analysis Archives

Winsage

December 27, 2024

Sophos report reveals growing misuse of trusted Windows tools

Sophos has reported a 51% increase in the exploitation of "living off the land" binaries (LOLBins) since 2021, with an 83% rise over the past three years. In an analysis of nearly 200 incident response cases in the first half of 2024, 187 distinct Microsoft LOLBins were identified, with remote desktop protocol (RDP) being the most targeted, appearing in 89% of incidents. Compromised credentials are the leading cause of cyberattacks, responsible for 39% of incidents, despite a decrease from 56% in 2023. The LockBit ransomware group remains the most prevalent threat, accounting for 21% of infections. Additionally, 21% of compromised Active Directory servers were found to be operating beyond Microsoft’s mainstream support, making them more vulnerable. Sophos emphasizes the importance of proactive monitoring and regular system updates to mitigate these risks.

Winsage

December 26, 2024

ACPI wake alarm does not disable; How to disable it?

If your Windows system is waking up at night due to an ACPI Wake Alarm, you can try several solutions to resolve the issue: 1. Adjust Hibernate Settings: Change the Hibernate after Sleep feature in Power Options to a higher value or disable it by setting it to 0 (Never). 2. BIOS/UEFI Configuration: Access the BIOS/UEFI setup and disable the Wake on RTC Alarm if enabled. 3. PowerShell and Command Line for Wake Timers: Use commands like PLACEHOLDERd65d9fd27963b5bd to review power settings and PLACEHOLDER0384fd2e90496902 to disable specific devices from waking the computer. 4. Disable Wake Timers: In Power Settings, set Allow wake timers to disable for both On Battery and Plugged In states. 5. Check Security and Maintenance Settings: Uncheck the option for Allow scheduled maintenance to wake up my computer in the Security and Maintenance settings. 6. Task Scheduler Settings: Review scheduled tasks and uncheck the “Wake the computer to run this task” option in the Conditions tab. 7. Event Viewer Analysis: Check the Event Viewer under Windows Logs > System to identify the Wake Source, which may indicate the ACPI Wake Alarm. The issue often arises from ACPI wake alarms that can override wake timer settings, necessitating a thorough examination of all related configurations to fully disable them.

Winsage

December 25, 2024

Five lesser known Task Manager features in Windows 11

Windows 11's Task Manager includes several features that enhance productivity and system management: - Users can generate a live kernel or full crash dump to troubleshoot crashes, which can be analyzed for root cause identification. - Holding the CTRL key pauses the Task Manager updates, allowing users to easily locate processes, while the F5 key refreshes values for real-time updates. - The "Efficiency Mode" can be activated by right-clicking on an app or process to limit CPU usage, reducing power consumption and freeing up resources. - The Startup Apps section provides an overview of applications that launch at boot, allowing users to disable unnecessary ones to improve startup time and system performance. - The App History tab shows resource usage by applications since the last shutdown, helping users identify which apps are consuming significant resources.

AppWizard

December 23, 2024

These Are The Most Useful FOSS Android Apps I Discovered in 2024

Exodus is an app that tracks data collection and app permissions for privacy-conscious users. Simple Keyboard is a minimalistic, customizable keyboard app that does not collect user data. Currencies provides real-time currency exchange rates without ads or tracking. Password Monitor checks for compromised passwords and offers security suggestions. Ente Auth is an offline authentication tool with end-to-end encryption and optional cloud backup. Seal is a download manager that supports various platforms and customizable options. Hacki is a client for Hacker News that allows voting, commenting, and saving articles. NetGuard is an open-source firewall app that enables users to manage internet access for specific applications without root access.

AppWizard

December 23, 2024

The year’s Steam Replay reveals 85% of Steam users in 2024 spent time playing games released in 2023 or earlier

Only 15 percent of Steam users dedicated time to new releases in 2024, according to Steam Replay 2024. On average, players achieved around 13 accomplishments and engaged with four games throughout the year, with a median longest play streak of six days. A class action lawsuit has been filed against Steam, initially by Wolfire Studios and Dark Catt Studios, now including any developers or individuals who accepted Steam's 30 percent cut on purchases since January 28, 2017, with a motion for class certification recently approved.

Winsage

December 21, 2024

Windows 11 Vulnerability Lets Attackers Execute Code to Gain Access

Microsoft has addressed a significant security vulnerability in Windows 11 (version 23H2), identified as CVE-2024-30085, which allowed local attackers to gain SYSTEM-level privileges. The flaw was discovered by security researcher Alex Birnberg during the TyphoonPWN 2024 competition, where he demonstrated the vulnerability, earning third place. The issue lies in the Cloud Files Mini Filter Driver (cldflt.sys), which fails to properly validate user-supplied data during the parsing of reparse points, allowing attackers to overwrite memory and execute code with elevated privileges. To exploit this vulnerability, an attacker must first run low-privileged code on the system. Microsoft has released a patch for this vulnerability, and users are advised to update their systems to ensure security.

Winsage

December 20, 2024

Clean up your PC: Deep cleaning with professional tricks

Maintaining a tidy digital environment is essential for optimizing the performance of a Windows PC. Regular decluttering frees up storage space and enhances overall efficiency. 1. Check Memory Utilization: Access Settings (Win+I) > System > Memory to view memory usage, including temporary files and installed applications. The "Other" category shows large folders for potential deletion, and you can uninstall unnecessary programs under Apps > Installed apps. Temporary files can be removed under System > Storage > Temporary files. 2. Windows 11 Cleanup Functions: Go to System > Storage > Cleanup recommendations to find storage space occupied by downloads, the recycle bin, and Previous Windows installations. Select areas to clean and click the cleanup button. 3. Free Up Storage Space: Enable Storage Sense in Settings > System > Storage to automate cleanup processes, customizing frequency and recycle bin retention. 4. Relocate Standard Storage Locations: In System > Storage > Advanced storage settings, designate alternative drives for new content to keep the primary drive uncluttered. 5. Change Storage Location for Apps: Specify a different drive when installing new applications. For Microsoft Store apps, go to Apps > Installed apps and select Move. 6. Clean Up Discs: Use the Disk Cleanup tool (cleanmgr) to delete unnecessary files. The Clean up system files option reveals additional files for removal. 7. Delete Browser Data: Clear browser cache as needed to improve performance, managing data through browser settings. 8. Optimize Autostart: Use Task Manager (Ctrl+Shift+Esc) to disable unnecessary startup programs. Tools like Autoruns can help manage autostart entries for efficient booting. Additional software options like Bleachbit and Ccleaner can provide deeper insights for system maintenance.

AppWizard

December 20, 2024

Here are the best PC games under $10 in the Steam Winter Sale

The Steam Winter Sale has started, offering significant discounts on hundreds of games, with the sale ending on January 2nd. Notable PC games available for under a certain price include: - Dying Light: A survival horror game set in a zombie-filled world requiring strategic gameplay. - World War Z: A cooperative zombie game that enhances the excitement of battling undead hordes. - The Witcher 3: An expansive open-world adventure with a main campaign of around 52 hours and up to 174 hours for 100% completion. - Mafia: Definitive Edition: A visually enhanced remake of the classic game with improved graphics and gameplay. Additionally, there are games available for Steam Deck users that are either Verified or Playable on the device.

Tech Optimizer

December 19, 2024

Why Surfshark is the only leading VPN offering a real antivirus

Surfshark is a leading VPN provider that also offers a robust antivirus solution, currently ranked second in the VPN market. Its antivirus features a tri-layered defense mechanism, including traditional scans, real-time protection against Potentially Unwanted Applications (PUAs), and continuous monitoring for threats. Surfshark's antivirus received the "TOP PRODUCT" award from AV-TEST in 2024, achieving scores of 6/6 for Protection, 5.5/6 for Performance, and 6/6 for Usability, along with a perfect score of 10/10 in the Advanced Threat Protection test. It boasts a 100% detection rate against advanced 0-day malware attacks. The antivirus is included in Surfshark's One and One+ plans, starting at .49 per month, with a 30-day money-back guarantee. Surfshark also ranks as the best budget-friendly VPN, with speeds exceeding 950 Mbps using the WireGuard protocol and supports protection across an unlimited number of devices, though antivirus features are limited to five devices.

Winsage

December 19, 2024

Microsoft lays out reasons Windows 10 gamers should upgrade to Windows 11, but I can pick a few holes in these arguments

Microsoft is encouraging Windows 10 users to upgrade to Windows 11, especially targeting gamers. Key features of Windows 11 include Auto HDR for enhanced visuals on SDR games, DirectStorage for reduced loading times and improved frame rates with NVMe SSDs, and Compact Mode for Game Bar for better usability on smaller screens. Other features include Dynamic Lighting for RGB devices, HDR Calibration app, color filters for colorblind players, and Automatic Super Resolution for Arm-based PCs. The effectiveness of these features depends on hardware compatibility, and while some improvements may enhance gaming experiences, they may not be significant enough for all users to upgrade immediately. Windows 10 will reach its End of Life in October 2025, prompting users to consider their options regarding upgrading or sticking with Windows 10.