policies Archives

Tech Optimizer

August 7, 2025

Hackers Use Legitimate Drivers to Kill Antivirus Processes and Lower The System’s Defenses

Attackers have been using the ThrottleStop.sys driver to disable antivirus software in compromised networks since October 2024. This driver, designed for CPU throttling, allows malware to gain kernel-level memory access and terminate security processes. Initial access is typically gained through stolen RDP credentials or brute-forced administrative accounts, enabling the deployment of the AV killer alongside ransomware like MedusaLocker. Once inside, attackers extract additional user credentials using tools like Mimikatz and move laterally with Pass-the-Hash techniques. They upload two key components, ThrottleBlood.sys (the renamed driver) and All.exe (the AV killer), to user directories. The malware effectively disables Windows Defender and other endpoint protections, leading to severe data encryption in industries with exposed RDP endpoints, particularly affecting victims in Brazil, Ukraine, Kazakhstan, Belarus, and Russia. Securelist analysts noted that traditional self-defense features in Kaspersky products can counter this AV killer, but many organizations still rely on less effective solutions. The malware exploits two vulnerable IOCTL functions in the ThrottleStop.sys driver, allowing arbitrary memory reads and writes. It uses a loop to match and terminate antivirus processes by invoking kernel functions. The malware avoids detection by restoring original kernel bytes after execution. This situation highlights the need for improved driver integrity monitoring and robust security strategies.

AppWizard

August 4, 2025

This YouTube app alternative just added Android Auto support

NewPipe, an open-source YouTube application for Android, has introduced Android Auto support in version 0.28.0, allowing users to stream audio from their car's display. This feature enables access to playlists, listening history, and control over the player. The development of this feature began in 2022, and NewPipe must be sideloaded as it is not available on the Play Store. Currently, the Android Auto version supports only audio playback, with potential for future video support.

AppWizard

August 4, 2025

Another game store threatened with de-listing, says “no plans to remove any titles” but warns games like GTA at risk

Zoom Platform is facing scrutiny over adult content in gaming, similar to issues experienced by Steam and itch.io. The platform has engaged in discussions with payment processors PayPal and Stripe due to concerns raised by advocacy groups. Iconic games such as Grand Theft Auto, Duke Nukem, and Saints Row are considered potentially at risk of de-listing. In response, Zoom Platform is implementing measures like Two-Factor Authentication and a new wallet system to enhance security and manage funds. The platform aims to support artistic freedom and prevent de-listings, while currently partnering with major payment processors. Grand Theft Auto 2 was recently removed from Steam, but it remains available as abandonware. Zoom Platform offers classic Duke Nukem games, which fans hope will stay accessible.

Winsage

August 4, 2025

Millions still cling to Windows 10 as end of support looms

Windows 11 has a market share of 53.51 percent, while Windows 10's share is 42.88 percent, according to Statcounter data. Microsoft will cease support for Windows 10 in less than three months, yet many PCs remain on this older version. Organizations face challenges in transitioning to Windows 11 due to legacy applications and hardware incompatibilities. The Extended Security Update (ESU) program is seen as a temporary solution, and while consumers can secure a complimentary year of ESU, corporate customers using Microsoft 365 do not have this option. There are no plans from Microsoft to offer free ESUs for Windows 10. Despite the impending end of support, Windows 10 is expected to remain significant in enterprise planning for months or years to come.

Winsage

August 3, 2025

5 Windows PowerShell commands every power user should know

Microsoft has transitioned from the traditional command prompt to Windows PowerShell, a command-line interface tool designed for scripting and task automation. Key commands in PowerShell include: 1. Get-Process: Retrieves information about processes running on a local computer or a remote server, including process names, IDs, CPU usage, and memory consumption. Example usage includes filtering processes by memory usage or specific applications. 2. Get-Command: Lists all available commands within PowerShell, including cmdlets, functions, aliases, and scripts. It helps users discover commands for specific tasks. 3. Set-ExecutionPolicy: Configures the PowerShell script execution policy, determining whether scripts can run and under what conditions. It allows power users to adjust policies for executing custom scripts. 4. Get-EventLog: Accesses detailed system logs for troubleshooting errors or auditing system activity, including warnings and security breaches. It can filter logs based on criteria like log name and entry type. 5. Where-Object: Filters objects in a pipeline based on specified conditions, allowing users to narrow down results for analysis, reporting, and automation. It can be combined with other commands for enhanced functionality.

AppWizard

August 2, 2025

GOG is giving away a selection of adult games to protest censorship

GOG has launched a new platform, FreedomtoBuy.games, allowing users to download select "adult" games for free, in response to the removal of certain titles from Steam and Itch. For 48 hours, GOG is offering 13 games, including POSTAL 2 and HuniePop, which have faced controversy and bans. The initiative aims to preserve diverse gaming experiences and ensure compatibility with modern hardware. The removals from other platforms were influenced by new policies from payment processors and pressure from organizations like Collective Shout. Itch is working to reinstate removed games and restore free NSFW titles.

BetaBeacon

August 1, 2025

Epic Games for Android will be available on Google Store following court ruling

Epic Games won a legal battle against Google over anti-competitive practices, allowing the Epic Games Store to be placed within the Google Play Store.

BetaBeacon

August 1, 2025

Google just lost an appeal against opening up Google Play to Epic Games and others — what this means for you

Google Play will undergo changes following an antitrust ruling by the 9th U.S. Circuit Court of Appeals. The ruling requires Google to lift restrictions that make it difficult for rival app stores to operate on the platform. Epic Games praised the ruling, stating that it will allow them to distribute their own Epic Game Store on Google Play without the need for sideloading.

BetaBeacon

August 1, 2025

Google must allow rival app stores on Android, court rules in Epic Games lawsuit

A US federal court ruled that Google must open its Android operating system to rival app stores after losing an appeal in an antitrust case filed by Epic Games.

AppWizard

August 1, 2025

Google ordered to open Android app store after losing Epic Games appeal

Google has faced a setback in its legal battle with Epic Games as the US Court of Appeals for the Ninth Circuit upheld a ruling requiring Google to revise its app store policies. This decision mandates the removal of restrictions that prevent developers from creating competing marketplaces and billing systems on Android. Judge Margaret McKeown noted that antitrust remedies may require limitations on lawful business practices to address anticompetitive behavior. Google expressed concerns about the ruling's implications for user safety and innovation, emphasizing its commitment to protecting users and developers. Following the ruling, Alphabet's shares fell over 2% due to investor concerns about its business model.