inventory Archives

Winsage

June 2, 2026

New PHANTOMPULSE RAT Campaign Uses UAC Bypass in Windows Attacks

The REF6598 intrusion set has revealed a Remote Access Trojan (RAT) named PHANTOMPULSE, which is distributed via malicious Obsidian plugins. It uses advanced evasion techniques, including a blockchain-based command and control (C2) channel and a public User Account Control (UAC) bypass to infiltrate Windows systems. The malware disables security measures like the Antimalware Scan Interface (AMSI) and Windows Lockdown Policy (WLDP) through a hardware-breakpoint technique, allowing it to avoid detection by signature-based memory scanners. PHANTOMPULSE hides its core files in encrypted registry blobs and creates scheduled tasks that appear as .NET Framework updates. Its decentralized C2 framework queries public blockchains for operational data, but it lacks sender authentication, which can be exploited by defenders. The malware inventories the system for antivirus software and targets high-value applications. It employs a UAC bypass technique called “schuac” to gain elevated permissions. Analysts attribute this campaign to DPRK-aligned threat actors, particularly the BlueNoroff group, due to its focus on cryptocurrency wallets and blockchain exploitation. Defenders can identify new infrastructure by searching blockchain ledgers for a specific hex signature associated with the malware's C2 encryption routine.

AppWizard

May 30, 2026

New on Java Realms: Sabines takeover

Beaconators has introduced over 40 new items, bringing the total to 200 unique items, along with quality-of-life improvements and bug fixes. Songs of Greavesoyl added six new community-created characters, eight new maps, Player vs. Player and Free-for-All game modes, and a revamped lobby and user interface. Chill N’Grill now supports Swedish, Ukrainian, and Romanian languages, and includes new badges, cosmetics, currencies, and an inventory management system. Bug fixes have been implemented in several modes, enhancing stability. The Back on Realms initiative has reintroduced modes like Anaglyph and Toy Turtle Royale. Players can access guidance for Java Realms content and a complimentary 30-day trial through Minecraft: Java Edition. Creators can showcase their work on Java Realms and Minecraft.net and can contact Bine Birk or Oskar Thysell for assistance.

Winsage

May 28, 2026

Your Windows PC has a security deadline in June 2026

A Secure Boot certificate refresh is being deployed across supported Windows devices via Windows Update. The Secure Boot certificates from 2011 will begin to expire in June 2026, prompting Microsoft to introduce new 2023-dated certificates to maintain security. Most users will require minimal action if their PCs are updated, but older devices may face challenges. The current certificates include: - Microsoft Corporation KEK CA 2011: expires June 24, 2026 - Microsoft UEFI CA 2011: expires June 27, 2026 - Microsoft Windows Production PCA 2011: expires October 19, 2026 The new certificates will remain valid until 2038, with plans for post-quantum cryptography around 2030. While PCs using the 2011 certificates will continue to function, they will lose access to new security protections, making them vulnerable to emerging threats. A notable example of such a threat is the BlackLotus bootkit, which exploited vulnerabilities to bypass Secure Boot. Microsoft's rollout strategy involves a staged update process that typically takes around 48 hours and may require restarts. Users are advised to keep Windows updated and check their Secure Boot status. Known issues may arise for older PCs, systems that bypassed Windows 11 requirements, Legacy BIOS systems, and custom firmware configurations. IT teams managing devices should inventory their systems, monitor specific event IDs, test updates, and document devices that cannot be updated.

AppWizard

May 27, 2026

Minecraft 26.2 pre-release 1 patch notes: Sulfur Cube changes, bug fixes, and more

Mojang has launched the pre-release phase for Minecraft Java Edition 26.2, focusing on bug fixes in preparation for the Chaos Cubed update. The Peer-to-Peer connection feature has been removed due to unsatisfactory user experience. Patch notes include: - Small Sulfur Cubes have updated models and textures, with unique sounds for each archetype. - The fog color in Sulfur Caves has been updated, and the maximum growth length of Sulfur Spikes has been reduced. - Continuous Geyser setups now require a Lava block to erupt. - Updated sounds for chicken variants and Small Sulfur Cubes when fed Slimeballs. - The Friends List button is now always visible on the title screen. - New server properties for chat and command spam thresholds have been introduced, defaulting to 10 seconds. Bug fixes include: - Resolved framerate loss during rendering of decorated pots and banners. - Fixed issues with players being kicked for rapid command sending in multiplayer. - Addressed overgrowth of Sulfur Spikes in Sulfur Caves. - Corrected the absence of a texture for Small Sulfur Cubes. - Fixed a crash when an Evoker retaliated against its Vex. - Resolved inventory issues after death with keep_inventory disabled. - Fixed Shulkers suffocating when opening while suspended. - Addressed a softlock issue when creating a new world if the saves folder was unwritable. - Corrected fog color in Sulfur Caves to match Bedrock Edition. Minecraft 26.2 Pre-Release 1 is available for download through the Minecraft Launcher by enabling snapshots in the "Installations" tab.

AppWizard

May 27, 2026

Minecraft 26.2 Pre-Release 1

Today marks the unveiling of the first pre-release for version 26.2. Bug fixes are included to refine the overall experience. The Peer-to-Peer connection feature has been removed due to quality concerns. Known issues include potential crashes on systems lacking Vulkan support, which can be worked around by editing the options.txt file. Changes include updated models and textures for Small Sulfur Cubes, new sounds for Sulfur Cubes, and updates to the Sulfur Caves biome. The continuous Geyser setup now requires a source Lava Block. The friend list button will remain visible even if disabled. Technical changes include updates to the Data Pack version (106.1) and Resource Pack version (88.0). New server properties for chat and command spam thresholds have been added. A new world preset, minecraft:flatalldimensions, has been introduced. Entity textures for Sulfur Cubes have been added, and various bugs have been fixed in this pre-release. Pre-releases are available for Minecraft: Java Edition, and players are advised to back up their data.

AppWizard

May 24, 2026

Slack Messenger for Business Collaboration in the US

Businesses are increasingly challenged to adapt to new technologies and consumer behaviors, particularly with the rise of artificial intelligence (AI). Companies are leveraging AI to enhance productivity, streamline processes, automate routine tasks, and provide data-driven insights. Investing in AI technologies allows businesses to improve efficiency and enhance customer experiences through personalized marketing strategies. AI integration in supply chain management employs predictive analytics to anticipate demand fluctuations, optimize inventory levels, and reduce operational costs, which boosts profitability and customer satisfaction. However, challenges such as data privacy, ethical considerations, and the need for skilled personnel persist in AI adoption. The ability to adapt to these advancements will determine which companies lead in their fields.

Tech Optimizer

May 23, 2026

CVE-2026-9082: Critical Drupal Core SQLi Flaw

Drupal has issued critical security updates for a vulnerability in Drupal Core, identified as CVE-2026-9082, which affects sites using PostgreSQL databases. This flaw allows anonymous attackers to exploit the system through arbitrary SQL injection, posing risks such as sensitive information disclosure, privilege escalation, and remote code execution. The vulnerability is rated 20 out of 25 by Drupal and 6.5 out of 10 by CVE.org. It specifically impacts the database abstraction API, which fails to properly sanitize queries. The fixed versions include 11.3.10, 11.2.12, 11.1.10, 10.6.9, 10.5.10, and 10.4.10, with best-effort patches available for unsupported versions 9.5 and 8.9. Organizations are advised to inventory their Drupal installations, verify PostgreSQL usage, and prioritize patching for public-facing sites.

AppWizard

May 20, 2026

‘After fairytale’ adventure game Fables of Dwale announced for PC

Pixel Maniacs is developing an adventure game titled Fables of Dwale, which is set to launch on PC via Steam and is currently seeking a publisher. The game explores what happens after fairy tales end, featuring Red Riding Hood as the protagonist who must forage for resources and seek a cure for a mysterious affliction called the Dwale. Players will navigate various biomes, manage their inventory, survive dangers at night, and decide whether to trust the Lantern King, who claims to be crafting a cure. Screenshots of the game are available for preview.

AppWizard

May 20, 2026

Join Minecraft at TwitchCon

Attendees at the weekend event can earn a Crafter Cape by collecting three Emerald Stickers, which are obtained by participating in designated Minecraft sessions and activities. Each attendee is allowed only one cape, but there is no limit on the total number of capes distributed. To collect Emerald Stickers, attendees must engage in sessions labeled with “Minecraft Emerald” or participate in activities at the Minecraft Arena. Stickers can be placed in the Inventory Ribbon, which has three slots and can be collected at the Swag Bag kiosk. After collecting the stickers, attendees can redeem their cape at the Cape Trader in the Minecraft Village within the Arena. A wristband scan and verification of the completed ribbon are required to receive a Cape Card with a unique in-game code. For those unable to attend, an alternate Builder Cape will be available online during Minecraft LIVE on May 30.

AppWizard

May 19, 2026

The Common Mistake That’s Filling Your Android Phone’s Storage

The accumulation of app bloat and cache buildup on digital devices can significantly impact storage and performance. As users install more applications, valuable space for photos, videos, and new apps is consumed, leading to a decline in device performance. Low storage levels hinder the management of temporary files, system updates, and background processes, resulting in sluggish app responses. Social media applications like Instagram, TikTok, and Facebook are particularly demanding on storage due to their continuous preloading of content and caching of images and videos. Older games and seldom-used apps also contribute to storage issues by pulling updates and cache files. Currently, Android users have limited automated solutions for storage management, requiring them to take proactive measures such as streamlining their app inventory or expanding storage with SD cards. Effective strategies include assessing and deleting unused applications, consolidating workflows to a single platform, and regularly clearing caches from social media apps, streaming services, and web browsers to free up storage and improve device performance.