SoC Archives

Winsage

May 12, 2025

Microsoft Releases Detailed Guide to Fix Windows Blue Screen Errors

Microsoft has released an official guide to address the Blue Screen of Death (BSOD) issues in Windows 11 and Windows 10, updated on May 11, 2025, following a significant global outage in July 2024 caused by a problematic CrowdStrike update. The guide categorizes troubleshooting into basic and advanced steps, highlighting common error codes like PAGEFAULTINNONPAGEDAREA (0x00000050). Approximately 75% of stop errors are attributed to faulty drivers, making driver verification essential. Basic troubleshooting includes removing recently added hardware, booting into Safe Mode, checking Device Manager for problematic components, ensuring 10-15% free disk space, installing the latest Windows Updates, and using System Restore. Advanced troubleshooting involves using Event Viewer, running Windows Memory Diagnostics, and analyzing memory dumps with WinDbg. The guide emphasizes the resource-intensive nature of Driver Verifier and suggests testing suspicious drivers in smaller groups. It also includes hardware-specific troubleshooting tips, such as checking for overheating components and performing disk diagnostics with the “chkdsk” command.

Tech Optimizer

May 12, 2025

Defendnot — A New Tool That Disables Windows Defender by Posing as an Antivirus Solution

Defendnot is a tool that disables Windows Defender by using the Windows Security Center (WSC) API, presenting itself as a legitimate antivirus solution. It was created by a developer named “es3n1n” and follows the removal of a previous tool called “no-defender.” The tool engages directly with WSC, which disables Windows Defender when third-party antivirus software is installed to avoid conflicts. Defendnot was developed through reverse engineering of the WSC service and involves understanding how WSC verifies processes. It registers a phantom antivirus product using COM interfaces and undocumented Windows APIs, leading Windows to disable its built-in protection. The tool requires administrative privileges to operate and adds itself to autorun to maintain its functionality after a reboot. Security experts express concern about its potential misuse by malware authors, while it also provides insights into vulnerabilities in Microsoft’s security architecture.

Winsage

May 9, 2025

Huawei’s Kirin X90 may be the company’s ‘Apple Silicon’ moment — Matebook Pro 2025 features in-house hardware and software

Huawei introduced its Matebook Pro 2025 laptops, powered by the Kirin X90 system-on-chip (SoC) developed by its HiSilicon subsidiary. The Kirin X90 features a 10-core layout (4+4+2) with 20 threads and is expected to utilize a combination of Taishan V121 architecture for prime cores, Taishan V120 for performance cores, and a standard Cortex design for efficiency cores. The Matebook Pro operates on HarmonyOS, a new operating system independent of Linux and Android, allowing Huawei to reduce reliance on Microsoft. The Kirin X90 is anticipated to be manufactured using SMIC's 7nm process node, which may limit its performance. The success of HarmonyOS will depend on developers transitioning existing applications to the platform. The Matebook Pro is set to be released on May 19.

Winsage

May 9, 2025

Struggling with the latest Windows 11 update? You aren’t alone

Many users are experiencing issues with Windows 11 following a recent update, including sluggish performance, Wi-Fi connectivity problems, and blue screen errors. To troubleshoot, users should first ensure their PC meets the minimum system requirements for Windows 11, which include: - Processor: 1 GHz or faster with two or more cores on a compatible 64-bit processor or SoC. - RAM: At least 4 GB. - Storage: 64 GB or more of available storage. - Firmware: UEFI firmware with Secure Boot capability. - TPM: Trusted Platform Module (TPM) version 2.0 must be enabled. - Graphics Card: Compatible with DirectX 12 or later and have a WDDM 2.0 driver. - Display: High definition (720p) display, at least 9 inches diagonally, with 8 bits per color channel. - Internet and Microsoft account: Required for initial setup of Windows 11 Home and for updates and some features on all editions. To resolve issues, users can: 1. Uninstall the latest update via Settings > Update & Security > Windows Update > View update history > Uninstall updates. 2. Run the Windows Update Troubleshooter found in Settings > System > Troubleshoot > Other troubleshooters. 3. Check for driver updates in Device Manager by looking for devices with a yellow exclamation mark. 4. Perform a System Restore through Control Panel > Open System Restore. 5. Use Microsoft's built-in repair tool "Fix problems using Windows Update" found in Settings > System > Recovery. 6. Check for known issues acknowledged by Microsoft. 7. Access advanced startup options by holding down the Shift key while clicking Restart to use Startup Repair or Command Prompt. 8. Reset the PC from the advanced recovery menu, which can reinstall Windows while preserving files or perform a clean reset. Users should back up important files before proceeding with significant troubleshooting steps.

Winsage

April 30, 2025

Unpatched Windows Shortcut Vulnerability Let Attackers Execute Remote Code

Security researcher Nafiez has discovered a vulnerability in Windows LNK files that allows remote code execution without user interaction. Microsoft has chosen not to address this issue, stating it does not meet their security servicing criteria. The vulnerability exploits specific components of LNK files, enabling attackers to create malicious shortcuts that initiate silent network connections when a user accesses a folder containing them. The exploit involves manipulating the HasArguments flag, EnvironmentVariableDataBlock, and embedding UNC paths. Microsoft defends its inaction by citing the Mark of the Web (MOTW) feature as adequate protection, despite concerns from security experts about its effectiveness. Previous vulnerabilities in LNK files have been addressed by Microsoft, and the availability of proof-of-concept code raises fears of potential exploitation by malicious actors.

Tech Optimizer

April 30, 2025

Avast Antivirus Vulnerability Let Attackers Escalate Privileges

A significant vulnerability, designated as CVE-2025-3500, has been identified in Avast Free Antivirus, allowing attackers to gain elevated system privileges and execute malicious code at the kernel level. The vulnerability has a high CVSS score of 8.8 and was publicly disclosed on April 24, 2025, shortly after a patch was implemented. It originates from inadequate validation of user-supplied data in the aswbidsdriver kernel driver, leading to an integer overflow prior to buffer allocation. Attackers must first execute low-privileged code on the target system to exploit this vulnerability. The flaw affects multiple versions of Avast Free Antivirus, specifically versions ranging from 20.1.2397 to 2016.11.1.2262. A fix was released in version 25.3.9983.922, and users are urged to update their software promptly. Security experts recommend enabling automatic updates and using standard user accounts for daily activities to mitigate risks.

Winsage

April 22, 2025

5 things the Surface Pro 12 needs to finally beat the Apple iPad Pro in 2025

The Surface Pro 11 has been praised as an excellent 2-in-1 device, but there are areas for improvement. Microsoft is set to release the Surface Pro 12 later this year, expected to feature Qualcomm's Snapdragon X2 SoC, which promises enhanced performance similar to Apple's M4 chip. Key improvements anticipated include more uniform bezels, a reduction in thickness, and a lighter design to enhance usability as a 2-in-1 device. There is also a desire for 5G models to be available at launch, as previous releases have seen delays. Consumers are calling for both Snapdragon and Intel options to have the same features, addressing the current disparity. Additionally, there is a request for the return of vibrant colors, particularly red, to the Surface Pro lineup.

Winsage

April 22, 2025

Critical Windows Update Stack Vulnerability Allows Code Execution & Privilege Escalation

A security vulnerability identified as CVE-2025-21204 has been discovered in the Windows Update Stack, allowing local attackers to execute unauthorized code and escalate privileges to SYSTEM-level access. This vulnerability, with a CVSS score of 7.8 (High), affects Windows 10 versions 1507, 1607, and 1809, among likely other supported Windows 10/11 and Windows Server versions. The flaw arises from a design issue where Windows Update processes do not properly follow directory junctions, enabling attackers with limited user privileges to redirect trusted paths to locations containing malicious code. Microsoft has introduced a mitigation strategy in its April 2025 cumulative update, which includes creating a new folder at the root of system drives and implementing detection rules for suspicious junction creations. Organizations are advised to apply the April 2025 security updates, restrict ACLs on specific directories, prevent symbolic link creation, and monitor file creation activities in certain directories.

BetaBeacon

April 18, 2025

The AYANEO Pocket Micro Classic is everything I wanted the Game Boy Micro to be

The AYANEO Pocket Micro Classic is a modern handheld device inspired by the Game Boy Micro, featuring a premium metal body, large shoulder buttons, and a 3.5-inch IPS display perfect for GBA emulation. It runs on Android 13 and is powered by a Helio G99 SoC, allowing it to emulate some PS2 titles. The device is designed for discerning gamers and is priced starting at 9.

Winsage

April 18, 2025

Windows 11 24H2 Update Bug Triggers BSOD Error

Microsoft has acknowledged a significant bug in its Windows 11 24H2 updates, causing Blue Screen of Death (BSOD) crashes with the error code “SECUREKERNELERROR” (0x18B). This issue has escalated since the April 2025 Patch Tuesday update, affecting thousands of users globally. The bug leads to system crashes after installing the updates, resulting in persistent crash-restart loops or unbootable systems. Initially reported in March 2025, the problem gained traction following the April update, prompting Microsoft to confirm the bug and investigate its cause. Other issues include failures with Windows Hello and compatibility problems with games and software, particularly on ARM-based devices. To address the crisis, Microsoft has implemented a Known Issue Rollback (KIR) to disable the problematic code, which is being automatically pushed to affected devices, although users may experience a delay of up to 24 hours. Users are advised to keep their devices connected to the internet and restart their PCs multiple times to expedite the fix. For enterprise environments, IT administrators must manually deploy a specific Group Policy update. Microsoft is working on a permanent solution, expected in a future update, while also acknowledging related issues and committing to further fixes in the upcoming May 2025 update.