By continuing to use the site or forum, you agree to the use of cookies, find out more by reading our GDPR policy

Microsoft has officially released the final build of Windows 10 2004 to Insiders in the Release preview ring and plans on releasing it to everyone in May as the "May 2020 Update". On Tuesday, Microsoft released the Windows 10 10 2004 version 19041.207 to Insiders on the Slow ring and have announced today that this is the final build to be released to all users in May. Starting today, Windows 10 2004 19041.207 has been moved to the Release preview ring so it can be further tested in production environments before the final release in May. "We are now getting the Windows 10 May 2020 Update (20H1) ready for release and releasing Build 19041.207 to Windows Insiders in the Release Preview ring. We believe that Build 19041.207 is the final build and we will continue to improve the overall experience of the May 2020 Update on customers’ PCs as part of our normal servicing cadence," Microsoft's announcement on the Windows Insider blog stated. As part of this rollout, only 50% of the Windows Insiders in the Release ring will receive the final build automatically at first. Other Insiders in the Release ring can perform a manual Windows Update check to download and install the May 2020 Update. Microsoft is offering businesses who are testing the May 2020 Update in their organization free support for severe issues that are discovered. "This support offering is intended to help resolve issues with business use case scenarios and is limited to Windows 10 Enterprise and Pro editions customers. Microsoft states that there are known issues with Windows Mixed Reality on Windows 10 2004 and that users of this technology should hold off on installing the update until a fix is released. If you run into a severe issue that prevents you or other users in your organization from using a device or compromises the security of personal data, you can use our online form to request assistance directly from Microsoft Support¬—at no cost to you," Microsoft offers. Microsoft states that there are known issues with Windows Mixed Reality on Windows 10 2004 and that users of this technology should hold off on installing the update until a fix is released. Compared to previous Windows 10 feature updates, Windows 10 1909 November 2019 Update was more of a service pack than a new feature-rich version. The Windows 10 2004 (20H1) release will feel more like a feature update with a variety of new features such as a new optional update experience, improved Task Manager, a new Cortana experience, improved Windows Search, and more. Learn more by heading to OUR FORUM.

China fears that once the coronavirus pandemic has passed, Britain will reconsider allowing Huawei to help operate its 5G telecommunications network. The top line: Huawei's access is crucial for China's influence and its ability to conduct espionage. But Beijing's coronavirus lies have fueled British concerns about entrusting Huawei with critical infrastructure. Which explains, then, why Huawei's vice president, Victor Zhang, has just published an open letter urging Britain to stick by its original decision. Fittingly, Zhang's opening and closing sentences carry the Chinese government's favorite propaganda line of the moment: that it is "only by working together" that we can beat the coronavirus. Of course, the "working together" narrative isn't actually about encouraging global cooperation, but rather about discouraging any criticism of China as some kind of attack on humanity. Zhang also laments the "groundless criticism from some about Huawei’s involvement in the U.K.’s 5G rollout ... without presenting any evidence." Seeing as how Huawei is a corporate agent of the Chinese Communist Party, and that its software is designed to provide deniable signal intercept-interact capabilities, Zhang's lamentations ring somewhat hollow here. Regardless, the Huawei executive has good reason to be concerned. In January, British Prime Minister Boris Johnson's Conservative government authorized Huawei to build out noncritical areas of Britain's 5G network. That decision reflected a U.K. Joint Intelligence Committee assessment that limited Huawei 5G access was compatible with British security. But according to The Guardian, the U.K. intelligence community is now pushing for increased restrictions on Chinese access to cutting edge research. First, China's deception over the original coronavirus outbreak in Hubei province isn't the key motive for the shifting U.K. attitude here. Instead, this harder line reflects Joint Intelligence Committee assessments (supported by U.S. intelligence sharing) that Chinese intellectual property theft poses an increasingly unacceptable threat to priority British security and economic interests. This is largely down to Chinese cyber-espionage activities and the deployment of Chinese Ministry of State Security and People's Liberation Army intelligence officers and agents to infiltrate British companies and research institutions. Learn lots more by signing onto OUR FORUM.

Throughout the 1990s, Microsoft developers were in a race of one-upmanship to produce the most elaborate secret “Easter eggs.” These included games of pinball, racing, and even flight simulators, all hidden within Office and Windows. Let’s take a look back at some of the best. “Easter eggs” are developer credits, silly features, or inside jokes hidden in software. Because you can only access these through a series of arcane steps resembling an Easter egg hunt, that’s how they got their name. Easter eggs were a sly, fun way for authors to secretly immortalize themselves in their work, even if individual programmer credits were discouraged for the sake of company unity. Microsoft’s history with software Easter eggs began as far back as the Commodore PET BASIC in the 1970s. Over the decades, it grew dramatically, continuing through MS-DOS and reaching peak complexity during the late ’90s in Microsoft Office applications. Microsoft Management officially put the kibosh on the practice in the early ’00s, citing security and customer trust concerns. For a while there, however, the eggs were on a roll—and they got pretty wild! In the ’90s, Excel attracted a large share of elaborate Easter eggs. For example, in Excel ’95, if you follow a series of complex steps, a window called the “Hall of Tortured Souls” appears. In this apparent reference to Doom, you can actually roam a 3D, first-person environment. After crossing a zigzag bridge, you discover a room with the names of Excel ’95’s developers and a low-resolution photo of the team. During the development of Windows 3.1, one of the programmers carried around a stuffed teddy bear. It became an inside joke and unofficial mascot for the operating system. When the team hid developer credits in the Program Manager of Windows 3.1, the bear naturally made an appearance. The Easter egg normally shows a man in a yellow suit next to a scrolling list of the developers’ internal email system names. If you perform the trick repeatedly, though, you might see the bear’s head in the yellow suit instead. Once word got out about the hidden “flight simulator” Easter egg in Excel ’97, it spread quickly in the press because it sounds so sensationally weird. In truth, though, it’s not exactly a flight simulator in the sense of gauges and airplane controls. Rather, it’s more of a surreal 3D, first-person flying experience over a purple landscape. If you fly around enough, you find a black monolith with the scrolling names of Excel ’97’s developers on it. See many of these wild and interesting Easter Eggs on OUR FORUM.

Security researchers have discovered an emerging threat that they fear could be nearly unstoppable. This growing botnet has already managed to enslave nearly 20,000 computers. It is known as DDG was first discovered in early 2018 by the network security experts at China-based Netlab 360. Back then the nascent botnet had control of just over 4,000 so-called zombies and used them to mine the Monero cryptocurrency. Much has changed since then. Today’s incarnation of DDG isn’t just five times larger. It’s also much more sophisticated. One of its distinguishing features is its command and control system. Most botnets are designed around a client/server model. Infected machines listen for instructions from the servers and then carry out their orders. DDG has a built-in Plan B, however: a proprietary peer-to-peer network. If the zombies can’t contact the servers, they automatically switch over to P2P channels to keep the operation running — exchanging payloads and instructions as if nothing had happened. They even utilize a built-in proxy system to obfuscate their activities. It’s a dastardly one-two punch, and one that Netlab 360 believes makes DDG “seemingly unstoppable.” Security professionals often disrupt botnets by wresting control of a domain name or an essential server away from the criminal operators. That won’t work against DDG. Despite its sophistication, the DDG botnet has grown very slowly. Its spread is also fairly limited geographically-speaking, too, with 86% of infections occurring in China. It’s not in the same league as botnets like Conficker or Necurs, which hit tens of millions of computers. Netlab 360 researchers think there’s a simple explanation for that. DDG’ss creator is probably quite happy with things the way they are. Its zombie army can mine a fair bit of Monero without attracting a lot of attention. By shedding a little light on DDG, Netlab 360 hopes that the cybersecurity community can figure out a way to slow or disrupt its operation before it evolves into something much more sinister. Redis server owners are advised to secure database accounts with strong passwords, while OrientDB server owners should update their machines as soon as possible. The DDG botnet shows that crooks don't have to build advanced malware and multi-layered infrastructure to make a profit today. Because of this reason and the high yielding profits is why we've seen so many Monero-mining botnets appear in the past year. For more turn to OUR FORUM.

Signal has threatened to pull out of the US if the Congress decided to pass the latest anti-encryption bill into law. Last year, the company went against the Australian government who wanted to pass a similar law in the country. In case you don’t know, Signal is a popular encrypted messaging tool used by individuals and organizations to share sensitive information. However, the company is threatening to pull out if Congress passes the controversial anti-encryption bill. The EARN IT Act was introduced to the US Senate last month and has received a lot of backlashes from the public and companies like Signal. The Act would force the tech companies to forgo the use of end-to-end encryption. Signal developer Joshua Lund explained the implications of the new Act in a blog post titled, “230, or not 230? That is the EARN IT question.” Section 230 of the Communications Decency Act “protects online platforms in the United States from legal liability for the behavior of their users.” This basically means that companies like Facebook and Twitter are protected by law against the misuse of their platform by the users. While companies like Facebook can certainly carry the financial burden of being held accountable for the users’ actions, a small company like Signal cannot. Moreover, end-to-end encryption ensures that the data shared by two users cannot be viewed by a third-party including the platform used to transmit data. This is achieved using encryption keys that encrypt and decrypt data in real-time making it almost impossible for a third-party to eavesdrop without the correct encryption key. The US Congress said it needs to pass the Act to track down criminals who exploit children or use social media platforms for human trafficking and other criminal activities. However, the Electronic Frontier Foundation (via Gizmodo) (EFF) has argued that there is already a large swath of existing laws that target child sexual abuse and child sex trafficking ads, the EARN IT Act is not required. Lund correctly noted that “Bad people will always be motivated to go the extra mile to do bad things. If easy-to-use software like Signal somehow became inaccessible, the security of millions of Americans (including elected officials and members of the armed forces) would be negatively affected. Meanwhile, criminals would just continue to use widely available (but less convenient) software to jump through hoops and keep having encrypted conversations.” Follow this and more by visiting OUR FORUM.

If just about any manufacturer besides Huawei had faced such extreme restrictions on its software, its smartphone division would be facing a guaranteed death sentence. Yet here we are, nine months on from Huawei's initial placement on the U.S.'s "entity list," and the company's consumer device arm is very much alive and kicking. More than that, in fact -- it's pushing ahead with building out its own ecosystem and has recently launched what might well be the best smartphone camera of the year in the Huawei P40 series. As a recap, Huwaei's smartphone software challenges are about more than just not having Google's applications and storefront preloaded on its new phones. Google services are ubiquitous elsewhere, of course, but the larger issue has to do with the under-the-hood bits and bytes that help other manufacturers' apps work, which live inside Google Play Services. Think: single sign-on for apps like Skyscanner, Concur and Skype. Or Widevine DRM for Netflix. Or SafetyNet for mobile payments and banking. No Google doesn't just mean no Google apps, it means anything that relies on Google's under-the-hood components will also face issues. In some cases, that means even downloading an APK file from elsewhere won't get you optimal performance if a certain app still relies on the underlying Google code. It's also far from clear whether it'll ever be possible to reliably sideload Google Mobile Services on the P40 series, as it (briefly) was for the Mate 30 series and some older Google-less Huawei phones. Which is where Huawei Mobile Services comes in. Starting last summer, Huawei embarked upon the mammoth task of creating its own mobile services framework, with the ultimate goal of emerging as the third major mobile platform, alongside Google and Apple. The company certainly has near-limitless resources to dedicate to this task, as proven by its actions in recent weeks: wooing developers with a more generous revenue cut, while also building compelling new features into the new Huawei ecosystem. Though there are still app gaps to be seen, Huawei's AppGallery storefront has improved considerably since last May. The most significant absences are U.S.-developed apps, for obvious reasons. Elsewhere, Huawei has tapped local alternatives for features like maps, messaging and the like. And efforts to bring more big-name developers to Huawei's storefront are ongoing. Nevertheless, the stopgap solution of using the "Phone Clone" feature to port across apps that aren't yet available is imperfect at best. If an app isn't available on AppGallery, you're left having to manually update it via unofficial sites like APKMirror. If you're going in fresh, you may find an unofficial, curated site like this to be your best option. Even then, many of these apps rely on Google Mobile Services at present, and until Huawei is able to coax all the big players into adopting its HMS alternative, there are going to be some unavoidable teething issues. One scenario which seems increasingly unlikely is some sort of truce between Huawei and the U.S. government, with rumors swirling this week that the administration may even try to cut off Huawei from US-aligned chip vendors like TSMC. There's more posted on OUR FORUM.