APIs Archives

AppWizard

June 4, 2025

Meta Pixel halts Android localhost tracking after disclosure

Security researchers have found that Meta and Yandex used native Android applications to access localhost ports, allowing them to link web browsing data with user identities and bypass privacy protections. Following these findings, Meta stopped its data transmission to localhost and removed much of the tracking code to comply with Google Play policies. A report from researchers at IMDEA Networks, Radboud University, and KU Leuven detailed how apps like Facebook and Instagram collected web cookie data via the loopback interface. This method allowed the companies to associate browsing sessions with user identities, undermining privacy measures. Meta's tracking process involved the Meta Pixel script, which transmitted cookies to native apps through various protocols. Meta began using this technique in September 2024 but ceased these practices by June 3rd, 2025. Yandex's localhost tracking dates back to 2017, and while they did not respond to inquiries, browser vendors have implemented mitigations against these practices. Proposed solutions include a new permission for local network access to prevent such tracking in the future.

Tech Optimizer

June 2, 2025

Hackers Allegedly Selling Windows Crypter Claims Bypass of All Antiviruses

Underground cybercriminal forums are seeing an increase in advanced malware tools, including a Windows crypter that claims to bypass major antivirus solutions. This crypter is marketed as fully activated and capable of achieving Full Undetectable (FUD) status against contemporary antivirus engines. It employs advanced obfuscation techniques to evade detection, including code injection methods, entropy manipulation, and anti-debugging features. The tool allows for granular control over obfuscation parameters, enabling customization for specific target environments. The rise of such sophisticated evasion tools poses challenges for traditional endpoint security, making organizations vulnerable if they rely solely on signature-based antivirus solutions. To defend against these threats, organizations should adopt multi-layered security architectures, including behavioral analysis and endpoint detection and response (EDR) solutions.

Winsage

May 31, 2025

New Malware Compromise Microsoft Windows Without PE Header

A new strain of malware has been operating undetected on Windows systems for several weeks, utilizing advanced evasion techniques that corrupt its Portable Executable (PE) headers to avoid detection. Security researchers discovered this malware embedded in the memory of a compromised system during an investigation, using a 33GB memory dump that revealed its presence in a dllhost.exe process with process ID 8200. The malware, classified as a Remote Access Trojan (RAT) by Fortinet, employs batch scripts and PowerShell commands for its attack and has capabilities for screenshot capture, remote server functionality, and system service manipulation. Its command and control infrastructure uses encrypted communications, complicating detection efforts. The malware's distinctive feature is the deliberate corruption of DOS and PE headers, which hinders reverse engineering and complicates the reconstruction of the executable from memory dumps. Researchers had to manually locate the malware’s entry point and resolve complex import tables for it to function in a controlled environment.

Winsage

May 31, 2025

Microsoft Debuts Windows Update Orchestration Platform For Updating All Apps From A Single Place

Microsoft has introduced the Windows Update Orchestration Platform, which aims to centralize the management of line-of-business (LOB) and third-party applications through a single interface, enhancing the app update process for developers and users. Currently in private preview, the platform invites developers to explore its features, which include eco-efficient scheduling, consistent notifications, centralized update history, and unified troubleshooting tools. Developers can integrate their applications using Windows Runtime APIs and PowerShell commands to manage various aspects such as registration and update definitions. The initiative addresses challenges like CPU and bandwidth spikes, conflicting notifications, and increased support costs faced by users and IT administrators.

Winsage

May 30, 2025

Microsoft unveils “centralized” software update tool for Windows

Microsoft is developing a Windows-native update orchestration platform to improve the software updating experience for IT administrators and end-users. This platform aims to streamline the management of updates across various applications and components within the Windows ecosystem, reducing confusion caused by independent updates for different products. Currently in private preview, developers can access the platform through Windows Runtime (WinRT) APIs and PowerShell commands by registering as update providers. The orchestrator will intelligently defer updates based on user activity and system performance, and it will automatically reschedule failed attempts. Additionally, Microsoft is introducing Windows Backup for Organizations to assist with the transition from Windows 10 to Windows 11. This feature simplifies the backup and restoration of settings for Windows 10 and 11 devices. To use this functionality, devices must be Microsoft Entra hybrid joined or Microsoft Entra joined and running a supported version of Windows. The restore feature is compatible only with Microsoft Entra joined devices running Windows 11, version 22H2 and later. The Windows Backup for Organizations feature is currently in a limited public preview for select members of the Microsoft Management Customer Connection Program.

Winsage

May 29, 2025

Microsoft opens Windows Update to third-party apps

Microsoft has introduced a Windows Update orchestration platform to enhance the update experience for app developers and management tool vendors by centralizing update scheduling across Windows 11 devices. A select group of developers will have access to this framework, which allows applications to register their own update logic through WinRT APIs and PowerShell, enabling centralized scheduling, logging, and policy enforcement. The platform supports MSIX/APPX and Win32 apps that use designated APIs and commands, and is currently available as a private preview. Additionally, Microsoft has launched Windows Backup for Organizations, now in limited public preview, designed to back up Windows 10 and 11 devices while preserving user settings. This service is intended to facilitate system migrations and provide a safeguard against malware or ransomware. Specific requirements for participation include having a supported version of Windows and being enrolled in certain Microsoft programs.

Winsage

May 28, 2025

Microsoft’s Windows Update to include third-party apps – now that’s a game changer

Microsoft is introducing a "Windows Update orchestration platform" that allows third-party developers to integrate their applications with Windows Update. This platform, currently in preview, provides an API for developers to register their apps as update providers, enabling seamless scheduling, downloading, and installation of updates. Developers can defer updates based on user activity and system performance, while users will benefit from a unified update history for all supported applications. Developers interested in the private preview can contact Microsoft at unifiedorchestrator@service.microsoft.com.

Winsage

May 28, 2025

Microsoft wants Windows to update all software on your PC

Microsoft has introduced an update orchestration platform to improve the Windows Update infrastructure, streamlining the updating process for applications, drivers, and system components. Developers and IT teams can onboard updates using Windows Runtime (WinRT) APIs or PowerShell commands and can join the private preview by contacting unifiedorchestrator@service.microsoft.com. The platform includes an update scan tool that manages downloads and installations based on user activity, power status, and network conditions, while also handling restart requirements and notification deadlines. It is currently in private preview for developers creating apps or management tools for updates, supporting applications packaged as MSIX, APPX, or Win32 installers. The platform offers a consistent notification experience and centralized app update history within the Settings app, and it works alongside Microsoft's Winget package manager and third-party tools like Chocolatey and Scoop.

AppWizard

May 28, 2025

Messaging app Signal will block Windows Recall from taking chat screenshots

Signal has introduced a "Screen Security" feature in its desktop application to prevent external programs, including Windows 11, from capturing screenshots of its interface. This feature is enabled by default and is a response to Microsoft's Recall feature, which captures app window screenshots for AI processing. Signal is concerned about the privacy risks posed by Recall's design, despite Microsoft's assurances of improved privacy controls. The developers have used Windows' Digital Rights Management technology to protect against unauthorized screenshots due to the lack of official APIs from Windows 11. Signal's leadership has criticized the need for such workarounds and has called on Microsoft to provide better tools for developers to safeguard user privacy.

AppWizard

May 28, 2025

Android Auto Just Got a Social Music Upgrade with Spotify Jam

Google is enhancing the Android Auto experience by integrating its Gemini technology and introducing new car app templates for developers. The updated Spotify app will feature "Spotify Jam," allowing passengers to contribute to the car's playlist and control audio output. Users can activate the Jam feature by pressing a button and joining via a QR code. The updated Spotify app is expected to roll out in the coming months, with Amazon Music and YouTube Music also set to adopt the new templates. Video applications will soon support an audio-only mode for listening while driving, and Quick Share will enable content sharing between smartphones and vehicles. Google plans to implement passkeys and credential manager APIs for security enhancements and will enable video and web browser apps on older Android Auto platforms.