research Archives

Winsage

April 5, 2025

Microsoft bundle deal: MS Office and Windows 11 for $54.97

A bundle is available for enhancing existing PCs, including Microsoft Office Professional 2021 and an upgrade to Windows 11 Pro, priced at .97, reduced from the regular price of 8. The Office 2021 suite includes Word, Excel, PowerPoint, Outlook, Teams, OneNote, Publisher, and Access. Windows 11 Pro features a redesigned interface, productivity tools like Snap layouts, multiple virtual desktops, improved voice typing, enhanced search functionalities, and the AI-powered Copilot virtual assistant. Advanced features include Azure AD, Hyper-V, Windows Sandbox, and BitLocker device encryption. Compatibility with current hardware is required, and the offer is not applicable for systems unable to access Windows Update for Windows 11. Prices on StackSocial may change.

Winsage

April 5, 2025

Microsoft, Redmond celebrates 50 years of change: From small startup to AI trailblazer

Lisa Dupar owns a restaurant and catering business in Redmond, which she started four decades ago. Initially hesitant about opening in what seemed a remote area, her business thrived after she began delivering food to Microsoft, which was then a startup. Microsoft recently celebrated its 50th anniversary with an event attended by around 1,000 employees, including its three CEOs: Bill Gates, Steve Ballmer, and Satya Nadella. The company has invested a billion dollars to enhance its AI infrastructure and develop new products like “Copilot.” Microsoft is also facing challenges with new tax proposals in Washington state. Redmond Mayor Angela Birney highlighted Microsoft's positive impact on the community, including infrastructure investments. Gates and Paul Allen moved the company from Albuquerque to Redmond in 1979 to attract talent. Dupar employs 250 people and has catered events for high-profile executives, crediting Microsoft for her business's longevity.

Winsage

April 4, 2025

Microsoft Copilot Updates Make the AI Companion Much More Personal

AI development is rapidly advancing, leading Microsoft to enhance its Copilot AI assistant. The updates aim to transform Copilot into a more engaging and personalized companion. Copilot, powered by OpenAI's GPT technology, is integrated across the Microsoft ecosystem, including Microsoft 365, Windows, the Edge browser, and Bing search. Key features of the updated Copilot include: - Memory Functionality: Users can allow Copilot to remember personal details, with a focus on security and privacy. - Custom Appearances: Users can customize Copilot's visual representation, including whimsical forms. - Copilot Actions: Copilot can manage tasks like making reservations or sending gifts, collaborating with services like 1-800-Flowers.com and Expedia. - Pages Feature: Users can organize content and generate AI-driven podcasts on preferred topics. - Enhanced Copilot Search: Improvements to the Copilot Search feature in Bing aim to address accuracy issues with search-result summaries. The initial rollout of these features begins on Friday, with full availability expected in the coming months.

Winsage

April 4, 2025

Microsoft Wants Consumers to Make Friends With its Copilot AI ‘Companion’

During a presentation at Microsoft’s headquarters, CEO of Microsoft AI, Mustafa Suleyman, was interrupted by a protestor criticizing Microsoft for providing AI tools to military forces in Gaza. The protestor accused Microsoft of contributing to the deaths of 50,000 people and urged Suleyman to stop using AI for genocide. Suleyman acknowledged her protest and continued with his presentation about Microsoft's AI companion software, Copilot, which aims to redefine user-technology relationships. Copilot features include memory and personalization, actions for task execution, camera integration, organization tools, personalized podcast generation, shopping assistance, and deep research capabilities. Suleyman emphasized that Copilot is designed around individual needs and values, ensuring user control over data and interactions.

Winsage

April 4, 2025

Microsoft unveils a more personal Copilot, leaving rival Apple further behind

Microsoft is enhancing its AI-powered Copilot with new features, including the ability to memorize user preferences, such as favorite foods and family birthdays, while allowing users to control what information is stored. The Copilot will also enable users to customize its appearance and perform tasks through chat prompts, integrating with platforms like OpenTable and Booking.com. Additionally, Copilot will feature visual search capabilities through Copilot Vision, allowing users to capture images or stream live video for information searches. Other functionalities include a podcast feature, a personal shopping assistant, and enhanced multi-step research capabilities, with Copilot Search being integrated into the Bing browser.

AppWizard

April 4, 2025

Which is the most secure messaging app?

Companies are adapting to evolving market demands and technological advancements, leveraging data analytics for decision-making and customer experience enhancement. E-commerce and technology sectors have reported significant growth, with online sales surging as consumers prefer shopping from home, prompting traditional retailers to invest in digital strategies. Sustainability is a key focus, with businesses implementing eco-friendly practices to enhance brand reputation and access new market opportunities. Companies are also investing in research and development to innovate and create products that meet changing customer needs, particularly in industries like healthcare and automotive. Organizations prioritizing agility and customer-centric strategies are likely to become leaders in their fields.

Tech Optimizer

April 3, 2025

1,500+ PostgreSQL Servers Compromised With Fileless Malware Attack

A cryptojacking campaign has targeted over 1,500 organizations by exploiting inadequately secured PostgreSQL database servers. The attackers, identified as JINX-0126, use advanced techniques including credential brute-forcing and fileless execution to deploy Monero (XMR)-mining malware. Approximately 30% of cloud-hosted PostgreSQL servers are affected due to weak or default credentials. The attackers execute commands using PostgreSQL’s COPY FROM PROGRAM function, bypassing standard detection mechanisms. They have been linked to three cryptocurrency wallets with around 550 active mining workers, generating a hashrate of 4.04 GH/s and approximately €10.40 per hour in XMR revenue. The attack begins with credential spraying against default accounts, followed by an SQL injection to fetch the payload. The malware operates in memory, modifies PostgreSQL’s configuration to maintain persistence, and creates cron jobs for reactivation. The campaign reveals significant security gaps in cloud environments, with recommendations for improved access controls and monitoring.

Tech Optimizer

April 2, 2025

Over 1,500 PostgreSQL Servers Hit by Fileless Malware Attack

A malware campaign has compromised over 1,500 PostgreSQL servers using fileless techniques to deploy cryptomining payloads. The attack, linked to the threat actor group JINX-0126, exploits publicly exposed PostgreSQL instances with weak or default credentials. The attackers utilize advanced evasion tactics, including unique hashes for binaries and fileless execution of the miner payload, making detection difficult. They exploit PostgreSQL’s COPY ... FROM PROGRAM function to execute malicious payloads and perform system discovery commands. The malware includes a binary named “postmaster,” which mimics legitimate processes, and a secondary binary named “cpu_hu” for cryptomining operations. Nearly 90% of cloud environments host PostgreSQL databases, with about one-third being publicly exposed, providing easy entry points for attackers. Each wallet associated with the campaign had around 550 active mining workers, indicating the extensive scale of the attack. Organizations are advised to implement strong security configurations to protect their PostgreSQL instances.

Tech Optimizer

April 2, 2025

When it comes to security, public Wi-Fi could be a risky choice for commuters worldwide

Research from NordVPN indicates that 47% of commuters use strong passwords or passcodes, 46% regularly update their software, 20% use privacy screen protectors, and only 17% utilize a VPN for added security while traveling.

Tech Optimizer

March 31, 2025

Traditional EDR can’t keep up with modern cyber threats

By 2025, the global cost of cybercrime is projected to reach .5 trillion annually. Many organizations continue to use outdated Endpoint Detection and Response (EDR) solutions, which are increasingly ineffective against sophisticated cyber threats. EDR was introduced in 2013 but has struggled to keep pace with evolving attack techniques. Traditional EDR is reactive, responding to incidents after they occur, and relies on known Indicators of Compromise (IoCs), which limits its effectiveness. Real-world examples of traditional EDR failures include a misconfigured update to CrowdStrike’s Falcon EDR causing an IT outage, the Akira ransomware exploiting an unsecured webcam, the Medibank breach despite multiple alerts from EDR, and the BlackCat ransomware attack on Henry Schein. These incidents highlight the inadequacy of traditional EDR in preventing modern threats. The next phase of endpoint security is Preemptive Endpoint Protection (PEP), which actively prevents attacks rather than just detecting and responding to them. PEP utilizes proactive strategies like Automated Moving Target Defense (AMTD) and Adaptive Exposure Management (AEM), and research indicates that organizations using proactive security save 30% more on breach costs compared to those relying solely on reactive measures.