this post was submitted on 10 Apr 2026
188 points (99.5% liked)

Technology

7009 readers
727 users here now

News community around technology, social media platforms, information technology and governmental policy surrounding it.

What doesn't fit here?

The core of the story has to be technology focused.


Post guidelines

Title formatPost title should mirror the news source title. If you don't like the title of article, look for an alternative source instead of editorializing it.
URL formatPost URL should be the original link to the article (even if paywalled) and archived copies left in the body. It allows avoiding duplicate posts when cross-posting.
[Opinion] prefixOpinion (op-ed) articles must use [Opinion] prefix before the title. Opinion articles refer to articles that their publisher doesn't explictly endorse.
Country prefixCountry prefix can be added to the title with a separator (|, :, etc.) if the news is from a local publisher who doesn't clearly mention the country.


Rules

1. English onlyTitle and associated content has to be in English.
2. Use original linkPost URL should be the original link to the article (even if paywalled) and archived copies left in the body. It allows avoiding duplicate posts when cross-posting.
3. Respectful communicationAll communication has to be respectful of differing opinions, viewpoints, and experiences.
4. InclusivityEveryone is welcome here regardless of age, body size, visible or invisible disability, ethnicity, sex characteristics, gender identity and expression, education, socio-economic status, nationality, personal appearance, race, caste, color, religion, or sexual identity and orientation.
5. Ad hominem attacksAny kind of personal attacks are expressly forbidden. If you can't argue your position without attacking a person's character, you already lost the argument.
6. Off-topic tangentsStay on topic. Keep it relevant.
7. Instance rules may applyIf something is not covered by community rules, but are against lemmy.zip instance rules, they will be enforced.


Companion communities

!globalnews@lemmy.zip
!interestingshare@lemmy.zip


Icon attribution | Banner attribution


If someone is interested in moderating this community, message @brikox@lemmy.zip.

founded 2 years ago
MODERATORS
 

A mandatory verification requirement Microsoft introduced in October took them out.

you are viewing a single comment's thread
view the rest of the comments
[–] v0rld@lemmy.world 10 points 2 months ago* (last edited 2 months ago) (5 children)

Is it just me or is the headline misleading and wrong?

Why would WireGuard, VeraCrypt or Windscribe push windows updates in the first place?

If you read the actual text it says Microsoft locked out the accounts these 3 projects used to publish new versions of their software.

[–] TheSambassador@lemmy.world 20 points 2 months ago

They're probably using "Windows updates" to mean "updates to their software on Windows" but it's obviously confusing.

[–] Jhex@lemmy.world 5 points 2 months ago
[–] Serinus@lemmy.world 4 points 2 months ago

It also seems like somewhat reasonable anti-malware practices, for the most part. They want a government ID if you're going to push kernel level drivers. They have a process for doing so.

Could have been smoother, such as allowing them to recover their existing account.

[–] W98BSoD@lemmy.dbzer0.com 3 points 2 months ago (1 children)

I believe it’s the driver they install that becomes the problem if they don’t have a valid Microsoft account; it’s no longer valid and untrusted by the system.

[–] Quexotic@infosec.pub 3 points 2 months ago

Yes. Since they have kernel level drivers, they need those drivers signed by MS for them to be able to install.

There used to be a way around this as an end user, but I think now, the only way is to disable ALL driver signature checking. A decidedly unwise choice.

There used to be the ability to make an exception for a single driver. Certainly an argument can be made that if you're making an exception for one, it doesn't matter you might as well turn it off entirely because that one driver could be compromised through modification by any binary on the system.

Anyway, switch to Linux.

[–] ReluctantMuskrat@lemmy.world 1 points 2 months ago (1 children)

I'm guessing you might be able to install VeraCrypt through the Microsoft Store, and if so receive update notifications.

[–] floofloof@lemmy.ca 1 points 2 months ago* (last edited 2 months ago)

You can't do full-disk encryption without the signed driver, and Microsoft is preventing them signing the driver for new releases. So Microsoft is making it impossible for them to publish updates for the Windows versions of their software.