Windows File Explorer

Winsage
July 24, 2025
Microsoft is testing new features for its Phone Link application to improve integration between Android devices and Windows PCs. Upcoming updates will allow users to remotely lock their PC and access its clipboard from an Android device. Users must enable specific features in Windows settings to utilize these functions, such as using an Android phone as a webcam or accessing files through Windows File Explorer. Recent observations indicate a new toggle for accessing the PC's clipboard, enabling a connected Android phone to retrieve text and images copied on the PC, though this feature currently works only in one direction. Two-way clipboard synchronization options are available through SwiftKey and Phone Link, but the latter is not available for Google Pixel devices. The Link to Windows app is also being enhanced, including a history of copied items and a remote lock PC button, which requires enabling the "Remote PC controls" toggle.
Winsage
July 23, 2025
Microsoft is enhancing its Phone Link application to allow users to remotely lock their PCs and access clipboard content from their Android devices. The updated Phone Link will enable users to access text and images copied to their PC’s clipboard from their Android phones. This feature is particularly beneficial for Google Pixel users, who have historically lacked cross-device sync capabilities. Users can connect their Android phones to a Windows PC via Phone Link, but not all features are activated by default; manual activation is required through Windows Settings. For Insider Preview Builds, a new “access PC’s clipboard” toggle facilitates one-way syncing of clipboard content from the PC to the phone. The updated Link to Windows app also includes a clipboard history feature and a “lock PC” button for remote security.
Winsage
July 23, 2025
Microsoft is enhancing its Phone Link application to allow users to remotely lock their PCs and access clipboard content from Android devices. Users need to manually activate features like using the phone as a webcam or accessing files through Windows File Explorer. The new clipboard feature allows connected Android phones to retrieve text and images copied on the PC, but it currently syncs content only from the PC to the phone. This feature is especially beneficial for Pixel users, who previously lacked seamless clipboard integration. The app also includes a lock PC button for remote security, which requires activation in Windows settings.
Winsage
July 21, 2025
The application "Files" has released an update (version 3.9.12) that introduces a new feature called the Omnibar. This feature combines breadcrumb navigation with search functionality, enhancing the user interface. Key capabilities of the Omnibar include: - Breadcrumb Bar: Displays the current path with expandable breadcrumbs for easy navigation through subfolders, along with a new home button and flyout menu for quick access to frequently used folders. - Edit Path: Allows users to switch to edit mode by clicking an empty space in the breadcrumb bar or using the Ctrl + L shortcut, enabling easy copying or modification of the current path. - Command Palette: Access to advanced commands is simplified with a dedicated button or the Ctrl + Shift + P shortcut. - Search Functionality: Activated by clicking the search icon or pressing Ctrl + F, the search box is focused automatically, with search suggestions appearing in a flyout. The update also includes a filter button for toggling between search and filtering modes and offers seamless integration with OX Drive. The Preview build is available for download on the Files website.
Winsage
June 25, 2025
Researcher mr. d0x has introduced a new variant of the ClickFix social engineering tool called FileFix, which uses the Windows File Explorer address bar as its interface to deceive users into executing harmful commands. FileFix targets corporate employees and employs familiar elements like reCAPTCHA prompts or error messages to spread malware, including infostealers and ransomware. The method integrates malicious commands directly into Windows File Explorer, enhancing its effectiveness by utilizing the environment users are comfortable with. The phishing scheme includes a deceptive ‘Open Fixe Explorer’ button that activates File Explorer and copies a PowerShell command to the clipboard, initially displaying a fake path in the address bar. ClickFix tactics are effective because they manipulate victims into compromising their own security, often exploiting urgency and existing online behaviors. Users are advised to be cautious of verification pop-ups and requests to open command windows, and to share this knowledge to help others navigate safely.
Winsage
June 25, 2025
A newly identified exploit called "FileFix" manipulates Windows File Explorer to execute harmful commands while remaining within a web browser. Developed by security researcher mr.d0x, it builds on the ClickFix social engineering attack. FileFix uses the file upload feature on websites, prompting users to copy a malicious PowerShell command disguised as a file path. When users paste this path into the File Explorer address bar, it executes the command without their knowledge. The attack exploits familiar workflows, bypassing user skepticism and does not require elevated privileges or complex malware. Security experts warn that FileFix could enable the delivery of infostealers, ransomware, or other malware, posing a significant risk to individuals and organizations. Users are advised to be cautious of instructions to copy and paste file paths from unfamiliar sources, monitor for suspicious processes initiated by browsers, and keep security software updated.
Winsage
June 25, 2025
The threat operation TAG-140, linked to Pakistani hacking groups Transparent Tribe and SideCopy, is targeting Indian defense organizations using advanced social engineering tactics, specifically ClickFix methods. They have deployed the enhanced DRAT V2 remote access trojan, which allows for more effective infiltration and control over targeted networks. Experts recommend that organizations, particularly in critical sectors like defense, improve their cybersecurity measures in response to these evolving threats.
Winsage
June 24, 2025
A cybersecurity researcher named mr.d0x has introduced a new attack method called FileFix, which is a variant of the ClickFix social engineering attack. FileFix allows malicious actors to execute harmful commands on a victim's system through the Windows File Explorer address bar, rather than using the traditional method of pasting commands into PowerShell. The attack still relies on a phishing page, which masquerades as a notification about a shared file, prompting users to paste a path into File Explorer. Attackers can conceal the malicious PowerShell command by embedding it within a dummy file path in a comment, making it invisible in the address bar. Mr.d0x has also implemented measures in the proof-of-concept code to prevent users from selecting files during the attack. The ClickFix method has been effective in deploying malware, including ransomware and state-sponsored operations, with notable examples involving the North Korean hacker group Kimsuky and cybercriminals impersonating Booking.com. FileFix represents an evolution in phishing attacks by providing a more user-friendly interface for executing commands.
Winsage
June 18, 2025
Many users find it frustrating to preview images or files in Windows File Explorer, as they often open in a separate program, hindering productivity. The Peek Utility, part of Microsoft’s PowerToys for Windows 10 and 11, offers a solution. PowerToys is a suite of 22 system utilities designed for power users to enhance productivity and customize the Windows experience. To use the Peek Utility, download and install Microsoft PowerToys, select a file, and press Ctrl + Space to activate the preview. Users can navigate through files using the arrow keys or highlight multiple files before using the shortcut.
Winsage
May 28, 2025
File Explorer in Windows 11 has usability issues, particularly with sluggish search functionality and problems accessing networked drives. Users often experience drives disappearing after reboot, inaccessibility to files, and freezing of File Explorer, with error codes like c0000375 indicating deeper issues. The networked drive feature relies on outdated technology, as Microsoft has deprecated older protocols like SMBv1, complicating file sharing. Users can mitigate freezing by restarting File Explorer and ensuring network settings are correctly configured, such as setting Wi-Fi to private and enabling file sharing options. Excessive pinned items in Quick Access can cause crashes, and clearing the cache may resolve these issues. Alternatives to File Explorer, like XYplorer and File Pilot, can provide better access to networked drives. Overall, the challenges stem from outdated technology and the corruption of the Quick Access cache, with third-party solutions available for relief.
Search