cybersecurity Archives

AppWizard

April 6, 2026

Dangerous “NoVoice” malware found in over 50 Play Store apps that were installed 2.3 million times

A new malware threat called "NoVoice" has been found in over 50 applications on the Google Play Store, with 2.3 million installations on Android devices. Discovered by McAfee, this malware is hidden in seemingly harmless apps like system cleaners, games, and image galleries. It exploits Android vulnerabilities to gain root access, potentially allowing attackers to steal sensitive information and manipulate applications without user consent. In some cases, it may persist even after a factory reset. Google has stated that Android devices updated since May 2021 are protected against this threat and that Google Play Protect actively removes malicious apps and blocks new installations. The malware was not able to infect devices in Beijing and Shenzhen, suggesting the attackers may be avoiding local law enforcement. One identified app carrying the NoVoice payload is SwiftClean, developed by Biodun Popoola. The malware operates using a silent audio file, executing its code without user detection. Users are advised to download apps only from the Google Play Store and keep their devices updated.

Tech Optimizer

April 6, 2026

Scammers Want Our Data, Yet CNET Finds Many of Us Aren’t Protecting Our Devices

- 78% of US adults currently own a personal laptop, with HP (32%) and Apple (26%) being the most popular brands. - 54% of laptop owners have encountered potential malware on their devices in the past year. - 88% of those who reported seeing potential malware took action, while 12% did not respond. - 68% of proactive laptop owners either deleted the suspicious file or closed the website or pop-up. - 37% of laptop owners received phishing emails in the past year. - Many modern devices come equipped with built-in antivirus solutions, such as Microsoft Defender for Windows 11 and XProtect for Mac users. - 60% of users who acted upon encountering potential malware manually deleted files or closed suspicious websites, while 35% initiated antivirus scans. - Antivirus software alone cannot safeguard against data breaches or identity theft; a comprehensive cybersecurity strategy involves various tools and practices. - Recommended tools for online security include Bitdefender for antivirus, Aura for identity theft protection, Bitwarden for password management, and ExpressVPN for VPN services.

Tech Optimizer

April 5, 2026

z3soft sets a new standard in the security market with next-generation integrated security solutions

z3soft is developing the Agentic Security Platform (ASP), which integrates large language models, antivirus solutions, and comprehensive file security to shift from passive to proactive cybersecurity measures. CEO Park Ju-seon highlights the need for a broader market strategy to address challenges in the domestic security market, which is dominated by a few players. The ASP aims to combine legacy security systems with AI technology for enhanced security management. z3soft is focusing on creating a 'cyber immunity' solution for AI environments, integrating Zero Trust principles for data protection. The company plans to foster an integrated security ecosystem through partnerships with smaller firms and aims to make advanced security solutions accessible to small and medium-sized enterprises (SMEs) via a subscription model. z3soft intends to validate its business model in Japan and the U.S. before introducing it to South Korea, with goals set for market entry by 2027 and the launch of zero-trust firewalls in Japan and an integrated security platform in the U.S. Park anticipates that significant changes in the domestic market may take five to ten years.

AppWizard

April 3, 2026

2.3 Million Users Affected by New Android Malware Hid in 50 Google Play Apps

Google has imposed strict restrictions on sideloading applications on Android devices due to concerns about risks from external sources. A new malware named NoVoice has been discovered on Google Play, embedded in over 50 applications with at least 2.3 million downloads, potentially compromising that many devices. The malware seeks root access by exploiting vulnerabilities in older Android versions and can steal sensitive data and install/remove apps without consent. It is difficult to remove, as it installs recovery scripts that survive factory resets. However, Google has stated that devices updated since May 2021 are protected against this threat, and Google Play Protect removes these apps and blocks new installs. Users with devices updated after May 2021 are considered safe, while those with infected apps should consider their devices compromised.

AppWizard

April 3, 2026

Google Responds As 50 Apps With 2 Million Downloads Hit By Malware

Researchers at McAfee Labs discovered that 50 Android applications on the Google Play Store contain malware known as NoVoice, which can grant full remote access to infected smartphones. These apps have over 2.3 million downloads. The malware can communicate with remote servers, profile devices, and download tailored root exploits, potentially compromising specific hardware and software configurations. However, devices with an Android security patch level of May 2021 or later are not vulnerable to these exploits, as the vulnerabilities were patched by Android between 2016 and 2021. Google Play Protect removes these apps and blocks new installs, and users are advised to keep their devices updated with the latest security patches.

AppWizard

April 3, 2026

Russian officials discover fraudsters in Minecraft – they are using children in their schemes

Fraudsters are exploiting in-game chats in Minecraft to deceive young players, particularly in Russia. They initiate contact with children in the game, then move the conversation to Telegram, posing as "cybersecurity officers" and claiming that the children have shared sensitive information. They threaten detention to coerce minors into stealing money from their parents to give to couriers. Authorities have issued warnings to raise awareness among children and parents about these deceptive tactics.

Tech Optimizer

April 2, 2026

Cybersecurity expert highlights mobile device vulnerabilities

Cybersecurity expert John Joyce emphasizes the vulnerabilities of mobile devices, noting that many users mistakenly believe their smartphones are secure. He highlights that smartphones often serve as primary computing devices, storing sensitive personal information, which makes them attractive targets for cybercriminals. Joyce advises users to look for signs of compromise, such as device slowdowns or unusual app behavior, and to keep their devices updated with the latest operating systems and security patches to reduce risks. He recommends using a Virtual Private Network (VPN) when on public Wi-Fi and suggests utilizing security apps like Norton and TotalAV for additional protection. Joyce also points individuals to Cirrus Technology Consultants' online resources for further information on mobile cybersecurity.

Tech Optimizer

April 2, 2026

Norton Review 2026: Solid Antivirus With Great Safe Browsing Tools and Parental Controls

Norton Antivirus has a score of 8.3/10. It offers extensive parental controls on some plans, cloud backups for sensitive data, and a high-quality safe browser. However, its identity theft protection features are limited to US-based users, it has higher resource usage than most competitors, and reaching human customer support can be difficult. Norton began as an antivirus company in 1982 and has expanded to include a password manager, safe browser, cloud backups, and privacy monitoring tools. The LifeLock plans provide identity theft protection and insurance for US users. The antivirus software features easy setup, optimization tools for Windows and MacOS, scam detection, and privacy monitoring. Norton offers various plans, including Norton AntiVirus Plus, Norton 360 Standard, Norton 360 Deluxe, and Norton 360 with LifeLock Select Plus, each with different features and pricing. The plans can cover multiple devices, with costs starting at a competitive rate for the first year. Norton’s antivirus software includes real-time protection, manual and automated scans, and scan scheduling. Its parental controls are a notable feature, and while cloud backups are available, storage may be limited. Free tools include a password manager, data breach scan, and safe browser. Norton’s usability is straightforward, with an intuitive account setup and installation process. The antivirus operates with moderate resource usage, maintaining a low footprint during routine tasks. Norton has a strong reputation for malware detection, maintaining a perfect security ranking from AV-Test and high online detection rates from AV-Comparatives. Its password manager and backup systems use AES-256 encryption, and its VPN follows a no-logs policy. Customer support options include a community forum, knowledge base, and 24/7 live chat and phone support, though email support is not available. Norton is considered a good value for families and budget-conscious users, with pricing starting at an affordable rate for single-device coverage. It is suitable for users seeking active threat protection and parental controls, though alternatives like Bitdefender or Malwarebytes may be better for those prioritizing efficiency and advanced features.

AppWizard

April 1, 2026

‘NoVoice’ Android malware on Google Play infected 2.3 million devices

A new Android malware called NoVoice has been found in over 50 applications on Google Play, with more than 2.3 million downloads. The malware targets older Android versions, specifically those patched between 2016 and 2021, and attempts to gain root access by exploiting vulnerabilities. It conceals malicious components within the com.facebook.utils package and uses steganography to hide an encrypted payload within a PNG image file. NoVoice avoids infecting devices in certain regions and has checks to detect emulators and VPNs. Once activated, the malware contacts its command-and-control server to gather device information and polls it every 60 seconds for tailored exploits aimed at rooting the device. It can exploit 22 vulnerabilities, including kernel bugs, and establishes persistence by replacing key system libraries and installing recovery scripts. The malware injects code into applications, particularly targeting WhatsApp to extract sensitive data for session replication, which is then exfiltrated to the C2 server. The malicious apps containing NoVoice have been removed from Google Play, but users who installed them should consider their devices compromised. Upgrading to devices with later security patches is recommended to mitigate the threat.

Winsage

April 1, 2026

WhatsApp on Windows users targeted in new campaign, warns Microsoft

Microsoft researchers have identified a campaign that exploits WhatsApp attachments to infiltrate Windows machines, allowing attackers remote control. The attack uses social engineering tactics, where users receive a seemingly benign .vbs (Visual Basic Script) file that can be executed on Windows. This method does not rely on software vulnerabilities but on persuading victims to execute the malicious file. Attackers manipulate built-in Windows tools to download further malware, employing a technique known as living off the land (LOTL) to avoid detection. The malware seeks to elevate its privileges to administrator status, modifying User Account Control (UAC) prompts and registry settings for persistence. An unsigned MSI (Microsoft Installer) is deployed to establish remote-access software, granting continuous access to the compromised machine.