browsers

Winsage
July 9, 2025
Windows 11's July update includes several new features and fixes, particularly benefiting gamers by resolving issues with mouse cursor behavior when Alt-Tabbing and addressing app freezes and display resets during full-screen gameplay. The update automatically resizes taskbar icons to fit more applications, with an option to disable this feature. Accessibility improvements include the ability to add custom words to the Voice Access dictionary and a new privacy feature for the Narrator tool that blackens the display while reading aloud. For European users, the update allows the chosen default browser to be linked to all file types, reducing unexpected launches of Microsoft Edge. Additionally, a new PC-to-PC migration feature is being introduced in the Windows Backup app to facilitate file and installation transfers over a shared network, with a full rollout expected before the end of Windows 10 support in October 2025.
AppWizard
July 9, 2025
A new Android vulnerability named TapTrap allows malicious applications to bypass the operating system's permission system without requiring special permissions. It exploits activity transition animations to mislead users into granting sensitive permissions or executing harmful actions. Researchers from TU Wien analyzed 99,705 applications on the Google Play Store and found that 76.3% are susceptible to this attack. TapTrap uses low-opacity animations (approximately 0.01 alpha) to make sensitive permission dialogs nearly invisible while still registering touch events. The attack can last up to six seconds and can lead to unauthorized access to critical functionalities like the camera and microphone, and even device administrator privileges. TapTrap bypasses existing defenses against tapjacking in Android, affecting popular web browsers as well. A user study showed that all participants failed to detect at least one variant of the attack. As of June 2025, Android 15 remains vulnerable, with no timeline for a comprehensive fix. The vulnerability has been assigned two CVEs, and researchers disclosed their findings to Google in October 2024. They propose solutions to mitigate the risks, including blocking touch events during low-opacity animations and setting an opacity threshold of 0.2.
Winsage
July 9, 2025
Microsoft has released the KB5062554 cumulative update for Windows 10 22H2 and 21H2, which includes thirteen new fixes and enhancements. This mandatory update addresses one critical zero-day vulnerability and 136 other flaws, and users can install it by checking for updates in the Windows Update settings. After installation, Windows 10 22H2 will be updated to build 19045.6093 and Windows 10 21H2 to build 19044.6093. The update features various fixes, including issues with the Start Menu, file server responsiveness, and USB-connected printers. A known issue with the update is that NOTO fonts may appear blurry at 96 DPI, particularly affecting CJK text in Chromium-based browsers, with a suggested workaround of adjusting display scaling to 125% or 150%.
Winsage
July 8, 2025
Microsoft has announced significant enhancements to the Edge browser, achieving a First Contentful Paint (FCP) of under 300 milliseconds, which improves user interface responsiveness. This performance metric indicates that the browser can display initial website elements in less than 300 milliseconds. Microsoft emphasizes that waiting longer than 300 to 400 milliseconds can negatively affect user satisfaction. Edge currently holds less than five percent of the global browser market share, while Chrome has 68 percent. Recent upgrades include faster downloads, browsing history, and private tabs, with improvements to 13 additional features. Microsoft plans to introduce further performance enhancements targeting Print Preview and Extensions in the coming months.
Winsage
July 8, 2025
Microsoft Edge has achieved a global First Contentful Paint (FCP) time of under 300 milliseconds, reflecting a commitment to enhancing user experience through speed. This milestone was influenced by research indicating that delays beyond 300 to 400 milliseconds can negatively impact user satisfaction. Load times have been reduced by an average of 40% across 13 key browser features, including Settings, Read Aloud, Split Screen, and Workspaces. Future performance enhancements are expected for features like Print Preview and Extensions. FCP measures how quickly the various feature UIs of Microsoft Edge visually load.
Winsage
July 7, 2025
Microsoft has acknowledged an issue with Windows Firewall following the June 2025 preview update of Windows 11 24H2 (KB5060829, OS Build 26100.4484). Users may encounter an error event labeled 'Config Read Failed' with the message 'More data is available' each time they restart their device. Microsoft assures that this does not indicate a malfunction within Windows Firewall and can be disregarded. The issue is linked to a feature under development, and no timeline for a fix has been provided. Additionally, there is another issue affecting the display of Chinese, Japanese, and Korean characters at 96 DPI in Chromium-based browsers, which Microsoft is working on with Google.
Winsage
July 7, 2025
Microsoft acknowledged an issue with Windows Firewall following the June 2025 preview update of Windows 11 24H2 (KB5060829), which generates "Config Read Failed" error messages in security event logs. Despite frequent logging upon device restarts, Microsoft stated that this does not indicate a malfunction of Windows Firewall and can be ignored. The issue is linked to an under-development feature, and no resolution timeline has been provided. Additionally, there is a problem with displaying Chinese, Japanese, and Korean characters at 96 DPI in Chromium-based browsers, which Microsoft is working on with Google.
Tech Optimizer
July 5, 2025
Cybercriminals are using legitimate software installer frameworks like Inno Setup to distribute malware, taking advantage of its trusted appearance and scripting capabilities. A recent campaign demonstrated how a malicious Inno Setup installer can deliver information-stealing malware, such as RedLine Stealer, through a multi-stage infection process. This process includes evasion techniques like detecting debuggers and sandbox environments, using XOR encryption to obscure strings, and conducting WMI queries to identify malware analysis tools. The installer retrieves a payload from a command-and-control server via a TinyURL link and creates a scheduled task for persistence. The payload employs DLL sideloading to load HijackLoader, which ultimately injects RedLine Stealer into a legitimate process to steal sensitive information. RedLine Stealer uses obfuscation techniques and disables security features in browsers to avoid detection. The Splunk Threat Research Team has developed detection methods focusing on indicators such as unsigned DLL sideloading and suspicious browser behaviors. Indicators of Compromise (IOC): - Malicious Inno Setup Loader Hash 1: 0d5311014c66423261d1069fda108dab33673bd68d697e22adb096db05d851b7 - Malicious Inno Setup Loader Hash 2: 0ee63776197a80de42e164314cea55453aa24d8eabca0b481f778eba7215c160 - Malicious Inno Setup Loader Hash 3: 12876f134bde914fe87b7abb8e6b0727b2ffe9e9334797b7dcbaa1c1ac612ed6 - Malicious Inno Setup Loader Hash 4: 8f55ad8c8dec23576097595d2789c9d53c92a6575e5e53bfbc51699d52d0d30a
Winsage
July 4, 2025
The author expresses frustration with Windows 11, citing its clunky interface and issues with updates, yet continues to use it daily due to its compatibility and driver support. They also rely on Microsoft 365 products, including Outlook, OneDrive, Phone Link, and Excel, for various tasks. Outlook is preferred for managing correspondence, OneDrive allows access to PC folders from a phone, Phone Link facilitates easy communication between devices, and Excel is favored for its extensive functionality in spreadsheets. Despite considering alternatives, the author remains committed to these Microsoft applications due to their integral role in their workflow.
Search