NewApp Digest
search bot

Las Vegas

The PC game releases we're most excited about in February
AppWizard
February 3, 2025

The PC game releases we’re most excited about in February

February features several key gaming events and notable game releases for PC gamers. Gaming Events: - The Six Invitational Rainbow Six Siege tournament: February 3-16. - D.I.C.E. Summit in Las Vegas: February 11-13. - PGL Cluj Napoca CS2 tournament: February 14-23. - Steam Next Fest: Begins February 24. Game Releases: - February 3: Spirit Swap (Steam) - February 4: Blood Bar Tycoon (Steam) - February 5: Rift of the NecroDancer (Steam) - February 6: Ambulance Life: A Paramedic Simulator (Steam) - February 6: Keep Driving (Steam) - February 6: Sworn (Steam) - February 7: Slender Threads (Steam) - February 7: A Game About Digging A Hole (Steam) - February 12: Legacy: Steel & Sorcery (Steam) - February 12: Urban Myth Dissolution Center (Steam) - February 13: Dawnfolk (Steam) - February 14: Legend of Heroes: Trails through Daybreak 2 (Steam) - February 14: Tomb Raider IV-VI Remastered (Steam) - February 18: Lost Records: Bloom and Rage (Steam) - February 20: Era One (Steam) - February 20: Like a Dragon: Pirate Yakuza in Hawaii (Steam) - February 21: Die in the Dungeon (Steam) - February TBD: Midnight Murder Club (Steam) - February TBD: Tiny Pasture (Steam)
Amazon explains absence of familiar features in 'PostgreSQL compatible' Aurora DSQL
Tech Optimizer
December 9, 2024

Amazon explains absence of familiar features in ‘PostgreSQL compatible’ Aurora DSQL

Amazon unveiled Aurora DSQL, a distributed SQL database manager, at the re:Invent conference in Las Vegas, designed to enhance performance with rapid read capabilities. Key PostgreSQL features are absent from Aurora DSQL as Amazon focuses on optimizing it for cloud-native environments, prioritizing performance and reliability over feature parity. The design aims to simplify operational complexities and cater to the scalability demands of modern applications. Amazon emphasizes performance optimization by focusing on core functionalities and eliminating less critical features, making it suitable for applications requiring high throughput and low latency. The company plans to gather feedback from the developer community to shape future iterations of Aurora DSQL.
Windows includes built-in Ransomware Protection. How to turn it on
Winsage
October 5, 2024

Windows includes built-in Ransomware Protection. How to turn it on

Ransomware encrypts files and demands payment for their release, posing a threat to both personal and corporate systems. Windows offers built-in ransomware protection, and regular backups of critical files are essential for risk reduction. Ransomware can disrupt operations significantly, as evidenced by incidents involving groups like Scattered Spider affecting Las Vegas casinos. To protect against ransomware, users should enable Controlled Folder Access, back up essential files regularly, be cautious with email attachments, and keep antivirus software and operating systems updated. To activate Windows' ransomware protection, users can navigate to Settings > Update & Security, open Windows Security, select Virus & threat protection, and toggle Controlled folder access to "On." This setting restricts app access to default folders, although some applications, like Microsoft Office, are trusted by default and can modify files in these locations.
Google will remove high-privileged Android app from Pixel phones.
AppWizard
August 19, 2024

Google will remove high-privileged Android app from Pixel phones.

AWS re:Invent will take place in Las Vegas, Nevada, USA, from December 2 to 6, 2024. A virtual event titled "Unpacking the 2024 Ransomware Landscape: Insights and Strategies from ThreatLabz" is scheduled for August 22, 2024. The SecureWorld Manufacturing & Retail Virtual Conference will occur on August 28, 2024, offering 6 CPE credits and featuring over 12 educational presentations. SANS Network Security Las Vegas 2024 is set for September 4 to 9, 2024, providing 41 interactive courses and opportunities for networking. The Jailbreak Brewing Company Security Summit will be held in Laurel, Maryland, USA, on September 6, 2024, with a limit of 150 attendees. DMV Rising 2024 will take place in Washington, DC, on September 12, 2024, focusing on cybersecurity challenges and solutions in the D.C., Maryland, and Virginia regions.
silver Android smartphone
Winsage
August 10, 2024

Design flaw could allow hackers to roll back Microsoft Windows updates

Researchers at the Black Hat security conference revealed a vulnerability in Microsoft’s security tools that could allow attackers to exploit these mechanisms. The technique involves manipulating the internal registry of a Windows machine to create a false impression of updates, enabling attackers to revert systems to earlier, vulnerable versions of Windows. This method can bypass Microsoft’s virtualization-based security, allowing full control over affected machines. Microsoft acknowledged the issue and is working on mitigations, but there is currently no evidence of this technique being used in real-world attacks. The flaw is complex, requiring extensive testing for a patch that will replace outdated system files. Additionally, Microsoft is incorporating security performance into employee salary reviews to enhance security measures.
Windows patches can be forcibly reversed, reopening bugs
Winsage
August 8, 2024

Windows patches can be forcibly reversed, reopening bugs

Alon Leviev from SafeBreach presented techniques at the Black Hat conference that could enable unauthorized users with administrative access to remove security patches from Windows machines. His methods are inspired by the BlackLotus UEFI bootkit and allow for downgrading the OS kernel and other components while appearing as legitimate system updates. The techniques affect Windows 10, 11, and Windows Server editions, including their virtualization support, making the entire virtualization stack vulnerable. Microsoft was informed of these vulnerabilities six months prior and issued two advisories: CVE-2024-38202, which addresses an elevation-of-privilege vulnerability in the Windows Update Stack, and CVE-2024-21302, related to a secure kernel mode elevation-of-privilege vulnerability. Both advisories highlight that exploiting these vulnerabilities requires additional actions by a privileged user. Leviev also introduced a proof-of-concept tool named Windows Downdate to demonstrate the vulnerabilities.
A Flaw in Windows Update Opens the Door to Zombie Exploits
Winsage
August 7, 2024

A Flaw in Windows Update Opens the Door to Zombie Exploits

A significant vulnerability has been discovered in the Windows Update mechanism that could allow attackers to downgrade Windows operating systems to older versions, exposing them to historical vulnerabilities and granting full control over affected devices. Researcher Alon Leviev from SafeBreach Labs identified this vulnerability while investigating downgrade attack methods related to a hacking campaign that used the "BlackLotus UEFI bootkit." Leviev developed a proof-of-concept attack that could disable Windows' Virtualization-Based Security (VBS) by exploiting a flaw in the Windows Update process, specifically manipulating an unsecured controlling key, "PoqexecCmdline." This allowed him to downgrade critical components of Windows without detection. Microsoft is currently addressing the issue through a patching process called "Downdate" and has stated that it has not observed any attempts to exploit this vulnerability yet.
No, Southwest Airlines Isn't Using Windows 3.1 In 2024
Winsage
July 24, 2024

No, Southwest Airlines Isn’t Using Windows 3.1 In 2024

Southwest Airlines did not avoid the chaos caused by the Windows crash on July 19 because they were using an ancient operating system like Windows 3.1. Instead, the airline's systems were spared from the crash due to not using Crowdstrike, the cybersecurity company responsible for the faulty update. Southwest Airlines does use some older software that needs upgrading, but they are not running on Windows 3.1.
Search