installation

AppWizard
June 19, 2025
Check Point researchers have discovered a malware campaign targeting Minecraft users, utilizing a distribution-as-a-service model called Stargazers. This malware, disguised as cheat tools, employs Java and .NET stealers to compromise player systems. The attackers have been active since March 2025, using GitHub repositories that appear to offer legitimate mods but contain malicious JAR files. The infection process begins with the installation of a compromised JAR file, which triggers a multi-stage attack that extracts sensitive data from Minecraft and Discord, as well as broader information like browser credentials and cryptocurrency wallet details. The malware is linked to Russian-speaking threat actors, and the Stargazers Ghost Network is identified as the distributor. The report highlights the need for caution when downloading third-party content in gaming communities.
Winsage
June 18, 2025
Microsoft has acknowledged that the updates released on June 10 during Patch Tuesday may disrupt the Dynamic Host Configuration Protocol (DHCP) service on Windows Server versions 2025, 2022, 2019, and 2016. The DHCP Server service might intermittently stop responding after installing this security update, causing issues for network administrators as clients may be unable to renew their IP addresses. There is currently no viable workaround for affected users other than rolling back the patch, which is not ideal due to the critical security fixes included in the update. The impact of this issue varies among users, with some experiencing significant problems while others report no disruptions. Microsoft is working on a resolution and will provide further information soon. Additionally, Microsoft has faced challenges with its Surface Hub v1 devices, requiring an out-of-band update.
Winsage
June 18, 2025
A cyber espionage campaign attributed to the XDSpy threat actor has been discovered, exploiting a zero-day vulnerability in Windows shortcut files identified as “ZDI-CAN-25373.” This vulnerability allows attackers to conceal executed commands within specially crafted shortcut files. XDSpy has primarily targeted government entities in Eastern Europe and Russia since its activities became known in 2020. Researchers from HarfangLab found malicious LNK files exploiting this vulnerability in mid-March, revealing issues with how Windows parses LNK files. The infection begins with a ZIP archive containing a malicious LNK file, which triggers a complex Windows shell command to execute malicious components while displaying a decoy document. This command extracts and executes a first-stage malware called “ETDownloader,” which establishes persistence and downloads a second-stage payload known as “XDigo.” The XDigo implant, written in Go, collects sensitive information and employs encryption for data exfiltration. This campaign represents an evolution in XDSpy's tactics, combining zero-day exploitation with advanced multi-stage payloads.
AppWizard
June 17, 2025
A new strain of malware called "Crocodilus" is targeting Android users, designed to steal funds. It spreads through advertisements on social media that entice users to download an app with promises of rewards. Once installed, the malware can modify the user's contact list, adding numbers under trustworthy names like "Bank Support" to deceive victims. Security experts from Threat Fabric warn that this malware represents a significant threat and recommend that users only download apps from trusted sources like the Google Play Store, and to verify app developer credentials and user reviews before installation.
AppWizard
June 17, 2025
YouTube revealed key plot details about Clair Obscur: Expedition 33, leading to the installation of an Edge Extension to avoid spoilers. The game is anticipated to be one of the best Xbox and PC games of 2025 and a strong contender for Game of the Year. The modding community on Nexusmods has produced various mods, including cosmetic mods that enhance character appearances. Notable mods include 'Mewtwo Lune,' which replaces the character Lune with Mewtwo from Pokémon, and Digimon mods featuring characters like Wargreyman and Leomon. Mods inspired by Final Fantasy include outfits for characters like Tifa and Tidus, while a unique mod replaces Gustave with Keanu Reeves, complete with custom facial animations. Clair Obscur: Expedition 33 is available on Xbox Series X|S, Xbox Game Pass, and PC via Steam.
Winsage
June 17, 2025
A flaw in Windows 11 related to update KB5063060 is causing installation failures for many users, particularly in the gaming community, with error codes such as 0x800f0922, 0x80070002, 0x80070306, and 0x800f0991. Microsoft has announced an additional upgrade option for at least 240 million users still on Windows 10, as support will be withdrawn in just over 100 days. A new PC-to-PC migration experience is being rolled out to help users transfer files and settings during setup, and a Windows Migration feature integrated within the Windows Backup tool is being tested to assist those unable to upgrade due to hardware limitations. This feature is currently hidden in the latest release preview build but can be activated with a specific feature ID.
Search