If you use Windows 10 or Windows 11 at home, the August 12, 2025 update includes fixes for serious security problems, plus a few new features if you’re running the newest version of Windows 11.

New Features for Windows 11 (24H2) Users

If you’ve got Windows 11 version 24H2, especially on one of the newer “Copilot+” PCs, there are some nice additions:

• More Control Over Recall: You can now export the snapshots Recall takes so you can save them elsewhere, or reset it completely to wipe all stored data. Recall if off by default.

• Talk to Your Settings App: Type something like “make my mouse pointer bigger” in plain language, and Windows will find and apply the change for you—no hunting through menus.

• Automatic Boot Repair: If your PC can’t start up properly, Windows can now attempt repairs automatically.

• A Fresh Look for Crash Screens: The classic blue screen of death is now black, with a cleaner design.

• Better Snap Layout Hints: Hover over the maximize button or drag a window to the top of the screen, and Windows will show tips for arranging your windows.

• Gamepad PIN Entry: You can even enter your PIN on the lock screen using a game controller.
  If you’re on Windows 11 version 23H2 or Windows 10, you won’t see these new features, but the security fixes are still just as important.

Windows 10 August 2025 Cumulative Security Update

For Windows 10 users on versions 20H2, 21H2, or 22H2, this month’s cumulative update is KB 5063709. It doesn’t add new features, but it includes:

• 107 security fixes released for Windows 11

• Patches 13 critical vulnerabilities and the zero-day Kerberos flaw.

Even without visible changes, this update is essential for keeping your system safe from active and potential threats.

One major focus this month is closing several remote code execution vulnerabilities.

These are flaws where an attacker could make your PC run harmful code without your knowledge, often without you doing much more than opening the wrong file or visiting the wrong website.

Left unfixed, a malicious email attachment, document, or webpage could trigger these vulnerabilities, allowing an attacker to install programs, steal personal data, or use your PC as part of a larger attack.

By applying the update, you’re essentially closing off these easy-to-exploit entry points and making it much harder for attackers to gain control of your system.

Security Fixes

This month’s update addresses 107 security issues, with 13 of those classified as critical. The most urgent one is a zero-day vulnerability in Kerberos, the Windows login system.

What’s a Zero-Day?

A zero-day is a security flaw that criminals already know about and may be using to attack people before the company has a fix ready. It’s called “zero-day” because there are zero days between the fix being released and the day the threat was first known to be in use. The takeaway is simple: when a zero-day is patched, install the update promptly.

How This One Worked

Kerberos is like the digital bouncer for your computer. When you log in, it checks your credentials and gives you a special “ticket” proving what you’re allowed to do. Normally, those tickets can’t be faked. The flaw was in how Kerberos checked those tickets.

If someone had already found a way onto your PC or network, they could copy a legitimate ticket they’d been given, alter it to promote themselves from “regular user” to “administrator,” and then re-sign it in a way that made Windows think it was still the real deal.

It’s like sneaking into a building with a visitor pass, changing it to say “security chief,” stamping it with a stolen seal, and having the guard wave you through every locked door. Once they had that level of control, they could install malware, steal files, change security settings, and even lock you out of your own computer.

Other Security Fixes You Should Know About

• Remote Code Execution: Bugs that could let attackers run harmful programs on your PC just by getting you to open a bad file or visit a compromised website.

• Privilege Escalation: Flaws that let someone with limited access upgrade themselves to full administrator control.

• Information Disclosure: Weaknesses that could expose sensitive information to the wrong person.

• Spoofing: Tricks where someone pretends to be a trusted person or service to fool you or your system.

Why You Should Update Now

The update is available now for:

• Windows 11 (24H2) — KB 5063878

• Windows 11 (23H2) — KB 5063875

• Windows 10 (20H2, 21H2, 22H2) — KB 5063709

If you see a prompt to restart for updates, restart to complete the installation.

Sources:
Windows Central
Thurrott
Bleeping Computer
Qualys Security Blog

Thank You for the Support

If you'd like to support my home business, consider becoming a paid subscriber. I can’t do this work without your support. Thanks for stopping by.

Upgrade to Paid

💬 Feel free to share your thoughts below, or on any of my free blog posts as I work to enable that. I do my best to read as many as I can, even if I don’t always reply. I pay more attention to comments from PAID subscribers.