Find notable cyber news and cases, enriched with sources, timelines, and signals.

Microsoft Windows October 2025 security update smart card and certificate disruption

Service Disruption
First reported
Last updated
Happening score
H score 1
1 unique sources, 1 articles

Summary

Hide ▲

Microsoft's October 2025 Windows security updates are causing smart card authentication and certificate-based authentication failures across Windows 10, Windows 11, and Windows Server, disrupting document signing and access on affected systems. The issue comes from a hardening change in Windows Cryptographic Services that shifts RSA smart card certificates from CSP to KSP. Microsoft says affected users can temporarily work around the problem by setting DisableCapiOverrideForRSA to `0`, with the registry key slated for removal in April 2026.

Related Happenings

Microsoft BitLocker recovery prompt workaround

Advisory/Mitigation
H score25 First: 09.06.2026 21:35 Last: 09.06.2026 21:35 Sources 1

About this happening: Microsoft issued a **temporary workaround** for **BitLocker recovery prompts** on some **Windows** systems after recent updates. The issue affects devices configured with a **BitL...

Microsoft Windows Autopatch fix for EU restricted driver update deployment bug

Security Tool/Service
H score11 First: 13.05.2026 17:36 Last: 13.05.2026 17:36 Sources 1

About this happening: **Microsoft** fixed a **Windows Autopatch** service bug that let **restricted driver updates** reach some managed devices in the **EU**, bypassing admin approval controls and crea...

Microsoft May 2026 Patch Tuesday release

Security Patch Release
H score44 First: 13.05.2026 13:36 Last: 13.05.2026 13:36 Sources 1

About this happening: Microsoft's **May 13, 2026 Patch Tuesday** release fixed **138 vulnerabilities** across its product portfolio, including **Windows**, **Azure**, and **Edge**. None of the flaws we...

Latest development: 01.06.2026 15:30

Belgium's Centre for Cybersecurity warned that CVE-2026-41089 in Windows Netlogon is being actively exploited in the wild after Microsoft patched the stack-based buffer overflow during the May 2026 Patch Tuesday. The flaw affects all currently supported Windows Server versions, including Windows Server 2025, and can let an unauthenticated attacker gain remote code execution on targeted domain controllers.

Windows 10 KB5087544 extended security update

Security Patch Release
H score15 First: 12.05.2026 21:58 Last: 12.05.2026 21:58 Sources 1

About this happening: **Microsoft** released **Windows 10 KB5087544** for **Windows 10 ESU/LTSC systems**, addressing **May 2026 Patch Tuesday vulnerabilities** and a **Remote Desktop warnings** issue....

Microsoft Defender false-positively flags DigiCert root certificates and removes some from Windows trust store

Security Tool/Service
H score11 First: 03.05.2026 21:11 Last: 03.05.2026 21:11 Sources 1

About this happening: **Microsoft Defender** began falsely flagging valid **DigiCert root certificates** as **Trojan:Win32/Cerdigent.A!dha**, creating widespread false positives and risking certificate...

Timeline

  1. 20.10.2025 17:21 2 articles · 8mo ago

    Microsoft Windows October 2025 security update smart card and certificate disruption

    Initial Disclosure

    After installation of the **October 2025 Windows security update**, some systems began failing **smart card** and **certificate-based** operations. Microsoft linked the breakage to a security hardening change in **Windows Cryptographic Services**.

    Show sources