SSH Archives

TrendTechie

April 30, 2026

Nano NAS из смартфона

Evenings spent with family watching series and movies can be challenging due to the logistics of accessing content, such as reliance on multiple laptops and cumbersome connections to the television. The author repurposed an old OnePlus 5T smartphone as a media server, utilizing its 64 GB of internal storage by managing content carefully. The setup involves installing Termux and creating a Linux-like environment using PRoot, allowing the phone to retain its dual SIM functionality while deploying media-sharing services. The software selected includes Alpine Linux, sshd, dms (a lightweight DLNA server), and transmission-daemon for torrent management. A step-by-step guide details the installation process, configuration, and tips for optimizing performance. The outcome is a cost-effective solution that transforms the smartphone into a compact DLNA server, accessible over the local network, enabling effortless downloading, sharing, and streaming of films.

Tech Optimizer

April 26, 2026

CanisterSprawl: pgserve Compromised on npm: Malicious Versions Harvest Credentials and Exfiltrate to a Decentralized ICP Canister

On April 21, 2026, compromised versions of pgserve (1.1.11, 1.1.12, and 1.1.13) were published on npm, containing a 1,143-line credential-harvesting script that executes during the postinstall phase of npm install. The malware functions as a supply-chain worm, reinjecting itself into other packages if it finds an npm publish token. Stolen credentials are encrypted using RSA-4096 and AES-256 and exfiltrated to a decentralized Internet Computer Protocol (ICP) canister. The last legitimate release was v1.1.10, published on April 17, 2026. The malware was detected by StepSecurity AI Package Analyst and Harden Runner, which flagged the compromised versions as Critical / Rejected and confirmed live exfiltration during analysis. The injected script performs operations such as harvesting environment variables, collecting filesystem secrets, encrypting payloads, and propagating to other npm packages and Python packages if a PyPI token is detected. The exfiltration domains have been added to a global block list.

BetaBeacon

April 21, 2026

How to Install Steam on Android with ROCKNIX

The text provides a list of Steam-compatible devices from different brands such as AYN, AYANEO, Retroid, and KONKR. It also gives detailed instructions on how to install ROCKNIX on these devices, back up existing ABL, flash ROCKNIX ABL, change boot mode, install Steam, enable Steam Input, change game configs, and adjust ROCKNIX Steam settings. Additionally, it compares the pros and cons of using ROCKNIX versus Android on compatible devices and recommends installing ROCKNIX on a microSD card rather than on the internal storage due to potential risks.

Winsage

March 31, 2026

Microsoft to upgrade Windows Subsystem for Linux (WSL) with faster file access, better networking and easier setup

Microsoft plans to enhance the Windows Subsystem for Linux (WSL) in 2026, focusing on several key improvements for developers. These enhancements include: - Faster file performance between Linux and Windows to address current latency issues. - Improved network compatibility and throughput for better communication between environments. - A streamlined setup and onboarding experience to simplify installation for newcomers. - Enhanced enterprise management and security features to improve control and safety in corporate settings.

Tech Optimizer

March 30, 2026

Fake Cloudflare CAPTCHA Pages Spread Infiniti Stealer On macOS

Security researchers have identified a new macOS information stealer called Infiniti Stealer, which extracts sensitive information from Mac users using a social engineering tactic known as ClickFix. This method involves a counterfeit Cloudflare human verification page that prompts users to enter a command in their Mac Terminal, allowing the malware to bypass security measures. The infection process consists of three stages: 1. A Bash dropper script downloads and decodes a hidden payload. 2. A Nuitka loader, designed for Apple Silicon Macs, complicates detection by compiling Python code into a native application. 3. The final payload, Infiniti Stealer, harvests personal data such as browser passwords, macOS Keychain entries, cryptocurrency wallets, and captures screenshots. Indicators of Compromise (IOCs) associated with Infiniti Stealer include: - MD5 Dropper: da73e42d1f9746065f061a6e85e28f0c - SHA256 Stage-3: 1e63be724bf651bb17bcf181d11bacfabef6a6360dcdfda945d6389e80f2b958 - C2 Domain: update-check[.]com - C2 URL: https://update-check[.]com/m/7d8df27d95d9 - Panel: Infiniti-stealer[.]com - Packer Magic: 4b 41 59 28 b5 2f fd (KAY + zstd) - Debug Log: /tmp/.bs_debug.log

Winsage

March 13, 2026

These 4 open-source apps fixed Windows’ biggest problems

Windows operating system has evolved over the years, but initially, it often required external tools for tasks like video playback, file compression, secure connections, and file transfers. VLC Media Player addressed the issue of codec compatibility in video playback by bundling its own codecs, making it a widely used media player. 7-Zip improved file compression on Windows by offering superior efficiency, extensive format support, and user-friendly features, becoming essential for archiving tasks. PuTTY provided Windows users with their first effective SSH client, allowing secure terminal connections to remote servers, and remains popular despite Microsoft integrating OpenSSH. FileZilla simplified the process of uploading files to servers with its user-friendly graphical interface, becoming a staple for web developers. Despite improvements in Windows, many users continue to install these open-source applications out of habit due to their reliability and effectiveness.

Winsage

March 6, 2026

Chinese hackers hide malware in Windows and Google Drive to hit targets

Chinese state-sponsored threat actors, specifically a group known as Silver Dragon, have been conducting espionage operations across Southeast Asia and Europe since at least mid-2024. They have targeted government entities in countries such as Russia, Poland, Hungary, Italy, Japan, Myanmar, and Malaysia. Silver Dragon is believed to be affiliated with APT41 and primarily uses phishing emails to initiate attacks, often containing weaponized documents or links. They employ a custom backdoor called GearDoor, which utilizes Google Drive for command-and-control operations, allowing them to exfiltrate stolen intelligence. The group also hijacks legitimate Windows services to load malicious code and uses tools like SSHcmd and Cobalt Strike for post-exploitation activities. Their tactics involve blending malicious activities with normal system operations, making detection difficult and increasing their dwell time within targeted networks.

Winsage

February 17, 2026

How to Uninstall and Reinstall Chrome on Windows 11 Using Winget CMD

Google Chrome can experience performance issues on Windows due to corrupted profiles, extension conflicts, broken updates, and crashes. A complete uninstall and reinstall often resolves these issues, and the Windows Package Manager (Winget) provides a command-line method for this process. To uninstall Chrome using Winget, open Terminal as an administrator and run the command PLACEHOLDER7836d906c03bd8f1. After uninstallation, verify it with PLACEHOLDER30cf24d62406b8ee, then reinstall using PLACEHOLDER76e40aae6965d719. For a clean reinstall, delete the leftover user data folder at PLACEHOLDER142352b706501488. Commands: - Check installed version: winget list Google.Chrome - Uninstall Chrome: winget uninstall Google.Chrome - Verify removal: winget list Google.Chrome - Reinstall Chrome: winget install Google.Chrome - Silent install: winget install Google.Chrome --silent - Delete leftover data: rmdir /s /q "%LocalAppData%GoogleChrome" Before executing commands, ensure Winget is available and updated, and that you have administrator privileges. Backup data by enabling Chrome Sync. Close Chrome completely before uninstalling to avoid process interference. A clean reinstall involves deleting the Chrome user data folder, which removes bookmarks, passwords, and other stored data. Winget is faster and more suitable for scripting and remote management compared to traditional uninstall methods through the Settings app or Control Panel. Common troubleshooting for Winget includes handling errors related to package recognition, installation blocks, and access issues. If uninstalling fails, terminate any running Chrome processes and retry the command. If unsuccessful, use the Settings app for removal and then Winget for reinstallation.

Tech Optimizer

November 12, 2025

Hackers hijacked antivirus features to install malware – here’s what we know

A critical vulnerability identified as CVE-2025-12480 was found in the remote file sharing platform Triofox, characterized by improper access control that allowed zero-day exploitation. Security experts from Google’s Mandiant revealed that Triofox's antivirus feature was compromised, enabling unauthorized access to setup pages post-installation. The UNC6485 threat group exploited this vulnerability using tools like Zoho Assist, AnyDesk, and SSH tunneling for remote access. A patch was released on July 26, and a newer version of Triofox was made available on October 14 to mitigate the risks, with users advised to update their systems.

Winsage

November 11, 2025

“Windows doesn’t really suck” — ex‑Microsoft engineer calls for a ‘Pro Mode’ to cut the clutter

Microsoft discontinued support for Windows 10, pushing users to upgrade to Windows 11 or use the Extended Security Updates (ESU) program. Critics view the ESU as a temporary solution. Windows 11 is reported to be up to 2.3 times faster than Windows 10, but many users are hesitant to switch due to strict hardware requirements and design issues. Approximately 400 million Windows PCs are now unsupported, raising concerns about increased electronic waste. User dissatisfaction with Windows 11 includes issues with AI integration, the Start menu, mandatory Microsoft Account usage, default browser settings, inability to remove CoPilot, frequent ads, and resource-heavy background processes. Former Microsoft engineer Dave Plummer suggested a professional mode for advanced users, proposing features like centralized settings, a default Windows terminal, transparency in telemetry, a predictable update schedule, and a paid professional mode to reduce upselling. Plummer emphasized that current frustrations stem from the user experience being compromised by aggressive marketing tactics.