execution

Winsage
June 28, 2026
Microsoft has clarified that there is no WSL 3 in development, as stated by Craig Loewen, the Product Manager for the Windows Subsystem for Linux (WSL). The confusion arose from articles discussing a new feature called WSL Containers, which will be launched soon. WSL allows users to run Linux environments on Windows without dual-booting, while WSL Containers enable the creation and management of Linux containers directly within Windows, eliminating the need for third-party tools like Docker Desktop. WSL 1, introduced in 2016, served as a translation layer for Linux system calls, and WSL 2, launched in 2019, included a full Linux kernel in a lightweight virtual machine. WSL Containers is an enhancement to WSL, allowing developers to build, run, and deploy containers directly from Windows using the wslc.exe command. This feature is part of Microsoft's strategy to make Windows a more accessible platform for running Linux workloads, helping to retain developers who might consider switching to other operating systems.
Winsage
June 27, 2026
The UK Competition and Markets Authority (CMA) is seeking comments on Microsoft's business software ecosystem, with responses from various stakeholders, including the Browser Choice Alliance (BCA). The BCA expresses concerns that Microsoft uses its dominance in operating systems and productivity software to promote its own browser, hindering competition. They argue that Microsoft's distribution strategies and design decisions limit user choice and innovation. The transition from Windows 10 to Windows 11 is highlighted as a critical factor, as it allows Microsoft to influence browser choices during upgrades. The BCA links browser competition to the adoption of AI tools, warning that competitive issues in the browser space could affect the AI domain if Microsoft employs similar tactics. They advocate for independent selection of AI tools to prevent distortion of competition and user choice. The BCA concludes that Microsoft's practices negatively impact user experience and productivity for businesses in the UK, damaging innovative browser developers.
AppWizard
June 26, 2026
As of mid-2026, standout games in the gaming industry include Mixtape, Lego Batman, and Crimson Desert. A recent poll indicated that Resident Evil Requiem is leading with 16% of votes, followed by Crimson Desert at 12%, and 007 First Light at 9%. Slay the Spire 2 and Forza Horizon 6 each received 8%, while Pragmata and Mewgenics garnered 7% and 5%, respectively. A tie occurred at the bottom of the poll between World of Warcraft: Midnight and Bungie's Marathon, each with 383 votes.
Winsage
June 25, 2026
Component Object Model (COM) is a technology in Windows that enables object activation, inter-process communication, and automation across different programming languages. Malware exploits COM interfaces for activities such as lateral movement, execution, downloading, exfiltration, persistence, evasion, system discovery, and automation of Windows and Office functionalities. Reverse engineering COM-heavy binaries involves navigating GUIDs and indirect vtable calls to understand malware mechanics. Research at the AVAR 2025 conference and CARO 2026 workshop discusses methodologies for analyzing COM binaries and case studies of malware families that utilize COM. COM is an application binary interface (ABI) model that allows software components to be reused and enables interaction between different programming languages through interfaces defined at the binary level. Distributed COM (DCOM) allows clients to activate COM objects on remote systems. COM classes are identified by unique class identifiers (CLSIDs), and interfaces by interface identifiers (IIDs). The Windows registry stores COM registration data, with classes and interfaces located under specific keys. Malware often acts as a COM client, utilizing the COM runtime to instantiate classes and request interfaces. ProgIDs provide human-readable registry entries for COM classes. The CoCreateInstance function helps create class objects by resolving CLSID registrations. All COM interfaces derive from IUnknown, which manages object lifetimes and interface querying. COM has its own security model, and identifying classes and interfaces used by malware is crucial for threat researchers. Tools like ComView and OleView.NET assist in inspecting COM registrations. The analysis workflow includes identifying activation API calls, extracting CLSID and IID values, consulting registry definitions, and mapping vtable calls. Qakbot, a banking trojan, exemplifies the use of COM in malware, with its architecture enabling malicious activities like credential theft. Dynamic analysis tools can log COM-related calls in real-time to trace execution flow. Notable malware families that utilize COM include Gh0stRAT, which uses Task Scheduler COM interfaces, and the Attor platform, which employs BITS for file transfers. WarmCookie demonstrates the use of COM for persistence through Task Scheduler. Understanding COM's role in malware is essential for cybersecurity professionals.
Winsage
June 25, 2026
Setting up a PC with the base Dev Config has been streamlined for developers, utilizing the Winget configuration service to install applications, execute updates, and apply developer settings on Windows. Users can access setup scripts by cloning a GitHub repository or downloading a zip archive, with clear instructions provided by Microsoft. The installation may require a reboot during the Windows Subsystem for Linux (WSL) installation, but the script resumes automatically afterward. The process installs applications such as PowerShell, Git, GitHub command-line interfaces, Windows App SDK, Visual Studio Code, and language support for Node.js, Python, and .NET. It also includes developer-friendly fonts and a theme engine for Windows Terminal, along with options for customizing File Explorer and the Windows Task Bar. After WSL installation, developers can use WSL Comfort scripts to install additional tools and personalize their Windows Terminal experience. This utility has two phases: the Windows component configures WSL and Ubuntu, while the Linux component fine-tunes the WSL environment, allowing for zsh and starship terminal display tools. It also integrates popular command-line interfaces and supports the Homebrew package installer, targeting existing Ubuntu instances without needing a new Linux distribution installation.
AppWizard
June 25, 2026
The preorder pages for Grand Theft Auto VI will go live at midnight local time across the United States. Gamers can choose between the Standard and Ultimate editions, with digital preorders offering a month-long subscription to GTA+. The Ultimate Edition is priced at .99 and includes additional side missions, vehicles, weapons, and outfits for protagonists Jason and Lucia. The game is set to be released on November 19. PC gamers will have to wait another year for the game to run natively on their systems.
Winsage
June 24, 2026
Windows 11 version 24H2 will reach the end of servicing on October 13, 2026. Enterprises often face version drift, requiring different upgrade strategies for various Windows 11 builds across endpoints. Upgrade methods include enablement packages, ISO-based feature updates, or direct upgrades from Windows 10. Enablement packages are the quickest and least disruptive option for compatible Windows 11 systems. Qualys TruRisk Eliminate can standardize upgrades and minimize version drift on a large scale. Endpoints should be assessed for readiness, categorized by eligibility and current OS status. Enablement packages are recommended for recent Windows 11 builds due to their minimal download size, faster installation, and reduced operational impact. If enablement packages are unavailable, ISO-based feature updates may be necessary. Direct upgrades from Windows 10 to Windows 11 25H2 can be executed without intermediate transitions. Qualys TruRisk Eliminate provides tools for managing these upgrade processes effectively.
Search