camera access Archives

Winsage

May 30, 2026

Microsoft is killing the one-app-at-a-time camera limit in Windows 11 with new Multi-App mode

Windows 11 has introduced a feature allowing multiple applications to access the camera simultaneously, which will be available to all users with the June 2026 Patch Tuesday. Previously, only one application could use the camera at a time, causing issues for users wanting to use multiple apps like Microsoft Teams and OBS. Users can enable this multi-camera mode by navigating to Settings > Bluetooth & devices > Cameras and toggling the advanced settings. Microsoft is also working on improving the reliability of camera and audio connections and has introduced a "Basic Camera" feature to help diagnose camera problems related to driver issues. These enhancements are part of the Windows 11 KB5089573 (May 2026 optional update) and are being rolled out gradually.

AppWizard

May 29, 2026

I discovered a hidden Android feature that shows which apps are watching me

An Android phone can share sensitive data such as location, microphone access, camera feed, and contacts with various applications in the background, often due to permissions granted by the user. Google offers a Privacy Dashboard on Pixel devices to show which apps accessed specific data, while Samsung devices have a similar feature called "Permission Manager" for managing app permissions. Regularly reviewing app permissions is important for users to control their digital footprints.

AppWizard

May 21, 2026

Binance’s Android app privacy fight is back in the spotlight

Binance is facing scrutiny regarding the data collection practices of its Android app, which some users believe functions more as a data collection tool than a trading platform. Concerns have been raised about the app's extensive permissions and tracking capabilities, with a report indicating the presence of numerous tracking components, including SDKs from TikTok and WeChat, and over 50 system permissions. Binance's privacy portal states that data is collected for account management, security, marketing, fraud prevention, and legal compliance. Despite this, there are questions about whether the data collection practices are proportionate to the app's intended functions. Binance has a history of legal issues, including a guilty plea in November 2023 that resulted in a .32 billion penalty for anti-money laundering violations. The exchange claims to tailor its privacy framework to regional regulations, but user concerns about the app's tracking capabilities persist. As of early 2026, Binance has over 300 million registered users, making any privacy-related disputes potentially impactful. The ongoing scrutiny may lead to gradual adjustments in Binance's practices rather than a complete overhaul.

AppWizard

May 18, 2026

Beware of Activating Them: 5 Android App Permissions That Pose a Threat to Your Data

Android applications often request various permissions upon installation, including access to the camera, microphone, contacts, messages, and accessibility features. Users frequently accept these requests without hesitation, which can compromise their device's privacy and security. Certain permissions, if granted to malicious apps, can enable monitoring of user activity, audio recording, location tracking, or unauthorized app installations. Five Android app permissions that require careful consideration before granting include: 1. Accessibility Services: Can allow untrusted apps to monitor screen content, read messages, track keystrokes, and perform actions on behalf of the user. 2. Display Over Other Apps: Allows apps to overlay content on other apps, which can be exploited by malicious apps to create deceptive interfaces. 3. Install Unknown Apps: Permits apps to install software from outside the Google Play Store, increasing the risk of malware. 4. Usage Data Access: Enables apps to monitor usage patterns, which can be used for targeted advertising or sold to data brokers. 5. Access to Contacts and Messages (SMS): Sensitive information can be intercepted by malicious apps, posing risks to account security. It is crucial to grant permissions that align with an app's intended function and to be cautious of unnecessary access.

Winsage

May 15, 2026

Windows 11’s May Optional Update Lands on the Release Preview Channel

The May optional update for Windows 11 introduces several features, including shared audio for Bluetooth LE accessories, simultaneous camera access for multiple applications, and NPU usage visibility in Task Manager. The update also improves the Magnifier accessibility feature and aims to enhance app launch speeds and core shell experiences. Additionally, Microsoft has released a first build of version 26H1 on the Release Preview Channel, which is intended for devices powered by Qualcomm Snapdragon® X2 Series chips. Devices running version 26H1 will not be eligible for the next annual feature update scheduled for late 2026.

AppWizard

March 11, 2026

New BeatBanker Android malware poses as Starlink app to hijack devices

A newly identified Android malware called BeatBanker disguises itself as a Starlink application on fake Google Play Store websites. It functions as a banking trojan and includes Monero mining capabilities, allowing it to steal credentials and manipulate cryptocurrency transactions. Researchers at Kaspersky traced BeatBanker to campaigns targeting users in Brazil. The latest version uses the BTMOB RAT for remote access, enabling keylogging, screen recording, camera access, GPS tracking, and credential capture. BeatBanker is distributed as an APK file that decrypts and loads hidden code into memory, conducting environment checks before activation. It presents a fake Play Store update screen to trick users into granting permissions for additional payloads. To avoid detection, it delays malicious operations and plays a nearly inaudible MP3 file to maintain persistent activity. The malware uses a modified version of the XMRig miner to mine Monero on Android devices, connecting to mining pools through encrypted TLS connections. It can start or stop mining based on device conditions and uses Firebase Cloud Messaging to relay device information to its command-and-control server. Currently, BeatBanker infections have only been observed in Brazil, but there are concerns about its potential spread. Users are advised to avoid side-loading APKs from untrusted sources and to review app permissions regularly.

Tech Optimizer

October 7, 2025

New Fully Undetectable FUD Android RAT Discovered and Publicly Released for Download on GitHub

A new Android Remote Access Trojan (RAT) has appeared on GitHub, described as fully undetectable and capable of bypassing advanced permission and background process restrictions in customized Chinese ROMs like MIUI and EMUI. This malware utilizes a multi-layer dropper to integrate its payload within legitimate applications, allowing it to overcome autostart restrictions and battery optimization features. Upon installation, it escalates privileges to gain comprehensive access to the device, using AES-128-CBC encryption for command-and-control communication to evade detection. The RAT can record and delete call logs, intercept voice calls, manipulate SMS messages, and capture keystrokes through a keylogger. It also has capabilities for live screen captures, camera access, audio and video recording, and clipboard hijacking. Additionally, it can encrypt files and lock the device, demanding a ransom for access. The malware employs social engineering tactics, such as spoofed notifications and phishing prompts, to facilitate credential theft. Its persistence mechanisms allow it to operate with minimal resource usage, making detection difficult. The attacker interface is web-based, enabling control from any standard browser without specialized infrastructure. The public release of this RAT raises concerns about the misuse of open-source repositories for distributing malicious tools, prompting calls for stricter oversight on platforms like GitHub.

AppWizard

September 12, 2025

AI App Spies on Android Users via Unauthorized Mic and Camera Access

An application designed for voice dictation and automated note-taking has been accused of unauthorized surveillance by accessing microphone and camera functionalities even when not in use. This behavior allows for the collection of data from ambient conversations, raising concerns about user privacy and consent. The app circumvents standard user notifications by embedding surveillance capabilities within seemingly innocuous updates. Indicators of potential surveillance include unusual battery drain, unexpected spikes in data usage, and apps requesting unrelated permissions. Economic motivations drive the collection of data for targeted advertising and machine learning, prioritizing profit over user privacy. In response, tech companies like Google are tightening controls, increasing Play Protect scans, while experts recommend enabling two-factor authentication and auditing app permissions.

AppWizard

August 28, 2025

Malicious Android App Uses Fake Antivirus Front to Spy on Russian Users

A new strain of Android malware, identified as Android.Backdoor.916.origin, is being distributed through an app called GuardCB, which poses as a security application. The app, with a Russian interface and a logo resembling that of the Central Bank of Russia, requests extensive permissions, including device location, microphone and camera access, messages and call logs, contacts, and administrator rights. It also seeks access to popular applications like WhatsApp, Telegram, Chrome, Gmail, and Yandex. The malware enables hackers to stream live video and audio, capture images, access stored files, monitor keystrokes, and track communications and geolocation in real time. The app conducts simulated antivirus scans and generates fake threat results to reassure users while compromising their security. There are no confirmed links to specific actors or espionage activities, but the malware's extensive permissions and targeted nature raise concerns about potential state involvement amidst escalating cyber conflicts in the region.

AppWizard

August 20, 2025

Fake Antivirus App Spreads Android Malware to Spy on Russian Users

Cybersecurity experts at Doctor Web have identified a new variant of Android malware called Android.Backdoor.916.origin, active since January 2025. This malware can eavesdrop on conversations, steal messages, stream video, and log keystrokes. It targets Russian business representatives rather than average users, being distributed through direct messages as a fake antivirus app named GuardCB, which mimics the Russian Central Bank's emblem. The app requests extensive permissions, including geolocation, audio recording, camera access, and SMS data, and can function as a keylogger. It is designed for persistence, launching background services and communicating with multiple command-and-control servers. The malware can livestream audio, broadcast video, capture text, and upload contacts and call history. It exploits Android’s Accessibility Service to capture keystrokes and prevent uninstallation. The interface is exclusively in Russian, indicating it is specifically designed for a targeted group. Users in Russia are advised to download applications only from trusted sources to mitigate risks.