NewApp Digest
search bot

service disruption

SilentButDeadly: New Tool Blocks Network Traffic to Bypass EDR and Antivirus
Tech Optimizer
November 18, 2025

SilentButDeadly: New Tool Blocks Network Traffic to Bypass EDR and Antivirus

A newly released open-source tool called SilentButDeadly, developed by Ryan Framiñán and launched on November 2, 2025, can disable Endpoint Detection and Response (EDR) systems and antivirus software without terminating processes. It exploits the Windows Filtering Platform to sever cloud connectivity for security products, leaving systems vulnerable to attacks. SilentButDeadly operates through a seven-phase execution sequence, starting with verifying administrator privileges, then scanning for active EDR processes like SentinelOne and Windows Defender. It establishes network filters that block communications for these security applications, preventing them from receiving updates or transmitting telemetry data. The tool also attempts to disable EDR services by changing their startup types. SilentButDeadly features dynamic, self-cleaning filters and builds on techniques from EDRSilencer, introducing enhanced operational safety. Organizations using cloud-based threat detection face risks when their security solutions lose connectivity. Security teams are advised to monitor Windows event logs for specific filter creation events and implement real-time monitoring and redundant communication channels for EDR telemetry.
Microsoft: Windows bug blocks Microsoft 365 desktop app installs
Winsage
November 17, 2025

Microsoft: Windows bug blocks Microsoft 365 desktop app installs

Microsoft is addressing an issue preventing users from installing Microsoft 365 desktop applications on Windows devices due to misconfigured authentication components. The affected versions are Microsoft 365 desktop apps version 2508 (Build 19127.20358) and version 2507 (Build 19029.20294). Microsoft is working on reconfiguring the authentication components, with a resolution expected to be deployed soon. The issue has been classified as incident OP1186186, indicating a critical service disruption. Additionally, another problem, tracked as MO1176905, is affecting some admins and users by restricting access to various Microsoft 365 services due to a misconfiguration related to Microsoft 365 Group SecurityEnabled settings. Recently, Microsoft resolved a bug related to Microsoft Intune and mitigated a DNS outage that affected global customers.
‘There isn’t really another choice:’ Signal chief explains why the encrypted messenger relies on AWS
AppWizard
October 28, 2025

‘There isn’t really another choice:’ Signal chief explains why the encrypted messenger relies on AWS

Meredith Whittaker highlighted the significant concentration of power within the cloud infrastructure sector following the recent Amazon Web Services (AWS) outage, which affected various services, including Signal. She emphasized that the issue extends beyond Signal's reliance on AWS, pointing out that the cloud ecosystem is largely dominated by three to four major entities, leaving limited options for companies. Whittaker noted that many users are unaware of this dependency and the lack of realistic alternatives to AWS and other major providers. She identified AWS, Microsoft Azure, and Google Cloud as the primary options for maintaining reliable global service, which requires extensive infrastructure. Additionally, she clarified that Signal operates only partly on AWS with encryption to protect user conversations. The outage also disrupted services for other companies, including Starbucks and Snapchat. Whittaker expressed hope that the incident could provoke a broader discussion about the risks of centralized power in the tech industry.
Multiple PHP Vulnerabilities Allow SQL Injection & DoS Attacks
Tech Optimizer
July 5, 2025

Multiple PHP Vulnerabilities Allow SQL Injection & DoS Attacks

Critical security vulnerabilities in PHP, identified as CVE-2025-1735 and CVE-2025-6491, pose risks for SQL injection attacks and denial of service (DoS) conditions. These vulnerabilities affect PHP versions below 8.1.33, 8.2.29, 8.3.23, and 8.4.10. CVE-2025-1735 relates to the PostgreSQL extension, where insufficient error checking during string escaping can lead to SQL injection vulnerabilities and application crashes. This flaw is associated with PostgreSQL's CVE-2025-1094. CVE-2025-6491 affects the SOAP extension, causing segmentation faults when a SoapVar instance has a namespace prefix exceeding 2GB, which can lead to application termination. This issue is linked to limitations in libxml2 versions prior to 2.13. Patches are available for all affected PHP versions to mitigate these vulnerabilities. CVE-2025-1735 has a CVSS score of 9.1 (Critical), while CVE-2025-6491 has a CVSS score of 5.9 (Moderate).
Microsoft broke DHCP for Windows Server last Patch Tuesday
Winsage
June 18, 2025

Microsoft broke DHCP for Windows Server last Patch Tuesday

Microsoft has acknowledged that the updates released on June 10 during Patch Tuesday may disrupt the Dynamic Host Configuration Protocol (DHCP) service on Windows Server versions 2025, 2022, 2019, and 2016. The DHCP Server service might intermittently stop responding after installing this security update, causing issues for network administrators as clients may be unable to renew their IP addresses. There is currently no viable workaround for affected users other than rolling back the patch, which is not ideal due to the critical security fixes included in the update. The impact of this issue varies among users, with some experiencing significant problems while others report no disruptions. Microsoft is working on a resolution and will provide further information soon. Additionally, Microsoft has faced challenges with its Surface Hub v1 devices, requiring an out-of-band update.
WhatsApp down: Major outage hits messaging services globally - The Times of India
AppWizard
April 12, 2025

WhatsApp down: Major outage hits messaging services globally – The Times of India

WhatsApp experienced a significant service disruption affecting users' ability to connect and send messages through its mobile application and web platform. In India, around 3,000 reports were logged, with over 90% of users indicating issues with message transmission. Globally, approximately 2,800 users reported problems, with 91% highlighting issues with sending messages. Members of The Times of India's technology team confirmed similar challenges. Despite the widespread disruption, Meta, WhatsApp's parent company, has not issued an official statement regarding the outage. Users took to social media to express their frustrations and share humorous takes on the situation.
Is WhatsApp down? Users report mass issues with messenger app
AppWizard
February 28, 2025

Is WhatsApp down? Users report mass issues with messenger app

Over 56,000 users reported issues with WhatsApp on Downdetector, indicating a significant service disruption. Of these reports, 56% were related to difficulties in sending messages, 32% experienced connection issues, and 12% faced challenges with the app itself. WhatsApp has not issued a statement regarding the outages. Downdetector is a platform that allows users to report issues with various online services, and it identifies incidents when reports exceed normal levels.
Is Instagram down? Users report issues with Facebook and Messenger, too.
AppWizard
February 26, 2025

Is Instagram down? Users report issues with Facebook and Messenger, too.

Users of Instagram and Facebook experienced a brief service disruption on February 26, with both platforms, including Facebook Messenger, down for approximately one hour around 1 PM EST. While most of Instagram's features were operational, users faced significant messaging issues. Reports of the outage declined swiftly, indicating a quick resolution, although Meta has not yet issued a formal statement.
Search