I was looking for ways to help defend against #ClickFix malware - which you may have seen recently. It's typically a website that presents itself as a fake captcha where you need to paste a command to validate yourself. It's a variant of self-XSS where the command is actually the entrypoint for malware.

PowerShell has no mitigations to protect against this type of attack, so I looked one level up, what if you just disable the run dialog with group policy?

Here are my findings 👇

"Games are too expensive now!"

Really? Take a look at this Maxis Product Price List from their 1993 product catalogue, and compare it to the adjusted prices for today's dollar.

Took a peek inside my #Zune HD today and found that it's dedicated to "our Princess" on the inside of the back cover.

Turns out that Princess is an admin assistant on the team who passed away. A nice tribute, hidden inside a failed product.

https://devblogs.microsoft.com/oldnewthing/20180914-00/?p=99735

If you used Windows Vista, you might recall this wallpaper - unceremoniously dubbed "img22"

The other day I was trying to find a higher resolution copy of this image but I just couldn't. Everything was up-scaled, poorly.

The reason, I would eventually learn, is simply that the photographer used a somewhat early digital camera so the original image itself just isn't high res. He used a Nikon D100 which is only 6mp, and the final image was cropped.