communication Archives

Winsage

June 2, 2026

PHANTOMPULSE RAT Uses UAC Bypass to Hijack Windows Systems

PHANTOMPULSE is a remote access trojan (RAT) used as a final payload in multi-stage attacks targeting Windows environments. It employs advanced post-exploitation techniques, including process injection, User Account Control (UAC) bypass, and a decentralized blockchain-based command-and-control (C2) mechanism. The malware utilizes three process injection techniques: module stomping, manual DLL mapping, and debug-driven execution. It avoids detection by using direct system calls instead of standard Windows APIs and incorporates a hardware breakpoint mechanism to disable security protections like AMSI and ETW. PHANTOMPULSE retrieves its C2 server address from Ethereum-based transaction data but has a vulnerability that allows defenders to hijack communication. It achieves persistence through scheduled tasks and supports self-healing capabilities. Privilege escalation is done using the "schuac" UAC bypass technique. The malware conducts system reconnaissance focusing on cryptocurrency wallets and messaging apps but does not directly steal credentials. It shows signs of AI-assisted development and shares tactics with DPRK-aligned threat groups, particularly in targeting cryptocurrency platforms.

Winsage

June 2, 2026

New PHANTOMPULSE RAT Campaign Uses UAC Bypass in Windows Attacks

The REF6598 intrusion set has revealed a Remote Access Trojan (RAT) named PHANTOMPULSE, which is distributed via malicious Obsidian plugins. It uses advanced evasion techniques, including a blockchain-based command and control (C2) channel and a public User Account Control (UAC) bypass to infiltrate Windows systems. The malware disables security measures like the Antimalware Scan Interface (AMSI) and Windows Lockdown Policy (WLDP) through a hardware-breakpoint technique, allowing it to avoid detection by signature-based memory scanners. PHANTOMPULSE hides its core files in encrypted registry blobs and creates scheduled tasks that appear as .NET Framework updates. Its decentralized C2 framework queries public blockchains for operational data, but it lacks sender authentication, which can be exploited by defenders. The malware inventories the system for antivirus software and targets high-value applications. It employs a UAC bypass technique called “schuac” to gain elevated permissions. Analysts attribute this campaign to DPRK-aligned threat actors, particularly the BlueNoroff group, due to its focus on cryptocurrency wallets and blockchain exploitation. Defenders can identify new infrastructure by searching blockchain ledgers for a specific hex signature associated with the malware's C2 encryption routine.

AppWizard

June 1, 2026

From Maps to Meet, here’s how readers rank their favorite Google apps

A recent poll with nearly 1,900 votes revealed that Google Maps is the favorite Google app, receiving 36.2% of the votes. Google Wallet followed with 18.2%, and Google Photos received 17.8%. Gmail garnered 10.3% of the votes, while Google Calendar received 8.3%. Google Meet received the least support, with only 2% of the votes.

AppWizard

June 1, 2026

4 Office Gadgets And Accessories Your Android Phone Can Replace For Free

Android smartphones can replace several traditional office gadgets, including: - Scanner: A smartphone camera can digitize documents using free document scanner apps, eliminating the need for a physical scanner. QR scanner apps can also read QR codes and barcodes. - IR Remote: Some smartphones have built-in IR blasters, while others can use a small adapter and an app to function as universal remotes. - Computer Microphone: Smartphones can be used as microphones for computers through apps like Micstream or AudioRelay, enabling communication on platforms like Discord or Zoom. - Computer: Android phones can mimic desktop PCs using applications like Samsung DeX or Remote Desktop functionality. Virtual machines can emulate different operating systems, but may struggle with demanding applications. Installing Windows directly onto a phone is possible but risky.

AppWizard

June 1, 2026

Download It Now! Steam Offers Two Free PC Games For A Highly Limited Time

Valve has launched a limited-time promotional event on Steam, offering two free games: IQ Under Construction and Moonrise Fall. IQ Under Construction is a cooperative climbing game requiring teamwork and communication, with a redemption window of six hours from the announcement. Minimum system specifications include a 3.2 GHz Dual-Core CPU, 4 GB of RAM, Intel HD Graphics, DirectX 11, and 2 GB of available storage on Windows 10. Moonrise Fall is an atmospheric exploration and puzzle adventure about a boy lost in a supernatural forest after a car accident. The redemption window for this game closes on June 2. Minimum hardware requirements are a 64-bit compatible Intel Dual-Core CPU, 4 GB of RAM, a DX9-compatible graphics card, and 600 MB of storage on Windows Vista or newer.

Tech Optimizer

June 1, 2026

Avast Free Antivirus for Windows: Features, Limits, and US Use

Avast Free Antivirus for Windows is a free malware protection software designed for American home users, operating under Gen Digital, which also includes Norton. It provides essential security features such as real-time scanning, on-demand scans, and regular updates, but has limitations compared to paid versions, including the absence of features like VPN and advanced ransomware protection. The software is intended for home PC use and is available for download on Windows PCs. While it serves as a basic defense against common malware threats, it is not suitable for small businesses needing comprehensive security solutions. Users are advised to maintain safe browsing habits even with the antivirus installed.

AppWizard

May 31, 2026

How Slack Messenger Shapes Modern Team Communication

Slack Messenger is a cloud-based team messaging and collaboration software developed by Slack Technologies, a subsidiary of Salesforce. It enables organized conversations through topic-focused channels, direct messaging, file sharing, and integration with third-party tools. Key features include searchable message history, voice and video calls, screen sharing, and huddles. Slack is essential for US businesses, particularly in technology, media, and professional services, as it helps reduce email overload and supports remote work. It offers security controls suitable for enterprise needs and integrates with tools like Google Workspace and Microsoft Office 365. Slack operates on a freemium model, providing free and paid plans to cater to a diverse range of users, including startups and large corporations.

AppWizard

May 31, 2026

Thick as Thieves is making changes, but not the one I think matters most

OtherSide Entertainment, the developers of Thick as Thieves, expressed satisfaction with player engagement but acknowledged room for improvement. A second update is scheduled for release mid-next week, which will include features like key rebinding. However, the option to adjust or remove mission timers is still absent, causing concern among players. The game features solo or cooperative missions with time constraints of 30 to 45 minutes, and an eight-minute countdown begins after completing any objective. Failing to reach the exit before time runs out results in mission failure. The developers have made the mission timer visible to enhance transparency, but concerns remain about the rigidity of the game's design regarding the timer and item retrieval.

AppWizard

May 30, 2026

Kingston kids to compete in Ontario’s top Minecraft championships

More than 100 students will participate in the largest Minecraft esports competition in Ontario at Humber Polytechnic on Saturday. Two teams from King’s Town School, the Pixelites and the TerrorBytes, will compete in the Ontario Scholastic Esports Association (OSEA) Minecraft Provincial Championship against 16 other teams. The competition is for students in Grades 5 to 8 and involves collaborative building challenges using Minecraft Education. The Pixelites include Oliver Armstrong, Ralph Bobrow, and Harlo Garwood, while the TerrorBytes consist of Kieran McCabe, Charlie Neary, and Jackson Geen. This year's qualifying task required teams to create an Olympic-themed parkour course. The event aims to connect gaming with curriculum-based learning and skills development. Teams will have 30 to 40 minutes to complete each of the four build challenges, with one scenario remaining a mystery. Medals will be awarded to top teams, but the focus is on skill development and confidence-building. The event will be livestreamed for families and school communities.

AppWizard

May 29, 2026

Russian messaging app launched in Tanzania in Africa expansion drive

A Russian-developed messaging application called Max has been launched in Tanzania, offering integrated communication services such as text messaging, voice and video calls, file sharing, and online conferencing. The application has over 110 million registered users globally, with more than 80 million using it daily. Max is designed for a wide audience, including businesses and individuals, and features tools like group calls, news channels, and screen sharing. It is accessible in various regions, allowing users to register with local mobile numbers. The app utilizes NoLACE technology to improve communication quality in areas with poor connectivity.