In this episode of the PortalFuse Security Podcast, we break down Microsoft’s February 2025 Patch Tuesday updates, covering the most critical vulnerabilities, security patches, and their impact on organizations and end-users.

🛠 Key Topics We Cover:

Join us as we analyze what’s fixed, what’s at risk, and what actions you should take now to keep your systems secure. Whether you’re an IT pro, security enthusiast, or just keen to stay ahead of the latest threats, this episode is packed with valuable insights to keep your environment protected.

🔔 Subscribe now to stay updated on the latest security trends and Microsoft patch releases!

#PortalFuse #PatchTuesday #Cybersecurity #MicrosoftUpdates #SecurityPodcast

In this episode, we dive into the fascinating evolution of software management—tracing the journey from the pioneering Linux package managers to Microsoft's modern Windows Winget. Join us as we explore how tools like APT, YUM, and Pacman revolutionized software installation and dependency management on Linux, and how those innovations paved the way for a more streamlined, secure, and automated experience on Windows.

We'll discuss:

Whether you’re a Linux aficionado, a Windows enthusiast, or just curious about how these systems work behind the scenes, this episode offers insights and engaging discussions about the past, present, and future of software distribution.

Tune in to understand how a command-line revolution is reshaping the way we install and maintain our software—and what that means for the future of computing.

Subscribe now on YouTube and join the conversation!

From Linux Package Managers to Windows Winget: The Evolution of Software Distribution | CheckYourLogs.Net

In this episode, we dive into a blog article written by one of our founders Kevin Kaminski, The Evolving Windows Application Deployment Landscape: Embracing the MSIX Era, and explore how MSIX is transforming Windows application management.

Join us as we review the key insights from the article—from how MSIX simplifies installations and updates, to its robust security features and seamless integration with modern management tools like Microsoft Endpoint Manager. We also discuss the flexibility it offers for both legacy Win32 applications and modern software, including its role in Windows S Mode environments.

Tune in as we break down:

Whether you're a seasoned IT pro or just curious about the future of Windows deployment, this episode offers valuable insights to help you navigate the evolving landscape of application packaging.

The Evolving Windows Application Deployment Landscape: Embracing the MSIX Era | CheckYourLogs.Net

Check it out, a special episode from Checkyourlogs.net where we unravel the complexities of upgrading to Windows 11 with a proactive roadmap designed to ensure a seamless transition. In this episode, we sit down with seasoned experts—including insights inspired by our heritage at PortalFuse Inc.—to explore key strategies, best practices, and actionable steps that empower IT teams to embrace the new operating system with confidence. Whether you're just beginning your upgrade journey or already deep in transition, this discussion offers the clarity and direction you need to navigate today’s dynamic digital landscape. Tune in to learn how to mitigate risks, anticipate challenges, and leverage Windows 11's enhanced security and performance for a future-ready IT infrastructure.

Podcast Title: PortalFuse Security Update – Chromium Vulnerability, Windows 11 Enhancements & Windows 10 Upgrade Fix

In this week’s PortalFuse Security Update podcast, we dive into the critical security developments that every IT administrator and cybersecurity professional needs to know. We start with an in-depth look at the newly patched Chromium use-after-free vulnerability (CVE-2025-0762) in Microsoft Edge’s DevTools—a flaw that could have allowed attackers to execute arbitrary code if left unpatched. Learn how updating to Edge version 132.0.2957.140 can protect your enterprise systems from potential exploits.

Next, we explore the latest Windows 11 update (KB5050092) released on January 29, 2025. Discover the key enhancements that improve your desktop experience—from refined taskbar previews and smoother animations to better file sharing and virtual memory management. We also cover the performance boosts in Task Manager, Remote Desktop, and USB device compatibility, alongside fixes that enhance the reliability of NFC readers and printers.

Finally, we address a common hurdle faced by Windows 10 users: the Upgrade Assistant getting stuck at 99%. Our episode provides a clear, step-by-step workaround to get your upgrade back on track, ensuring that your system continues to receive the latest updates without disruption.

Tune in for essential security insights, actionable troubleshooting tips, and a comprehensive overview of the latest system enhancements to keep your IT environment secure and efficient. Stay informed, stay secure, and join us for a deep dive into modern IT management best practices.

Listen now on your favorite podcast platform and stay ahead of the curve with PortalFuse Security Update!

PortalFuse Weekly Security Report Podcast – January 2025 Updates

In this week's episode, we break down the most critical security updates for Microsoft Edge, Windows 10, and Windows 11. Key highlights include:

🔹 Microsoft Edge Vulnerabilities: Urgent updates required for CVE-2025-21262, CVE-2025-0612, and CVE-2025-0611, which could allow UI spoofing and arbitrary code execution.

🔹 Windows 10 & 11 Fixes: Latest KB5050081 and KB5050758 updates bring improvements, including Snipping Tool crash fixes, USB device compatibility updates, and Windows Kernel security enhancements to block vulnerable drivers.

🔹 Known Issues & Workarounds: Troubleshooting OpenSSH service failures, Windows Event Viewer errors, and Citrix update conflicts to help IT teams mitigate disruptions.

🔹 Final Security Recommendations: The latest patching insights and best practices to keep your systems secure and reduce the risk of exploitation.

Stay ahead of the latest cybersecurity threats—tune in now!

In this week’s PortalFuse Weekly Security Report, we delve into two high-severity vulnerabilities shaking up the cybersecurity landscape.

First, we examine CVE-2025-21325, a critical flaw in Windows Secure Kernel Mode that allows an attacker to escalate privileges by manipulating page table data. We’ll unpack how this vulnerability leads to complete loss of confidentiality, integrity, and availability, and why immediate patching on Windows 10, Windows 11, and Windows Server 2025 systems is essential.

Next, we explore recent security holes in Microsoft Edge stemming from its reliance on the Chromium engine. Notably, CVE-2025-21185 can grant unauthorized access to sensitive information via crafted URLs. We’ll also break down the technical details of related Chromium vulnerabilities, from out-of-bounds memory access in the V8 engine to insufficient data validation in Extensions.

Join us as we provide expert guidance on mitigating these threats, including the latest Microsoft KB updates and Edge version 132.0.2957.115. We’ll share best practices for patch management, browser security policies, and proactive monitoring to keep your organization safe in an evolving threat environment.

Tune in and stay informed with PortalFuse Weekly Security Report!

The January 2025 security updates address several critical vulnerabilities, categorized as follows:

Elevation of Privilege Vulnerabilities:

Other vulnerabilities include issues in the Microsoft Brokering File System and Windows Virtualization-Based Security.

Remote Code Execution (RCE) Vulnerabilities:

Additional RCE vulnerabilities could lead to significant damage if left unpatched.

Information Disclosure Vulnerabilities:

Security Feature Bypass Vulnerabilities:

Denial of Service (DoS) Vulnerabilities:

Join us as we discuss the latest CVEs, how they affect you and how to stay protected!

As the holiday season approaches we managed to break the reports after adding some additional functionality to our AI model. A week late we bring you the final PortalFuse Weekly Security Update of 2024 as no CVEs were detected for this week.

This week’s report focuses on critical vulnerabilities affecting Microsoft Edge, derived from the Chromium Open Source Software (OSS). Let us dive into the details and ensure your systems are secure during this festive period.

This week’s report highlights four critical vulnerabilities affecting Microsoft Edge, all stemming from Chromium’s codebase. The vulnerabilities include memory handling issues such as out-of-bounds writes, use-after-free conditions, and type confusion, all of which could lead to arbitrary code execution. These issues were promptly addressed with updates to Microsoft Edge version 131.0.2903.112. While serious, they are standard for high-impact CVEs and demonstrate the ongoing need for vigilance in software maintenance.

For more information, you can access the full report or listen to our audio podcast summarizing this week’s updates. 

This week’s vulnerabilities emphasize the critical need for prompt action in applying updates and addressing software flaws to maintain a robust security posture. Microsoft Edge version 131.0.2903.112 addresses all the listed CVEs, making it essential to update immediately.

Thank you for following our weekly updates throughout 2024. As we close the year, we wish you a Merry Christmas for your friends and family! Stay secure and enjoy the festivities.

A quiet week so far for the holidays. Two critical security vulnerabilities affecting Microsoft Edge, stemming from the Chromium project, were addressed this week.

Two critical security vulnerabilities affecting Microsoft Edge, stemming from the Chromium project, were addressed this week. These vulnerabilities underscore the importance of timely updates to ensure system security and user safety. With these fixes in place, users can mitigate significant risks posed by these flaws.

Both vulnerabilities illustrate the interconnected nature of software ecosystems like Chromium-based browsers. Proactive updates are critical in minimizing exposure to such risks.

We then turn to another significant development—the resolution of issues with WPF applications using IMEs. We also cover open issues with dual boot Linux systems and the WinApp SDK.