<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"
	xmlns:content="http://purl.org/rss/1.0/modules/content/"
	xmlns:wfw="http://wellformedweb.org/CommentAPI/"
	xmlns:dc="http://purl.org/dc/elements/1.1/"
	xmlns:atom="http://www.w3.org/2005/Atom"
	xmlns:sy="http://purl.org/rss/1.0/modules/syndication/"
	xmlns:slash="http://purl.org/rss/1.0/modules/slash/"
	>

<channel>
	<title>windows &#8211; Noise</title>
	<atom:link href="https://noise.getoto.net/tag/windows/feed/" rel="self" type="application/rss+xml" />
	<link>https://noise.getoto.net</link>
	<description>The collective thoughts of the interwebz</description>
	<lastBuildDate>Thu, 22 May 2025 15:45:06 +0000</lastBuildDate>
	<language>en-US</language>
	<sy:updatePeriod>
	hourly	</sy:updatePeriod>
	<sy:updateFrequency>
	1	</sy:updateFrequency>
	<generator>https://wordpress.org/?v=6.8.2</generator>
	<item>
		<title>Signal Blocks Windows Recall</title>
		<link>https://noise.getoto.net/2025/05/23/signal-blocks-windows-recall/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Fri, 23 May 2025 11:02:59 +0000</pubDate>
				<category><![CDATA[AI]]></category>
		<category><![CDATA[microsoft]]></category>
		<category><![CDATA[signal]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<category><![CDATA[windows]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=70288</guid>

					<description><![CDATA[This article gives a good rundown of the security risks of Windows Recall, and the repurposed copyright protection took that Signal used to block the AI feature from scraping Signal data.
]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>How to See if ECC is Working in Windows Quickly</title>
		<link>https://noise.getoto.net/2025/05/15/how-to-see-if-ecc-is-working-in-windows-quickly/</link>
		
		<dc:creator><![CDATA[John Lee]]></dc:creator>
		<pubDate>Thu, 15 May 2025 06:32:00 +0000</pubDate>
				<category><![CDATA[DDR5]]></category>
		<category><![CDATA[ECC]]></category>
		<category><![CDATA[microsoft]]></category>
		<category><![CDATA[Tips]]></category>
		<category><![CDATA[windows]]></category>
		<guid isPermaLink="false">https://www.servethehome.com/?p=86351</guid>

					<description><![CDATA[We have a quick guide to check if ECC is working on a platform when you have ECC memory installed but want to check in Windows
The post How to See if ECC is Working in Windows Quickly appeared first on ServeTheHome.
]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Mapping Licensing for Virtualization is Cool Now</title>
		<link>https://noise.getoto.net/2025/03/26/mapping-licensing-for-virtualization-is-cool-now/</link>
		
		<dc:creator><![CDATA[Patrick Kennedy]]></dc:creator>
		<pubDate>Wed, 26 Mar 2025 19:34:57 +0000</pubDate>
				<category><![CDATA[AMD]]></category>
		<category><![CDATA[EPYC]]></category>
		<category><![CDATA[ESXi]]></category>
		<category><![CDATA[Gigabyte]]></category>
		<category><![CDATA[HPE]]></category>
		<category><![CDATA[microsoft]]></category>
		<category><![CDATA[virtualization]]></category>
		<category><![CDATA[VMware]]></category>
		<category><![CDATA[windows]]></category>
		<guid isPermaLink="false">https://www.servethehome.com/?p=85060</guid>

					<description><![CDATA[For a long time, we have been focusing a lot on the hardware costs of new processors but missing the virtualization license costs. Part of that is simply due to the number of virtualization licenses and support models. Recently, we purchased the most p...]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>New Windows Malware Locks Computer in Kiosk Mode</title>
		<link>https://noise.getoto.net/2024/09/25/new-windows-malware-locks-computer-in-kiosk-mode/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Wed, 25 Sep 2024 11:00:29 +0000</pubDate>
				<category><![CDATA[browsers]]></category>
		<category><![CDATA[credentials]]></category>
		<category><![CDATA[Malware]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<category><![CDATA[windows]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=69419</guid>

					<description><![CDATA[<p><a href="https://www.bleepingcomputer.com/news/security/malware-locks-browser-in-kiosk-mode-to-steal-google-credentials/">Clever</a>:</p>
<blockquote><p>A malware campaign uses the unusual method of locking users in their browser’s kiosk mode to annoy them into entering their Google credentials, which are then stolen by information-stealing malware.</p>
<p>Specifically, the malware “locks” the user’s browser on Google’s login page with no obvious way to close the window, as the malware also blocks the “ESC” and “F11” keyboard keys. The goal is to frustrate the user enough that they enter and save their Google credentials in the browser to “unlock” the computer.</p>
<p>Once credentials are saved, the StealC information-stealing malware steals them from the credential store and sends them back to the attacker...</p></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>New Windows IPv6 Zero-Click Vulnerability</title>
		<link>https://noise.getoto.net/2024/08/16/new-windows-ipv6-zero-click-vulnerability/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Fri, 16 Aug 2024 11:07:29 +0000</pubDate>
				<category><![CDATA[microsoft]]></category>
		<category><![CDATA[patching]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<category><![CDATA[vulnerabilities]]></category>
		<category><![CDATA[windows]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=69269</guid>

					<description><![CDATA[<p>The press is <a href="https://www.bleepingcomputer.com/news/microsoft/zero-click-windows-tcp-ip-rce-impacts-all-systems-with-ipv6-enabled-patch-now/">reporting</a> a critical Windows vulnerability affecting IPv6.</p>
<blockquote><p>As Microsoft explained in its Tuesday advisory, unauthenticated attackers can exploit the flaw remotely in low-complexity attacks by repeatedly sending IPv6 packets that include specially crafted packets.</p>
<p>Microsoft also shared its exploitability assessment for this critical vulnerability, tagging it with an “exploitation more likely” label, which means that threat actors could create exploit code to “consistently exploit the flaw in attacks.”</p></blockquote>
<p>Details are being withheld at the moment. Microsoft strongly recommends ...</p>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>New Windows/Linux Firmware Attack</title>
		<link>https://noise.getoto.net/2023/12/12/new-windows-linux-firmware-attack/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Tue, 12 Dec 2023 12:01:18 +0000</pubDate>
				<category><![CDATA[BIOS]]></category>
		<category><![CDATA[exploits]]></category>
		<category><![CDATA[firmware]]></category>
		<category><![CDATA[linux]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<category><![CDATA[vulnerabilities]]></category>
		<category><![CDATA[windows]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=68191</guid>

					<description><![CDATA[<p>Interesting attack based on malicious pre-OS <a href="https://arstechnica.com/security/2023/12/just-about-every-windows-and-linux-device-vulnerable-to-new-logofail-firmware-attack/">logo images</a>:</p>
<blockquote><p>LogoFAIL is a constellation of two dozen newly discovered vulnerabilities that have lurked for years, if not decades, in Unified Extensible Firmware Interfaces responsible for booting modern devices that run Windows or Linux….</p>
<p>The vulnerabilities are the subject of a coordinated mass disclosure released Wednesday. The participating companies comprise nearly the entirety of the x64 and ARM CPU ecosystem, starting with UEFI suppliers AMI, Insyde, and Phoenix (sometimes still called IBVs or independent BIOS vendors); device manufacturers such as Lenovo, Dell, and HP; and the makers of the CPUs that go inside the devices, usually Intel, AMD or designers of ARM CPUs…...</p></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>A Compact ASRock DeskMini B660W VMware ESXi Build</title>
		<link>https://noise.getoto.net/2023/10/23/a-compact-asrock-deskmini-b660w-vmware-esxi-build/</link>
		
		<dc:creator><![CDATA[Will Taillac]]></dc:creator>
		<pubDate>Mon, 23 Oct 2023 20:50:03 +0000</pubDate>
				<category><![CDATA[ASRock]]></category>
		<category><![CDATA[ESXi]]></category>
		<category><![CDATA[Raptor Lake]]></category>
		<category><![CDATA[server]]></category>
		<category><![CDATA[Veeam]]></category>
		<category><![CDATA[VMware]]></category>
		<category><![CDATA[windows]]></category>
		<category><![CDATA[windows server]]></category>
		<guid isPermaLink="false">https://www.servethehome.com/?p=72559</guid>

					<description><![CDATA[We build an emergency VMware ESXi server for a failed Lenovo system using a compact ASRock DeskMini B660W system
The post A Compact ASRock DeskMini B660W VMware ESXi Build appeared first on ServeTheHome.
]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>This GoWin R86S Pro is an Everything Revolution with 25GbE and 2.5GbE</title>
		<link>https://noise.getoto.net/2023/10/11/this-gowin-r86s-pro-is-an-everything-revolution-with-25gbe-and-2-5gbe/</link>
		
		<dc:creator><![CDATA[Patrick Kennedy]]></dc:creator>
		<pubDate>Wed, 11 Oct 2023 17:26:11 +0000</pubDate>
				<category><![CDATA[GoWin]]></category>
		<category><![CDATA[intel]]></category>
		<category><![CDATA[Mellanox]]></category>
		<category><![CDATA[networking]]></category>
		<category><![CDATA[Nvidia]]></category>
		<category><![CDATA[opnsense]]></category>
		<category><![CDATA[pfSense]]></category>
		<category><![CDATA[Proxmox]]></category>
		<category><![CDATA[Proxmox VE]]></category>
		<category><![CDATA[R86S]]></category>
		<category><![CDATA[ubuntu]]></category>
		<category><![CDATA[VMware]]></category>
		<category><![CDATA[windows]]></category>
		<guid isPermaLink="false">https://www.servethehome.com/?p=73429</guid>

					<description><![CDATA[This new R86S Pro with twice as many cores and twice the RAM, 3x 2.5GbE, 2x 25GbE, and WiFi will revolutionize the home lab space
The post This GoWin R86S Pro is an Everything Revolution with 25GbE and 2.5GbE appeared first on ServeTheHome.
]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Hacks at Pwn2Own Vancouver 2023</title>
		<link>https://noise.getoto.net/2023/03/27/hacks-at-pwn2own-vancouver-2023/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Mon, 27 Mar 2023 11:03:13 +0000</pubDate>
				<category><![CDATA[adobe]]></category>
		<category><![CDATA[cars]]></category>
		<category><![CDATA[hacking]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<category><![CDATA[windows]]></category>
		<category><![CDATA[zero day]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=67124</guid>

					<description><![CDATA[<p>An impressive array of hacks were demonstrated at the <a href="https://www.bleepingcomputer.com/news/security/windows-11-tesla-ubuntu-and-macos-hacked-at-pwn2own-2023/">first day</a> of the Pwn2Own conference in Vancouver:</p>
<blockquote><p>On the first day of Pwn2Own Vancouver 2023, security researchers successfully demoed Tesla Model 3, Windows 11, and macOS zero-day exploits and exploit chains to win $375,000 and a Tesla Model 3.</p>
<p>The first to fall was Adobe Reader in the enterprise applications category after Haboob SA’s Abdul Aziz Hariri (<a href="https://twitter.com/abdhariri">@abdhariri</a>) used an exploit chain targeting a 6-bug logic chain abusing multiple failed patches which escaped the sandbox and bypassed a banned API list on macOS to earn $50,000...</p></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Critical Microsoft Code-Execution Vulnerability</title>
		<link>https://noise.getoto.net/2022/12/22/critical-microsoft-code-execution-vulnerability/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Thu, 22 Dec 2022 12:01:37 +0000</pubDate>
				<category><![CDATA[microsoft]]></category>
		<category><![CDATA[patching]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<category><![CDATA[vulnerabilities]]></category>
		<category><![CDATA[windows]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=66401</guid>

					<description><![CDATA[<p>A critical code-execution vulnerability in Microsoft Windows was patched in September. It seems that researchers <a href="https://arstechnica.com/information-technology/2022/12/critical-windows-code-execution-vulnerability-went-undetected-until-now/">just realized</a> how serious it was (and is):</p>
<blockquote><p>Like EternalBlue, CVE-2022-37958, as the latest vulnerability is tracked, allows attackers to execute malicious code with no authentication required. Also, like EternalBlue, it’s wormable, meaning that a single exploit can trigger a chain reaction of self-replicating follow-on exploits on other vulnerable systems. The wormability of EternalBlue allowed WannaCry and several other attacks to spread across the world in a matter of minutes with no user interaction required...</p></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Microsoft Zero-Days Sold and then Used</title>
		<link>https://noise.getoto.net/2022/07/29/microsoft-zero-days-sold-and-then-used/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Fri, 29 Jul 2022 15:08:09 +0000</pubDate>
				<category><![CDATA[adobe]]></category>
		<category><![CDATA[cyberweapons]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<category><![CDATA[windows]]></category>
		<category><![CDATA[zero day]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=65709</guid>

					<description><![CDATA[Yet another article about cyber-weapons arms manufacturers and their particular supply chain. This one is about Windows and Adobe Reader zero-day exploits sold by an Austrian company named DSIRF.
There&#8217;s an entire industry devoted to undermining ...]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Clever — and Exploitable — Windows Zero-Day</title>
		<link>https://noise.getoto.net/2022/06/01/clever-and-exploitable-windows-zero-day/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Wed, 01 Jun 2022 18:25:36 +0000</pubDate>
				<category><![CDATA[microsoft]]></category>
		<category><![CDATA[patching]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<category><![CDATA[windows]]></category>
		<category><![CDATA[zero day]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=65487</guid>

					<description><![CDATA[Researchers have reported a still-unpatched Windows zero-day that is currently being exploited in the wild.
Here&#8217;s the advisory, which includes a work-around until a patch is available.
]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Interesting Privilege Escalation Vulnerability</title>
		<link>https://noise.getoto.net/2021/08/26/interesting-privilege-escalation-vulnerability/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Thu, 26 Aug 2021 11:28:00 +0000</pubDate>
				<category><![CDATA[privilege escalation]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<category><![CDATA[vulnerabilities]]></category>
		<category><![CDATA[windows]]></category>
		<category><![CDATA[zero day]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=63606</guid>

					<description><![CDATA[If you plug a Razer peripheral (mouse or keyboard, I think) into a Windows 10 or 11 machine, you can use a vulnerability in the Razer Synapse software &#8212; which automatically downloads &#8212; to gain SYSTEM privileges.
It should be noted that this...]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Chinese Hackers Stole an NSA Windows Exploit in 2014</title>
		<link>https://noise.getoto.net/2021/03/04/chinese-hackers-stole-an-nsa-windows-exploit-in-2014/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Thu, 04 Mar 2021 12:25:17 +0000</pubDate>
				<category><![CDATA[china]]></category>
		<category><![CDATA[exploits]]></category>
		<category><![CDATA[hacking]]></category>
		<category><![CDATA[microsoft]]></category>
		<category><![CDATA[NSA]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<category><![CDATA[windows]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=62012</guid>

					<description><![CDATA[<p>Check Point has <a href="https://research.checkpoint.com/2021/the-story-of-jian/">evidence</a> that (probably government affiliated) Chinese hackers stole and cloned an NSA Windows hacking tool years before (probably government affiliated) Russian hackers stole and then published the same tool. Here’s the <a href="https://www.theregister.com/2021/02/23/microsoft_chinese_nsa/">timeline</a>:</p>
<blockquote><p>The timeline basically seems to be, according to Check Point:</p>
<ul>
<li><b>2013:</b> NSA’s Equation Group developed a set of exploits including one called EpMe that elevates one’s privileges on a vulnerable Windows system to system-administrator level, granting full control. This allows someone with a foothold on a machine to commandeer the whole box.
...</li></ul></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Twelve-Year-Old Vulnerability Found in Windows Defender</title>
		<link>https://noise.getoto.net/2021/02/24/twelve-year-old-vulnerability-found-in-windows-defender/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Wed, 24 Feb 2021 12:19:14 +0000</pubDate>
				<category><![CDATA[Malware]]></category>
		<category><![CDATA[microsoft]]></category>
		<category><![CDATA[patching]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<category><![CDATA[vulnerabilities]]></category>
		<category><![CDATA[windows]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=61977</guid>

					<description><![CDATA[<p>Researchers found, and Microsoft has patched, a <a href="https://www.wired.com/story/windows-defender-vulnerability-twelve-years/">vulnerability</a> in Windows Defender that has been around for twelve years. There is no evidence that anyone has used the vulnerability during that time.</p>
<blockquote><p>The flaw, discovered by researchers at the security firm SentinelOne, showed up in a driver that Windows Defender — renamed Microsoft Defender last year — uses to delete the invasive files and infrastructure that malware can create. When the driver removes a malicious file, it replaces it with a new, benign one as a sort of placeholder during remediation. But the researchers discovered that the system doesn’t specifically verify that new file. As a result, an attacker could insert strategic system links that direct the driver to overwrite the wrong file or even run malicious code...</p></blockquote>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>New Windows Zero-Day</title>
		<link>https://noise.getoto.net/2020/11/02/new-windows-zero-day/</link>
		
		<dc:creator><![CDATA[Bruce Schneier]]></dc:creator>
		<pubDate>Mon, 02 Nov 2020 20:01:10 +0000</pubDate>
				<category><![CDATA[exploits]]></category>
		<category><![CDATA[Uncategorized]]></category>
		<category><![CDATA[windows]]></category>
		<category><![CDATA[zero day]]></category>
		<guid isPermaLink="false">https://www.schneier.com/?p=60412</guid>

					<description><![CDATA[<p>Google&#8217;s Project Zero has <a href="https://arstechnica.com/information-technology/2020/10/googles-project-zero-discloses-windows-0day-thats-been-under-active-exploit/">discovered and published</a> a buffer overflow vulnerability in the Windows Kernel Cryptography Driver. The exploit doesn&#8217;t affect the cryptography, but allows attackers to escalate system privileges:</p>
<blockquote><p>Attackers were combining an exploit for it with a separate one targeting a <a href="https://twitter.com/benhawkes/status/1318640422571266048">recently fixed flaw in Chrome</a>. The former allowed the latter to escape a security sandbox so the latter could execute code on vulnerable machines.</p></blockquote>
<p>The vulnerability is being exploited in the wild, although Microsoft says it&#8217;s not being exploited widely. Everyone expects a fix in the next Patch Tuesday cycle...</p>]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Migrating Subversion repositories to AWS CodeCommit</title>
		<link>https://noise.getoto.net/2020/08/25/migrating-subversion-repositories-aws-codecommit/</link>
		
		<dc:creator><![CDATA[Iftikhar khan]]></dc:creator>
		<pubDate>Tue, 25 Aug 2020 06:20:57 +0000</pubDate>
				<category><![CDATA[AWS CodeCommit]]></category>
		<category><![CDATA[devops]]></category>
		<category><![CDATA[linux]]></category>
		<category><![CDATA[Migration]]></category>
		<category><![CDATA[Subversion]]></category>
		<category><![CDATA[SVN]]></category>
		<category><![CDATA[windows]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=6e5374067859698d7af08190cf1abf86</guid>

					<description><![CDATA[In this post, we walk you through migrating Subversion (SVN) repositories to AWS CodeCommit. But before diving into the migration, we do a brief review of SVN and Git based systems such as CodeCommit. About SVN SVN is an open-source version control system. Founded in 2000 by CollabNet, Inc., it was originally designed to be [&#8230;]]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
	</channel>
</rss>

<!--
Performance optimized by W3 Total Cache. Learn more: https://www.boldgrid.com/w3-total-cache/

Object Caching 77/283 objects using Memcached
Page Caching using Disk: Enhanced 
Lazy Loading (feed)
Database Caching using Memcached

Served from: noise.getoto.net @ 2025-12-05 14:00:32 by W3 Total Cache
-->