blocking Archives

Winsage

June 19, 2026

Microsoft Details Windows Clipper Malware Campaign Using USB LNK Worm and Tor-Based C2

Microsoft has identified a Windows-based cryptocurrency clipper campaign that has been active since February 2026. This campaign uses clipboard-intercepting malware with self-spreading capabilities and operates through the Tor network. The clipper malware employs Windows Script Host and ActiveX to launch a Tor proxy and connect to a hidden command-and-control server. It focuses on stealing clipboard data, particularly cryptocurrency wallet addresses, and can exfiltrate screenshots. The malware is distributed via malicious Windows Shortcut (LNK) files on USB drives, which activate a worm that checks for existing infections and fetches the payload from a remote server. The clipper monitors the clipboard every 500 milliseconds for sensitive information and can replace copied wallet addresses with those controlled by attackers. Microsoft recommends behavioral detections, disabling AutoRun for removable media, blocking LNK execution from drives, and monitoring clipboard-related activities as mitigations against this threat.

AppWizard

June 19, 2026

Commodore’s New Flip Phone Skips Android for Linux-Based Sailfish OS

A year after its revival, the Commodore brand is re-entering the mobile phone market with the retro flip phone called the Commodore Callback 8020. This device runs on a privacy-focused Linux-based operating system, Jolla's Sailfish OS, and features stringent software restrictions that block browsers and social media applications. It comes preloaded with WhatsApp and supports other messaging services like Signal, Telegram, and WeChat. The Callback 8020 is powered by a MediaTek Helio G81 chip, has 4GB of RAM, and 64GB of expandable storage. It features a 3.25-inch IPS display, a 1.77-inch exterior screen, and a tactile T9 keypad. The rear camera has a 48MP Sony sensor, and the phone includes a removable 1550mAh battery. Connectivity options include dual-SIM 4G, Wi-Fi, Bluetooth, hotspot, and GPS. The Callback 8020 will be available in five colors, with prices starting at .99, and units are expected to ship this winter.

AppWizard

June 18, 2026

India’s solution to entrance exam fraud: A temporary ban on Telegram

On June 13, 2026, the National Students Union of India (NSUI) held a protest in Hyderabad against alleged exam paper leaks related to the National Eligibility-cum-Entrance Test (NEET). The Indian government temporarily blocked access to the messaging platform Telegram to combat exam fraud, with the National Testing Agency (NTA) announcing the ban will last until June 22 and disabling the message editing feature until June 30. The NEET-UG exam was canceled on May 12, affecting approximately 2.2 million students, following allegations of a paper leak. Telegram channels were found soliciting payments for leaked exam papers, while the NTA denied any papers were available outside secured channels. Political ramifications included calls from opposition leader Rahul Gandhi for the resignation of Education Minister Dharmendra Pradhan. The Cockroach Janta Party organized protests nationwide demanding accountability for the examination discrepancies.

AppWizard

June 17, 2026

I tried Bus Simulator 27 on PC, and it’s a super relaxing game… Until it just isn’t

Bus Simulator 27 is set to launch later this year, with a free demo available on Steam until June 22. The demo lacks support for DLSS or FSR, and during testing at 1440p on high settings with an RTX 5090, frame rates ranged from 70-80 FPS, with occasional drops. The AI traffic exhibits erratic behavior, often stopping abruptly and inconsistently adhering to speed limits, leading to penalties for the player in case of collisions. The voice acting can be distracting, interrupting the gameplay experience. The game is priced modestly, with additional content available for purchase, but there are concerns about optimization and AI dynamics that need addressing before the full release.

AppWizard

June 17, 2026

Hundreds of Android banking and crypto apps hit by dangerous new Rokarolla malware

Security researchers at Zimperium have identified a new Android banking trojan named “Rokarolla,” which threatens users of over 200 banking and cryptocurrency applications. It is distributed through spoofed websites, third-party app stores, and social media, but has not been found on the Google Play Store or other official Android repositories. Rokarolla requests extensive permissions, particularly concerning Accessibility services, SMS, calls, and notifications. Its capabilities include accessing WhatsApp contacts, capturing keystrokes, recording the screen, blocking incoming calls, and sending screenshots. Zimperium has not specified which geographical areas may be most vulnerable or the estimated number of potential infections. Users are advised to download applications only from official repositories to reduce the risk of encountering this malware.

AppWizard

June 16, 2026

New Rokarolla Android malware targets 217 banking, crypto apps

A new Android banking trojan named Rokarolla targets 217 banking and cryptocurrency applications and features 137 commands for malicious activities. It is distributed via deceptive websites posing as legitimate application sources and impersonates Google Play Protect to lure users into installing infected apps. Once installed, it seeks Accessibility service permissions and access to notifications, SMS, and calls. Rokarolla communicates with a command-and-control server, sending device profiles to generate unique identifiers for victims. Its primary goal is to steal financial information by using deceptive login overlays to capture sensitive data and maintain control over the device. The malware employs evasion tactics such as disabling Google Play Protect, hiding its icon, silencing notifications, and keeping the screen awake. It can steal SMS messages, extract contacts, capture keystrokes, record screen content, manipulate clipboard contents, block calls, and take screenshots. Zimperium confirms that Rokarolla is not found on Google Play, and users are advised to avoid downloading APK files from untrusted sources and to be cautious with Accessibility permissions.

AppWizard

June 16, 2026

Android 17 is finally here — here’s what’s new and who’s getting it

Android 17 is now available for Pixel 6 and newer devices after extensive beta testing. Key features include App Bubbles for multitasking, Screen Reactions for recording screen and selfie camera simultaneously, and enhanced security with improved threat detection and a more powerful Mark as Lost mode. The rollout will continue through 2026, and users can manually check for updates in their device settings. The update allows temporary location access for apps and includes customizable PIN retry protections. Additionally, Wear OS 7 is being rolled out alongside Android 17.

Tech Optimizer

June 16, 2026

Subscription twist: Norton 360 Deluxe adds more than just antivirus

Norton 360 Deluxe is a mid-tier security subscription from Gen Digital that offers antivirus protection, a VPN, a password manager, dark web monitoring, and parental controls for up to five devices. It includes real-time threat protection, a firewall, ransomware shielding, and cloud backup of up to 50 GB for Windows users. The parental controls, known as Norton Family, allow monitoring of children's online activities. The Secure VPN encrypts internet traffic on public Wi-Fi and masks IP addresses. The package also features PC SafeCam for webcam security and a smart firewall. Norton 360 Deluxe is marketed with a promotional first-year rate, with higher renewal prices, and is available through digital subscriptions, app stores, and major retailers. The product is designed for households and individuals seeking comprehensive security solutions.

AppWizard

June 15, 2026

Soulslike Game The Relic: First Guardian Sets July 31 PC and PS5 Launch, with Xbox and Switch 2 to Follow

Publisher Perp Games and developer Project Cloud Games announced that The Relic: First Guardian will be released on July 31 for PC (Steam) and PlayStation 5, moving up from its initial 2025 release date. Ports for Xbox Series S and X, as well as Nintendo Switch 2, are expected later in the summer. An exclusive retail version for PlayStation 5 will be available on September 4. The game is set in the world of Arsiltus, where players act as a First Guardian to combat a blight. It features over 70 boss encounters, five weapon types, and twelve skill trees, allowing for personalized builds. The stamina system is designed for dodging and blocking only, freeing players to attack without resource constraints. Progression is based on collectible items called Relics, which offer over 70 passive effects that enhance combat dynamics. PC system requirements have not yet been disclosed.

Winsage

June 15, 2026

Microsoft released the Windows 11 Secure Boot update for all PCs, how to verify yours

Microsoft has expanded the rollout of the Secure Boot 2023 certificate update to more Windows 11 and Windows 10 devices with the June 2026 Patch Tuesday update (KB5094126). This update aims to ensure that most supported consumer PCs are classified as high confidence, meaning necessary certificates are either installed or will be applied automatically. Secure Boot is a firmware security feature that verifies the software attempting to load during the startup process, blocking unauthorized software. The certificates supporting Secure Boot, issued in 2011, are expiring in stages starting June 24, 2026, prompting Microsoft to deploy replacement certificates. Most home users do not need to take manual action as the updates will occur automatically via Windows Update. Users can check their Secure Boot certificate status in the Windows Security app. A yellow warning indicates pending compatibility data, while a red alert suggests a firmware incompatibility requiring a BIOS update. Multiple reboots during the update process are normal, and a new SecureBoot folder in Windows is for staging cryptographic files. Older PCs may experience longer update times, and some may not receive updates due to firmware issues. HP users should check for BIOS updates if encountering BitLocker recovery loops. IT administrators should monitor device classifications and manually initiate updates for devices not in the high confidence category. Devices with Secure Boot disabled cannot receive updates, leaving them vulnerable. The expiration of the Microsoft Corporation KEK CA 2011 certificate on June 24 does not immediately affect device functionality, but it limits Microsoft's ability to sign new bootkit blacklist updates.