sanctions Archives

AppWizard

April 26, 2025

Oblivion Remastered hit 4 million players in less than a week, with a big chunk of them buying the game on Steam

Bethesda has announced that over four million players have engaged with the remaster of The Elder Scrolls 4: Oblivion. The remaster has achieved nearly 200,000 concurrent players on Steam, ranking it at the top of Steam's best-sellers list and second on the SteamDB best-selling tracker. The Palestinian Boycott, Divestment, and Sanctions (BDS) National Committee has called for a boycott of Xbox products due to Microsoft's provision of cloud and AI services to the Israeli military.

TrendTechie

April 18, 2025

Прекратил работу главный торрент-трекер России. Причины неизвестны. Опрос

As of 11:00 PM on April 15, 2025, Rutracker has resumed operations after a significant outage that began around 5:00 PM Moscow time the same day. Users from major Russian cities reported difficulties accessing the site, which has been permanently blocked in Russia since 2016. During the outage, users encountered a "Web Server Down" message due to a 521 error from Cloudflare, indicating a connection termination. The access issues appeared to affect only Russian users, as individuals in Italy and Kazakhstan could still access Rutracker. This incident marks the third occurrence in six months raising concerns about the future of popular web resources among Russians. Rutracker had previously announced its own anti-Russian sanctions in March 2022 but continued to be accessible to Russian users until this outage. In January 2023, Rutracker experienced another outage lasting nearly a full day. The recent issues have been attributed to hosting problems, although some users reported no access issues during that time.

Winsage

March 26, 2025

Update VMware Tools for Windows NOW: High-Severity Flaw Lets Hackers Bypass Authentication

Broadcom has advised users of VMware Tools for Windows to update to the latest version due to a high-severity vulnerability (CVE-2025-22230) that is being exploited by cybercriminals. This vulnerability affects versions 11.x.x and 12.x.x and is classified as an "authentication bypass vulnerability," allowing a malicious actor with non-administrative privileges on a Windows guest to perform high-privilege operations within that VM. The flaw stems from inadequate access control mechanisms. The vulnerability has a CVSS score of 7.8 and does not require user interaction for exploitation. It was discovered by Sergey Bliznyuk of Positive Technologies. Broadcom has patched the vulnerability in version 12.5.1, and users are urged to update immediately, as no workarounds are available.

Winsage

March 18, 2025

Huawei about to lose Windows licence

Huawei's relationship with the United States has deteriorated as Microsoft's supply license is set to expire, putting Huawei's Windows-based PCs at risk. Without an extension, Huawei may have to abandon Windows and switch to Linux or its HarmonyOS. The company plans to launch an "AI PC" powered by its Kunpeng CPU and HarmonyOS in April, targeting the Chinese market. Additionally, Huawei will introduce the MateBook D16 Linux Edition, but Linux holds only a 3.8 percent share of the consumer market compared to Windows' 70.65 percent. The success of Huawei's laptops outside China may depend on the acceptance of HarmonyOS and alternative operating systems amidst US sanctions.

Tech Optimizer

February 20, 2025

PostgreSQL flaw exploited as zero-day in BeyondTrust breach

Rapid7's vulnerability research team reported that a security flaw in PostgreSQL was exploited as a zero-day vulnerability to infiltrate BeyondTrust's network in December, involving two zero-day vulnerabilities, CVE-2024-12356 and CVE-2024-12686, along with a stolen API key, leading to unauthorized access to 17 Remote Support SaaS instances. In early January, the U.S. Treasury Department disclosed a compromise of its network, with attackers using the stolen API key to access its BeyondTrust instance, linked to the Silk Typhoon cyber-espionage group. The attackers targeted critical offices within the Treasury, including CFIUS and OFAC, and accessed the Office of Financial Research systems. CISA added CVE-2024-12356 to its Known Exploited Vulnerabilities catalog on December 19, mandating federal agencies to secure their networks. On January 27, Rapid7 uncovered another zero-day vulnerability in PostgreSQL, CVE-2025-1094, which allows SQL injection attacks due to mishandling of invalid UTF-8 characters. Rapid7 found that exploiting CVE-2024-12356 for remote code execution requires CVE-2025-1094, and while BeyondTrust classified CVE-2024-12356 as command injection, Rapid7 suggests it is an argument injection vulnerability. They identified a method to exploit CVE-2025-1094 for remote code execution in BeyondTrust systems independently of CVE-2024-12356, noting that BeyondTrust's patch for CVE-2024-12356 does not resolve the root cause of CVE-2025-1094 but prevents exploitation of both vulnerabilities.

TrendTechie

December 23, 2024

Дмитрий Стешин: Дополню уважаемого слесаря – именно Крым, должен был стать оплотом компьютерного пиратства, базой для всех торрент-трекеров

Crimea has been discussed as a potential hub for computer piracy, particularly after the imposition of sanctions in 2022, which created opportunities for a resurgence in digital piracy. Experts suggest that lifting sanctions might lead to a decline in piracy as the region could shift towards legitimate digital content distribution. In 2018, Yatsenko, the Minister of Information for the Donetsk People's Republic, proposed creating a digital ecosystem to rival Western offerings, though implementation faced challenges. The ongoing conflict and prioritization of traditional industries over the tech sector may hinder progress in fostering a digital piracy landscape. Historical examples, such as lobbying by Latvian fishing interests in Moscow, raise questions about the potential for IT sector lobbying in Crimea. There is speculation about the possibility of a virtual pirate republic or a unique Russian iteration reflecting local culture and identity.

Winsage

December 14, 2024

Microsoft’s AI Recall Tool Is Still Sucking Up Credit Card and Social Security Numbers

Luigi Mangione, 26, was charged with the murder of UnitedHealthcare CEO Brian Thompson and was apprehended in Altoona, Pennsylvania, after evading authorities. He was found with counterfeit identification and a 3D-printed firearm. The U.S. government indicted 14 North Korean nationals for fraudulent IT operations aimed at funding the country's nuclear ambitions, generating an estimated million while stealing sensitive information. Microsoft’s AI Recall Tool faced privacy concerns after capturing sensitive data, prompting the company to postpone its launch and enhance security measures. Cleo file-sharing software warned customers about a vulnerability exploited by cybercriminals using malware named Malichus. The U.S. government imposed sanctions on Chinese hackers accused of hijacking thousands of firewalls, targeting critical infrastructure, and offered a million bounty for information leading to their apprehension.

AppWizard

November 26, 2024

Huawei’s Mate 70 smartphones will run its new Android-free OS

Huawei has launched the Mate 70 series, which includes the Mate 70, Mate 70 Pro, Mate 70 Pro Plus, and Mate 70 RS, featuring the new HarmonyOS Next that is not compatible with Android apps. The Mate 70 has a 6.7-inch display, 5,300mAh battery, 66W fast charging, and a camera setup with a 50MP main camera. It starts at 5,499 yuan for the 12GB RAM and 256GB storage variant. The Mate 70 Pro offers Wi-Fi 7 and enhanced satellite communication, starting at 6,499 yuan. The Mate 70 Pro Plus has upgraded camera sensors and starts at 8,499 yuan. The Mate 70 RS features premium materials and starts at 11,999 yuan. The specific processors used in the Mate 70 series have not been disclosed, but previous models used chips from China's SMIC. Additionally, Huawei introduced the Mate X6 foldable smartphone with a 7.93-inch internal display and a 6.45-inch external display. It features a 50MP main camera, 48MP telephoto periscope camera, and 40MP ultra-wide camera. The standard model has 12GB of RAM, 512GB of storage, and a 5,110mAh battery, priced at 12,999 yuan. A collector’s edition with 16GB of RAM and a 5,200mAh battery will be available for 14,999 yuan.

AppWizard

October 23, 2024

Huawei’s HarmonyOS NEXT launch marks a divorce from Android

Huawei unveiled HarmonyOS NEXT, marking a shift away from the Android ecosystem. Public beta testing has started for select smartphones and tablets using Kirin and Kunpeng chips. This version does not support Android applications, emphasizing Huawei's goal of creating a self-sufficient platform. Notable native apps for HarmonyOS NEXT include Meituan, Douyin, Taobao, Xiaohongshu, Alipay, and JD.com, with over 15,000 native applications and meta-services launched. HarmonyOS NEXT features 110 million lines of code, a 30% performance enhancement, and extends battery life by an average of 56 minutes while freeing up about 1.5GB of memory. Currently, Huawei has no plans to introduce HarmonyOS NEXT outside of China. The launch signifies a step towards technological independence, as previous versions relied on the Android Open Source Project due to US sanctions. Huawei aims to extend HarmonyOS to personal computers, planning to phase out Windows, though timelines and adoption by other PC manufacturers are uncertain.

AppWizard

October 22, 2024

Kakao’s new AI messaging app will speak in the voices of K-pop idols

Kakao has introduced an AI-integrated messenger app named Kanana at its annual developer conference in Yongin, Gyeonggi. Kanana enhances user experience by summarizing messages, managing schedules, and recommending entertainment based on chat history. The app features two AI characters: Nana for personal use, who can manage appointments and summarize texts, and Kana for group interactions, creating quizzes and summarizing past conversations. Users can set the AI's voice to that of K-pop artists. Kanana is currently in internal testing, with a beta release planned for Kakao employees later this year. Kakao aims to expand its AI product offerings under the Kanana brand, amidst challenges including regulatory issues and competition from Naver. A new AI division named Kanana has been formed, integrating AI R&D personnel from the former Kakao Brain.