cybersecurity threats

Winsage
July 23, 2025
Recent research by Panasonic indicates that many businesses are hesitant to migrate to Windows 11 due to cybersecurity threats and financial implications. Nearly two-thirds (62%) of devices in use will need replacement or upgrades for compatibility with Windows 11, rising to 76% for larger enterprises with over 5,000 employees. Concerns about ransomware and malware are prevalent, with 93% of respondents expressing worry, and two-thirds believe migrating could increase overall costs, including 55% anticipating higher cybersecurity expenses. Additionally, 47% of organizations face software compatibility issues, and 45% are concerned about productivity losses during the transition. The Extended Security Update (ESU) program is estimated to cost around £320,000 over three years for 1,000 devices. Despite these challenges, about one-third of organizations see potential benefits in upgrading, such as improved performance (36%), a more future-proof ecosystem (36%), and access to advanced AI features (34%). Chris Turner from Panasonic emphasizes the need for a strategic approach to ensure a smooth transition to Windows 11.
Tech Optimizer
July 20, 2025
The landscape of cyber threats has evolved, with increased sophistication and frequency of attacks, partly due to advancements in artificial intelligence. Businesses, regardless of size, should reassess their vulnerabilities as even small entities can be targeted. Investing in robust cybersecurity software is essential, with a distinction between antivirus and anti-malware tools being crucial. Malware includes various types of malicious software, and while antivirus software primarily uses signature-based detection, anti-malware tools employ advanced techniques like behavioral analysis and sandboxing. Anti-malware programs can identify hidden threats that antivirus may miss, such as rootkits. Antivirus solutions have adapted to include heuristic analysis and additional features like password management and firewalls. Antivirus is designed for average users, while anti-malware is favored by high-risk users, though everyone can benefit from both. Combining antivirus and anti-malware creates a layered security system, and many vendors now offer integrated products. Popular antivirus solutions with anti-malware capabilities include Bitdefender, Norton 360, McAfee, and Avast. Users are encouraged to run both types of software or choose a combined solution for comprehensive coverage. Despite high detection rates, users should remain vigilant and informed to reduce the risk of cyberattacks.
Winsage
July 18, 2025
Microsoft has extended support for Windows 10 applications and services until August 2026, allowing users an additional year to transition to Windows 11. Support was originally set to end in October 2025. During this extension, Microsoft will stop new feature updates for MS Office applications on Windows 10, but critical security updates will continue until October 2028. Windows 10 will cease receiving software updates, including security patches, on October 14, 2025. Microsoft is offering free extended security updates for users who activate Windows Backup or choose a paid service. Windows 11 features a new interface, improved window organization tools, enhanced multi-monitor support, and integrates Microsoft’s AI assistant, Copilot. It also includes gaming enhancements like DirectStorage and Auto HDR, and supports Android apps through the Microsoft Store.
AppWizard
July 10, 2025
Activision has removed Call of Duty: WWII from the Microsoft Store and PC Game Pass due to reports of hackers exploiting a critical vulnerability in the game's PC versions. Players experienced hijacked computers during gameplay, with evidence of remote code execution attacks. An outdated and insecure build of the game was uploaded to Microsoft’s services, despite having been patched on other platforms. The game is still accessible via Steam and console versions. Activision has not reinstated access to the game and is investigating the security breach.
Winsage
July 10, 2025
Microsoft released patches for 130 vulnerabilities in the July 2025 Patch Tuesday update. Notable vulnerabilities include CVE-2025-49719, an uninitialized memory disclosure in Microsoft SQL Server, and CVE-2025-47981, a wormable remote code execution flaw in Windows. CVE-2025-49719 is assessed as having "unproven" exploit code, while CVE-2025-47981 has a high likelihood of exploitation within 30 days. Other vulnerabilities include CVE-2025-49717, a buffer overflow in SQL Server, and CVE-2025-49704, which allows code injection in SharePoint. Additionally, updates address vulnerabilities in Windows Routing and Remote Access Service (RRAS) and Microsoft Edge, including CVE-2025-6554, which has been actively exploited. Administrators are advised to prioritize patching internet-facing assets and consider additional mitigations for RRAS vulnerabilities.
AppWizard
July 7, 2025
A concerning trend in mobile security shows that malicious applications and spyware are increasingly targeting Android users. Adware, particularly the Android.HiddenAds family, remains the most prevalent threat, despite a decrease in detections. The Android.MobiDash adware trojans have increased by over 11%. The Android.FakeApp malware, which disguises itself as legitimate applications, has seen a 25% decline in activity, primarily targeting Turkish and French-speaking users. The Android.Banker variant has surged by over 70%, indicating a rise in banking trojans. A large-scale crypto theft operation involved the Android.Clipper.31 trojan embedded in a modified WhatsApp version and low-cost Android firmware, which replaces cryptocurrency wallet addresses. Spyware named Android.Spy.1292.origin targets Russian military personnel through a counterfeit mapping application. Malicious applications continue to be found on Google Play, including adware disguised as cryptocurrency news apps and fake finance applications. The open nature of Android poses ongoing cybersecurity risks, even within official app stores.
Winsage
June 20, 2025
Microsoft is enhancing its Windows 365 Cloud PCs with new security features starting in May 2025. All newly provisioned and reprovisioned Cloud PCs using a Windows 11 gallery image will have Virtualization-Based Security (VBS), Credential Guard, and Hypervisor-Protected Code Integrity (HVCI) enabled by default. VBS creates a secure environment to protect system processes, Credential Guard secures authentication credentials, and HVCI ensures only verified code runs at the kernel level. Additionally, beginning in the latter half of 2025, clipboard, drive, USB, and printer redirections will be disabled by default on newly provisioned and reprovisioned Cloud PCs to mitigate security risks, although IT administrators can re-enable these features if needed.
Winsage
May 30, 2025
Microsoft is developing a Windows-native update orchestration platform to improve the software updating experience for IT administrators and end-users. This platform aims to streamline the management of updates across various applications and components within the Windows ecosystem, reducing confusion caused by independent updates for different products. Currently in private preview, developers can access the platform through Windows Runtime (WinRT) APIs and PowerShell commands by registering as update providers. The orchestrator will intelligently defer updates based on user activity and system performance, and it will automatically reschedule failed attempts. Additionally, Microsoft is introducing Windows Backup for Organizations to assist with the transition from Windows 10 to Windows 11. This feature simplifies the backup and restoration of settings for Windows 10 and 11 devices. To use this functionality, devices must be Microsoft Entra hybrid joined or Microsoft Entra joined and running a supported version of Windows. The restore feature is compatible only with Microsoft Entra joined devices running Windows 11, version 22H2 and later. The Windows Backup for Organizations feature is currently in a limited public preview for select members of the Microsoft Management Customer Connection Program.
Search