risk Archives

Winsage

May 6, 2026

Why are 25%+ gamers still using Windows 10 despite its EOL status?

A significant portion of gamers, over 25%, continues to use Windows 10 despite its end-of-life status declared on October 14, 2025. Reasons for this preference include: 1. Windows 10 has reached peak stability after years of updates, providing reliable performance. 2. It is compatible with older PCs, allowing gamers to use existing hardware without costly upgrades. 3. Windows 10 has fewer AI features, offering a streamlined experience preferred by many gamers. 4. Basic applications launch more swiftly in Windows 10 compared to Windows 11, enhancing performance. 5. Windows 10 has fewer ads and bloatware, resulting in a cleaner user interface. 6. Users can create a local account during setup in Windows 10, unlike the mandatory Microsoft account requirement in Windows 11. However, Windows 10 is no longer receiving security updates, which poses a risk as vulnerabilities may arise without patches.

AppWizard

May 6, 2026

Google expands Android Binary Transparency to counter supply chain attacks

Supply chain attacks targeting mobile software have increased due to the reliance on smartphones for essential functions. In response, Google has launched an enhanced Binary Transparency program for Android, which includes a public ledger that records cryptographic entries for production applications. This program initially covers two software layers: Google Applications and Mainline Modules. For Pixel device owners, it complements the Pixel System Image Transparency feature introduced in 2023, allowing users to verify the authenticity of system images and Google applications. The program aims to address the gap in software trust by distinguishing between digital signatures, which confirm the identity of the binary's creator, and binary transparency, which indicates the intent for public release. If a Google-signed application released after May 1, 2026, is not listed in the ledger, it means Google did not authorize it as production software. Verification tools are available on GitHub for assessing software against the ledger. Google employs "defense-in-depth" protocols to mitigate insider risks, ensuring that no single individual can publish a binary without triggering cryptographic verification. The ledger acts as a public record to deter unauthorized modifications. Google is also working to extend Binary Transparency to third-party developers to enhance the security of the global software supply chain.

Winsage

May 6, 2026

Microsoft enables Hotpatching by default: Windows updates without restarts become a reality

Beginning in May 2026, Microsoft will introduce Hotpatching as a default feature for compatible systems, allowing security updates to be applied without requiring a restart. Hotpatching updates code directly in the memory of running processes, enabling selective updates without interrupting the entire system. It does not replace monthly security updates but alters their activation process on eligible systems, categorized as security updates within the monthly B releases. Eligible systems must be running Windows 11 version 24H2 or newer and possess suitable licenses such as Enterprise, Education, Microsoft 365, or Windows 365. Management of these updates will be facilitated through Windows Autopatch or Microsoft Intune. Microsoft will continue to utilize baseline updates that require a restart, which will alternate with Hotpatch months. Hotpatching aims to reduce the frequency of restarts tied to security updates, particularly benefiting environments where uptime is critical. However, planned restarts will still be necessary, and robust telemetry and maintenance practices will be needed to ensure smooth operation.

AppWizard

May 5, 2026

Valorant’s latest patch brings heartbreaking Sage lore update, and the rework rumors are looking more likely

Sage from Valorant is experiencing side effects from her powers that are turning her into crystal. In Patch 12.08, a voicemail to Brimstone reveals her frustration with being told to take a break during a crisis. There are rumors of a potential rework for Sage, especially following Deadlock's comments about her losing her revive ability. Sage's struggles have been highlighted in various updates, including a music video where she loses control of her abilities and a recent update showing crystallization spreading to her neck and face. Despite her challenges, she remains a popular choice among players, with a 28.47% pick rate overall, though this decreases at higher competitive levels.

BetaBeacon

May 5, 2026

ScarCruft Hacks Gaming Platform to Deploy BirdCall Malware on Android and Windows

ScarCruft compromised a video game platform in a supply chain attack, trojanizing its components with a backdoor called BirdCall to target ethnic Koreans residing in China. The attack enabled the threat actors to target both Windows and Android devices, turning it into a multi-platform threat. The campaign targeted sqgame[.]net, a gaming platform used by ethnic Koreans in China, known as a transit point for North Korean defectors. BirdCall has features like screenshot capture, keystroke logging, and data gathering, and relies on legitimate cloud services for command-and-control. The Android variant collects various data and has seen active development.

AppWizard

May 5, 2026

Meta enhances security of WhatsApp and Messenger encrypted backups

Meta has enhanced the security and transparency of its end-to-end encrypted backup system for WhatsApp and Messenger. The improvements focus on refining the distribution and verification of encryption keys, and allow for independent audits of certain infrastructure components. The updates are based on Meta's Hardware Security Module (HSM)-based Backup Key Vault architecture, which securely stores recovery secrets in tamper-resistant hardware, ensuring that neither Meta nor cloud service providers can access users' message archives. For encrypted backups, users' devices generate a 256-bit encryption key locally, which encrypts all backup data before uploading it to cloud storage. The key remains on the device in an encrypted format, with the user's password not visible to Meta or third parties. An encrypted version of the backup key is stored in the HSM-based vault using the OPAQUE password-authenticated key exchange protocol, enhancing recovery security without revealing the password. The recent updates include an over-the-air (OTA) fleet key distribution mechanism, which avoids hardcoding trusted infrastructure keys into Messenger applications. Clients receive a “validation bundle” containing the HSM fleet's public keys during runtime, with signatures verified against Cloudflare’s Key Transparency system. The vault operates across at least seven data centers using majority-consensus replication to ensure availability and integrity. Meta plans to publish cryptographic proof of each new HSM fleet deployment, allowing advanced users and researchers to verify these deployments through the open-source “mbt” (Meta Binary Transparency) CLI tool, which conducts multiple checks to confirm that fleet keys are untampered.

AppWizard

May 5, 2026

Best Steam Deck games under $10 in Green Man Gaming’s new Publisher Spotlight sale

Green Man Gaming is currently hosting a Publisher Spotlight sale featuring various games at reduced prices, particularly for Steam Deck users. The sale includes titles priced under a specific amount, such as Risk of Rain 2 and Marvel’s Midnight Suns. Each game purchased comes with a Steam key for easy redemption. The sale ends on May 29, and it categorizes games as either Verified, which run smoothly on the Steam Deck, or Playable, which may need minor adjustments.

Winsage

May 4, 2026

Microsoft Confirms Critical Windows Update Error Disrupting Global Systems

Microsoft has confirmed a critical bug in its latest cumulative update, affecting millions of Windows 10 and Windows 11 users. The issue leads to a "Restart and Shut Down" loop, preventing users from completing the update and locking them out of their devices. This disruption is particularly severe for corporate IT departments, with reports of entire office networks being paralyzed. The problematic update, identified as KB5037853, was meant to address security vulnerabilities but has caused systems to display an endless "Update and Restart" message. Some users experience a "Blue Screen of Death" (BSOD) and may be forced into "Recovery Mode." Microsoft is working on a "Known Issue Rollback" (KIR) to automatically undo the problematic code for consumer machines, while enterprise users may require manual intervention. The downtime is projected to result in significant financial losses, with large enterprises potentially losing up to ,600 per minute of unplanned downtime. Affected versions include Windows 11 22H2, 23H2, and Windows 10 22H2. Symptoms include failure to shut down, BSOD on boot, and missing Start menu icons. The estimated downtime ranges from 4 to 12 hours, depending on IT response speed. Critics have raised concerns about Microsoft's development process, suggesting it places users in the role of beta testers.

Winsage

May 3, 2026

After testing LAP Photo Manager on Windows 11, I’m convinced it outperforms the built‑in Photos app in all the ways that matter

Lap is a free and open-source photo management application for Windows 11 (and 10), macOS, and Linux, designed for local photo libraries. It offers a modern interface, built-in editing tools, and supports various image and video formats, including RAW and HEIC. Lap allows users to manage extensive photo collections efficiently, with features like duplicate file detection and local AI capabilities such as natural language search and facial recognition. The app is available for download from its GitHub releases page and may trigger a SmartScreen warning during installation. It operates without requiring account setup or cloud configuration.

Winsage

May 3, 2026

You shouldn’t delay your Windows 11 updates, experts reveal

Experts advise against postponing Windows updates, as Microsoft has introduced features allowing users to control when updates occur. Users can pause updates for up to 35 days indefinitely, but delaying updates can lead to security vulnerabilities. Microsoft releases several types of updates: security updates, feature updates, quality updates, driver updates, optional updates, out-of-band updates, and zero-day updates. Zero-day updates are critical and should be installed immediately to avoid exploitation. Recent reports indicate that critical OS patching for Windows 10 and 11 is lagging by an average of 256 days, increasing the risk of cyber incidents.