Microsoft is currently testing a new feature for the Microsoft Store that will allow it to display and update apps from third-party developers.

Previously, only apps downloaded directly from Microsoft's servers were supported for updates by the Microsoft Store, forcing users to manually find and update other apps.

With this change, users will now be able to manage and update all of their installed apps from the Microsoft Store in one place. When you tap the 'Get Update' button, the list will include both Microsoft and third-party apps. However, the automatic update feature only applies to Microsoft apps, while third-party apps will still have to be updated manually.

Experts say this change will turn the Microsoft Store into a true application management center on Windows 11. The ability to support third-party applications not only saves time but also encourages developers to bring their applications to this platform, creating a more convenient experience for users.

This feature is currently being tested in the Windows Insider program and is expected to be officially available on Windows 11 soon.

Meanwhile, Neowin, a technology news site, said that a new zero-day vulnerability has been discovered across all versions of Windows, from Windows 7, Server 2008 R2 to the latest Windows 11 24H2 and Server 2022. This vulnerability allows intruders to steal users' NTLM (New Technology LAN Manager) credentials using just a malicious file.

The NTLM protocol is an older authentication method, and Microsoft has long recommended that users switch to more modern, secure authentication methods.

According to the 0patch security research team, they discovered and released an unofficial patch to fix this vulnerability. Users may face the risk of being attacked when interacting with a malicious file through Windows Explorer, such as opening a shared folder, USB external storage device, or the Downloads folder containing the file.

Even the latest Windows 11 24H2 release is not immune to the impact. Although Microsoft has been notified of the vulnerability, the company has yet to release an official patch.

Additionally, 0patch is currently testing a patch for Windows Server 2025, a version that Microsoft just released this past November.

Users are advised to download and install unofficial patches from 0patch to protect themselves from the risk of information theft. Patch downloads can be done through 0patch Central at www.central.0patch.com/auth/login with a free registration account.

Ganoderma (t/h)