control Archives

Tech Optimizer

April 22, 2026

New STX RAT Uses Hidden Remote Desktop and Infostealer Features to Evade Detection

A newly identified remote access trojan, STX RAT, emerged in 2026, integrating hidden remote desktop access with credential theft features. The name "STX" comes from the Start of Text magic byte x02, which it appends to communications with its command-and-control (C2) server. Initial sightings were reported in late February 2026, when it was delivered via a browser-downloaded VBScript file to a financial organization. By early March, Malwarebytes noted a campaign distributing STX RAT through compromised FileZilla installers. Researchers from eSentire’s Threat Response Unit analyzed the malware, which includes extensive anti-analysis measures and employs techniques like AMSI-ghosting. Once operational, STX RAT connects to a C2 server at 95.216.51.236, transmitting system information securely. It targets saved credentials from applications like FileZilla and includes a Hidden Virtual Network Computing (HVNC) module, allowing attackers to control a victim's machine without detection. Security teams are advised to block the C2 IP and implement detection rules to mitigate the threat.

AppWizard

April 21, 2026

Diablo 4 Lord of Hatred review – Sanctuary is safe, but I’m conflicted

Diablo 4: Lord of Hatred introduces a revamped endgame experience with eight distinct classes, including the new Warlock class, which combines spellcasting and summoning abilities. The narrative centers on the protagonist's relationship with Lilith and the threat posed by Mephisto, set against the backdrop of the visually striking region of Skovos, inspired by Grecian architecture. The game features enhanced customization options, improved class skill trees, and a new War Plans system that revitalizes the endgame experience. However, the overarching story is criticized for its pacing and character development, particularly regarding the Amazons and the reliance on Lilith. Despite these critiques, the campaign offers visually stunning boss encounters and a compelling soundtrack. The game raises questions about its future direction, with concerns about evolving into a live-service model.

Winsage

April 21, 2026

Microsoft’s next Windows 11 update targets stability and speed

Microsoft has released new preview versions of Windows 11 for Insiders across the Beta, Dev, and Canary channels, focusing on enhancing stability and performance. Key enhancements include: - File Explorer: Faster, smoother, and more reliable experience. - Settings App: Improved navigation and consistent user interface. - Drop Tray: Functioning seamlessly. - Clipboard History: Quicker response time. - Storage Settings: Enhanced performance for large-volume storage. - Windows Hello: Greater reliability. - Keyboard Input and Voice Control: More uniform experience. - Startup Applications: Improved performance and memory management. - Screen Content Display: Enhanced stability in displaying content, audio, and fonts. - Overall Security: Improved security measures. These updates aim for reliability and consistency, with significant enhancements expected to be available to the public by May 2026.

Tech Optimizer

April 21, 2026

Microsoft says Windows 11 users do not need third-party antivirus software

Microsoft has introduced built-in antivirus software, Microsoft Defender, in Windows 11, which is active by default and continuously updated. Independent testing shows Defender achieving a score of 6 out of 6 from AV-Test and real-world protection rates between 98.5% and 100% from AV-Comparatives. The security features include real-time scanning, behavior monitoring, cloud-delivered protection, SmartScreen technology, Controlled Folder Access, and Smart App Control. Microsoft acknowledges that while Defender is sufficient for most users, third-party solutions may be necessary in enterprise environments. Windows Security benefits from automatic updates through Windows Update, providing continuous protection. Over 500 million Windows 11 users have received this updated guidance.

Winsage

April 21, 2026

Galaxy owners can now connect their phones to any Windows 11 PC

Samsung has updated the Galaxy Connect app to version 2.1.6.0, expanding its compatibility to all Intel Windows 11 PCs, in addition to Galaxy Book laptops. The app allows users to continue viewing webpages from mobile devices on PCs, copy/paste content between devices, access files stored on phones and tablets through a PC file explorer, control Galaxy phones and tablets using a PC’s mouse and keyboard, and use a Galaxy tablet as a second screen for a PC. The app is available for download from the Microsoft Store. It remains limited to Intel- or AMD-based x64 PCs, with no support for ARM-based systems.

AppWizard

April 21, 2026

The Last of Us star Troy Baker wants to make his own game studio, but he wants to “do it right”

Troy Baker, known for his roles in video games like The Last of Us, is establishing his own game studio to take control of the narrative process and tell his own stories. He aims to blend lessons from his past experiences in the industry into new projects and is focused on building a team of trusted collaborators. Baker recognizes the challenges of transforming ideas into tangible products and emphasizes a careful approach to development, stating that he wants to avoid rushing the process. His venture could potentially create job opportunities for developers amidst industry challenges like layoffs and project cancellations.

AppWizard

April 21, 2026

Europe is abandoning WhatsApp and Signal: Why governments are introducing their own messaging apps

European officials are transitioning from messaging platforms like WhatsApp and Signal to state-controlled applications to reduce reliance on US technologies. Six nations—France, Germany, Poland, the Netherlands, Luxembourg, and Belgium—are implementing secure messaging systems for sensitive communications. NATO has its own solution, and the European Commission plans to finalize its transition by year-end. This shift is driven by cybersecurity threats, particularly targeting politicians through popular apps, prompting advice to deactivate Signal groups to prevent data leaks. Belgium has developed the BEAM app, controlled by the state, for official use, offering features like end-to-end encryption and participant management. The localization trend is influenced by geopolitical dynamics and past incidents highlighting Europe’s dependence on foreign technology. Additionally, transparency issues have emerged, as reliance on private messaging services has obscured communications related to significant contracts, such as vaccine agreements.

AppWizard

April 21, 2026

NGate NFC malware targets Android users through trojanized payment app

NFC-based payment fraud targeting Android users in Brazil has been linked to a campaign using a trojanized version of the HandyPay app, part of the NGate malware family, since November 2025. The malware is distributed through a counterfeit website mimicking a lottery and a fraudulent Google Play page. The operators chose HandyPay for its low cost and minimal permissions required. The malware requests users to set it as the default NFC payment app, allowing it to capture payment card PINs and relay NFC card data to attackers. ESET Research identified this campaign and discovered logs from compromised devices containing sensitive information. The trojanized app has never been on the official Google Play store, and ESET has notified Google and the HandyPay developer about the issue.

AppWizard

April 21, 2026

New NGate Android malware variant uses NFC app to steal card data

A new variant of the NGate Android malware exploits a legitimate NFC payment app, HandyPay, to steal users' card information and PINs, enabling unauthorized contactless transactions. This malicious version of HandyPay, which has been available since 2021, was identified by ESET researchers and is distributed through a fraudulent lottery website and a fake Google Play page. The malware captures sensitive information by prompting users to enter their payment card PIN and tap their card against the device, sending the data to an attacker-controlled phone and exfiltrating the PIN to a command-and-control server. The campaign employs social engineering tactics and requires minimal permissions, relying on users to enable app installations from unknown sources. The attackers use a centralized infrastructure for malware distribution and PIN collection, with evidence of compromised devices in Brazil. The shift to modifying a legitimate application is motivated by financial incentives, as it offers similar functionality at a lower cost compared to underground tools. Users are advised to avoid installing apps from unofficial sources and to ensure the legitimacy of applications before entering sensitive information.

Tech Optimizer

April 21, 2026

Microsoft Defender: The Gold Standard for 2026 Security

Microsoft asserts that Microsoft Defender Antivirus is sufficient for most Windows 11 users as their sole security solution, following updates to the Windows security framework designed to counteract emerging threats. The current Windows security experience includes features such as real-time protection, cloud-delivered intelligence, smart app control, and cross-platform presence. Microsoft believes that the operating system itself is the most effective guardian of user data, embedding protections directly into the kernel to avoid performance slowdowns associated with external antivirus solutions. Despite this, the cybersecurity sector argues that specialized third-party software remains important, offering features like advanced password management and dedicated identity theft protection that Microsoft Defender lacks. The threat landscape in 2026 is increasingly driven by AI, prompting Microsoft to integrate AI into the Defender engine for proactive threat detection. While Microsoft Defender provides a robust baseline for security, a comprehensive strategy also requires good digital hygiene, strong password policies, and skepticism towards suspicious links.