cybersecurity risks Archives

AppWizard

July 8, 2025

Gamers hacked playing Call of Duty: WWII—PC version temporarily taken offline

The PC version of Call of Duty: WWII has been temporarily taken offline due to a serious security concern involving a remote code execution (RCE) vulnerability. This flaw allows attackers to execute malicious code on players' machines without consent, leading to unauthorized control during multiplayer sessions. Exploits reported include opening command prompts, sending messages via Notepad, forcing remote shutdowns, and changing desktop wallpapers. The vulnerability is particularly concerning for PC gamers using Microsoft’s Game Pass subscription service, as it stems from the game's reliance on peer-to-peer networking. Activision is speculated to be enhancing its anti-cheat systems in response, but the effectiveness of updates to address the RCE vulnerability is uncertain.

AppWizard

July 7, 2025

Malware Surge Hits Android: Adware, Trojans and Crypto Theft Lead Q2 Threats

A concerning trend in mobile security shows that malicious applications and spyware are increasingly targeting Android users. Adware, particularly the Android.HiddenAds family, remains the most prevalent threat, despite a decrease in detections. The Android.MobiDash adware trojans have increased by over 11%. The Android.FakeApp malware, which disguises itself as legitimate applications, has seen a 25% decline in activity, primarily targeting Turkish and French-speaking users. The Android.Banker variant has surged by over 70%, indicating a rise in banking trojans. A large-scale crypto theft operation involved the Android.Clipper.31 trojan embedded in a modified WhatsApp version and low-cost Android firmware, which replaces cryptocurrency wallet addresses. Spyware named Android.Spy.1292.origin targets Russian military personnel through a counterfeit mapping application. Malicious applications continue to be found on Google Play, including adware disguised as cryptocurrency news apps and fake finance applications. The open nature of Android poses ongoing cybersecurity risks, even within official app stores.

Tech Optimizer

June 9, 2025

Cryptostealing Malware Found in Printer Software Highlights Growing Supply Chain Threat

A cybersecurity incident involving Procolored printers revealed vulnerabilities in everyday hardware, as users may have downloaded malware capable of stealing cryptocurrencies like Bitcoin. Tech content creator Cameron Coward reported an antivirus alert linked to Procolored printer software, prompting an investigation by G Data researchers who found malicious code in installation files on the manufacturer's website. The identified threats included a remote access tool (Win32.Backdoor.XRedRAT.A) and a cryptocurrency wallet stealer (MSIL.Trojan-Stealer.CoinStealer.H). Compromised files were last updated in October 2024 and distributed through official channels. The company initially denied the issue but later removed the downloads from their website in May 2025 and acknowledged the malware might have been introduced via USB transfers. An analysis of an attacker’s wallet showed a total of 9.3 BTC accumulated across 330 transactions before it was emptied. Cybersecurity experts recommend that users conduct antivirus scans and consider reformatting drives and reinstalling operating systems if infections are suspected.

Tech Optimizer

May 14, 2025

Best Antivirus Software (2025): ESET Recognized as Top Cybersecurity Solution by Software Experts

ESET is recognized as a leading antivirus provider in 2025, known for its robust security solutions that effectively combat rising cyber threats such as phishing, ransomware, and zero-day exploits. The company's offerings include heuristic and behavioral detection, ransomware and phishing protection, exploit blocker technology, and low resource usage, ensuring minimal impact on system performance. ESET provides various products for home users, including ESET HOME Security Essential, Premium, and Ultimate, as well as a Small Business Security package for up to 25 devices and scalable solutions for larger organizations. Pricing for home products starts at .99/year, with multi-device and multi-year discounts available. ESET operates in over 200 countries, utilizing a global network for real-time threat intelligence and maintaining a commitment to effective digital security since its establishment in 1992.

Winsage

May 11, 2025

Microsoft Confirms New Free Update Deadline For Windows Users

Microsoft has extended support for Microsoft 365 applications on Windows 10 until October 10, 2028, providing an additional three years of security updates. This change comes after the company had previously announced that support would end on October 14, 2025. The extension aims to assist the 240 million Windows 10 users who cannot upgrade to Windows 11 due to hardware limitations, allowing them to transition without immediate pressure to purchase new hardware. Microsoft has stated that while they will provide troubleshooting assistance for issues with Microsoft 365 apps on Windows 10, users are encouraged to upgrade to Windows 11 for optimal performance and reliability.

Winsage

April 14, 2025

No, it’s not OK to delete that new inetpub folder

Microsoft has introduced a new inetpub folder located at %systemdrive%inetpub on user devices as part of the April Patch Tuesday updates to enhance system protection. This folder is associated with Internet Information Services (IIS), which is not installed by default. Microsoft advises that this folder should not be deleted, regardless of whether IIS is active. The vulnerability CVE-2025-21204 allows an authenticated attacker to elevate privileges locally, enabling them to perform file management operations on the victim machine. The "link following flaw" refers to inadequate prevention of filename linking to unintended resources, and mitigating this risk involves denying access to specific files and setting appropriate folder permissions. The inetpub folder serves as a protective measure against potential exploitation of vulnerabilities.

Winsage

April 14, 2025

Why the death of Windows 10 is a hacker’s wet dream

Microsoft is considering halting security updates for Windows 10, which could lead to increased cybersecurity risks and environmental issues due to the potential disposal of millions of functional computers. Security updates will remain available for an additional year at a cost, similar to extended support options previously offered to businesses. There is a call for Microsoft to provide free security updates for Windows 10 as long as it remains widely used, to promote sustainability and reduce the throwaway culture associated with technology.

Winsage

April 11, 2025

Windows Recall Is Finally Rolling Out To Customers

Microsoft is rolling out its Windows Recall feature, which captures near-constant screenshots of user activity to allow natural language searches for content. Concerns have been raised by cybersecurity expert Kevin Beaumont, who warns that it could reverse cybersecurity progress by a decade. Users must opt-in and use Windows Hello for authentication to access their stored images, which can be paused at any time. Recall captures snapshots during various tasks and allows users to reopen applications or documents and perform actions directly from these snapshots. The rollout will occur gradually, and the tech community is monitoring its impact on cybersecurity.

AppWizard

March 25, 2025

Signal is ‘as safe as messaging apps get’, but not for national security

End-to-end encrypted messaging app Signal is recognized for its security features but is advised against for use by government officials discussing national security. A breach occurred when members of former President Donald Trump's national security team mistakenly included a journalist in a group chat sharing sensitive military information. Cybersecurity experts express concerns about the potential legal implications of using apps like Signal for classified communications, as it could violate the Espionage Act. High-ranking officials were involved in this incident, which exposed sensitive details, including air-strike targets and the identity of a CIA officer. Typically, government officials use Secure Compartmentalized Information Facilities (SCIFs) for classified information, and there are specific government-approved systems for transmitting such information that do not include Signal.

Winsage

March 19, 2025

Microsoft is now sending emails to get you moving on from Windows 10

Microsoft is notifying Windows 10 users via email about the end of support for the operating system, which will officially cease on October 14, 2025. The email encourages users to check upgrade eligibility for Windows 11 and explore new computers. It includes a FAQ section addressing the implications of the end of support, noting that while devices will not stop functioning immediately, they will become vulnerable to malware without security updates. The option for paid extended support for an additional year is not mentioned. Users are advised to consider alternatives like 0Patch for updates, invest in antivirus software and VPN services, and back up files to OneDrive.