No Login? No Problem: 5 Google Maps Alternatives That Respect Your Privacy

Posted on by Martin Brinkmann

If you have used Google Maps until now without a Google account, then you may have noticed that something is off in the past couple of days.

When I launched Google Maps today in Firefox, I immediately noticed that Google was limiting information. Listings did not include user reviews anymore among other things, and Google displayed a disheartening “You’re seeing a limited view of Google Maps” and “Get the most out of Google Maps. Sign In” message at the bottom of each listing I opened.

It appears that Google is limited access for anonymous users. While you can still look up listings, use route planning, and get ads, you won’t get what some what say is the most vital information on Google Maps: user reviews.

Read Also: Google Maps is getting a new feature that you either love or dislike

Five Google Maps Alternatives

While you could sign-in to a Google account to restore full access, some may prefer switching to a different service entirely.

Here are five good alternatives that you could try:

  • Organic Maps — Organic Maps is widely considered the “gold standard” for privacy-conscious users. It is a fork of the original Maps.me, created by the original developers who wanted to strip out all the trackers and bloatware.
  • Magic Earth — If you miss Google Maps’ real-time traffic alerts and lane guidance, Magic Earth is your best bet. It manages to offer advanced “smart” features while remaining strictly no-profile.
  • OsmAnd — OsmAnd is the most feature-dense mapping app available. It’s not just a map; it’s a professional-grade geographic tool.
  • Apple Maps — In mid-2024, Apple finally brought Apple Maps to the web (currently in beta). Unlike Google, Apple’s web version actually functions better without a login, as it currently doesn’t even support signing in to an Apple ID on the browser.
  • DuckDuckGo Maps — If you are looking for the most seamless “Google Maps-like” experience in a web browser without ever being asked to sign in, DuckDuckGo is the winner. It uses Apple Maps’ MapKit JS framework, giving you high-quality visuals without the data-tracking baggage.

There are also regional apps and maps that sometimes offer better information and services than Google Maps. Kakaomap, for example, is seen as the superior app in almost any area, if you are in Korea.

Now You: do you use a map app or service? Any app that you can recommend?

Mozilla ends support for Firefox on Windows 7 and 8/8.1

Posted on by Martin Brinkmann

The digital clock has finally run out for holdouts clinging to the past, forcing a critical decision for millions of PC users worldwide.

Mozilla has confirmed that it will officially terminate security updates for Firefox on Windows 7, 8, and 8.1 by the end of February 2026.

The organization is the last major browser maker that still supports the discontinued Windows operating systems.

Windows 7 support ended in January 2020 officially, but Microsoft introduced Extended Security Updates for business customers. These allowed businesses to extend support for up to three years, for a price.

Windows 8 and 8.1 support ended in January 2023, which is also the month that Windows 7 ESU support ended officially.

While Mozilla continued to support Firefox on Windows 7 after January 2023, Microsoft ended support for its Edge browser in the same month. Google followed a month later, when it released Chrome 109, the last official version of the web browser that supported the two operating systems.

Mozilla has now confirmed that it won’t release new updates for Firefox 115 ESR, the last version to support Windows 7 and 8/8.1, after February 2026.

  • Firefox 115 is now the last version supported on Windows 7, 8 and 8.1.
  • Updates will be delivered through the ESR channel until the end of February 2026.

The organization recommends that users upgrade the operating system to a supported version to “continue receiving Firefox security and feature updates”.

However, this could be problematic for a number of reasons, at least when upgrades to newer versions of Windows are considered:

  • The next direct upgrade is Windows 10. Microsoft has ended support and ESU updates are only provided until October 2026 for Home and Pro editions. Mozilla plans to continue supporting Firefox on Windows 10 though.
  • Windows 11 is supported, but it has stricter system requirements. Systems that do not meet the requirements can’t be upgraded as easily, if at all (there are some that can’t be bypassed).

Affected users might consider switching to Linux. It is a daunting task, but things have improved significantly in this regard over the years. Yes, some apps or games are not available directly, others may not run, but the vast majority of apps and games should run on Linux.

Firefox 115 ESR will continue to work after February 2026, but Mozilla won’t release any new updates for the version of the open source browser.

Chrome Stable Channel Update: Emergency Fix for Active CSS Exploit

Posted on by Martin Brinkmann

Google has issued an urgent security update for the Chrome desktop browser following the discovery of a high-severity vulnerability being actively exploited in the wild.

The update, which brings the Stable channel to version 145.0.7632.75 or 145.0.7632.76 for Windows and Mac, and 144.0.7559.75 for Linux, specifically addresses a “use after free” flaw within the browser’s CSS engine.

Identified as CVE-2026-2441, the bug was reported by security researcher Shaheen Fazim just days prior, prompting an accelerated rollout to protect users from potential attacks that leverage this exploit to compromise system memory.

Here are the key points from the update:

  • New Versions: The Stable channel has been updated to 145.0.7632.75/76 for Windows and macOS, and 144.0.7559.75 for Linux.
  • Zero-Day Patch: The update addresses CVE-2026-2441, a high-severity security flaw classified as a “Use after free” vulnerability in CSS.
  • Active Threat: Google has confirmed that they are aware of an exploit for this specific vulnerability existing in the wild.
  • Rapid Response: The bug was reported by researcher Shaheen Fazim on February 11, 2026, just two days before the release of this patch.
  • Rollout: The update will continue to become available to all users over the coming days and weeks.

How to install the Chrome update

Most unmanaged Chrome installations should receive the update automatically. The browser is configured to install updates automatically by default. Since this does not happen immediately, it is recommended to run a manual check for updates to speed up the process.

Open Google Chrome and select Menu > Help > About Google Chrome to do so. The browser should begin downloading and installing the security update immediately.

Windows users may also run winget upgrade google.chrome.exe to install the update from the command line without opening Chrome at all.

Note that it is highly recommended to upgrade the browser, even if it is not the main browser on the system. In short, if the browser is installed, upgrade it to protect it from potential exploits.

YouTube is reportedly hiding video descriptions and comments for some adblock users

Posted on by Martin Brinkmann

Ah, the never ending battle between YouTube and adblock users. If you lost the round-count then you are not alone. This time, users report that Google is hiding comments and video descriptions on YouTube, if a content blocker is used.

One such report comes from Reddit. The user writes that YouTube is not showing descriptions and comments anymore, if an adblocker is turned on.

It would be a new strategy, as Google focused on disabling video streaming entirely for users with content blockers in the past.

While many users might not miss the comments that much, it is another story for the video description, as it may include vital information or links. If you, for example, watch a cooking video, you may find the recipe in the description.

Tests on my own systems using different browsers returned no such blocking. It seems likely that Google is once again testing the waters or rolling out the change over time.

Some users affected by the change noted that reloading the webpage restored access to the description and the comment section. It is probably only a matter of time before filter lists will be updated to reflect the changes.

For now, it is recommended to refresh the page. If that does not work, I suggest using a different browser and / or content blocker. If all of that fails, try playing videos on third-party sites such as Bing Video.

I ran tests with Brave and uBlock Origin in several browsers, and did not run into any of the described issues.

Trading In Your Android? Here Are the Mandatory Steps to Follow

Posted on by Martin Brinkmann

There are few feelings better than unboxing a brand-new smartphone, but that excitement can turn to frustration quickly if your trade-in gets rejected weeks later.

While most people remember to wipe their photos and messages, many overlook the invisible ‘digital locks’—like Factory Reset Protection—that can render a phone useless to a recycler and instantly drop your trade-in value to zero.

Before you seal that shipping box or head to the store, you need to do more than just a quick reset; you need to ensure your Android phone is completely unlocked, secure, and legitimately ready for its next owner.

The Pros and Cons of Trading in your old Android phone

The main benefit of trading in an old smartphone is that you get money for it. This is especially useful if you don’t need the old device anymore. Sometimes, merchants pay you extra when you trade in a device, even if the device is not worth as much anymore.

The downside is that you are giving away a device that you used in the past. Unless you are careful, it may be possible to access personal data or accounts.

Another issue is that you need to make sure that the device is not protected from being reset by the processing company or the new owner. If the trade-in company realizes that the phone is locked, it will reject it.

Here is a quick overview of the pros and cons:

ProsCons
Convenience and safety“Bill Credit” Trap
Inflated prices (sometimes)Low value without special promotions
Instant discountsGrading may sometimes disagree with your assessment
Environmental responsibleDelayed gratification

Note that I assume that you have moved the data from the old device to the new already. A good option for that is to connect both devices via an USB cable and start the transfer process this way.

The mandatory steps before sending the old device in

First, make sure that you back up all important data. This includes photos and videos, files, and anything else. It is a good idea to create a full phone backup, but you can also use internal features to create this backup. This ensures that you can restore the data, if the need arises.

Go to Settings > Google > Backup on the device. Note that this backs up essentials, such as contacts or device settings. The location may be different depending on the device manufacturer. Samsung device owners go to Settings > Accounts and backup, and select “back up data” there.

Backing up photos and videos is another story. You could back them up in the cloud, and Google is very pushy about this, or, and this is what I prefer, store them on a local computer instead.

Second, removing the Google account is essential. If you do not, you won’t disable Factory Reset Protection. This is designed to prevent the theft of devices, as the new owner needs the password of the previous owner to start using it.

Go to Settings > Passwords & accounts (or Users & accounts, or Manage accounts). Locate the Google account there and select the remove option. I suggest you do the same for any other account on the device, as this removes them all. The accounts on the new device are not affected by this.

Third, run a factory reset. This restores the original state of the Android device and removes all personal data from it. Go to Settings > System > Reset Options > Erase all Data. On Samsung, you find the setting under Settings > General management > Reset > Factory data reset.

Finally, remove any SIM-cards, eSIMs, or SD cards from the device.

Recommended Steps (good practice, but not mandatory for trading in)

Here is a quick list of tasks that you might want to consider as well:

  • Unpair any Bluetooth devices.
  • Remove any network connections.
  • De-register from chat services.
  • Save the phone’s IMEI number (dial *#06# to see it on the screen).
  • Charge the battery to at least 50 percent.
  • Document the phone’s condition with photos or video, also write down the information).

Ultimately, the difference between a successful trade-in and a rejected one often comes down to these few minutes of preparation. By ensuring your data is backed up and your Google account is fully removed, you’re not just protecting your privacy—you’re securing your payout.

Rent, Pay, Return: The OMEN Laptop Subscription Math That HP Hopes You Won’t Do

Posted on by Martin Brinkmann

If you thought holding your cyan ink cartridge hostage was the absolute peak of HP’s audacity, think again—they have finally found a way to bring that same “subscribe or suffer” energy to your actual PC.

This month, the tech giant launched its new gaming laptop subscription, a “hardware-as-a-service” pilot program that invites US gamers to lease gaming laptops for a monthly fee rather than buying the devices outright.

But before you get seduced by the low upfront cost, you need to see the numbers HP left off the slide deck: a pricing structure where you pay nearly the full retail price, carry the liability, and ultimately return the laptop with absolutely zero equity to show for it.

“Gaming as a Service”: The program at a glance

Let’s take a look at what subscribers get when they subscribe.

  • HP offers several gaming laptop tiers to choose from, starting with entry level laptops like the Victus 15 for about $50 per month and going up to the top tier Omen brand for about $130 per month.
  • To justify the cost, HP is offering the following services: 24/7 support, next-day replacements, full guarantee throughout the subscription period.
  • Upgrades are allowed after 12 consecutive months of payments for a laptop. In other words, subscribers can upgrade to other models each year.

HP pitches this as a cure for “upgrade anxiety”, claiming that gamers will never again have to worry about their computers becoming obsolete.

The financial reality: the math behind the offer

HP’s marking slides look great, because they compare small monthly numbers against the full retail price for the laptops. For just $130, gamers can start playing the latest and greatest games on a laptop with an Nvidia RTX 5080 video card.

However, if you run the math over the mandatory subscription period, which is 12 months, or beyond, you will notice that HP is the only beneficiary here.

The “Subscriber” vs. The “Owner” comparison

TimeSubscription ($130/mo)Purchase ($2500)Remark
Day 1$130$2500
Year 1$1560$2500
Year 2$3120$2500Break-even in the second year.
Year 3$4680$2500Overpaying.

The trap: The subscription premium kicks in around month 19 and it gets worse from then on. It is also worth noting that owning a device also means resell rights. While you won’t get the paid $2500 for the gaming laptop, you might get $1000 or even more for it after two years.

Total costs are even more in favor of buying over subscribing because of that. If that would not all be bad-deal-worthy enough, there are cancellation fees.

The “Gotcha” Clause: Cancellation Fees

It might actually make sense to subscribe for a month or two, maybe to continue gaming while your main PC or laptop is being repaired or to bridge a short period of months.

However, the subscription does not allow short term rentals. You can only cancel for free in the first 30 days. Afterwards, you pay hefty fines if you want to get out early. Starting with day 31, you pay a termination fee.

How much? As much as you would have paid anyway for the entire year. That is a more than $1400 for the premium gaming laptop, if you decide to cancel in the second month. Cancelling is only free after the initial year. If a subscriber would have that much money lying around, it would even make less sense to rent and not buy a laptop outright.

Conclusion

HP’s OMEN Gaming Subscription is a fascinating experiment in the “Netflix-ification” of hardware, but for the vast majority of gamers, the math simply refuses to behave. It solves a problem—upfront cost—that traditional 0 percent financing already solved years ago, but it does so by stripping you of the only thing that makes a $3,000 purchase palatable: ownership.

When you subscribe to Spotify, you accept that you own no music because the library is infinite. When you subscribe to an HP laptop, the library is one single machine that sits on your desk, depreciating while you pay full price for it every two years.

The allure of an annual upgrade is undeniable. Who doesn’t want the newest RTX card the moment it launches? But HP is banking on you valuing that convenience at a 100 percent markup. They are betting that you will look at the monthly payment, ignore the long-term total, and sign away your right to resell, modify, or keep your hardware.

My advice: Don’t do it, unless you need the services that HP is offering, especially the next-day replacement deal. If you need a gaming rig but can’t afford one outright, consider buying used or looking for a system in a more suitable price range.

Don’t let your gaming rig become another monthly bill that you pay forever but never own.

The One Feature Everyone Missed is Reportedly Coming Back to Windows 11

Posted on by Martin Brinkmann

When Windows 11 launched in 2021, it was defined as much by what was missing as by what was new, with a redesign that inexplicably stripped away the deep customization options power users had relied on for decades.

Microsoft locked and limited the taskbar in Windows 11 to the bottom of the screen. A big downgrade to how things were on the predecessor Windows 10.

Now, nearly five years after that controversial debut, Microsoft is finally preparing to right that wrong. According to new internal reports, the company is actively developing a fully movable and resizable taskbar that will allow users to dock their start menu to the top, left, or right of the screen once again, with the feature slated to arrive in a major update later in 2026.

Windows Central reports that Microsoft is working on bringing the functionality back, citing sources familiar with Microsoft’s plans.

If that sounds familiar, you may think of Mozilla. The Firefox maker started to bring back features and introduce features that Firefox enthusiasts wanted for years recently.

It could reflect how serious the situation is for Microsoft. Mozilla faces a declining user base, as it tries to juggle a user-first approach with the necessity of having the world’s largest advertising company finance operations.

Microsoft’s situation is different. Windows is still the dominating desktop operating system. Yes, there is Apple with macOS, but it does not really seem to be a focus of the company. Linux is gaining, but recent gains come down to a large degree on Valve’s Steam Deck, which runs Linux.

Still, Microsoft’s bet on AI and the first rush of integrating AI into everything seems to have backfired somewhat. It did not help that features such as Recall were not designed properly and seen as threats by many users instead of useful tools to help them in their day-to-day activities when using Windows.

Whether it is able to regain the trust of Windows users remains to be seen. A very good start would be to deal with the looming Windows 10 end of support situation for home users. Come October 2026, millions of Windows 10 devices that can’t be upgraded to Windows 11 officially won’t get any updates anymore.

Extending this to the three years that corporate customers get would show plenty of good will and would certainly help paint Microsoft’s image in a better light.

Adbleed: A Proof of Concept for Adblocker Fingerprinting

Posted on by Martin Brinkmann

Internet users have plenty of options to make their connections more private. Popular choices include content blocking, using VPNs, or disabling services or features that may reveal information about them.

However, in rare circumstances, it is the very tools designed to protect users that may reveal information about them.

Enter Adbleed

Adbleed is a proof-of-concept designed to highlight a specific privacy risk associated with the use of regional adblocking rules.

The tool functions by detecting which country-specific filter lists—such as EasyList Germany or Liste FR—are currently active within a user’s browser. By probing for the blocking of domains unique to these specific lists, Adbleed creates a “filter fingerprint” that can reveal a user’s likely country of origin or language preference.

This technique demonstrates that users can be partially de-anonymized based solely on their adblocking configuration, even when employing VPNs or proxies to mask their physical location.

The detection process follows three simple steps:

  • Domains: The tool uses a curated list of domains that are blocked exclusively by certain filter lists, such as EasyList Germany.
  • Probing: Adbleed attempts to load resources from these specific domains. It then looks at what is returned. Blocked requests, which happen near instantly, are what the tool is after. It measures the time it takes to get a response to distinguish blocked requests from other errors, e.g., network failures.
  • Fingerprinting: When a specific number of domains are blocked from a regional listing, Adbleed concludes that the list is active.

What does it mean? It means that a site can detect if certain regional content blocking lists are likely enabled. This adds another factor to fingerprinting attempts.

Mitigation & Protection

Here are a few suggestions to mitigate Adbleed or limit its use for fingerprinting:

  • Stick to the defaults. If you do not enable any regional lists, Adbleed won’t detect any, which in turn makes your configuration less unique.
  • Enable anti-fingerprinting: If the browser supports anti-fingerprinting techniques, make sure they are enabled.
  • Disable JavaScript or enable hard-mode blocking: This may not be practicable, especially the JavaScript part, but this should protect against this particular type of attack.
  • Use different browsers: If you use different browsers, you torpedo tracking attempts, as the trackers can’t link your activities between different apps or browsers (unless there is a common factor that is unique).

Adbleed demonstrates that the tools designed to protect users on the Internet can sometimes be used against them. It reveals how regional content blocking preferences may allow sites to fingerprint and track users. It is not an argument against content blocking, but rather a wake-up call that things are never as straightforward as they look like on first glance.

Windows updates

Six Zero-Days in the Wild: The February 2026 Windows Patch Tuesday Breakdown

Posted on by Martin Brinkmann

If January was the warm-up, February is the sprint.

Microsoft’s second Patch Tuesday of 2026 has arrived with significant urgency, addressing 59 vulnerabilities in total. While the total count is manageable, the severity is high, as it contains six zero-day vulnerabilities that are currently being exploited in the wild.

Here is the breakdown of what you need to know, what to patch first, and what might break.

The February 2026 Patch Day overview

Executive Summary

  • Release Date: February 10, 2026
  • Total Vulnerabilities: 59
  • Critical Vulnerabilities: 5
  • Zero-Days (Actively Exploited): 6 (Windows Shell, MSHTML, Word, DWM, RDP, Remote Access Connection Manager)
  • Key Action Item: Administrators must prioritize workstation patching immediately due to three “one-click” security bypasses (Shell, MSHTML, Word) that allow code execution without user confirmation. Simultaneously, restrict and patch RDP servers to prevent the active SYSTEM-level escalation exploit (CVE-2026-21533).

Important Patches

  • CVE-2026-21510 — Windows Shell Security Feature Bypass Vulnerability
  • CVE-2026-21513 — MSHTML Platform Security Feature Bypass Vulnerability
  • CVE-2026-21514 — Microsoft Office Word Security Feature Bypass Vulnerability
  • CVE-2026-21519 — Desktop Window Manager Elevation of Privilege Vulnerability
  • CVE-2026-21533 — Windows Remote Desktop Services Elevation of Privilege Vulnerability

Cumulative Updates

Product, VersionKB ArticleNotes
Windows 10, Version 22H2KB5075912ESU Only. Security updates. Fixes the VSM shutdown/restart bug introduced in January.
Windows 11, Version 23H2KB5075941Security updates.
Windows 11, Version 24H2 / 25H2KB5077181Security updates and non-security changes. Adds “Cross-Device resume” and MIDI 2.0 support.

Deep Dive: The Critical Vulnerabilities

Microsoft confirmed that six already exploited zero-day vulnerabilities are fixed after installing the cumulative updates. Attackers may exploit the issues on unpatched systems to bypass protections and gain system-level access.

Here is the critical overview:

CVE-2026-21510 (Windows Shell Security Feature Bypass)

Allows attackers to craft malicious links or shortcut files to bypass Mark of the Web (MotW) and Windows SmartScreen prompts. As a result, malicious payloads may execute on unpatched systems without the usual “Are you sure” security warnings of SmartScreen.

CVE-2026-21513 (MSHTML Platform Security Feature Bypass):

Allows attackers to bypass security prompts using malicious HTML files, if the Internet Explorer engine (MSHTML) is used for rendering. The threat is similar to the Windows Shell issue described above, as it may be used to skip security screens to run malicious code on target systems.

CVE-2026-21514 (Microsoft Word Security Feature Bypass)

The third of the feature bypasses, this exploits an issue in Object Linking & Embedding (OLE) in Microsoft Office. Attackers may use it to run malicious Word documents and sidestep certain protections designed to block the execution of risky external content.

CVE-2026-21519 (Desktop Window Manager Elevation of Privilege)

The vulnerability is a type confusion flaw in the Desktop Windows Manager (DWM). Attackers need basic access for exploitation, but if they have, they may use the flaw to elevate their privileges to SYSTEM level, which allows them to take control of the system.

CVE-2026-21533 (Windows Remote Desktop Services Elevation of Privilege)

Describes an improper privilege management flaw in Remote Desktop Protocol. Exploitation opens another route to SYSTEM privileges on unpatched system. Especially problematic in Enterprise environments, which usually use RDP a lot.

CVE-2026-21525 (Windows Remote Access Connection Manager Denial of Service)

A null pointer dereference issue in the VPN / Dial-up manager. A local attacker, even with low privileges, may use the issue to crash the service repeatedly.

Significant Changes in the February 2026 updates

  • The Virtual Secure Mode (VSM) restart loop bug is fixed.
  • Cross-Device resume arrives in Windows 11. When a phone is paired with the Windows system, its recent activities are now displayed in Start. You can continue those. Requires the latest Link to Windows app.
  • Native MIDI 2.0 support. The new protocol is now supported, which creators and audio engineers may take advantage of.
  • The Secure Boot change is entering the targeting phase. In this phase, Windows can determine whether the device’s UEFI is compatible with the upcoming certificate rotation. If it is, it will be queued to receive the actual update in the coming months. No user action required.

First Steps: Your Patch Tuesday Strategy

  1. Patch the six zero-day vulnerabilities immediately. Start with user workstations.
  2. If you paused updates in January because of the VSM restart loop bug, deploy this month’s cumulative update to get it fixed.
Windows 11 is removing an option to bypass Microsoft account and internet during setup

Windows 11’s Mobile Moment: Bringing Smartphone-Style Privacy to the Desktop

Posted on by Martin Brinkmann

Microsoft revealed recently that it plans to regain the trust of its users and focus in areas such as Windows stability and security. Yesterday, the company announced two new initiatives that it says will strengthen “Windows trust and security through user transparency and consent”.

The two features, Windows Baseline Security Mode and User Transparency and Consent, will make Windows more resilient according to Microsoft.

Baseline Security Mode is a new architectural safeguard designed to ensure that every application, regardless of its origin, operates within a set of “safe” boundaries by default. Only “properly signed apps, services and drivers” are allowed to run by default, but users and administrators may override the defaults to run apps, services or drivers that do not meet the new requirements.

User Transparency and Consent shifts the Windows experience toward a mobile-centric privacy model, giving users granular control over what their apps can access. This includes new real-time prompts by apps when they try to access sensitive data, such as the location, camera, or personal files, or install unintended software.

Microsoft plans to roll out the changes “through a phased approach”. It says that it is already working with partners and that the work has begun already. Next step is — probably — the integration in Insider builds for a first round of extended tests before the features will land eventually on stable machines.

It remains to be seen how these features are integrated. Run-time permission prompts sound useful, as they introduce much needed transparency to Windows for users. Baseline security mode could go either way. It might help protect machines, especially in corporate environments, but it could also become a nightmare for users who need to run something that is not signed or meeting Microsoft’s requirements. Especially, if there is no easy option to whitelist apps, drivers, or services.

It does not look as if this is coming soon, as Microsoft seems to have taken a cautious approach to introducing major new features to Windows. Slow, steady and stable could be the mantra of the year for Microsoft, especially after a rather frustrating first patch day in January 2026.