://www.memtest.org/
NTLite 2025.11.10675 resolves a couple bugs. This is not a security update.
https://www.ntlite.com/download/
OSForensics 11.1.1013 improves stability and resolves several bugs. This is not a security update.
https://www.osforensics.com/download.html
osquery 5.20.0 updates libraries and resolves several bugs. This is not a security update.
https://osquery.io/downloads
PowerToys 0.96.1 resolves several bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest
Process Explorer 17.08 reenables the Image field in the process Properties dialog. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/process-explorer
Remotly 1.36.2 resolves a couple bugs. This is not a security update.
https://remotly.com/
Remotly Android 2.2 resolves a couple bugs. This is not a security update.
https://remotly.com/
RoboForm 9.8.4 updates logo and resolves stability bugs. This is not a security update.
https://www.roboform.com/
SetUserFTA 2.7.2 improves UCPD handling. This is not a security update.
https://setuserfta.com/download-setuserfta/
Synergy 1.20.0 resolves several stability and reliability bugs. This is not a security update.
https://symless.com/synergy/
Ventoy 1.1.08 adds support for FreeBSD v15 and iVentoy. This is not a security update.
https://www.ventoy.net/en/index.html
WakeMeOnLan 1.95 adds annotation in custom columns with caption controls. This is not a security update.
https://www.nirsoft.net/utils/wake_on_lan.html
WinScan2PDF 9.46 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF
WizTree 4.28 improves performance and resolves several bugs. This is not a security update.
https://www.diskanalyzer.com/
ZoomIt 9.21 resolves several bugs. This is not a security update.
https://learn.microsoft.com/en-us/sysinternals/downloads/zoomit
These are unlikely to be of interest to most people.
Android Studio 2025.2.2 us a security update.
https://developer.android.com/studio
cx_Freeze 8.5 updates libraries and resolves dozens of bugs. This is not a security update.
https://cx-freeze.readthedocs.io/en/latest/index.html
GameMaker Studio 2024.14.1.210 resolves dozens of bugs. This is not a security update.
https://www.yoyogames.com/en/gamemaker
GDevelop 5.6.249 adds real-time 3D editing and resolves a couple bugs. This is not a security update.
https://gdevelop.io/download
Go 1.25.5 is a security update.
https://go.dev/
Inno Setup 6.6.1 improves storage and improves workflow. This is not a security update.
https://www.jrsoftware.org/isdl.php
Node.js 20.19.6 updates libraries and resolves several bugs. This is a security update.
https://nodejs.org/en/
Node.js 24.11.1 updates libraries and resolves several bugs. This is a security update.
https://nodejs.org/en/
Node.js 25.2.1 updates libraries and resolves several bugs. This is a security update.
https://nodejs.org/en/
Python 3.14.2 is a security update.
https://www.python.org/downloads/macos/
SQLite 3.51.1 resolves a reliability bug. This is not a security update.
https://www.sqlite.org/download.html
Unreal Engine 5.7 is a major update offering many new features and improvements. This is not a security update.
https://unrealengine.com/en-US/
Visual Studio Code 1.106.3 is a security update.
https://code.visualstudio.com/
WinMerge 2.16.52.2 resolves several bugs. This is not a security update.
https://winmerge.org/
These are likely to be of interest only to web developers.
Joomla 6.0.1 & 5.4.1 resolves several bugs. These are not a security updates.
https://www.joomla.org/
Piwigo 16.1.0 is a major update adding new controls and features. This is a security update.
https://piwigo.org/
WordPress 6.9 adds visibility controls, datasets, and resolves several bugs. This is not a security update.
https://wordpress.org/
Autoptimize 3.1.14 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/autoptimize/
Contact Form 7 6.1.4 improves internationalization. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/
My Sticky Bar 2.8.5 resolves a couple bugs. This is not a security update.
https://wordpress.org/extend/plugins/mystickymenu/
WP Mail SMTP 4.7.1 resolves a couple bugs. This is not a security update.
https://wordpress.org/extend/plugins/wp-mail-smtp/
That’s all for now folks. Keep it clean out there. 😉
Regards,
Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/
Happy Veteran’s Day, Folks!
Today is Patch Tuesday for November, 2025.
If your Windows 10 computer can not be upgraded to Windows 11 then you should either replace your device or use the Windows 10 ESU program to get another year out of it.
Windows 11 25H2 is now available and Windows 11 23H2 and older are no longer supported. Treat Windows 11 25H2 as beta software and wait a few months before upgrading.
macOS 26 Tahoe is now available and macOS 13 Ventura and older are no longer supported. Treat macOS 26 as beta software and wait a few months before upgrading.
There were 750+ major hacks, and over 650 application updates this month. It’s a relatively small month, with about 4.0 GB of updates for most users.
5CA, Abilene Family Medical Associates, Accord Carton, Adichunchanagiri Institute Of Technology, Adobe Commerce, Adobe Experience Manager, Adore Children and Family Services, Advanced Delivery Services, Advanced Installer, Afghan Ministry of Defence, AGFA, Agri-Food and Biosciences Institute (AFBI), (at least) 2/3rds of AI companies, Air Arabia, Al Ahly Leasing & Factoring Company, Al Rimal Group, Albanese Physical Therapy, Albert Heijn, Alibaba Cloud Workspace Client, Alight Solutions, Alios Finance Group, Alissa Group, Alitech, Alpha Omega Winery, LLC, Altimedia, Amazon Smart plugs, AMD CPU VM (RMPocalypse), AMD CPUs (TEE.fail), American Airlines, American PowerNet, Ami Bearings, Anderson-Moore Construction, Android, ANIA KRUK, Ansell, Antigo Construction, Apache OpenOffice, Aphase II, ApleNet, Applied Technology Resources, Aptura Group & Central Indiana Hardware, ArcGIS, Armed Forces of the Philippines, Artistica Rubens, Asahi Group Holdings, Ashlar-Vellum Cobalt, Askul, ASP.NET Core, Assemblée Nationale, Astra Nova, AT&T Careers, Athol Hospital, ATIRG, Atrium Living Centers, Auckland City, Aunt Martha’s Health and Wellness, Aussie Fluid Power, Autodesk AutoCAD, Autodesk On-Demand Install Services, Automated Logistics Systems, Autorotor, Avast, AVG, Axelson, Williamowsky, Bender & Fishman, Badger Popcorn and Concession Supply, BAE Systems SOCET, Balancer, Bank3, BARCO Rent-A-Truck, Batta Fulkerson Law Group, Bay West, Bayu Buana Travel, Beijing Time Systems, Bell Engineering, Bellflower Unified School District, Benda Grace Stulz, Benefitelect, Benworth Capital Partners, Bergman Dacey Goldsmith, Berkeley Research Group, LLC, Bestlog Logistic Solutions, Beta Dyne, Beverly Hills Oncology Medical Group, Bicing, BIND DNS, BK Technologies, Black Hills Bentonite, Blavity Inc, blockchain smart contracts (EtherHiding), Blue Cross Blue Shield of Montana, BMP Worldwide, Boilersource, Bolt Electricity, Oil & Gas, Bovavet, Boyer, BRDSoft, Bridgehead IT, Brihta, Bristol Student Union, Buffalo Games, Edaron, Ceaco, Cabinets 2000, LLC, Canada water and energy facilities, Canadian Tire, Canon imageCLASS MF654Cdw, Cape Dara Resort Pattaya, CapitalPlus Exchange, Castilla, Cavalry Consulting, CCI Tax Pros, CDS, CentOS Web Panel, Central Jersey Medical Center, Central Plate Services Limited, CESO, CEVA Logistics, CHDFS, Chi Rho Chiropractic, Chiapas Health Secretariat, Christina Development, Cisco ASA firewalls, Cisco FTD firewalls, Cisco IOS XE, Cisco networking devices (SNMP), Cisco Snort, Cisco Unified Contact Center Express (UCCX), City of Gloversville, NY, City of Houston Fire Department, TX, City of La Vergne, TN, City of Ottawa, Canada, City of Riviera Beach, FL, City of Sugar Land, TX, Clackamas Community College, Claimlinx, Clarion Safety Systems, Claude Desktop, ClearCare Periodontal & Implant Centre, Co-op Credit Union, Cocamar Cooperativa Agroindustrial, Cohen’s Fashion Optical, Coilplus, Cole Huber, LLP, Collins Aerospace, Colombia’s CNSC, Comcast, Community Unit School District 201, Computer World WLL, Conduent Business Services, LLC, ConnectWise Automate, Consolidated Restaurant Operations, ConvExx, Cooperativa Esercenti Farmacia Scrl, Core Resources Inc, Crave Management, Crenshaw Community Hospital, Crown Automotive Sales, Cursor, CyPark, D Magazine Partners, Dairy Farmers of America, Dakota Dostavka, Darvin Furniture, DataChain, Dayal Metal Containers Factory LLC, DCS Technologies Inc, Deco Dental, Defensoría del Pueblo de Colombia, Dekalb County, GA, Dell BSAFE Crypto-C, Dell CloudLink, Delmia Apriso, Delta Electronics ASDA-Soft, Delta Electronics CNCSoft-G2, Delta Electronics DIAScreen, Delta, Dental Society of La Plata, Dentsu Merkle, Dermatology Associates, Designs for Vision, Desjardin Bank Group, Desjardins, Devolutions, Dilosa Food Companies, Dimarco Group LLC, Disseny Dental, Django, dmwapp, Docker runC, Doctor Alliance, Docurail, Dodo, Doha British School, DomeWatch, Domy, Double Oak Construction, Dublin Airport, DUC App, Dulcich, Dundee City Council, Durvet, E-First Aid Supplies, East Jefferson General Hospital, Eastern Cape Department of Human Settlements, South Africa, Easterseals Arc of Northeast Indiana, Echo Lake Foods, Econo-Pak, Eligibility Tracking Calculators, Elliott Tax Service, Elmcrest Children’s Center, Encore Repair Services, ENEA, Enem Nostrum Remedies, Enessance Holdings, Engineered Profiles, Entr’ouvert Lasso, Envoy Air, Episource, LLC, Ernst & Young, Essential Cabinetry Group, Essilor of America, Eticex Hosting, evernote-mcp-server, Evogence, Evolve Mortgage Services, over 266,000 F5 BIG-IP instances, FA Servers, Fast Freight, Fatih Turizm, Fellou browser, Fidelity Pension Managers, Nigeria, Figment POS, FinWise, Fleet Landing, Flegenheimer International, Flock, Florida Marking Products, Florida-Spectrum Environmental Services, Form Energy, Inc, Fort Wayne Medical Education Program, Fouad Alghanim & Sons Group of Companies Holding, Fountains Condominium Operations, Framework Secure Boot, Francehopital, Fujifilm Biotechnologies, Fédération Internationale de l’Automobile (FIA), G & H Distributing, G-Plans, G-Xchange, Inc, G. Hauswirth Architects, Galine, Frye, Fitting & Frangos, LLP, Gardiners Solicitors, Garvin Promotion Group, Gas Generator Solutions, Gateworks Corporation, GB Mail, GCC Productions Inc. Fade In, GeBePro, Gemini Group, General Micro Systems (GMS), George E. Weems Memorial Hospital, Gerar, Gericke AG, Gerson & Schwartz Accident & Injury Lawyers, GIMP, Gittens Healthcare, Gladinet CentreStack, Gladinet Triofox, Global Go, GlobalLogic Inc, Goglia Nutrition LLC, Goodfellow & Schuettlaw, Google Chrome, Google’s Find Hub, Grande Prairie Public Library, Greater Mental Health of New York, Gulf Warranties LLC, Gullco International, Gun Accessory Supply, Habib Bank AG Zurich, Hall Estill, Harmony Brands, Harvard University, Health and Vitality Center, Health Dimensions Group, Healthy Living Market and Café, Heart South Cardiovascular Group, Heartland Health Center, Heimbrock, Heimdall Data, HeiTech Padu Berhad, Hello Cake, Hematology Oncology Consultants, Henrietta Ezeoke Law Firm, Henry Raymond & Thompson, Heywood Hospital, Hikvision iSecure Center, Hitzinger, HMP Global, Holtz Office Support, Home Assistant Green, Hometown Credit Union, Hongji Metal, Hosteur, HSBC USA, Huber, Erickson & Bowman, Huddle01, Hyundai AutoEver America, I-Tek Medical Technologies, IBEW Local 697, iCare Software, ICET Studios, ICTBroadcast, IKAD, Il Manifesto, Imagicle, Indian Spring Country Club, ING Bank, Instituto Nacional de Oftalmologia, Peru, Integrated Silicon Solution, Inc, Intel CPUs (TEE.fail), International Social Survey Programme (ISSP), International.com, Invacare, Ioxo & Stream Computers, IPrimus, Iran’s Ravin Academy, Iraqi Electoral Commission, IREM companies, Irwin Car, Izaki Group Investments, J & S Electrical And Lighting Supply, JA Jennings, Jack’s Family Restaurants, JavaScript expr-eval, Jazeera Airways, JC Auto Accident Law Firm, Jean-Georges, Jewett-Cameron, JFS Wealth Advisors, Kansas City Police Department, KS, Karnes Electric Cooperative, Kasmawi, Kaufman & Stigger, Kaufman County, Texas (twice), Kearney Public Schools, NE, Kelowna airport, BC, Kettering Health, Khan and Associates CPA, Khatami Law, KHL Printing, Kipp & Christian, Kirby Corporation, KIS Asset Evaluation, KISS FM, Kitchen Design Concepts, KLA Instruments, Klae Construction, Kobayashi, Koch & Co, Koch & White Heating & Cooling, Koncise Company, Kottster Server, Krita, KT Corp, Kubernetes runC, Kudela & Weinheimer, Kumwell, Kwik Mix Materials, LaBonne, Land Title Guaranty, Lanscope Endpoint Manager, LaRosa’s Pizzeria, Latona Trucking, 42 Latvian municipalities, Laxmi Niwas Palace, Legacy Health, Legacy Manufacturing, Legal Aid Agency, Lexmark CX532adwe, LG U+, LGAA LLC, Lidera Network, LifeBridge Health, Limocar, Lincoln University, LMHT Associates, LNER, Logitech, Long Island Weight Loss Institute, Lorber, Greenfield & Polito, LLP, Louvre Museum, LP Insurance, LuBian, Ludwigshafen, Germany, Luis Garratón, Lumma Stealer, Luxury Escapes, Lüks Artvin Seyahat, M-TIBA, Mack Energy, Magna Hospitality Group, Mailing.com, Maine Course Hospitality Group, Mainetti UK, Maki Building Centers, Malibu Boats Australia, Manassas City Public Schools, Mango, Mango’s Tropical Cafe, Manko Window Systems, Marine Turbine Technologies, Marmotech, Matlusky, Max.ru, Mayco International, McDonald Building, McIntosh Labs, Mciver Engineering & Controls, Mecanex USA, MedImpact, Meinhardt Group, Meritage Hospitality, Metal Pros, Methodist Homes of Alabama & Northwest Florida, MetroWest Community FCU, Mexican Bank Debtor, Michael R. Schwartz, MD, FACS, Microbix Biosystems, Microsoft SharePoint, Microsoft Teams, Microsoft Windows, Middlesex Appraisal Associates, Middlesex Endodontics, Miljödata, Mission City Community Network, Inc, Modernizing Medicine (ModMed), Mold In Graphic Systems, Monsta FTP, Montage Marketing Services, Moonlight Basin, More Than Gourmet, Morris Communications Company LLC, Motex Lanscope Endpoint Manager, Mountain West, Moxa security appliances, MS Metal Solutions, MSC-Wireless, Mt. Baker Imaging, Muji, MusikComputer GmbH, MyCardiologist, MyVidster, NAHGA Claims Services, NasDem Party, National Coatings, National Informatics Centre (NIC) Kavach, National Institute of Administration, Navigator Business Solutions, Nelligan White Architects, NetcoreCloud, Netgate pfSense CE, New Toyo International Holdings Ltd, Newk, Newmark Healthcare Services, Nikkei, Nintendo, NJ Lenders Corp, Noble Compaña de Seguros, Nobu Restaurants, Noroaco, Northern Light Technologies, Northern Montana Health Care (NMHC), Northwest Radiologists, NurseSpring, NVIDIA CPUs (TEE.fail), OB-GYN Associates, OCI International Holdings, Oglethorpe, OMS, One Agency Eastlakes, oobabooga, OpenAI Assistants API, OpenAI Atlas browser, OpenEyes Technologies, Opera Neon, Oracle E-Business Suite, Oracle VirtualBox, Origin Energy, Origin, Oscars Group, Ouranos, Outcomes One, Inc, OYO Hotel & Casino Las Vegas, Palacios Marine Industrial (PMI), Palomar Health Medical Group, Pan-American, Pangea, Paris Rétina Vision, Paterson & Dowding, Patron Insurance, Patterson-Schwartz & Associates, Inc, PCB Uitvaartzorg, People’s Postcode Lottery, PeopleGuru Holdings, Inc, Peppermint Properties, Peraso, Perplexity Comet, Phia Group, Phillips Hue Bridge, Phillips Printing Company, Phoenix Village Dental, PHP CGI, PHPUnit, Pine Pharmaceuticals, Pinto Coates Kyre & Bowers, Pittsburgh Gastroenterology Associates, Pixar OpenUSD, Plastics Extrusion Machinery, Platinum Wines & Spirits, PLP SoCal, Pocatello Ready Mix, Polymarket, Ponzini SPA, Post Ranch Inn, PQCNC Hospitals, Precision Machined Products, Prime Dental, Pritchard Brown & Chillicothe Metal, Productive Tool Products, Professional’s Choice Sports, Propertyfinder / PropSpace CRM, Prosper, Prova, Provincial Department of Health Services Sri Lanka, Pruksa Holding, PT Kalimantan Prima Persada, Pulse Urgent Care Center, Punjab Forensic Science Agency, Qatar Gas and Tar Company, Iran, QNAP Qhora-322, QNAP TS-453E, Radiant Capital, Ravin Academy, React Native CLI, Real Estate Specialists, Reese Group, Regency Specialist Hospital, Resana, Revive Adserver, Rex-Hide, Ribbon Communications, Richmond Behavioral Health Authority, Riddell Law Group, Right at Home, Ringmor, Rios Espinosa, Ritz, Clark & Ben-Asher, River City Eye Care, RKA Consulting Group, Roblox, Rockhill Women’s Care, Rockstar, Rogers Mechanical, Romanian National Penitentiary Association (ANP), Ronemus & Vilensky, Royal Thai, RPI Roofing, Sai Mai Hospital, Saigon Industrial Service, Samera Health, Samsung Android, Samsung Galaxy S25, San Benito County, CA, San Bernard Electric Cooperative, San Diego Automotive Museum, Santander Bank, SAP Solution Manager, Sarulla Operation, Saturday Spotlight, Saturn Machine, Sauter Modulo, Saxun, Scales Sales & Service, Scouts Canada, Seasons Federal Credit Union, Sedgebrook, Selig Enterprises, Sellars Absorbent Materials, Sensational Teeth, Sensory, Servicios del Valle del Fuerte, Mexico, Seward County, KS, Shadrix & Parmer, Shands Elbert, Shaparak, Shelbyville Police Department, Shollenberger Januzzi & Wolfe, SHRM New Mexico, SIAD, Sierra Vista Hospital & Clinics, Signet Armorlite, Silverado Contractors, Inc, Silverlake Axis, Simon Property Group, Sincros Lab, SK Shieldus, SK-Telecom, Snipe-IT, Soapy Joe’s Car Wash, Soft Serve, Software Unlimited Corp, Sold Real Estate, SonicWall, Sonos Era 300, Sotheby’s, SourceOne Corporation, South African Revenue Service (SARS), South Alabama Regional Planning Commission, South Atlanta Medical Clinic, Speedmais, Spijkermat, Spindletop Center, Sports Medicine and Orthopaedics, Sprague & Jackson, St Stephen’s International, Stephenson’s Rental Services, Stowaway Storage, Studio Corvo Parma, Sullivan Interests, Summit Golf Brands, Summit Hotel Properties, Sunnyvale Elementary School District, Super Quik, Super Value, SuperGrosz, Superior Air Parts, Superior Court of California for the County of San Joaquin, Superior Linen Service, Svenska Kraftnät, Sydney Centre for Ear, Nose & Throat, Sylvester Roofing, SymbolTransport, Synnovis, Synology ActiveProtect Appliance DP320, Synology BeeStation Plus, Synology CC400W, Synology DiskStation DS925+, Systems Integrated, Tass Meister Patent Firm, Tavo Packaging Inc, TBM Service Group, TELACU Property Management, Inc, TENAX Law Group PC, Tenryu America, Tex-Tube, Thailand’s Department of Agricultural Extension (DOAE), The Blood and Marrow Transplant Group of Georgia, The Fence People, The Gerson, The Job Shop, The Laxmi Niwas Palace, The Phia Group, The Thayer Hotel, The Union League of Philadelphia, ThinkPHP, Thompson Dorfman Sweatman, Time Equities, TISZA Világ, TMF Logistics, Toys R Us Canada, TP-Link Festa routers, TP-Link Omada gateways, Trans7, Travere Therapeutics, Tri City Foods, Tri-Century Eye Care, Trojan Construction & Holding Group, Truffle Security Co. TruffleHog, Truro Cannabis, Tryon Distributing, Ubiquiti AI Pro, 8 UK Ministry of Defence bases, UK National Health Service (NHS), UniCursos, Unigym Gatineau, UnitedLayer, University of Cádiz, University of Pennsylvania, UrbanX, US Attorneys Office (USAO), US Congressional Budget Office (CBO), US Department of Homeland Security (DHS), US Department of Justice (DOJ/FBI), US Federal Aviation Authority (FAA), US Immigration and Customs Enforcement (ICE), US National Security Administration (NSA), USB Memory Direct, UScraft, Vanan Online Services, Vascara, Vietnam, Veeam Agent, Verdugo Hills Dental, Verisure, Vertikal Systems, Vexels, Vibra Hospital, Victorian Chemical, Victory Christian Center, Village of New Lenox, Ville de MontLaurier, Vinomofo, Vitalmex, VIZ Media, Volkswagen, Vrata Tech, VZW Avalon, Wakefield & Associates, WarmBlue, Washington Post, WatchGuard Firebox, WatchGuard Fireware, Watsonville Community Hospital, Waveny LifeCare, We R Family Foundation, Weber, Weintraub Traub Tracy & Virk Cra’s LLP, West Welch Reed Engineers, Western Sydney University, WhatsApp, Wheale Law Firm, Windows Server Update Service (WSUS), Windsurf, Winholt Equipment Group, Wisconsin Department Of Corrections, Wits University, Wood PLC, WordPress Anti-Malware Security and Brute-Force Firewall plugin, WordPress Gravity Forms plugin, WordPress GutenKit plugin, WordPress Hunk Companion plugin, WordPress JobMonster theme, WordPress King Addons for Elementor plugin, WordPress Post SMTP plugin, WordPress Slider Revolution plugin, Workers Compensation Insurance Rating Bureau of California, Wright Tool, Wright-Gardner Insurance, X.Org Server, Xortec, Xubuntu website, XWiki, Yaesu, Yas Takaful Dubai Insurance, Zacho-Lind, Zierick Manufacturing Corporation, Zoho ManageEngine, Zoom Workplace, and ZZ Dats have reported hacking or compromises this month.
Amazon Web Services (AWS US-EAST-1), Microsoft 365, Microsoft Azure (more than once), Microsoft Security Response Center, and YouTube have suffered from outages this month.
Internet access throughout Bermuda, Cameroon, Dominican Republic, Italy, Jamaica, Kenya, Pakistan, Philippines, Tanzania, and Ukraine has been blocked our down for extended periods.
Last months updates broke Cisco Duo, HP OneAgent / Microsoft Entra ID, Microsoft Internet Information Server (IIS), Microsoft Outlook, smart card authentication, sprotect.sys compatibility, USB mouse and keyboard in WinRE, wallpaper managers, Windows 11 Media Creation Tool, Windows Task Manager and Start menu, and the Windows Update Hotpatch service.
There’s a new type of worm out there. GlassWorm uses a combination of Solana, UTF-concealed code, and remote access trojans to ensure that it’s impossible to shut down or kill from the top-down while still being fully manageable by the people behind it. In addition, it uses compromised developer accounts to propagate by uploading itself to their repositories in order to grow the botnet to new audiences. This signals the first major use of these three aspects in combination and the first software of its kind to operate with no centralized command-and-control server. This evolution is going to cause a massive change in how we deal with security incidents and how we protect our devices.
Half of all the satellites in orbit are exposing your information in clear text.
Nearly 2 billion accounts from hundreds of thousands of different platforms have been disclosed in a credential stuffing database (Synthient). While this appears to mostly be the result of stealer logs (the result of hacked devices), there is a lot of duplication in the data which demonstrates a lot of password re-use and thus a high chance of other accounts being abused as a result.
The boss of a defense contractor, Trenchant, has been selling exploits to foreign governments.
The Louvre Museum security system was “hacked” in order to enable thieves to steal the crown jewels. It’s hardly hacking when the password was so stupid.
“Beware that, when fighting monsters,
you yourself do not become a monster.”
— Friedrich Nietzsche
SpaceX disabled 2,500 Starlink terminals in Asia to curb their use by scammers.
Now back to our regularly scheduled program.
Patch Tuesday is relatively small this month. The typical computer should see roughly 4.0 GB in updates today. Let’s get started.
Microsoft released 41 updates to address 68 vulnerabilities in Azure Monitor Agent, Customer Experience Improvement Program (CEIP), Dynamics 365 Field Service (online), GitHub Copilot and Visual Studio Code, Host Process for Windows Tasks, Microsoft Configuration Manager, Microsoft Dynamics 365 (on-premises), Microsoft Edge, Microsoft Graphics Component, Microsoft Office, Microsoft Office Excel, Microsoft Office SharePoint, Microsoft Office Word, Microsoft Streaming Service, Microsoft Wireless Provisioning System, Multimedia Class Scheduler Service (MMCSS), Nuance PowerScribe, OneDrive for Android, SQL Server, Storvsp.sys Driver, Visual Studio, Visual Studio Code CoPilot Chat Extension, Windows Administrator Protection, Windows Ancillary Function Driver for WinSock, Windows Bluetooth RFCOM Protocol Driver, Windows Broadcast DVR User Service, Windows Client-Side Caching (CSC) Service, Windows Common Log File System Driver, Windows DirectX, Windows Hyper-V, Windows Kerberos, Windows Kernel, Windows License Manager, Windows OLE, Windows Remote Desktop, Windows Routing and Remote Access Service (RRAS), Windows Smart Card, Windows Speech, Windows Subsystem for Linux GUI, Windows TDX.sys, Windows WLAN Service, and MSRT. This includes security updates. A reboot is required.
Oracle released 374 security updates this quarter to address 170 vulnerabilities in 29 product lines.
Apple released updates for iOS 18.7.2, iOS 26.1, iPadOS 18.7.2, iPadOS 26.1, macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS Tahoe 26.1, Safari 26.1, tvOS 26.1, visionOS 26.1, watchOS 26.1, and Xcode 26.1. This includes security updates. Use Apple Software Update to install the most current versions.
iOS 18.7.2 and 26.1 are security updates. Use Settings, General, Software Update to install the most current update.
iPadOS 18.7.2 and 26.1 are security updates. Use Settings, General, Software Update to install the most current update.
watchOS 26.1 is a security update. Use the Watch app on your iPhone to install the most current version.
tvOS 26.1 is a security update. Use System, Software Update to install the most current version.
visionOS 26.1 is a security update. Use System, Software Update to install the most current version.
Google ChromeOS 141.0.7390.115 and ChromeOS LTS 138.0.7204.296 are security updates. Use Menu, Help, About to install the most current version. A reboot is required.
Fedora 43 updates libraries, adds Hare support, changes UEFI+MBR requirements, and enables automatic updates. This is not a security update.
https://getfedora.org/en/workstation/download/
Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.
Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.
The release of macOS Tahoe (26.x) means that macOS Ventura (13.x) and older are no longer supported. If you can not install at least macOS Sonoma (14) on your Mac then you should immediately remove your device from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.
The current — and final — release of the Windows 10 (v22H2) is end of life (EOL). All non-LTS versions of Windows 10 without ESU are now out of support, with the sole alternatives being to upgrade to Windows 11 or enable Extended Service Updates (ESU). If you aren’t sure whether you are using LTS, you aren’t. Enable the ESU now.
The current release of the Windows 11 (v25H2) is very large (30% larger than any previous release) so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.
Windows 11 is now stable and can be upgraded to if your hardware supports it. If not, switch to Linux (Mint is nice) or replace your computer.
Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.
It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, drivers for hardware you’re not using (like old printers), and games you do not actually play.
Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available.
Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with a SaferPC Subscription and we will install updates each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com
If you’re using this hardware – these updates are for you.
AMD Adrenalin 25.10.2 is a security update.
https://www.amd.com/en/support
BullZip PDF Printer 2025.2.0.2990 is a security update.
https://www.bullzip.com/products/pdf/info.php#download
Epson ET-2720 2.100.00 is a security update.
https://epson.com/Support/Printers/All-In-Ones/ET-Series/Epson-ET-2720/s/SPT_C11CH42201?review-filter=Windows+10+64-bit
Epson ET-2988 3.60.00 is a security update.
https://epson.com/Support/Printers/All-In-Ones/ET-Series/Epson-ET-2988/s/SPT_C11CL41203?review-filter=Windows+11
Epson ET-15000 3.60.00 is a security update.
https://epson.com/Support/Printers/All-In-Ones/ET-Series/Epson-ET-15000/s/SPT_C11CH96201?review-filter=Windows%2010%2064-bit
MTPdrive 4.5.179 resolves a stability bug. This is not a security update.
https://www.mtpdrive.com/
Plustek ePhoto Z300 6.7.0.5 resolves a couple bugs. This is not a security update.
https://plustek.com/us/products/film-photo-scanners/ephoto-z300/support.php
TP-Link Archer A6 v3 250718 improves stability and PPPoE support. This is not a security update.
https://www.tp-link.com/us/support/download/archer-a6/v3/#Firmware
TP-Link Archer AX72 v1.60 250814 is a security update.
https://www.tp-link.com/us/support/download/archer-ax72-pro/#Firmware
UniFi U6 Professional 6.7.33 adds packet capture, Roaming Assistant, 5GHz channel selection, mesh improvements, and resolves a dozen bugs. This is not a security update.
https://www.ui.com/download/software/u6-pro
One or more of these are likely to be of interest to everyone.
Brave 1.84.132 is a security update.
https://brave.com/
Firefox 145.0 is a security update.
https://www.mozilla.org/en-US/firefox/new/
Firefox ESR 140.5.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/
Google Chrome 142.0.7444.134 is a security update.
https://www.google.com/chrome/
Microsoft Edge 142.0.3595.69 is a security update.
https://www.microsoft.com/en-us/edge/business/download
SeaMonkey 2.53.22 is a security update.
https://www.seamonkey-project.org/
One or more of these are likely to be of interest to everyone.
DavMail Gateway 6.5.1 resolves several bugs. This is not a security update.
https://davmail.sourceforge.net/
Spark 3.27.2.122708 ramps up the AI integration. This is not a security update.
https://sparkmailapp.com/
Spark (macOS) 3.27.2.122707 ramps up the AI integration. This is not a security update.
https://sparkmailapp.com/
Thunderbird 144.0.1 is a security update.
https://www.thunderbird.net/en-US/
One or more of these are likely to be of interest to everyone.
AnyDesk 9.6.4 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads
AnyDesk (macOS) 9.5.1 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads
curl 8.17.0 resolves dozens of bugs. This is a security update.
https://curl.haxx.se/windows/
Discord November 4, 2025 resolves dozens of bugs. This is not a security update.
https://discord.com/download
Dropbox 236.4.5918 resolves several bugs and improves stability. This is not a security update.
https://www.dropbox.com/
Google Drive 117.0 is a security update.
https://drive.google.com/start
MeshCentral 1.1.53 resolves a couple bugs and improves UI controls. This is not a security update.
https://meshcentral.com/info/downloads.html
Mumble 1.5.857 is a security update.
https://www.mumble.info/
Nextcloud Server 32.0.1 updates libraries and resolves dozens of bugs. This is a security update.
https://nextcloud.com/
OneDrive 25.184.0921.0004 adds Copilot actions, improves offline mode, renames binaries, and adds the ability to cleanly opt out of the OneDrive Backup service. This is not a security update.
https://support.microsoft.com/en-us/onedrive
Rclone 1.71.2 updates libraries and resolves several bugs. This is a security update.
https://rclone.org/
Signal 7.78.0 resolves a couple bugs. This is not a security update.
https://signal.org/download/windows/
Signal (Android) 7.63.3 adds split-screen support, improves performance and resolves many bugs. This is not a security update.
https://signal.org/android/apk/
Syncthing 2.0.11 migrates database to SQLite, improves log structure, changes CLI syntax, and resolves several bugs. This is not a security update.
https://syncthing.net/
Technitium DNS Server 14.0.1 is a security update.
https://technitium.com/dns/
Telegram 6.2.4 makes a couple minor changes in the UI and resolves crash bugs. This is not a security update.
https://telegram.org/
WinSCP 6.5.4 is a security update.
https://winscp.net/eng/index.php
Zoom 6.6.6.19875 resolves several bugs. This is not a security update.
https://zoom.us/
These are unlikely to be of interest to most people.
3tene 4.0.22 resolves several bugs related to facial tracking. This is not a security update.
https://en.3tene.com/
Grayjay 342 resolves a couple bugs. This is not a security update.
https://grayjay.app/index.html
iTunes 12.13.9.1 is a security update.
https://www.apple.com/itunes/download/
These are unlikely to be of interest to most people.
Minecraft Server (Bedrock) 1.21.122.2 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock
Nintendo Switch 21.0.0 updates cosmetics and cloud settings, and resolves a couple bugs. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989
PS5 2025.101 displays more hardware details and messaging. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/
SteamOS SteamDeck Update 2025.11.06 improves UI and resolves a couple bugs. This is not a security update.
https://store.steampowered.com/news/app/1675200/
One or more of these are likely to be of interest to most people.
Adobe Format Plugins 1.1.2 is a security update.
https://helpx.adobe.com/security/products/formatplugins/apsb25-114.html
Adobe Illustrator 29.8.3 and 30.0 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb25-109.html
Adobe Illustrator Mobile 3.0.10 is a security update.
https://helpx.adobe.com/security/products/illustrator-mobile-ios/apsb25-111.html
Adobe InCopy 21.0 and 20.5.1 are security updates.
https://helpx.adobe.com/security/products/incopy/apsb25-107.html
Adobe InDesign ID21.0 and ID20.5.1 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb25-106.html
Adobe Pass 3.8.0 is a security update.
https://helpx.adobe.com/security/products/pass/apsb25-112.html
Adobe Photoshop 26.9 is a security update.
https://helpx.adobe.com/security/products/photoshop/apsb25-108.html
Adobe Reader DC 25.001.20844 resolves stability bugs. This is not a security update.
https://get.adobe.com/reader
Adobe Substance 3D Stager 3.1.6 is a security update.
https://helpx.adobe.com/security/products/substance3d_stager/apsb25-113.html
Calibre 8.14.0 resolves several bugs. This is a security update.
https://calibre-ebook.com/
Columns++ 1.3 resolves several bugs and improves compatibility. This is not a security update.
https://github.com/Coises/ColumnsPlusPlus
LibreOffice 25.2.7 resolves over 40 bugs. This is not a security update.
https://www.libreoffice.org/
Nextcloud Desktop 4.0.1 resolves several bugs. This is not a security update.
https://nextcloud.com/
Notepad++ 8.8.7 adds a publisher certificate for the installation packages and resolves several bugs. This is a security update.
https://notepad-plus-plus.org/
OpenOffice 4.1.16 is a security update.
https://www.openoffice.org/download/
Paint.net 5.1.11 resolves several bugs. This is not a security update.
https://www.getpaint.net/
PDF-XChange Editor 10.7.5.403 updates libraries and resolves several bugs. This is a security update.
https://www.pdf-xchange.com/product/pdf-xchange-editor
These are for specific Linux flavors and alternative operating systems and, sadly, are unlikely to be of interest to most people.
Fedora 43 updates libraries, adds Hare support, changes UEFI+MBR requirements, and enables automatic updates. This is not a security update.
https://getfedora.org/en/workstation/download/
Google ChromeOS 141.0.7390.115 is a security update. Use Help, About to install this update.
Google ChromeOS LTS 138.0.7204.296 is a security update. Use Help, About to install this update.
iOS 18.7.2 and 26.1 are security updates.
https://support.apple.com/en-us/100100
iPadOS 18.7.2 and 26.1 are security updates.
https://support.apple.com/en-us/100100
macOS Tahoe 26.1 is a security update.
https://support.apple.com/en-us/100100
macOS Sequoia 15.7.2 is a security update.
https://support.apple.com/en-us/100100
macOS Sonoma 14.8.2 is a security update.
https://support.apple.com/en-us/100100
tvOS 26.1 is a security update.
https://support.apple.com/en-us/100100
visionOS 26.1 is a security update.
https://support.apple.com/en-us/100100
watchOS 26.1 is a security update.
https://support.apple.com/en-us/100100
One or more of these is likely to be of interest to most people.
KeePass 2.60 adds group path search, consistent shortcuts and hot keys, improved import options, and improves several other UI and integration features. This is not a security update.
https://keepass.info/
ProtonVPN 4.3.5 resolves several bugs and adds FIDO2 security key support. This is not a security update.
https://github.com/ProtonVPN/win-app/releases/latest
RogueKiller 16.5.1 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/
SanDisk PrivateAccess 6.4.14.0 adds messaging signaling that the software is now end of life and should be removed as soon as possible. Migrate your data out of PrivateAccess and remove it.
https://support-en.wd.com/app/answers/detailweb/a_id/48025
Stinger 13.0.0.562 adds support for new detections. This is not a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx
uBlock Origin 1.67.0 resolves a couple bugs and improves various features. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest
WebBrowserPassView 2.18 improves compatibility. This is not a security update.
https://www.nirsoft.net/utils/web_browser_password.html
YARA 4.5.5 resolves several bugs. This is not a security update.
https://github.com/VirusTotal/yara/
These are unlikely to be of interest to most people.
Open Broadcaster Software 32.0.2 resolves a couple crash bugs. This is not a security update.
https://obsproject.com/
These are unlikely to be of interest to most people.
DVDFab 13.0.5.1 adds support for new encodings and improves menu editing. This is not a security update.
https://www.dvdfab.cn/download.htm
StreamFab 6.2.6.2 adds multithreading, improves compatibility, and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm
UniFab 3.0.3.1 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm
One or more of these are likely to be of interest to most people.
Zotero 7.0.27 resolves several bugs. This is not a security update.
https://www.zotero.org/
Zotero (macOS) 7.0.29 resolves Safari and Word clipboard issues. This is not a security update.
https://www.zotero.org/
These are unlikely to be of interest to most people.
1Password 8.11.18 resolves several bugs. This is not a security update.
https://1password.com/downloads/
Beyond Compare 5.1.6.31527 resolves several bugs. This is not a security update.
https://www.scootersoftware.com/download
Bitwarden 2025.10.0 improves observation of data ownership policies, adds direct importer for Chromium browser accounts, and resolves several bugs. This is not a security update.
https://bitwarden.com/
BulkFileChanger 1.74 resolves a field copy bug. This is not a security update.
https://www.nirsoft.net/utils/bulk_file_changer.html
CCleaner 7.01.1042 resolves several bugs and renames several features. This is not a security update.
https://www.ccleaner.com/
Cygwin 3.6.5 resolves several bugs. This is a security update.
https://cygwin.com/
DesktopOK 12.21 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK
dnGrep 4.6.39.0 resolves several bugs. This is a security update.
https://dngrep.github.io/
Everything 1.4.1.1030 is a security update.
https://www.voidtools.com/
Everything SDK 1.4.1.1030 is a security update.
https://www.voidtools.com/support/everything/sdk/
Everything Toolbar 2.1.1 resolves a couple bugs. This is a security update.
https://github.com/stnkl/EverythingToolbar/
ExplorerPatcher 26100.4946.69.6 improves compatibility and resolves several bugs. This is not a security update.
https://github.com/valinet/ExplorerPatcher/
Fing 3.9.2 adds PDF reporting and resolves several bugs. This is not a security update.
https://www.fing.com/products/fing-desktop-download-windows
Git SCM 2.51.2 resolves several bugs. This is not a security update.
https://git-scm.com/
GoodSync 12.9.14 resolves several bugs. This is not a security update.
https://www.goodsync.com/
Homedale 2.22 improves filtering. This is not a security update.
https://www.the-sz.com/products/homedale/
LessMSI 2.10.4 resolves a selection bug. This is not a security update.
https://lessmsi.activescott.com/
MPAM 1.441.121.0 adds support for new detections. This is not a security update.
https://www.microsoft.com/en-us/wdsi/defenderupdates
MultiMonitorTool 2.21 resolves a stability bug. This is not a security update.
https://www.nirsoft.net/utils/multi_monitor_tool.html
NTLite 2025.11.10669 adds support for Windows 24H1 and updates component support. This is not a security update.
https://www.ntlite.com/download/
PolicyPlus October 2025 updates included policies. This is not a security update.
https://github.com/Fleex255/PolicyPlus/releases
PowerToys 0.95.1 resolves several bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest
Process Explorer 17.07 adds strings for Arm64 binaries and fixes a notification bug. This is not a security update.
https://learn.microsoft.com/sysinternals/downloads/process-explorer
PSAppDeploy 4.1.7 resolves several bugs and improves compatibility. This is not a security update.
https://psappdeploytoolkit.com/
Remotly 1.35.0 adds UPnP port forwarding. This is not a security update.
https://remotly.com/
RDCMan 3.11 enables Entra ID login. This is not a security update.
https://learn.microsoft.com/sysinternals/downloads/rdcman
ripgrep 15.1.0 resolves a bug with line buffering. This is not a security update.
https://github.com/BurntSushi/ripgrep/releases/latest
RoboForm 9.8.3 resolves a security bug. This is a security update.
https://www.roboform.com/
WinGet 1.12.350 improves compatibility and resolves several bugs. This is not a security update.
https://github.com/microsoft/winget-cli/releases/latest
WinScan2PDF 9.44 adds support for newer hardware. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF
ZoomIt 9.20 adds ability to export to MP4 and GIF. This is not a security update.
https://learn.microsoft.com/sysinternals/downloads/zoomit
These are unlikely to be of interest to most people.
.NET Runtime 9.0.10 and 10.0.0 are security updates.
https://dotnet.microsoft.com/en-us/download/dotnet
Android Studio 2025.2.1.7 resolves several bugs. This is not a security update.
https://developer.android.com/studio
DB Browser for SQLite 3.13.1 resolves several bugs and improves compatibility. This is not a security update.
https://sqlitebrowser.org/
GameMaker Studio 2024.14.0.207 is a security update.
https://www.yoyogames.com/en/gamemaker
GDevelop 5.5.245 adds new templates and resolves several bugs. This is not a security update.
https://gdevelop.io/download
GitHub Desktop 3.5.4 is a security update.
https://desktop.github.com/
Go 1.25.4 resolves several bugs. This is not a security update.
https://go.dev/
Inno Setup 6.6.0 improves dark mode, custom styling support, and pascal scripting. This is a security update.
https://www.jrsoftware.org/isdl.php
Java 8u471 is a security update.
https://www.java.com/en/download/manual.jsp
Node.js 22.21.1 resolves several bugs. This is not a security update.
https://nodejs.org/en/
Node.js 24.11.0 marks the transition to LTS. This is not a security update.
https://nodejs.org/en/
Node.js 25.1.0 updates libraries and resolves several bugs. This is not a security update.
https://nodejs.org/en/
SQLite 3.51.0 adds a couple new macros, improves JSON support and CLI capabilities, and resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html
TortoiseGit 2.18.0 updates libraries and resolves several bugs. This is not a security update.
https://tortoisegit.org/
Visual Studio Code 1.105.1 resolves several bugs. This is not a security update.
https://code.visualstudio.com/
WinMerge 2.16.52 resolves several bugs. This is not a security update.
https://winmerge.org/
These are unlikely to be of interest to most people.
VirtualBox 7.2.4 resolves several bugs and improves compatibility. This is not a security update.
https://www.virtualbox.org/wiki/Downloads
These are likely to be of interest only to web developers.
HumHub 1.17.4 adds a nonce for OEmbeds and resolves several bugs. This is a security update.
https://www.humhub.com/en
MailEnable 10.54 resolves several bugs and improves logging. This is a security update.
https://www.mailenable.com/
ownCloud Client 6.0.2.17506 is a security update.
https://owncloud.com/desktop-app/
Piwigo 15.7.0 is a security update.
https://piwigo.org/
Contact Form 7 6.1.3 resolves a couple bugs. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/
Email Log 2.62 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/email-log/
WordPress Importer 0.9.5 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/wordpress-importer/
That’s all for now folks. Keep it clean out there. 😉
Regards,
Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/
Welcome back, Folks!
Today is Patch Tuesday for September, 2025.
Time is now running short to upgrade to Windows 11 24H2 or macOS 15/Sequoia. The next release of each OS will be available within the next month and should be treated as beta software – Win11 and macOS 15/Sequoia are as close to stable as they will ever be. Upgrade now.
If your Windows 10 computer can not be upgraded to Windows 11 then you should either replace your device or use the Windows 10 ESU program to get another year out of it.
There were 490+ major hacks, and over 260 application updates this month. It’s a mild month, with about 2.5 GB of updates for most users.
10DESIGN, 32 Pearls, Absolute Dental Group, LLC, Academic Urology & Urogynecology of Arizona, Academy Software Foundation OpenEXR, Access Personal Checking Services (APCS), Accident Injury Solicitors, Advanced Security Systems, Afghan Relocations and Assistance Policy, Aflac Inc, AgeGO, Airfast Indonesia, AIS InfoSource, Alcàsser City Council, Aldagi, Alera Group, Inc, Algérie Poste, All States Materials Group, All Truck Transportation, Ambitek, American Association of Critical-Care Nurses, Android, Anuvu, Apex Class Action, LLC, Apple iOS, Apple macOS, Apple macOS Keychain, Arboris, Argo CD, Arkansas Primary Care Clinic, Aroeira Salles Advogados, Artists&Clients, Aspire Rural Health System, Assisted Living Pharmacy, AT&T, Auchan, Austrian Interior Ministry, Autodesk, Awes.me, Inc, Axis Communications Autodesk Plugin, Banville Wine Merchants, BAR Architects & Interiors, Baycoat, BDO Perú, Beech Acres, Behavioral Health Group, Belle Vernon Schools, Bemac-Merivale, Benworth Capital, Ben’s Asphalt, Berkshire Health Systems, BFC Solutions, Bizcom Electronics, Black Hills Regional Eye Institute, Blazer Building, Blenders in the Grass, Bolt Nut Manufacturing, Borghese Contemporary Hotel, Bouvier Insurance, Box Elder County, Bragg Gaming Group, Bridgestone, Brightpoint, BtcTurk, Burger & Brown Engineering, Burger King, Burt Process Equipment, Business Council of New York State (BCNYS), Canadian House of Commons, Canadian Investment Regulatory Organization (CIRO), Cancer Care Center of North Florida, CareTracker, Inc, Carmichael Engineering, Carter Credit Union, Carter Federal Credit Union, CB1 Medical, CBG Surveying Texas, CData API Server, CEI Vision Partners, Center for Disability Services (NY), Central Florida Hand Specialists, Charak Center for Health, ChatGPT, Chess.com, Children’s Center of Hamden, Chung Shan Institute of Science and Technology, Church of England, CI Engineering, Cisco Secure Firewall Management Center, City of Baltimore, MD, City of Batavia, City of Lubbock, TX, City of St. Paul, MN, Clicknget, CloudFlare (as well as a certificate issuance thing), Cockroach Labs cockroach-k8s-request-cert, College Hometown Pharmacy, College Parkside Pharmacy, Colt Technology Services, Columbia University, Commonwealth Business Bank, Community Connections, Community Treatment Solutions, Compass Counseling Services, Comprehensive Pain Centers, Connex Credit Union, Copilot, CPAP Medical Supplies and Services Inc, CPH Corp, CPK Interior Products, Crawford Gives, Credix, Cunningham Group, D. Visser & Zonen BV, Data I/O, DaVita, DBM Global, Delta Electronics DIAView, Delta Electronics ISPSoft, Denray Tire, Digilent DASYLab, DIGO, Diversified CPC, Django, Docker Desktop, Doctors Memorial Hospital, DOGE, Dr. Doug’s Pediatric Dentistry, Dubai Pharmacy College for Girls, DUC App, Dynacast, ECM Consultants, EG4 Electronics solar inverters, Electricity Authority of Cyprus, Elektro-Buder, Elkhart Independent School District, Episource, LLC, Epperson Law Group, Erdy McHenry Architecture, eShipGlobal, Eurofins, European Commissioner Ursula von der Leyen’s plane, Ewald Consulting, LLC, Excelsior Orthopaedics, Exel Composites, Expert E-commerce GmbH, Faltner, Family Counseling Services of the Finger Lakes, Fannava, Farmers Group, Inc, Farmers Insurance, Farmers Insurance Exchange, Farmers New World Life Insurance Company, Farmers Rice Cooperative, Ferienwohnungen.de, Ferplast, Firebird SQL Database Server, FirstLight, Flavor & Fragrance Specialties, Florarte, FortiWeb, Foxit PDF Reader, FreePBX Servers, Friesen Group, FTX Creditor, Fullerton Surgical Center, Fundamental Administrative Services, Galaxy Freightline, Garner Trucking, GEA Consulting Engineers, George Haney & Son, Ghana Postal Service, Giglio, GitHub (s1ngularity), Glen Falls Hospital, Google Workspace, Gosive, Grand Rapids Controls, Graphite Construction Group, Greenville, Texas, Grupo DIRIA, Guerrero Mears, HackerOne, Haeger & Schmidt Logistics, Hanson Chambers, Hardwick Tactical, Healthcare Services Group, Inc, HighDoc, HK Hardware & Engineering, Hogan Construction Group, Humanists.org, Huntwood Industries, Hydrometrics, Hygrade Components, iCloud Calendar, iiNet, IMDataCenter, Indian Institute of Technology Roorkee, InEar, Infoniqa, Inotiv, Inox Laghi, Insight Partners, Insightly, Integrated Orthopedics of Arizona, Intel, International Freight & Commerce, Internet Archive, Internet Rimon, Israel Railways, Ivanti Avalanche, Ivanti Connect Secure, Ivanti Policy Secure, Ivanti ZTA, J Derenzo Co, Jack’s Lawn Service, Jaguar Land Rover, Jamaican Office of the Registrar, James H Cunningham Insurance Agency Inc, Jet Centre, Johann-Peter-Hebel Realschule, Juggernaut, K Strategies Marketing and Public Relations, Kafka Conveyors, Karachi American School, Karndean International LLC, Kazmunay Gas, Kennedys Law LLP, Keys Pathology Associates, Kirkpatrick Partners LLC, Kofax, Inc, Kokomo24/7, Krewett, Kuwait’s Ministry of Electricity & Water, Lake City Cancer Care, LLC, LandWorks, Langdon & Company, Lee & Associates, Legacy Treatment Services, Lewis Baach Kaufmann Middlemiss PLLC, Lipigas, Litchfield Cavo LLP, LJ Falcon Holdings, Inc – Hiller Companies, Logan & Mencuccini, Louis Vuitton North America, Inc, LoveSac, LPL Financial, Lundberg Design, Luxembourg National Lottery, Manesa, Manpower, Mark Edward Partners, Marlborough Partners, McDonald’s, McEwen & Associates, MDLand International Corporation, Mediate Management, MedicareCompareUSA, Medway Plastics, Meridian Valley Labs, Metro Technology Centers, Michigan Medicine, Microsoft Windows, Mid America Health, Miljödata (200 Swedish government agencies), Miracle Ear, Miraflores, Peru, MJets, Moniz Silva International, Morgenstern AG, Morocco’s Social Security Fund, Motor Controls Inc, Mower County, MN, Mower County Health and Human Services, MPOWERHealth, Mutual of America Life Insurance Company, My Psychiatrist (FL), MyVisaJobs, 800 N-able N-central servers, NASCAR, NAST DOST, NATO, Navy Federal Credit Union, NC Dynamics LLC, Nelnet, Nemo Protocol, NetScaler ADC, NetScaler Gateway, New York Blood Center Enterprises, New Zealand Cruise Association, NextLabs, Nigeria Customs Service, Nike USA, Nissan CBI, Nissan Japan, NoMachine, Northern Construction, Northwest Medical Specialties PLLC, Norwest Venture Partners, NVIDIA Isaac-GR00T, NVIDIA Transformers4Rec, NVIDIA Triton Inference Server, OB-GYN Associates, Ocean Edge Resort & Golf Club, Odin.fun, Ohio Medical Alliance, Omani Email Server, Omega Global Technologies, Ona Hotels, One Way Solutions, Onno Center, OnTrac Final Mile, OpenPrinting ippusbxd, Optima Tax Relief, LLC, Optivosa, Orange Belgium, Orleans Parish jail, Oxford Instruments Imaris Viewer, PagerDuty, Pakistan Petroleum, Palo Alto Networks, Panorama, Parkside Group, PassportScan, Passwordstate, PathoQuest, Paul Wilkinson Law Firm, Pediatric Otolaryngology Head & Neck Surgery Associates, Peggy Sage, Pena Briones McDaniel, Pennsylvania AG, Pequannock Township School District, Perplexity Comet AI browser, Pesado Construction, Philadelphia Investment Partners, Philippine Amusement and Gaming Corporation, Phillips 66 Lubricants, Pincong, Plex, Pocono Farms Country Club, Precision Endodontics of Raleigh, Premier Realty Group, pREST, Primax, PROVAIL, QEMU, QNAP QHora-322, Quadrangle Imaging Center, Qualys, RA Services, Rapper Bot, RAVEN Mechanical, Realtek rtl81xx Wi-Fi Driver, Reimagine Network, Revere Health PC, Risevatnet Dam, Risk Management Services LLC, Riverton Cabinets, Roche Underground, Rockwell Automation Arena Simulation, Rose Acre Farms, Royal Enfield, Royal Health Inc, Rusin Law, Ruđer Bošković Institute, Sabine County Hospital, SAIL Image Decoding Library, Salesforce, Salesian University, Salesloft, Sangoma FreePBX, Sansone Group, Santa Fe County, SAP S/4HANA, Schliessmeyer, School District Five of Lexington & Richland Counties, SC, Seasons Living, Securam ProLogic safe locks (used on at least 10 brands of safes), Security First Credit Union, Seguros América, Selartex, Seoul Guarantee Insurance, SFA Engineering, SGI, Shafer Partners, Sherman, Silverstein, Kohl, Rose & Podolsky, Shopify, Siemens Simcenter, Signit Online, Sika Footwear, Simmons Boardman, Sinqia SA, Sitecore, Six Guns LLC, Som Mobilitat, Sonitrol Security Solutions, South Coast Pediatrics, South Korean Intelligence, South Yorkshire Police, Southern Graphics, Spiffy Bin, Springs Christian Academy, State of Maryland, State of Nevada, Steel Encounters, Step2Education, Sterlings Accountancy Solutions, Stewart Home School, Sun Pacific Solar Electric Inc, Sunsweet Growers Inc, SVDP Management Inc, SYNCADD, SystemExec Co, Tallaght University Hospital, Tea Dating Advice, Inc, TeamstersCare, TeamViewer, TechSourceOne IT Solutions, TELACU College, TeleMessage, Tenable, Tenda AC6, TeslaMate, The Biosig Project libbiosig, The Computer Merchant (TCM), The Farmer’s Dog, The Smile Spa, TheSqua.re, TheTruthSpy, Togolese Republic Government, Tomb Multimedia Productions, Town of Vienna, VA, TP-Link routers, TransUnion, Trinity News, True World Group LLC, Tucows, Twin Cities Pain Clinic, Uganda Electricity Transmission Company Limited, UI Community HomeCare, Umeå University, United Domestic Workers of America (UDW), Universal Group For Engineering and Consulting, University of Iowa Health Care, University of Southeastern Philippines, University of the Philippines Tacloban College, US Homeland Security, Uzbekistan Airways, Van Hook Dental Studio, Vanderpool Construction, Venice Biennale, Venture Credit Union, Venus Protocol, VerifTools, Vistra Group, Vital Imaging Medical Diagnostic Centers, Volanno, Voltus GmbH, WaitWhatWeb, Washington Gastroenterology, water utilities across Europe, Waterford Surgical Center, Wayne Memorial Hospital, Wealthsimple, Weathercraft Companies, Welcome Dentistry, West Chester Township, OH, West Texas Oral Facial Surgery, WestJet, WhatsApp, Whitepages, Wier Boerner Allin, Wine Works Australia, WinRAR, Woodlawn Hospital, WordPress Doccure theme, WordPress Inspiro theme, WordPress Paid Memberships plugin, Workday, Workiva, Wyong Rugby League Club, Xerox, Xperthair, XWiki Blog, YES24, Zeelab, Ziegler-Design, Zions Bancorporation, NA, Zizzl LLC, Zoom, and Zscaler have reported hacking or compromises this month.
Copilot, Google search, Microsoft Teams, Nintendo store (blame Silksong), Office.com, PlayStation store (blame Silksong), Starlink, Steam (blame Silksong), X, Xbox store (blame Silksong), and YouTube have suffered from outages this month.
Internet access throughout Gotland, India, Iraq, Pakistan, Starlink, Turkey, Ukraine, United Arab Emirates, Venezuela, Vietnam, and Yemen has been blocked our down for extended periods.
Last months updates broke AutoCAD, Enterprise updates for Windows, Firefox, SAP, solid state drives (SSDs) from various vendors (then fixed it without telling anyone), streaming, and Windows Recovery & Reset options.
Yes, EMF is bad for you. You knew that. It’s also really bad for your children.
Epochalypse is closer than you think.
Microsoft Word is now saving your documents in the cloud by default. Apple has removed native encryption (Advanced Data Protection (ADP)) from devices in the UK while reports repeatedly claim otherwise. License plate reader company Flock Safety is teaming up with Nexar to access your dashcam video (and everyone else’s).
PayPal will no longer allow you to purchase Steam games in many native currencies. “Science” has decided that “science” is best served by lying to the public. The unforeseen side-effects of gatekeeping the Internet. The UK has found a novel way of saving water during their current drought: delete your emails!
FFmpeg now offers AV1 encoding.
Chromium manifest V2 is now disabled everywhere in the Chrome browser. This means that all fully featured ad-blocking (and security extensions) will no longer work. Switch to Brave. Need help? Call me.tel:+1-209-565-1273
Now back to our regularly scheduled program.
Patch Tuesday is pretty mild this month. The typical computer should see roughly 2.5 GB in updates today. Let’s get started.
Microsoft released 44 updates to address 86 vulnerabilities in Azure Arc, Azure Windows Virtual Machine Agent, Capability Access Management Service (camsvc), Graphics Kernel, Microsoft AutoUpdate (MAU), Microsoft Brokering File System, Microsoft Edge, Microsoft Edge (Chromium-based), Microsoft Graphics Component, Microsoft High Performance Compute Pack (HPC), Microsoft Office, Microsoft Office Excel, Microsoft Office PowerPoint, Microsoft Office SharePoint, Microsoft Office Visio, Microsoft Office Word, Microsoft Virtual Hard Drive, SQL Server, Windows Ancillary Function Driver for WinSock, Windows BitLocker, Windows Bluetooth Service, Windows Connected Devices Platform Service, Windows Defender Firewall Service, Windows DWM, Windows Hyper-V, Windows Imaging Component, Windows Internet Information Services, Windows Kernel, Windows Local Security Authority Subsystem Service (LSASS), Windows Management Services, Windows MapUrlToZone, Windows MultiPoint Services, Windows NTFS, Windows NTLM, Windows PowerShell, Windows Routing and Remote Access Service (RRAS), Windows SMB, Windows SMBv3 Client, Windows SPNEGO Extended Negotiation, Windows TCP/IP, Windows UI XAML Maps MapControlSettings, Windows UI XAML Phone DatePickerFlyout, Windows Win32K – GRFX, Xbox, and MSRT. This includes security updates. A reboot is required.
Apple released updates for iOS 18.6.2, iPadOS 18.6.2, iPadOS 17.7.10, macOS Sequoia 15.6.1, macOS Sonoma 14.7.8, macOS Ventura 13.7.8, and watchOS 11.6.1. This includes security updates. Use Apple Software Update to install the most current versions.
iOS 18.6.2 is a security update. Use Settings, General, Software Update to install the most current update.
iPadOS 18.6.2 and 17.7.10 are security updates. Use Settings, General, Software Update to install the most current update.
watchOS 11.6.1 is a security update. Use the Watch app on your iPhone to install the most current version.
Google ChromeOS 139.0.7258.164, ChromeOS LTC 138.0.7204.255, and ChromeOS LTS 132.0.6834.242 are security updates. Use Menu, Help, About to install the most current version. A reboot is required.
Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.
Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.
The release of macOS Sequoia (15.x) means that macOS Monterey (12.x) and older are no longer supported. If you can not install at least macOS Ventura (13) on your Mac then you should immediately remove your device from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.
The now-current — and final — release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. All non-LTS versions of Windows 10 other than v22H2 are now out of support, upgrade to v22H2 now. If you aren’t sure whether you are using LTS, you aren’t. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.
The now-current release of the Windows 11 (v24H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.
Windows 11 is now stable and can be upgraded to if your hardware supports it. If not, switch to Linux (Mint is nice) or replace your computer.
Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.
It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.
Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.
Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with a SaferPC Subscription and we will install updates each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com
If you’re using this hardware – these updates are for you.
AMD Adrenalin 25.9.1 resolves several bugs. This is not a security update.
https://www.amd.com/en/support
BullZip PDF Printer 2025.1.0.2985 adds ARM support and updates libraries. This is a security update.
https://www.bullzip.com/products/pdf/info.php#download
Crucial Storage Executive 11.08 is a security update.
https://www.crucial.com/support/storage-executive
Intel Driver and Support Assistant 25.4.36.6 improves hardware detection. This is not a security update.
https://www.intel.com/p/en_US/support/detect
UniFi Network Server 9.4.19 is a security update.
https://www.ui.com/download/releases/network-server
VIISAN OfficeCam 7.2.12 doesn’t provide a change log so should be treated as a security update.
https://www.viisan.com/en/download/type1.html
One or more of these are likely to be of interest to everyone.
Brave 1.82.165 is a security update.
https://brave.com/
Firefox 142.0.1 is a security update.
https://www.mozilla.org/en-US/firefox/new/
Google Chrome 140.0.7339.80 is a security update.
https://www.google.com/chrome/
Microsoft Edge 140.0.3485.54 is a security update.
https://www.microsoft.com/en-us/edge/business/download
Vivaldi 7.5.3735.66 is a security update.
https://vivaldi.com/
One or more of these are likely to be of interest to everyone.
DavMail Gateway 6.4.0 resolves dozens of bugs. This is a security update.
https://davmail.sourceforge.net/
Spark 3.25.2.115680 resolves several bugs and improves the user interface. This is not a security update.
https://sparkmailapp.com/
Spark (macOS) 3.25.2.115679 resolves several bugs and improves the user interface. This is not a security update.
https://sparkmailapp.com/
Thunderbird 142.0.0 is a security update.
https://www.thunderbird.net/en-US/
One or more of these are likely to be of interest to everyone.
AnyDesk 9.6.0 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads
AnyDesk (macOS) 9.5.0 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads
Discord September 3, 2025 resolves over a hundred bugs and vastly improves server capabilities and performance. This is not a security update.
https://discord.com/download
Dropbox 231.4.5770 resolves an installation bug. This is not a security update.
https://www.dropbox.com/
FileZilla Server 1.11.0 adds optional pattern matching and resolves several bugs. This is a security update.
https://filezilla-project.org/
Google Drive 114.0 resolves several bugs. This is not a security update.
https://drive.google.com/start
MeshCentral 1.1.49 resolves a dozen bugs. This is not a security update.
https://meshcentral.com/info/downloads.html
Nextcloud Server 31.0.8 updates libraries and resolves dozens of bugs. This is a security update.
https://nextcloud.com/
Nmap 7.98 is a security update.
https://nmap.org/
Pocketnet-GUI 0.9.129 resolves several bugs. This is not a security update.
https://pocketnet.app/
Rclone 1.71.0 updates libraries and resolves dozens of bugs. This is a security update.
https://rclone.org/
Signal 7.69.0 resolves several bugs. This is not a security update.
https://signal.org/download/windows/
Signal (Android) 7.54.1 improves scrolling performance. This is not a security update.
https://signal.org/android/apk/
Syncthing 2.0.8 is the eighth bugfix release for v2 with dozens of changes and improvements. This is not a security update.
https://syncthing.net/
Telegram 6.1.3 resolves several bugs. This is not a security update.
https://telegram.org/
Zoom 6.5.12.14128 doesn’t provide a detailed change log so should be treated as a security update.
https://zoom.us/
These are unlikely to be of interest to most people.
3tene 4.0.21 resolves several bugs. This is not a security update.
https://en.3tene.com/
Bitwig Studio 5.3.13 adds support and fixes for new controllers and resolves several bugs. This is not a security update.
https://www.bitwig.com/download/
Grayjay 336 resolves several bugs and improves controls. This should be treated as a security update.
https://grayjay.app/index.html
KaraFun Player 3.9.0 resolves several bugs and improves the user interface. This is not a security update.
https://www.karafun.com/karaoke-windows/
Plex Desktop 1.110.0.351 is a security update.
https://www.plex.tv/media-server-downloads/#plex-app
Game Updates
These are unlikely to be of interest to most people.
Minecraft Server (Bedrock) 1.21.102.1 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock
Nintendo Switch 20.4.0 improves stability. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989
PS5 2025.902 improves performance and stability. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/
SteamOS SteamDeck Update 2025.09.04 is a security update.
https://store.steampowered.com/news/app/1675200/
One or more of these are likely to be of interest to most people.
Adobe 3D Substance Modeler 1.22.4 is a security update.
https://helpx.adobe.com/security/products/substance3d-modeler/apsb25-92.html
Adobe Acrobat 25.001.20693, 24.001.30264, 20.005.30793, and 20.005.30791 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb25-85.html
Adobe After Effects 25.4 and 24.6.8 are security updates.
https://helpx.adobe.com/security/products/after_effects/apsb25-86.html
Adobe ColdFusion 2025.4, 2023.16, and 2021.22 are security updates.
https://helpx.adobe.com/security/products/coldfusion/apsb25-93.html
Adobe Commerce Hotfix for CVE-2025-54236 (applies to all *current* builds of Adobe Commerce) is a security update.
https://helpx.adobe.com/security/products/magento/apsb25-88.html
Adobe Dreamweaver 21.6 is a security update.
https://helpx.adobe.com/security/products/dreamweaver/apsb25-91.html
Adobe Experience Manager 2025.9, 6.5 LTS SP1 (GRANITE-61551 Hotfix), 6.5.23 (GRANITE-61551 Hotfix) are security updates.
https://helpx.adobe.com/security/products/experience-manager/apsb25-90.html
Adobe Magento Open Source Hotfix for CVE-2025-54236 (applies to all *current* builds of Magento Open Source) is a security update.
https://helpx.adobe.com/security/products/magento/apsb25-88.html
Adobe Premiere Pro 25.4 and 24.6.8 are security updates.
https://helpx.adobe.com/security/products/premiere_pro/apsb25-87.html
Adobe Substance 3D Viewer 0.25.2 is a security update.
https://helpx.adobe.com/security/products/substance3d-viewer/apsb25-89.html
Calibre 8.10.0 resolves several bugs. This is not a security update.
https://calibre-ebook.com/
Ghostscript 10.06.0 is a security update.
https://www.ghostscript.com/releases/gsdnld.html
LibreOffice 25.2.6 resolves over 30 bugs. This is a security update.
https://www.libreoffice.org/
LibreOffice Fresh 25.8.1 resolves nearly a hundred bugs. This is a security update. The “Fresh” line is beta software and should be avoided by most users for the stable “Still” branch.
https://www.libreoffice.org/
Manager 25.8.19.2622 doesn’t provide a current change log so should be treated as a security update.
https://www.manager.io/
Nextcloud Desktop 3.17.1 updates libraries and resolves dozens of bugs. This should be treated as a security update.
https://nextcloud.com/
PDF Candy Desktop 3.15 doesn’t provide a change log so should be treated as a security update.
https://pdfcandy.com/
PDF-XChange Editor 10.7.2.400 resolves dozens of bugs and adds new user interface options and documents controls. This is not a security update.
https://www.pdf-xchange.com/product/pdf-xchange-editor
These are for specific Linux flavors and alternative operating systems and, sadly, are unlikely to be of interest to most people.
ChromeOS 139.0.7258.164 is a security update.
https://chromereleases.googleblog.com/search/label/Stable%20updates+ChromeOS
ChromeOS LTC 138.0.7204.255 is a security update.
https://chromereleases.googleblog.com/search/label/Stable%20updates+ChromeOS
ChromeOS LTS 132.0.6834.242 is a security update.
https://chromereleases.googleblog.com/search/label/Stable%20updates+ChromeOS
iOS 18.6.2 is a security update.
https://support.apple.com/kb/HT204204
iPadOS 18.6.2 is a security update.
https://support.apple.com/kb/HT204204
Linux Mint 22.2 is a security update.
https://www.linuxmint.com/download.php
macOS 15.6.1 is a security update.
https://support.apple.com/kb/HT201541
Tails 6.19 is a security update.
https://tails.net/install/download/index.en.html
watchOS 11.6.1 is a security update.
https://support.apple.com/kb/HT204641
One or more of these is likely to be of interest to most people.
.NET Runtime 9.0.9 resolves several bugs and improves compatibility. This is not a security update.
https://dotnet.microsoft.com/en-us/download/dotnet
FRST 2025.8.22 doesn’t provide a change log so should be treated as a security update.
https://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Hashcat 7.1.2 resolves several bugs and adds dozens of new modes and features. This is not a security update.
http://hashcat.net/hashcat/#downloadlatest
HTTP Toolkit 1.22.1 doesn’t provide a change log so should be treated as a security update.
https://httptoolkit.tech/
RogueKiller 16.3.0 adds disk monitoring and improves performance. This is not a security update.
https://www.adlice.com/download/roguekiller/
Stinger 13.0.0.455 improves detections.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx
uBlock Origin 1.66.2 resolves several bugs and improves defaults. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest
Velociraptor 0.75 adds multiselect, tagging, improved keyboard navigation and controls, optional compression, “continue” support, improves server permissions, and resolves several bugs. This is not a security update.
https://github.com/Velocidex/velociraptor/releases/latest
These are unlikely to be of interest to most people.
SnagIt 25.3.1 resolves several bugs and improves keyboard navigation. This is not a security update.
https://www.techsmith.com/screen-capture.html
These are unlikely to be of interest to most people.
DVDFab 13.0.4.7 adds support for new encodings and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/download.htm
FFmpeg 20250909 adds support for new hardware, encoding and decoding profiles, improves performance and additional filters. This is not a security update.
https://ffmpeg.org/ffmpeg.html
HandBrake 1.10.2 updates libraries and resolves several bugs. This is not a security update.
https://handbrake.fr/
StreamFab 6.2.5.3 improves compatibility and resolves dozens of bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm
UniFab 3.0.2.7 adds support for newer hardware, improves logic and performance, and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm
One or more of these are likely to be of interest to most people.
e-Sword 14.5, updates libraries, resolves several bugs, and improves user interface. This is not a security update.
https://www.e-sword.net/
Zotero 7.0.24 improves compatibility and resolves several bugs. This is not a security update.
https://www.zotero.org/
These are unlikely to be of interest to most people.
1Password 8.11.8 resolves several bugs. This is not a security update.
https://1password.com/downloads/
Agent Ransack 2022.3530 updates libraries, resolves several bugs, and now splits the search library into a separate download in order to avoid false antivirus detections. This is not a security update.
https://www.mythicsoft.com/agentransack/download/
Beyond Compare 5.1.5.31310 updates libraries and resolves several bugs. This is a security update.
https://www.scootersoftware.com/download
Bitwarden 2025.8.3 updates libraries and resolves several bugs. This should be treated as a security update.
https://bitwarden.com/
CCleaner 6.39.11548 resolves several bugs. This is not a security update.
https://www.ccleaner.com/
DesktopOK 11.98 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK
dnGrep 4.5.66.0 updates libraries and translations. This is a security update.
https://dngrep.github.io/
Everything Toolbar 2.0.4 updates installer to let you switch between launcher and deskband behavior. This is not a security update.
https://github.com/stnkl/EverythingToolbar/
FileLocator Pro 2022.3530 updates libraries, resolves several bugs, and now splits the search library into a separate download in order to avoid false antivirus detections. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download
Fing 3.9.1 resolves several bugs. This is not a security update.
https://www.fing.com/products/fing-desktop-download-windows
GoodSync 12.9.8 resolves several bugs and improves compatibility. This should be treated as a security update.
https://www.goodsync.com/
HWMonitor 1.59 adds support for newer hardware. This is not a security update.
https://www.cpuid.com/softwares/hwmonitor.html
Kingston SSD Manager 1.5.5.7 doesn’t provide a change log so should be treated as a security update.
https://www.kingston.com/us/support/technical/ssdmanager
LessMSI 2.8.1 resolves a language bug. This is not a security update.
https://lessmsi.activescott.com/
ManageWirelessNetworks 1.17 adds ability to set language encoding for exports. This is not a security update.
https://www.nirsoft.net/utils/manage_wireless_networks.html
MPAM 1.435.674.0 updates detections. This is not a security update.
https://www.microsoft.com/en-us/wdsi/defenderupdates
osquery 5.19.0 updates libraries and resolves several bugs. This is not a security update.
https://osquery.io/downloads
PointerStick 6.79 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick
PowerToys 0.94.0 resolves several bugs and improves compatibility. This is a security update.
https://github.com/microsoft/PowerToys/releases/latest
PSAppDeploy 4.1.5 improves diagnostics and resolves several bugs. This is not a security update.
https://psappdeploytoolkit.com/
Remotly 1.34.1 expands connectivity options, improves hardware support, and resolves over a dozen bugs.
https://remotly.com/
SpaceSniffer 2.0.3.12 adds high-DPI support, Unicode support, CLI improvements, and resolves several bugs. This is not a security update.
http://www.uderzo.it/main_products/space_sniffer/
Ventoy 1.1.07 resolves a compatibility bug. This is not a security update.
https://www.ventoy.net/en/index.html
WizTree 4.27 adds QuickLook and Seer support, improves filtering syntax, and resolves several bugs. This is not a security update.
https://www.diskanalyzer.com/
ZoomText 2025 2025.2508.35.400 improves performance, multi-monitor controls, and resolves several bugs. This is not a security update.
https://support.freedomscientific.com/Downloads/ZoomText
These are unlikely to be of interest to most people.
Android Studio 2025.1.3.7 resolves dozens of bugs. This is a security update.
https://developer.android.com/studio
GDevelop 5.5.239 adds a training course, GPT-5 integration, new controls and several bugs fixes. This is not a security update.
https://gdevelop.io/download
GitHub includefragment 6.4.1 improves content-type detection. This is not a security update.
https://github.github.io/include-fragment-element/
Go 1.25.1 is a security update.
https://go.dev/
Inno Setup 6.5.1 adds threading support for downloads to improve responsiveness and resolves several bugs. This is not a security update.
https://www.jrsoftware.org/isdl.php
Node.js 20.19.5 updates libraries and resolves several bugs. This is a security update.
https://nodejs.org/en/
Node.js 22.19.0 updates libraries and resolves several bugs. This is a security update.
https://nodejs.org/en/
Node.js 24.7.0 updates libraries and resolves several bugs. This is a security update.
https://nodejs.org/en/
Python 3.13.7 resolves several bugs. This is a security update.
https://www.python.org/downloads/macos/
Visual Studio Code 1.103.2 adds GPT-5 support and resolves several bugs. This is not a security update.
https://code.visualstudio.com/
WinMerge 2.16.50.2 resolves several bugs. This is not a security update.
https://winmerge.org/
These are unlikely to be of interest to most people.
VirtualBox 7.2.0 improves performance resolves several bugs. This is a security update.
https://www.virtualbox.org/wiki/Downloads
These are likely to be of interest only to web developers.
Adminer 5.4.0 resolves several bugs and adds new display, selection and export options. This is not a security update.
https://www.adminer.org/en/
Joomla 5.3.3 resolves a couple bugs. This is not a security update.
https://www.joomla.org/
SpamAssassin 4.0.2 improves compatibility and resolves several bugs. This is not a security update.
https://spamassassin.apache.org/downloads.cgi
Duplicator 1.5.13.2 resolves a script bug. This is not a security update.
https://wordpress.org/plugins/duplicator/#developers
Email Log 2.61 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/email-log/
Postie 1.9.72 resolves several bugs. This is a security update.
https://wordpress.org/extend/plugins/postie/
WordPress Importer 0.9.0 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/wordpress-importer/
WP Add Custom CSS 1.2.1 resolves a couple bugs and improves compatibility. This should be treated as a security update.
https://wordpress.org/extend/plugins/wp-add-custom-css/
That’s all for now folks. Keep it clean out there. 😉
Regards,
Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/
Welcome back, Folks!
Today is Patch Tuesday for August, 2025.
It’s as safe as it’s going to be to upgrade to Windows 11 24H2 or macOS 15/Sequoia.
If your Windows 10 computer can not be upgraded to Windows 11, or if you used a registry or installation bypass to install an older version of Windows 11 on it that is no longer supported, then you might be able to use one of the several Windows 10 extended servicing options to get another year out of it.
There were 1150+ major hacks in the last two months (last month is included here), and over 650 application updates this month. It’s an enormous month, with about 6.5 GB of updates for most users.
32 Pearls, WA, 4 Corners Repair & Restoration, 7-Zip, a banking network, A&R Engineering, Able Home Care, Acadiana Radiation Therapy, LLC, LA, Acarlar Ltd, ACCU Reference Medical Laboratory, Ace Wire Spring & Form, Act Legal, ActFax Server, Adidas, Aditya Birla Capital Unit, Admiral Gaming Network, Adobe Acrobat Reader DC, Advance Ready Mix, AEROBLOX, Aeroflot, Aflac, AFPA, Aftership, Aggressive Air Compressor, Agura B.C. Ltd, AGX Financeira, Ahold Delhaize, Air France and KLM, Air Serbia, Airedale Springs, Airpay, AIS InfoSource LP, Akribis Systems, Alaska Airlines, Albany College of Pharmacy and Health Sciences, Albavisión, Albemarle County, VA, Alera Group, IL, Alert Medical Alarms, Algeria’s National Bank System, All Choice Rentals, All India Institute of Medical Sciences (“AIIMS”), Allegra, Allianz Life Insurance Company of North America, Allianz Seguros Spain, Allied Services Division Welfare Fund, Allied Steel Buildings, Alliedbankers Insurance Corporation, Alpha Wellness & Alpha Medical Centre, GA, Alpine iLX-507, AltaMed Health Services Corporation, CA, Altos, Inc, Amazon AWS Client, Amazon Elastic Container Service (ECS), AMEOS Group, American Consumer Credit Counseling, Inc, AMI Group, AMI’s MegaRAC BMC, Anadolu Hastaneleri, Anderson & Karrenberg, Android Enterprise, Anne Arundel Dermatology, MD, Anritsu ShockLine, Antalya Veterinary Doctors Association, Anthropic MCP, AOMEI Backupper Workstation, AOMEI Cyber Backup, Apache Traffic Server, Apex Global Solutions, LLC, NY, APL, Apollo MD, Apple iOS, Apple macOS, Apple Safari, Arbor Associates, Inc, MI, Arbor Associates, MA, Arbour Volkswagen, Arcadia Finance, Arch Linux, Arctic Glacier Premium Ice, Arctic Group, Ark Consultancy, Arlington Occupational Health and Wellness, TX, Artex Management, Artivion, GA, Asana MCP AI, Asefa Insurance, Asemas, Ashland schools, MA, Ashlar-Vellum Cobalt, Ashlar-Vellum Graphite, Associated Packaging, Astro Industries, ASUS Armoury Crate, ATEN eco DC, atHome, Atlantis Submarines, Audio Geeks, Australian Office of the Migration Agents Registration Authority, Autel MaxiCharger AC Wallbox, Autodesk AutoCAD, Autodesk Revit, an auto dealer portal granted access to personal information, financials, and even remotely unlock tens of thousands of vehicles, Avala Holdings, LA, Avantic Medical Lab, NJ, AVG TuneUp for PC, Axis CCTV cameras, Axis Max Life Insurance, Axis Servers, Azure Machine Learning, B&M, Backstage Library Works, BAF Management Consulting, Baillie Lumber, Bajaj Finserv, Balance Diagnostics, NY, Baltimore Archdiocese, Bangladesh Government Portal, Bar Harbor, Bardmoor Cancer Center, FL, Barrett-Jackson Holdings, LLC, Base44, Basecamp, Becker Robotic, Beep Systems, Belk, Belmont Christian College, Beluga, Benefits Management Group, Inc, Best Price Financial Services, Bevolkingsonderzoek Nederland, BeyondTrust Remote Support and Privileged Remote Access, Big Rock Resort, BIG Silver, BigONE, Biletall, Bing, Binghatti, Bitbox, Bitcoin Depot, Inc, BitoPro, Bitpanda, BlackSuit, Blanco Creek Farms, Bloomberg Comdb2, Blue Cross and Blue Shield of Massachusetts, Blue Shield of California, Bluetooth chips from ten vendors, Bluewater Yacht Sales, BMS Holdings, LP, BMW Financial Services NA, LLC, Bogota Government, Boley Centers, Bolton Walk-In Clinic in Ontario, Boutin Jones, Bouygues Telecom, Bowles, Womack & Company, PC, Brandt Kettwick Defense, Brazil’s Central Bank, BreachForums, Bridges Experience, Inc, Bridgewater Associates, Brien Center for Mental Health and Substance Abuse Services, MA, Bristol Hose, British Horseracing Authority, Broadcom chips, Broadleaf Game, Broadwest Specialty Surgical Center, IN, Broken Bow Public Schools, Bronze Craft, 689 models of Brother printers, Brownie, Brunton-Shaw, Brussels Parliament, BTS Group Holdings, Budget Electric, Budinger & Associates, Buffalo Marine, Burmann and EMPUR Produktions GmbH, public transit buses, BYU-Pathway Worldwide, C B King Memorial School, C&M, California Cancer Associates for Research and Excellence – Fresno, California Cancer Associates for Research and Excellence – High Desert, California Cancer Associates for Research and Excellence – San Diego, Call of Duty: WWII, Calton & Associates, Inc, Cameron, Hodges, Coleman, LaPointe, Cancer Care Center of North Florida-Lake Butler, FL, Canonical Ubunto Kernel, Capitol Taxes, Cappuccino Hotel, Cardinal Services, Cardiology Associates of Fredericksburg, VA, Carolyn Young, Carrollton ENT, CARSTAR Business Group, Cartel Communication Systems, Carter Manufacturing, Casa Dorita, Casino de Monte Carlo, Cathay Pacific, Catwatchful, cCARE Fresno, CCI Torrevieja, CDMX Auxiliary Police, Cegid, Cenomi Retail, Center for Clinical Research, Centers for Medicare & Medicaid Services, MD, Central Kentucky Radiology, KY, Central Maine Healthcare, Century Support Services, Cerner Corporation, MO, Cetdigit, CF Construction, CGP&H, Chain IQ, Chanel, Chicago’s WFMT radio station, Christian Brothers Academy, Christian Dior Couture SAS, ci-Fabrics, Cibraco, Cierant Corporation, CT, Cineverse, Cisco.com, Cisco Identity Services Engine (ISE), Citrix devices (CitrixBleed2), City of Gardendale, City of Green River, City of Keene, NH, City of Peabody, MA, Clam AntiVirus, Clarkston Chiropractic Sports & Wellness, MI, Clement Manor, WI, Cleo, Clinica Family Health & Wellness, CO, Clive Palmer’s Mineralogy, ClockWorkAdmin, Club Grido, Clymene Management Services, LLC, Coalinga Regional Medical Center, Cock.li, CoinDCX, CoinMarketCap, ColdFusion, College Saint Jean-Baptiste de La Salle, Colorado West Construction, Columbia University, Come to Paris, Сomet Strip Enterprises, Compass Counseling Services, FL, Complete Care Rehab, MI, Compumedics, NC, Computer Ingenuity Associates, Comyns, Smith, McCleary & Deaver LLP, ConnectWise ScreenConnect, Connex Credit Union, CONTRAQI, Cookville Regional Medical Center, TN, Corinthian Media, Correos de Chile, Covenant Health of Tewksbury, MA, Creams Cafe, CrediX, Crenshaw Community Hospital, AL, Crompton Lamps, Crumbl, 1,000 CrushFTP servers, Cryoviva, 3,500 websites hijacked to mine crypto, Cucamonga Valley Water District, Culver’s Lawn & Landscape, Cumberland County Hospital Association, KY, Cursor, Custom Food Ingredients, Cutcliffe, Archetto & Santilli, CyberlinkASP, Cycle & Carriage, Cyclope Employee Surveillance Solution, DA Whitacre Construction, Dairy Farmers of America, Daniels Law Group LLC, Dansoft, DARA Pharma, Darien Telephone, Dassault Systèmes eDrawings Viewer, DataSafeApps, DC Investors, Deakin Medical Centre, Dealmed Medical Supplies, Decisely Insurance Services, LLC, GA, Delhi Hospitals, Dell, Dell ControlVault3, Dell laptops (ReVault), Dell Technologies, Delta Electronics CNCSoft, Delta Electronics DTM, Denali Biomedical, AK, Deutsche Telekom, Disk Union, Disneyland Paris, Dithelm Travel Group, Diversified Services Enterprises, FL, DKN Hotels, Doctors Memorial Hospital, FL, DOJ Forensic Science Division, MT, Dollar Tree, Donlar Construction, Dordt University, Doyon, Limited, DP Systems, Druni, DTiQ Technologies Inc, Dtunes.ng, DTX Studio, Duke Regional Hospital, Dumfries and Galloway Council, Dunlop Codding, Dyalcom, Dynamic Netsoft, Dyrham Park, e+ Oncologics Louisiana, LLC, LA, E-Mail Security Virtual Appliance, Eagle Builders, Eastern Platinum Limited, Ebber Restaurant Group, Eclipse ThreadX, Effortless Office Enterprises, LLC, EGallery, EIA Global, Eiffage, El Paso Glass, El Paso Quality Dentistry, TX, Electronics For Imaging, Inc, Elematec Corporation, Eleos Wellness, FL, Ellis Medicine, NY, Elmo, Elmore County, ID, EmCentrix, eMedia, Emerson Chiropractic, IN, EMM Corp, Emprise, Emtech Inc, Endgame Gear, ENENSYS IPGuard, Episource, Epsimed MN-120, Epworth HealthCare, Equilibria Mental Health Services, PA, Erie Insurance, Esse Health, MO, Estes Forwarding Worldwide, ESTT, EupFin, Eurofins Scientific, Everglades Correctional Institution, Eversendai, Evoke Wellness, Exel Composites, ExpressVPN, F&P Georgia Mfg, Fairbanks Urology, AK, Family & Community Services, Inc, Family Centers Inc, Family Service League, Fasana, Fayrefield Foods, FC Barcelona, Federassantas, Fenol Kimya, Finastra Technology, Inc, First Baptist Church of Hammond, Fishman, Larsen & Callister, FJD AT2 smart tractors, Florida Hand Center, FL, Florida Internal Medicine, Florida Lung, Asthma & Sleep Specialists, FL, Flutter Entertainment, Food Lion, FormWood Industries, Fort Smith Public School District, Fortinet FortiWeb, Forward, Four Quarters, FoxCMS, Foxit Reader, France Travail, Franchise Tax Board, Frank D. Lanterman Regional Center, CA, Franklin Pierce Schools, Frazier & Bowles, Freedman Healthcare, Freedom Plaza Senior Living, FL, Freedom Square of Seminole, FL, Freedom Wood Doors, FreeFloat FTP Server, French Ministry of Education, French National Agency for Adult Vocational Training AFPA, Frontline Bioenergy, Fuji Electric Smart Editor, Fund for Reformed Companies, G DATA Total Security, Gardner Orthopedics, Florida, Garmon and Company, Gaskar Integration, Gastroenterology Consultants of South Texas, Gateway Community Services, FL, Gemini CLI, General Physician PC, Genesis Billing Services, Genex Services, LLC, Genoa Community Hospital, NE, Genoa Medical Facilities, GFI Archiver, GFI Kerio Control, Ghana Police Service, Gigabyte UEFI, Gladney Adoption Center, Glens Falls, Gmail AI, GMX, Goldberg & Osborne, Golden State Radiation Oncology, CA, Good Samaritan Health, Google Ads, Google Chrome, Google Drive, Google Gemini, Google’s Gemini CLI, Grafana Image Renderer, Grayscale Investments, Great CDL Training, Great Lakes Carpet & Tile, Green River City, GreenLight Biosciences, Greta Group, GRS Informatica, GStreamer, Guyana Sugar, Habitat for Humanity of Greater Sioux Falls, Hacienda La Puente Unified School District, Hacken, HackerOne sandbox, Haha Graby World, Halvorsen Family Law Group, Hannaford, Har Hevron Regional Council, Harbor, OH, Haruv Institute, Have Fun Teaching, Hawaiian Airlines, HCK Capital Group, Health Care and Rehabilitation Services of Southeastern Vermont, Healthcare exchanges in Nevada, Maine, Massachusetts and Rhode Island, Heartline, OK, Helical Auto Technology, Herrman Law Firm, HEXPOL Holding Inc, High Point Treatment Center, MA, Highlands Oncology Group, AR, Hollywood Dermatology, Holscher Holding, Honeywell middleware, Hongkong Post, HopeHealth Inc, SC, Horizon Blue Cross Blue Shield, Horizon Healthcare RCM, IN, Hospital Auxilio Mutuo, Hospital Management System, Hotam EC, House of Dior, Howard Financial & Associates, HPE Aruba Instant On Access Points, HPTC, HRConnects, LLC, Hulberg & Associates, Human Development Services of Westchester, NY, Hungryroot, Huntington Hospitality Financial Corp, Hôpital Privé de la Miotte, IBM, iBUYPOWER, IdeaLab, IES Communications, Illinois Department of Healthcare and Family Services, Imblum Law Offices, IMDataCenter, IMSSA Manufacturing, Income Property Investments, CA, Indaco, Independent Title Agency, Indian Institute of Technology Roorkee, Infinite Services, NY, Infinity Plumbing Designs, Inc, Inflite Engineering Services, Informatika AD, Infosys McCamish Systems (IMS), Ingram Micro, InnoMedica, Inside One, Inspira Financial Trust, LLC, Integrated Oncology Network, TN, Integrated Specialty Coverages, LLC, Integrity Mortgage, International Criminal Court (ICC), INVT HMITool, INVT VT-Designer, iPROMOTEu, Iran International Network, Iranian Government Portal, Iranian TV, Ireland National Treasury Management Agency (NTMA), IrfanView, IROAD Dashcam FX2, Iron County Medical Center, MO, Islington Golf Club, Israel Antiquities Authority, IT Access PTE, ITIM, Ivri, Kerner & Co, IWACLUB, Jack L Marcus Inc, WI, Jacksonville Beach Dermatology, Jamco Aerospace, Jean Bakhos, Jenkins servers, JFC Electric, JIEI CO, JNE, JobPlace, Johnson Controls, Jordan Drug, Inc, KY, JupyterLab, K&E Advanced Dentistry, OH, K2L, Kalad, Karunia Group, Katz & Doorakian Law, Kayan Aero, Kelly & Associates Insurance Group, Kengen, Kentfield Hospital, CA, Kenwood DMX958XR, KEP Credit Union, Kerrville ISD, Kettering Health, Keys Pathology Associates, PA, FL, Keystone Shipping, KIA Vehicles, Kigen eUICC cards, Kimsuky, Kingdom of Tonga’s Ministry of Health, Kingsford Development, Kirkor Architects and Planners, KLM, KNP Logistics Group, Koch Eye Associates, Koenig Hausverwaltung, Kokomo24/7, Krispy Kreme, Krusell, Kyrgyzstan’s Foreign Ministry, L3Harris, Lafayette Family YMCA, Lafayette Federal Credit Union, Lake Barkley State Resort Park, Lake City Cancer Care, FL, Lake Region Healthcare, Lake Risevatnet dam, Norway, Lamberts Business Systems, Landscape Hawaii, Langdon & Company, LLP CPA, NC, Lanterman Regional Center, Lawton Partners, LEADBUILD Construction Pte Ltd, Lee & Associates, Legal Aid Agency, Lemonade, Inc, Lenovo UEFI, LexisNexis, Liberty Township, Life Care Services, AL, Life Care Services, FL, Lincoln Law, Linux PAM and libblockdev, Linux Sudo, London Properties, LTD, Lorain County Auditor, Lorex 2K Indoor Wi-Fi Security Camera, Los Angeles LGBT Center, Louis Vuitton, Lovense, LP Charpente, Luxion KeyShot, LVMH, Lydig Construction, Lynkspot, Machu Picchu Foods, Mack Energy Corp, macOS (Sploitlight), Magellan Financial Group, Mailchimp, Mainetti, Mainline Health Systems, AK, Majestic, Manassas Park Schools, Manhattan Parking Group, Manning, Fulton & Skinner, PA., Manpower, Marbella KR8s Dashcam, MaReads, Marin Housing Authority, Marquette County Medical Care Facility, MI, Marquette County Medical Care Facility, OH, Martin, Showers, Smith, & McDonald, Marvell QConvergeConsole, Mastery Charter High School, Mauritanian Government Employability Platform, Max Financial, McCracken Financial Solutions, McDonald’s McHire, McKay Wealth Management, McKenzie Health System, McKenzie Memorial Hospital, MI, McLaren Health Care, MI, McLean Mortgage, McNealy Brown, MedDream PACS Premium, Media Broadcast Satellite, Medical Center of Marin, Medical Village LIV, Medicare.gov, MedicareCompareUSA, Medicover, Medusa, Meleam SpA, Memorial Radiation Oncology Medical Group, Mercedes-Benz AG, Merlin Industries, Mescius ActiveReports.NET, Meta AI, Meta Pool, MetaMask, Metricon Homes, MGI Singapore PAC, MGM Transformer, Microsoft 365 Copilot, Microsoft 365 Direct Send, Microsoft Bing AI, Microsoft Exchange Server, Microsoft PC Manager, Microsoft PowerShell, Microsoft SharePoint, Microsoft Visual Studio, Microsoft Windows Remote Desktop Gateway, Microsoft WinJS, Mid America Health, IN, Mid America Physician Services, MO, Milberg, Minnesota Epilepsy Group, Minnesota Lawyers Mutual Insurance, Mint, Mission City Community Network, MiVoice MX-ONE, Mizuha Financial Group, MJQ Education, Mohammed VI Polytechnic University, Mojave Radiation Oncology Medical Group, CA, Montalvo Institute, Mor-logistics, Moreno Valley Unified, CA, Morocco Clinic System, Morpeth Pharmacy, Morrison Companies, Morrow Equipment, Mortensen Law Offices, Mosaic Life Care, MO, Moti, Mount Baker Imaging, Mount Rogers Community Services, VA, Mount Vernon Property Management, Mountain Laurel Dermatology, NC, MOVEit Transfer, Mower County, Minnesota, Mozilla Firefox, Mozilla VPN, Multilift Logistic Group, Murex Petroleum, MyBloodMiles, MyClic.fr, Myrtue Medical Center, IA, Món Sant Benet, Nanino, Naper Grove Vision Care, IL, NASCAR, National Health Information System of Tonga, National Institute of Water Resources, Nationwide Care Services, Naval Group, Neot Hovav, Nessus Security Scanner, Netherlands Public Prosecution Service (OM), New American Funding, New South Wales Christian, New York University, NewGen, Next Level Construction Services, NI LabVIEW, Niflaot Hatzuna Ltd, Nintendo consoles, Nippn TH, NK Customer Solutions, NKS Super Speciality Hospital, India, Nobitex, Nokia, Norpak, Norsk Global, North Country HealthCare, AZ, Northern Light Health, Northwest Medical Homes, LLC, OR, Northwest Radiologists, Nova Recovery Center, TX, Nova Scotia Power, Novabev, NPD Products, NPK, Nth Degree Investment Group, NuCamp RV, Nucor, NVIDIA Container Toolkit, NVIDIA Triton, OB/GYN Medical Center Associates, TX, Ocuco Inc, OKA, Olde Towne Medical and Dental Center, VA, Olivera Canarias, Omnicuris, One Gold Italia, ONEX Canada Asset Management, ONGC Petro Additions Limited, Openprovider, Optima Tax Relief, Oracle Code Editor, Oracle VirtualBox, Orange County Radiation Oncology Medical Group, CA, Orange Telecom, Oregon Specialty Group, OR, OrthoAtlanta LLC, GA, Otjiwarongo Municipality, Oxford City Council, Oxford Universal Corp, Pacific Biolabs, Pacific HealthWorks, Palawan Medical Mission Group Multipurpose Cooperative, Palm Bay International, Palomar Insurance, Pandora, PANSARD & ASSOCIES, PaperCut NG/MF, Paraguayan Public Defender’s Office, Paraguayan Superior Court of Electoral Justice, Paraguayan Vice Ministry of Economy, Parallels Client, Patron Insurance Services, Paul Wilkinson Law Firm, PBS, PDCM Insurance, IA, PDF-XChange Editor, PDI Health, NY, PEAK-System Driver, Pelindo, Pembroke Regional Hospital, Pennant Park, Pennsylvania Attorney General, PeopleCheck, Pergamon Status, PET Imaging of Dallas Northeast, TX, PET Imaging of Houston Medical Center, TX, PET Imaging of Northern Colorado, CO, PET Imaging of Sugar Land, TX, PET Imaging of The Woodlands, TX, PET Imaging of Tulsa, OK, Phil Smith Automotive, Philadelphia Indemnity Insurance, Phoenix Contact CHARX SEC-3150, Phoenix Lighting, PhyNet Dermatology, Pi-hole, Pilipili, Pinnacle Roofing, Pinnacle Woodwork, Pioneer DMH-WT7600NEX, Polykar, Pond North LLP, Portel Logistic Technologies, Positive Solutions, Precision Endodontics of Raleigh, NC, Premier 1888 Ltd, Premier Health Partners, OH, Premiere Surfaces, Inc, Prestige Maintenance USA, Primary Health Services Center, LA, Prime Retirement Solutions, LLC, Proactive Engineering Consultants, ProActive Solutions, Progressive Auto Group, Progressive Southeastern Insurance Company, Prosecuting Attorneys’ Council of Georgia, Protech Medical, Proton Authenticator, PT BPR Serang, Punta Del Agua, PZS Architects, Qantas, QHR, Qilin, QNAP QHora-322, QNAP TS-464, Quartas Engineering, Quaser Machine Tools, Quintana Roo Mobility Institute, Racine Olson, Radford City Schools, Radiation Oncology Network of Southern California, LLC, CA, Radiology Associates of Richmond, VA, Radix, Ralph S Livingston, CPA An Accountancy Corporation, Rare Breed TV, RattanIndia Power, Red Hat Enterprise, Regency Oaks, FL, Regional Center of the East Bay, CA, Reimo, Reizen Law, Remitly, Renkim Corporation, Repay Management Services, LLC, GA, Resource Energy, Retina Associates of Cleveland, OH, Rezayat Group, Rhode Island Airport Corporation, Ridewill SRL, Ridgefield, Rite Track, RiteCheck, Ritenour School District, Robinsons Malls, Rockerbox, rocket.chat, Rockrose Development, Rocky Mountain Oncology Care, WY, Rollex, 84,000 Roundcube Servers, Rosewood Farm, Royal Enfield, RS Polri Kramat Jati, RTE, Ruckus Networks, RUKU Tore-Turen, Rural Health Services, SC, S&H Express, SaaStr via Replit AI (this is funny), Sabine County Hospital, TX, Sacred Heart School, SAFE CREDIT UNION, Saint Paul, MN, Salamander Resort & Spa, Salesforce OmniStudio, Salvation Army, Samsung MaginINFO 9 Server, San Diego police, CA, Sanderling Healthcare, Sant Parmanand Hospital, India, SAP NetWeaver, SatuSehat Kotim Kabupaten, Saudi Games, Scania, Sedgebrook, Self Regional Healthcare, SC, Sensata Technologies, Seppeler Gruppe, Sermo, ServiceNow, ServiceStack, Servoescolar, Seychelles Commercial Bank, SGI Seoul Guarantee, Sharp HealthCare, Siemens SINEC NMS, Siemens TeleControl Server, Silverdale BC, SilverLake Axis, Simple Web Server, Singapore Police Force, SinoTrack GPS devices, Sitecore CMS, SK Telecom, Skin Care Specialty Physicians, MD, Skirball Cultural Center, Skoda, Skyline Dubuque, Skype, Société Générale, Sogedis, SolarWinds Agent, SolarWinds Serv-U FTP Service, SolarWinds TFTP, SolarWinds Web Help Desk, Solix, SonicWall SMA 100, SonicWall SSL VPNs, Sony WM-1000XM5, Sony XAV-AX8500, Sophos Firewall, South African Broadcasting Corporation, South Ayrshire Council, South Coast Pediatrics, South Georgia Center for Cancer Care, LLC, GA, Southeast Series of Lockton Companies, LLC, Southern Connecticut Vascular Center, CT, Southern Immediate Care, Southern Tire Mart, Southwest CARE Center, Southwest Florida Dermatology, Southwest Urology, OH, Southwood Financial, Spanish Politicians, SPANN Roofing & Sheet Metal, Spartanburg County, SC, Specialty Components, State of California, Department of Child Support Services, Steadfast Companies, Stihl Shop New Zealand, Stratascorp Technologies, Studio C, Studio Verna Società Professionale, SubsCorp, Sunrise Springs Spa Resort, Superior Court of Justice of North Lima, Surmodics, MN, Susan B. Allen Memorial Hospital, KS, Sweeney Design, Swissquote, Switzerland, Synergy Radiation Oncology Medical Group, SysAid IT service management (ITSM), T2 Group, TABB Inc, Taiwan Digital Streaming, Tallahassee Memorial Healthcare, FL, Tan Chong Motor Holdings, Tappoo Group, Tara Pac, TCI Doors, Tea App (twice), Team Signal, TeamViewer, TeaOnHer, Tech Mahindra, Tech Trivial, Tecore, Telcom Insurance Group, Telecall, Telefónica, TeleMessage, Tenacious Marketing, Terillium, Tesla PowerWall Connector, TETRA, Texas Centers for Infectious Disease Associates, Texas Department of Transportation, Texture Finance, The Colgin Companies, The Lowell Hotel New York, The Magni Group, The Mindfuel Foundation, The Morton Forum, The Providence Warwick Convention, The Scharine Group, Thern, Think Big Health Care Solutions, Think Tax Solutions Inc, Thomas Bennett & Hunter, Tiger Communications, TikTok LIVE, TIMEC Oil & Gas, Inc, Tiscali SPA, Titan Trailers, TO Brasil, TOMEI GROUP, Tooling Systems Group, Toptal’s GitHub, Towne Mortgage, TRAC Intermodal, Trans-Tex, Travancore Analytics, Trend Micro Apex Central, Trend Micro Apex One, Trend Micro Cleaner One Pro, Trend Micro Endpoint Encryption, Trend Micro Maximum Security, Trend Micro Password Manager, Trend Micro Worry-Free Business Security, Trezor, TRG, LLC, OR, TruCSR, Trumpet of Patriots, TSAI Capital, Tuna Processors Phillipines, Turbo FTP Server, Twaweza, Tyree Oil, UAE Equestrian Federation, Ualabee, Ubiquiti Networks AI Bullet, Ubiquiti Networks UniFi, Ubon Ratchathani University, UBS, UK Afghan migration data, UK special forces, Ulster County, Unigame, Union Home Mortgage, United Australia Party, UnitedHealth Group (again), Universidad Mayor, University of California, Berkeley, University of Puerto Rico, University of Western Australia, University of Zagreb Faculty of Science, Upper Dublin Family Dentistry, Upstart Power, Urology Associates of Charleston, SC, US Army National Guard, US Bank, US Court filing system, US FBI, US Judiciary, US National Nuclear Security Administration, US train braking safety system, Vacron Camera, Vail Summit Orthopaedics, CO, Valley Mountain Regional Center, CA, Vantage Finance, Vector Security, Veeam Agent, Veeam Backup Enterprise Manager, Venice Film Festival, Venice Hotel Ca’ dei Conti, Vero Foods, Vertel, Vest Tube, LLC, Viasat, Victoria Garden, View Zuellig Industrial, Vino Farms, LLC, VirtualMacOSX, Virtualweb Technologies, Vistra Group, Vitec, VM Racing, Vodafone Egypt, Volkswagen, Volvo, VS Associates, Vynopsis, Walmart, Warisan TC Holdings, Warwick Student Union, Washington Post, Watchfinder & Co, Watermark Marine Systems, Wazuh, 269,000 websites (JSFireTruck), Wedlich, Wegley, Higginbotham & Associates, Weizmann Institute, West Java Provincial Government, West Texas Oral Facial Surgery, TX, Western Australia Firearm Portal, Western Montana Clinic PC, MT, Western Montana Mental Health Center, MT, WestJet, WH Rogers Sheet Metal, Whim Hospitality, White Coffee Corp, White Horse Packaging, Whittaker & Company, Wilson Appliance, Wilsonville Toyota-Scion, Windows CAB parsing, Windows Hello, Windows SmartScreen, Windows ZIP parsing, Windsor Door, WineLab, Wing FTP Server, Winkler County Hospital District, TX, WinRAR, WiredBucks, Wispone, WL Foods, WOO X, Wood River Health, RI, Wood, Patel & Associates, Woodtect, WordPress Advanced Custom Fields plugin, WordPress Alone theme, WordPress Asset-Manager plugin, WordPress Brave Conversion Engine plugin, WordPress bSecure plugin, WordPress Ebook Store plugin, WordPress Forminator plugin, WordPress FoxyPress plugin, WordPress GiveWP plugin, WordPress Gravity Forms plugin, WordPress HT Contact Form plugin, WordPress LoginPress Pro plugin, WordPress Melapress Login Security plugin, WordPress Motors theme, WordPress ONLYOFFICE Docs plugin, WordPress PayU plugin, WordPress Platform theme, WordPress Post SMTP plugin, WordPress Support Board plugin, WordPress Website Contact Form With File Upload plugin,WordPress Woocommerce plugin, WordPress WP Database Backup plugin, WordPress WP-Property plugin, WordPress WPBookit plugin, WOW Pictures, WV PCA, WWBN AVideo, Xerox FreeFlow Core, Xerox printers, XSS.is, Yapi Teknik Proje, Yes24 (twice), Yinon Magal, Young Consulting LLC, Your Building Centers, Zinli, Zoomcar Holdings, and Zumpano Patricios, FL have reported hacking or compromises this month.
Apple iCloud, Cloudflare, Google Cloud, Microsoft 365 admin center, National Bank of Canada, Spectrum, Starlink, Truth Social, and X (formerly Twitter), twice, have suffered from outages this month.
Internet access throughout Angola, Egypt, Gaza, Iran (repeatedly), Iraq, Kamchatka, Russia, Kenya, Maldives, Panama, Sudan, Togo, Ukraine, and Yemen have been blocked or down for days, but not in Israel.
Last months updates broke DHCP on Windows Server, Exchange Online, Google Chrome (via Microsoft Family Safety), Microsoft Print to PDF, Nobitex, Outlook, Surface Hub v1, Veeam Recovery Orchestrator, Windows Server 2019, Windows Server Update Services (WSUS), and Windows when Easy Anti-Cheat was installed.
Intel is killing off Clear Linux OS. AOL is killing off it’s dial-up Internet service. It’s really no surprise considering phone lines don’t even exist anymore. Microsoft is killing off the Movies & TV storefront – once the apple in the eye of their online media strategy for Windows. Smarthome company goes bankrupt, new owner ransoms everyone’s house: $5000 bounty to crack firmware! Skype is dead (and hacked), there’s better options.
Ads are so much more evil than you realize. Win11 nagware is already installed on many win10 computers. The state of California sent residents’ personal health data to LinkedIn. Hidden in-chip operating systems can’t be tracked, controlled or managed – or secured.
Perplexity AI ignores website requests to not scrape them.
Apple hit with a new antitrust lawsuit by Proton over iOS monopoly
In article exposing the evils of allowing AI to access your private data, the author shows you how an “evil” AI can access your Google account data (used to feed Google’s AI), and probably wrote his draft in Microsoft Word (feeding his data to Microsoft’s AI), to publish his article on the public Internet (feeding every other AI). While I agree with the premise – don’t feed the beast – it’s such a tiny ridiculous example of how data is sucked up by third parties that use it for their own purposes. The world we live in never ceases to amaze.
Sometimes, persistence pays off.
Now back to our regularly scheduled program.
Patch Tuesday is enormous this month. The typical computer should see roughly 6.5 GB in updates today. Let’s get started.
Microsoft released 57 updates to address 119 vulnerabilities in Azure File Sync, Azure OpenAI, Azure Portal, Azure Stack, Azure Virtual Machines, Desktop Windows Manager, GitHub Copilot, Graphics Kernel, Kernel Streaming WOW Thunk Service Driver, Kernel Transaction Manager, Microsoft 365 Copilot’s Business Chat, Microsoft Brokering File System, Microsoft Dynamics 365 (on-premises), Microsoft Edge for Android, Microsoft Edge, Microsoft Exchange Server, Microsoft Graphics Component, Microsoft Office, Microsoft Office Excel, Microsoft Office PowerPoint, Microsoft Office SharePoint, Microsoft Office Visio, Microsoft Office Word, Microsoft Teams, Remote Access Point-to-Point Protocol (PPP) EAP-TLS, Remote Desktop Server, SQL Server, Storage Port Driver, Visual Studio, Web Deploy, Windows Ancillary Function Driver for WinSock, Windows Cloud Files Mini Filter Driver, Windows Connected Devices Platform Service, Windows DirectX, Windows Distributed Transaction Coordinator, Windows File Explorer, Windows GDI+, Windows Hyper-V, Windows Installer, Windows Kerberos, Windows Kernel, Windows Local Security Authority Subsystem Service (LSASS), Windows Media, Windows Message Queuing, Windows NT OS Kernel, Windows NTFS, Windows NTLM, Windows PrintWorkflowUserSvc, Windows Push Notifications, Windows Remote Desktop Services, Windows Routing and Remote Access Service (RRAS), Windows Security App, Windows SMB, Windows StateRepository API, Windows Subsystem for Linux, Windows Win32K – GRFX, Windows Win32K – ICOMP,
and MSRT. This includes security updates. A reboot is required.
Oracle released 238 security updates this quarter to address 309 vulnerabilities in 111 products.
Apple released updates for iOS 18.6, iPadOS 17.7.9, iPadOS 18.6, macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7, Safari 18.6, tvOS 18.6, visionOS 2.6, and watchOS 11.6. This includes security updates. Use Apple Software Update to install the most current versions.
iOS 18.6 is a security update. Use Settings, General, Software Update to install the most current update.
iPadOS 18.6 and 17.7.9 are security updates. Use Settings, General, Software Update to install the most current update.
watchOS 11.6 is a security update. Use the Watch app on your iPhone to install the most current version.
tvOS 18.6 are security updates. Use System, Software Update to install the most current version.
visionOS 2.6 are security updates. Use System, Software Update to install the most current version.
Google ChromeOS 138.0.7204.232 and ChromeOS LTS 138.0.7204.221 are security updates. Use Menu, Help, About to install the most current version. A reboot is required.
Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.
Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.
The release of macOS Sequoia (15.x) means that macOS Monterey (12.x) and older are no longer supported. If you can not install at least macOS Ventura (13) on your Mac then you should immediately remove your device from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.
The now-current — and final — release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. All non-LTS versions of Windows 10 other than v22H2 are now out of support, upgrade to v22H2 now. If you aren’t sure whether you are using LTS, you aren’t. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.
The now-current release of the Windows 11 (v24H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.
Windows 11 is now stable and can be upgraded to if your hardware supports it. If not, switch to Linux (Mint is nice) or replace your computer.
Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.
It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.
Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.
Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with a SaferPC Subscription and we will install updates each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com
If you’re using this hardware – these updates are for you.
AMD Adrenalin 25.8.1 is a security update.
https://www.amd.com/en/support
Display Driver Uninstaller 18.1.3.0 improves cleanup. This is not a security update.
https://www.wagnardsoft.com/forums/viewforum.php?f=5
Logitech Options 10.26.12 changes function key shortcuts and on screen display behavior. This is not a security update.
https://www.logitech.com/en-us/product/options
TP-Link Archer AX55 v1 241211 resolves several bugs. This is not a security update.
https://www.tp-link.com/us/support/download/archer-ax55/v1/#Firmware
UniFi airMAX NanoStation 5AC Loco 8.7.19 is a security update.
https://www.ui.com/download/software/loco5ac
UniFi Network Server 9.3.45 resolves several bugs. This is not a security update.
https://www.ui.com/download/releases/network-server
VIISAN OfficeCam 7.2.11 doesn’t provide a change log so should be treated as a security update.
https://www.viisan.com/en/download/type1.html
One or more of these are likely to be of interest to everyone.
Brave 1.81.131 is a security update.
https://brave.com/
Google Chrome 139.0.7258.127 is a security update.
https://www.google.com/chrome/
Microsoft Edge 139.0.3405.86 is a security update.
https://www.microsoft.com/en-us/edge/business/download
Firefox 141.0.3 is a security update.
https://www.mozilla.org/en-US/firefox/new/
Vivaldi 7.5.3735.58 is a security update.
https://vivaldi.com/
One or more of these are likely to be of interest to everyone.
Mailspring 1.16.0 adds autoconfiguration and resolves several bugs. This is a security update.
https://getmailspring.com/
Spark 3.24.7.113690 improves integration and composer, resolves several bugs. This is a security update.
https://sparkmailapp.com/
Thunderbird 141.0.0 resolves dozens of bugs. This is not a security update.
https://www.thunderbird.net/en-US/
One or more of these are likely to be of interest to everyone.
AnyDesk 9.5.11 resolves a bunch of bugs. This is not a security update.
https://anydesk.com/en/downloads
curl 8.15.0 resolves over a dozen bugs and removes older protocol support. This is not a security update.
https://curl.haxx.se/windows/
Discord August 4, 2025 improves search and resolves dozens of bugs. This is not a security update.
https://discord.com/download
Dropbox 230.4.8797 resolves a couple bugs. This is not a security update.
https://www.dropbox.com/
FileZilla Client 3.69.3 is a security update.
https://filezilla-project.org/
FileZilla Server 1.10.5 is a security update.
https://filezilla-project.org/
FreeFileSync 14.4 updates libraries. This should be treated as a security update.
https://www.freefilesync.org/download.php
Google Drive 112.0 resolves a couple bugs. This is not a security update.
https://drive.google.com/start
MeshCentral 1.1.48 is a security update.
https://meshcentral.com/info/downloads.html
Microsoft Teams 1.8.00.21151 improves notification controls, adds custom dictionary support, and enables attribution by default. This is not a security update.
https://teams.microsoft.com/downloads
Nextcloud Server 31.0.7 resolves dozens of bugs. This is not a security update.
https://nextcloud.com/
Npcap 1.83 is a security update.
https://nmap.org/npcap/
OneDrive 25.130.0706.0004 improves reliability and performance. This is not a security update.
https://support.microsoft.com/en-us/onedrive
Pocketnet-Core 0.22.18 improves logging and resolves several bugs. This is not a security update.
https://pocketnet.app/
Rclone 1.70.3 resolves several bugs. This is not a security update.
https://rclone.org/
Signal 7.65.0 improves emoji access. This is not a security update.
https://signal.org/download/windows/
Signal (Android) 7.51.2 improves performance. This is not a security update.
https://signal.org/android/apk/
Syncthing 2.0.0 is a major update. This version switches the backend to SQLite, improves logging, adds Docker support, and resolves over a dozen bugs. This is not a security update.
https://syncthing.net/
Telegram 6.0.2 improves stability, public searc, gifting and resolves several bugs. This is not a security update.
https://telegram.org/
WinSCP 6.5.3 is a security update.
https://winscp.net/eng/index.php
Zoom 6.5.9.11873 is a security update.
https://zoom.us/
These are unlikely to be of interest to most people.
3tene 4.0.19 updates libraries. This is a security update.
https://en.3tene.com/
Bitwig Studio 5.3.12 resolves a couple bugs. This is not a security update.
https://www.bitwig.com/download/
darktable 5.2.1 resolves almost a dozen bugs, improves stability and compatibility. This is not a security update.
https://www.darktable.org/
Plex Home Theater 1.71.1.346 improves stability. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app
Plex Media Server 1.42.1.10060 is a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server
Wave Cast 1.0.1 improves layout and device selection. This is not a security update.
https://marketplace.elgato.com/product/wave-cast-2c92e60c-8508-4d5c-8b5f-8d02029b881c
These are unlikely to be of interest to most people.
Minecraft Server (Bedrock) 1.21.100.7 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock
Minecraft Server (Java) 1.21.8 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server
Nintendo Switch 20.3.0 improves stability. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989
PS5 2025.722 improves stability. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/
One or more of these are likely to be of interest to most people.
Adobe Animate 23.0.13 and 24.0.10 are security updates.
https://helpx.adobe.com/security/products/animate/apsb25-73.html
Adobe Commerce 2.4.4-p15, 2.4.5-p14, 2.4.6-p12, 2.4.7-p7, 2.4.8-p2, and 2.4.9-alpha2 are security updates.
https://helpx.adobe.com/security/products/magento/apsb25-71.html
Adobe Commerce B2B 1.3.3-p15, 1.3.4-p14, 1.4.2-p7, 1.5.2-p2, and 1.5.3-alpha2 are security updates.
https://helpx.adobe.com/security/products/magento/apsb25-71.html
Adobe Dimension 4.1.4 is a security update.
https://helpx.adobe.com/security/products/dimension/apsb25-84.html
Adobe FrameMaker 2020.9 and 2022.7 and security updates.
https://helpx.adobe.com/security/products/framemaker/apsb25-83.html
Adobe Illustrator 28.7.9 and 29.7 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb25-74.html
Adobe InCopy 19.5.5 and 20.5 are security updates.
https://helpx.adobe.com/security/products/incopy/apsb25-80.html
Adobe InDesign ID19.5.5 and ID20.5 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb25-79.html
Adobe Photoshop 25.12.4 and 26.9 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb25-75.html
Adobe Reader DC 25.001.20623 resolves several bugs and improves compatibility. This is not a security update.
https://get.adobe.com/reader
Adobe Substance 3D Modeler 1.22.2 is a security update.
https://helpx.adobe.com/security/products/substance3d-modeler/apsb25-76.html
Adobe Substance 3D Painter 11.0.3 is a security update.
https://helpx.adobe.com/security/products/substance3d_painter/apsb25-77.html
Adobe Substance 3D Sampler 5.1.0 is a security update.
https://helpx.adobe.com/security/products/substance3d-sampler/apsb25-78.html
Adobe Substance 3D Stager 3.1.4 is a security update.
https://helpx.adobe.com/security/products/substance3d_stager/apsb25-81.html
Adobe Substance 3D Viewer 0.25.1 is a security update.
https://helpx.adobe.com/security/products/substance3d-viewer/apsb25-72.html
Audacity 3.7.5 adds partial ARM support, updates libraries and resolves several bugs. This is not a security update.
https://www.audacityteam.org/download/
Calibre 8.8.0 resolves several bugs. This is not a security update.
https://calibre-ebook.com/
Krita 5.2.11 resolves several bugs. This is not a security update.
https://krita.org/en/download/
LibreOffice 25.2.5 resolves over 60 bugs. This is not a security update.
https://www.libreoffice.org/
Magento Open Source 2.4.5-p14, 2.4.6-p12, 2.4.7-p7, 2.4.8-p2, and 2.4.9-alpha2 are security updates.
https://helpx.adobe.com/security/products/magento/apsb25-71.html
Manager 25.8.3.2541 doesn’t provide a current change log so should be treated as a security update.
https://www.manager.io/
Notepad++ 8.8.5 has changed their publishing practice to sign their binaries using a self-signed certificate along with a new certificate authority they are encouraging users to install. This is a security update – not just to publish using their own certificate – but to resolve two separate security issues. Again, this is a security update.
https://notepad-plus-plus.org/
Paint.net 5.1.9 adds translations and resolves several bugs. This is not a security update.
https://www.getpaint.net/
PDF-XChange Editor 10.6.1.397 is a security update.
https://www.pdf-xchange.com/product/pdf-xchange-editor
These are for specific Linux flavors and alternative operating systems and, sadly, are unlikely to be of interest to most people.
ChromeOS 137.0.7151.137 and ChromeOS 138.0.7204.178 are security updates.
https://chromereleases.googleblog.com/search/label/Stable%20updates+ChromeOS
iOS 18.6 is a security update.
https://support.apple.com/kb/HT204204
iPadOS 18.6 is a security update.
https://support.apple.com/kb/HT204204
macOS 15.6 is a security update.
https://support.apple.com/kb/HT201541
Tails 6.18 is a security update.
https://tails.net/install/download/index.en.html
tvOS 18.6 is a security update.
https://support.apple.com/kb/HT202716
watchOS 11.6 is a security update.
https://support.apple.com/kb/HT204641
One or more of these is likely to be of interest to most people.
.NET Runtime 9.0.8 is a security update.
https://dotnet.microsoft.com/en-us/download/dotnet
Java 8u461 is a security update.
https://www.java.com/en/download/manual.jsp
DNSQuerySniffer 1.97 adds a button to clear all current items. This is not a security update.
https://www.nirsoft.net/utils/dns_query_sniffer.html
Hashcat 7.0.0 is a major update, adding several new hash modes and constructs, as well as Docker support, end-point improvements, hardware support, resolves dozens of bugs, and more. This is a massive feature upgrade. This is a security update.
http://hashcat.net/hashcat/#downloadlatest
HTTP Toolkit 1.22.0 doesn’t provide a change log so should be treated as a security update.
https://httptoolkit.tech/
KeePass 2.59 improves performance and resolves several bugs. This is not a security update.
https://keepass.info/
OpenSSL 3.5.2 is a security update.
https://slproweb.com/products/Win32OpenSSL.html
ProtonVPN 4.2.1 resolves a couple bugs. This is not a security update.
https://github.com/ProtonVPN/win-app/releases/latest
RogueKiller 16.2.4 resolves a couple bugs and improves stability. This is not a security update.
https://www.adlice.com/download/roguekiller/
Stinger 13.0.0.429 adds new detections. This is not a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx
uBlock Origin 1.65.0 resolves a dozen bugs. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest
These are unlikely to be of interest to most people.
Greenshot 1.3.296 introduces user/system installation options. This is not a security update.
https://github.com/greenshot/greenshot/releases/latest
Open Broadcaster Software 31.1.2 resolves several bugs. This is not a security update.
https://obsproject.com/
SnagIt 25.3.0 improves step capture, Camtasia integration, and resolves over a dozen bugs. This is not a security update.
https://www.techsmith.com/screen-capture.html
These are unlikely to be of interest to most people.
DVDFab 13.0.4.6 adds support for new encodings and resolves a couple bugs. This is not a security update.
https://www.dvdfab.cn/download.htm
HandBrake 1.10.0 updates libraries and resolves dozens of bugs. This is not a security update.
https://handbrake.fr/
StreamFab 6.2.4.8 improves parsing and resolves dozens of bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm
UniFab 3.0.2.4 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm
One or more of these are likely to be of interest to most people.
Zotero 7.0.22 resolves several bugs. This is not a security update.
https://www.zotero.org/
These are unlikely to be of interest to most people.
1Password for Mac 8.11.4 improves localization, notifications, and resolves several bugs. This is not a security update.
https://1password.com/downloads/
7-Zip 25.01 is a security update.
https://www.7-zip.org/
7-Zip cmd 25.01 is a security update.
https://www.7-zip.org/
AOMEI Partition Assistant 10.8.2 resolves several bugs. This is not a security update.
https://www.diskpart.com/
Beyond Compare 5.1.2.31185 resolves several bugs. This is a security update.
https://www.scootersoftware.com/download
Bitwarden 2025.7.0 resolves several bugs. This is not a security update.
https://bitwarden.com/
CCleaner 6.38.11537 improves chromium cleaning. This is not a security update.
https://www.ccleaner.com/
Cygwin 3.6.4 resolves several bugs. This is not a security update.
https://cygwin.com/
DesktopOK 11.94 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK
dnGrep 4.5.55.0 updates libraries. This is not a security update.
https://dngrep.github.io/
Etcher 2.1.4 resolves several bugs. This is not a security update.
https://www.balena.io/etcher/
Everything Toolbar 2.0.3 resolves several bugs. This is not a security update.
https://github.com/stnkl/EverythingToolbar/
FoneTool 3.1.0 improves parsing and resolves several bugs. This is not a security update.
https://www.fonetool.com/download.html
GoodSync 12.9.5 resolves several bugs. This is a security update.
https://www.goodsync.com/
grepWin 2.1.11 resolves a replacement bug. This is not a security update.
https://github.com/stefankueng/grepWin/releases/latest
Homedale 2.20 resolves a couple bugs. This is not a security update.
https://www.the-sz.com/products/homedale/
HWiNFO 8.30 adds support for new hardware and improves compatibility. This is not a security update.
https://www.hwinfo.com/download/
IsMyHdOK 4.24 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK
MobileFileSearch 1.50 adds encoding support. This is not a security update.
https://www.nirsoft.net/utils/mobile_device_file_search.html
MPAM 1.435.61.0 updates definitions. This is not a security update.
https://www.microsoft.com/en-us/wdsi/defenderupdates
NTLite 2025.08.10552 improves component controls and resolves a couple bugs. This is not a security update.
https://www.ntlite.com/download/
OSForensics 11.1.1010 is a security update.
https://www.osforensics.com/download.html
osquery 5.18.1 resolves several bugs. This is not a security update.
https://osquery.io/downloads
PSAppDeploy 4.1.0 is a major update introducing SYSTEM deployment options, dozens of new and improved functions and resolves several bugs. This is not a security update.
https://psappdeploytoolkit.com/
RoboForm 9.7.9 resolves a couple bugs. This is not a security update.
https://www.roboform.com/
SearchMyFiles 3.35 adds encoding support and a command-line option to select specific columns. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html
TraceRouteOK 3.49 improves testing and updates language support. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/TraceRouteOK
WinGet 1.11.430 removes 32-bit ARM support, adds DSCv3 support, and resolves a couple bugs. This is not a security update.
https://github.com/microsoft/winget-cli/releases/latest
WinRAR 7.13 is a security update.
https://www.rarlab.com/
WinScan2PDF 9.39 improves testing and updates language support. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF
These are unlikely to be of interest to most people.
Android Studio 2025.1.2.11 resolves several bugs. This is not a security update.
https://developer.android.com/studio
cx_Freeze 8.4 updates libraries and resolves dozens of bugs. This is not a security update.
https://cx-freeze.readthedocs.io/en/latest/index.html
GDevelop 5.5.238 adds AI side panel and resolves several bugs. This is not a security update.
https://gdevelop.io/download
GitHub Desktop 3.5.2 resolves several bugs. This is not a security update.
https://desktop.github.com/
Go 1.24.6 is a security update.
https://go.dev/
Inno Setup 6.5.0 adds commercial licensing, dozens of new features, including improved encryption and compression and signature verification. This is a security update.
https://www.jrsoftware.org/isdl.php
Microsoft Visual C++ 2022 Redistributable 14.44.35211.0 is a security update.
https://learn.microsoft.com/en-us/cpp/windows/latest-supported-vc-redist
Node.js 20.19.4 is a security update.
https://nodejs.org/en/
Node.js 22.18.0 is a security update.
https://nodejs.org/en/
Node.js 24.5.0 is a security update.
https://nodejs.org/en/
Python 3.13.6 is a security update.
https://www.python.org/downloads/
SQLite 3.50.4 resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html
Visual Studio Code 1.103 resolves several bugs. This is not a security update.
https://code.visualstudio.com/
WinMerge 2.16.50 updates libraries and resolves several bugs. This is a security update.
https://winmerge.org/
These are unlikely to be of interest to most people.
VirtualBox 7.1.12 is a security update.
https://www.virtualbox.org/wiki/Downloads
These are likely to be of interest only to web developers.
Coppermine Gallery 1.6.27 improves compatibility and resolves several bugs. This is not a security update.
https://coppermine-gallery.net/
HumHub 1.17.3 resolves several bugs. This is not a security update.
https://www.humhub.com/en
MAC Vendors 25-08-12 updates definitions. This is not a security update.
https://maclookup.app/
Piwigo 15.6.0 resolves a couple bugs. This is not a security update.
https://piwigo.org/
YOURLS 1.10.2 changes container port defaults and resolves several bugs. This is not a security update.
https://yourls.org/
WordPress 6.8.2 resolves dozens of bugs. This is not a security update.
https://wordpress.org/
Antispam Bee 2.11.8 improves documentation. This is not a security update.
https://wordpress.org/extend/plugins/antispam-bee/
Contact Form 7 6.1.1 is a security update.
https://wordpress.org/extend/plugins/contact-form-7/
Duplicator 1.5.13.1 resolves several bugs. This is not a security update.
https://wordpress.org/plugins/duplicator
Postie 1.9.70 improves draft support and resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/postie/
Sucuri Security 2.3 provides several cosmetic improvements. This is not a security update.
https://wordpress.org/extend/plugins/sucuri-scanner/
WP Add Custom CSS 1.2.0 improves performance. This is not a security update.
https://wordpress.org/extend/plugins/wp-add-custom-css/
That’s all for now folks. Keep it clean out there. 😉
Regards,
Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/