security measure Archives

Winsage

June 13, 2026

Windows 11 KB5094126: Microsoft’s desktop.ini hardening causes some folder icons to disappear

Following the June 2026 update, custom folder icons and localized folder names in Windows are no longer displaying as they typically would due to intentional modifications related to security updates, specifically KB5094126 for Windows 11 versions 24H2 and 25H2. This update tightens the handling of the desktop.ini file, which is used for folder customization. Although access to the actual files remains unchanged, affected folders may revert to default icons or display original directory names instead of customized labels. Microsoft has identified certain sources as untrusted, including files downloaded from the internet and specific remote sources, which affects how desktop.ini files are processed. Users are encouraged to verify file origins, and administrators should ensure that internal sources are classified as trusted to avoid disruptions in folder presentation. The update also includes other security fixes and enhancements.

AppWizard

June 8, 2026

NFCShare Android malware spreads via fake banking app updates on GitHub

New variants of the NFCShare Android malware are disguised as fake updates for legitimate banking applications and are targeting customers of various banks in Europe through a phishing campaign to steal sensitive payment card data. The malware prompts victims to place their cards near the NFC chip of their mobile devices, using Android’s IsoDep interface to read card information, including card number, type, expiry date, and a 4-digit PIN. The stolen data is exfiltrated to the attacker’s command-and-control host via a WebSocket channel. Recent attacks began on May 14, with victims directed to a phishing site that impersonates a legitimate bank and then to a GitHub repository hosting a malicious APK file. The repository has hosted 56 unique APKs impersonating banking applications primarily from Italy and Spain. The malware has evolved from initially targeting Deutsche Bank in Germany to a broader range of banks. The latest version features malformed APK packaging to complicate automated analysis. Users are advised to download banking applications only from Google Play and to be cautious of verification requests that ask for NFC card scans.

Winsage

June 2, 2026

Microsoft says Windows 11’s Defender is enough for most users but admits some third‑party tools still offer extras

Microsoft's Learning Centre stated that for many Windows 11 users, Microsoft Defender Antivirus offers adequate protection against everyday threats without needing additional software. This claim was supported by user feedback on social media. However, the article was later removed, and a more balanced message was introduced, acknowledging that while Defender is a strong foundational security measure, third-party tools can provide additional features. Microsoft emphasized that Defender is usually sufficient when Windows 11 has default protections enabled, updates are regularly installed, and software downloads are deliberate.

AppWizard

May 22, 2026

Riot Games Says It ‘Would Not and Cannot’ Use Vanguard Anti-Cheat to Brick PCs After Rumors Spread

Riot Games has clarified that its Vanguard anti-cheat system does not have the capability to damage players' PCs or disable their devices. The company stated that the "paperweights" referenced in a social media post were cheat devices that had been rendered ineffective by updates to the Vanguard system, which enforces security features on accounts using Direct Memory Access (DMA) cheating devices. While cheaters may experience hardware faults when using these cheats, this is a consequence of their actions, and only those using DMA-based cheats would encounter issues. Riot Games reassured players that their PCs would not be "bricked" due to Vanguard's operations.

Winsage

May 7, 2026

My Windows 11 backup broke after KB5083769 — Microsoft says this simple fix might save your files

The Windows 11 security update KB5083769, released on April 14, 2026, introduces changes to the psmounterex.sys driver, causing compatibility issues with third-party backup solutions such as Macrium Reflect, Acronis Cyber Protect Cloud, UrBackup Server, and NinjaOne Backup. Microsoft states this is a necessary security adjustment, not a bug. The update also adds known vulnerable kernel drivers to a blocklist to enhance system security. Users can check if a driver is blocked by using the Event Viewer and looking for Event ID 3077 associated with a specific Policy ID.

Winsage

April 16, 2026

“The fastest path towards reinstatement”: Microsoft responds to developer backlash after account termination — but identity verification remains non-negotiable

Microsoft terminated developer accounts associated with security tools like VeraCrypt, WireGuard, and Windscribe, reportedly without notice, which led to criticism regarding its enforcement protocols. The company clarified that the suspensions were due to non-compliance with the account verification process for the Windows Hardware Program, which is to be fully implemented by October 2025. Microsoft plans to expedite the reinstatement of affected accounts for partners who resolve their compliance issues, requiring them to submit a support case with a business justification. The verification process was introduced to enhance security by controlling access to kernel-level driver signing and distribution.

Tech Optimizer

March 16, 2026

How to Avoid Getting Scammed Online in 2026

The Qantas data breach highlights vulnerabilities in online information security. Regularly changing passwords every few months is recommended, and tools like Bitdefender’s Password Manager can help manage complex passwords. Users should be cautious of suspicious links and attachments, as hackers often use phishing tactics. Implementing two-factor authentication (2FA) adds an extra layer of security to accounts. Keeping devices updated is crucial for protecting against vulnerabilities. Investing in reliable antivirus software, such as Bitdefender Antivirus Plus or Bitdefender Ultimate Security, is essential for safeguarding personal data. Staying informed about cybersecurity measures is important to prevent data breaches.

AppWizard

March 13, 2026

Android 17 Beta 2 starts clamping down on apps that misuse accessibility services

Google has enhanced its Advanced Protection Mode with the rollout of Android 17 Beta 2, introducing stricter security measures that restrict non-accessibility applications from accessing the AccessibilityService API. This update prevents non-accessibility apps from obtaining accessibility permissions, revoking them from apps that already have them while the mode is active. Users cannot grant these permissions when Advanced Protection Mode is enabled. For example, the dynamicSpot app cannot receive necessary accessibility permissions under this mode. In contrast, the stable Android 16 QPR3 build allows dynamicSpot to function with Advanced Protection Mode activated. Applications that identify as accessibility tools, like screen readers, remain unaffected by this restriction. This change may cause compatibility issues for users who enable Advanced Protection Mode, offering a choice between enhanced security and access to certain applications.

AppWizard

March 11, 2026

No banking apps on your custom ROM? This new initiative could help.

UnifiedAttestation is a new initiative from Europe aimed at creating a free and open-source alternative to Google’s Play Integrity checks, which are essential for banking, financial, and government applications. Many of these applications currently rely on the Play Integrity API, which does not support custom ROMs or alternative Android forks, limiting access for users of these systems. The initiative is backed by smartphone manufacturer Volla and partners like Murena and iodé OS. UnifiedAttestation will be distributed under an Apache 2.0 license, allowing developers to adapt it, with Volla stating that integration requires only a few lines of code. However, the Graphene OS team has expressed concerns about the ethical implications of smartphone manufacturers determining which operating systems can use their applications, advocating for the regulation of the Play Integrity API instead.

AppWizard

February 26, 2026

How Your Android Apps Keep Talking — Even When You’re Not Using Them

When connecting to public Wi-Fi, using a VPN is essential as it encrypts traffic and creates a secure tunnel between the device and a remote server, keeping activities concealed from the local network. Android devices continuously communicate in the background, performing tasks such as updating emails and syncing notes, which increases data visibility on public networks. Public Wi-Fi has become common due to remote work and shared spaces, leading to increased privacy risks as smartphones now store sensitive information like banking apps and personal photos. Users are encouraged to adopt simple security habits, including using a VPN when connecting to public networks. Android devices are always connected, making network-level protection important to safeguard background communications.