Chromium-based browsers Archives

AppWizard

June 3, 2025

Meta and Yandex are de-anonymizing Android users’ web browsing identifiers

Recent developments in browser technology have raised concerns about user privacy and data tracking by companies like Meta and Yandex. In response, several Android browsers are enhancing user privacy by blocking abusive JavaScript linked to web trackers. DuckDuckGo has implemented measures to block domains and IP addresses associated with trackers, preventing the transmission of identifiers to Meta and restricting access to Yandex Metrica. Following feedback, DuckDuckGo's developers updated their blacklist to include missing addresses. The Brave browser uses extensive blocklists to prevent identifier sharing and blocks requests to localhost without user consent. Vivaldi forwards identifiers to local Android ports by default but allows users to adjust settings to block trackers. Researchers warn that these solutions may not be foolproof and emphasize the ongoing challenge of maintaining effective blocklists. Chrome and most other Chromium-based browsers execute JavaScript as intended by Meta and Yandex, while Firefox has faced challenges with SDP munging and has not yet announced plans to address this behavior.

Winsage

May 29, 2025

Windows 10 KB5058481 update brings seconds back to calendar flyout

Microsoft has released the optional KB5058481 preview cumulative update for Windows 10 22H2, which includes seven changes, notably the restoration of seconds to the time display in the calendar flyout. This update is part of the routine "optional non-security preview updates" and does not address security vulnerabilities. Users can install the update by navigating to Settings and manually checking for updates. Upon installation, Windows 10 22H2 will be updated to build 19045.5917. The update also includes enhancements for user experience and addresses a known issue with NOTO fonts appearing blurry at 96 DPI, particularly affecting CJK text in Chromium-based browsers. A temporary solution is to adjust the display scaling to 125% or 150%.

Tech Optimizer

May 21, 2025

Lumma Stealer: Breaking down the delivery techniques and capabilities of a prolific infostealer

Microsoft has monitored Lumma Stealer, an infostealer malware used by financially motivated threat actors. Lumma Stealer, also known as LummaC2, functions as a malware-as-a-service (MaaS) solution that extracts data from browsers and applications, including cryptocurrency wallets. The entity behind Lumma is identified as Storm-2477, which maintains the malware and its command-and-control (C2) infrastructure. Affiliates can create malware binaries and manage C2 communications through a panel provided by Storm-2477. Ransomware groups have integrated Lumma Stealer into their operations. Lumma Stealer employs various delivery techniques, including phishing emails, malvertising, drive-by downloads, Trojanized applications, and abuse of legitimate services. Specific campaigns have been identified, such as one in April 2025 that used EtherHiding and ClickFix techniques to deliver Lumma Stealer via compromised websites. Another campaign on April 7, 2025, targeted Canadian organizations with emails containing invoice lures that led to malicious downloads. The malware is developed using C++ and ASM, employing advanced obfuscation techniques to evade detection. It can extract a wide range of user data, including browser credentials, cryptocurrency wallet information, and user documents. Lumma Stealer maintains a robust C2 infrastructure with multiple hardcoded and fallback C2 servers, utilizing encryption methods to secure communications. Microsoft's Digital Crimes Unit has disrupted Lumma Stealer's infrastructure by blocking approximately 2,300 malicious domains. Recommendations to mitigate the impact of Lumma Stealer include strengthening Microsoft Defender configurations, implementing multifactor authentication, and utilizing phishing-resistant authentication methods. Microsoft Defender products can detect and block activities associated with Lumma Stealer, providing alerts and insights for incident response.

Winsage

March 28, 2025

Windows Users at Risk: New Zero-Day Exploit Steals Passwords Without Interaction

A newly uncovered zero-day vulnerability in Windows allows hackers to steal NTLM credentials simply by previewing a malicious file, affecting multiple Windows versions, including Windows 7 and Windows 11 v24H2. Microsoft has not yet issued a patch for this vulnerability, leaving millions of users exposed. The flaw was reported by security researcher Mitja Kolsek from ACROS Security, who noted that stolen credentials could lead to unauthorized access to networks. ACROS Security has created a temporary micro-patch available through its 0patch platform, which users are encouraged to implement. Additionally, a separate zero-day vulnerability identified in Google Chrome and other Chromium-based browsers allows attackers to bypass sandbox protection with a click on a malicious link, primarily targeting media organizations and government agencies in Russia. Users are advised to install the 0patch fix, avoid interacting with unfamiliar files, and update their browsers to protect against these threats.

Winsage

March 3, 2025

Microsoft Edge tests AI History Search, better security on Windows 11

Microsoft Edge is introducing new AI-driven features, including an experimental Web Push API for improved notification management in Windows 11 and enhanced security measures for downloads and clipboard activities. An AI History search feature is being developed, allowing users to receive AI recommendations from web passages during history searches, which can be activated by typing @history in the address bar. This feature may require a Microsoft account and will only apply to websites visited after activation. Additionally, Edge is optimizing memory usage with sleeping tabs and has identified new security features, including msProvenanceValidatorToggleOnByDefault for verifying downloaded file sources and msProtectedClipboard for protecting clipboard contents. The term msEdgeMetaOSOlympus has been mentioned, potentially indicating a redesign or new Windows release, though details remain unclear.

Winsage

March 1, 2025

Running Windows 7 in 2025

Windows 7 officially retired on January 14, 2020, but remains in use by some users due to its classic features and lack of built-in advertising. Many users continue to use Windows 7 because of outdated hardware, software compatibility issues, or financial constraints following the end of the free upgrade program in 2023. Users can maintain their Windows 7 installations by decluttering with the built-in Disk Cleanup tool, using Legacy Update for updates, and being cautious while browsing the web. The last compatible version of Google Chrome for Windows 7 is version 109, while Firefox version 115 still receives updates. Alternatives like PaleMoon and eM Client are available for users. Disabling OneDrive and exploring reliable applications like Ghostwriter and Notepad++ can enhance the Windows 7 experience.

Winsage

February 22, 2025

Microsoft’s new Edge Add-ons site might keep you away from the Chrome Web Store

Microsoft has enhanced the user experience of its Edge browser by integrating Chrome extensions and promoting its redesigned Edge Add-ons website, which improves navigation and usability. The updated site features enhanced autosuggestions for finding and installing extensions, including a "Get" button for direct installation. While Edge can run Google Chrome extensions, some users prefer the Edge Add-ons store for a Microsoft-centric experience. Certain extensions remain exclusive to the Chrome Web Store, as developers often prioritize Chrome due to its larger market share. Users can access these extensions through the Chrome Web Store on various Chromium-based browsers, including Edge. Currently, extensions like uBlock Origin work on Edge, but their future compatibility is uncertain.

Winsage

December 21, 2024

How to get started with Windows Recall on Windows 11

Windows 11 version 24H2 introduces a feature called Windows Recall, which captures and remembers on-screen activities using AI. Users can configure settings for Windows Recall, including opting in or out, adjusting storage allocations (25GB for 256GB SSD, 75GB for 512GB SSD, and 150GB for 1TB SSD), deleting snapshots, and filtering specific apps and websites. The feature can filter sensitive information and allows users to pause and resume snapshots. Users can search for past activities using natural language queries and interact with snapshots to perform actions like copying text or erasing objects. Windows Recall operates only when the device is in use and does not upload data to the cloud. The data remains on the user's device, with encryption for security. The feature supports multiple languages, including English, Chinese, French, German, Japanese, and Spanish.

AppWizard

November 25, 2024

These are the best alternatives to Google’s most popular apps

Many users rely on Google-made Android applications, which can create dependency, but alternatives exist. Heliboard is an open-source keyboard that can replace Gboard after initial setup. Mozilla Thunderbird is a strong alternative to Gmail, offering a clean interface and support for multiple email providers. Mozilla Firefox is a preferred browser alternative to Google Chrome, providing extensive customization and support for extensions. Notally offers a familiar layout for note-taking as an alternative to Google Keep. Material Notes and Mixplorer are alternatives to Files by Google, with Material Notes offering a sleek interface and Mixplorer providing advanced features. Todoist is a feature-rich alternative to Google Tasks, with its own calendar solutions and voice recognition for task entry. OsmAnd and Organic Maps are navigation alternatives to Google Maps, utilizing OpenStreetMap data. Aves Gallery is a feature-rich gallery app alternative to Google Photos, while Focus Go offers a simpler experience for less powerful devices. Some Google apps, like Google Recorder and Google Messages, lack genuine alternatives.

Winsage

September 30, 2024

Windows Recall: Microsoft’s second launch attempt after devastating criticism – gHacks Tech News

Microsoft introduced its AI-driven feature, Windows Recall, which aimed to provide users with AI-enhanced access to their past activities by capturing screenshots every five seconds. However, it faced backlash from privacy and security advocates due to its automatic opt-out nature and inadequate data security. In response, Microsoft retracted Recall and made significant changes, including making it an opt-in feature, allowing uninstallation, encrypting the database, running processes in an isolated environment, and requiring Windows Hello for certain actions. Users now have controls over disk space allocation, data retention duration, and can delete specific data. Private browsing data will not be saved in major browsers, and website activity can be blocked. A system tray icon will indicate activity, and sensitive content filtering is included.