network Archives

Winsage

June 14, 2026

When Windows 7 Arrived in Japan, It Came Printed on Toilet Paper

On October 22, 2009, Japan launched Windows 7, accompanied by a unique promotional item: a roll of toilet paper featuring Windows 7 branding and details about its enhancements. This marketing strategy was similar to the previous promotion for Windows Vista Service Pack 1. The toilet paper included messages about Windows 7's speed, security, and compatibility improvements, with sections detailing faster startup times, enhanced memory management, a streamlined user interface, and security features like the Action Center and BitLocker To Go. Networking capabilities were improved with HomeGroup, and Windows Media Center expanded its functionality. The design of the promotional toilet paper allowed users to revisit key points easily, and some versions mimicked Windows software boxes. This initiative was driven by local retailers, reflecting Japan's trend of quirky promotions in the electronics retail sector.

AppWizard

June 14, 2026

Gears of War: E-Day Demands just 12GB RAM and an RTX 2060, Defying PC Players’ Worst Fears

The Coalition is a leading developer of Unreal Engine and is set to release Gears of War: E-Day on October 6, 2026. They have showcased two Unreal Engine 5 demos: Alpha Point in 2021 and The Cavern in 2022. The minimum system requirements for the game include Windows 10 64-bit, AMD Ryzen 5 2600X or Intel i7-6850K, 12 GB RAM, NVIDIA GeForce RTX 5050 or AMD Radeon RX 6600, DirectX Version 12, a broadband internet connection, and 130 GB of SSD storage. The recommended specifications are Windows 11 64-bit, AMD Ryzen 5 5600 or Intel i5-11600K, 16 GB RAM, NVIDIA GeForce RTX 5060 or AMD Radeon RX 6700 XT, DirectX Version 12, a broadband internet connection, and 130 GB of SSD storage. The game will feature borderless/exclusive/windowed display modes, uncapped frame rates, ultrawide support, keyboard and mouse/controller remapping, 4K Ultra HD with HDR10, hardware ray-traced lighting, and full optimization for handheld play. The game will not be available on PlayStation 5.

Winsage

June 13, 2026

Windows Server is getting new network safety capabilities with DNS over HTTPS

Microsoft has introduced DNS over HTTPS (DoH) on Windows Server 2025, enhancing network security by encrypting DNS traffic for client-to-server communications. This feature, previously available only in Windows client editions, is now part of Microsoft's Zero Trust architecture. DoH routes DNS traffic through HTTPS secured with TLS certificates, preventing eavesdropping and safeguarding DNS data from tampering. It adheres to the IETF DNS over HTTPS standard (RFC 8484) and can integrate with existing infrastructure, allowing organizations to maintain unencrypted DNS traffic if needed. DoH is available for Windows Server 2025 systems updated to the latest Patch Tuesday release, and Microsoft has provided guidance on enabling this feature. However, DNS traffic exchanged between two DNS servers will not be encrypted by DoH.

Winsage

June 13, 2026

Windows 11 KB5094126: Microsoft’s desktop.ini hardening causes some folder icons to disappear

Following the June 2026 update, custom folder icons and localized folder names in Windows are no longer displaying as they typically would due to intentional modifications related to security updates, specifically KB5094126 for Windows 11 versions 24H2 and 25H2. This update tightens the handling of the desktop.ini file, which is used for folder customization. Although access to the actual files remains unchanged, affected folders may revert to default icons or display original directory names instead of customized labels. Microsoft has identified certain sources as untrusted, including files downloaded from the internet and specific remote sources, which affects how desktop.ini files are processed. Users are encouraged to verify file origins, and administrators should ensure that internal sources are classified as trusted to avoid disruptions in folder presentation. The update also includes other security fixes and enhancements.

AppWizard

June 13, 2026

Facebook, Instagram, Messenger Outages: What We Know So Far

At 2:45 PM UK time, users experienced disruptions across Facebook and Messenger, encountering error messages. Other Meta services, including Instagram and WhatsApp, also faced issues globally. Meta's communications chief, Andy Stone, acknowledged the problem on X, stating they were working on it. By 3:38 PM UK time, some users reported regaining access to Facebook, while Messenger saw a spike in outages around 2:22 PM, which later decreased. Instagram had increased outage reports, while WhatsApp appeared to function normally. The cause of the outages is unclear, and Meta has not yet responded to inquiries. Meta services share server infrastructure, meaning issues can affect multiple platforms. In the past, Meta experienced a significant outage in 2021 due to an erroneous command affecting its network. The cause of the 2026 outages remains undetermined.

AppWizard

June 13, 2026

Waze fulfills a long-standing wish of millions of drivers. You’ve been missing this major new feature in maps

Users globally faced challenges accessing Facebook and Instagram due to a widespread technical failure affecting millions. Disruptions were also reported with Messenger and WhatsApp. Meta's business status tracker identified significant issues with Facebook's advertising network. Outage monitoring tools noted an increase in user complaints, indicating the scale of the disruption. Common symptoms included lag and issues loading new Stories on social media, and problems connecting to Facebook and Messenger. The cause of the outage is unclear, and there is no timeline for service restoration. Downdetector indicated possible issues with WhatsApp as well.

Tech Optimizer

June 13, 2026

Why Use App-Level Auth When Every Database Has Auth? (Splunk Enterprise CVE-2026-20253 Pre-Auth RCE)

On June 10th, Splunk released an advisory for CVE-2026-20253, a high-severity vulnerability with a CVSS score of 9.8 that requires no authentication. The vulnerability is associated with the PostgreSQL Sidecar Service Endpoint and affects Splunk Enterprise versions 10 and above. In default installations, the service is not installed on Windows but is installed and enabled by default on AWS. The vulnerability allows unauthorized users to create and truncate arbitrary files through an API that lacks authentication controls. Additionally, it enables the execution of SQL commands via a backup and restore mechanism, potentially leading to remote code execution (RCE). A Detection Artefact Generator has been developed to help organizations assess their vulnerability to this issue.

Winsage

June 12, 2026

Hackers Use Fake Windows Update Installers to Deliver OnyxC2 Credential Stealer

OnyxC2 is a sophisticated credential stealer available for a subscription fee of 0 per month, distributed through disguised lures such as fake Windows updates and legitimate software installers. It functions as a commercial product with features like an automated payload builder, tiered licensing, and a centralized web dashboard. The malware boasts a 99% detection-evasion rate, successfully evading major antivirus solutions during tests. It is developed in C++, utilizing direct system calls and mutating with each build to avoid detection. OnyxC2 collects data from around 210 applications, targeting 45 web browsers, password managers, cryptocurrency wallets, and FTP clients. The malware is delivered using DLL sideloading, where a password-protected archive contains a legitimate application and a malicious DLL. The attacker's DLL is disguised by inflating its size and is loaded by a trusted binary. The malicious code remains encrypted on disk and decrypts in memory to evade analysis. OnyxC2 communicates with a Cloudflare-fronted command-and-control server to manage infected hosts and execute commands like hardware registration and cookie uploads. The threat extends to business environments, targeting FTP and email clients, with stolen session cookies allowing ongoing access to corporate infrastructure. Implementing anti-data exfiltration controls is recommended as a mitigation strategy.

Winsage

June 12, 2026

Microsoft just broke some custom folder icons, and it’s deliberate

Windows 11 users have reported that their custom folder icons have reverted to default settings due to new security protocols from Microsoft. If a desktop.ini file, which defines folder icons, is detected as coming from an untrusted source, Windows will automatically revert to the standard icon without notification. Microsoft has confirmed that 'untrusted' icons will no longer display, and identifies scenarios that classify a source as untrusted, including files downloaded from the internet with a Mark-of-the-Web (MOTW), files copied from certain remote locations, and files on unrecognized network paths. To restore customizations, users can add the source to their Trusted Sites list, enable the "Allow the use of remote paths in file shortcut icons" policy, or remove the Mark-of-the-Web tag from affected files.

Winsage

June 12, 2026

Microsoft fixes Windows update failures linked to WUSA installer

Microsoft resolved an issue affecting the installation of Windows updates released since May 2025, which primarily impacted users using the Windows Update Standalone Installer (WUSA) from a network share, especially in enterprise environments. The problem was significant for devices running Windows 11 24H2/25H2 and Windows Server 2025, but did not occur when handling a single .msu file or when files were stored locally. In August 2025, Microsoft acknowledged that updates installed using WUSA might fail with error ERRORBADPATHNAME when multiple .msu files were involved. A Known Issue Rollback Group Policy was implemented in September 2025 to mitigate the impact on home and non-managed business devices. The issue was ultimately resolved with cumulative updates released in June 2026 for Windows 11 (KB5079391) and Windows Server 2025 (KB5094125). Microsoft provided a workaround for users experiencing difficulties with prior updates by suggesting they save .msu files locally for installation. Users were also advised to wait at least 15 minutes after installing an .msu file via WUSA before checking the Update History page. Additionally, Microsoft had previously addressed another issue in April 2025 that affected enterprise customers installing security updates via WSUS, which recurred in the August 2025 updates. Microsoft warned customers about potential issues with installing the latest monthly updates on devices upgraded to Windows 11 24H2 or 25H2.