security issues Archives

AppWizard

February 28, 2026

Centre’s SIM binding directive on app-based messaging platforms ‘unconstitutional’: Tech industry body BIF

The Broadband India Forum (BIF) has expressed legal concerns about the government's SIM binding mandate, stating it is "ultra vires the parent legislation" and "unconstitutional," based on a senior counsel's opinion. This opinion critiques the Telecommunications (Telecom Cyber Security) Amendment Rules, 2025, claiming they exceed the authority of the Telecommunications Act of 2023. The government's directive requires app-based communication services to maintain a link to a user's active SIM card, which BIF argues violates principles of due process and proportionality. BIF also highlights that the introduction of Telecommunication Identifier User Entities (TIUEs) alters the scope of telecom regulation improperly, potentially leading to legal conflicts with existing laws like the Information Technology Act. BIF concludes that the amendment rules represent an impermissible expansion of delegated authority under the Telecom Act, advocating for adherence to the statutory framework. The government's directive, aimed at addressing cyber security concerns, would change how users access messaging services in India.

AppWizard

February 24, 2026

Android mental health apps with 14.7M installs filled with security flaws

Recent analysis by Oversecured identified 1,575 security vulnerabilities across ten mental health mobile applications, which include 54 high-severity, 538 medium-severity, and 983 low-severity issues. These apps, with over 14.7 million downloads, assist users with conditions like clinical depression and anxiety. Vulnerabilities include improper handling of user-supplied URIs, weak local data storage practices, and cryptographically weak session token generation. Six of the ten apps had no high-severity vulnerabilities, but medium-severity issues still pose risks to user privacy. The scans were conducted between January 22 and 23, 2026, and only four apps had received recent updates.

Winsage

February 20, 2026

Will Microsoft ever stop messing with Notepad? Windows 11 app could soon get another feature — and I’m predicting a backlash

Notepad in Windows 11 is expected to gain a significant enhancement that allows users to embed images, according to reports from Windows Latest. This feature aims to expand Notepad's functionality, making it more similar to Microsoft Word. Notepad has already introduced markdown support, enabling various formatting options. However, longtime users express concerns that adding features may compromise the app's simplicity and performance. Microsoft claims that users can disable certain features and that the new image support will not significantly affect performance. There are also security concerns related to vulnerabilities in the markdown formatting system. This change follows Microsoft's decision to remove WordPad from Windows 11, prompting questions about Notepad's evolving role in the Windows ecosystem.

Winsage

February 16, 2026

Multiple Flaws Found in Microsoft Windows & Office — Could Let Hackers In

Microsoft has identified at least six zero-day vulnerabilities in Windows and Microsoft Office that were actively being exploited by hackers before patches were released. These vulnerabilities allow attackers to compromise systems with minimal user interaction, such as clicking on malicious links or opening compromised Office documents. Notable examples include a Windows Shell Security Bypass (CVE-2026-21510) and an Office File Exploit that can execute malicious code. The vulnerabilities pose serious risks, including active exploitation, remote code execution, and the potential for malware installation and credential theft. Microsoft has released security patches to address these vulnerabilities, and users are urged to install them immediately. The affected systems include all supported versions of Windows and Microsoft Office applications. Users are advised to install updates, be cautious with emails and links, enable security tools, and keep software up to date.

Winsage

January 18, 2026

Windows 11 KB5074109 issues: black screen, freezes Outlook POP, breaks Azure Virtual Desktop, LocalizedResourceName (desktop.ini)

Windows 11 KB5074109 has caused several issues for users, particularly those with Nvidia GPUs, including black screens, Outlook freezing with POP accounts, and problems with File Explorer's desktop.ini settings. Users have reported random black screens and desktop freezes after installing the update, with some finding temporary relief by changing their monitor's DisplayPort mode. Outlook Classic has been problematic, remaining active in the background and freezing shortly after opening, prompting users to terminate the process in Task Manager or uninstall the update. Additionally, the update disrupts Azure Virtual Desktop functionality, leading to sign-in failures and connection issues. Microsoft has acknowledged these problems and is investigating solutions, including a Known Issue Rollback for AVD. The update also breaks the LocalizedResourceName directive in File Explorer, preventing folder name customization. Users can uninstall the update through Settings, but this may expose them to security vulnerabilities.

Winsage

January 17, 2026

Microsoft Confirms First Free Windows Update For 2026

Windows 10 will reach its end of life on October 13, 2026. Microsoft is encouraging users to enroll in the Extended Security Updates (ESU) program before this date to avoid increased vulnerability to viruses and malware. Windows 10's market share has increased from 42% to 46%, while Windows 11 remains below 50%. The first Windows 10 ESU update for 2026, KB5073724, has been released, addressing 112 security issues, including 57 Elevation of Privilege vulnerabilities, 22 Information Disclosure vulnerabilities, and 5 Spoofing vulnerabilities. The January 2026 update will introduce new Secure Boot certificates to mitigate security risks. Payment options for the ESU include cash, Reward points, or a complimentary option for Microsoft account holders syncing settings via OneDrive.

Winsage

January 14, 2026

Microsoft Fixes 114 Windows Flaws in January 2026 Patch, One Actively Exploited

On Tuesday, Microsoft released its first security update for 2026, addressing 114 vulnerabilities, including eight classified as Critical and 106 as Important. The vulnerabilities include 58 related to privilege escalation, 22 concerning information disclosure, 21 linked to remote code execution, and five categorized as spoofing flaws. A notable vulnerability, CVE-2026-20805, involves information disclosure within the Desktop Window Manager (DWM) and has a CVSS score of 5.5. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added this flaw to its Known Exploited Vulnerabilities catalog, requiring federal agencies to implement fixes by February 3, 2026. Additionally, Microsoft announced the expiration of three Windows Secure Boot certificates issued in 2011, effective June 2026, urging customers to transition to newer certificates to avoid disruptions. The update also removed vulnerable Agere Soft Modem drivers due to a local privilege escalation flaw (CVE-2023-31096) and addressed another critical privilege escalation flaw in Windows Virtualization-Based Security (CVE-2026-20876) with a CVSS score of 6.7. Other vendors, including Adobe, Amazon Web Services, and Cisco, have also released security patches for various vulnerabilities.

Winsage

January 12, 2026

VLC gets native support for Snapdragon-powered PCs — but its devs haven’t forgotten your ancient Windows XP rig

The latest update to VLC, versions 3.0.22 and 3.0.23, introduces native support for Arm processors, specifically for Windows ARM64, requiring a minimum of Windows 10 RS5 17763 / 1809. This update improves playback across various formats, enhances subtitle rendering, includes codec updates, introduces a Dark Mode user interface, allows users to manage playing files, and addresses multiple security issues. The Snapdragon X2 Plus chip outperforms Intel's Core Ultra 7 265U and 256V processors, delivering up to 3.5 times the CPU performance of the former and a 52% increase in multi-core performance compared to the latter. Microsoft reported that 90% of usage time on Arm-based PCs is dedicated to natively compiled applications.

AppWizard

January 1, 2026

Vietnam’s dominant messaging app faces regulatory scrutiny over data policy update

Vietnam’s National Competition Commission (NCC) has ordered VNG Corporation to revise its updated service terms for the Zalo messaging app due to user privacy concerns. The NCC emphasized that users should not be forced to consent to personal data collection as a condition for using the app and that consent mechanisms need to be voluntary and clear. The updated terms require users to accept all data management provisions or face account deletion within 45 days, which has led to significant user complaints and a decline in app ratings. Zalo's average rating on Apple’s App Store has fallen to around two out of five stars, and it has slipped to 59th place in download rankings, while international apps like WhatsApp and Viber have become more popular. Zalo has around 78 million active users and operates over 17,000 official accounts used by government and businesses. The NCC intends to meet with VNG to discuss the updated policy, as part of a wider regulatory trend against coercive data practices in digital firms globally.

BetaBeacon

December 10, 2025

How to Get Games on Your Retro Gaming Handheld

Emulation is a popular use for retro gaming handhelds, allowing them to mimic older devices like the Game Boy, Super Nintendo, and PlayStation 1 to play games originally released for those platforms. Emulators can recreate all the processes of old consoles using modern hardware. Emulation can lead to minor inaccuracies in sound or graphics, but also allows for games to be upscaled to higher resolutions and supports save states. Emulation is legal as long as copyrighted software is not distributed to run on emulators. Retro gaming handhelds can also play Android games and stream games from the cloud. There are ways to play PC games on retro gaming handhelds using Linux or Android, either through fan-made ports or compatibility layers. Some concerns exist with using certain apps to play Steam games on Android, but the future may hold an official way to play Steam games on these devices.