passwords Archives

Winsage

April 29, 2025

Microsoft’s AI Secretly Copying All Your Private Messages

Microsoft is relaunching its AI-driven feature, Recall, which continuously captures background screenshots on Copilot+ PCs optimized for AI functionalities. Initially introduced in May, Recall was retracted due to privacy concerns over unencrypted storage of screenshots containing sensitive user data. After testing through Microsoft's Insider program, Recall has been updated to encrypt the screenshot database and requires users to opt in to save screenshots. However, it still poses risks by potentially capturing sensitive information from communications without the knowledge of other parties involved. Security researcher Kevin Beaumont has noted that the sensitive information filter is unreliable, and the encrypted database is only secured by a basic four-digit PIN. Beaumont's testing revealed that Recall indexed everything it stored, including ephemeral messages and images. He cautioned users to check if Recall is enabled when discussing sensitive topics with others on Windows PCs.

Winsage

April 27, 2025

New Security Warning After 1 Billion Windows Users Told Do Not Delete

Microsoft's recent security update for Windows has raised concerns among users due to the introduction of a new vulnerability. The update, intended to address the CVE-2025-21204 vulnerability, inadvertently created a folder named inetpub, which Microsoft claims is essential for user protection. Security researcher Kevin Beaumont has warned that this update has introduced a denial of service vulnerability that allows non-admin users to halt future Windows security updates. Microsoft has classified the issue as moderate in severity and suggested that deleting the inetpub symlink and retrying the update may resolve the problem. The report has been forwarded to the Windows security team for potential further action.

Winsage

April 26, 2025

Windows 11’s Recall AI is now rolling out on Copilot+ PCs

Microsoft has announced the rollout of Windows Recall, a feature for Windows 11 systems with KB5055627 on Copilot+ PCs. Recall uses AI to capture and store visual information from the screen, allowing users to find previously viewed content by describing it in everyday language. Initially unveiled in May 2024, Recall faced privacy concerns, leading Microsoft to pause its rollout for further testing. The feature is now optional and includes enhancements to filter out sensitive information. Recall is part of Windows 11 Build 26100 and will be widely available with the May 2025 Patch Tuesday Update.

AppWizard

April 26, 2025

Nothing Phone 3a is finally getting this missing Android 15 privacy feature

The Nothing Phone 3a is set to receive an update that includes support for 4K video, camera enhancements, and a hotspot manager. A key feature being introduced is Privacy Space, which allows users to create a secure profile to conceal apps from scrutiny. Users can access Privacy Space by swiping right in the app drawer and can set distinct passwords for it and the App Locker. This feature was hinted at in March during an APK teardown of the Nothing Launcher.

AppWizard

April 25, 2025

12 Android apps secretly recorded your conversations

Recent findings from cybersecurity experts at ESET revealed that several Android applications, disguised as harmless tools, have been secretly recording conversations and stealing sensitive data. These malicious apps infiltrated devices through the Google Play Store and third-party platforms, compromising the privacy of thousands of users. One tactic used by cybercriminals involved romantic deception, where victims were coaxed into downloading a seemingly harmless messaging app containing the VajraSpy Trojan, which activated upon installation to record conversations and harvest personal data. The identified malicious apps fall into three categories: 1. Standard Messaging Apps with Hidden Trojans: These apps, including Hello Chat, MeetMe, and Chit Chat, request access to personal data and operate silently in the background, stealing contacts, SMS messages, call logs, device location, and installed app lists. 2. Apps Exploiting Accessibility Features: Apps like Wave Chat exploit Android’s accessibility features to intercept communications from secure platforms, record phone calls, keystrokes, and ambient sounds. 3. Single Non-Messaging App: Nidus, a news app, requests a phone number for sign-in and collects contacts and files, increasing the risk of data theft. The 12 malicious Android apps identified include: Rafaqat, Privee Talk, MeetMe, Let’s Chat, Quick Chat, Chit Chat, YohooTalk, TikTalk, Hello Chat, Nidus, GlowChat, and Wave Chat. The first six apps were available on the Google Play Store and had over 1,400 downloads before removal. Users are advised to uninstall these apps immediately to protect their personal data.

Winsage

April 23, 2025

5 reasons I use Windows 11 Backup over Macrium Reflect

Backups are crucial for data preservation, especially when primary machines face issues. Windows 11 provides various backup tools, including the Windows Backup app, which allows users to safeguard files, applications, and system preferences. This app can restore backups during Windows reinstallation and remembers wireless network credentials, simplifying the restoration process. It enables users to restore Microsoft Store apps with a single click and features a user-friendly interface that makes navigation easy. Windows Backup also offers data protection against ransomware through OneDrive storage. However, it cannot restore third-party apps and has limited cloud storage of 5GB on OneDrive, necessitating careful management of saved files.

Winsage

April 22, 2025

In depth with Windows 11 Recall—and what Microsoft has (and hasn’t) fixed

The Recall service has a tray icon that indicates its operation and occasionally shows blurred snapshot previews to protect sensitive information. The latest version includes automated content filtering to prevent the capture of sensitive data, utilizing Microsoft Purview Information Protection technology. However, its effectiveness is inconsistent, as it can still capture sensitive information like personal details and credit card data in certain cases. The filtering system does not differentiate between sensitive and non-sensitive data in applications, leading to potential capture of personal information. Users cannot easily verify what is being filtered, and the tray icon does not specify which app or browser tab is affected. Recall can be completely uninstalled, removing all configuration options from the Settings menu.

Winsage

April 19, 2025

Windows vulnerability with NTLM hash abuse exploited for phishing

A vulnerability in Windows, identified as CVE-2025-24054, is being exploited in phishing campaigns targeting government and private organizations. Initially considered low-risk, it was addressed in Microsoft's March 2025 Patch Tuesday updates. Following the release of these patches, Check Point observed a rise in exploitation attempts, particularly linked to the Russian group APT28. Attackers sent phishing emails with Dropbox links containing .library-ms files, which, when accessed, connected to an external SMB server controlled by the attackers, allowing interception of NTLM hashes. A subsequent wave of attacks involved .library-ms files sent as direct attachments, requiring minimal user interaction to exploit the vulnerability. The malicious ZIP archive also contained files exploiting older NTLM vulnerabilities. Check Point identified the attackers' SMB servers with specific IP addresses. Despite being classified as medium-severity, the vulnerability's potential impact is significant, prompting organizations to apply the March 2025 updates and consider disabling NTLM authentication if not essential.

AppWizard

April 18, 2025

Perplexity’s Android App Is Infested With Security Flaws, Report Finds

Perplexity has launched a promotional campaign called “Ask like a millionaire,” offering a million-dollar prize to users who download its app, refer friends, and engage with it during the Super Bowl. However, the Android app is facing scrutiny due to significant security vulnerabilities, including issues that could lead to data theft and account takeovers. A report from Appknox reveals that the app's API can be accessed without restriction, and the code contains hardcoded secrets, making it easy for attackers to create counterfeit versions of the app. The app is also vulnerable to task hijacking, which could allow unauthorized access to sensitive data. Perplexity, founded in 2022, has raised 0 million in venture capital and has over 10 million downloads. The company is exploring partnerships with smartphone manufacturers and has faced criticism for alleged copyright infringement. Security experts advise users to consider removing the app until the issues are resolved.

Winsage

April 18, 2025

Microsoft makes Windows 11 24H2 more secure but not how you’d think

Microsoft is deprecating support for Virtualization-Based Security (VBS) enclaves in Windows 11 23H2 and earlier versions as it transitions users to Windows 11 24H2, which retains support for VBS enclaves. Windows 11 24H2 enhances security and is essential for developers to ensure their applications function correctly and securely. Windows 11 23H2 will reach the end of its support lifecycle on November 11, 2025, after which Microsoft will stop providing security updates. Users are encouraged to upgrade to Windows 11 24H2 to maintain access to security features and receive updates.