reveals Archives

Winsage

August 11, 2025

Win-DoS Epidemic: New DoS and DDoS Attacks Start with Microsoft Windows

During DEF CON 33, Yair and Shahak Morag from SafeBreach Labs introduced a new category of denial-of-service (DoS) attacks called the “Win-DoS Epidemic.” They identified four significant Windows DoS vulnerabilities, all categorized as “uncontrolled resource consumption,” including: - CVE-2025-26673 (CVSS 7.5): High-severity DoS vulnerability in Windows LDAP. - CVE-2025-32724 (CVSS 7.5): High-severity DoS vulnerability in Windows LSASS. - CVE-2025-49716 (CVSS 7.5): High-severity DoS vulnerability in Windows Netlogon. - CVE-2025-49722 (CVSS 5.7): Medium-severity DoS vulnerability in the Windows print spooler, requiring an authenticated attacker on an adjacent network. These vulnerabilities can incapacitate Windows endpoints and servers, including domain controllers (DCs), which are essential for managing authentication and resources in enterprise networks. The researchers also revealed a new DDoS attack method, termed Win-DDoS, which exploits a flaw in the Windows LDAP client referral process, allowing attackers to redirect DCs to a victim server and continuously repeat this redirection, creating a large-scale DDoS botnet using public DCs without leaving forensic traces.

Winsage

August 10, 2025

Windows UAC Bypassed via Character Editor, Allowing Local Privilege Escalation

A cybersecurity researcher, Matan Bahar, has developed a method to bypass User Account Control (UAC) in Windows using the Private Character Editor (eudcedit.exe), which is located in C:WindowsSystem32. This utility, intended for creating user-defined characters, can be manipulated to grant attackers elevated privileges without user consent. The exploit takes advantage of the application manifest configuration of eudcedit.exe, which includes directives that allow the program to run with full administrative rights and enables an elevated PowerShell session. This method poses a significant security risk as it exploits a trusted Windows utility, highlighting vulnerabilities in Windows security architecture. Security professionals are advised to monitor unusual execution patterns related to eudcedit.exe and reconsider UAC configuration policies to mitigate such risks.

AppWizard

August 9, 2025

Leak reveals upcoming Epic Games Store free game ahead of official announcement

A user named MeguminShiro has initiated discussions in the r/EpicGamesPC community, focusing on Epic Games Store offerings. They frequently share analyses of new game releases, covering gameplay mechanics, visual aesthetics, and performance reviews. Their contributions have fostered engagement among members and positioned them as a respected voice in the community. MeguminShiro's insights reflect broader gaming trends and influence other members' decisions on which titles to explore. The r/EpicGamesPC subreddit serves as a welcoming space for gamers of all levels, promoting a collaborative spirit.

AppWizard

August 9, 2025

Messenger, Pinterest, Lyft, Duolingo, Google Maps, Expedia Become Most Invasive Apps of 2025, Here is a New Update

The 2025 App Privacy Index reveals that Messenger is the most invasive app with a privacy risk score of 100/100, followed by Pinterest (72/100), Lyft (69/100), and Amazon Shopping (68/100). DoorDash ranks 5th (66/100) with its consumer app and 9th (58/100) with its driver app. Duolingo, Google Maps, WhatsApp, and Expedia complete the top ten most invasive apps. Instagram has a privacy score of 57/100 and recently faced criticism over its new Maps feature, which raises concerns about real-time location tracking. Meta's data collection practices are widespread across its platforms, including Messenger, WhatsApp, and Facebook. Some apps, like TeaOnHer (0/100) and ParentSquare (4/100), prioritize user privacy, contrasting with the other invasive apps. Users are advised to review app permissions and consider privacy-friendly alternatives. The public backlash against Instagram's Maps feature indicates a growing demand for transparency regarding data collection practices. As data protection regulations tighten, there is potential for companies in the travel sector to adopt better privacy practices.

AppWizard

August 7, 2025

YouTube Android Bug Resets Playback Speed, Frustrating Users

A glitch in the YouTube app for Android prevents users from adjusting playback speeds, leaving them stuck at the default 1x speed. This issue has been reported by users globally and mirrors a similar problem from the previous year, indicating a recurring vulnerability in YouTube’s Android codebase. YouTube has acknowledged the issue and is investigating it, with speculation that it may be linked to recent Android OS updates or changes to internal APIs. The bug affects both stable version 20.28.39 and beta version 20.29.39, while YouTube Music's podcast controls remain unaffected. Users have shared workarounds, such as uninstalling app updates to revert to a functional version, although this may pose security risks. The incident raises concerns about Google’s quality assurance processes and the balance between innovation and reliability in app development.

AppWizard

August 7, 2025

Today’s Android app deals and freebies: Dragon Quest Builders, Kingdom Rush, SpongeBob, more

This afternoon, Google Play has launched a new selection of deals on Android games and applications, alongside significant discounts on Samsung products. Samsung's 2025 M8 Smart Monitor is discounted by 0, and the Galaxy Tab S10+ has reductions exceeding 0. Featured Android apps and games include Dragon Quest Builders, Kingdom Rush Vengeance, and SpongeBob – The Cosmic Shake.

BetaBeacon

August 7, 2025

Epic Games Store reveals new free mobile game for Android and iOS gamers to keep forever

Epic Games Store offers a curated selection of PC and Mac games, with a revenue sharing model that only takes a 12% cut of sales compared to the industry standard of 30%. The store has attracted indie developers and smaller studios, leading to a diverse library of games. Epic Games Store also releases exclusive games for a limited time, attracting players and generating both praise and criticism. Despite controversy, the store continues to grow in popularity with a user-friendly interface, regular sales, and a commitment to supporting developers.

AppWizard

August 6, 2025

I thought it was a cute and casual little mining sim right up until it devoured my entire morning

Players in Gemporium: A Cute Mining Sim take on the role of a mole who inherits a gem shop and a debt of one million dollars. The game features mining mechanics with tools like a television for tracking sought-after gemstones and a magnifying glass for finding gems at dig sites. Players can upgrade their abilities to double gem extraction and use haggling mechanics to negotiate better sales. The game includes a humorous element of owing a loan shark, who is literally a shark. A free demo is available, and the full game will launch on Steam on August 7.

Winsage

August 5, 2025

Still stuck on Windows 10? Microsoft reveals the reasons why you can’t upgrade to Windows 11, and how to fix them

Upgrading from Windows 10 to Windows 11 has been challenging for many users due to Microsoft's strict requirements, including the necessity of a TPM 2.0 chip and other high system specifications. Microsoft has introduced a pop-up notification and a support article to assist users with the upgrade process. Steps for upgrading include checking for updates in Settings, using laptop companion applications for BIOS updates, and searching for driver updates from manufacturers' websites. It is technically possible to install Windows 11 on systems that do not meet the official requirements, but users are advised to proceed with caution due to potential compatibility issues. Microsoft has acknowledged the lack of clear guidance regarding end-of-life notifications and is now providing support initiatives to help users transition to Windows 11.

Winsage

August 5, 2025

North Korean Cyberattackers Conceal Malicious Software Inside JPEG Images

North Korean state-sponsored hackers, part of the APT37 group, are using advanced steganography techniques to embed malicious software within JPEG image files. The RoKRAT malware variant employs a two-stage encryption process, starting with the creation of large malicious shortcut files disguised as legitimate documents. These .lnk files download JPEG images from cloud storage services, which appear to contain valid image headers but actually conceal encrypted malware code. The malware is revealed through multiple XOR decryption operations. Security researchers have identified the steganographic payload at offset 0x4201 within the images. The malware generates temporary files in the %LOCALAPPDATA% directory and executes through rundll32.exe, complicating detection. APT37 also uses fileless attack strategies, injecting shellcode into legitimate Windows processes and exploiting cloud services for command and control operations. Recent attacks have targeted South Korean organizations using social engineering tactics. Traditional antivirus solutions are inadequate against these techniques, prompting experts to recommend Endpoint Detection and Response (EDR) systems for real-time monitoring of anomalous activities.