archive Archives

AppWizard

August 26, 2025

77 Malicious Android Apps With 19M Installs Targeted 831 Banks Worldwide

Zscaler’s ThreatLabz team identified 77 malicious applications on the Google Play Store with over 19 million installations, which target financial institutions and compromise user data. A new variant of the Anatsa banking trojan, also known as TeaBot, now targets over 831 banks globally, up from 650, and has expanded its reach to countries like Germany and South Korea. Many of these apps disguise themselves as document readers, with some exceeding 50,000 downloads. The malware downloads the Anatsa payload after installation and uses Android’s Accessibility Services to automate malicious activities, including stealing financial information and facilitating fraudulent transactions. The malware employs techniques to evade detection, such as obfuscating its code and using corrupted ZIP archives. The most prevalent Android malware identified was Joker, found in nearly 25% of the analyzed applications, known for stealing contacts and device data. A smaller subset of apps contained “maskware,” which engages in credential theft and personal data collection.

Winsage

August 24, 2025

LibreOffice 25.8 Drops Windows 7-8.1 Support, Adds Speed and AES-256 Encryption

LibreOffice 25.8 has been released by The Document Foundation, ending support for Windows 7, 8, and 8.1, meaning users on these operating systems will no longer receive updates or security patches. The new version requires a minimum of Windows 10 and includes performance enhancements, such as faster document loading and improved interoperability with Microsoft formats. Security upgrades include AES-256 encryption and PDF 2.0 export capabilities. The decision to discontinue support for older Windows versions reflects a broader industry trend towards modernization and innovation. Future versions will also require macOS 11 or later. Users on outdated systems are encouraged to evaluate alternatives or stick with earlier versions.

Tech Optimizer

August 21, 2025

New Malvertising Attack Spreads Crypto Stealing PS1Bot Malware

Cisco Talos researchers have identified a new malware framework called PS1Bot, active since early 2025, which spreads primarily through malvertising. PS1Bot is crafted using PowerShell and can steal sensitive information, log keystrokes, take screenshots, and gain unauthorized control over systems. It is capable of extracting passwords, browser cookies, and cryptocurrency wallet seed phrases. The malware operates stealthily using in-memory execution to avoid detection by antivirus software and checks for antivirus presence before launching attacks. It spreads through malicious online advertising, where users may download a compressed file containing the malware. Cisco Talos has noted ongoing enhancements to PS1Bot, with similarities to other malware families suggesting a connection among cybercriminals.

Winsage

August 20, 2025

Updated Windows 11 and your SSD disappeared? You’re not alone

On August 12, 2025, Microsoft released the Windows 11 version 24H2 security update, KB5063878, to address delays in signing into new devices caused by certain preinstalled packages. However, some users faced installation errors (code Ox80240069) when deploying the update via Windows Server Update Services (WSUS), which has since been resolved. A significant issue reported by user @Necoru_cat indicated that the update caused SSDs and HDDs to disappear from the operating system and led to severe data loss for some users. Testing revealed that drives became inaccessible when large amounts of data were written, particularly when file sizes exceeded 50GB and drives were over 60% full. A system reboot could restore functionality temporarily, but the issue could recur under similar conditions. Testing involved 21 SSDs from various manufacturers, with the WD Blue SA510 being the only drive rendered completely unrecoverable. Phison acknowledged the potential impact of the updates on storage devices and is reviewing affected controllers. Additional users reported similar problems with other SSDs, including those using the Phison PS5012-E12 controller and various models from Corsair, KIOXIA, and SanDisk. Users are advised to avoid large file transfers and to back up their data regularly.

Winsage

August 19, 2025

Microsoft Windows Warning—Stop Playing These Free PC Games

Windows users are at risk when downloading large files, particularly free games from sites like Dodi Repacks, which have been linked to malware distribution. An investigation revealed that downloading these games involves multiple redirects leading to a ZIP file containing a malicious .dll file. This file triggers the installation of HijackLoader malware, designed to bypass antivirus protections and install additional malicious software. HijackLoader employs advanced techniques to evade detection, including checks for virtual machines and monitoring system resources. It manipulates environment variables and executes payloads to maintain persistence on infected PCs. The malware has been associated with various families, including Danabot and RedLine Stealer, and is capable of delivering secondary payloads, with LummaC2 being a recent example. Users are advised to exercise caution when engaging with pirated downloads.

Winsage

August 18, 2025

Microsoft Windows 11 24H2 Update May Cause SSD Failures

Microsoft released a Defender security update during the August 2025 Patch Tuesday, targeting the Lumma stealer and other malware, which included the Windows 11 24H2 cumulative package (KB5063878). Early installations faced an error code, 0x80240069. Testing revealed that some solid-state drives (SSDs) became inaccessible and displayed unreadable SMART telemetry after sustained sequential writes of about 50 GB. A Japanese tester, NichePCGamer, documented failures in 21 different drives during tests involving large file transfers, particularly when controller utilization exceeded 60%. Failures were noted in several Phison-based NVMe models and other drives, with symptoms often reappearing after a reboot. Users are advised to back up data and avoid lengthy transfers on systems updated to KB5063878 while investigations continue.

TrendTechie

August 17, 2025

Похитители сид-фраз начали маскироваться под торренты

The Efimer Trojan spreads through torrent files and targets cryptocurrency wallets by disguising itself as a media player named xmpeg_player.exe. Cybercriminals exploit poorly secured WordPress sites to distribute this malware, while in corporate settings, they use phishing emails related to copyright infringement to deliver the Trojan. Once activated, it searches for cryptocurrency seed phrases and replaces transfer addresses with those of the attackers. Victims have been reported in Russia, India, Spain, Italy, and Germany. Kaspersky Lab has also reported on another malware, SparkKitty, aimed at stealing cryptocurrency from users in Southeast Asia and China.

TrendTechie

August 16, 2025

Labubu-охота на криптопользователей, опасные торренты с фильмами и другие события кибербезопасности

- A user lost 140 ETH (approximately ,500) on August 15 due to crypto address "poisoning," resulting in a total loss of over .6 million from similar incidents within a week. - Labubu fans in Russia fell victim to a cryptocurrency theft scheme involving a counterfeit marketplace that prompted users to connect their crypto wallets. - The Efimer Trojan malware, distributed through compromised WordPress sites and torrents, has been identified as a method for stealing cryptocurrency by replacing wallet addresses in the clipboard. - Pro-Russian hackers gained control of a dam in Norway, opening discharge valves and allowing over 7.2 million liters of water to pass through before being stopped. - A cybersecurity researcher discovered a vulnerability in a car dealer's online portal that allowed remote access to customer data and vehicle control. - Tajikistan reportedly lost over million due to illegal mining activities. - BtcTurk suspended withdrawals amid suspicious transactions totaling million. - Hackers extracted million in Bitcoin from the Odin.fun platform, and KYC data leaks have led to increased attacks on crypto investors.

AppWizard

August 10, 2025

My Google Keep notes were a mess — here’s how I got them under control

A user reflected on their experience with Google Keep, noting challenges in managing a growing collection of notes despite attempts at color-coding and pinning. They committed to better organization through labels and deleting outdated notes. In a poll, users shared their strategies for maintaining order: 16% delete and archive old notes, 19% color-code notes, 13% pin important notes, 14% use labels, 22% use another app for complex notes, and 16% use all of the above. Organizing notes into categories with labels has been beneficial, allowing users to filter and reduce clutter. Users expressed a desire for enhanced organizational features, like folders. A user recognized a tendency to hoard unnecessary information and conducted a cleanup, deleting irrelevant notes. Some users moved complex notes, such as medication tracking and pet vet visits, to Notion for better organization, as it offers more advanced features than Google Keep. Despite these changes, Google Keep remains popular for quick notes and spontaneous ideas.

Winsage

August 7, 2025

These 9 File Explorer alternatives make your Windows PC so much better

Windows Explorer has a basic interface that can hinder file management, prompting the development of alternative "commander" tools. These alternatives include single-window and dual-window applications designed to improve file management on Windows PCs. Free Commander XE features a dual-window layout with tabs for quick access and modern icons, allowing users to manage ZIP files and synchronize folders. Multi Commander also uses a dual-window approach, supports bulk file renaming, and offers a portable version. Double Commander is an open-source option with a familiar interface, capable of creating symbolic links and synchronizing folders. One Commander allows toggling between single and dual-window views and includes customizable features. Paid file managers like Total Commander, SpeedCommander, and XYplorer offer advanced functionalities, including FTP capabilities and scripting options. Q-Dir can open four windows simultaneously and provides extensive customization. File Voyager features a two-window view but may have stability issues. For Android devices, Google Files, Total Commander, and X-plore are notable file management apps, each offering various features for organizing and accessing files.