steps Archives

Winsage

May 22, 2026

Microsoft Dismantles Fox Tempest: Ransomware Groups Paid Up to $9,500 to Fake Windows Software Signatures

Microsoft's Digital Crimes Unit has filed a lawsuit against Fox Tempest, a criminal enterprise selling fraudulently signed malware to ransomware groups, affecting hospitals, schools, and critical infrastructure in ten countries. The lawsuit was filed on May 19 in the U.S. District Court for the Southern District of New York. Fox Tempest created a portal at signspace[.]cloud, offering a user-friendly interface for uploading malicious files and generating over 580 fraudulent Microsoft accounts to bypass identity verification. The group provided pre-configured virtual machines for customers to upload malicious payloads in exchange for signed binaries. Fox Tempest's operations were linked to a ransomware attack chain involving a counterfeit Microsoft Teams installer that deployed the Rhysida ransomware. This ransomware strain has caused significant breaches, including an October 2023 attack on the British Library, which resulted in a data exfiltration of about 600GB and recovery costs of £6 to £7 million, and a September 2024 attack on Seattle-Tacoma International Airport with a ransom demand of .8 million. Microsoft's civil litigation approach allowed for a quicker legal process, leading to the seizure of the signspace[.]cloud domain and the suspension of around 1,000 Fox Tempest accounts. Despite these actions, Fox Tempest has begun shifting to alternative code-signing services, highlighting the evolving nature of cybercrime and the need for users to verify software through independent channels. The confirmed targets of Fox Tempest included organizations in the United States, France, India, China, Brazil, Germany, Japan, the United Kingdom, Italy, and Spain.

AppWizard

May 22, 2026

Bungie isn’t immediately making Destiny 3, is planning layoffs, reports Bloomberg

Bungie has announced that Destiny 2 will no longer receive live service content updates. There are currently no specific projects greenlit for the Destiny 2 development team. Bungie is transitioning to focus on incubating its next games, with a spin-off titled Payback in the pipeline. The extraction shooter Marathon has launched but has not met sales expectations. Bungie plans to introduce a more casual PvE mode in an upcoming update to attract players from the Arc Raiders community.

Winsage

May 22, 2026

Microsoft brings back personalization to Windows 11

Microsoft is addressing user feedback on Windows 11 by enhancing taskbar and Start menu customization. Users will soon be able to reposition the taskbar to the top or sides of the screen and choose icon alignment. This feature aims to provide more flexibility and improve user experience, particularly for those needing additional vertical screen space. The updates are currently available to Windows Insider Preview participants and can be adjusted in the settings. Additionally, the Start menu will see changes, allowing users to disable sections like Recommended and Pinned, rename the Recommended section to Recent, and choose between small and large sizes for the menu. These enhancements are expected to roll out to all Windows 11 users soon.

AppWizard

May 21, 2026

And Now I’ve Vibe Coded a Native Android Markdown App ⭐

The author developed a Markdown editor using Google AI Studio, initially intending to create a native Android application but ultimately producing a web app. They discovered a feature in Google AI Studio to build an Android app and crafted a prompt for a Markdown editor resembling Typora. The app includes file management, a WYSIWYG editing view, and keyboard shortcuts, with enhancements for hyperlink insertion and theme customization. The author successfully installed the app on a physical device and tested it on different configurations. They noted limitations in the testing capabilities of AI Studio and faced challenges transferring the project to Android Studio due to unclear instructions. The app is functional and feature-rich, but cannot be publicly shared due to the inclusion of a Google API key. Google has indicated that sharing on the Google Play Store will be possible in the future.

AppWizard

May 21, 2026

Google Health 5.0 rolling out with new stats widget on Android

Google Health has started rolling out version 5.0 of the Fitbit app for Android devices, introducing a new homescreen Quick Access Widget that replaces the previous Steps widget. This widget can display up to six different metrics simultaneously and allows users to customize their interface by removing certain elements. It includes a heart icon for direct app access, quick navigation to the Health Coach feature, and indicates the last update time. The update also features a new Google Health icon, phasing out Fitbit branding for software, while Fitbit branding remains for hardware. Version 5.0 is necessary for setting up the upcoming Fitbit Air, with the rollout starting on May 19 and expected to be fully available by May 26.

TrendTechie

May 20, 2026

Мосгорсуд закрыл доступ к советской киноклассике на торент-треккере

The Moscow City Court has ruled against the unauthorized distribution of nearly one hundred Soviet films, following a request from Mosfilm. The ruling targets the torrent tracker torrentino.com, and Mosfilm has 15 days to file a formal lawsuit for a permanent ban on the pirated content. If they do not file, the temporary protective measures will be lifted. The affected films include 94 titles, such as "War and Peace," "The Irony of Fate," and "Solaris." This action follows a prior ruling that blocked access to four Soviet films on rutor.org.

Winsage

May 20, 2026

Microsoft shares mitigation for YellowKey Windows zero-day

Microsoft has addressed the YellowKey vulnerability, a zero-day flaw in Windows BitLocker identified as CVE-2026-45585. This vulnerability allows unauthorized access to BitLocker-protected drives through a specific exploitation process involving 'FsTx' files. The flaw was disclosed by an anonymous researcher known as 'Nightmare Eclipse.' Microsoft has released mitigation strategies, including removing the autofstx.exe entry from the Session Manager's BootExecute REGMULTISZ value and reestablishing BitLocker trust for WinRE. Additionally, users are advised to change BitLocker settings from "TPM-only" to "TPM+PIN" mode, requiring a pre-boot PIN for drive decryption, and to enable "Require additional authentication at startup" for unencrypted devices.

Winsage

May 20, 2026

Microsoft confirms Windows 11’s May 2026 update is failing to install with error 0x800f0922 and outlines a mitigation for affected PCs

Microsoft has acknowledged installation issues with the May 2026 Security Update for Windows 11, specifically error code 0x800f0922, affecting devices on versions 24H2 and 25H2 after installing update (KB5089549) released on May 12. The failures occur during the reboot phase, often around 35 percent, primarily on devices with 10MB or less free space in the EFI System Partition (ESP). For consumer and unmanaged business devices, Microsoft has implemented a Known Issue Rollback (KIR), and restarting the computer may resolve the issue. For managed devices, network administrators must manually deploy a Group Policy workaround. Microsoft suggests modifying a Registry value to decrease reserved padding in the EFI partition as a potential fix, along with restarting the computer and checking for updates. A permanent solution is planned for a future Windows update.

Winsage

May 20, 2026

How To Mitigate The Microsoft Windows BitLocker ‘Angry Hacker’ 0-Day

Microsoft is addressing a zero-day exploit known as YellowKey, identified as CVE-2026-45585, which allows attackers to bypass BitLocker security using a specially crafted USB device. Following the release of exploit code by a hacker named Chaotic Eclipse, Microsoft has issued urgent mitigation advice. Cybersecurity expert Neena Sharma recommends treating this as an active threat and suggests implementing compensating controls, such as restricting USB boot access, until a patch is available. Microsoft has provided guidance for users to protect their systems, including the recommendation to add a PIN to BitLocker protection to reduce the risk of exploitation. Detailed instructions for adding a PIN are included in the advisory. YellowKey has not yet been exploited in the wild but requires physical access to the device.

AppWizard

May 20, 2026

You can now build Android apps in minutes by describing them to Google AI Studio

Google has introduced AI-powered features in Google AI Studio to simplify Android app development. Users can describe their app ideas in plain language, and the AI translates these into functional Android applications via a web browser. The platform generates the app's framework, user interface, and core functionalities using Kotlin and Jetpack Compose, supporting features like GPS, Bluetooth, and NFC. AI Studio includes an in-browser Android Emulator for building and testing apps, along with Android Debug Bridge integration for direct deployment to devices. Currently, the tools are aimed at personal utilities and lightweight projects, with plans for broader sharing options in the future. The platform can automatically create Play Console records, package Android App Bundles, and upload builds for testing, reducing manual steps. Developers can also export projects as zip files for further work in Android Studio or GitHub. Future expansions will include support for Firebase services. Additionally, Google has introduced the "Ask Play" feature for app discovery, allowing users to search using conversational prompts instead of keywords, and plans to integrate Android applications within Gemini interactions across mobile and web platforms.