DNS Archives

AppWizard

December 1, 2025

Popular YouTube app for Android TV ‘SmartTube’ compromised with malware

The developer of SmartTube, an ad-free YouTube client for Android TV, confirmed a security breach involving the app's signing key, which allowed malicious actors to inject harmful code into app updates. The breach was disclosed by Yuriy Yuliskov, the maintainer, who advised users to avoid reinstalling the old app and instead wait for a newly signed version. A reverse-engineering analysis of the infected APKs revealed that they were gathering sensitive information and transmitting it to a remote server. Versions 28.56 to 30.52 were particularly affected, and Google Play Protect began disabling installations of SmartTube. In response, Yuliskov wiped his hard drive and released a new version, 30.56, with a different signing key and app ID. Transparency concerns remain, and the developer plans to disclose details about the breach and measures to prevent future incidents. Users have requested additional security assurances, including hashes of clean builds.

AppWizard

November 27, 2025

My dad filled his phone with random PDF apps and I blame Google

The author's father struggled to open a PDF on his HONOR phone, despite the device's native office suite supporting PDF files. He downloaded multiple misleading PDF apps from the Play Store, which did not resolve the issue. Eventually, he received a deceptive alert suggesting he update his PDF application, which led him to download yet another app. The problem was resolved when the author advised him to uninstall WPS Office, eliminating the misleading alerts and allowing PDFs to open correctly. A report from Malwarebytes indicated that only 15% of users feel confident identifying scams, highlighting the challenges users face in navigating the Android ecosystem. The Google Play Store has been criticized for hosting low-quality apps and deceptive ads, with a report from Zscaler noting the presence of hundreds of malicious apps. The author emphasizes the need for stricter advertising practices and better management of preinstalled apps to protect less tech-savvy users.

Winsage

November 25, 2025

Microsoft to remove WINS support after Windows Server 2025

Microsoft will remove the Windows Internet Name Service (WINS) from all future Windows Server releases after November 2034. WINS was officially deprecated with Windows Server 2022 in August 2021, and Windows Server 2025 will be the last version to support it. Standard support for WINS will continue until November 2034. Organizations are encouraged to migrate to DNS-based name resolution solutions before this deadline. The removal will include the WINS server role, management console snap-in, automation APIs, and related interfaces. Microsoft recommends auditing services dependent on NetBIOS name resolution and migrating to DNS solutions. Static host files are not advised as a workaround. Organizations should begin migration planning to avoid operational disruptions.

Winsage

November 24, 2025

Microsoft Retires WINS in Windows Server 2025

Microsoft has officially retired the Windows Internet Name Service (WINS) as part of the transition to modern DNS-based solutions. WINS, which resolved NetBIOS names to IP addresses, is being phased out due to its outdated nature and security vulnerabilities. It was deprecated with the release of Windows Server 2022 and will be completely removed in future releases, although support will continue until November 2034. Organizations are encouraged to transition to DNS and identify systems relying on WINS for name resolution. They should implement features like conditional forwarders and update or retire legacy applications that depend on WINS.

AppWizard

November 21, 2025

6 Free Android TV Apps You Need To Install Before Google Removes Sideloading

Developers are now required to register their applications before users can sideload them on Android devices, a change aimed at reducing malware risks associated with unverified apps. This policy is particularly significant for Android TV users who often rely on sideloading for niche utilities and unofficial streaming tools. The risk of malware is reportedly 50 times higher when apps are installed from outside the Play Store. Google has promised to create a workflow for experienced users to sideload unverified apps despite the new restrictions. Sideloading allows users to install apps not available on the Play Store, but it comes with increased risks of data-stealing malware. Users can sideload apps by transferring APK files to their devices and adjusting settings to allow installations from unknown sources. SmartTube TV is an unofficial YouTube client that offers an ad-free experience and integrates features like SponsorBlock, but it violates YouTube's Terms of Service. Aptoide TV is a community-driven app marketplace that provides access to apps not available on the Play Store, though caution is advised due to potential malware risks. Leanback Launcher is an open-source launcher that enhances performance and customization options for Android TV. RetroArch allows users to emulate classic gaming consoles and requires legal copies of games. Syncler organizes and streams shows and movies from user-selected providers without hosting content itself. AdAway is an open-source ad blocker that filters ads at the device level using host files. The selection of these apps focuses on enhancing the Android TV experience through performance improvements, user-friendly interfaces, and a range of categories including streaming, gaming, customization, and privacy.

Winsage

November 18, 2025

Microsoft is bringing native Sysmon support to Windows 11, Server 2025

Microsoft is integrating Sysmon into Windows 11 and Windows Server 2025, eliminating the need for separate deployments of Sysinternals tools. This integration will allow users to utilize custom configuration files for filtering captured events, which will be logged in the Windows event log. Sysmon is a free tool that monitors and blocks suspicious activities while logging events such as process creation, DNS queries, and executable file creation. It will be easily installable via the "Optional features" settings in Windows 11, with updates delivered through Windows Update. Sysmon will retain its standard features, including support for custom configuration files and advanced event filtering. Key events logged by Sysmon include process creation, network connections, process access, file creation, process tampering, and WMI events. Comprehensive documentation and new enterprise management features will be released next year.

Winsage

November 18, 2025

Microsoft to integrate Sysmon directly into Windows 11, Server 2025

Microsoft will integrate Sysmon into Windows 11 and Windows Server 2025, eliminating the need for standalone deployment. Sysmon will allow users to utilize custom configuration files for event filtering, logging events in the Windows event log. It tracks events such as process creation, DNS queries, executable file creation, changes to the clipboard, and auto-backup of deleted files. Users can access Sysmon through "Optional features" in Windows 11 and receive updates via Windows Update. Key events logged by Sysmon include process creation, network connections, process access, file creation, process tampering, and WMI events. Comprehensive documentation and new enterprise management features will be released next year.

Winsage

November 18, 2025

Microsoft Finally Makes Sysmon Native To Windows

Sysmon is a system monitoring tool that traditionally requires users to download and install it from Microsoft's Sysinternals page, often leading to its deployment only after issues arise. Pre-installing Sysmon can enhance proactive monitoring and issue diagnosis. Its effectiveness can be improved through tailored configurations, with resources available from Bleeping Computer for specific use cases like monitoring DNS queries. Additionally, Sysmon can now be installed on Linux systems via the Windows Subsystem for Linux (WSL), increasing its accessibility and versatility for users familiar with Sysmon.

Winsage

November 18, 2025

Microsoft Unveils Windows 11 Security, Resilience Features

Microsoft is enhancing the security framework of Windows through the Secure Future Initiative, focusing on trust, privacy, and enterprise controls. Key features include the introduction of Post-Quantum Cryptography (PQC) APIs for quantum-safe encryption, and an upgrade to BitLocker with hardware-accelerated support for improved disk encryption, set to roll out on new Windows 11 devices in Spring 2026. Microsoft is also integrating passkey manager support with Windows Hello, allowing users to choose from various passkey managers. Windows 11 employs App Control for Business to ensure only trusted applications run, while Microsoft Intune’s Managed Installer helps IT teams manage business applications. Additionally, Sysmon functionality will be integrated into Windows 11 and Windows Server 2025 for better threat detection. Microsoft is implementing Zero Trust DNS for encrypted name resolution and supporting Wi-Fi 7 for Enterprise with WPA3-Enterprise authentication. The Windows Resiliency Initiative (WRI) includes stricter driver standards, a shift in antivirus enforcement from kernel to user mode, and new safeguards like driver isolation and DMA remapping to enhance system stability.

Winsage

November 17, 2025

Microsoft: Windows bug blocks Microsoft 365 desktop app installs

Microsoft is addressing an issue preventing users from installing Microsoft 365 desktop applications on Windows devices due to misconfigured authentication components. The affected versions are Microsoft 365 desktop apps version 2508 (Build 19127.20358) and version 2507 (Build 19029.20294). Microsoft is working on reconfiguring the authentication components, with a resolution expected to be deployed soon. The issue has been classified as incident OP1186186, indicating a critical service disruption. Additionally, another problem, tracked as MO1176905, is affecting some admins and users by restricting access to various Microsoft 365 services due to a misconfiguration related to Microsoft 365 Group SecurityEnabled settings. Recently, Microsoft resolved a bug related to Microsoft Intune and mitigated a DNS outage that affected global customers.