Security

Tech Optimizer
July 18, 2026
North Korea's Contagious Interview hackers have been using a deceptive strategy to target developers by posing as recruiters and embedding malware in SVG files. Elastic Security Labs discovered that the attackers hid malicious payloads within HTML comment blocks of these files, allowing the malware to evade antivirus detection. At the time of the findings, no antivirus engines flagged the compromised repositories, which included trojanized GitHub repositories disguised as coding challenges. The malware executed automatically at server startup and deployed four modules: a browser credential and cryptocurrency wallet stealer, a file stealer, a remote access Trojan, and a clipboard monitor. The campaign, tracked as REF9403, is part of the ongoing Contagious Interview operation attributed to North Korea's Lazarus Group, which aims to generate revenue through cryptocurrency theft. Developers are advised to audit any projects run from unsolicited sources and to monitor specific domains associated with the attack.
Winsage
July 18, 2026
Microsoft held its OEM Secure Boot Office Hours event on July 15, where engineers collaborated with OEM representatives from companies like Acer, Asus, Cisco, Dell, and HP. IT administrators were able to ask live questions about the Secure Boot 2023 rollout. The discussion thread became a detailed technical record, especially following the expiration of the first certificates three weeks prior. Concerns raised by IT admins included BitLocker recovery loops, stuck confidence ratings, and unhelpful Intune error codes. Key facts include: - Devices offline for long periods will still receive the 2023 certificates upon reconnecting to Windows Update. - Devices with existing 2023 certificates in firmware will switch to the new boot manager after the latest Windows patches are installed. - A new script, Detect-SecureBootCertUpdateStatus.ps1, is available in Windows for checking certificate status. - BIOS updates may reset a device’s confidence rating to unrated, which is normal and does not indicate certificate failure. - Admins should edit the AvailableUpdates registry key, not the AvailableUpdatesPolicy, which is managed by Intune and Group Policy. - A licensing bug affecting AvailableUpdatesPolicy on devices upgraded from Pro to Enterprise was resolved by Microsoft in 2026. - BitLocker recovery is not typically linked to the certificate update process but may relate to firmware or PCR issues. - Dell and HP provided guidance on which BIOS versions include the 2023 certificates for their newer models. - Older HP EliteBook 840 G5 units require a manual update package for the new certificates. - Eligible devices can still receive the 2023 certificates in the future, and Surface devices released from 2024 onward come pre-equipped with them. - Microsoft confirmed that devices running 2011 certificates will not lose the ability to receive the 2023 chain. - The Microsoft Corporation KEK CA 2011 and Microsoft UEFI CA 2011 certificates have expired, with the Microsoft Windows Production PCA 2011 set to expire on October 19, 2026.
Winsage
July 18, 2026
Microsoft's July 2026 Patch Tuesday update for Windows 11, identified as KB5101650, addresses 570 vulnerabilities and upgrades Windows 11 to version 25H2 (build 26200.8875) and version 24H2 (build 26100.8875). The update includes critical fixes for BitLocker and File Explorer, targeting vulnerabilities that could enable remote code execution. Microsoft's MDASH tool, which uses AI for vulnerability analysis, has helped uncover 16 vulnerabilities in networking and authentication components. The update also introduces non-security enhancements like Point-in-time restore and improved Bluetooth reliability. Microsoft emphasizes the need for users to install updates quickly due to the rapid evolution of AI technology that benefits malicious actors.
Winsage
July 18, 2026
Windows Server 2022 will end its mainstream support on October 13, 2026, transitioning to an extended support phase that will last until October 14, 2031, during which security updates will be provided at no additional cost. Windows Server 2022 was released in September 2021 and is part of the Long-Term Servicing Channel (LTSC) with a decade of support. Microsoft recommends upgrading to Windows Server 2025, which became generally available in November 2024 and will have mainstream support until November 13, 2029, and extended support until November 14, 2034. A 180-day trial for Windows Server 2025 is available through the Microsoft Evaluation Center. Additionally, hotpatching for Windows Server 2022 will be extended until October 2027 for Datacenter: Azure Edition systems, and the free Windows 10 Extended Security Updates program has been extended by one year. Windows 10 Enterprise LTSB 2016 and Windows 11 24H2 will stop receiving updates three months after their end of support.
Winsage
July 18, 2026
Approximately 16.9% of Windows client devices are still using Windows 10, while Windows 11 accounts for 78.8% of installations. Windows 10's market share has significantly declined from nearly 50% in mid-2025. The migration to Windows 11 is slowing, with remaining Windows 10 devices facing more complex and costly upgrade scenarios, including having three times as many active Common Vulnerabilities and Exposures (CVEs) compared to Windows 11. Legacy operating systems like Windows 7, Windows 8.1, and Windows XP are also factors in the migration challenges. Microsoft’s Extended Security Updates (ESU) program offers protection until October 2027 for consumers and until October 2028 for commercial customers.
Winsage
July 18, 2026
Microsoft is developing a security tool called Project Perception, aimed at helping organizations identify and fix software vulnerabilities using artificial intelligence. Set to launch this month, it will utilize AI models from Microsoft, OpenAI, and Anthropic to offer extensive coverage while being cost-effective. The tool features a model router to select the best AI model for specific tasks, optimizing performance and reducing operational costs. Led by Hayete Gallot, Microsoft is shifting towards AI-focused products, recognizing the potential for substantial returns from enterprise investments in AI. Project Perception aims to compete in the AI-driven vulnerability detection market, although its availability may be limited due to concerns about misuse. Microsoft recently addressed around 570 vulnerabilities using an AI tool called MDASH, suggesting a growing role for AI in cybersecurity.
Winsage
July 18, 2026
Approximately 16.9% of Windows client devices are still using Windows 10, which has three times more active Common Vulnerabilities and Exposures (CVEs) than Windows 11, totaling 1,903 compared to 652. Two-thirds of the vulnerabilities in Windows 10 are classified as high or critical, with an exploitable rate 1.7 times greater than in Windows 11. Migration to Windows 11 is not primarily hindered by technical limitations, as only a small fraction of Windows 10 devices do not meet the hardware requirements. Additionally, nearly 20% of monitored Windows devices are running end-of-life operating systems, including Windows 7, 8.1, and XP.
AppWizard
July 18, 2026
Sony Interactive Entertainment plans to cease physical disc production by 2028, transitioning to a model reliant solely on digital distribution for new PlayStation games. The company has canceled eight out of twelve planned live-service projects by 2025, while CEO Hideaki Nishino remains committed to pursuing live-service opportunities. Microsoft has experienced significant financial losses and layoffs under CEO Phil Spencer, leading to a restructuring under new CEO Asha Sharma. Layoffs have affected studios like Bethesda and ZeniMax, raising concerns about ongoing project viability. The gaming industry is facing a trend of layoffs and employment uncertainty, impacting production times and budgets. Companies like Capcom and Larian, which prioritize employee retention, are experiencing success, while major publishers focus on short-term gains over long-term studio health. Successful game launches indicate a demand for quality standalone games, but there is reluctance to invest in new ideas due to a fixation on perpetual revenue streams.
Winsage
July 17, 2026
Windows 11 has introduced several new features and security enhancements in July 2026, including: 1. A transformed Widgets Board that provides a more streamlined experience without expanding completely when hovered over. 2. A new calendar feature allowing users to postpone Windows Updates, though Microsoft advises against long delays. 3. The Point-in-Time Restore (PITR) feature, which automatically creates restore points for the system, applications, settings, and files, allowing users to revert to snapshots from the last 72 hours. 4. The Screen Tint feature, which applies a customizable color overlay to reduce eye strain, allowing personalization of color and intensity. 5. Improved Bluetooth connectivity, including a new Shared Audio feature that allows users to listen to audio from multiple Bluetooth devices simultaneously.
AppWizard
July 17, 2026
Google and Epic Games have withdrawn their joint motion to modify a court injunction that requires Google to support third-party app stores within the Google Play ecosystem. A permanent injunction issued in October 2024 mandates Google to facilitate alternative app stores on Android devices, with support set to begin on July 22. Google plans to implement a ,000 annual access fee for these alternative marketplaces, while apps downloaded through these stores will still use the Google Play system for transactions. The agreement between Google and Epic includes provisions for reduced fees and alternative payment methods, separate from the injunction. The legal situation regarding third-party app stores does not directly affect Apple, but it may influence Apple's ongoing legal challenges with Epic Games and regulatory developments. Apple is currently appealing a ruling that requires it to allow link-outs and alternative payment options, with oral arguments expected in late 2026 or early 2027.
Search