tar Archives

Winsage

April 24, 2026

Stop installing these 4 apps—Windows does it all now

Windows has evolved to integrate functionalities that were once reliant on third-party applications, such as native support for ZIP files introduced in Windows ME in 2000, and the ability to open and create RAR, TAR, and 7z formats directly from File Explorer. Features like Storage Sense have replaced the need for tools like CCleaner by allowing users to manage temporary files more easily, and the effectiveness of Windows Defender has reduced the necessity for third-party antivirus solutions. Additionally, modern Windows can mount ISO files directly, eliminating the need for applications like Daemon Tools. The trend of operating systems adopting features from third-party applications, known as "Sherlocking," reflects a response to user demands while still allowing for optional third-party solutions.

Tech Optimizer

April 22, 2026

New STX RAT Uses Hidden Remote Desktop and Infostealer Features to Evade Detection

A newly identified remote access trojan, STX RAT, emerged in 2026, integrating hidden remote desktop access with credential theft features. The name "STX" comes from the Start of Text magic byte x02, which it appends to communications with its command-and-control (C2) server. Initial sightings were reported in late February 2026, when it was delivered via a browser-downloaded VBScript file to a financial organization. By early March, Malwarebytes noted a campaign distributing STX RAT through compromised FileZilla installers. Researchers from eSentire’s Threat Response Unit analyzed the malware, which includes extensive anti-analysis measures and employs techniques like AMSI-ghosting. Once operational, STX RAT connects to a C2 server at 95.216.51.236, transmitting system information securely. It targets saved credentials from applications like FileZilla and includes a Hidden Virtual Network Computing (HVNC) module, allowing attackers to control a victim's machine without detection. Security teams are advised to block the C2 IP and implement detection rules to mitigate the threat.

Winsage

April 18, 2026

“A solid list from the community,” as Reddit users highlight 10 open‑source apps that run great on Windows 11 and deserve more attention

Open-source software is becoming increasingly popular among Windows 11 users for its control, privacy, and avoidance of subscription models. Key applications highlighted include: - Firefox: A recommended open-source browser known for its privacy, customization, and performance, with robust extension support and regular updates. - Bitwarden: An open-source password manager that offers encrypted vault syncing across devices, end-to-end encryption, and features like password generation and autofill. - OBS Studio: A standard tool for screen recording and live streaming, praised for its flexibility and hardware acceleration support on Windows 11. - LibreOffice: A comprehensive office suite that provides document, spreadsheet, and presentation tools without subscription fees, supporting common Microsoft Office file formats. - 7-Zip: A file compression utility recognized for its speed and efficiency, offering enhanced security features not present in Windows 11's built-in archive support. - LocalSend: A file transfer tool that allows secure transfers over a local network without needing accounts or cloud services. - GIMP: An open-source image editing tool regarded as an alternative to Photoshop, known for its flexibility and extensive customization options. - Blender: An advanced open-source application for 3D modeling, animation, and video editing, benefiting from strong GPU acceleration on Windows 11. - PowerToys: A suite of productivity utilities for Windows 11 that enhances core features with tools like FancyZones and PowerRename. These applications are favored for their ability to enhance the user experience while prioritizing control, transparency, and long-term usability.

AppWizard

March 24, 2026

Death Stranding 2 was my Game of the Year in 2025, and now on PC, it’s my GOTY for 2026

Death Stranding 2 has been released on PC after its initial launch as a PS5 exclusive. The game continues the story of Sam Porter Bridges, who is now raising his adopted daughter Lou while attempting to connect Australia to the chiral network. Players can unlock new gear and contribute to shared constructions, enhancing gameplay and fostering a sense of community. The game blends various genres and features a narrative with elements reminiscent of Metal Gear Solid. It includes a soundtrack by Woodkid, replacing Low Roar, and is available for .99 / £62.99 on Fanatical, providing a Steam key.

AppWizard

March 18, 2026

Death Stranding 2 is the first Decima game with Ray Tracing on PC

Death Stranding 2: On the Beach will feature Ray Tracing effects on PC, making it the first title using the Decima engine to support this technology. The integration of Ray Tracing by Nixxes will enhance visual fidelity through improved reflections and ambient occlusion. These features were not included in the initial PC specifications, indicating increased CPU and GPU demands. The game will feature returning characters Norman Reedus, Léa Seydoux, and Troy Baker, as well as new additions Elle Fanning, Shioli Kutsuna, and director George Miller. It will offer features such as uncapped framerates, ultrawide monitor support, DualSense controller compatibility, and various PC upscalers. The release date is set for March 19th, with pre-orders available but no review codes yet provided.

AppWizard

March 7, 2026

Minecraft Dungeons GitHub allegedly leaked online

Several posts on X suggest that a large amount of Minecraft Dungeons content is available for download, accompanied by screenshots with obscured details. The file linked to these claims is named spice.tar.bz2 and is 73.8 GB in size, leading to speculation that it contains significant content. The term "spice" is associated with "Project Spicewood," a potential follow-up to Minecraft Dungeons, although Mojang has not confirmed any such project. A recent Reddit post referenced a leaked developer mockup test mentioning both Dungeons and Spicewood materials. Additionally, a YouTube video based on leaked source code from 2016 and 2017 has gained significant views. These developments come shortly after reports of DMCA takedowns related to other Minecraft leaks. The authenticity of the latest file remains unverified, and caution is advised when encountering unofficial files due to potential security risks.

AppWizard

February 25, 2026

Death Stranding 2 was my Game of the Year for 2025, and it’s coming to PC with a major discount, too

The author expresses strong emotional reactions while playing Death Stranding 2, describing it as their personal Game of the Year after experiencing it on PS5. The game features Sam Porter Bridges, who is drawn back into action to connect chiral network terminals in Mexico after a tragedy. Players navigate diverse terrains and can unlock new vehicles and upgrades. The gameplay shifts towards a more action-oriented style, introducing weapons and the ability to capture BTs. The narrative is emotionally compelling, blending bizarre and poignant moments. The game is available for pre-order at Fanatical for .49 / £59.49, with a 15% discount using the code FANATICAL15. The author looks forward to experiencing the PC version and its graphics.

Winsage

December 18, 2025

China-Aligned Threat Group Uses Windows Group Policy to Deploy Espionage Malware

A newly identified cyber threat cluster called LongNosedGoblin has been linked to cyber espionage attacks targeting governmental entities in Southeast Asia and Japan, with activities traced back to at least September 2023. The group uses Group Policy to spread malware and employs cloud services like Microsoft OneDrive and Google Drive for command and control. Key tools include NosyHistorian, NosyDoor, NosyStealer, NosyDownloader, and NosyLogger, which perform functions such as collecting browser history, executing commands, and logging keystrokes. ESET first detected LongNosedGoblin's activities in February 2024, identifying malware on a governmental system. The attacks showed a targeted approach, with specific tools affecting select victims. Additionally, a variant of NosyDoor was found targeting an organization in an EU country, indicating a possible connection to other China-aligned threat groups.

Winsage

December 1, 2025

5 Essential Windows Apps Everyone Should Be Using In 2025

Everything is a free application from Voidtools that indexes file and folder names quickly, allowing searches of up to a million files in a minute. It can index mapped network drives and supports Boolean operators and wildcards for advanced search needs. Flow Launcher is an open-source application that serves as a quick launcher and search utility, integrating with Everything for fast file searches and allowing users to open applications, search for files, and perform calculations from a single interface. NanaZip is an open-source archive manager derived from 7-Zip, supporting various archive formats and offering faster processing times, improved encryption, dark mode, and context menu integration. Microsoft PowerToys is a suite of utilities for power users that includes tools like Command Palette, PowerRename, and FancyZones, available for free from the Microsoft Store. Ferdium is an open-source tool that consolidates web applications into a single platform, allowing users to manage multiple web apps within one window, supporting multiple instances of the same app and offering workspace management and a built-in To-do list panel.

Winsage

October 31, 2025

Windows LNK UI Spoofing Vulnerability Weaponized for Remote Code Execution

A cyber espionage campaign targeting European diplomatic institutions has been attributed to the Chinese-affiliated threat actor UNC6384, which exploits the ZDI-CAN-25373 vulnerability in Windows shortcut files. The campaign, noted for its use of social engineering tactics that mimic legitimate diplomatic events, has specifically targeted entities in Hungary, Belgium, and surrounding European nations between September and October 2025. The attack utilizes spearphishing emails with malicious LNK files related to European Commission and NATO meetings, leading to the deployment of PlugX, a remote access trojan. The attack chain involves a weaponized LNK file that executes PowerShell commands to unpack a tar archive containing a malicious DLL and an encrypted payload. UNC6384 employs advanced techniques to evade detection, including dynamic loading of Windows API functions and anti-analysis measures. The malware allows extensive espionage activities and creates hidden directories for persistent access. Recommendations for organizations include disabling automatic LNK file resolution, blocking known command and control domains, and enhancing user training to defend against such threats.