A critical Windows 10 update is causing some serious headaches for businesses! Microsoft has acknowledged a bug that's preventing the installation of the KB5068781 Extended Security Update (ESU) on devices with corporate licensing. This update, the first of its kind, was released on November 11, 2025, as part of Patch Tuesday. Since then, some business users have reported installation failures, leaving their devices vulnerable.
One BleepingComputer reader shared their experience: "We're facing the same issue with this KB5068781 across our managed Win10 devices. Despite purchasing and applying the ESU license, the update fails to install, rolling back with the error 0x800f0922."
Microsoft has confirmed they're investigating, but here's where it gets controversial: they claim the issue is isolated to devices activated via Windows subscription activation through the Microsoft 365 Admin Center. So, if your devices are activated through other methods, you might be in the clear.
Microsoft explains, "Some Windows 10 devices enrolled in ESU might fail to install the November 2025 security update with error 0x800f0922. This issue is specific to devices activated via Windows subscription activation through the Microsoft 365 Admin Center."
Unfortunately, there's no estimated time for a fix, and Microsoft hasn't provided any workarounds. To make matters worse, some Windows admins have reported that not all their licensed devices are even showing the need for the KB5068781 ESU update.
To help organizations navigate these patchy waters, BleepingComputer is hosting a December 2 webinar with Action1 on modern patch management.
And this is the part most people miss: as MCP (Model Context Protocol) becomes the standard for connecting LLMs to tools and data, security teams must adapt quickly. This free cheat sheet outlines seven best practices to keep your new services secure.
So, are you ready to dive deeper into the world of Windows updates and security? Let's discuss in the comments!
