NewApp Digest
search bot

command

ScarCruft Hacks Gaming Platform to Deploy BirdCall Malware on Android and Windows
BetaBeacon
May 5, 2026

ScarCruft Hacks Gaming Platform to Deploy BirdCall Malware on Android and Windows

ScarCruft compromised a video game platform in a supply chain attack, trojanizing its components with a backdoor called BirdCall to target ethnic Koreans residing in China. The attack enabled the threat actors to target both Windows and Android devices, turning it into a multi-platform threat. The campaign targeted sqgame[.]net, a gaming platform used by ethnic Koreans in China, known as a transit point for North Korean defectors. BirdCall has features like screenshot capture, keystroke logging, and data gathering, and relies on legitimate cloud services for command-and-control. The Android variant collects various data and has seen active development.
ScarCruft hackers push BirdCall Android malware via game platform
BetaBeacon
May 5, 2026

ScarCruft hackers push BirdCall Android malware via game platform

APT37, also known as ScarCruft and Ricochet Chollima, has developed an Android version of the backdoor BirdCall, which serves as spyware in addition to a backdoor. The malware was delivered through a Chinese website that hosts games for Android, iOS, and Windows, targeting only Android and Windows systems. The Android variant of BirdCall has capabilities such as extracting IP geolocation information, collecting contact lists, call logs, SMS data, device information, taking screenshots, recording audio, and exfiltrating files. Users are advised to download software only from official marketplaces and trusted publisher sites to protect against malware infections.
North Koreans Spy on Defectors Via Android Game Apps
AppWizard
May 5, 2026

North Koreans Spy on Defectors Via Android Game Apps

A North Korean hacking group has targeted a digital gaming platform popular among the Korean ethnic enclave in China, using a sophisticated strategy to infiltrate Android applications. Researchers from Eset discovered that an app on the platform contained a backdoor known as BirdCall, linked to North Korea. The official website for the gaming platform hosted the same suspicious APK file. A second Android file associated with another game on the same site was also found to contain the BirdCall backdoor. This supply-chain attack was attributed to the threat actor ScarCruft (APT37), active in Asia and extending into Europe and the Middle East since late 2024. The hackers likely compromised the web server to recompile original APKs with the backdoor, which can collect sensitive information such as contacts, SMS messages, call logs, documents, media files, and private keys, and can take screenshots and record audio. The malware disguises its command and control traffic among regular internet traffic, primarily using Zoho WorkDrive for operations.
Microsoft's new Windows 11 Run dialog is faster than the Windows 95-era version it's replacing
Winsage
May 5, 2026

Microsoft’s new Windows 11 Run dialog is faster than the Windows 95-era version it’s replacing

Microsoft is developing a modernized version of the Run dialog for Windows 11, featuring a streamlined design created using C# and WinUI 3. The new Run dialog has a median "time-to-show" of 94 milliseconds, which is an improvement over the old dialog's 103 milliseconds. This new version is designed to be more functional and user-friendly, allowing users to quickly access their home directory and supporting dark mode. The modern Run dialog is currently being rolled out as an opt-in feature for Insiders in the Experimental Channel.
NTLite Update Lets Users Strip Copilot and AI Features From Windows 11 25H2 Installation Images
Winsage
May 4, 2026

NTLite Update Lets Users Strip Copilot and AI Features From Windows 11 25H2 Installation Images

NTLite has released version 2026.04.10936, which allows users to remove AI features like Copilot and Windows Recall from Windows 11 25H2 installation images. The update includes faster, multi-threaded extraction capabilities that reduce processing time for Windows images and results in a smaller installation size. NTLite modifies the installation image directly, enabling a streamlined installation without the need for post-installation uninstallation of these features. The tool is available for free download, with a paid license option for advanced features. The demand for such tools has increased due to Microsoft's integration of AI features in Windows 11.
Not seeing Xbox mode in Windows 11 yet? Unlock it using this free tool
Winsage
May 4, 2026

Not seeing Xbox mode in Windows 11 yet? Unlock it using this free tool

The optional April 2026 update for Windows 11 (KB5083631) introduces Xbox mode, which enhances gaming performance by disabling unnecessary processes. The rollout prioritizes users in North America, followed by Europe, but many are still waiting for access. Xbox mode can be manually activated using ViVeTool, a free command-line application available on GitHub, provided users have installed update KB5083631. Xbox mode, previously known as the Xbox Full Screen Experience (FSE), offers a console-like interface optimized for full-screen display, enhancing readability and navigation with a gaming controller. It allows seamless transitions between productive tasks and gaming sessions, aiming to replicate the console experience on a PC.
How to Set Up PostgreSQL on Windows Easily in 2026
Tech Optimizer
May 4, 2026

How to Set Up PostgreSQL on Windows Easily in 2026

The installation process for PostgreSQL can be challenging for new users due to several factors. A common issue is the requirement to set a strong password for the default 'postgres' user, which users often forget, leading to a complicated reset process. Another challenge is port conflicts, as PostgreSQL uses port 5432 by default; if another application is using this port, it complicates installation. Additionally, users must configure PostgreSQL to be included in the system PATH for command-line operations, a step that is frequently overlooked, causing frustration when executing commands.
Absurd Delivers Durable Workflows On Postgres
Tech Optimizer
May 3, 2026

Absurd Delivers Durable Workflows On Postgres

On April 4, 2026, Earendil reported on Absurd, an execution system built solely on Postgres, which has been in production for five months and has received several updates. Recent developments include the introduction of Software Development Kits (SDKs) for TypeScript, Python, and an experimental Go SDK, as well as a command-line interface (CLI) called absurdctl and a Habitat dashboard for monitoring and management. Absurd's architecture is resilient, utilizing a checkpointed step model for durable agent workflows, but currently lacks features like partitioning and built-in push scheduling, focusing on reliability and simplicity.
“Xbox mode is easily the headline feature”: In May’s Windows 11 update, I walk through the 11 upgrades that change how we use the OS, and why some of them surprised me
Winsage
May 2, 2026

“Xbox mode is easily the headline feature”: In May’s Windows 11 update, I walk through the 11 upgrades that change how we use the OS, and why some of them surprised me

Microsoft will begin rolling out the May 2026 Security Update for Windows 11 on May 12, 2026. Key features of this update include: 1. Xbox Mode: Transforms PCs into a console-like experience, prioritizing system resources for gaming and freeing up to 2GB of memory. 2. Voice Typing Improvements: Redesign of Voice Typing elements on the touch keyboard. 3. New Arabic 101 Legacy Keyboard Layout: Available for addition from the Region page in Settings. 4. Drop Tray Changes: Renamed from Drag Tray and can be disabled in Settings > System > Multitasking. 5. Taskbar AI Agents Support: Allows monitoring of AI agents directly from the Taskbar, starting with the Microsoft 365 Copilot app. 6. Debloat Policy with Dynamic List Support: Enables administrators to specify additional apps for removal beyond the default list. 7. Windows Driver Policy Update: Changes how the kernel manages trust for third-party drivers, eliminating default trust for cross-signed drivers. 8. Batch File Security Changes: Enhances security for batch files and Command Prompt scripts, with an option for a hardened processing mode. 9. Format FAT32 up to 2TB: The format command-line tool now supports formatting volumes up to 2TB using FAT32.
I've used Android Auto for years, and these 5 changes solved my biggest issues
AppWizard
May 2, 2026

I’ve used Android Auto for years, and these 5 changes solved my biggest issues

The author has had a positive experience with Android Auto, despite occasional issues like signal loss and erratic responses from Google Assistant. They have customized their Android Auto settings to enhance their driving experience by using Custom Assistants for executing multiple actions with a single tap, streamlining routines for navigation and communication, and managing notifications effectively. They recommend using taskbar widgets for a dynamic screen layout, especially in vehicles with smaller infotainment systems. A significant upgrade noted is the shift from Google Assistant to Gemini. The author also addresses communication challenges with the assistant, suggesting that pressing the steering wheel's call/hang-up button can silence it when needed.
Search