processes Archives

Winsage

January 19, 2026

Windows 11 PCs Fail To Shut Down After Update

Some users of Windows 11 have experienced a problem where their PCs reboot instead of shutting down after the Patch Tuesday security update KB5073455. This issue primarily affects devices with Secure Launch on Windows 11 version 23H2. Microsoft has confirmed this behavior, which disrupts the usual power-off sequence and can drain battery life for laptops and complicate remote management processes. An out-of-band update, KB5077797, has been released to restore normal shutdown and hibernation functionalities for affected systems. Users can check for this update in Windows Update or download it from the Microsoft Update Catalog. To determine if they are affected, users should look for immediate restarts when selecting Shut Down or Hibernate and check if Secure Launch is enabled in System Information.

Tech Optimizer

January 19, 2026

PDFSIDER Malware Actively Used by Threat Actors to Bypass Antivirus and EDR Defenses

PDFSIDER is a sophisticated backdoor malware that bypasses modern endpoint detection and response systems. It is distributed through targeted spear-phishing campaigns that exploit vulnerabilities in legitimate PDF software. The malware is delivered via spear-phishing emails containing ZIP archives with a trojanized executable disguised as the PDF24 App. When executed, it uses DLL side-loading to load a malicious DLL (cryptbase.dll) alongside the legitimate PDF24.exe, allowing attackers to execute code without detection. PDFSIDER establishes encrypted command-and-control channels using the Botan 3.0.0 cryptographic library with AES-256 in GCM mode and operates mainly in memory to minimize detectable artifacts. It collects system information and executes commands through hidden cmd.exe processes. The malware employs advanced techniques to evade detection in sandbox and virtual machine environments, including checks for available RAM and debugger presence. Indicators of compromise include the malicious file cryptbase.dll and various clean files associated with the legitimate PDF24 application. Organizations are advised to enforce strict controls on executable files, provide user awareness training, and monitor DNS queries and encrypted traffic to detect PDFSIDER communications. The malware's behavior aligns with tactics used in state-sponsored espionage rather than financially motivated cybercrime.

AppWizard

January 18, 2026

The Latest Monster Hunter Wilds PC perf drama explained

A Reddit post by user de_Tylmarande claimed that purchasing downloadable content (DLC) could improve frame rates in the PC version of Monster Hunter Wilds. Testing revealed that the performance issues were due to a bug related to the game's frequent checks for DLC presence, particularly in specific hub areas. Using a mod called "Less DLC Checks," which integrates with the RE Framework modding tool, players observed significant performance improvements: 11.4% at maximum settings, 20% at high settings, and 25.6% at low settings when DLC checks were blocked. The performance hit primarily occurs near a Support Desk felyne, indicating the availability of DLC. Capcom has not officially addressed the issue, and while the narrative about DLC enhancing performance was debunked, it raises concerns about the company's quality assurance processes.

AppWizard

January 16, 2026

Amazon is shutting down New World next year

Amazon will cease operations of its multiplayer online game, New World, on January 31, 2027. The game has been removed from all platforms, but current owners can still access it until the shutdown date. Purchases made with in-game currency will not be refunded. Amazon plans to release New World: Aeternum for Xbox Series X and Series S, as well as PlayStation 5, in October 2024.

Winsage

January 16, 2026

Paint: Your guide to drawing software

Windows 11 includes Microsoft Paint, which is easily accessible and offers a user-friendly environment for creativity. The updated interface features a sleek layout, making tools readily available for experimentation. Paint has refined brushes and inking tools that provide a smooth, responsive drawing experience, especially with stylus use, incorporating pressure sensitivity for more authentic strokes. It also offers advanced color tools, including support for RGB, hex, and HSV color options, allowing users to maintain consistency in their projects. Users can create a mini color palette on the canvas and utilize the eyedropper tool to extract colors from references or generated images.

AppWizard

January 16, 2026

Your Android App Needs Scanning – Best Android App Vulnerability Scanner in 2026

The past year saw a 45% increase in new vulnerabilities targeting Android. By the end of 2024, there are projected to be 2.87 million apps on Google Play, with 66% of American employees using personal smartphones for work. Mobile applications are responsible for 70% of digital interactions, and vulnerabilities in these apps contributed to approximately 40% of data breaches involving personal data in 2023. Effective Android App Vulnerability Scanners analyze app security by identifying insecure local storage, hardcoded credentials, weak cryptography, insecure network configurations, broken authentication flows, and misconfigured components. AI-powered scanners, like AutoSecT, can autonomously generate new scanning protocols quickly, detect zero-day vulnerabilities, automate penetration testing, and operate with near-zero false positives.

Winsage

January 12, 2026

Windows 11 Faces Backlash as Slowest OS in 25 Years, Benchmarks Show

Microsoft's Windows 11, launched in 2021, has been criticized for significant performance issues, making it potentially the least performant version of Windows in over two decades. Independent benchmarks reveal that Windows 11 is slower than its predecessors in areas such as boot times, application launches, and overall system responsiveness. Users with high-end hardware, including 13th-generation Intel Core processors, have reported noticeable slowdowns compared to Windows 10. Performance assessments indicate that Windows 11 struggles in various categories, including file operations, multitasking, and gaming, with longer boot speeds reminiscent of older systems. Gamers have experienced stuttering and frame rate drops, and Microsoft has acknowledged these issues in updates since 2022. The operating system is criticized for being a "resource hog," with preloaded features consuming resources even when idle. Users have reported lagging File Explorer and freezing processes, leading some to consider alternative operating systems. IT departments have noted increased support tickets related to performance issues, prompting some to delay upgrades from Windows 10. Microsoft has offered optimization advice, but critics argue these are temporary fixes for deeper architectural problems. The performance issues have implications for software developers and hardware manufacturers, increasing development costs and complicating hardware optimizations. Analysts warn that without prompt action, Microsoft's market dominance could be at risk, as users advocate for a leaner, faster Windows.

Winsage

January 12, 2026

Tech Bloggers Switch to Linux Over Windows Privacy Woes in 2026

In early 2026, many prominent technology writers are transitioning from Windows and macOS to Linux-based systems, citing frustrations with Windows 11's mandatory updates, privacy concerns, and software bloat as key reasons for the shift. The appeal of Linux is bolstered by advancements in gaming compatibility, user-friendly distributions, and a growing open-source community. While some users face challenges such as a steep learning curve and software incompatibilities, the overall sentiment is positive, with predictions suggesting significant growth for Linux desktops in 2026. Economic factors, including the cost of proprietary software and hardware demands, are also driving users towards Linux, which remains free and efficient. Community support plays a crucial role in easing the transition, and there is optimism about Linux's potential to capture more market share in various fields, despite some realism regarding the need for proprietary software in certain workflows.

AppWizard

January 12, 2026

Google’s latest move brings AI shopping a lot closer to reality

Google has introduced the Universal Commerce Protocol (UCP), which enables AI agents to manage product searches, checkout processes, and payments for users. UCP standardizes communication between AI agents and various retailers and payment platforms, including Shopify, Walmart, and Visa. The AI-driven checkout feature will be available in Google Search's AI Mode and the Gemini app, using data from Google Pay and Google Wallet. Google is also launching Business Agents and Direct Offers to enhance customer engagement within AI shopping environments. UCP allows AI agents to perform the entire shopping process with a single command, simplifying online shopping. Google has partnered with companies like Etsy, Target, American Express, Best Buy, Flipkart, Mastercard, Stripe, and Visa to implement this protocol. Users in the U.S. will benefit from features like automatic shipping information usage and upcoming support for PayPal. The Business Agent acts as a virtual sales assistant, and Direct Offers provide exclusive coupons to shoppers. Google aims to make AI-driven shopping experiences standard, allowing seamless retailer interactions.

Winsage

January 12, 2026

EDRStartupHinder Disables Antivirus and EDR Protections During Windows 11 25H2 Startup

A new tool named EDRStartupHinder was unveiled on January 11, 2026, which allows attackers to inhibit the launch of antivirus and endpoint detection and response (EDR) solutions during the Windows startup process. Developed by security researcher Two Seven One Three, it targets Windows Defender and various commercial security products on Windows 11 25H2 systems by redirecting essential system DLLs during boot using the Windows Bindlink API and Protected Process Light (PPL) security mechanisms. The tool employs a four-step attack chain that includes creating a malicious service with higher priority than the targeted security services, redirecting critical DLLs to attacker-controlled locations, and modifying a byte in the PE header of the DLLs to cause PPL-protected processes to refuse loading them. This results in the termination of the security software. EDRStartupHinder has been tested successfully against Windows Defender and other unnamed antivirus products, demonstrating its effectiveness in preventing these security solutions from launching. The source code for EDRStartupHinder is publicly available on GitHub, raising concerns about its potential misuse. Security teams are advised to monitor for Bindlink activity, unauthorized service creation, and registry modifications related to service groups and startup configurations to detect this attack vector. Microsoft has not yet issued any statements regarding patches or mitigations for this technique.