sanctions Archives

Winsage

May 19, 2025

Huawei’s new foldable laptop might be the thinnest yet

Huawei has launched the MateBook Fold, a thin folding laptop measuring 7.3mm when unfolded and 14.9mm when closed. It is currently available in China for approximately ,300. The device features an 18-inch OLED display that folds at a 90-degree angle, creating a 13-inch upper screen with a digital keyboard. It weighs 1.16kg and offers a 3.3K resolution (3296 x 2472) with peak brightness of 1600 nits. The MateBook Fold includes up to 32GB of RAM and 2TB of storage. It also introduces Huawei's HarmonyOS 5 to the PC market, following the company's loss of access to Microsoft Windows due to U.S. sanctions.

Winsage

May 9, 2025

Huawei’s Kirin X90 may be the company’s ‘Apple Silicon’ moment — Matebook Pro 2025 features in-house hardware and software

Huawei introduced its Matebook Pro 2025 laptops, powered by the Kirin X90 system-on-chip (SoC) developed by its HiSilicon subsidiary. The Kirin X90 features a 10-core layout (4+4+2) with 20 threads and is expected to utilize a combination of Taishan V121 architecture for prime cores, Taishan V120 for performance cores, and a standard Cortex design for efficiency cores. The Matebook Pro operates on HarmonyOS, a new operating system independent of Linux and Android, allowing Huawei to reduce reliance on Microsoft. The Kirin X90 is anticipated to be manufactured using SMIC's 7nm process node, which may limit its performance. The success of HarmonyOS will depend on developers transitioning existing applications to the platform. The Matebook Pro is set to be released on May 19.

Winsage

May 9, 2025

Huawei to unveil PC with HarmonyOS now that Windows is out of reach

Huawei Technologies will unveil its first personal computer on May 19, powered by its in-house operating system, HarmonyOS, due to the inability to renew its contract with Microsoft for Windows because of U.S. sanctions. The project has been in development for five years with the efforts of over 10,000 engineers, expanding the HarmonyOS ecosystem beyond smartphones and tablets into personal computing.

AppWizard

April 26, 2025

Oblivion Remastered hit 4 million players in less than a week, with a big chunk of them buying the game on Steam

Bethesda has announced that over four million players have engaged with the remaster of The Elder Scrolls 4: Oblivion. The remaster has achieved nearly 200,000 concurrent players on Steam, ranking it at the top of Steam's best-sellers list and second on the SteamDB best-selling tracker. The Palestinian Boycott, Divestment, and Sanctions (BDS) National Committee has called for a boycott of Xbox products due to Microsoft's provision of cloud and AI services to the Israeli military.

TrendTechie

April 18, 2025

Прекратил работу главный торрент-трекер России. Причины неизвестны. Опрос

As of 11:00 PM on April 15, 2025, Rutracker has resumed operations after a significant outage that began around 5:00 PM Moscow time the same day. Users from major Russian cities reported difficulties accessing the site, which has been permanently blocked in Russia since 2016. During the outage, users encountered a "Web Server Down" message due to a 521 error from Cloudflare, indicating a connection termination. The access issues appeared to affect only Russian users, as individuals in Italy and Kazakhstan could still access Rutracker. This incident marks the third occurrence in six months raising concerns about the future of popular web resources among Russians. Rutracker had previously announced its own anti-Russian sanctions in March 2022 but continued to be accessible to Russian users until this outage. In January 2023, Rutracker experienced another outage lasting nearly a full day. The recent issues have been attributed to hosting problems, although some users reported no access issues during that time.

Winsage

March 26, 2025

Update VMware Tools for Windows NOW: High-Severity Flaw Lets Hackers Bypass Authentication

Broadcom has advised users of VMware Tools for Windows to update to the latest version due to a high-severity vulnerability (CVE-2025-22230) that is being exploited by cybercriminals. This vulnerability affects versions 11.x.x and 12.x.x and is classified as an "authentication bypass vulnerability," allowing a malicious actor with non-administrative privileges on a Windows guest to perform high-privilege operations within that VM. The flaw stems from inadequate access control mechanisms. The vulnerability has a CVSS score of 7.8 and does not require user interaction for exploitation. It was discovered by Sergey Bliznyuk of Positive Technologies. Broadcom has patched the vulnerability in version 12.5.1, and users are urged to update immediately, as no workarounds are available.

Winsage

March 18, 2025

Huawei about to lose Windows licence

Huawei's relationship with the United States has deteriorated as Microsoft's supply license is set to expire, putting Huawei's Windows-based PCs at risk. Without an extension, Huawei may have to abandon Windows and switch to Linux or its HarmonyOS. The company plans to launch an "AI PC" powered by its Kunpeng CPU and HarmonyOS in April, targeting the Chinese market. Additionally, Huawei will introduce the MateBook D16 Linux Edition, but Linux holds only a 3.8 percent share of the consumer market compared to Windows' 70.65 percent. The success of Huawei's laptops outside China may depend on the acceptance of HarmonyOS and alternative operating systems amidst US sanctions.

Tech Optimizer

February 20, 2025

PostgreSQL flaw exploited as zero-day in BeyondTrust breach

Rapid7's vulnerability research team reported that a security flaw in PostgreSQL was exploited as a zero-day vulnerability to infiltrate BeyondTrust's network in December, involving two zero-day vulnerabilities, CVE-2024-12356 and CVE-2024-12686, along with a stolen API key, leading to unauthorized access to 17 Remote Support SaaS instances. In early January, the U.S. Treasury Department disclosed a compromise of its network, with attackers using the stolen API key to access its BeyondTrust instance, linked to the Silk Typhoon cyber-espionage group. The attackers targeted critical offices within the Treasury, including CFIUS and OFAC, and accessed the Office of Financial Research systems. CISA added CVE-2024-12356 to its Known Exploited Vulnerabilities catalog on December 19, mandating federal agencies to secure their networks. On January 27, Rapid7 uncovered another zero-day vulnerability in PostgreSQL, CVE-2025-1094, which allows SQL injection attacks due to mishandling of invalid UTF-8 characters. Rapid7 found that exploiting CVE-2024-12356 for remote code execution requires CVE-2025-1094, and while BeyondTrust classified CVE-2024-12356 as command injection, Rapid7 suggests it is an argument injection vulnerability. They identified a method to exploit CVE-2025-1094 for remote code execution in BeyondTrust systems independently of CVE-2024-12356, noting that BeyondTrust's patch for CVE-2024-12356 does not resolve the root cause of CVE-2025-1094 but prevents exploitation of both vulnerabilities.

TrendTechie

December 23, 2024

Дмитрий Стешин: Дополню уважаемого слесаря – именно Крым, должен был стать оплотом компьютерного пиратства, базой для всех торрент-трекеров

Crimea has been discussed as a potential hub for computer piracy, particularly after the imposition of sanctions in 2022, which created opportunities for a resurgence in digital piracy. Experts suggest that lifting sanctions might lead to a decline in piracy as the region could shift towards legitimate digital content distribution. In 2018, Yatsenko, the Minister of Information for the Donetsk People's Republic, proposed creating a digital ecosystem to rival Western offerings, though implementation faced challenges. The ongoing conflict and prioritization of traditional industries over the tech sector may hinder progress in fostering a digital piracy landscape. Historical examples, such as lobbying by Latvian fishing interests in Moscow, raise questions about the potential for IT sector lobbying in Crimea. There is speculation about the possibility of a virtual pirate republic or a unique Russian iteration reflecting local culture and identity.

Winsage

December 14, 2024

Microsoft’s AI Recall Tool Is Still Sucking Up Credit Card and Social Security Numbers

Luigi Mangione, 26, was charged with the murder of UnitedHealthcare CEO Brian Thompson and was apprehended in Altoona, Pennsylvania, after evading authorities. He was found with counterfeit identification and a 3D-printed firearm. The U.S. government indicted 14 North Korean nationals for fraudulent IT operations aimed at funding the country's nuclear ambitions, generating an estimated million while stealing sensitive information. Microsoft’s AI Recall Tool faced privacy concerns after capturing sensitive data, prompting the company to postpone its launch and enhance security measures. Cleo file-sharing software warned customers about a vulnerability exploited by cybercriminals using malware named Malichus. The U.S. government imposed sanctions on Chinese hackers accused of hijacking thousands of firewalls, targeting critical infrastructure, and offered a million bounty for information leading to their apprehension.