Surface Archives

Winsage

February 20, 2025

The Surface you know and love (or hate) is dead — Microsoft’s Windows hardware enters a new era

The Surface division at Microsoft has experienced significant internal changes over the past 18 months, including the departure of Panos Panay and new leadership. This has led to a strategic refocusing of the Surface portfolio, moving away from experimental hardware designs to more conventional offerings aimed at a broader audience. The company has discontinued extravagant devices like the Surface Studio and Surface Duo, favoring products that resonate with business customers and general consumers. Last year, Microsoft introduced AI-powered Windows computers known as Copilot+ PCs, which emphasize continuity and refinement of established designs rather than radical innovations. The Copilot+ PC initiative has allowed Windows on Arm to demonstrate its viability, with Snapdragon chips competing effectively in the Windows ecosystem. Surface continues to play a crucial role in shaping the Windows ecosystem, but with a more cautious approach that prioritizes ecosystem health over creating new markets. Future form factor experimentation will likely be delegated to OEM partners, while Microsoft focuses on transitioning users to Windows 11 and promoting Copilot+ PCs. Stakeholders can expect a steady stream of sensible Surface devices and incremental updates in the near future.

Winsage

February 19, 2025

The latest Windows 11 update did not end support for older Intel chips. Here’s the source of the confusion.

Windows 11 has stringent minimum requirements, leaving many PCs unable to upgrade. A Microsoft support document caused confusion by excluding several Intel 8th, 9th, and 10th Gen processors, leading to speculation about their support status. However, there are no new devices being produced with processors older than Intel's 11th Generation, so the changes are unlikely to affect many users. Even if a PC has an unsupported processor, it may still upgrade to Windows 11 if it meets other minimum requirements. The document is intended for OEMs to determine which processors can be used in new devices and does not impact existing Windows support for consumers. The list of Intel 8th, 9th, and 10th Gen chips eligible for upgrading remains unchanged, and devices must comply with all minimum requirements, including TPM 2.0. Recent updates were misreported, primarily affecting OEMs without requiring significant changes to their strategies.

AppWizard

February 19, 2025

Today’s Android app deals and freebies: Sun Origin Apocalypse, Front Armies, Halls of Torment, more

The Google Play Store is offering discounts on Android games and applications. Samsung devices are also discounted, with the Galaxy Watch 7 seeing a price drop, and the Galaxy Tab S10+ and Ultra models available at significant markdowns. Notable audio accessories include Nothing’s transparent ANC wireless earbuds and Sharge’s 30W Pouch Mini 10,000mAh power bank. ASUS has a discount on an alternative to the Surface Pro 11. Some discounted app titles include "The Sun Origin Post Apocalypse," "Front Armies," and "Halls of Torment."

BetaBeacon

February 18, 2025

Today’s Android app deals and freebies: Dead Cells, Lovecraft’s Untold Stories, ELOH, more

- Today's roundup includes Android game and app deals, as well as launch day deals for the new Wear OS 5 OnePlus Watch 3. - There is a discount on the Galaxy S10+ and deals on Lenovo's Snapdragon X Plus IdeaPad 5x Copilot+ PC and the Surface Pro 11 Snapdragon X Elite Copilot+ PC. - Popular app deals include Dead Cells, Lovecraft's Untold Stories, ELOH, Sentinels of the Multiverse, and more.

AppWizard

February 16, 2025

Best Minecraft Biomes to Build the Castle of Your Dreams | Esports News – The Times of India

Minecraft features various biomes suitable for castle construction, each with distinct terrain, resources, and challenges: 1. Plains Biome: Flat terrain simplifies building; rich in food resources but may be exposed to mob attacks. 2. Mountain Biome: Offers natural defense and panoramic views; stone is accessible, but uneven surfaces can complicate construction. 3. Forest Biome: Provides concealment and abundant wood; dense foliage can hinder space clearing for construction. 4. Taiga Biome: Features towering spruce trees for a medieval atmosphere; wolves provide security, but snowy terrain can impede movement. 5. Savanna Biome: Flat land with gentle hills aids construction; unique orange acacia wood enhances decor, and villages offer trading opportunities. 6. Desert Biome: Ideal for Egyptian or Arabian-style castles; limited trees reduce hiding spots for mobs but require longer resource collection journeys. 7. Snowy Biome: Creates a winter landscape with polar bears; challenges include freezing water and slow movement through snow. Choosing the best biome depends on personal style and survival needs, as each offers unique aesthetics and challenges.

Winsage

February 14, 2025

This Surface Laptop 7 with Snapdragon is “basically perfect,” and it’s almost half the price of the Surface Laptop 7 with Intel

Microsoft's Surface Laptop 7 is currently priced at 9.99, reflecting a 0 reduction from its standard retail price due to President's Day sales. It features a Snapdragon X Plus processor, 16GB of RAM, and 256GB of storage. The laptop has received a perfect score in reviews for its design, keyboard, display, and performance. It has undergone a design refresh that allows for easier repairs, with replaceable components available for purchase from Microsoft. The Snapdragon processors provide exceptional battery life and performance, making the Surface Laptop 7 a cost-effective choice compared to the entry-level Intel variant, which retails at ,499.99.

Winsage

February 13, 2025

Russian Hackers Leverages Weaponized Microsoft KMS to Hack Windows Systems

The Russian state-sponsored hacking group Sandworm, affiliated with the GRU, has been using pirated Microsoft Key Management Service (KMS) activation tools to infiltrate Ukrainian Windows systems since late 2023. They distribute a harmful ZIP file named “KMSAuto++x64_v1.8.4.zip” on torrent platforms, which, when executed, deploys the BACKORDER loader and disables Windows Defender. The BACKORDER loader then downloads the Dark Crystal Remote Access Trojan (DcRAT) from attacker-controlled domains, allowing data theft, including keystrokes and browser credentials. The campaign exploits Ukraine's high prevalence of unlicensed software, estimated at 70% in the public sector, increasing vulnerability to cyberattacks. Researchers have linked this activity to Sandworm through shared infrastructure and tactics, highlighting its role in Russia's hybrid warfare strategy against Ukraine. Cybersecurity experts recommend avoiding pirated software and implementing robust security measures to mitigate these threats.

Winsage

February 12, 2025

You Should Install This Windows Security Patch Right Away

Microsoft's February 2025 Patch Tuesday security update addresses 55 security vulnerabilities across the Windows platform, including: - 22 remote code execution vulnerabilities - 19 elevation of privilege vulnerabilities - 9 denial of service vulnerabilities - 3 spoofing vulnerabilities - 2 security feature bypass vulnerabilities - 1 information disclosure vulnerability Among these, four vulnerabilities are classified as critical zero-day vulnerabilities, with two requiring immediate attention. 1. CVE-2025-21194: A security feature bypass vulnerability related to Microsoft Surface devices, potentially allowing unauthorized access to Windows virtual machines. 2. CVE-2025-21377: An NTLM hash disclosure spoofing vulnerability that could allow attackers to retrieve plain-text passwords by interacting with a malicious file. The other two zero-day vulnerabilities confirmed to be actively exploited are: 1. CVE-2025-21391: A Windows storage elevation of privilege vulnerability that enables deletion of targeted files on a user's computer. 2. CVE-2025-21418: A vulnerability that allows attackers to gain elevated system privileges within Windows. Users are advised to install the patch promptly to protect their systems.

Winsage

February 12, 2025

Microsoft takes it easy on February’s Patch Tuesday

Microsoft released a total of 63 patches in February, including six previously released ones. Two vulnerabilities, CVE-2025-21418 (CVSS 7.8) and CVE-2025-21391 (CVSS 7.1), are actively exploited and require local access and authentication for exploitation. CVE-2025-21418 affects the Windows Ancillary Function Driver for Winsock, allowing attackers to gain SYSTEM-level privileges on Windows 10, 11, and various Windows Server versions. CVE-2025-21391 affects Windows Storage, enabling local attackers to delete files under certain conditions. Two publicly known vulnerabilities, CVE-2025-21194 (CVSS 7.1) and CVE-2025-21377 (CVSS 6.5), have not yet been exploited. CVE-2025-21194 exposes PCs to potential hypervisor and secure kernel compromises, while CVE-2025-21377 risks leaking a user's NTLMv2 hash with minimal user interaction. CVE-2025-21198, rated at CVSS 9.0, allows remote code execution in high-performance computing infrastructures, requiring network access to a targeted HPC cluster. Excel users should address five patches rated at 7.8, particularly CVE-2025-21381, which has potential for remote code execution through local attack vectors. As of February 11, administrators must configure the StrongCertificateBindingEnforcement registry key on domain controllers to avoid transitioning to Full Enforcement mode by February 2025. CVE-2025-21177 (CVSS 8.7) has been fully mitigated by Microsoft. Adobe released 45 updates, with 31 addressing vulnerabilities in Adobe Commerce, and critical patches for InDesign and Illustrator. SAP issued 21 patches affecting NetWeaver and addressing cross-site scripting issues. Fortinet released security updates for various products, including a critical authentication bypass vulnerability in FortiOS and FortiProxy (CVSS 9.6).

Winsage

February 12, 2025

Russian military hackers deploy malicious Windows activators in Ukraine

The Sandworm group, a Russian military cyber-espionage entity, has intensified attacks on Windows users in Ukraine by distributing trojanized Microsoft Key Management Service (KMS) activators and counterfeit Windows updates since late 2023. Threat analysts at EclecticIQ have linked these activities to Sandworm through overlapping infrastructure and consistent tactics. The attackers use a BACKORDER loader to deploy DarkCrystal RAT (DcRAT) malware, with evidence of Russian military involvement indicated by debug symbols from a Russian-language build environment. Seven distinct malware distribution campaigns have been cataloged, with the latest incident on January 12, 2025, involving DcRAT during data exfiltration attacks. The counterfeit KMS tool installs a deceptive activation interface while secretly loading malware and disabling Windows Defender. The malware captures sensitive information, including keystrokes and saved credentials, and transmits it to the attackers' servers. Sandworm exploits the prevalence of pirated software in Ukraine, posing a significant threat to national security and critical infrastructure. The group has been active since at least 2009 and operates under Military Unit 74455 of the GRU, focusing on disruptive attacks against Ukraine.