statuses Archives

Winsage

March 26, 2025

New Windows 0-Day Vulnerability Let Remote Attackers Steal NTLM Credentials

A critical vulnerability affecting various Windows operating systems, including Windows 7, Server 2008 R2, Windows 11 v24H2, and Server 2025, allows attackers to capture NTLM authentication credentials through interactions with malicious files in Windows Explorer. Exploitation can occur when users open shared folders, insert USB drives with malicious files, or view downloaded files. The vulnerability is similar to a previously patched flaw (CVE-2025-21377) but has not been fully documented. Security researchers have developed micropatches available for free until Microsoft releases a permanent fix. These micropatches support a wide range of Windows versions, including legacy and currently supported systems. The micropatches have been automatically distributed to affected systems with the 0patch Agent installed.

Winsage

March 26, 2025

New Windows 0-Day Vulnerability Let Remote Attackers Steal NTLM Credentials

A critical vulnerability affects all Windows operating systems from Windows 7 to Windows 11 v24H2 and Server 2025, allowing attackers to capture NTLM authentication credentials through malicious files viewed in Windows Explorer. Exploitation can occur when users open shared folders, insert USB drives with malicious files, or view previously downloaded files. The vulnerability is similar to a previously patched flaw (CVE-2025-21377) but has not been publicly documented. Security researchers have developed micropatches through 0patch to temporarily mitigate the issue, which will be available at no cost until Microsoft releases a permanent solution. The micropatches support various Windows versions, including legacy and currently supported systems, and can be automatically deployed without requiring system reboots.

Winsage

March 10, 2025

Announcing Windows 11 Insider Preview Build 26120.3380 (Dev and Beta Channels)

Windows 11 Insider Preview Build 26120.3380 (KB5053660) has been released for the Dev and Beta Channels. Updates for the Beta Channel based on Windows 11, version 24H2 will initially be optional but will become recommended later this year. Users in the Dev Channel can switch to the Beta Channel while the 24H2 updates are being released, but this option will close as the Dev Channel progresses. New features include: - Recommended files in File Explorer for personal Microsoft or local accounts. - Real-time translation to Chinese (Simplified) on AMD and Intel-powered Copilot+ PCs. - Snap group recommendations in the Start menu. - Enhanced web search support for the EEA. - Toast notifications prompting users to add a secondary email or recovery phone number. - Dynamic and interactive widgets for web developers. - A new system tray icon for easier access to emojis and more. - New "top cards" in Settings > System > About displaying key PC specifications. Fixes include improvements to accessibility in File Explorer, resolution of Snap Bar display issues, and fixes for crashes in Settings and typing capabilities. Known issues involve inaccurate build version display post-PC reset and issues with Recall snapshots on managed PCs. Beta Channel updates will be delivered via an enablement package, and features may appear in the Beta Channel before the Dev Channel.

AppWizard

March 6, 2025

Abode launches Apple TV app and upgrades Android TV experience

Abode has introduced an Apple TV app and an updated Android TV app to enhance its smart home security ecosystem. The Apple TV app allows users to manage their security systems, arm and disarm them, check device statuses, and view live feeds from up to four cameras, including the Abode Video Doorbell. It also provides access to recorded video clips and quick actions through Abode CUE. The app supports user-friendly sign-in options. The upgraded Android TV app offers similar functionalities, allowing users to stream live feeds, review recorded clips, and manage devices, though the layout may differ slightly from the Apple TV version. Both apps are available for download from their respective app stores. Abode offers a range of self-installed home security systems, including various cameras and additional sensors for customization.

Tech Optimizer

February 27, 2025

What’s New in Postgres Pro Enterprise 17: From Proxima to Intelligent Data Management

Proxima integrates connection pooling, query proxying, and load balancing into the Postgres Pro Enterprise DBMS, enhancing efficiency and minimizing latency. It establishes multiple connections for client sessions, optimizes resource usage, and alleviates server burdens. Proxima redirects client queries to the leader node in a BiHA cluster, automating cluster topology management. Load balancing is under development to prevent overload on replicas. The pgpro_queue extension facilitates asynchronous message processing directly within the database, ensuring transactionality, prioritization, filtering, and reliable message storage. Postgres Pro 17 Enterprise introduces enhanced query plan management tools, including the pgpro_multiplan extension for storing multiple execution plans and a query registration assistant for managing queries. Adaptive Query Execution (AQE) and Adaptive Query Optimization (AQO Enterprise) improve complex query execution by dynamically rescheduling long-running queries and correcting planner errors based on execution history. Security enhancements include the pgpro_usage extension for tracking database object usage and identifying unnecessary access rights. The pgpro_ilm extension automates storage optimization by relocating rarely accessed data and compressing it. Infrastructure improvements include BiHA enhancements, multimaster support, and improved management of partitioned tables, along with the updated PPEM 2.0 for better UI and automatic instance tuning.

Tech Optimizer

February 25, 2025

Avast to pay $16.5 million to antivirus software users: How to claim, deadline, and other details

Avast has reached a settlement with the FTC, agreeing to pay .5 million to users due to allegations of misleading privacy claims while collecting and selling user data through its subsidiary, Jumpshot. Approximately 3,690,813 consumers who purchased Avast's antivirus software between August 2014 and January 2020 are eligible for compensation. Eligible consumers must file claims by June 5, 2025, and refunds are expected to be processed by mail in 2026. Payments will vary based on the number of claims submitted.

Winsage

February 24, 2025

TSforge New Tool Bypasses Windows Activation on All Versions

TSforge is a new exploit developed by researchers that can activate all versions of Windows from Windows 7 onward, as well as all Office versions since Office 2013. It utilizes a technique called the "CID trick," which modifies the CID validation code in sppobjs.dll to allow the use of a counterfeit CID for activation. This activation persists even after service restarts. The researchers identified key locations for activation data storage, including specific files and registry keys that form the "trusted store." They used leaked Windows beta builds to understand the spsys.sys driver and reverse-engineered components to extract private RSA keys for decrypting and re-encrypting the activation data. TSforge can activate any Windows edition without debuggers or kernel exploits and bypasses hardware ID validation and the PKEY2005 encoding system.

Winsage

February 22, 2025

Announcing Windows 11 Insider Preview Build 26120.3291 (Dev and Beta Channels)

Windows 11 Insider Preview Build 26120.3291 (KB5052080) has been released for the Dev and Beta Channels, introducing enhancements for Snapdragon-powered Copilot+ PCs. Key updates include an improved Windows Search feature that allows users to find cloud-stored files directly from the taskbar search box and a refined Recall (Preview) experience, which will delete previous snapshots but continue saving new ones if enabled in Settings. For Beta Channel users, the same updates are available as optional upgrades, with plans to make them recommended later this year. Insiders can switch from the Dev to the Beta Channel while both channels share identical build numbers, but this option will close once the Dev Channel progresses to higher build numbers. The improved Windows Search feature supports finding cloud-stored photos by describing them, available for users signed into OneDrive with a personal Microsoft account. Support for third-party cloud providers is expected soon. The update also includes fixes for live captions, File Explorer reliability, and issues with Remote Desktop. Known issues include inaccuracies in build version display after a PC reset and problems with Recall not saving snapshots automatically. An update to the Snipping Tool introduces a new trim feature for screen recordings, allowing users to adjust start and end times.

Winsage

February 4, 2025

Discord now runs on Windows 98 (and even Windows 95) with this unofficial client

Discord Messenger, developed by iProgramInCpp, is a free messaging client compatible with Discord that can run on legacy Microsoft operating systems, including Windows 95 and 98. It officially supports Windows 2000 and newer. The client retains much of Discord's core functionality but lacks features like dark mode, nickname changes, channel muting, user notes, custom statuses, and voice channel access. Key functions such as sending friend requests and server access are not available due to potential violations of Discord's terms of service and risks of account suspension. Installation files and instructions are available on GitHub, and a dedicated Discord server exists for user engagement.

Tech Optimizer

December 10, 2024

How Firmex used AWS SCT and AWS DMS to move 65,000 on-premises Microsoft SQL Server databases to an Amazon Aurora PostgreSQL cluster

Firmex is a provider of Virtual Data Rooms, opening over 20,000 new rooms annually and focusing on security and availability for clients during due diligence processes. The company previously managed around 65,000 databases across four Microsoft SQL Servers but faced challenges related to database limits, backups, and licensing terms. In 2020, engineers recognized they were nearing the maximum database limit and shifted from a database-based isolation model to a schema-based isolation approach using PostgreSQL. This transition involved collaboration with AWS to utilize Aurora PostgreSQL-Compatible Edition, which offered better performance and cost-effectiveness. The migration process required extensive work, including converting stored procedures and addressing data migration challenges such as endpoint and task limits with AWS DMS. Firmex's engineers developed custom tooling to manage the migration effectively, ensuring minimal downtime for customers. Post-migration, they have seen improved performance and reduced operating costs, with ongoing efforts to optimize their PostgreSQL utilization further.