remote Archives

Winsage

December 4, 2025

The first building blocks of an agentic Windows OS

Microsoft is introducing an MCP registry to Windows, enhancing security with protective wrappers and providing local agents with discovery tools. A proxy will enable connectivity for local and remote servers, ensuring robust authentication, auditing, and authorization. Enterprises can control access to the MCP using group policies and default settings, allowing unique identities for connectors. The registration process for an MCP server has been simplified with MSIX packages, making installation more accessible. Developers must have NodeJS installed to use the MCP bundle (mcpb) package, which is built using an NPM package. This approach allows developers to incorporate the MCP server into their application’s installer as an MSIX file for easy distribution and installation.

AppWizard

December 4, 2025

Horses, the Upsetting Horror Game Previously Banned on Steam, Gets Last Minute Ban From Epic Games Store Too

Humble has reinstated the game "Horses" on its platform after a temporary delisting for reevaluation. Developer Santa Ragione stated that the game's content, while heavy, did not warrant removal. However, Humble later decided to delist "Horses" again. The game was previously banned from Steam and Epic Games Store due to violations of content guidelines, with Epic citing "Inappropriate Content" and "Hateful or Abusive Content." Santa Ragione's appeal to Epic was denied without further explanation. The game has received attention for its unsettling premise, which critiques societal acceptance of morally horrifying actions. Despite facing bans, "Horses" is currently available on Humble, itch.io, and GOG.

Winsage

December 4, 2025

Announcing the Microsoft Store Awards 2025 winners

The Microsoft Store Awards recognized exceptional applications that enhance user experiences within the Windows ecosystem. AI Assistants category: - Winner: Perplexity by Perplexity AI - Features native voice dictation, multi-modal AI search, and deep desktop integration for rapid research. - Winner: ChatGPT by OpenAI - Provides instant answers, direct image and file uploads, and enterprise-level privacy controls. Business category: - Winner: Invoice Maker & Estimate Creator by Moon Technolabs Pvt. Ltd. - Streamlines finance tasks with customizable templates and real-time payment tracking. Computer-Using Agents (CUA) category: - Winner: Manus by Manus AI - Automates complex tasks within a secure sandbox and allows users to guide ongoing actions. Creativity category: - Winner: n-Track Studio by n-Track S.r.I. - Transforms devices into recording studios with support for unlimited tracks and advanced effects. Developer Tools category: - Winner: ngrok by ngrok - Facilitates secure tunneling and remote access with automatic updates and compatibility with Windows Defender. Education category: - Winner: Scratch 3 by Scratch Foundation - Empowers students in computational thinking through engaging projects and block coding. Game category: - Winner: Castle Craft by Clever Apps Pte Ltd - Offers an immersive gaming experience with dynamic resource merging and family-friendly design. Music category: - Winner: Moises Live by Moises Systems, Inc - Leverages real-time AI audio separation technology for remixing and practice. Productivity category: - Winner: Notion by Notion Labs Inc - Consolidates tasks and notes into a searchable workspace with automation features. Each winner will receive a Store Award Winner badge in the Microsoft Store.

Tech Optimizer

December 3, 2025

Wacatac Trojan: What Is It And How To Remove It

The Wacatac Trojan is a type of malware first documented in January 2020, known for disguising itself as benign software to trick users into installation. It operates under various aliases, including Trojan:Script/Wacatac and Trojan:Win32/Wacatac, and can connect to Command-and-Control (C2) servers for remote manipulation. Its capabilities include stealing credentials, evading antivirus detection, creating or joining botnets, causing system damage, enabling spyware functions, acting as Remote Access Tools (RATs), and downloading additional malware. Symptoms of infection include sluggish performance, program failures, unexplained storage reductions, and unfamiliar processes. Wacatac spreads through unofficial software, malicious web pages, and phishing emails. Removal is best achieved using reputable antivirus software, while prevention involves avoiding questionable downloads, practicing good digital hygiene, keeping software updated, backing up data, and using quality antivirus solutions. False positives can occur, where legitimate programs are mistakenly flagged as Wacatac.

Winsage

December 3, 2025

Microsoft Silently Patches Windows LNK Flaw After Years of Active Exploitation

Microsoft has addressed a long-standing security vulnerability, identified as CVE-2025-9491, which has been exploited since 2017. This vulnerability involves a misinterpretation issue within Windows Shortcut (LNK) files, potentially allowing remote code execution. The flaw was highlighted in the November 2025 Patch Tuesday updates, with a CVSS score of 7.8/7.0. It allows crafted .LNK files to obscure harmful content, making it invisible to users, thus enabling attackers to execute code under the current user's context. The vulnerability was exploited by various state-sponsored groups, including those from China, Iran, North Korea, and Russia, for data theft and espionage. Microsoft initially deemed the flaw not warranting immediate attention, citing user interaction requirements and existing system warnings. Subsequent investigations revealed its exploitation by cyber espionage groups, including XDSpy and China-affiliated actors targeting European entities. The recent patch aims to ensure that the entire Target command is displayed in the Properties dialog, while 0patch provides warnings for LNK files exceeding 260 characters.

AppWizard

December 3, 2025

India mandates SIM-linked messaging apps to fight rising fraud

India's Department of Telecommunications (DoT) has mandated that messaging services must operate with active SIM cards linked to users' phone numbers to combat cyber fraud. Popular apps like WhatsApp, Telegram, Signal, and Snapchat must comply with these SIM-binding rules within 90 days. The new regulations also require web sessions to automatically log out after six hours to enhance security and address issues related to long-lived web sessions, which have been exploited by fraudsters. This initiative aims to improve the traceability of accounts and reduce fraudulent activities, particularly phishing schemes and scams. Cyber-fraud losses in India reached ₹22,800 crore in 2024, prompting these Telecom Cyber Security measures. Users roaming with their SIMs will not be affected by the new regulations.

AppWizard

December 2, 2025

India Orders Messaging Apps to Work Only With Active SIM Cards to Prevent Fraud and Misuse

India's Department of Telecommunications (DoT) has mandated that app-based communication service providers implement measures requiring an active SIM card linked to the user's mobile number. This applies to messaging applications such as WhatsApp, Telegram, and Signal, which must comply within 90 days. The amendment to the Telecommunications (Telecom Cyber Security) Rules, 2024, aims to mitigate the misuse of telecommunication identifiers exploited for phishing and scams. The directive requires continuous linkage to the SIM card, and web service instances will log out every six hours, necessitating re-linking via QR code. This is intended to reduce account takeover risks and ensure that accounts are linked to KYC-verified SIMs. The DoT also announced a Mobile Number Validation (MNV) platform to combat identity fraud related to unverified mobile number associations.

AppWizard

December 2, 2025

New Albiriox MaaS Malware Targets 400+ Apps for On-Device Fraud and Screen Control

A new Android malware named Albiriox has emerged, marketed as malware-as-a-service (MaaS). It features a hard-coded list of over 400 applications, including banking and cryptocurrency platforms, and is distributed through social engineering tactics using dropper applications. Initially advertised in late September 2025, it became a full MaaS offering by October, with Russian-speaking threat actors behind its development. Albiriox allows remote control of compromised devices via an unencrypted TCP socket connection and Virtual Network Computing (VNC), enabling attackers to extract sensitive information and perform overlay attacks for credential theft. One campaign targeted victims in Austria using German-language lures and counterfeit Google Play Store listings. Albiriox also utilizes Android's accessibility services to bypass security measures and employs a novel distribution strategy involving a counterfeit website that collects phone numbers. Additionally, another Android MaaS tool, RadzaRat, was introduced, masquerading as a file management utility while offering extensive surveillance and remote control capabilities. RadzaRat can log keystrokes and maintain persistence through specific permissions, highlighting a trend in the availability of sophisticated cybercrime tools.

AppWizard

December 1, 2025

SmartTube YouTube app for Android TV breached to push malicious update

An attacker gained access to the developer's signing keys for SmartTube, an open-source YouTube client for Android TV, leading to a malicious update being distributed. The developer, Yuriy Yuliskov, confirmed the compromise and plans to release a new version with a different app ID. Users reported that Play Protect flagged SmartTube as a potential threat. A reverse-engineered version, identified as 30.51, contained a hidden library named libalphasdk.so, which was not part of the public source code and collected device fingerprints without user knowledge. There is currently no evidence linking the malware to account theft or DDoS attacks, but concerns remain. Yuliskov has announced safe beta and stable test builds on Telegram, but they are not yet on GitHub. Users are advised to stay on older verified builds, avoid logging in with premium accounts, and disable auto-updates. Version 30.19 does not trigger Play Protect warnings, suggesting it may be safer.

AppWizard

December 1, 2025

Netflix quietly killed casting from phones to newer Chromecasts and Google TV Streamer

Netflix has announced the discontinuation of casting support from its mobile applications to most modern smart TVs and streaming devices, requiring users to navigate using their device's remote controls. This change affects all plans, including those without advertisements, and only older Chromecast models and TVs with native Google Cast support remain compatible with casting. Users on ad-supported plans will not be able to use the casting feature. Reports indicate that traditional Chromecast devices still function for casting, while newer models like Chromecast with Google TV and most integrated Google TV smart TVs are no longer supported for this feature.