actors Archives

Tech Optimizer

May 31, 2025

Authorities Dismantled AVCheck, a Tool For Testing Malware Against Antivirus Detection

Law enforcement agencies from multiple nations dismantled a cybercriminal operation that provided malware testing services to evade antivirus detection. This effort led to the seizure of four domains and their servers, disrupting infrastructure that facilitated ransomware attacks globally. U.S. Attorney Nicholas J. Ganjei announced the disruption of an online software crypting syndicate that helped cybercriminals keep their malware undetected. The seized domains offered counter-antivirus tools and crypting services, allowing criminals to obfuscate malware and gain unauthorized access to systems. Investigators conducted undercover purchases and analyzed services, revealing connections to ransomware groups targeting victims in the U.S. and internationally. The operation, part of Operation Endgame, involved collaboration among the U.S., Netherlands, France, Germany, Denmark, Ukraine, and Portugal, with the FBI Houston Field Office leading the U.S. investigation. The seizures occurred on May 27.

Tech Optimizer

May 30, 2025

Police takes down AVCheck antivirus site used by cybercriminals

An international law enforcement initiative has dismantled AVCheck, a service that allowed cybercriminals to test malware against antivirus software. The official website, avcheck.net, now displays a seizure banner from U.S. and Dutch authorities. AVCheck was one of the largest counter antivirus services, providing insights into malware evasion tactics. Investigators found connections between AVCheck's administrators and crypting services, which help obfuscate malware. Law enforcement created a deceptive login page to warn users of legal consequences. The takedown occurred on May 27, 2025, as part of Operation Endgame, which also seized 300 servers and 650 domains linked to ransomware attacks.

AppWizard

May 28, 2025

‘A Minecraft Movie’ Tops DEG Digital Transactions Chart for Week of May 18

The Minecraft Movie is being produced by a collaboration of renowned studios, focusing on storytelling that resonates with audiences of all ages. The film aims to reflect the core themes of exploration and creativity from the Minecraft experience, utilizing innovative animation techniques to represent the game's iconic pixelated style. The casting process includes a mix of established stars and emerging talent, supported by a creative team of experienced directors and writers passionate about gaming culture. The production team has initiated outreach programs to engage the Minecraft community, allowing fans to contribute ideas and feedback.

AppWizard

May 28, 2025

Warner’s ‘A Minecraft Movie’ Debuts No. 1 Atop Weekly U.K. Home Entertainment Sales Chart Through May 28

The upcoming Minecraft Movie aims to translate the popular block-building game into a cinematic experience, focusing on themes of friendship, exploration, and resilience. It features a talented cast of actors voicing iconic characters and is directed by a skilled team experienced in animation and live-action films. The filmmakers are using innovative animation techniques to replicate and enhance the game's distinctive visuals, creating an immersive experience. The production team is engaging the Minecraft community for input and inspiration, fostering a sense of ownership among fans. The film is generating significant anticipation as its release date approaches.

AppWizard

May 28, 2025

Google’s latest fraud advisory update keeps users keen on emerging threats

Google has released an updated fraud and scam advisory in anticipation of its inaugural Scams Summit, highlighting prevalent scam tactics such as customer support, package tracking, and toll road scams. The company has enhanced its Phone and Messages app with advanced scam protection features for Android users, integrating Gemini technology to detect and block potential scams. Google’s updated advisory also addresses risks from malvertising and counterfeit travel websites, while Chrome has received an update featuring AI-driven warnings for potential scams. Additionally, new scam protection features for calls and texts have been introduced, focusing on blocking actions when potential call scams are detected and identifying various scams related to toll roads, billing, cryptocurrency, and financial impersonation.

Tech Optimizer

May 24, 2025

Arms Cyber Expands Ransomware Protection to macOS Devices

Apple devices, previously considered largely immune to cyber threats, are experiencing a rise in ransomware attacks targeting macOS, as reported by cybersecurity firm Black Fog. This shift is attributed to the increasing popularity of Apple devices and evolving ransomware tactics. Notable ransomware incidents include EvilQuest and MacRansom, with new threats like NotLockBit and FrigidStealer emerging. In response, Arms Cyber has begun offering ransomware protection for macOS, becoming the first firm to provide comprehensive protection across Windows, Linux, and macOS. Their solutions include real-time file entropy analysis, Steal Archival technology for rapid recovery, and Automated Moving Target Defense (AMTD) to thwart attacks. The growing use of Mac devices in critical sectors highlights the need for enhanced security measures, as attackers see opportunities in less protected systems. Managed Security Service Providers (MSSPs) are also being equipped with these protections to strengthen defenses against ransomware.

Tech Optimizer

May 23, 2025

Cloudflare, Microsoft & police disrupt global malware service

Cloudflare, in collaboration with Microsoft and international law enforcement, has dismantled the infrastructure of LummaC2, an information-stealing malware service. This initiative led to the seizure and blocking of malicious domains and disrupted digital marketplaces used by criminals. Lumma Stealer operates as a subscription service providing threat actors access to a central panel for customized malware builds and stolen data retrieval. The stolen information includes credentials, cryptocurrency wallets, and sensitive data, posing risks of identity theft and financial fraud. Lumma Stealer was first identified on Russian-language crime forums in early 2023 and has since migrated to Telegram for distribution. Its proliferation is facilitated by social engineering campaigns, including deceptive pop-ups and bundled malware in cracked software. Cloudflare implemented measures to block access to Lumma's command and control servers and collaborated with various authorities to prevent the criminals from regaining control. Mitigation strategies for users include restricting unknown scripts, limiting password storage in browsers, and using reputable endpoint protection tools. The operation has significantly hindered Lumma's operations and aims to undermine the infostealer-as-a-service model contributing to cybercrime.

BetaBeacon

May 22, 2025

Game of Thrones: Kingsroad is Out Now on PC, iOS and Android

Netmarble has released Game of Thrones: Kingsroad on PC, iOS, and Android platforms in various regions.

Winsage

May 22, 2025

Signal now blocks Microsoft Recall screenshots on Windows 11

Signal has introduced a "screen security" feature in its Windows application to enhance user privacy by preventing Microsoft's AI-driven Recall functionality from capturing content displayed within the app. This feature is active by default on all Windows 11 devices and sets a Digital Rights Management (DRM) flag on Signal's app windows. Recall, launched in May 2024, captures screenshots of active windows and has raised privacy concerns, leading Microsoft to make it optional and implement various security enhancements. Users can disable Signal's screen security but will be warned about potential privacy risks. Signal's developer, Joshua Lund, highlighted ongoing concerns regarding privacy in applications like Signal and called for a balance between privacy and accessibility in AI technologies.

Winsage

May 22, 2025

Windows Server Flaw a Shortcut to Privilege Escalation

An unpatched vulnerability in Windows Server 2025, identified by Akamai researchers, is associated with a method called "BadSuccessor." This flaw, considered "trivial" to exploit and present in the default configuration, allows for privilege escalation and potential full domain compromise. The vulnerability arises from delegated managed service accounts (dMSA), which were intended to enhance security during the migration of legacy service accounts. However, dMSAs can inherit permissions from legacy accounts, enabling attackers to simulate a migration and gain access to the permissions and encryption keys of those accounts without verification. The attack requires prior permissions within an Active Directory organizational unit, indicating a previous breach. Akamai reported the vulnerability to Microsoft on April 1, but Microsoft classified its severity as "moderate." Akamai recommends organizations restrict the creation of dMSAs to mitigate risks associated with this vulnerability.