command Archives

Winsage

June 15, 2026

New Windows Zero‑Day Flaws Target Defender and BitLocker

A cybersecurity researcher known as “Nightmare Eclipse” has revealed two zero-day exploits threatening Windows systems: RoguePlanet and GreatXML. RoguePlanet targets Microsoft Defender, allowing attackers to execute privileged actions and gain SYSTEM-level access on Windows machines. It is a local privilege escalation vulnerability that remains effective on fully updated systems. GreatXML claims to bypass BitLocker disk encryption by manipulating the Windows Recovery Environment, potentially granting access to protected files. However, its effectiveness may be overstated, as it might require administrator-level access. Microsoft advises organizations to implement security updates, treat lost or accessible devices as high-risk, enforce stricter policies, and monitor threat intelligence to mitigate exposure to these vulnerabilities.

AppWizard

June 15, 2026

Over 50 Android Apps Found Spreading MagicAd Trojan via Official Stores

A trojan named Android.MagicAd.1 has been identified as a significant threat to Android users, capable of delivering persistent background advertisements by circumventing built-in defenses. Detected in 2025, it has spread through over 50 infected games and utility applications, infiltrating both dubious download sites and official app stores like the Samsung Galaxy Store and Xiaomi’s GetApps. The malware employs a strategy of rotating applications to evade detection, remaining active on user devices after download. It uses hidden, encrypted components within native code libraries and conducts environment checks to avoid monitoring before launching its payload. Android.MagicAd.1 bypasses Android's restrictions by targeting trusted system applications, utilizing methods that vary by device manufacturer. For example, it uses a delayed system command on Xiaomi and Amazon devices, exploits Android Binder on Vivo devices, and employs a universal fallback method for other brands to gain priority for displaying ads. All identified malicious applications have been removed from official stores, but the campaign highlights the vulnerability of security software.

Winsage

June 14, 2026

What’s New With Windows 11 in 2026

Windows 11, introduced by Microsoft in 2021, has evolved into a simpler and more attractive platform while retaining familiarity. As of 2026, it continues to enhance features and address customer feedback. Microsoft now releases a new version of Windows 11 annually, with each version supported for two years for Home and Pro editions. Currently, versions 24H2 and 25H2 are supported and functionally identical, while the new 26H1 version is for laptops with Qualcomm Snapdragon X2 processors. The hardware requirements have become more lenient, and Microsoft has introduced a Copilot+ PC brand for high-end machines with advanced microprocessors. Updates have been revamped for a more predictable experience, and users can manage updates through new options. The user interface has been refined with a modern aesthetic, including Light and Dark modes, centered Taskbar icons, and an evolved Start menu. Windows 11 supports multitasking with familiar tools like Alt + Tab and enhanced Snap features. File Explorer has been updated with a modern interface and integration with OneDrive. The Microsoft Store has been redesigned for a broader selection of apps, and Microsoft Edge is bundled with Windows 11, although it has faced criticism for overriding user preferences. Windows 11 includes preloaded apps leveraging AI, such as Microsoft Copilot and Microsoft 365 Copilot, along with updated core applications. It supports gaming with a dedicated Xbox app and Game Pass subscriptions, and simplifies user account management with robust security features like Windows Hello. For power users, it offers a modern Terminal app and advanced configuration options in the Settings app.

Winsage

June 14, 2026

Windows 11 KB5094126 crashes some PCs (HP?) with BSODs, breaks OneDrive in File Explorer, enterprise apps

Windows 11 KB5094126, released on June 9, 2026, is a significant update that introduces new features, including the Low Latency Profile, and addresses up to 200 security vulnerabilities. However, it has caused boot failures for some HP devices, particularly the HP EliteBook 840 G10, leading to BSODs or BitLocker Recovery prompts. The update may conflict with specific BIOS configurations or EFI/System partition settings, especially on devices with older EFI partitions. Users experiencing boot failures may need to disable Secure Boot as a temporary workaround. Additionally, the update has disrupted OneDrive integration in File Explorer, preventing access from the left pane and tray icon, although users can still access cloud folders directly. Similar issues have been reported with Dropbox and iCloud Drive. The update has also affected Microsoft Word integration in various business applications, leading to failures in document handling. Furthermore, changes to desktop.ini files have impacted custom folder icons, requiring users to unblock these files to restore functionality.

Tech Optimizer

June 14, 2026

Automate Amazon Aurora PostgreSQL major or minor version upgrade using AWS Systems Manager and Amazon EC2

Managing upgrades for the Aurora PostgreSQL-Compatible Edition can be labor-intensive and error-prone when done manually. Automating Amazon Aurora PostgreSQL upgrades can reduce manual effort by up to 80% and minimize downtime risks through consistent procedures. The automation solution uses AWS Systems Manager, Amazon EC2, and AWS Secrets Manager, structured around two modules: PREUPGRADE for readiness checks and UPGRADE for the actual upgrade process. The solution identifies upgrade candidates using database tags, creates safety backups with Copy-on-Write clones, manages the upgrade process with minimal human intervention, and offers real-time monitoring and email notifications. The workflow includes logging into the Systems Manager console, downloading the upgrade script, identifying Aurora PostgreSQL clusters based on tags, retrieving credentials from AWS Secrets Manager, executing pre-upgrade checks or upgrades, uploading log files to Amazon S3, and sending email notifications via Amazon SNS. Prerequisites include familiarity with the Aurora upgrade process, appropriate IAM permissions, creating a maintenance user, setting up AWS Secrets Manager, tagging Aurora clusters, creating an S3 bucket, and configuring an SNS topic for notifications. Implementation steps involve reviewing setup instructions, uploading the upgrade script to S3, creating an AWS Systems Manager automation document, executing the automation document, and monitoring the upgrade process through logs generated during pre-upgrade and upgrade phases. The logs provide detailed information on tasks performed, including replication slot status and configuration backups. After testing, it is recommended to clean up resources to avoid future charges.

Winsage

June 13, 2026

I tried Microsoft’s new AI-powered Terminal, and it is a surprisingly different experience

Windows 11 has introduced a new command-line tool called "Intelligent Terminal," which is a fork of the open-source Windows Terminal project and integrates an AI agent, specifically GitHub Copilot by default. Users must manually download and install the Intelligent Terminal, which retains the familiar Windows Terminal interface but adds a side panel for AI interaction. Upon first launch, users select an Agent Client Protocol (ACP) compatible agent, with options to enable features like automatic error detection and session management. The Intelligent Terminal offers two main experiences: agent chat and agent management. The agent chat pane allows users to inquire about errors and receive assistance, while the agent management pane tracks active and past agent sessions. Users can also utilize other agents like Claude Code, Google Gemini, and OpenAI Codex, provided they are installed locally. The Command Palette is enhanced with AI actions, allowing users to initiate tasks without interrupting their workflow. Users can customize terminal and agent settings, including pane position and error detection features. Adjustments require saving to apply changes.

AppWizard

June 13, 2026

Is Facebook down? Live updates as Messenger and Meta apps offline in major outage

Meta's communications chief, Andy Stone, has acknowledged ongoing issues with Facebook but assured users that the company is working to address these challenges. Anecdotal evidence suggests that service is gradually being restored, with some users able to access the platform while others continue to experience difficulties. Facebook outages, though infrequent, can significantly impact its 3.6 billion daily users, as seen in a notable seven-hour outage in 2021 caused by an erroneous command. The recent outage has been described as one of the most significant in recent history, affecting millions globally. Instagram and WhatsApp were also impacted, though they are functioning better than Facebook, with users encountering loading issues on their web versions. During the outage, Facebook displayed a retro-style error page, indicating the service's temporary unavailability.

AppWizard

June 13, 2026

Facebook, Instagram, Messenger Outages: What We Know So Far

At 2:45 PM UK time, users experienced disruptions across Facebook and Messenger, encountering error messages. Other Meta services, including Instagram and WhatsApp, also faced issues globally. Meta's communications chief, Andy Stone, acknowledged the problem on X, stating they were working on it. By 3:38 PM UK time, some users reported regaining access to Facebook, while Messenger saw a spike in outages around 2:22 PM, which later decreased. Instagram had increased outage reports, while WhatsApp appeared to function normally. The cause of the outages is unclear, and Meta has not yet responded to inquiries. Meta services share server infrastructure, meaning issues can affect multiple platforms. In the past, Meta experienced a significant outage in 2021 due to an erroneous command affecting its network. The cause of the 2026 outages remains undetermined.

AppWizard

June 13, 2026

Even a fantasy game like Skyrim won’t let me be a trillionaire

Elon Musk has been announced as the world's first trillionaire. In gaming, no title has allowed players to reach trillions in virtual currency, with Balatro being one of the few games where a player can accumulate billions. In Skyrim, using the console command player.additem with the item code for gold (0000000f) to add one trillion gold pieces results in the character going into over 2 billion gold in debt due to the game's coding limitations. Skyrim's gold is represented as a 32-bit signed integer, which has a maximum value of 2,147,483,647. Exceeding this value causes the amount to flip from positive to negative.

Winsage

June 12, 2026

Hackers Use Fake Windows Update Installers to Deliver OnyxC2 Credential Stealer

OnyxC2 is a sophisticated credential stealer available for a subscription fee of 0 per month, distributed through disguised lures such as fake Windows updates and legitimate software installers. It functions as a commercial product with features like an automated payload builder, tiered licensing, and a centralized web dashboard. The malware boasts a 99% detection-evasion rate, successfully evading major antivirus solutions during tests. It is developed in C++, utilizing direct system calls and mutating with each build to avoid detection. OnyxC2 collects data from around 210 applications, targeting 45 web browsers, password managers, cryptocurrency wallets, and FTP clients. The malware is delivered using DLL sideloading, where a password-protected archive contains a legitimate application and a malicious DLL. The attacker's DLL is disguised by inflating its size and is loaded by a trusted binary. The malicious code remains encrypted on disk and decrypts in memory to evade analysis. OnyxC2 communicates with a Cloudflare-fronted command-and-control server to manage infected hosts and execute commands like hardware registration and cookie uploads. The threat extends to business environments, targeting FTP and email clients, with stolen session cookies allowing ongoing access to corporate infrastructure. Implementing anti-data exfiltration controls is recommended as a mitigation strategy.