clients Archives

Winsage

June 12, 2026

Hackers Use Fake Windows Update Installers to Deliver OnyxC2 Credential Stealer

OnyxC2 is a sophisticated credential stealer available for a subscription fee of 0 per month, distributed through disguised lures such as fake Windows updates and legitimate software installers. It functions as a commercial product with features like an automated payload builder, tiered licensing, and a centralized web dashboard. The malware boasts a 99% detection-evasion rate, successfully evading major antivirus solutions during tests. It is developed in C++, utilizing direct system calls and mutating with each build to avoid detection. OnyxC2 collects data from around 210 applications, targeting 45 web browsers, password managers, cryptocurrency wallets, and FTP clients. The malware is delivered using DLL sideloading, where a password-protected archive contains a legitimate application and a malicious DLL. The attacker's DLL is disguised by inflating its size and is loaded by a trusted binary. The malicious code remains encrypted on disk and decrypts in memory to evade analysis. OnyxC2 communicates with a Cloudflare-fronted command-and-control server to manage infected hosts and execute commands like hardware registration and cookie uploads. The threat extends to business environments, targeting FTP and email clients, with stolen session cookies allowing ongoing access to corporate infrastructure. Implementing anti-data exfiltration controls is recommended as a mitigation strategy.

AppWizard

June 11, 2026

Apple removes Russian messenger from App Store

Apple has removed Russia’s state-backed Max messenger from its App Store, as confirmed by the app’s developers. The Max app, which lacks encryption, has been promoted by the Russian government, which has restricted access to popular messaging platforms like WhatsApp and Telegram, forcing civil servants and state agencies to use Max for communications. The app became unavailable for download on Apple’s platform on Wednesday night, and while current users can still access it, new downloads and updates are prohibited. Max, introduced in 2025 by VK, combines social media, messaging, government services, and banking options, and has been endorsed by President Putin. It is pre-installed on devices sold in Russia but not available in the European Union, with user data stored on Russian servers.

AppWizard

June 9, 2026

This New Computer Virus Is Disguising Itself As A Popular Video Game

Old-school gaming consoles are seeing a resurgence, but hackers are exploiting this trend with a malware campaign called "WeedHack," which emerged in January. This malware operates on a "Malware-as-a-Service" model, allowing users to purchase it to infect victims. WeedHack functions as a remote access infostealer, compromising computers to manipulate screens, access webcams, and steal sensitive data. It propagates by enticing users with unofficial "Minecraft" mods and clients, often using videos and download links as bait. Additionally, it employs "SEO poisoning" to promote fake websites as legitimate sources for these mods on platforms like Discord and Reddit. WeedHack disguises itself as a JAR file, similar to the official "Minecraft" client, and once executed, it installs its payload from Ethereum server domains. It can insert itself into antivirus exclusion lists, evading detection, and McAfee's tests show that Windows Defender is ineffective against it. The malware collects extensive information, including Wi-Fi networks and browser cookies, and grants hackers complete control over infected computers. The WeedHack virus serves as both malware and a training ground for aspiring hackers, structured into two tiers: a free version with core capabilities and a paid subscription for advanced features. A community has formed around WeedHack, offering tutorials, a Discord server, and a website for feature requests and custom payload creation. This community aspect lowers the barrier for newcomers, particularly targeting a younger audience that may not understand online safety.

AppWizard

June 8, 2026

Android Sideloading in 2026: Which Apps Are Worth Installing Outside the Play Store

VidMate apk is a widely used application that operates outside the Play Store and continues to do so into 2026. Sideloading is the process of installing an Android app from a source other than the Google Play Store, using the APK file format. Android supports sideloading, allowing users to enable installations from unknown sources in their device settings. As of 2026, Google requires developers distributing apps outside the Play Store to register, verify their identity with a government-issued ID, and pay a one-time fee. This policy aims to enhance security without eliminating sideloading. Enforcement began in select countries in September 2026 and will continue globally through 2027. Concerns have been raised about the potential barriers this creates for independent developers. In 2026, apps from developers with official websites and established histories are considered safer, while those from anonymous sources carry increased risks. Notable categories of sideloaded apps include video downloaders like VidMate, open-source YouTube clients like NewPipe, ad-blocking browsers, and privacy-focused tools. To install sideloaded apps safely, users should enable the option to install from unknown sources in their device settings and download from official developer websites or trusted repositories like APKMirror, F-Droid, or GitHub. Users should avoid sites that do not identify the app's creator or host unverified uploads.

Tech Optimizer

June 8, 2026

Pentasystem partners with EDB to target sovereign AI with EDB PostgreSQL database

Pentasystem Technology has partnered with EDB to enhance enterprise-grade data management using the EDB PostgreSQL database. This partnership, announced on June 8, aims to provide cost-effective and stable database solutions amidst rising costs from existing database management systems. Pentasystem plans to explore projects related to cloud computing, artificial intelligence, and data warehousing, focusing on creating a comprehensive integrated data platform. Jong-jun Jang, CEO of Pentasystem, noted the synergy between EDB's technology and Pentasystem's implementation expertise, aiming to deliver improved performance and cost savings to clients in various sectors.

Tech Optimizer

June 7, 2026

Implementing real-time change data capture with Debezium for Amazon Aurora PostgreSQL and Amazon RDS for PostgreSQL

Amazon Aurora PostgreSQL-Compatible Edition and Amazon RDS for PostgreSQL now support native streaming replication, allowing data changes to flow from source databases. Organizations often struggle to capture and propagate these changes in real time without affecting database performance. Traditional ETL pipelines can introduce significant delays, leading to outdated data and missed opportunities. Debezium is an open-source platform for change data capture (CDC) that monitors databases and streams changes to applications or data pipelines, enabling real-time data synchronization. The CDC solution combines PostgreSQL's logical replication with Debezium's change capture framework, focusing on Amazon Aurora for PostgreSQL. To implement this solution, logical replication must be enabled on Amazon Aurora through DB cluster parameter groups. Debezium connectors monitor the database's Write-Ahead Logging (WAL) via logical replication slots, converting transaction logs into structured event streams. Key components of the solution include: - Amazon Aurora for PostgreSQL as the source database with logical replication enabled. - A Debezium PostgreSQL connector running on MSK Connect for change capture. - Amazon MSK for message streaming. - An Amazon EC2 instance for testing and consuming change events. Steps to implement the solution include: 1. Creating an Amazon Aurora for PostgreSQL DB cluster and enabling logical replication. 2. Creating an Amazon MSK serverless cluster. 3. Setting up an Amazon EC2 instance to install Kafka and connect to the database. 4. Creating a custom plugin for Amazon MSK to replicate changes from RDS for PostgreSQL. 5. Uploading the custom plugin to an Amazon S3 bucket. 6. Storing credentials in AWS Secrets Manager and creating an IAM role for MSK Connect. 7. Testing the solution by verifying data replication and monitoring real-time changes. Monitoring can be done through CloudWatch Logs and the MSK Connect console, addressing common issues like replication slot lag and connector failures. To avoid charges, resources created during the implementation should be deleted in the correct order.

TrendTechie

June 6, 2026

The Pirate Bay остается жизнеспособным спустя 20 лет после рейда на платформу

The Pirate Bay was raided by Swedish police on May 31, 2006, resulting in the seizure of servers as part of a criminal investigation influenced by the U.S. government. Co-founders Gottfrid Svartholm and Fredrik Neij anticipated the raid and took steps to protect the site, with Fredrik creating a backup that allowed The Pirate Bay to be restored within three days. Following the raid, the site was temporarily rebranded as "Police Bay," gaining media attention and public support. The raid led to criminal prosecutions against the founders, while control of the site shifted to a more anonymous group. A second raid occurred in 2014, but The Pirate Bay managed to return online. In 2021, co-founder Peter Sunde claimed that only the site's administrators could shut it down, indicating its resilience and potential future expansion into the dark web.

AppWizard

June 5, 2026

Top 10 Android App Development Companies in San Francisco 2026

Finding a reliable mobile app development company in San Francisco is challenging due to the city's competitive landscape. The text lists ten notable Android development companies for 2026, selected based on their portfolios, client endorsements, and future vision. 1. TechGropse: Focuses on Android development with over a decade of experience across various sectors, emphasizing strategic product roadmaps and effective management of common challenges. 2. Raizlabs: Known for a research-driven approach to mobile development, particularly in Android, focusing on understanding end-user needs. 3. Fueled: Offers a strong portfolio of consumer apps with exceptional design quality and fosters collaborative client engagement. 4. WillowTree: Integrates strategy, design, and engineering, managing large-scale projects with meticulous attention to detail. 5. Mobiquity: Combines mobile development with digital transformation consulting, particularly for enterprise clients, and excels in integrating mobile products with legacy systems. 6. Intellectsoft: Provides competitive pricing and strong Android capabilities, focusing on operational efficiency and client communication for mid-sized businesses and startups. 7. Savvy Apps: Maintains a small client roster for focused attention and emphasizes battery efficiency, accessibility, and long-term code quality in Android projects. 8. Dom & Tom: Balances product strategy and technical execution effectively. 9. Dogtown Media: Specializes in healthcare and IoT-connected applications, with expertise in HIPAA compliance. 10. Clearbridge Mobile: Excels in enterprise Android development, creating applications for complex environments and prioritizing thorough documentation.

AppWizard

June 4, 2026

Teens are using $5 WeedHack malware to target Minecraft players

A recent cybersecurity analysis from McAfee Labs has revealed a malware campaign involving WeedHack, which has garnered over 116,000 hits and is accumulating 2,000 to 3,000 malicious hits daily. WeedHack is marketed as malware-as-a-service (MaaS) and is accessible on the internet, allowing individuals with minimal technical skills to use it for harmful activities. A dedicated Telegram channel for WeedHack has over 850 members, many of whom are teenagers and young adults using the malware for cyberbullying. The malware spreads primarily through YouTube videos promoting Minecraft mods, which often conceal the WeedHack malware. Additionally, bad actors use SEO poisoning tactics to elevate fake websites posing as legitimate Minecraft clients. McAfee lists several legitimate clients targeted by WeedHack, including Meteor Client, Radium Client, and Wurst Client. For an additional fee, attackers can access premium features like webcam access, keylogging, and file management. McAfee advises players to be cautious when downloading mods and to seek help from trusted adults if approached by individuals claiming to have compromised their systems.

AppWizard

June 4, 2026

Apple removes Russia’s state-backed messenger from App Store

Apple has removed the state-backed Russian messaging app Max from its App Store, as confirmed by the app's developers. This action is part of a broader initiative by the Russian government to promote Max, which lacks encryption and has raised concerns regarding user tracking. The app had become a mandatory communication tool for civil servants and state entities in Russia, especially as access to popular messaging platforms like WhatsApp and Telegram was restricted. Max acknowledged its removal from the App Store and noted that while existing users can still use the app, new users cannot download it or access updates. The app was introduced in 2025 by VK and is compared to China's WeChat, integrating messaging with government services and banking. It has been pre-installed on devices sold in Russia since September but is not available in the EU. Max does not use end-to-end encryption, and its user data is stored on servers in Russia.