server Archives

Winsage

June 13, 2026

Windows Server is getting new network safety capabilities with DNS over HTTPS

Microsoft has introduced DNS over HTTPS (DoH) on Windows Server 2025, enhancing network security by encrypting DNS traffic for client-to-server communications. This feature, previously available only in Windows client editions, is now part of Microsoft's Zero Trust architecture. DoH routes DNS traffic through HTTPS secured with TLS certificates, preventing eavesdropping and safeguarding DNS data from tampering. It adheres to the IETF DNS over HTTPS standard (RFC 8484) and can integrate with existing infrastructure, allowing organizations to maintain unencrypted DNS traffic if needed. DoH is available for Windows Server 2025 systems updated to the latest Patch Tuesday release, and Microsoft has provided guidance on enabling this feature. However, DNS traffic exchanged between two DNS servers will not be encrypted by DoH.

Winsage

June 13, 2026

For June, Patch Tuesday means an IT scramble

A systematic approach to testing is essential following the latest updates. The process begins with installing the .NET SDK update, then building and executing representative applications to ensure existing projects compile and run without issues. For SQL Server users, the GDR update must be installed on the appropriate branch, followed by a service restart and standard transaction execution to verify stability. Backup and restore verification is also necessary, including checking the health of Always On availability groups and testing patch installation and removal. The Readiness team recommends prioritizing testing for Remote Desktop this month due to its frequent patches and high-risk classification. The focus should be on printer redirection, followed by general connectivity, RemoteApp functionality, clipboard and device redirection, gateway access, and licensing considerations. The next priority is validating NTLM authentication updates, including domain and standalone logon processes, file-share access, and application sign-in capabilities. Other updates are security-focused with no functional changes, requiring routine regression testing across networking, Hyper-V, storage, and graphics components. Office remains MSI-only, with Click-to-Run installations unaffected by these updates. The updates for .NET and SQL Server complete the landscape for developers and database administrators.

AppWizard

June 13, 2026

As a longtime Android privacy nerd, here are 6 privacy apps I actually regret installing

The author shares experiences with six privacy applications that did not meet expectations. 1. Private Internet Access (PIA): A robust VPN service with a cluttered interface and concerns about its U.S. base; transitioned to NordVPN for a better user experience. 2. Brave Browser: Known for ad and tracker blocking, but had issues with Brave Search reliability, syncing, and battery drain; switched to Firefox with uBlock Origin. 3. LastPass: A former leading password manager that lost trust due to security breaches; moved to Bitwarden for its solid and secure platform. 4. KeePassDX: Impressive for local storage and clean UI, but lacked cloud syncing and required manual password management; eventually chose Bitwarden for convenience. 5. OpenBoard: A privacy-focused keyboard app that is no longer available on Google Play; basic features and installation hassles led to regret over its use; better alternatives exist. 6. OsmAnd: An open-source offline navigation app with extensive customization but a steep learning curve and rigid address searches; now prefers Organic Maps for ease of use.

Winsage

June 13, 2026

XP-era Windows spotted haunting London’s driverless railway

Commuters on London’s Docklands Light Railway (DLR) recently encountered an error message from the XP-era Windows operating system on an information screen, specifically from an application called DaisySignApp.exe. The display featured a Recycle Bin icon, indicating a nostalgic connection to Windows XP or Windows Server 2003, which lost support in 2015 and 2014, respectively. The DLR's digital display appears to be outdated, reflecting a reluctance to upgrade systems that are functioning adequately. Limehouse station, where the error was observed, connects the DLR to the UK’s National Rail services and has a history that predates Windows XP by over a decade. The DLR opened in 1987, during the launch of Windows 2.0.

Winsage

June 13, 2026

Windows Server 2025 Adds DNS Over HTTPS for Secure DNS Traffic

Microsoft has rolled out support for DNS over HTTPS (DoH) in Windows DNS Server as part of the Windows Server 2025 update. This feature enhances the security of DNS communications through encryption and server authentication, allowing encrypted client-to-resolver traffic in on-premises DNS environments. DoH encrypts DNS queries and responses using HTTPS, protecting sensitive information from interception or alteration. It also uses digital certificates for DNS server authentication to reduce spoofing and impersonation risks. The feature is compatible with existing Windows DNS Server configurations and supports both encrypted and traditional DNS. DoH support is available on Windows Server 2025 with the June 9, 2026 update or newer. Administrators must configure a trusted TLS certificate and enable DoH in the DNS Server service to deploy this feature. Microsoft plans to extend encryption capabilities to include communication between the Windows DNS Server and upstream DNS resolvers in the future.

AppWizard

June 13, 2026

Facebook, Instagram, Messenger Outages: What We Know So Far

At 2:45 PM UK time, users experienced disruptions across Facebook and Messenger, encountering error messages. Other Meta services, including Instagram and WhatsApp, also faced issues globally. Meta's communications chief, Andy Stone, acknowledged the problem on X, stating they were working on it. By 3:38 PM UK time, some users reported regaining access to Facebook, while Messenger saw a spike in outages around 2:22 PM, which later decreased. Instagram had increased outage reports, while WhatsApp appeared to function normally. The cause of the outages is unclear, and Meta has not yet responded to inquiries. Meta services share server infrastructure, meaning issues can affect multiple platforms. In the past, Meta experienced a significant outage in 2021 due to an erroneous command affecting its network. The cause of the 2026 outages remains undetermined.

AppWizard

June 13, 2026

Is Facebook Down? Users Report Issues with App

On Friday, Meta's Facebook and Instagram experienced a global outage, impacting millions of users who faced issues such as blank feeds, error messages, and repeated login failures across various regions, including the U.S., Europe, Asia, and the Middle East. The outage affected Facebook's desktop site, mobile app, Messenger, and components of Instagram's feed and login systems. Users reported being logged out unexpectedly, encountering incorrect password messages, and experiencing server errors. Meta acknowledged the situation and was working on a resolution. Specific failures included issues with login systems, blank news feeds, unexpected Messenger logouts, and difficulties accessing both desktop and mobile apps. Instagram users reported frozen feeds, inability to refresh content, failed logins, and delayed or disappearing direct messages. The outage typically resolves within one to three hours, and by approximately 10:30 a.m. ET, reports indicated a decline in issues affecting Meta's platforms.

Winsage

June 12, 2026

Hackers Use Fake Windows Update Installers to Deliver OnyxC2 Credential Stealer

OnyxC2 is a sophisticated credential stealer available for a subscription fee of 0 per month, distributed through disguised lures such as fake Windows updates and legitimate software installers. It functions as a commercial product with features like an automated payload builder, tiered licensing, and a centralized web dashboard. The malware boasts a 99% detection-evasion rate, successfully evading major antivirus solutions during tests. It is developed in C++, utilizing direct system calls and mutating with each build to avoid detection. OnyxC2 collects data from around 210 applications, targeting 45 web browsers, password managers, cryptocurrency wallets, and FTP clients. The malware is delivered using DLL sideloading, where a password-protected archive contains a legitimate application and a malicious DLL. The attacker's DLL is disguised by inflating its size and is loaded by a trusted binary. The malicious code remains encrypted on disk and decrypts in memory to evade analysis. OnyxC2 communicates with a Cloudflare-fronted command-and-control server to manage infected hosts and execute commands like hardware registration and cookie uploads. The threat extends to business environments, targeting FTP and email clients, with stolen session cookies allowing ongoing access to corporate infrastructure. Implementing anti-data exfiltration controls is recommended as a mitigation strategy.

Winsage

June 12, 2026

Microsoft fixes Windows update failures linked to WUSA installer

Microsoft resolved an issue affecting the installation of Windows updates released since May 2025, which primarily impacted users using the Windows Update Standalone Installer (WUSA) from a network share, especially in enterprise environments. The problem was significant for devices running Windows 11 24H2/25H2 and Windows Server 2025, but did not occur when handling a single .msu file or when files were stored locally. In August 2025, Microsoft acknowledged that updates installed using WUSA might fail with error ERRORBADPATHNAME when multiple .msu files were involved. A Known Issue Rollback Group Policy was implemented in September 2025 to mitigate the impact on home and non-managed business devices. The issue was ultimately resolved with cumulative updates released in June 2026 for Windows 11 (KB5079391) and Windows Server 2025 (KB5094125). Microsoft provided a workaround for users experiencing difficulties with prior updates by suggesting they save .msu files locally for installation. Users were also advised to wait at least 15 minutes after installing an .msu file via WUSA before checking the Update History page. Additionally, Microsoft had previously addressed another issue in April 2025 that affected enterprise customers installing security updates via WSUS, which recurred in the August 2025 updates. Microsoft warned customers about potential issues with installing the latest monthly updates on devices upgraded to Windows 11 24H2 or 25H2.

AppWizard

June 12, 2026

Meta faces major outage as Facebook, Instagram and WhatsApp goes down for thousands of users globally

Meta's social media platforms—Facebook, Instagram, WhatsApp, and Messenger—are experiencing a significant outage affecting users primarily in India and the United States. Facebook saw peak outage reports of 109,365 in the US, with 56% of users reporting app issues, 27% facing login problems, and 10% having website access issues. In India, Facebook peaked at 1,093 reports, with 49% citing app problems, 30% login troubles, and 12% server connection issues. Instagram in India peaked at 8,582 reports, with 51% experiencing app issues, 36% login problems, and 7% server issues. In the US, Instagram peaked at 8,868, with 57% reporting app issues, 22% login challenges, and 11% server problems. Messenger in the US peaked at 15,403 reports, with 54% related to login problems and 31% to app issues, while in India, it had 91 reports. WhatsApp was less affected, peaking at 216 reports in India, with 37% reporting app issues and 32% login problems, and in the US, it peaked at 153. Meta has not provided a public statement on the disruption, and reports on Downdetector have started to decline.