So, what is Electron bot, and why it even matters if it is in the MS store. Electron bot is malware that somehow found its way inside MS Store via game clones of popular games temple run and subway surfer. This infiltration led to the infection of around 5000 systems over the globe in a very short period of time.
This malware is a backdoor that gives complete system control to the attacker. Any type of execution can be performed remotely in real-time. Usually, this kind of attack was aimed at a spread of click fraud over popular social media like Facebook, google, youtube, etc.
Primary goal
Electron Bot's primary goals in the ongoing campaign analyzed by researchers are:
SEO poisoning – Create malware-dropping sites that rank high on Google Search results.
Ad clicking – Connect to remote sites in the background and click on non-viewable advertisements.
Social media account promotion – Direct traffic to specific content on social media platforms.
Online product promotion – Increase store rating by clicking on its advertisements.
These functions are offered as services to those who want to increase their online profits illegitimately, so the gains for the malware operators are indirect.
Publishers that contain malware
For now, users may take note of the publishers who released confirmed malicious game apps using the following names:
If you have encountered the “YOU ARE NOT AUTHORIZED TO ACCESS THIS WEB PAGE AS PER THE DOT COMPLIANCE” error while trying to visit a website using either Firefox or Chrome browser, then read on as this post will guide you on how you can fix this error.
Apart from this error message, you might also see an alternative message that says, “Web Page Blocked! The page you have requested has been blocked because the URL is banned as per the Government Rules”.
When you get any of the aforementioned error messages when visiting a website, this means that it has been marked. It is mostly recommended to not access the site as it might be blocked for some illegal reason. However, if you are certain that the website is legitimate and safe and you believe that it has been blocked by accident, then you can check out the given methods in this post to unblock and access the blocked or restricted website.
There isn’t actually a straightforward way to remove the restriction on the website or the DOT compliance. And it won’t matter what browser you use as you will still get the same error. Thus, the best way to go about this issue is for you to bypass the ISP restriction. But before you proceed, keep in mind that the ISPs (Internet Service Providers) can block any website when a request goes through their servers.
Option 1 – Try changing the DNS
If the request to access the website does not go through the ISP’s DNS server, you might have a chance in accessing it by changing your DNS settings. You can try using the Google Public DNS.
Tap the Win + R keys to open the Run dialog box.
Then type “inetcpl.cpl” in the field and hit Enter to pull up the Internet Properties.
After that, go to the Connections tab and select the LAN settings.
From there. Uncheck the “Use a Proxy Server” option for your LAN and then make sure that the “Automatically detect settings” option is checked.
Now click the OK and the Apply buttons.
Restart your PC.
Note: If you are using a third-party proxy service, you have to disable it.
Option 2 – Try to install a Proxy Extension
You could also try installing a Proxy extension or Proxy software as it could also help you access the website you are trying to open as it allows you to access the blocked websites by routing the request through their server. Aside from that, it can also hide it from ISPs to make them look like the content is coming from the proxy servers.
Option 3 – Try using a VPN connection
There are instances when the network that your computer is logged on might have blocked your access to the website you are trying to open and so to fix it, you can try to use a VPN connection. There is a lot of free VPN software out there but just make sure that you install a trusted one. Once you’ve connected using VPN, try to open the website again and see if you can now access it.
Option 4 – Check the Windows Host file
You can also try to cross check the Windows Hosts file to find out if the website you are trying to open has been blocked because if it is, then it’s no wonder why you’re getting the ERR CONNECTION TIMED OUT error in Chrome. There are instances when some third party application modifies the file and add some websites to the block lists. So if the website is indeed blocked, you need to remove it from the list.
Option 5 – Try to contact your ISP
If none of the options given above worked, then you can try to contact your ISP as there are times when DOT clears a website, the ISPs are still blocking it. Thus, it’s probably better if you reach out to them and ask them to unblock the website from their end.
Error Code 45 is a common device manager problem that users encounter on any Windows 2000 and later operating system versions.
The error occurs when your Windows system fails to acknowledge the connected device by either stating that the device is not present or that it was previously attached to a computer.
The error pops up and appears on your computer screen with the following message:
“Currently, this hardware device is not connected to the computer” (Code 45)
Solution
Error Causes
The error is prompted either due to a temporary system file malfunction or a problem in the Windows registry system files. In the latter case, it could be due to a damaged or corrupted Windows registry.
Further Information and Manual Repair
While it may appear that Error Code 45 is a serious threat to your computer, it cannot be farther from the truth. Error Code 45, unlike other error codes, is the easiest one to fix. Here is how you can do it.
Method 1 – Reconnect the device to your computer
Unplugging and plugging the USB cable of the device into the computer is the easiest way to solve the error.
Doing this will help refresh the system and increase the likelihood of the device driver files loading and function properly.
It is often only a case of reconnecting the device back to your computer which helps eliminate the error and does not require any particular resolution other than this.
Method 2 – Install DriverFIX
Although reconnecting the disconnected device is all you need to fix the error code, it is always safer to fix your Windows registry system files by using a program like DriverFIX.
DriverFIX, with its user-friendly approach to help you fix your PC issues, comes with an integrated database that detects which drivers you need to reconfigure within just a few seconds and downloads it automatically.
It further ensures that your drivers are installed in their entirety leaving no room for any corrupted or damaged registry.
It also has the added advantage of being able to backup and restores your files should there be the slightest possibility of system file damage.
Thus, registry damage can be averted by letting the software roll back the system files to an earlier healthy checkpoint. DriverFIX is the answer to fixing your PC error codes accurately and quickly.
DuckDuckGo has risen in the public eye as a private search engine offering searches without tracking. A less known fact about DuckDuckGo is that they have their own browser, well they have it for the Android platform and it was stated that it is coming for desktops soon.
People were excited for this new browser for a few reasons, one of them being privacy and another that it is built from scratch, not using existing chromium runtime that assured users that privacy is the main focus. Still, lately, things got a little out of control. Duckduckgo is under fire from users since a security researcher has discovered that there is an exception for Microsoft trackers inside Browser.
The main feature of their browser is that it blocks tracking scripts and most online advertising with the goal of preventing servers from collecting data about your online behavior. Of course, tracking protection is never 100% effective since it requires a lot of manual labor from people to add sites and links to blocklists but it was discovered that DuckDuckGo has a defined exception in the browser for Microsoft owned ad networks and tracking scripts giving them free pass even when they are related to privacy compromisation.
Zach Edwards first pointed out the exception in a series of tweets, after noticing DuckDuckGo on iPhone and Android wasn’t blocking LinkedIn and Bing advertisements on Facebook’s Workplace site.
You can capture data within the DuckDuckGo so-called private browser on a website like Facebook's https://t.co/u8W44qvsqF and you'll see that DDG does NOT stop data flows to Microsoft's Linkedin domains or their Bing advertising domains.
DuckDuckGo’s CEO and founder, Gabriel Weinberg, replied with his own series of tweets.
Most of our other protections also apply to MSFT-owned properties as well. This is just about non-DuckDuckGo and non-Microsoft sites, where our search syndication agreement prevents us from stopping Microsoft-owned scripts from loading, though we can still apply protections post-load (like 3rd party cookie blocking). We are also working to change that.
DuckDuckGo says it uses over 400 sources for search engine results, including the company’s own web crawler, but typical link results are sourced most commonly from Bing. According to Weinberg, DuckDuckGo’s ability to use Bing search results depends on a carved-out exception for Microsoft’s ads in the mobile browser. A representative from DuckDuckGo told that third-party cookies from Microsoft services are still blocked.
Of course, the main aim and campaign of DUckDuckGo's rise was private search and private browsing so this kind of news did not go well among long supporters. The latest statement from them is as follows:
We have always been extremely careful to never promise anonymity when browsing, because that frankly isn’t possible given how quickly trackers change how they work to evade protections and the tools we currently offer. When most other browsers on the market talk about tracking protection, they are usually referring to 3rd-party cookie protection and fingerprinting protection, and our browsers for iOS, Android, and our new Mac beta, impose these restrictions on third-party tracking scripts, including those from Microsoft.
What we’re talking about here is an above-and-beyond protection that most browsers don’t even attempt to do — that is, blocking third-party tracking scripts before they load on 3rd party websites. Because we’re doing this where we can, users are still getting significantly more privacy protection with DuckDuckGo than they would using Safari, Firefox and other browsers. This blog post we published gets into the real benefits users enjoy from this approach, like faster load times (46% average decrease) and less data transferred (34% average decrease). Our goal has always been to provide the most privacy we can in one download, by default without any complicated settings.
This post will guide you in fixing high CPU, Memory, and Disk usage problems caused by NTOSKRNL.exe. NTOSKRNL stands for “NT Operating System Kernel. This file is a kernel image that is responsible for a lot of systems-based processes such as Hardware Virtualization, Process, and Memory. Aside from that, it is also the one that compresses the old pages of memory that reduces the overall amount of memory being used. If you notice that your computer is running slowly and you find that the NTOSKRNL.exe file is hogging your resources such as disk usage, CPU usage as well as memory usage, then read on as this post will guide you in fixing the problem caused by NTOSKRNL.exe.
Make use of the options given below to resolve the issues caused by NTOSKRNL.exe.
1] Scan your computer for potential malware
There might be a good chance that your computer might be infected with malware. And this malware might be associated with the NTOSKRNL.exe file and hence making it consume a lot of system resources. So, I would really recommend you to make sure that your Antivirus is up to date and then scan your computer with it specifically the C:/Windows/System32 folder because this is the location where the NTOSKRNL.exe file is located.
Option 1 – Put your computer in a Clean Boot State
The first thing you have to do is to put your computer in a Clean Boot State as this can help you in finding any incompatible programs that are causing the problem.
Log onto your PC as an administrator.
Type in MSConfig in the Start Search to open the System Configuration utility.
From there, go to the General tab and click “Selective startup”.
Clear the “Load Startup items” check box and make sure that the “Load System Services” and “Use Original boot configuration” options are checked.
Next, click the Services tab and select the “Hide All Microsoft Services” check box.
Click Disable all.
Click on Apply/OK and restart your PC. (This will put your PC into a Clean Boot State. And configure Windows to use the usual startup, just simply undo the changes.)
From there, start to isolate the problem by checking which one of the programs you installed recently is the root cause of the problem.
Once you’ve found any incompatible programs, you need to uninstall them. Refer to the steps below to do so.
In the search box, type in “control” and then click on Control Panel (desktop app) among the search results.
After that, select Programs and Features from the list which will give you a list of all the programs installed on your computer.
From there, look for the concerned program and select it and then uninstall it.
Note: If you have downloaded the app from the Windows Store, you can simply right-click on it from the application list and then uninstall it.
Option 2 – Update or rollback drivers
If the first option didn’t work for you, then it’s time to either update or roll back the device drivers. It is most likely that after you updated your Windows computer that your driver also needs a refresh. On the other hand, if you have just updated your device drivers then you need to roll back the drivers to their previous versions. Whichever applies to you, refer to the steps below.
Open the Devices Manager from the Win X Menu.
Then locate the device drivers and right-click on them to open the Properties.
After that, switch to the Driver tab and click on the Uninstall Device button.
Follow the screen option to completely uninstall it.
Finally, restart your computer. It will just reinstall the device drivers automatically.
Note: You can install a dedicated driver on your computer in case you have it or you could also look for it directly from the website of the manufacturer.
Option 3 – Try to run the DISM tool
If the first two options didn’t work, then running the Deployment Imaging and Servicing Management might. Using this built-in tool, you have various options such as the “/ScanHealth”, “/CheckHealth”, and “/RestoreHealth”.
Open the Command Prompt with admin privileges.
Then type in the following commands and make sure to hit Enter right after you type each one of them:
Dism /Online /Cleanup-Image /CheckHealth
Dism /Online /Cleanup-Image /ScanHealth
exe /Online /Cleanup-image /Restorehealth
Do not close the window if the process takes a while as it will probably take a few minutes to finish.
Option 4 – Try to stop the Runtime Broker process
The RuntimeBroker.exe or the Runtime Broker process is the one that monitors access to Windows APIs to make sure that the apps do not violate the core security of Windows. This process usually leaves a very small footprint. However, there are times when it consumes more resources than it’s supposed to and does not release memory after the work is done that results in a memory leak. As a result, it affects NTOSKRNL.exe which is why you have to stop the Runtime Broker process. To do so, refer to these steps:
Tap the Ctrl + Shift + Esc to open the Task Manager.
After opening Task Manager, go to the Processes tab and look for the Runtime Broker process.
Once you find it, check if it is using more than 15% of your memory. If it is, then you most likely have an issue with an app installed on your computer.
Select the Runtime Broker process and right-click on it and then click on the End Task option to end its process.
Option 5 – Try to run the Performance Troubleshooter
Tap the Win + R keys to open the Run dialog box.
Type “msdt.exe /id PerformanceDiagnostic” in the field and hit Enter to open the Performance troubleshooter.
Then click on Next to get started. Wait until the process is completed.
Option 6 – Try using the Windows Performance Toolkit
You can also use the Windows Performance Toolkit in finding the root cause of the problem. Just refer to the following steps to use this toolkit.
Search for “cmd” in the Cortana Search box and click on Command Prompt from the search results to open it.
Next, type in the command given below or copy and paste it and then hit Enter:
After executing the command, wait for at least 60 seconds and then check the logs of the Windows Performance toolkit which is stored in a file named cpuusage.etl in the folder located at C:/Windows/System32. From there, you should see a list of all the causes of the System Resources being hogged.
Hacker group recently came up with claims that they have stolen data from 100 million T-Mobile customers. T-Mobile has responded with confirmation it has been compromised and that over 40 million records were stolen, among them are not just present customers, but anyone who has applied for T-Mobile service as well as past accounts.
What has been stolen?
Report from T-Mobile states that stolen records included first and last name, date of birth, social security number, driver’s license & ID information. The company said that it has “no indication that the data contained in the stolen files included any customer financial information, credit card information, debit or other payment information.” Not really a reassuring statement meaning that they really do not know, but even if the statement is true, already stolen information is as much if even not more damaging and devastating as payment information.
What T-Mobile is planning to do now?
It is stated that the hole used for the hack has been addressed and closed so no more data can be stolen.
Considering people that had their personal information compromised, T-Mobile said it is planning to reach out to them and offer them two years of free identity protection through McAfee’s ID Theft Protection Service.
Additionally, T-Mobile recommends postpaid customers change their PIN by going online into their T-Mobile account or calling T-Mobile customer service by dialing 611 on their phone. The company also recommends a feature called Account Takeover Protection that prevents unauthorized individuals from stealing a phone number and porting it out of T-Mobile.
Finally, the company will publish a website “for one-stop information and solutions to help customers take steps to further protect themselves.”
The number of Hertz is the number of how many images your screen draws in one second. So monitor with a refresh rate of 60Hz will draw 60 images each second on your screen. To most users, this will look fine and enough but actually, if you would place them in front of a 120Hz screen difference will be visible right away.
Benefits of higher refresh rates
In most simple words just looking at a screen that has a higher refresh rate will produce a more natural feel of things, although some people would argue that flickering can not be seen on 60Hz monitors and that should be enough, I would argue that they never watched the movie, played the game or used high refresh rate screen when they can state something like that.
Yes, 60Hz might be enough to look at the web page or read some documents but long exposure to 60Hz can have a tiring effect on the eyes in the long run. 120Hz and above just feel more relaxed and it is far less demanding on the eyes. Watching movies also is much better on a higher refresh screen, with way much less motion blur in fast scenes giving the overall experience a greater natural feel.
Gaming is perhaps an area where a refresh rate of 120Hz and above will show its best. Having a higher refresh rate will be easier on your eyes and can even give you a competitive edge. When for example you have twice more images per second on your screen than your opponent his movement will be more fluid and predictable because of that and overall precision will be much higher when moving the cursor in the game since more frames per second means more precision and smoother movement.
The dark side of high refresh rates
After all the positive things that were said about the advantages of high refresh rates, it is just fair to look at some negatives or in this case only negative one and that is Computer power. As said in the previous section having a 120Hz refresh rate means having 120 frames displayed on the screen per single second. Having even higher monitors like 360Hz means even more frames per second and in order to actually see all of that frames you will need to have enough computer power to back it up. Having for example screen with a refresh rate of 240Hz means nothing if your GPU and rest of the computer are able only to push 150 frames per second, in this case, you will still have 150 frames in one second despite the monitor being able to go to 240.
Conclusion
Generally and with all of my heart I would recommend moving away from 60Hz monitors, yes they are cheaper and more affordable but at the end of the day if you are someone like me who spends most of his daily time in front of the computer you would be grateful to have higher refresh rate screen and save your eyes, and after all, why not enjoy some smoother and better movie and game experience as well as saving your eyesight.
Error code 0x803f7001 results when users fail to update their Windows operating system. This often occurs when they seek to update from Windows 8 or 8.1 to Windows 10. Users will be able to identify error code 0x803f7001 because of the following common symptoms which occur:
Inability to upgrade your Windows operating system to Windows 10
Message box with error code 0x803f7001
Solution
Error Causes
The causes for error code 0x803f7001 are usually associated with the use of an unlicensed version of Windows 8 when upgrading to Windows 10. In such cases, the error code occurs when there is no valid Windows license or product key on your device.
Further Information and Manual Repair
To fix error code 0x803f7001, users may not necessarily need technical knowledge or the help of a Windows repair technician. Usually, the process is simple and can be resolved with the use of a valid product key. However, if users have trouble implementing the instructions found in the manual repair methods listed below, contact a Windows repair specialist for help or use an automated tool that provides the best solutions for problems like error code 0x803f7001.
Method One: Use a Valid Product Key
A product key is a 25-character code that enables users to activate their Windows operating system. To successfully activate your operating system and resolve error code 0x803f7001, enter the product key in the correct order. Once you have a valid product key in your possession, begin to resolve the error code by following the instructions below:
Step one: Click the Start button then select Settings
Step two: Select Update & security then Activation
Step three: Click the Change product key
Step four: Type in your valid product key. (Ensure you include the 25 characters of your product key in the correct order.)
Once you type in the valid product key, you should be able to successfully upgrade to the latest version of Windows. However, this method is only effective if the error code 0x803f7001 on your device is caused by issues related to the product key.
If the error code reappears after attempting manual repair method one, move to the next manual method suggested below.
Method Two: Reinstall Genuine Version of Windows 8
This method is crucial for you to perform if method one was not successful. Begin the reinstallation process by ensuring you have a genuine version of Windows 8. After reinstalling this version of your Windows operating system, attempt to upgrade to Windows 10 by following the instructions below:
Step one: Type Settings in the search box near the Start button or click the Start button and select Settings
Step two: After clicking Settings, select Update & Security
Step three: Select Windows Update then the Check for updates tab
Step four: Activate Windows 10 update
If this method is successful, you will no longer see error code 0x803f7001 pop up in a message box. You will also be able to access Windows 10, and all the benefits it provides users, on your device.
Method Three: Install an Automated Tool
Automated tools help PC users eliminate common issues such as Windows error codes. To address or rectify error codes like error code 0x803f7001 download a powerful automated tool on your machine. This tool enables users to access quick solutions. It also scans for and corrects issues that may result in error codes or poor PC performance.
In 27 European countries for some time it has been considered for introducing a law that would force phones, tablets, laptops, and other mobile devices to use a single USB Type-C connector.
The European Parlament announced that a provisional agreement has been reached and that it was voted that a single charging solution is USB Type-C. The current agreement applies and covers the next devices: phones, tablets, Readers, earbuds, digital cameras, headphones, headsets, handheld consoles, and portable speakers. All currently existing devices can still be sold without issues but starting in the fall of 2024 all-new products must support USB Type-C charging.
The agreement will also hit Laptops but not on the same date, How is USB Type-C currently not enough for charging laptops, all new laptops that will have to use it are scheduled for fall of 2025.
Although the agreement is reached the EU Parliament and Council still have to formally approve everything.
Apple targeted the most
Apple has been targeted as the main target for rules since their iPhones are still using Apple's proprietary Lightning charging port. Apple sells a lot of iPhones in Europe and even though iPad Pro and iPad Air along with all MacBooks have moved to USB Type-C, iPhones are still struggling with the Lightning port.
Apple criticized the EU’s charger rules when they were first proposed in 2021, telling the BBC, “We remain concerned that strict regulation mandating just one type of connector stifles innovation rather than encouraging it, which in turn will harm consumers in Europe and around the world.” The European Union has said in response that it will update its rules as new technology arrives.
Why was this proposed?
The main problem in Europe that led to this proposition was electronic waste which reached 11 000 metric tons in 2018. European union is afraid that this will keep rising as chargers become larger and heavier in order to accommodate faster-charging speeds. More electronic waste means more hardware slowly decomposing in landfills that will contribute to climate change affecting everyone on the planet, not just the people living in Europe.
Microsoft Designer, a new application developed by Microsoft will bring design backed with DALL-E 2, an AI image creation open-source software. The new app is shown as a dedicated graphic design tool that will help you in the creation of stunning social media posts, invitations, digital postcards, graphics, and more, all in a flash.
Use of the application will be by typing headings and then typing text into the prompt to generate a background image. Since Microsoft uses DALL-E 2 for image creation output should be fairly good but if you wish you will be able to use your own images instead of using AI to generate one.
The designer will be a free application once it is ready and it already has a web preview version, also free but with a waitlist. There will be premium features inside the app once it is released that will be available to Microsoft 365 Personal and Family subscribers. Microsoft also wants to add a version of a designer directly to the Edge browser as well.
Hive ransomware has been targeting Microsoft exchange servers lately vulnerable to ProxyShell security issues in order to deploy various backdoors. Once the backdoor has been placed various attacks can be performed including but not limited to network reconnaissance, stealing admin accounts, taking valuable data, and even installing and deploying file-encrypting algorithms.
ProxyShell wide abuse
ProxyShell is a set of three vulnerabilities in the Microsoft Exchange Server that allows remote code execution without authentication on vulnerable deployments. The flaw has been used in past by various ransomware like Conti, BlackByte, Babuk, Cuba, and LockFile.
Security vulnerabilities have been reported to be fully patched on May 2021 but how Hive was able to still be successful in exploiting PowerShell and infiltrating into the system there seems to be still some unpatched and open issues.
Hive
Hive has gone a long way since it was first observed in the wild back in June 2021, having a successful start that prompted the FBI to release a dedicated report on its tactics and indicators of compromise.
In October 2021, the Hive gang added Linux and FreeBSD variants, and in December it became one of the most active ransomware operations in attack frequency.
Last month, researchers at Sentinel Labs reported on a new payload-hiding obfuscation method employed by Hive, which indicates active development.