security vulnerabilities Archives

Winsage

May 16, 2025

Microsoft Update Fails—New Download Breaks Windows

Users are experiencing BitLocker Recovery screens and Blue Screens of Death (BSOD) after installing the Windows 10 update KB5058379. This mandatory update addresses significant security vulnerabilities, but Microsoft claims to be unaware of any new issues. Some users have found that disabling Intel TXT can help complete the installation. Reports include a user experiencing consistent BSODs after the update and another who resolved boot issues by changing BIOS settings. The end of support for Windows 10 is approaching on October 14, but Microsoft 365 applications will still receive security updates afterward. Windows 11 users are not affected by these issues.

AppWizard

May 15, 2025

New malware infects Android devices — full list of apps to delete immediately

Cybersecurity experts have identified a new threat to Android users called Kaleidoscope malware, which has infiltrated various popular applications not available on the Google Play Store. This malware operates in the background, collecting personal information, displaying intrusive ads, and potentially allowing more harmful malware to enter. Users are advised to check their device settings for suspicious apps, uninstall them, restart their devices, and review app permissions, especially for those requesting access to sensitive features. Experts recommend downloading apps only from trusted sources, being cautious about permissions, and regularly updating systems to address security vulnerabilities. Google has identified 62 dangerous vulnerabilities in Android devices, with two being particularly threatening, and users are urged to update their devices promptly.

Winsage

May 14, 2025

Microsoft’s ‘Patch Tuesday’ Update Fixes Seven Zero-Day Exploits

Microsoft's latest Patch Tuesday update addresses 72 security vulnerabilities, including five critical zero-day vulnerabilities. Four of these zero-days are elevation of privilege flaws: - CVE-2025-32701 and CVE-2025-32706 target the Windows Common Log File System Driver. - CVE-2025-30400 affects the Microsoft DWM Core Library. - CVE-2025-32709 involves the Windows Ancillary Function Driver for WinSock. These vulnerabilities allow attackers to gain SYSTEM privileges locally. The fifth zero-day, CVE-2025-30397, is a remote code execution vulnerability in the Microsoft Scripting Engine, which can be exploited through malicious links in Microsoft Edge or Internet Explorer. CVE-2025-30397, CVE-2025-32701, and CVE-2025-30400 were discovered by the Microsoft Threat Intelligence Center, while CVE-2025-32706 was disclosed by the Google Threat Intelligence Group and CrowdStrike, and CVE-2025-32709 was reported by an anonymous researcher. Additionally, a publicly disclosed spoofing flaw in Microsoft Defender, CVE-2025-26685, allows unauthenticated attackers with local network access to impersonate another account. The final zero-day, CVE-2025-32702, is a remote code execution vulnerability in Visual Studio.

Winsage

May 12, 2025

Microsoft loosens the noose on Windows 10 users with new end-of-support timeline

The official end of Windows 10 is set for October 14, 2025, after which users will no longer receive technical support, new features, or security patches. Windows 10's global desktop market share has decreased from nearly 70% to approximately 53% over the past year, indicating a shift towards Windows 11. Microsoft 365 apps, including Teams, Outlook, Word, Excel, and OneDrive, will continue to receive security updates on Windows 10 until October 2028. The Extended Security Updates (ESU) program offers optional, paid security patches for Windows 10 after its end of support. Users may face significant hardware costs when upgrading to Windows 11, and alternatives like macOS or Linux are also options to consider.

Winsage

May 11, 2025

Microsoft 365 might’ve just given you another excuse to stay on Windows 10 for three more years

Microsoft will continue to provide security updates for Microsoft 365 apps on Windows 10 until October 10, 2028, despite Windows 10 reaching its End of Life on October 14, 2025. This extension is intended to assist users during their transition to Windows 11. While Microsoft 365 apps will still function after Windows 10 support ends, users may experience performance and reliability issues on an unsupported operating system.

AppWizard

May 11, 2025

Scrutinizing the security of messaging apps continues.

Customs and Border Protection (CBP) and the White House are facing scrutiny over security vulnerabilities in their messaging application. Hacktivists breached GlobalX, the airline handling U.S. deportation flights, exposing sensitive flight manifests. The FBI warned about threats exploiting outdated routers. Pearson confirmed a cyberattack compromising customer data. Research shows cybercriminals are using Windows Remote Management (WinRM) for lateral movements in Active Directory environments. A new email attack campaign is delivering a Remote Access Trojan (RAT) via malicious PDF invoices. A zero-day vulnerability in SAP NetWeaver allows remote code execution, affecting multiple sectors. An Indiana health system reported a data breach affecting nearly 263,000 individuals.

Winsage

May 10, 2025

Windows 10 End of Support: Should Developers Be Concerned?

Developers using older machines may struggle as Windows 10 approaches its end of support, with many unable to upgrade to Windows 11 due to hardware limitations. Microsoft encourages upgrades but acknowledges the challenges posed by older systems. While some users can still perform daily tasks on Windows 10, workarounds exist for installing Windows 11 on unsupported hardware. The conversation around transitioning to Linux has gained traction, with user-friendly distributions like Ubuntu and Linux Mint offering alternatives that can run alongside Windows. Users can explore various platforms, as many services now operate seamlessly across different systems. For those sticking with Windows 10, Extended Security Updates are available but come with risks of security vulnerabilities. Users with older machines face several choices: hack the system, invest in new hardware, explore Linux, pay for updates, or ignore the warnings.

AppWizard

May 8, 2025

Someone Reportedly Hacked the Messaging App Mike Waltz Was Seen Using

A cybersecurity breach involving TeleMessage, an Israeli messaging application company, has raised concerns about customer data safety. The breach allowed unauthorized access to direct messages and personal information on the platform, which lacks full end-to-end encryption like Signal. The hacker reported that accessing the data took only 15-20 minutes and exposed names, phone numbers, and email addresses of Customs and Border Protection officials, along with information from various financial institutions. TeleMessage is used by government agencies, including the State Department and the Centers for Disease Control and Prevention, making the breach more significant. While the hacker did not access all content, they indicated potential for further breaches, and journalists have verified some of the compromised material. TeleMessage's claim of maintaining Signal's security standards is questioned, as archiving messages introduces privacy risks. A spokesperson for Signal warned against using unofficial versions of their app, highlighting security vulnerabilities.

AppWizard

May 7, 2025

Another messaging app used by the White House is in hot water

Former National Security Adviser Mike Waltz has come under scrutiny for using TeleMessage, an app that has recently experienced a security breach resulting in the theft of sensitive data, including direct messages and group chats. High-ranking officials from the Trump administration, including Waltz, Vice President J.D. Vance, Secretary of State Marco Rubio, and Director of National Intelligence Tulsi Gabbard, were reported to have used the app. A photograph captured Waltz during a Cabinet meeting appearing to use TeleMessage to access Signal messages, raising concerns due to his previous controversy involving a chat room on Signal that included a journalist. The security vulnerabilities of TeleMessage have been criticized, particularly as it lacks the robust encryption features of Signal. The app was initially marketed as a solution for preserving messages for government record-keeping, but its reliability has been questioned.

Winsage

May 2, 2025

Microsoft pushes unphishable logins forward with new sign-in options

Microsoft is making passwordless logins the default method for new account sign-ins, promoting passkeys as an alternative to traditional passwords. This initiative is part of a collaboration with Google and Apple under the FIDO Alliance to enhance security and streamline the login process. New users will have passkeys set as their default sign-in method, while existing users will be prompted to switch during their next login. The shift to passkeys aims to address issues related to password management and security vulnerabilities. However, users must install the Microsoft Authenticator app to fully transition to a passwordless experience, as compatibility with other authentication apps is not supported. Without the app, users cannot completely eliminate their login passwords, which may reduce the security benefits of using passkeys.