Windows security topics

Désinscription Windows ESU (Windows 10)

Cléon — Mon, 02 Mar 2026 19:29:05 GMT

Bonjour,

A la suite de problème sur mon matériel à la suite d'une mise à jour de sécurité (KB5071546) du programme de mise à jour de sécurité étendu (Windows ESU), j'ai fait une demande sur le support pour qu'on me désinscrive de l'ESU.

Le billet est le numéro 7098812524

Après échange on m'a indiqué que je pouvais le faire depuis mon compte Microsoft.

Mais sur mon compte Microsoft, je ne trouve pas d'onglet dans la partie "Abonnement" qui se réfère à l'ESU et donc je n'arrive pas à me désinscrire par mes propres moyens.

Pouvez-vous m'aider, s'il vous plaît ?

Je suis à disposition si vous avez besoin d'informations complémentaires.

SmartScreen false positives

abareplace — Thu, 26 Feb 2026 13:01:51 GMT

Hello,

I'm a developer of https://www.abareplace.com/ Unfortunately, Microsoft SmartScreen blocks a recent version of my application and multiple attempts to contact Microsoft about this case were in vain. The app is clean on VirusTоtаl, has a valid digital signature, and is published to MS Store. However, users see the SmartScreen warning when trying to run the installer downloaded from my website:

Windows protected your PC
Windows Defender SmartScreen prevented an unrecognized app from starting. Running this app might put your PC at risk.

Other developers report exactly the same problem and it became worse recently. It has no sense from the security point of view to block something that is already published on Microsoft Store.

I submitted a ticket to https://www.microsoft.com/en-us/wdsi/filesubmission?persona=SoftwareDeveloper one month ago. The ticket was "In progress" for many weeks, then was silently closed. I opened a new ticket one week ago and it's still "in progress". I also submitted the file via Report this file as safe > I am the owner or representative of this website and I want to report an incorrect warning about it button in Microsoft Edge several times, but received no confirmation email that you should receive after submitting the form.

I know that the times when Steve Ballmer shouted: "Developers! Developers! Developers!" are long gone, but can Microsoft make live at least a bit easier to independent software vendors? Thank you.

Hyper-V Custom Secureboot Keys

MikeC135 — Tue, 17 Feb 2026 05:33:41 GMT

I'm looking to do local development work with secure boot and was wondering if anyone has any idea how to add custom secure boot keys to Windows 11 Enterprise Hyper-V?

Windows update made dell laptop into a brick

nerdyplayer — Fri, 30 Jan 2026 13:08:08 GMT

Last security update on Jan 13th broke my laptop.

Every program keeps freezing and doesn't do anything. Even when I open task manager it may run for a minute but soon it will freeze, and can't even end task.

Only thing that is working is my browser. Yesterday I managed to reinstall windows using a USB and it was working again. While i was away, it forced an update and once again the same issues arise.

laptop is too old to install 11, and going to try and reinstall windows again.

There a way I can turn off the windows 10 update before this happens again?

there is a patch, but i cannot install it. When it automated update, it bricks again and i can't install the most recent patch. it's in a never ending loop of hoping it doesn't auto update when i leave the computer on, or reinstall the OS with a usb.

Dell inspiron 15 7559

Error during scanning for Virus

unapulitan — Fri, 21 Nov 2025 12:06:35 GMT

Good Day, I've problem during the scanning for virus

I started the complete scanning but the timer remain on 00.00 and 0 file were checked

Also i can't eneble "real time protection"

Any way that i can fix this?

Thanks

Local user management password policy inconsistent behaviour

ssentanoe — Tue, 18 Nov 2025 05:51:18 GMT

Hi all,

Maybe some of you can enlighten me regarding the windows 10 + 11 local user password policy.

The part that I want to question is "not contain parts of the user's full name".

Then, let's say I want to create a new user with the following detail:

Fullname: Max Mustermann
Username: TESTUSER1
Pass: MaxPassword12345678

When I try to create that user via cmd or powershell, either using "net" or "New-LocalUser", it will not succeed and it will show the error "the password does not meet complexity....", which is expected.

However, if I try to create the same user with the same credential via lusrmgr, it will be created without any error.

So, why there is a different behaviour between lusrmgr and CLI?

Then, if we have the existing user, and try to change the password of that user via lusrmgr, and the password contains the part of the user's full name, then the error will be thrown as expected.

So, why is it only affect the lusrmgr and only when we create a new user?

Is this a bug?

Thanks!

Microsoft account linked to a deleted e-mail address

DBR97 — Sun, 24 Aug 2025 08:50:20 GMT

I'm trying to help a friend who has a Microsoft account which is linked to an e-mail address that was deleted some years ago.

He had a recent problem on his laptop when Windows 11 crashed. He went into the troubleshooting option and eventually selected the recovery option and it rebooted ok. Interestingly, when we looked at accounts he was able to select the option to login to his administrator account and could see all details like his 365 subscription etc.

The problem is he doesn't remember his Microsoft account password and as the e-mail account linked to it is an old one that was deleted a few years ago, he is unable to receive an e-mail with the authentication code to change his password and then change the e-mail address etc. We tried the other options where it asked lots of questions like previous passwords and even the card number for his subscription and when it reached the end, there was a message saying that facility isn't currently available.

We can't find a telephone number to speak to someone at Microsoft support and also don't know any support e-mail address. When he tried to contact and use a chat facility it expects him to login, but he doesn't know his password so that option wasn't helpful. We are now in a situation where we don't know how to resolve the problem.

One final option which he isn't keen on is to create a new Microsoft account,cancel his credit card and get a new number, so that way they won't charge him for the 365 renewal and then create a new Microsoft account and set up a new subscription. That is one way to work around the problem because he can't find any way to resolve the problem and so far we have found it impossible to actually speak to someone in support.

Any advice on this will be appreciated.

Thank you

David

Mangled email address (on Microsoft's side, not ours)

os65k — Wed, 25 Jun 2025 17:54:14 GMT

Ok awhile back when our company was using both Google products and Microsoft products, I already had a Google account and was told that I could use both my Microsoft account and my Google account for work (back when both companies integrated their services seamlessly). So, in order to login to both accounts simultaneously I set my default email account to my Google Account and since then everythins worked. Up until recently. Since where I live happens to be now near a Microsoft Data Center, our company recently decided to switch entirely to Microsoft products. Well, since we are now using multi-factor (as in more than dual factor) authorization I have been having issues logging into my work account. I was told by my IT Administrator that since Microsoft mangled my original (Hotmail) email account when I made my Google (Gmail) email account my primary, is has been the source of the issues with our multi-factored proxy / VPN (my IT admins words not mine). I tried contacting and talking directly to Microsoft support and was told that I needed to create a new email account (which I will not do because I have years of work related documents associated both with my Microsoft and Google accounts) because Microsoft is unwilling to go back and fix THEIR MISTAKE. I see no security reason why I cannot switch my primary email account from Google back to Microsoft (so that I can properly unlink my Google account without losing information from either account).

WDAC: Unable to deploy Vulnerable driver blocklist

s_emangard — Wed, 28 May 2025 11:43:25 GMT

Hello,

I tried to deploy the Microsoft Vulnerable driver blocklist with an Intune WDAC policy but i always faced an error using the XML provided by Microsoft : https://aka.ms/VulnerableDriverBlockList

MS doc: https://learn.microsoft.com/en-us/windows/security/application-security/application-control/app-control-for-business/design/microsoft-recommended-driver-block-rules

Thanks and regards

Windows Security blocked by local GPO settings

John2k — Wed, 21 May 2025 16:41:43 GMT

Has anyone encountered this issue after applying the CIS Windows 11 Enterprise security settings?

I have Windows 11 24H2 LTSC Enterprise 2024. Trying to create a golden image for deployment.

Thanks in advance for your help

John

2FA in Owa 2016 that authenticates via ADFS and publishes via WAP

lcc7313 — Thu, 08 May 2025 16:39:41 GMT

Hello! The company's Security department wants to implement a ManageEngine product to enable 2FA on OWA.
Our infrastructure is an Exchange 2016 that authenticates with ADFS and publishes to a WAP server.
The ManageEngine provider only says that a PowerShell can be run on the Exchange server, but this doesn't work.
Is this product compatible with this infrastructure? Or should I use another software to implement 2FA?
I hope you can clarify this question for me.
Thank you very much and best regards.

[On demand] The latest and greatest in the world of Windows LAPS

Heather_Poulsen — Thu, 06 Mar 2025 19:21:43 GMT

Windows LAPS continues to evolve. Find out what's new - from automatic account management and passphrases to disaster recovery and bug fixes.

Watch The latest and greatest in the world of Windows LAPS – now on demand – and join the conversation at https://aka.ms/LatestInLAPS.

To help you learn more, here are the links referenced in the session: