headlines Archives

Winsage

June 1, 2026

Windows Server vulnerability can grant system privileges with just a malformed packet — domain controllers are being exploited in the wild

Microsoft is facing scrutiny due to a critical remote execution vulnerability, CVE-2026-41089, rated at 9.8, affecting Windows Server domain controllers from version 2012 onward. This vulnerability allows unauthenticated users on the same network to send malformed UDP packets to a domain controller, potentially granting unauthorized system access or causing a reboot, leading to denial-of-service scenarios. The vulnerable service is Netlogon, and there are no immediate mitigations available; patches will be released on May 12. The vulnerability could allow attackers to create multiple accounts with various access levels, compromising the security of entire networks. Cybersecurity experts recommend patching all linked domain controllers simultaneously. The vulnerability is caused by a buffer overflow in the Netlogon service due to a field in a network packet exceeding its expected size. A GitHub repository exists with proof-of-concept code that can crash the LSASS service. Additionally, Microsoft is in conflict with security researcher Chaotic Eclipse, who has published zero-day exploits following a breakdown in negotiations.

AppWizard

May 30, 2026

A conversation with Infinity Ward about Call of Duty

Morgan Park visited Infinity Ward to discuss the upcoming Call of Duty: Modern Warfare 4, gaining insights from multiplayer creative director Joe Cecot and design lead Jacky Reynolds. They highlighted the friendly rivalry among studios like Treyarch and Sledgehammer and discussed skill-based matchmaking complexities. A key feature is the introduction of apex attachments for weapon customization, aimed at enhancing player experience without disrupting balance. The campaign narrative will continue its “ripped from the headlines” approach, balancing realism with escapism. Map design will focus on gunplay, with a specific map called Coal featuring verticality. Details about the Warzone mode remain undisclosed. Reynolds noted the evolution of player expectations for weapon customization, and Cecot addressed the community's concern regarding the “update requires restart” prompt, stating efforts are being made to resolve it.

AppWizard

May 28, 2026

The next Call of Duty is Modern Warfare 4, Infinity Ward’s first game in 4 years

Activision has confirmed that the latest installment in the Call of Duty franchise will be Modern Warfare 4, developed by Infinity Ward after a four-year hiatus. The game will feature settings in North and South Korea, following a squad of South Korean marines and an American embedded soldier during a North Korean invasion of Seoul. The narrative style aims to reflect current events, described as "ripped from the headlines." Captain Price will return, and the game will include a traditional, linear story mode with over a dozen campaign missions. Multiplayer will focus on classic gameplay without features like Ominimovement and wall-jumps, and will introduce a sequel to the DMZ extraction mode. Modern Warfare 4 is set to be released on October 23.

AppWizard

May 20, 2026

81-year-old Minecraft grandma gets swatted, but she calls it “fun”

An 81-year-old grandmother streaming Minecraft to fundraise for her grandson's cancer treatment experienced a swatting incident during a live stream on May 18, which involved armed police entering her streaming room. Despite the chaos, she continued her broadcast and reassured her viewers the following day that she was unharmed. She has gained 675 followers on Twitch and 613K subscribers on YouTube. Earlier this year, she raised ,000 through a GoFundMe campaign for her grandson, Jack Self, who was diagnosed with Sarcoma Cancer, and he is now cancer-free.

AppWizard

May 16, 2026

Xbox Game Pass Adds 3 New Day One Games Including New #1 Seller

Subscribers to Xbox Game Pass Ultimate and PC Game Pass can access three new day-one games, including a standout title that sold two million copies within 12 hours of its launch, making it one of the best-selling games of 2026. These games are not available to Premium subscribers or those on the standard tier. They are not permanent fixtures in the subscription service, as none are published by Xbox Game Studios. Subscribers can purchase them at a 20% discount. Subnautica 2, the sequel from Unknown Worlds Entertainment, has launched and is currently the best-selling game on Steam, although it is in early access and does not yet have a Metacritic score. It is available through both PC Game Pass and Xbox Game Pass Ultimate. Call of the Elder Gods, a sequel to 2020’s Call of the Sea, has a Metacritic score of 80 and is available on Xbox Series X and PC via the subscription services. Outbound, an open-world exploration game developed by Square Glade Games, has a Metacritic score of 65 and is also accessible through the Ultimate and PC tiers of the subscription service.

Winsage

May 14, 2026

Windows Zero-Days Expose BitLocker Bypasses And CTFMON Privilege Escalation

An anonymous cybersecurity researcher disclosed two new zero-day vulnerabilities affecting Microsoft systems: YellowKey and GreenPlasma. YellowKey is a BitLocker bypass that operates as a backdoor within the Windows Recovery Environment, impacting Windows 11 and Windows Server 2022/2025. Exploiting YellowKey involves copying specially crafted files to a USB drive, connecting it to a Windows computer, and rebooting into WinRE. The researcher expressed skepticism about Microsoft's response time to this vulnerability, noting that using TPM+PIN does not mitigate the risk. GreenPlasma is a privilege escalation vulnerability that allows an unprivileged user to obtain a shell with SYSTEM permissions through arbitrary section creation in Windows CTFMON. The proof-of-concept for this exploit is incomplete but indicates potential manipulation of trusted privileged services or drivers. Additionally, a related attack against BitLocker was detailed by French cybersecurity firm Intrinsec, which exploits a boot manager downgrade using CVE-2025-48804 to bypass encryption protections on fully patched Windows 11 systems. This method allows attackers to boot from a controlled WIM while the boot manager checks the legitimate one, executing with the decrypted BitLocker volume. Despite Microsoft releasing fixes for this defect in July 2025, a flaw in Secure Boot verification allows a vulnerable boot manager to bypass BitLocker safeguards. To mitigate these risks, enabling a BitLocker PIN at startup and migrating to a new boot manager certificate is recommended.

AppWizard

May 13, 2026

Lies of P studio is hiring an ‘AI Creator’ for future projects but says the role will not be ‘directly involved’ in the development of the sequel

The sequel to the game Lies of P is now in "full production," as confirmed by developer Neowiz in their earnings report. Neowiz has hired an AI "artist" to assist with the game's production, intending to leverage generative AI to enhance art production efficiency and innovate visual quality. This decision has sparked disappointment among fans concerned about the potential compromise of the game's artistry. Neowiz reported Q1 2026 revenues of 101.4 billion Korean won. The gaming industry is witnessing growing enthusiasm for AI integration, with notable figures discussing its potential to revolutionize gaming experiences, while some, like Xbox's chief Asha Sharma, express caution against "soulless AI slop."

AppWizard

May 7, 2026

The Invisible Messenger: How imo Quietly Built 200 Million Users by Serving Migrant Workers

imo is a messaging application launched in 2007 by two former Google engineers, which has over 200 million active users. It focuses on labor migrants from the Global South, offering reliable video calling even on poor connections. The app grew organically as migrants shared it with their families and communities, particularly in regions with limited connectivity. imo has developed into a fully-featured messaging platform, serving as essential infrastructure for millions of migrant families to maintain connections. Its growth strategy involved avoiding direct competition in saturated markets and addressing the specific needs of migrant workers.

AppWizard

May 5, 2026

Game Pass Additions For May Include Subnautica 2 And Forza Horizon 6

Microsoft reduced the price of its media subscription service while planning to attract former subscribers with new Game Pass additions for May. Forza Horizon 6, set in Japan with over 550 cars, will be released on May 19 for Game Pass Ultimate and PC Game Pass, with a PS5 version to come later. Other upcoming titles include Mixtape on May 7, and Subnautica 2 on May 14. A detailed schedule of Game Pass additions includes various titles being released on specific dates, and some titles will be leaving the service on May 15.

BetaBeacon

May 5, 2026

ScarCruft hackers push BirdCall Android malware via game platform

APT37, also known as ScarCruft and Ricochet Chollima, has developed an Android version of the backdoor BirdCall, which serves as spyware in addition to a backdoor. The malware was delivered through a Chinese website that hosts games for Android, iOS, and Windows, targeting only Android and Windows systems. The Android variant of BirdCall has capabilities such as extracting IP geolocation information, collecting contact lists, call logs, SMS data, device information, taking screenshots, recording audio, and exfiltrating files. Users are advised to download software only from official marketplaces and trusted publisher sites to protect against malware infections.