HomeIntelligenceBrief
BREACH BRIEF🟢 Low Advisory

Microsoft Restores GIF Functionality in Windows Emoji Panel After Tenor API Retirement

Microsoft patched the Windows 11 Emoji Panel to restore GIF search after Tenor's API shutdown, highlighting the need for continuous vendor‑risk monitoring in SOC 2 programs.

LiveThreat™ Intelligence · 📅 July 01, 2026· 📰 bleepingcomputer.com
🟢
Severity
Low
AD
Type
Advisory
🎯
Confidence
High
🏢
Affected
1 sector(s)
Actions
3 recommended
📰
Source
bleepingcomputer.com

Microsoft Restores GIF Functionality in Windows Emoji Panel After Tenor API Retirement

What Happened — On June 30 2026 the Windows 11 Emoji Panel stopped showing GIFs for many users because Google‑owned Tenor retired its public API. Microsoft responded with preview update KB5095093 (released June 23) that switches the backend to GIPHY for supported Windows 11 builds, restoring the feature. The fix is still pending for Windows 11 23H2 and Windows Server 2025.

Why It Matters for Compliance & Audit Readiness

  • A sudden loss of a third‑party service illustrates the need for continuous vendor‑risk monitoring—one of the core SOC 2 vendor‑management controls (CC6.1).
  • Documenting the remediation (update rollout, timeline, and pending versions) provides audit‑ready evidence that the organization tracks and mitigates third‑party dependencies.
  • Mapping this incident to your risk register demonstrates due‑diligence and supports the “monitoring of sub‑service providers” requirement in SOC 2.

Who Is Affected — End‑user computing environments (Windows 11, Windows Server) across all industries; primarily organizations that rely on Microsoft OS updates for employee devices.

Recommended Actions

  • Verify that all Windows 11 devices are on the latest cumulative update (KB5095093) or have automatic update enabled.
  • Update your vendor‑risk register to include Tenor and GIPHY as third‑party service providers, noting the retirement risk and the mitigation path.
  • Implement continuous monitoring of third‑party API health (e.g., service status feeds) and map the controls to SOC 2 CC6.1.
  • Document the patch‑management process and retain evidence of update deployment for audit purposes.

Technical Notes

  • Attack vector: Third‑party dependency failure (Tenor API retirement).
  • Impact: Loss of GIF search functionality; no data breach or security vulnerability disclosed.
  • Fix: Preview cumulative update KB5095093 switches the provider to GIPHY for Windows 11 24H2/25H2/26H1; pending for 23H2 and Server 2025.

Source: BleepingComputer

📰 Original Source
https://www.bleepingcomputer.com/news/microsoft/microsoft-fixes-gif-functionality-in-the-windows-emoji-panel/

This LiveThreat Intelligence Brief is an independent analysis. Read the original reporting at the link above.

From the Verisq platform · Vendor Risk Hub

Point-in-time vendor reviews miss incidents like this.

Verisq AI Trust Operations replaces the annual questionnaire with continuous third-party monitoring — so vendor exposure becomes audit evidence, not a once-a-year guess.

See how Verisq AI Trust Operations works →