domains Archives

Winsage

April 18, 2026

Microsoft closes book on rogue Windows Server 2025 upgrades

Microsoft has officially resolved the incident involving the unexpected upgrade to Windows Server 2025, which occurred over a year ago and caused significant disruption for system administrators. The upgrade was automatic, with no rollback option, and was attributed to third-party products managing updates. Additionally, Microsoft's cumulative update KB5082063 has introduced new issues, causing LSASS crashes on non-Global Catalog domain controllers in environments using Privileged Access Management, leading to repeated restarts and potential inaccessibility of domains. Microsoft has acknowledged this problem and promised a resolution soon.

Tech Optimizer

April 16, 2026

‘Anyone with $10 could have walked straight through’: Report warns this legit-looking software is actually antivirus-killing adware

Security researchers at Huntress discovered adware signed by Dragon Boss Solutions LLC that primarily displayed unwanted advertisements and redirected users to various sites. The malware included a sophisticated update mechanism that disabled antivirus programs. The primary update domain and its backup were not registered, making them exploitable. Tens of thousands of endpoints were compromised, affecting universities, operational technology networks, government agencies, and Fortune 500 firms.

Winsage

April 15, 2026

Windows Update Warning: Fake Windows 11 24H2 Site Pushes Password-Stealing Malware

A sophisticated fake Windows update site has emerged, designed to mimic Microsoft’s branding to distribute malware, specifically targeting individuals seeking early access to Windows 11 version 24H2. The fraudulent site resembles a legitimate cumulative update download page, using familiar design elements to evade detection. The malware operates as an information-stealing entity, targeting saved passwords and browser sessions, potentially bypassing two-factor authentication. It transmits stolen credentials through encrypted channels to external servers. The installer uses legitimate packaging tools to minimize detection and employs obfuscated scripts within legitimate software components. The campaign modifies system startup entries and creates disguised shortcuts to maintain persistence. Researchers noted the use of a typosquatted domain and meticulously spoofed file properties. As of April 2026, Microsoft has not released Windows 11 version 24H2 to the public, and legitimate updates are only available through Windows Update. Users are advised to obtain updates exclusively through official channels and keep security features updated.

Winsage

April 9, 2026

This fake Windows support website delivers password-stealing malware

A phishing campaign has been identified that uses a counterfeit Microsoft support website, microsoft-update[.]support, to trick users into downloading a malicious Windows update disguised as WindowsUpdate 1.0.0.msi. This file, created on April 4, 2026, appears legitimate but contains malware designed to steal sensitive information. The campaign targets French-speaking users, leveraging recent data breaches in France to create convincing scams. The malware, once executed, installs an Electron application that runs a Python interpreter, which then deploys various data theft tools. It employs two persistence mechanisms: modifying the Windows registry and creating a shortcut in the Startup folder. The malware connects to external sites for reconnaissance and data exfiltration, using domains like datawebsync-lvmv.onrender[.]com and store8.gofile[.]io. The malware's components have evaded detection by antivirus tools, with VirusTotal reporting zero detections for the main executable and its launcher. Users are advised to check their registry, remove suspicious files, change passwords, and run a full system scan if they suspect installation of the malicious update. Safe updating practices include using the built-in Windows update feature and being cautious of phishing attempts. Indicators of compromise include specific file hashes, domains associated with the phishing campaign, and file system artifacts related to the malware's installation.

AppWizard

April 4, 2026

Warframe community director says ‘nothing in our games will be AI-generated, ever’

Digital Extremes, the studio behind Warframe and Soulframe, opposes the use of AI in game development. Community Director Megan Everett stated that the company is "very non-AI" and emphasized that all content in their games will be created by humans. She expressed frustration with AI-generated content, stating that it causes uncertainty about the authenticity of art. Despite skepticism towards AI in the industry, some developers are still using AI, as seen with Arc Raiders, which initially utilized AI voice acting but is now shifting to handcrafted assets. A survey indicated that 90% of developers want clearer AI disclosures on platforms like Steam, while some games have included AI "placeholders" in final releases. This has led to concerns among creators about the influence of AI on their work.

Tech Optimizer

March 27, 2026

Bogus Avast website fakes virus scan, installs Venom Stealer instead

A deceptive website impersonating Avast antivirus tricks users into downloading Venom Stealer malware, which steals passwords, session cookies, and cryptocurrency wallet information. The site conducts a fake virus scan, falsely reporting threats to encourage users to download a malicious file named Avastsystemcleaner.exe. This file mimics legitimate software and operates stealthily, targeting web browsers to harvest credentials and session cookies. It also captures screenshots and sends stolen data to the command-and-control domain app-metrics-cdn[.]com via unencrypted HTTP. The malware employs evasion techniques to avoid detection and is part of a long-standing cybercrime tactic that exploits user trust in security software. Indicators of compromise include the file hash SHA-256: ecbeaa13921dbad8028d29534c3878503f45a82a09cf27857fa4335bd1c9286d, the domain app-metrics-cdn[.]com, and the network indicator 104.21.14.89.

AppWizard

March 25, 2026

Apple Maps may soon copy one of Google Maps’ more annoying features

Apple will introduce advertisements in Apple Maps search results in the US and Canada, featuring promoted listings at the top of results with a blue highlight. The ads will be privacy-focused, with no user data linked to accounts or shared externally. The Apple Business program will launch on April 14, 2026, allowing businesses to create and manage their listings on Apple Maps and run advertisements through the platform.

BetaBeacon

March 19, 2026

Best Mobile RPG Games 2026: Quest for Glory in Android RPG Realms And iPhone

The most popular mobile RPG games in 2026 are "Genshin Impact" and "Honkai: Star Rail," which dominate the app store charts and offer deep stories, smooth controls, and regular updates on Android and iPhone.

Tech Optimizer

March 19, 2026

How AI And Hacking Professionalism Are Overwhelming Endpoint Security

The digital landscape is transforming due to the professionalization of cybercrime, which is now a significant part of organized crime, second only to drug trafficking. Malware includes various types such as viruses, browser hijackers, password stealers, Trojans, botnet malware, and ransomware. Traditional antivirus solutions rely on signature-based detection, heuristic analysis, and behavior monitoring, but these methods can lead to false positives and negatives. The evolution of cybersecurity has seen the rise of "Ransomware-as-a-Service" (RaaS) and the use of polymorphic malware that changes its signature, making traditional defenses ineffective. Hackers are also using AI and machine learning to evade behavioral monitoring. New defense strategies include Endpoint Detection and Response (EDR) and Extended Detection and Response (XDR), which focus on monitoring for breaches rather than preventing them. Leading vendors in this space include CrowdStrike, SentinelOne, Microsoft, and Palo Alto Networks. The zero trust security framework treats all access attempts as potentially hostile and emphasizes the integration of various security technologies. Emerging startups like FinalAV Security are developing zero trust solutions for consumers and small businesses, focusing on prevention rather than detection.

TrendTechie

March 12, 2026

Anna’s Archive выложили на торренты 6,4 ТБ музыки из Spotify — это лишь малая часть всего архива

The Anna’s Archive project has released approximately 2.8 million audio files, totaling around 6.4 terabytes, from Spotify's database. The files are distributed through 47 torrent distributions and include music, individual releases, and metadata. The initial release features the least popular tracks, labeled as "pop_0," and contains embedded metadata such as track, album, artist, label, and publisher information. Anna’s Archive aims to preserve music and plans to publish more files in phases. Spotify has responded by disabling accounts involved in illegal scraping and has filed a lawsuit against the operators of Anna’s Archive, claiming damages in the trillions for copyright infringement. Some domains associated with Anna’s Archive have been disabled through court orders, prompting the service to consider relocating its infrastructure. Maintaining the full estimated catalog of 300 terabytes may require two to three times more storage space, potentially needing around 50 hard drives of 18 to 20 terabytes each.