servers Archives

AppWizard

June 29, 2026

Breaking: Is Minecraft down? Several users report outages

Players are experiencing significant disruptions with Minecraft, particularly on Monday, with difficulties in logging in, launching the game, and connecting to servers. According to DownDetector, 56% of reported issues were related to login challenges, 26% to game launch failures, and 16% to server connectivity problems. The outage has affected both Bedrock and Java versions, preventing users from engaging in authentication processes and multiplayer games. Many gamers are unable to access their worlds or log in using Microsoft accounts across various devices. Mojang Studios has not yet released an official statement regarding the disruptions.

BetaBeacon

June 29, 2026

The PS4 emulator ShadPS4 now lets you play PS4 games online without using PSN

ShadNet allows emulated PS4 games to play online without a PSN account.

AppWizard

June 27, 2026

Card Chronicles codes (June 2026)

New Card Chronicles codes are available for players to enhance their gaming experience by unlocking luck potions and free trait rerolls. The game, which is a modern version of the card RNG genre, allows players to roll dice to earn cards. Current Card Chronicles codes include: - MemoryCompensation! (requires 25k rolls) - Tyfor3kccu! (grants potions, boosts, gems, and rerolls) - Tyfor400kvisits! (requires 25k rolls) - AvailableForEveryoneNow (provides 100 trait rerolls) - EarlyAccess! (requires early access) - Sorry! (offers potions, boosts, gems, and rerolls) - Sorry2! (requires 25k rolls) To redeem codes, players must launch Card Chronicles, click the cog icon, scroll to the bottom of the settings menu, input a valid code, and press enter. More codes can be found on the Card Chronicles Discord server, particularly in the 'codes' channel, and players should also check the 'announcements' and 'update-logs' channels for new codes.

AppWizard

June 27, 2026

Riot teases League of Legends Classic, with a full reveal coming in two weeks

Riot Games has confirmed the existence of League of Legends Classic after low-poly character models were leaked from public test servers. The announcement was made by executive producer Paul "Pabro" Bellezza in a skit titled "200 Years of Experience." A full reveal of the Classic mode is scheduled for July 11 during the MSI Finals. The video description suggests that the Classic mode may evolve over time, raising questions about the use of original currencies, the potential return of the Twisted Treeline 3v3 map, and the fate of old rune pages and quintessences. The announcement taps into nostalgia for the game's earlier versions, which had different mechanics and visuals compared to the current game. A previous fan-made server called Chronoshift was shut down by Riot, who indicated that a retro version was forthcoming.

Winsage

June 27, 2026

New Millenium RAT version infects 62,000 Windows systems worldwide

A significant evolution of the Millenium remote access trojan (RAT) has impacted over 62,000 Windows devices across more than 160 countries. The latest version, 4.*, marks a departure from previous .NET-based versions and is attributed to a threat cluster known as Y2K Operators, with the creator identified as “ShinyEnigma.” There are 62,289 infected endpoints, with 39,730 infections occurring in the first quarter of 2026. The RAT is marketed as malware-as-a-service (MaaS) and promoted through underground forums and platforms like GitHub, with accessible pricing. Millenium RAT 4 is developed in native C++ and uses the Telegram Bot API for command-and-control communications. Its capabilities include stealing browser data, collecting system information, logging keystrokes, capturing screenshots and audio, accessing Telegram and Discord data, downloading additional payloads, and executing Windows or PowerShell commands. The malware ensures persistence by replicating itself in the %APPDATA% directory and creating an autorun registry entry. The malware is distributed through social engineering tactics such as cracked software, cryptocurrency utilities, hacking toolkits, OSINT tools, exploit builders, and Roblox-related cheats. Some campaigns have trojanized malware builders, infecting cybercriminals. One campaign used PDF-themed lures with a malicious Windows shortcut to download the RAT while displaying a legitimate document. Payloads often use filenames associated with Windows components or security software to blend into infected systems. Group-IB recommends avoiding untrusted executables, applying security updates, enabling multi-factor authentication, and monitoring for unusual autorun registry entries.

BetaBeacon

June 26, 2026

11 Essential Apps Every Retro Gamer Needs On Their Phone

RA Tracker is an unofficial companion app for RetroAchievements that allows users to track their progress, browse leaderboards, and look up achievement sets. It connects to your account via the public API and is free to download from the Google Play Store.

Winsage

June 25, 2026

Introduction to COM usage by Windows threats

Component Object Model (COM) is a technology in Windows that enables object activation, inter-process communication, and automation across different programming languages. Malware exploits COM interfaces for activities such as lateral movement, execution, downloading, exfiltration, persistence, evasion, system discovery, and automation of Windows and Office functionalities. Reverse engineering COM-heavy binaries involves navigating GUIDs and indirect vtable calls to understand malware mechanics. Research at the AVAR 2025 conference and CARO 2026 workshop discusses methodologies for analyzing COM binaries and case studies of malware families that utilize COM. COM is an application binary interface (ABI) model that allows software components to be reused and enables interaction between different programming languages through interfaces defined at the binary level. Distributed COM (DCOM) allows clients to activate COM objects on remote systems. COM classes are identified by unique class identifiers (CLSIDs), and interfaces by interface identifiers (IIDs). The Windows registry stores COM registration data, with classes and interfaces located under specific keys. Malware often acts as a COM client, utilizing the COM runtime to instantiate classes and request interfaces. ProgIDs provide human-readable registry entries for COM classes. The CoCreateInstance function helps create class objects by resolving CLSID registrations. All COM interfaces derive from IUnknown, which manages object lifetimes and interface querying. COM has its own security model, and identifying classes and interfaces used by malware is crucial for threat researchers. Tools like ComView and OleView.NET assist in inspecting COM registrations. The analysis workflow includes identifying activation API calls, extracting CLSID and IID values, consulting registry definitions, and mapping vtable calls. Qakbot, a banking trojan, exemplifies the use of COM in malware, with its architecture enabling malicious activities like credential theft. Dynamic analysis tools can log COM-related calls in real-time to trace execution flow. Notable malware families that utilize COM include Gh0stRAT, which uses Task Scheduler COM interfaces, and the Attor platform, which employs BITS for file transfers. WarmCookie demonstrates the use of COM for persistence through Task Scheduler. Understanding COM's role in malware is essential for cybersecurity professionals.

Winsage

June 23, 2026

Why is Windows 11 so disliked by programmers – and can Microsoft do anything to change things?

Windows is experiencing a decline in favor among developers, with many preferring macOS and Linux for coding. Although nearly half of developers (49.5%) primarily work on Windows, this is often due to organizational mandates rather than personal preference. Developers interviewed did not select Windows as their preferred environment, citing concerns about Microsoft's developer experience, cumbersome tools, and security issues. The Windows Subsystem for Linux (WSL) allows developers to run Linux environments on Windows 11, addressing some compatibility issues. However, there is a consensus that Microsoft should enhance WSL and align Windows more closely with Linux to attract more developers. Critics also point to the intrusive nature of ads and upselling in Windows 11 as detracting from the developer experience.

Tech Optimizer

June 23, 2026

Active Exploitation of Critical CVE-2026-20253 in Splunk Enterprise: Unauthenticated RCE via PostgreSQL Sidecar Service

A critical security vulnerability, SVD-2026-0603 (CVE-2026-20253), has been identified in Splunk Enterprise versions 10.0.0 through 10.0.6 and 10.2.0 through 10.2.3. This flaw allows unauthenticated, remote attackers to create or truncate arbitrary files on the host system by exploiting the PostgreSQL Sidecar Service endpoints. The vulnerability is actively exploited, with public proof-of-concept code available, and has been added to the CISA Known Exploited Vulnerabilities (KEV) list. Successful exploitation can lead to full remote code execution (RCE) as the Splunk user. The vulnerability arises from inadequate authentication controls on the PostgreSQL Sidecar Service endpoints, specifically /v1/postgres/recovery/backup and /v1/postgres/recovery/restore, which are accessible without authentication. It is classified under CWE-306: Missing Authentication for Critical Function and has a CVSS v3.1 base score of 9.8 (Critical). Attackers can exploit the vulnerability by sending crafted HTTP POST requests to the exposed endpoints, allowing them to create or truncate files and potentially execute malicious scripts. Indicators of compromise include unexpected files in directories such as /tmp/ or /opt/splunk/var/run/supervisor/pkg-run/, modified Splunk Python scripts, and unusual outbound connections from Splunk to unknown PostgreSQL servers. The vulnerability aligns with several MITRE ATT&CK techniques, including T1190 (Exploit Public-Facing Application) and T1059 (Command and Scripting Interpreter). Active exploitation of CVE-2026-20253 has been confirmed, and it is likely that both opportunistic cybercriminals and sophisticated threat actors will use this exploit. The affected versions of Splunk Enterprise are 10.2.0 through 10.2.3 and 10.0.0 through 10.0.6, with the issue resolved in versions 10.2.4 and 10.0.7. Organizations are advised to upgrade to fixed versions or disable the PostgreSQL Sidecar Service as a mitigation strategy.

AppWizard

June 23, 2026

Sand: Raiders of Sophie is like Sea of Thieves on land, but even tougher for solo players

Sand: Raiders of Sophie has entered early access. It is a first-person base-building extraction shooter set in outer space, featuring customizable walking bases called tramplers. Players can construct their own tramplers or use pre-existing models, equipping them with various weapons and ammunition. The game includes both player-versus-player and PvE elements, with NPCs guarding lootable locations. Players can join solos-only servers for a more strategic experience. After gathering loot, players must transport their trampler to an extraction point, which involves climbing a tower to initiate the extraction process. Initial experiences have included server issues and challenges during gameplay.