Security News

A newly discovered custom malware dubbed SockDetour has been found on systems belonging to US defense contractors and used as a backup backdoor to maintain access to compromised networks. SockDetour [.] serves as a backup backdoor in case the primary backdoor is detected and removed by defenders," Unit 42 explained.

Microsoft has finally started testing a new version of Task Manager with users in the Windows Insider Program. Task Manager continues to be one of the most popular tools for Windows and it is the easiest way to identify troublesome apps and end their process.

A new Golang-based botnet under active development has been ensnaring hundreds of Windows devices each time its operators deploy a new command and control server. First spotted in October 2021 by ZeroFox researchers who dubbed it Kraken, this previously unknown botnet uses the SmokeLoader backdoor and malware downloader to spread to new Windows systems.

Microsoft announced the general availability of hotpatching for Windows Server Azure Edition core virtual machines allowing admins to install Windows security updates on supported VMs without requiring server restarts. The feature works with newly deployed Azure virtual machines running Windows Server 2022 Datacenter: Azure Edition Core Gen2 images and is available in all global Azure regions.

Microsoft says the latest released Windows 11 developer build also comes with a series of optimizations for windowed and borderless modes that will "Significantly improve latency," which can drastically reduce input lag and provide a better experience in DX10/DX11 games. Other Windows 11 gaming improvements introduced on Wednesday include Auto HDR and Variable Refresh Rate for a better HDR gaming experience.

Microsoft has released a new Windows 11 build with a long list of improvements and fixes for known issues for all Windows Insiders that will install the Windows 11 Insider Preview Build 22557, now available in the Dev Channel. Probably the most awaited change is the revival of drag and drop support to the taskbar that allows Windows 11 users to drag and drop files between apps by hovering the mouse over their taskbar icons.

Microsoft has released the optional KB5010414 cumulative update preview for Windows 11, with highly anticipated taskbar enhancements and fixes for 19 issues, including printing and driver problems. The cumulative update preview is part of Microsoft's scheduled February 2022 monthly "C" updates, making it possible for Windows 11 users to test the upcoming fixes released on March 8th as part of next month's Patch Tuesday.

Microsoft has released the optional KB5010415 Preview cumulative update for Windows 10 20H2, Windows 10 21H1, and Windows 10 21H2. This update includes a wide variety of bug fixes, including those for Microsoft Edge's Internet Explorer mode, printing, memory leaks, and more. The KB5010415 cumulative update preview is part of Microsoft's January 2022 monthly "C" update, allowing admins to test upcoming fixes to be released in the March 2022 Patch Tuesday.

The public preview for the Android apps for Windows 11 is now live in the US, allowing users to run Android apps natively on the Windows desktop. The feature relies on a new platform called Windows Subsystem for Android that runs Android apps in a virtual machine to provide compatibility with the Android Open Source Project and hardware input devices.

Microsoft is enabling a Microsoft Defender 'Attack Surface Reduction' security rule by default to block hackers' attempts to steal Windows credentials from the LSASS process. While Microsoft Defender block programs like Mimikatz, a LSASS memory dump can still be transferred to a remote computer to dump credentials without fear of being blocked.