NewApp Digest
search bot

Android

FEMITBOT Network Abuses Telegram Mini Apps for Crypto Scams and Android Malware
AppWizard
May 5, 2026

FEMITBOT Network Abuses Telegram Mini Apps for Crypto Scams and Android Malware

A fraud network called FEMITBOT has emerged, using Telegram's Mini App feature to conduct investment scams and distribute malware. Identified by the research firm CTM360, the network operates through API responses and presents itself as organized. The scams involve Telegram Mini Apps that display phishing pages, fake dashboards showing fictitious earnings, and urgency tactics to pressure users into making quick decisions. FEMITBOT mimics well-known brands like Apple and Coca-Cola to enhance credibility and disseminates Android malware disguised as legitimate applications. The operation is highly organized, utilizing marketing tools to optimize their scams. Users are warned to be cautious of bots requesting deposits before granting access to funds.
ScarCruft hackers push BirdCall Android malware via game platform
BetaBeacon
May 5, 2026

ScarCruft hackers push BirdCall Android malware via game platform

APT37, also known as ScarCruft and Ricochet Chollima, has developed an Android version of the backdoor BirdCall, which serves as spyware in addition to a backdoor. The malware was delivered through a Chinese website that hosts games for Android, iOS, and Windows, targeting only Android and Windows systems. The Android variant of BirdCall has capabilities such as extracting IP geolocation information, collecting contact lists, call logs, SMS data, device information, taking screenshots, recording audio, and exfiltrating files. Users are advised to download software only from official marketplaces and trusted publisher sites to protect against malware infections.
North Koreans Spy on Defectors Via Android Game Apps
AppWizard
May 5, 2026

North Koreans Spy on Defectors Via Android Game Apps

A North Korean hacking group has targeted a digital gaming platform popular among the Korean ethnic enclave in China, using a sophisticated strategy to infiltrate Android applications. Researchers from Eset discovered that an app on the platform contained a backdoor known as BirdCall, linked to North Korea. The official website for the gaming platform hosted the same suspicious APK file. A second Android file associated with another game on the same site was also found to contain the BirdCall backdoor. This supply-chain attack was attributed to the threat actor ScarCruft (APT37), active in Asia and extending into Europe and the Middle East since late 2024. The hackers likely compromised the web server to recompile original APKs with the backdoor, which can collect sensitive information such as contacts, SMS messages, call logs, documents, media files, and private keys, and can take screenshots and record audio. The malware disguises its command and control traffic among regular internet traffic, primarily using Zoho WorkDrive for operations.
Android phone slow? I changed 2 developer settings for an instant speed boost
AppWizard
May 5, 2026

Android phone slow? I changed 2 developer settings for an instant speed boost

The Pixel 9 Pro provides smooth performance, but users may experience lag with other phones. Caution is advised when using "optimizer" apps from the Google Play Store, as they may offer little benefit and could introduce malware. Built-in settings on Android phones can enhance performance without third-party apps. To access these features, enable Developer Options by tapping the Build Number seven times in the About Phone section of Settings. Adjustments to improve performance include: 1. Modifying animation settings: - Window animation scale: Controls speed of pop-up windows and menus. - Transition animation scale: Manages animation speed when switching screens. - Animator duration scale: Affects duration of internal UI animations. Setting these to 0.5x or turning them off can improve speed. 2. Reducing background processes: - Limit background processes to "At most 4 processes" for better performance, especially on devices with 4GB RAM or less. These adjustments can lead to a smoother and more responsive user experience.
Hacker tracks Australian police using Android app
AppWizard
May 4, 2026

Hacker tracks Australian police using Android app

Australian police officers can potentially be tracked through publicly available Bluetooth applications due to a design flaw in tasers and body-worn cameras manufactured by Axon. A hacker demonstrated this vulnerability by using Android apps to detect nearby Bluetooth devices, revealing the location of police equipment, including model and serial numbers. The flaw arises from the failure to implement MAC address randomization, which could enhance security. The hacker developed software capable of tracking devices from over 400 meters away, raising concerns about the potential for criminal activities targeting police. Despite warnings to various police agencies, responses indicated confidence in existing security measures, although similar risks have been noted in the US, leading to the cessation of Axon body camera use by US Border Patrol agents. The vulnerability is considered a hardware-level issue, requiring significant redesign efforts from Axon to address it.
'F-Droid' allows you to easily install and automatically update free, open-source Android apps other than those on Google Play.
AppWizard
May 4, 2026

‘F-Droid’ allows you to easily install and automatically update free, open-source Android apps other than those on Google Play.

Google Play is a primary platform for Android app distribution but poses challenges for developers of free and open-source software due to registration fees and a strict review process. As an alternative, users can install apps via APK files, which allow direct installation but come with security risks. F-Droid is a dedicated repository for free and open-source Android applications, offering built-in update notifications and support. To use F-Droid, users must manually install the app from its official website. After installation, users can navigate the interface to find and install apps, grant permissions for updates, and manage app installations, including enabling settings for unknown sources. F-Droid provides a user-friendly experience for locating and updating apps, ensuring that users have access to secure and regularly updated software.
Today’s Android app deals and freebies: Star Wars, Aeon’s End, WINCH IT OUT, more
AppWizard
May 4, 2026

Today’s Android app deals and freebies: Star Wars, Aeon’s End, WINCH IT OUT, more

9to5Toys is a source for the latest deals and insights in technology and lifestyle products. It offers a homepage for news and trends, and connects with followers through social media platforms like Twitter, Facebook, and LinkedIn. The platform features curated selections of Apple product discounts, a daily podcast discussing technology and lifestyle, and a YouTube channel for product reviews and tips.
WhatsApp’s Metaverse-inspired ‘Avatars’ are being removed from the app
AppWizard
May 4, 2026

WhatsApp’s Metaverse-inspired ‘Avatars’ are being removed from the app

WhatsApp is discontinuing its avatar feature, as confirmed by Meta. Users are receiving notifications about the removal of avatars and their editing capabilities, which were introduced in late 2022. The associated sticker feature will also be removed, although a specific timeline for this is not provided. Once fully phased out, users will no longer be able to create, edit, or share avatars. Traditional profile pictures will remain unaffected.
Google's got a new tool for making sure your phone is running the Android apps it should
AppWizard
May 4, 2026

Google’s got a new tool for making sure your phone is running the Android apps it should

Google is expanding its Binary Transparency initiative, originally focused on verifying Pixel firmware, to include its Android applications and Mainline updates. This initiative aims to enhance user trust by providing a publicly auditable record of all official app and Mainline updates, ensuring that only certified Google-approved releases are documented. The updated system began implementation in May, allowing users to track every officially published Google Android app and Mainline module.
Evolving Verifiable Trust: Bringing Binary Transparency to the Android Ecosystem
AppWizard
May 4, 2026

Evolving Verifiable Trust: Bringing Binary Transparency to the Android Ecosystem

Starting May 1, 2026, all production Android applications released by Google will include a cryptographic entry to verify their authenticity. This initiative establishes a "Source of Truth" for users to confirm that the software on their devices is genuine and unaltered. It includes Google Applications and Mainline Modules, with a production ledger that records all official updates. If a Google-signed application is not listed in this ledger, it indicates that the application was not intended for release by Google. This system aims to prevent unauthorized modifications and enhance user privacy and security. For Pixel users, it allows verification of both system images and Google applications. Google has also provided verification tools to check the transparency status of supported software types.
Search