Ellwood Technologies Ltd

22/10/2025

Microsoft’s October 2025 Patch Tuesday fixed 175+ vulnerabilities, including 6 zero-days—2 actively exploited. Windows 10 support officially ends. Time to update! 🔒🖥️

Here’s a quick breakdown:

🛠️ Patch Volume & Severity

• 175–193 vulnerabilities addressed across Microsoft products
• 6 zero-day flaws, with 2 actively exploited in the wild
• 9 critical-severity vulnerabilities, including remote code ex*****on risks

🚨 Zero-Day Highlights

• Exploits targeted Windows drivers, remote access services, and WSUS infrastructure
• Public disclosure of 2 zero-days, with 4 already being exploited

📉 Windows 10 Reaches End of Life

• This update marks the final Patch Tuesday for Windows 10—no more security updates unless you’re on extended support

🧠 Vulnerability Breakdown

• 80 Elevation of Privilege
• 31 Remote Code Ex*****on
• 28 Information Disclosure
• 11 Security Feature Bypass
• 11 Denial of Service
• 10 Spoofing

🧩 Other Notables

• 14 vulnerabilities patched in Microsoft Edge (Chromium)
• Azure Linux (Mariner) received separate fixes

🔧 What to Do

• IT admins should prioritize patching systems vulnerable to active exploits.
• Regular patch cycles are recommended—no need to expedite unless you’re exposed

02/10/2025

PS4 Firmware Update 13.02 – October 2025 🛠️

Heads up, PlayStation fans! Sony just rolled out PS4 system update 13.02.

It’s a minor patch focused on security fixes, aimed at tightening up vulnerabilities and cracking down on jailbreaking.
No new features or UI changes this time around, but it’s all about keeping your console safe and stable for online play.

✅ Make sure to update and stay protected!

01/10/2025

📱✨ Galaxy Z Fold5 Users—Heads Up! ✨📱
Samsung has just rolled out a fresh software update for the SM-F946B (EU variant), and it’s worth grabbing!

🔧 What’s new:
• Improved device stability
• Bug fixes for smoother performance
• October 2025 security patch
• Enhanced system reliability

Keep your foldable running like a dream—update now and enjoy the boost! 🔄💪
👇 Drop a comment if you’ve noticed any changes or improvements!

GalaxyZFold5

01/10/2025

🛡️ PS5 Firmware 25.06-12.02.00 is live!

No flashy features this time — just solid security upgrades to keep your console locked down 🔐

✅ Backend stability
✅ Vulnerability patches
❌ No new UI or gameplay tweaks

Stay updated, stay secure.

30/09/2025

🚨 iOS 26.0.1 and 18.7.1 is here!

🔧 Fixes dropped calls, flaky Wi-Fi, and blank app icons

📸 Resolves camera glitches on iPhone 17 series

🛡️ Patches a critical FontParser security flaw (CVE-2025-43400)

📶 Better cellular stability + smoother VoiceOver

📱 Update now for a cleaner, safer experience!

iOS2601

14/06/2025

Sometimes, it's just that easy...

14/05/2025

With more and more stories like this, it's clear that just having SMS based 2 factor authentication on your accounts isn't enough.

It's not as difficult as you may think to clone a SIM card, or for it to be replaced without you knowing.

Of course, having a strong and complex password is a part of it too, but these can still be bypassed if SMS 2FA is your recovery method.

Setting up hardware or app based multi factor authentication will prevent SIM Jacking, but where possible, utilising FIDO keys or PassKeys will leave your accounts in the most secure state available.

Spend a little time researching what security options are available to you on all your accounts to ensure you aren't vulnerable to these kind of attacks.

Something's gone wrong and we've got some technical issues at our end. Please take a look at on Twitter for the most up-to-date information from us.

14/03/2025

Is your PC or laptop slowing you down because of an old style mechanical hard drive?

Why not have it cloned over to a much faster Solid State Drive?

This can increase your startup time from 4 minutes to under 45 seconds!

Cloning service available for £40!

Contact us for more information.

24/08/2024

August Patch Tuesday Updates: What You Need to Know

It's a bit late, I know, but here is your Patch Tuesday overview post.

August's Patch Tuesday brought a significant wave of updates from Microsoft, addressing a variety of security vulnerabilities and system issues. Here's a summary of the key updates and fixes:

Key Highlights

1. Total Updates:
Microsoft released 90 updates this month, covering a range of products and services.
2. Zero-Day Vulnerabilities:
The updates include fixes for six actively exploited zero-day vulnerabilities. These zero-days are critical as they were being exploited in the wild, posing immediate risks to users.
3. Windows and Office:
Five of these zero-days affect Windows (CVE-2024-38178, CVE-2024-38193, CVE-2024-38213, CVE-2024-38106, CVE-2024-38107), and one affects Microsoft Office (CVE-2024-38189).

Notable Fixes

1. Remote Desktop Session Host (RDSH):
An issue where users could not connect to the RDSH due to win32kbase.sys stopping its response was addressed.
2. Windows Defender Application Control (WDAC):
A memory leak issue that could exhaust system memory over time was fixed.
3. Protected Process Light (PPL) Protections:
A bypass vulnerability in PPL protections was resolved.
4. BitLocker:
A known issue where a BitLocker recovery screen would appear on startup after the July update was addressed.
5. DNS Server Security:
Enhancements were made to harden DNS server security, addressing CVE-2024-37968.

Additional Updates

- Windows 10:
The KB5041580 cumulative update for Windows 10 22H2 and 21H2 included 14 changes and fixes, such as BitLocker fixes and important security updates.
- Microsoft 365 Defender:
Issues with the Network Detection and Response (NDR) service were noted, with ongoing efforts to resolve them.

Recommendations

Given the critical nature of some of these vulnerabilities, it's highly recommended to apply these updates as soon as possible to ensure your systems are protected. The updates not only address security flaws but also improve overall system stability and performance.

Stay safe and keep your systems updated!

24/07/2024

So as a few of you have probably seen/heard/been affected by, there was a small IT incident on July 19th (which according to Father Ted, is when the Ice Age ends 👍).

A lot.of fingers are being pointed at Microsoft for the issue, although this isn't strictly true... There was actually 2 incidents that took place at the same time.

Microsoft issues affected online services such as Sharepoint, OneDrive, Teams and Exchange online.

The one that was causing bluescreens on devices was actually to Cloudstrike AV customers. An update was silently pushed to clients that had a corrupted driver, causing the issues.

With these two happening roughly the same time, it's easy to see why people assumed they were the same outage.

For the Microsoft issue, all services are restored and you can check the root cause and health status on your Microsoft Portal Admin Panel here:
https://admin.microsoft.com/servicestatus

For the Cloudstrike issue, Microsoft have released a USB tool to fix the driver issue without the need to force boot safe mode. Full article and instructions to use it are here:
https://techcommunity.microsoft.com/t5/intune-customer-success/new-recovery-tool-to-help-with-crowdstrike-issue-impacting/ba-p/4196959

Stay safe and make sure you backup 👍

17/07/2024

Why Is BitLocker Encryption Essential?

BitLocker is a powerful volume encryption service that provides robust data protection. Let's explore why it's crucial for safeguarding your data:

1.Confidential Data Protection:
BitLocker secures sensitive information stored on laptops and external drives. If a device is lost or stolen, the encrypted data remains inaccessible to unauthorized users.
It's especially valuable for protecting laptops, where physical loss is a common risk.

2. System Disk Trust:
The system disk, often used as a source of trust, can access other company devices. BitLocker prevents attackers from compromising this trust by encrypting the system disk.

3. Mitigating Disk Crashes:
BitLocker helps mitigate data loss due to disk crashes. Even if the operating system isn't online, your data remains secure.

4. Proper Disk Disposal:
When disposing of old drives, BitLocker ensures that sensitive data cannot be easily accessed. It's an essential step in maintaining data privacy and compliance.

5. Better Than Third-Party Solutions:
While third-party encryption tools exist, BitLocker is integrated into Windows and offers seamless management through the likes of Entra ID or Intune. It's a reliable choice for organizations.

6. Complementary to EFS:
Combining BitLocker with Encrypting File System (EFS) creates a multi-layered defense. EFS protects individual files, while BitLocker secures entire volumes.

7. Peace of Mind:
Implementing BitLocker allows you to rest knowing your data is safe from unauthorized access.

Remember to back up your BitLocker recovery key by either storing it on a flash drive, printing it out, using a password manager or, if you are in an Enterprise setup, to Entra/Intune.

Always suspend protection during firmware updates or motherboard changes.

Overall, enabling BitLocker is a prudent step toward data security and peace of mind.

10/07/2024

Overview of what Microsoft Patch Tuesday for July 2024 fixed:

26 Elevation of Privilege Vulnerabilities
59 Remote Code Ex*****on Vulnerabilities
9 Information Disclosure Vulnerabilities
17 Denial of Service Vulnerabilities
24 Security Feature Bypass Vulnerabilities
7 Spoofing Vulnerabilities

Additionally, there were four zero-day vulnerabilities, two of which were actively exploited.

These zero-days affected Windows Hyper-V and MSHTML (Microsoft’s Internet Explorer engine).

If you’re using Microsoft Office, pay special attention to CVE-2024-38021, a remote code ex*****on flaw that could lead to NTLM hash disclosure.

Stay vigilant and apply the necessary patches as soon as possible!