Linux systems Archives

AppWizard

December 26, 2024

What is Minecraft Minepal mod?

The Minecraft Minepal mod introduces an AI-driven non-player character (NPC) that interacts with players in a lifelike manner, powered by ChatGPT. It supports 55 languages and is compatible with Windows, Mac, and Linux, available for free and supporting up to Minecraft version 1.20.4. The NPC can engage in voice chat, assist in constructing structures, accompany players, gather and craft blocks, perform tasks like cooking and repairing, and can be customized in appearance and personality. Installation involves downloading the standalone Minepal application, entering the Minecraft username, specifying the host, selecting the Java version, and launching Minecraft to introduce the NPC into the game.

Winsage

December 25, 2024

3 reasons you get more viruses on Windows than on Mac or Linux

The majority of malware is spread through social engineering, targeting users with limited computer security knowledge, particularly among Windows users. Windows has a larger user base, with approximately 1.6 billion devices and over 70% market share, making it a prime target for malware. In contrast, Macs account for about 15% of the market and benefit from robust security protocols, while Linux holds around 5% and its users generally possess higher technical expertise. Windows allows many applications to run with administrator access by default, which can create vulnerabilities, whereas Mac and Linux require explicit permissions for actions, enhancing security. Apple uses digital signatures and sandboxing to protect against malicious software, while Windows' security features are often limited to Pro and Enterprise editions. User behavior and knowledge significantly influence the likelihood of encountering malware, regardless of the operating system used.

Winsage

December 17, 2024

Leaving Windows 10 for Linux? 5 security differences to consider first

Linux is generally considered to offer superior security compared to Windows, with the author having experienced only one significant security incident in nearly three decades of use. 1. Windows 10 includes Windows Defender as a default firewall, while many Linux distributions, such as Ubuntu and Fedora, do not have their firewalls enabled by default. Linux firewalls allow for detailed configurations, although default settings are often sufficient for most users. 2. In Windows, administrative tasks can often be performed with a simple confirmation, whereas Linux requires users to enter their password for administrative actions using the sudo command, enhancing security. 3. Windows 10 has limited user-configurable permissions, while Linux provides comprehensive control over file and folder permissions through both command line and GUI options, contributing to its enhanced security reputation. 4. Antivirus and antimalware solutions are essential for Windows users to protect against threats, while Linux does not require such software due to its design prioritizing user permissions and advanced security measures. 5. Linux responds rapidly to vulnerabilities, often releasing patches within hours, unlike Windows, which may take weeks to address vulnerabilities and follows a Patch Tuesday schedule for updates.

Winsage

December 2, 2024

Save your computer from Microsoft’s Windows 10 end-of-life planned obsolescence

Microsoft will officially end support for Windows 10 on October 14, 2025, ceasing free updates, technical support, and security fixes. Canalys estimates that this decision could lead to 240 million PCs becoming obsolete, which is one-fifth of all computers globally. The environmental impact of disposing of these computers in landfills includes the release of heavy metals and a potential carbon footprint of 158 million metric tons of CO2e emissions if all 240 million PCs are replaced. Linux distributions can provide alternatives for older machines, allowing them to continue functioning.

Winsage

October 11, 2024

3 reasons Windows 11 24H2 might finally encourage people to upgrade from Windows 10

Windows 11 has not yet surpassed the user base of Windows 10, despite Microsoft's efforts to promote the upgrade. The release of Windows 11 24H2 may encourage users to switch, as it offers improved performance on older devices, even for those who do not meet the stringent system requirements. Key features of Windows 11 24H2 include support for Wi-Fi 7, a "sudo" command, a redesigned Start menu, native support for 7z and RAR files in the File Manager, and smaller updates that do not require system restarts. Users have reported enhanced performance on older hardware, leading some to remove their Windows 10 partitions. Additionally, gamers may be swayed to upgrade due to performance boosts of up to 10% with certain configurations, such as AMD Ryzen 7000 processors.

Winsage

September 23, 2024

Valve could be planning to bring Windows gaming to Linux systems with ARM chips – Liliputing

Valve is testing a version of its Proton software for ARM processors, indicated by the designation "proton-arm64ec." This development suggests potential support for ARM-based devices, possibly hinting at an ARM-powered handheld device, a VR headset, or the expansion of SteamOS to third-party hardware. Valve has not officially confirmed these intentions, and the information comes from updates tracked by SteamDB.

Tech Optimizer

August 25, 2024

Week in review: PostgreSQL databases under attack, new Chrome zero-day actively exploited – Help Net Security

- PostgreSQL databases on Linux systems are being targeted by cryptojacking attacks due to inadequate security. - Cisco Talos has found vulnerabilities in Microsoft applications for macOS that could allow unauthorized access to microphones and cameras. - Google has fixed a zero-day vulnerability in Chrome, CVE-2024-7971, which was being actively exploited. - OpenCTI, an open-source cyber threat intelligence platform, has been launched to help organizations manage cyber threat data. - A compilation of cybersecurity job openings indicates a growing demand for professionals in the field. - A critical vulnerability in GitHub Enterprise Server, CVE-2024-6800, has been patched to prevent unauthorized access. - SolarWinds has released a patch for a critical flaw in its Web Help Desk solution following a previous fix for a code-injection vulnerability. - Hiya reported nearly 20 billion calls flagged as spam in the first half of 2024, with a rise in AI-driven scams. - Microsoft will implement mandatory multi-factor authentication for all Azure sign-ins. - North Korean hackers exploited a zero-day vulnerability in a Windows driver, CVE-2024-38193, to deploy a rootkit. - NGate malware has been identified, which uses NFC technology to steal funds from victims' payment cards on Android devices. - Many organizations face security vulnerabilities in APIs, particularly with exposed secrets. - Microchip Technology Incorporated experienced operational disruptions due to a cyberattack. - Experts are questioning the future of national data privacy legislation in the U.S. amid discussions on federal privacy laws. - Research indicates that fraudsters can exploit digital wallet apps to use stolen payment cards even after they are reported compromised. - x64dbg is gaining popularity among security professionals for malware analysis and reverse engineering. - Current vulnerability management approaches focus on risk prioritization as a starting point for security strategy. - Building a positive cybersecurity culture within organizations is essential for risk reduction and resilience. - Higher education institutions are exploring ways to enhance cybersecurity measures despite resource constraints. - A new phishing campaign targeting Android and iPhone users has been uncovered by ESET researchers. - Organizations are recognizing the importance of managing enterprise data to improve cybersecurity, despite challenges from siloed systems. - The federal government is focusing on food security as a critical infrastructure issue. - Organizations are adopting biometric solutions to counter the risks posed by deepfake technology. - New information security products have been released by companies including Entrust, Fortanix, McAfee, Own, RightCrowd, and Wallarm.

Winsage

August 22, 2024

Microsoft: August updates cause Windows Server boot issues, freezes

Microsoft addressed a performance issue affecting Windows Server 2019 systems after the August 2024 security updates, specifically the KB5041578 cumulative update. Users reported severe slowdowns, boot complications, and freezes, with symptoms including increased CPU utilization, heightened disk latency, degraded performance, failures in starting Cryptographic Services, black screen booting, slow boot times, and system freezing. The issue was linked to antivirus software scanning the '%systemroot%system32catroot2' folder, with Windows Defender's Antimalware Service Executable identified as a potential cause. Microsoft implemented a Known Issue Rollback (KIR) to reverse the problematic updates, requiring installation of the KB5041578 240816_21501 Group Policy for affected devices. Affected users need to restart their devices after applying the new group policy settings. Additionally, Microsoft noted that the August 2024 updates caused boot failures on Linux systems with Secure Boot enabled in dual-boot configurations.

Tech Optimizer

August 21, 2024

PostgreSQL databases under attack – Help Net Security

Poorly protected PostgreSQL databases on Linux systems are increasingly targeted by cryptojacking attackers. Researchers from Aqua Security observed that these attackers use a systematic approach, starting with brute-forcing access credentials. After breaching a system, they create a new user role with elevated privileges, revoke superuser access from the compromised role, gather intelligence on the system, and download two critical files. The first payload, PG_Core, is designed to eliminate cron jobs and terminate processes linked to other cryptomining malware. The attacker also deletes files to evade detection. The second payload, PG_Mem, installs the XMRIG cryptominer and creates a cron job to run it. PostgreSQL databases, commonly deployed across various environments, have become prime targets due to weak security measures, such as inadequate passwords and misconfigurations. Shodan reports over 830,000 exposed PostgreSQL databases. To protect against cryptojacking, it is essential to implement robust network security measures, ensure strong passwords, use audit logs and intrusion detection systems, and disable unnecessary features.

Winsage

August 21, 2024

Windows update paralyzes Linuxes again

Recent Windows updates rolled out on August 13 have caused booting issues for users of various Linux distributions, particularly affecting Ubuntu 24.04 LTS and its derivatives. The updates introduced security measures that block outdated boot loaders, specifically through the Secure Boot Advanced Targeting (SBAT) feature. This feature aims to address memory limitations in BIOS and recognizes when secure boot is compromised, leading to the failure of Linux boot loaders Shim and Grub. Only boot loaders from trusted sources, mainly Microsoft, can operate under Secure Boot. While the update does not apply to systems that dual boot Windows and Linux, reports indicate that Linux boot sticks may still be affected. Existing Linux installations on hard drives or SSDs will continue to function normally with the latest updates. Affected distributors will need to update their installation media, which may take several days, or users can disable Secure Boot, keeping in mind the need to document the Bitlocker recovery key to avoid issues with encrypted Windows installations.