Chromium-based browsers Archives

Tech Optimizer

August 2, 2025

Gamers at risk as scammers are using malware-infected cheats and mods to steal passwords and crypto — here’s how to stay safe

Recent research from Dr.Web has identified a malware family called Trojan.Scavenger that targets Windows users by disguising itself as game performance boosters or enhancements. This malware exploits vulnerabilities in games like Grand Theft Auto 5 and Oblivion Remastered, typically arriving as modified dynamic libraries with extensions like .ASI. When installed, it can automatically load if the game does not validate its libraries properly. Once activated, it connects to a command-and-control server using encrypted communication and can deploy additional trojans that infiltrate Chromium-based browsers, disrupting their security features and replacing legitimate extensions with malicious ones. This puts applications at risk, including crypto wallets like MetaMask and Phantom, and password managers like Bitwarden and LastPass, as the malware captures sensitive information and sends it to attackers. Exodus wallet is also targeted, with the malware extracting critical JSON entries for private key generation. To mitigate these risks, users are advised to avoid downloading unofficial content from unverified sources, keep antivirus software updated, manage social media interactions carefully, and verify file paths and digital signatures.

Winsage

July 9, 2025

Windows 10 KB5062554 cumulative update released with 13 changes, fixes

Microsoft has released the KB5062554 cumulative update for Windows 10 22H2 and 21H2, which includes thirteen new fixes and enhancements. This mandatory update addresses one critical zero-day vulnerability and 136 other flaws, and users can install it by checking for updates in the Windows Update settings. After installation, Windows 10 22H2 will be updated to build 19045.6093 and Windows 10 21H2 to build 19044.6093. The update features various fixes, including issues with the Start Menu, file server responsiveness, and USB-connected printers. A known issue with the update is that NOTO fonts may appear blurry at 96 DPI, particularly affecting CJK text in Chromium-based browsers, with a suggested workaround of adjusting display scaling to 125% or 150%.

Winsage

July 7, 2025

Oh dear – Microsoft Windows Firewall was found to be complaining about…Microsoft code?

Microsoft has acknowledged an issue with Windows Firewall following the June 2025 preview update of Windows 11 24H2 (KB5060829, OS Build 26100.4484). Users may encounter an error event labeled 'Config Read Failed' with the message 'More data is available' each time they restart their device. Microsoft assures that this does not indicate a malfunction within Windows Firewall and can be disregarded. The issue is linked to a feature under development, and no timeline for a fix has been provided. Additionally, there is another issue affecting the display of Chinese, Japanese, and Korean characters at 96 DPI in Chromium-based browsers, which Microsoft is working on with Google.

Winsage

July 7, 2025

Oh dear – Microsoft Windows Firewall was found to be complaining about…Microsoft code?

Microsoft acknowledged an issue with Windows Firewall following the June 2025 preview update of Windows 11 24H2 (KB5060829), which generates "Config Read Failed" error messages in security event logs. Despite frequent logging upon device restarts, Microsoft stated that this does not indicate a malfunction of Windows Firewall and can be ignored. The issue is linked to an under-development feature, and no resolution timeline has been provided. Additionally, there is a problem with displaying Chinese, Japanese, and Korean characters at 96 DPI in Chromium-based browsers, which Microsoft is working on with Google.

Winsage

June 27, 2025

Windows 11 KB5060829 update released with 38 new changes, fixes

Microsoft has released the KB5060829 preview cumulative update for Windows 11 24H2, featuring 38 enhancements, including an improved taskbar and a new PC-to-PC migration experience. This optional update allows Windows administrators to test bug fixes and features before the next Patch Tuesday release. The update focuses on non-security improvements, with the PC-to-PC migration feature expected to roll out in a future update. Adjustments to the taskbar allow for more app icons to be displayed when space is limited. Users can install the update via Settings > Windows Update or manually from the Microsoft Update Catalog. The update elevates Windows 11 24H2 systems to build 26100.4484 and includes fixes for various issues, such as script delays on SMB shares, unresponsive applications when exiting full-screen games, and problems with Windows Hello certificate renewal. A known issue affects CJK text clarity at 96 DPI in Chromium-based browsers. Windows 11 24H2 is broadly deployed, and the Windows 11 2024 Update is being rolled out to eligible Windows 10 22H2 PCs.

Winsage

June 24, 2025

Windows 10 KB5061087 update released with 13 changes and fixes

Microsoft has released the June 2025 non-security preview update for Windows 10, version 22H2, designated as KB5061087. This optional cumulative update addresses issues with USB multi-function printers' scanning capabilities, Start Menu problems, and a Component Object Model (COM) functionality bug causing remote COM activation failures. The update elevates Windows 10 22H2 systems to build 19045.6036 and includes additional fixes such as an updated curl tool to version 8.13.0, a fix for device registration issues in the Entra ID Windows Account Manager (WAM) plugin, resolution of problems with removing unused language packs and Feature on Demand packages, and correction of a system unresponsiveness issue related to Oplock break requests on SMB shares. Users can install the update via the Windows Settings app or manually from the Microsoft Update Catalog. A known issue with the update is that CJK text may appear blurry at 96 DPI in Chromium-based browsers. Additionally, home users can enroll in the Extended Security Updates (ESU) program at no cost after Windows 10's end of life in October, provided they have 1,000 Microsoft Rewards points or have enabled Windows Backup. Alternatively, they can purchase a year of extended security updates.

Winsage

June 10, 2025

Windows 10 KB5060533 cumulative update released with 7 changes, fixes

Microsoft has released the KB5060533 cumulative update for Windows 10 22H2 and 21H2, which includes security patches addressing seven zero-day vulnerabilities. The update reintroduces seconds to the time display in the Calendar flyout, enhances the Rich Calendar feature, and adds descriptive text for the Weather button. It fixes rendering issues with GB18030 characters and resolves a problem with the Windows Account Sync Consent system in the European Economic Area. The update also addresses a known issue causing Hyper-V virtual machines to freeze or restart unexpectedly. A current issue involves blurry NOTO fonts at 96 DPI in Chromium-based browsers, with a workaround of adjusting display scaling to 125% or 150%. After installation, Windows 10 22H2 will be upgraded to build 19045.5965 and Windows 10 21H2 to build 19044.5965. Users can manually download the update from the Microsoft Update Catalog.

AppWizard

June 3, 2025

Meta and Yandex are de-anonymizing Android users’ web browsing identifiers

Recent developments in browser technology have raised concerns about user privacy and data tracking by companies like Meta and Yandex. In response, several Android browsers are enhancing user privacy by blocking abusive JavaScript linked to web trackers. DuckDuckGo has implemented measures to block domains and IP addresses associated with trackers, preventing the transmission of identifiers to Meta and restricting access to Yandex Metrica. Following feedback, DuckDuckGo's developers updated their blacklist to include missing addresses. The Brave browser uses extensive blocklists to prevent identifier sharing and blocks requests to localhost without user consent. Vivaldi forwards identifiers to local Android ports by default but allows users to adjust settings to block trackers. Researchers warn that these solutions may not be foolproof and emphasize the ongoing challenge of maintaining effective blocklists. Chrome and most other Chromium-based browsers execute JavaScript as intended by Meta and Yandex, while Firefox has faced challenges with SDP munging and has not yet announced plans to address this behavior.

Winsage

May 29, 2025

Windows 10 KB5058481 update brings seconds back to calendar flyout

Microsoft has released the optional KB5058481 preview cumulative update for Windows 10 22H2, which includes seven changes, notably the restoration of seconds to the time display in the calendar flyout. This update is part of the routine "optional non-security preview updates" and does not address security vulnerabilities. Users can install the update by navigating to Settings and manually checking for updates. Upon installation, Windows 10 22H2 will be updated to build 19045.5917. The update also includes enhancements for user experience and addresses a known issue with NOTO fonts appearing blurry at 96 DPI, particularly affecting CJK text in Chromium-based browsers. A temporary solution is to adjust the display scaling to 125% or 150%.

Tech Optimizer

May 21, 2025

Lumma Stealer: Breaking down the delivery techniques and capabilities of a prolific infostealer

Microsoft has monitored Lumma Stealer, an infostealer malware used by financially motivated threat actors. Lumma Stealer, also known as LummaC2, functions as a malware-as-a-service (MaaS) solution that extracts data from browsers and applications, including cryptocurrency wallets. The entity behind Lumma is identified as Storm-2477, which maintains the malware and its command-and-control (C2) infrastructure. Affiliates can create malware binaries and manage C2 communications through a panel provided by Storm-2477. Ransomware groups have integrated Lumma Stealer into their operations. Lumma Stealer employs various delivery techniques, including phishing emails, malvertising, drive-by downloads, Trojanized applications, and abuse of legitimate services. Specific campaigns have been identified, such as one in April 2025 that used EtherHiding and ClickFix techniques to deliver Lumma Stealer via compromised websites. Another campaign on April 7, 2025, targeted Canadian organizations with emails containing invoice lures that led to malicious downloads. The malware is developed using C++ and ASM, employing advanced obfuscation techniques to evade detection. It can extract a wide range of user data, including browser credentials, cryptocurrency wallet information, and user documents. Lumma Stealer maintains a robust C2 infrastructure with multiple hardcoded and fallback C2 servers, utilizing encryption methods to secure communications. Microsoft's Digital Crimes Unit has disrupted Lumma Stealer's infrastructure by blocking approximately 2,300 malicious domains. Recommendations to mitigate the impact of Lumma Stealer include strengthening Microsoft Defender configurations, implementing multifactor authentication, and utilizing phishing-resistant authentication methods. Microsoft Defender products can detect and block activities associated with Lumma Stealer, providing alerts and insights for incident response.