credential Archives

AppWizard

May 5, 2025

Google makes it easier to share digital credentials on your Android phone

Android now supports OpenID standards for digital credential presentation and issuance, allowing users to securely store and send cryptographically verifiable digital documents across apps. Google has expanded access to its Digital ID capabilities via the Wallet app for U.K. residents, promoting interoperability among applications managing digital identities. The Android platform now includes native support for OpenID4VP and OpenID4VCI through the Credential Manager's DigitalCredential API, enabling apps to incorporate various digital documents like educational certifications and insurance policies. Users can share credentials securely between devices using CTAP protocols and select appropriate credentials without specifying a digital wallet app. Digital credentials will be usable for account recovery on platforms like Amazon, accessing health services through CVS and MyChart, and verifying identities on services like Uber and Bumble. Samsung Wallet and 1Password will also support the storage of digital credentials, enhancing the ecosystem of digital wallets adhering to OpenID standards.

Winsage

May 2, 2025

CISOs should re-consider using Microsoft RDP due to password flaw, says expert

Microsoft has clarified that a feature in its operating system, which allows at least one user account to log in after prolonged offline periods, is a deliberate design choice and not a security vulnerability. The Remote Desktop Protocol (RDP) caches the last set of credentials used to prevent administrators from being locked out, but this can lead to complications if credentials are changed, potentially allowing unauthorized access if outdated credentials are exploited. Johannes Ullrich from the SANS Institute emphasized the importance of securing RDP and recommended robust authentication measures and isolation of RDP endpoints to mitigate risks.

Winsage

April 30, 2025

Windows RDP lets you log in using revoked passwords. Microsoft is OK with that.

The ability to use a revoked password for Remote Desktop Protocol (RDP) access on Windows machines linked to Microsoft or Azure accounts allows users to log in with either a dedicated password or the credentials from their online account. Even after changing the account password, the old password remains valid for RDP logins indefinitely, and in some cases, multiple previous passwords may still grant access. This behavior poses significant security risks, especially if the account has been compromised, as changing the password does not block access via RDP with the old password. The issue arises from credential caching on the local machine, where the initial login credentials are stored securely, allowing continued access without online verification.

Tech Optimizer

April 30, 2025

5 Free Antivirus Programs To Eliminate Malware and Viruses (2025)

Users are increasingly seeking effective malware protection without the cost of premium software, leading to the emergence of free antivirus programs that offer robust security features. This trend is particularly beneficial for Windows 11 users who want real-time protection while staying within budget. Several leading cybersecurity firms provide free antivirus solutions equipped with advanced features such as real-time scanning, phishing defenses, cloud-based malware detection, and system optimization tools. These free programs can adequately protect a diverse audience, including gamers, remote workers, students, and casual users. Top free antivirus programs for Windows 11 in 2025 include: 1. Bitdefender Antivirus Free: Utilizes the same malware engine as its paid version, offers real-time detection, anti-phishing protection, and is ultra-light on system resources. 2. Microsoft Defender Antivirus: Integrated into Windows 11, provides cloud-delivered protection and built-in ransomware mitigation without ads. 3. Avast Free Antivirus: Offers additional tools like network scanning and a Do Not Disturb mode for gaming. 4. AVG AntiVirus Free: Features a simpler interface, link and attachment protection, and fewer pop-ups. 5. TotalAV Free Antivirus: A newer option with a clean interface, real-time protection, and a junk file cleaner. Key factors to consider when selecting free antivirus software include real-time protection, low resource usage, minimal intrusion, and extra security tools. While free solutions are suitable for most users, premium protection may be necessary for small businesses or those handling sensitive data. For gamers, Bitdefender and Avast are recommended for their low system impact and gaming modes. For remote workers, Microsoft Defender and TotalAV are highlighted for their ease of use and integrated protections. Essential features of effective antivirus programs include robust virus protection, real-time scanning, and a behavior shield to detect new threats. Performance should not significantly slow down the system, and the interface should be user-friendly. Experts recommend Windows Defender for basic protection, with AVG and Avast receiving endorsements for their feature balance, while Bitdefender Free is noted for its detection rates and minimal system impact. Free antivirus programs may lack advanced features and technical support compared to paid versions.

Tech Optimizer

April 24, 2025

Meet Xata Agent: An Open Source Agent for Proactive PostgreSQL Monitoring, Automated Troubleshooting, and Seamless DevOps Integration

Xata Agent is an open-source AI assistant designed for PostgreSQL database site reliability engineering. It monitors logs and performance metrics to identify issues like slow queries and unusual connection counts, helping to maintain database integrity and performance. The tool automates tasks such as vacuuming and indexing and provides actionable recommendations through diagnostic playbooks and read-only SQL routines. The architecture is built as a Next.js application using TypeScript, organized in a monorepo structure. Developers can set up their environment using Node, install dependencies, and configure a local PostgreSQL instance with Docker Compose. Production deployment involves using Docker images and configuring environment variables in a production file. Key functionalities include proactive monitoring, configuration tuning, performance troubleshooting, safe diagnostics, cloud integration, alerting, LLM flexibility, and playbook customization. Developers can create new tools and integrate them into playbooks for cohesive workflows. Future plans include custom playbooks, support for Model Context Protocol, evaluation harnesses, approval workflows, and a managed cloud edition. The architecture promotes extensibility and community contributions, standardizing incident response and reducing human error in database management.

Winsage

April 23, 2025

Microsoft fixes Windows Server 2025 blue screen, install issues

Microsoft has addressed issues affecting Windows Server 2025 for systems with more than 256 logical processors, which could lead to installation failures, slow start-up times, and blue screen errors. These problems have been resolved through updates since the KB5046617 cumulative update released in November. IT administrators are advised to install the latest security updates, which include essential fixes. A temporary workaround involves limiting the number of logical processors to 256 or fewer by adjusting settings in the UEFI Setup. Additionally, Microsoft warned of potential accessibility issues with Windows Server 2025 domain controllers post-restart and reported login difficulties with Windows Hello after the April 2025 updates. A bug causing authentication issues with Credential Guard has been fixed, and a new safeguard hold for Windows 11 24H2 has been introduced due to compatibility problems with the SenseShield Technology's sprotect.sys driver.

Winsage

April 14, 2025

Microsoft: Windows Server 2025 restarts break connectivity on some DCs

Microsoft has warned IT administrators about a potential issue with Windows Server 2025 domain controllers (DCs) becoming inaccessible after a restart, due to defaulting to the standard firewall profile instead of domain-specific settings. This mismanagement can lead to DCs being unreachable on the domain network or improperly accessible through restricted ports and protocols. A workaround involves manually restarting the network adapter on affected servers after each reboot, and Microsoft recommends setting up a scheduled task for this. The company is working on a permanent solution for a future update. Additionally, Microsoft has alerted users to another issue with Windows Hello logins related to the KB5055523 April 2025 security update and has implemented a fix for authentication issues with Credential Guard and the Kerberos PKINIT pre-auth security protocol.

Winsage

April 9, 2025

Microsoft: April 2025 updates break Windows Hello on some PCs

Microsoft has announced that a subset of Windows users may have difficulties logging into their accounts via Windows Hello after installing the April 2025 security updates, specifically affecting Windows 11 24H2 and Windows Server 2025 with the KB5055523 update. The issue occurs on devices with Dynamic Root of Trust for Measurement (DRTM) or System Guard Secure Launch features enabled prior to the update. Users may see messages indicating problems with their PIN or facial recognition setup. Microsoft has provided workarounds for affected users, including re-enrollment in Windows Hello for both PIN and facial recognition. Additionally, Microsoft resolved another bug related to KB5055523 affecting Credential Guard and introduced a safeguard hold for Windows 11 24H2 systems using SenseShield Technology's sprotect.sys driver due to compatibility issues. Upgrade blocks have also been implemented for devices with incompatible software or hardware, including Dirac audio improvement software and certain applications.

Winsage

April 9, 2025

Microsoft releases KB5055523 update to fix a glut of Windows 11 problems

Microsoft has released the KB5055523 update for Windows 11, which includes various fixes and enhancements. Key improvements include a fix for the Explorer context menu issue, increased reliability of ctfmon.exe, and resolution of a Kerberos authentication problem related to RC4 encryption. New features for Copilot+ PC users include an improved Windows Search with semantic indexing, natural language search for cloud-stored photos, enhanced communication capabilities with live captions and real-time translation, and support for real-time translation into Simplified Chinese on Snapdragon-powered devices. The update also addresses issues with machine password rotation in the Identity Update Manager, updates for Daylight Saving Time in Chile, and unexpected behavior in the PcaUiArmUpdate feature. KB5055523 will be automatically installed for users.

Winsage

April 9, 2025

Microsoft squashes one of File Explorer’s strangest UI bugs in April’s Patch Tuesday

Microsoft released its Patch Tuesday updates on the second Tuesday of April, including the KB5055523 patch for Windows 11 24H2, which addresses a File Explorer menu issue and includes security enhancements. This patch encompasses improvements from the previous KB5053656 build. The update resolves a glitch with the three dots menu in File Explorer, fixes a critical issue causing a Blue Screen of Death (BSOD) when waking from sleep, and upgrades Task Manager to display standardized CPU usage metrics. For Copilot+ PCs with Snapdragon chips, it introduces AI-driven Windows Search capabilities and improves Live Captions for real-time translation in over 44 languages. New features include an enhanced search functionality, a Gamepad keyboard layout for touch, and a new system tray icon for emoji. The update also provides a quick overview of key specifications in the Settings menu and resolves issues with Credential Roaming. KB5055523 is a mandatory security update, and older versions of Windows 10 have also received updates.