Category: Software

  • Microsoft frees Copilot key from AI restrictions

    Microsoft frees Copilot key from AI restrictions

    Key Takeaway

    – Copilot key customization: Windows 11 will let the Copilot key function as right Ctrl or a context menu key, with settings adjustable in the system.
    – Limited programmability: The key won’t be fully programmable (no macros or open-app actions); third-party tools may still be needed for advanced use.
    – Partial Copilot integration: Microsoft is scaling back deep Copilot integration, focusing on performance, personalization of taskbar/Start menu, and user favor.

    Overview of Copilot Key and Windows 11 Update

    laptop makers want to push a Windows AI features and Copilot+ branding, they gotta install a keyboard with a Copilot key. this idea may not change soon, but the key’s function will be customizable. microsoft has confirmed in a support doc that a Windows 11 update in 2026 will let the Copilot key on devices like the Surface Laptop used as the right Ctrl key or as a context menu key. the note here is that pricing info like $1,199 on amazon is present in the original text but will be dropped in this version.

    Upcoming Customization Possibilities

    after this update, you should be able to change the key’s function in the system settings. since the Copilot key has largely replaced the right Ctrl on many laptops, microsoft plans to restore a function that was standard on most laptops up to 2023. yet, they will not make the Copilot key totally programmable for macro execution or opening a chosen app. for those needing more control, third party software will still be needed. this paragraph keeps a casual tone with varied rhythm.

    What Won’t Change Right Away

    microsoft has not confirmed an exact date for the Windows 11 update. still, they are dialing back deep Copilot integration across windows 11 as they try to regain user favor. promised are performance improvements and new ways to personalize the taskbar and Start menu. also, Copilot is being scaled back in other areas, including the end of Xbox Copilot.


    Sources

    Tags: , , , ,
  • Pwn2Own Berlin 2026: Windows 11, Microsoft Exchange Hacks

    Pwn2Own Berlin 2026: Windows 11, Microsoft Exchange Hacks

    Key Takeaway

    – Total prizes exceed $908,000 for 39 zero-days across Windows 11, Exchange, Edge, RHEL, Nvidia infrastructure, and AI platforms, with Day 3 results pending.
    – Orange Tsai (DEVCORE) was the standout, earning $175,000 on Day 1 for four Edge sandbox-escape bugs and $200,000 on Day 2 for a fully patched Exchange Server RCE (highest so far).
    – Windows 11 was breached across multiple days, with AI-related targets (Cursor AI, OpenAI Codex, etc.) also heavily featured.
    – Event hit capacity for the first time in its 19-year history, with over 150 researchers turned away; vendors get 90 days to patch disclosed flaws.

    Pwn2Own Berlin 2026 is wrapping up today at the OffensiveCon conference, and across two confirmed days the numbers is significant. Researchers have collected over $908,000 in prizes after demonstrating 39 unique zero-day vulnerabilities across Windows 11, Microsoft Exchange, Microsoft Edge, Red Hat Enterprise Linux, Nvidia infrastructure, and a string of AI platforms. Day 3 results are still to come.

    Overview

    Day 1 paid out $523,000 across 24 zero-days. The standout was Orange Tsai of the DEVCORE Research Team, who chained four logic bugs to escape the Microsoft Edge sandbox and earn $175,000 in a single demonstration. Windows 11 was hacked three separate times by three independent researchers, each earning $30,000 for privilege escalation zero-days. Valentina Palmiotti of IBM X-Force collected $70,000 across two separate exploits targeting the NVIDIA Container Toolkit and Red Hat Linux. The AI category was equally active: LiteLLM, OpenAI Codex, NVIDIA Megatron Bridge, Chroma, and LM Studio all fell on Day 1.

    Day totals and exploits

    Day 2 paid out $385,750 across 15 zero-days. Orange Tsai appeared again, this time chaining three bugs to gain remote code execution with SYSTEM privileges on a fully patched Microsoft Exchange Server, the single highest-earning exploit of the competition so far at $200,000. Windows 11 was hacked again on Day 2, as was the Cursor AI coding agent. OpenAI Codex was also targeted for a second time by a different researcher. The event hit capacity for the first time in its 19-year history, with over 150 researchers turned away due to scheduling limits, and some choosing to drop zero-days publicly rather than waiting for next year.

    Attendance and patch policy

    All vendors have 90 days from disclosure to patch the flaws demonstrated at Pwn2Own. This rule applies regardless of the vendor’s size or how critical the bug might be, and organizers warn that delayed patches could leave users exposed during the post-disclosure window. The event showcases the accelerating pace of security research, while also reminding vendors to keep patch processes tight, tested, and transparent, so the next Berlin edition builds on lessons learned this year.

    Sources
    Tags: , , , ,
  • Google Ends Free Service Youve Had Since 2013

    Google Ends Free Service Youve Had Since 2013

    Key Takeaway

    – Google is testing 5 GB default storage for some new Gmail accounts, down from the traditional 15 GB.
    – The change aims to preserve service quality and push users toward stronger security and data recovery practices, while curbing multi-account storage abuse.
    – Existing accounts are unaffected during the test; the rollout could be regional or someday global depending on results.
    – The move aligns with comparable offerings from others (e.g., Microsoft) and follows subtle shifts in Google’s storage messaging.

    For nearly two decades, signing up for a Google account has meant walking away with 15 gigs of free cloud storage. That number, which was shared across Gmail, Drive, and Photos, has been one of the more reliable constants in consumer tech over the years. It may not stay that way for much longer.

    Update on storage policy

    Google has confirmed it is currently testing a reduced storage allocation for newly created Gmail accounts in certain regions, where some users will receive just 5 GB by default instead of the standard 15 GB. The test was first flagged by user reports on Reddit before Google acknowledged the experiment directly to Android Authority. The company added that it is evaluating the new policy to maintain service quality — at the same time, it will also push users toward better account security and data recovery practices.

    Regions and rollout

    As of writing, Google has not disclosed which regions are part of the trial. However, early reports hint that the rollout has been concentrated in parts of Africa. Existing accounts are unaffected for now.

    Background to the change

    This move does appear to be at least partly geared towards curbing the practice of creating multiple accounts to stack free storage. If that wasn’t clear already, Google’s own support page has been quietly updated since February to describe storage as up to 15GB. It’s not hard to discern that the company had been laying the groundwork for this change for some time.

    Why it matters

    Whether the 5 GB stays regional or eventually becomes the global default for new sign-ups will depend on how the test plays out. For reference, other providers like Microsoft Outlook also bundle 5 GB of free storage with new accounts.

     

    Sources
    Tags: , , , ,

  • YellowKey Bypasses Microsoft BitLocker on Windows PCs: Data and Bitcoins at Risk

    Key Takeaway

    1. Nightmare-Eclipse’s YellowKey software bypasses BitLocker encryption on Windows 11 and newer systems by exploiting code in WinRE, leaving Windows 10 unaffected.
    2. The hack allows unauthorized access by booting into Windows Recovery Environment and executing the YellowKey files, which unlocks all affected drives.
    3. Users should immediately secure valuable data with additional encryption tools like VeraCrypt or 7-Zip, as no official fix from Microsoft is currently available.

    Security Concerns Rise Over New BitLocker Bypass Malware

    Nightmare-Eclipse just dropped a new software called YellowKey, that can bypass the security on affected BitLocker encrypted disks without the user needing to enter any password. This exploit takes advantage of leftover code in the WinRE environment to disable BitLocker while the system is in recovery mode. The vulnerability mainly targets Windows 11 and Windows Server 2022 & 2025, but doesn’t impact Windows 10 due to differences in how WinRE functions.

    Protection Strategies for Sensitive Data

    If you are someone who keeps valuable things like cybercoins, secret passwords, or personal information on a Windows 11 machine, it’s a good idea to stop using BitLocker immediately and move those data to another secured location. You could use encryption tools like 7-Zip with AES-256 encryption or VeraCrypt, which offers multiple encryption algorithms for added security.

    How the Hack is Executed

    Once the YellowKey files are stored on a USB stick or directly copied into the EFI partition of an infected drive, hackers can launch the attack by booting into Windows Recovery Environment with specific keyboard keys. This action immediately unlocks all sensitive drives, granting free access to attackers. What’s dangerous is that the attack activates a test mode in WinRE that automatically unlocks drives encrypted with BitLocker, and can set a FailRelock flag to prevent re-locking, giving hackers full command line access.

    Windows 10 Safe From This Flaw?

    This security flaw does not appear to affect Windows 10’s WinRE environment, though other recent versions of Windows might be vulnerable. Nonetheless, Microsoft has NOT issued any security patch yet for this problem. Users need to manually verify if their drives are using BitLocker, and organizations should consider all data on affected systems as fully exposed until a fix is released.

    Sources
    Tags: , , , ,
  • Unraid OS 7.3.0: Security Updates & Redesigned Setup Wizard

    Unraid OS 7.3.0: Security Updates & Redesigned Setup Wizard

    Key Takeaway

    1. Unraid OS is a proprietary Linux-based system designed for home servers, supporting NAS, media, app, and virtualization functions, with customization via plugins and Docker.
    2. The latest version, 7.3.0, introduces support for booting from external drive types like NVMe, SSD, eMMC, or existing storage, and offers encrypted/ mirrored boot options.
    3. Licensing options include a $49 starter license for up to 6 drives, a $109 Unleashed version for unlimited drives, and a lifetime license for one payment of $249.
    4. Prebuilt servers such as the LincStation S1 are available with Unraid included, starting at $499.

    Overview of Unraid’s Unique Positioning

    Right now, even though Unraid technically runs on a Linux core, it’s classed as a proprietary operating system really tailored for home servers that perform various functions like NAS, media streaming, or hosting apps and virtual machines. The system offers a lot of potential to be customized with plugins or Docker applications, extending its functionalities. It’s been around for quite some time, originating from Slackware, over 20 years ago, with the most recent update named 7.3.0 just rolled out yesterday.

    Latest Update and Installation Flexibility

    New Licensing Options and Boot Methods

    Unraid OS 7.3.0 has introduced some significant improvements, especially in licensing and boot options. In the past, users had to rely on booting from a flash drive and validating licenses via this method. But now, the OS can be installed directly onto external drives like NVMe, SSDs, or eMMCs, or even onto existing storage devices, providing much more flexibility. Moreover, for internal booting, there’s support for a mirrored boot pool through ZFS, offering better data resilience. Users can choose between flash licensing or TPM-based licensing when switching to internal boot methods.

    Price Plans and Cost Options

    • The starter license costing $49 supports up to 6 storage devices and includes a year’s worth of updates. This makes it a more budget-friendly option for small-scale users.
    • The Unleashed version, priced at $109, allows for unlimited devices while still offering a year of updates, perfect for heavier users or expanding systems.
    • For those wanting forever upgrades, the lifetime license costs $249, granting unlimited devices and updates with a single payment.

    Prebuilt Hardware and Availability

    If buying prebuilt servers is your preferred way to go, there are options, though generally they’re quite pricey. Currently, Amazon is selling the LincStation S1 that comes with Unraid OS included, available for just $499. That might be an attractive starting point for users who want a ready-made solution without fussing over assembly and software setup.

    Sources
    Tags: , ,
  • Samsung Galaxy Phones Now Block Ads in Push Notifications

    Samsung Galaxy Phones Now Block Ads in Push Notifications

    Key Takeaway

    1. The Samsung Device Care app now includes “Intelligent Blocking,” which analyzes and manages push notifications to reduce unwanted advertising alerts.
    2. Apps that send frequent advertising notifications are placed into “deep sleep,” preventing further notifications from those apps.
    3. The feature is initially available on devices with One UI 8.5, such as the Galaxy S26 series, and may take weeks to roll out via official channels.

    New Update Brings Smarter Notification Management

    The latest update for Samsung’s Device Care app, now at version 13.8.80.7, bring a useful feature aimed at reducing irritation from unwanted push notifications. It is designed to analyze incoming notifications and identify which are purely advertising. Once detected, the app can automatically put these advertising notifications into “deep sleep” mode so they won’t bother you anymore. This helps make your experience more smooth and less cluttered. Samsung states that sometimes the classification between marketing and useful alerts isn’t perfect, but you can always unblock important notifications easily in the app settings.

    How Intelligent Blocking Works

    With this smart feature, called “Intelligent Blocking,” the app scans the notifications to determine if they are spam or promotional in nature. Notifications that are deemed to be more advertising than content are suppressed if they appear too frequently. This means you’ll no longer be annoyed by persistent ads. And if you still want to see certain notifications, simply unblocking them in the settings will do the trick. It is a simple but effective way to keep your notifications relevant and less intrusive, especially for power users who get bombarded constantly.

    Availability and Compatibility

    Right now, this update is seen first on smartphones that use the newest version of One UI 8.5, like the Galaxy S26, Galaxy S26+ and Galaxy S26 Ultra smart phones. If you are eager to try it sooner, versions of the app can be found outside official app stores, such as on APKMirror, where an updated version 13.8.80.7 has already been uploaded. However, official updates may take a few weeks to roll out globally to all compatible devices through proper channels like Samsung Galaxy Store or Google Play Store. Stay tuned for your device’s update to include this new helpful feature.

    Sources
    Tags: , , ,
  • Windows 11 May 2026 Patch Tuesday Updates Now Available

    Windows 11 May 2026 Patch Tuesday Updates Now Available

    Key Takeaway

    1. The May 2026 Patch Tuesday update for Windows 11 addresses critical security vulnerabilities, including the actively exploited CVE-2026-32202 zero-day, with mandatory deployment for all users.
    2. Xbox mode, a controller-centric gaming dashboard, is now available for all Windows 11 24H2 and 25H2 users, enhancing gaming accessibility.
    3. File Explorer has been improved for stability, faster performance, and expanded archive format support, along with new features like persistent view settings and a “Preview anyway” button.
    4. The update introduces haptic feedback for compatible stylus devices and an AI activity indicator in the Taskbar, along with FAT32 drive support for volumes up to 2TB.
    5. This update accelerates the Secure Boot certificate rollout ahead of the June 26, 2026, expiration, requiring IT administrators to confirm their devices have received the updated certificates to avoid security downgrade.

    Microsoft has just pushed out its May 2026 Patch Tuesday update for Windows 11, which is a big deal coz its got lots of stuff packed into it. The update with the code KB5083631 is now rolling out to every version of Windows 11, whether it’s 24H2 or 25H2, bringing systems up to OS Builds 26100.8328 and 26200.8328 respectively. This update was first available as a sneak peek on April 30 but is now mandatory for everyone. Normally, Microsoft kicks off deploying these updates around 1:00 PM Eastern Time.

    The Importance of the Security Patch

    On the security front, this patch is especially noteworthy coz it hits a very critical point. Today, May 12, is the deadline set by the Cybersecurity and Infrastructure Security Agency (CISA) for federal agencies to apply a fix for CVE-2026-32202, a zero-day vulnerability in Windows Shell that was actively exploited and got covered last month. That patch is included in April’s cumulative update KB5083769. If users haven’t installed April’s update yet, they’ll get it as part of the initial rollout today. Once the update starts rolling out, Microsoft is expected to release a detailed list of all the new security vulnerabilities it addresses from Microsoft’s Security Response Center and other sources.

    New Features and Improvements

    For gamers, there’s a cool new feature called Xbox Mode making its debut today, set for all Windows 11 24H2 and 25H2 users. It essentially gives a full-screen, controller-first gaming dashboard that can be accessed through Settings, then Gaming, then Xbox Mode, or via the effortless Windows + F11 shortcut. Previously, only users who had manually installed the April preview version could access this feature, but now it’s baked into the OS for everyone.

    File Explorer Gets Better

    File Explorer, the staple for managing files, gets a reliability boost, fixing some crashes that used to happen during login and when interacting with the taskbar. Now, preferences for viewing and sorting files like in Downloads and Documents stay saved even after closing and reopening folders. A handy “Preview anyway” button has been added for downloaded files, making things more convenient. Also, support for more archive formats like UU, CPIO, XAR, and NuGet packages is now built-in, so no more need for third-party tools to extract common file types. Another plus is that File Explorer now opens faster than before the update.

    Haptic Feedback and AI Features

    If you own a compatible stylus or pen device, you’ll notice haptic feedback now. Devices like Surface Slim Pen 2, ASUS Pen 3.0, and MSI Pen 2 will give you tactile responses when you perform basic actions such as snapping or resizing app windows, or aligning objects — all manageable through Settings, then Bluetooth and Devices. An AI-powered agent also starts showing up on the Taskbar, initially linked to Microsoft 365 Copilot Researcher. It displays live updates while generating reports and sends a notification once done. Additionally, FAT32 formatting now supports drives up to 2TB, removing the old 32GB limit, and the Drag Tray feature has been renamed to Drop Tray, with its settings moved for easier access in Settings, then System, then Multitasking.

    Important Security and Compatibility Notes

    This update comes at a crucial time coz it’s the last update window before the expiration of Secure Boot certificates, which were issued back in 2011 and used by most Windows devices built between 2012 and 2025. These certificates will expire on June 26, 2026. Devices that haven’t received the updated certificates will enter a degraded security state starting the day after that date. Microsoft has been gradually pushing out the updated certificates since February 2026, and this May update continues that process. IT admins are advised to check their fleets to make sure all devices are running with the latest certificates before June’s Patch Tuesday, otherwise they’ll face login issues or reduced security.

    Known Issue and Final Advice

    There’s one known problem reported: Windows Server 2025 machines with an particular BitLocker group policy may boot into BitLocker recovery mode after installing this update, asking for the recovery key right after restart. Enterprise admins should double-check their BitLocker policy settings prior to deploying these updates. Microsoft says there are no other known issues at the moment, but monitoring feedback is always recommended.

    Sources
    Tags: , , , ,
  • Parrot 7.2: Debian-Based OS with New Tweaks and Fixes

    Parrot 7.2: Debian-Based OS with New Tweaks and Fixes

    Key Takeaway

    1. Parrot 7.2 includes the Linux kernel 6.19.13 with a patch for the CVE-2026-31431 (“Copy Fail”) vulnerability.
    2. Significant updates and visual overhauls have been made to Parrot’s website and documentation.
    3. Recommended security measure: Use encrypted USB drives like Kingston Ironkey Locker+ 50 for data protection and backup.

    Introduction to Parrot 7.2 and Its New Features

    Staying true to its roots, Parrot 7.2 continues to evolve in the ethical hacking realm by bringing in a bunch of new features and fixes. One of the major updates is that it now runs on the new Linux kernel 6.19.13, which is important because it patches the CVE-2026-31431 vulnerability, also called “Copy Fail.” This vulnerability has been making waves in the security community, even catching the eye of Microsoft’s Security Blog. Such updates makes the system more resilient against potential threats.

    Recent Updates & Improvements

    The developers have been busy revamping the website and documentation. They’re making the information more accessible and clearer for users, with some parts getting a big overhaul. Expect a sleek look and easier navigation soon as the visual updates to the documentation are just around the corner. All downloads are conveniently available on the official pages so users can always get the latest version without hassle.

    Secure Storage Options for Ethical Hackers

    If you thinking about defensive tools, then consider starting with an encrypted USB stick. The Kingston Ironkey Locker+ 50 is a great choice for anybody serious about security. It features automatic cloud backup and uses XTS-AES encryption, protecting your data from many attack types like brute force and BadUSB. The 128 GB model specifically is priced around $89, down from its original retail, offering a good balance of price and security features.

    Sources
    Tags: , , ,
  • PrismLinux 2026.05.05 with New Installer and Linux Kernel 7.0 Release

    PrismLinux 2026.05.05 with New Installer and Linux Kernel 7.0 Release

    Key Takeaway

    1. PrismLinux 2026.05.05 is a stable, Arch-based release featuring the 7.0 kernel and GNOME 50 support.
    2. The update includes a full website redesign and multiple repository fixes.
    3. The ISO size is 2.5 GB, with recommended 8 GB RAM for optimal performance.

    The latest update to the lightweight Linux distributions has arrived with a bang, now known as PrismLinux 2026.05.05. This new version, based on Arch Linux, brings along some significant upgrades, including the latest 7.0 kernel, support for GNOME 50, and various other improvements. The developers have worked hard to make this release more stable and user-friendly for enthusiasts who prefer a minimalistic yet powerful OS.

    New Features and System Requirements

    The size of the ISO file is about 2.5 GB, which is quite reasonable for an ultralight distro. You will need at least 2 GB of RAM and 30 GB of storage to run it properly, but for an optimal experience, 8 GB of memory is highly recommended. Although there’s no specific processor mentioned on the official site, an AMD Ryzen 5 5500 (which can be found at an 86-dollar discounted rate on Amazon) should be more than sufficient to keep PrismLinux running smoothly.

    Design Improvements and Fixes

    • The official webpage has undergone a full redesign, giving it a sleeker, more modern look.
    • The repository has received numerous fixes that enhance stability and security, making the system more reliable for daily use.

    Additional Details Your Should Know

    Another notable aspect is the complete overhaul of the system’s visual and performance aspects. The inclusion of GNOME 50 support means you’ll get a more updated desktop environment that’s both performant and visually appealing—perfect for users who want a balance of speed and user experience. All these features make PrismLinux 2026.05.05 an exciting choice for those who crave lightweight yet capable Linux distributions for their hardware.

    Sources
    Tags: , , , ,