Illustrator Archives

Winsage

November 12, 2025

Microsoft November 2025 Patch Tuesday fixes 1 zero-day, 63 flaws

Microsoft's November 2025 Patch Tuesday addresses a total of 63 vulnerabilities, including one actively exploited zero-day flaw (CVE-2025-62215) related to Windows Kernel Elevation of Privilege. The updates include four vulnerabilities classified as "Critical," with two for remote code execution, one for elevation of privileges, and one for information disclosure. The breakdown of vulnerabilities is as follows: - 29 Elevation of Privilege Vulnerabilities - 2 Security Feature Bypass Vulnerabilities - 16 Remote Code Execution Vulnerabilities - 11 Information Disclosure Vulnerabilities - 3 Denial of Service Vulnerabilities - 2 Spoofing Vulnerabilities This Patch Tuesday marks the first extended security update (ESU) for Windows 10, and users are encouraged to upgrade to Windows 11 or enroll in the ESU program. Microsoft has also released an out-of-band update to assist with enrollment issues. Other companies, including Adobe, Cisco, and Google, have also issued security updates in November 2025.

Winsage

October 15, 2025

Microsoft frightful Patch Tuesday: 175+ CVEs, 3 under attack

Microsoft's October Patch Tuesday addressed 175 vulnerabilities, including 21 non-Microsoft CVEs. Among these, three vulnerabilities are under active attack: 1. CVE-2025-24990: An elevation of privilege bug in the Agere Modem driver (rated 7.8) that allows attackers to gain administrator privileges on supported Windows versions. The driver has been removed in the update. 2. CVE-2025-59230: An elevation of privilege vulnerability in the Windows Remote Access Connection Manager (rated 7.8) that could grant SYSTEM privileges to attackers. 3. CVE-2025-47827: A Secure Boot bypass flaw (rated 4.6) in the IGEL OS that allows attackers to bypass Secure Boot. Three publicly known vulnerabilities include: 1. CVE-2025-0033: A critical vulnerability affecting AMD EPYC processors with SEV-SNP, requiring a patch that is still in development. 2. CVE-2025-24052: An elevation of privilege vulnerability in the Agere Modem driver (rated 7.8) that is publicly known but not yet exploited. 3. CVE-2025-2884: An out-of-bounds read vulnerability in the TCG TPM2.0 reference implementation's CryptHmacSign function. Additionally, 16 other critical-severity flaws were highlighted, including CVE-2025-59287, a 9.8-rated vulnerability in Windows Server Update Services that allows unauthenticated remote attackers to trigger unsafe object deserialization, leading to remote code execution. Adobe released 12 updates for 36 vulnerabilities, including critical CVEs in Substance 3D Stager, Dimension, Illustrator, and FrameMaker. SAP issued 13 new security notes, with four rated critical, including a fix for an OS command execution flaw in Netweaver. Ivanti provided advisories for vulnerabilities in Endpoint Manager Mobile and Neurons for MDM, which have not yet been exploited.

AppWizard

August 27, 2025

Lightspeed opens second Osaka studio

Tencent-owned Lightspeed Studios has opened a second studio in Osaka, following its initial launch in November 2024. The studio has hired three former Capcom employees: Toshihiro Nakagawa, Daigo Ikeno, and Bengus, who have experience with franchises like Devil May Cry, Dragon's Dogma, Street Fighter, and Darkstalkers. Hideaki Itsuno, the studio head, highlighted the importance of trust and collaboration among the team, which includes other former Capcom colleagues. Itsuno noted that few studios in Japan are developing original triple-A IP from scratch, which is the focus of their new project.

AppWizard

August 26, 2025

Adobe Firefly joins forces with Gemini Flash 2.5 for seamless content creation

Adobe Firefly has integrated Gemini's Flash 2.5 Image to enhance its AI content creation capabilities. Users can switch seamlessly between Adobe apps during their creative process. Premium members have unlimited access to Gemini's features until September 1st, while free tier users can generate up to 20 pieces of media for free. The integration allows for greater flexibility in exploring creative ideas and ensures that user-generated content will not be used to train generative AI models. The Gemini 2.5 Flash Image is available in Firefly’s Text to Image module, Firefly Boards (beta), and Adobe Express.

Winsage

August 13, 2025

Microsoft’s Patch Tuesday gives sys admins a baker’s dozen

Microsoft's August Patch Tuesday addressed 111 vulnerabilities, including 12 classified as critical. A known elevation of privilege flaw in the Windows Kerberos protocol, CVE-2025-53779, has a CVSS score of 7.2 and requires authenticated access for exploitation. Two critical remote code execution (RCE) vulnerabilities, CVE-2025-50165 and CVE-2025-53766, both rated 9.8, were identified in the Windows Graphics Device Interface. SharePoint has a critical RCE bug, CVE-2025-49712, with a severity score of 8.8. Other critical flaws include vulnerabilities in Microsoft Message Queuing, Office, Hyper-V, and Azure Stack Hub. Adobe released fixes for 68 CVEs, including eight critical RCE bugs in InCopy and critical issues in other products like Commerce, InDesign, and Substance 3D applications. SAP issued 15 security notes, including three critical vulnerabilities rated at 9.9 related to code injection in SAP S/4HANA. Intel released 34 advisories addressing 66 vulnerabilities, including high-severity issues in Xeon 6 processors and Intel Ethernet Drivers. Google updated Android to fix several flaws, including two actively exploited Qualcomm vulnerabilities.

Winsage

July 30, 2025

Adobe makes good on its promise and delivers more native Windows on Arm apps, with a few catches

Adobe has released beta versions of After Effects, Premiere Pro, Audition, and Media Encoder for Windows on Arm, following the earlier introduction of Illustrator. Users on Snapdragon devices should note that some features are missing or may not be implemented. For After Effects, limitations include: - Lack of support for formats like ProRes, ARRIRAW, SWF, GoPro CinePro, JPEG20000 in MXF, and WMV. - No import capabilities for MotionJPEG and MKV. - Absence of hardware-accelerated playback and export for H.264 and HEVC in MP4. - Missing features such as Keylight and Mocha. - The Cinema 4D renderer and related features are not included. - Third-party plugins will not work with the native builds. Adobe is working with third-party developers to update plugins and plans to release an SDK for Windows on Arm soon. For Premiere Pro, the beta will not include: - Loudness Radar effect (replaced by Loudness Meter). - Export to Wraptor DCP. - Import and export of the GoPro CineForm codec. - Export to the P2 Movie format. Future updates for Premiere Pro will include: - Support for third-party extensions and plugins. - ProRes support for import/export and proxies. - Import/export of JPEG2000 in MXF. - Hardware-accelerated playback/export for H.264 and HEVC in MP4. - Support for various raw video files, including Apple ProRes RAW and ARRI ARRIRAW.

Winsage

July 9, 2025

Microsoft Patch Tuesday, July 2025 Edition

Microsoft has released updates addressing 137 vulnerabilities across its Windows operating systems and supported software, with 14 classified as "critical." CVE-2025-49719 is a publicly disclosed information disclosure flaw affecting all SQL Server versions since 2016, posing a supply-chain risk due to its potential exploitation without authentication. SQL Server 2012 has reached its end of life, meaning no future security patches will be available. CVE-2025-47981 is a critical remote code execution vulnerability with a CVSS score of 9.8, affecting Windows clients and Windows Server. Microsoft also addressed four critical remote code execution vulnerabilities in its Office suite, including CVE-2025-49695 and CVE-2025-49696, which can be triggered through the Preview Pane. Other high-severity vulnerabilities include CVE-2025-49740, which could bypass Microsoft Defender SmartScreen, and CVE-2025-47178, allowing attackers to execute arbitrary SQL queries with minimal privileges. Adobe has also released security updates for various software, and users are advised to back up data before installing patches.

Winsage

July 9, 2025

Zero Day Initiative — The July 2025 Security Update Review

In July 2025, Adobe released 13 bulletins addressing 60 unique CVEs across various applications, including ColdFusion, After Effects, and Illustrator. ColdFusion received a Priority 1 patch for 13 CVEs, five of which are Critical. FrameMaker's patch fixed 15 CVEs, including 13 Critical vulnerabilities. Illustrator's update addressed 10 bugs, with the most severe enabling code execution. Other applications like InCopy and InDesign also had Critical vulnerabilities fixed. Microsoft released 130 new CVEs across its products, with 10 rated Critical. Notable vulnerabilities include CVE-2025-47981, a heap-based buffer overflow in Windows SPNEGO, and CVE-2025-49717 affecting Microsoft SQL Server. CVE-2025-49704 allows code injection in SharePoint, while CVE-2025-49695 highlights an attack vector in Microsoft Office's Preview Pane.

AppWizard

April 26, 2025

The adventure game that kicked off the Syberia series just got a shiny Myst-like makeover

French publisher Microids has released a polished remake of its 1999 classic, Amerzone – The Explorer's Legacy, originally created by Benoît Sokal. The game features a nameless journalist on a quest to return the last egg of a rare giant bird to its habitat. The remake includes significant visual upgrades and aims to provide a new experience while honoring the original. However, the future of the Syberia series is uncertain following Sokal's death and the recent layoffs of Microids' Paris team, which was responsible for both the Syberia: The World Before and the Amerzone remake. Amerzone – The Explorer's Legacy is priced at £35, with a demo available on its Steam page.

BetaBeacon

March 31, 2025

COLOPL and Kazuma Kaneko announce ‘card creation roguelike’ game Tsukuyomi: The Divine Hunter for PC, iOS, and Android

Tsukuyomi: The Divine Hunter is a free-to-play card creation roguelike game by former ATLUS illustrator Kazuma Kaneko. It will launch for PC via Steam, iOS via App Store, and Android via Google Play this spring worldwide with language support for English, Japanese, Traditional Chinese, and Simplified Chinese.