disable Archives

AppWizard

April 21, 2026

NGate Android malware uses HandyPay NFC app to steal card data

A new variant of the NGate malware targets Android users by disguising itself within a trojanized version of the HandyPay app, which is a legitimate mobile payment processing application. This malware, documented since mid-2024, siphons payment card information through the mobile device's near-field communication (NFC) chip and sends the stolen data directly to attackers, who create virtual cards for unauthorized purchases or cash withdrawals from NFC-enabled ATMs. The new variant has been injected with malicious code into the HandyPay app, which has been available on Google Play since 2021. The code includes emojis, indicating the possible use of a generative AI tool in its development. The shift from previous iterations, which used an open-source tool named NFCGate, to HandyPay is likely motivated by financial considerations and the need for evasion, as HandyPay is more affordable and requires fewer permissions. This NGate variant has been active since November 2025, primarily targeting Android devices in Brazil. It employs two main distribution methods: a counterfeit app named “Proteção Cartão” hosted on a fraudulent Google Play page and a fake lottery website that redirects users to WhatsApp to download the malicious APK. Upon installation, the app prompts users to set it as their default NFC payment application, requests their card PIN, and instructs them to tap their card on the phone for reading, transmitting all collected information to an attacker's email address. To protect against such threats, Android users are advised to avoid downloading APKs from outside Google Play, disable NFC when not in use, and use Play Protect to scan for threats.

AppWizard

April 21, 2026

New NGate Android malware variant uses NFC app to steal card data

A new variant of the NGate Android malware exploits a legitimate NFC payment app, HandyPay, to steal users' card information and PINs, enabling unauthorized contactless transactions. This malicious version of HandyPay, which has been available since 2021, was identified by ESET researchers and is distributed through a fraudulent lottery website and a fake Google Play page. The malware captures sensitive information by prompting users to enter their payment card PIN and tap their card against the device, sending the data to an attacker-controlled phone and exfiltrating the PIN to a command-and-control server. The campaign employs social engineering tactics and requires minimal permissions, relying on users to enable app installations from unknown sources. The attackers use a centralized infrastructure for malware distribution and PIN collection, with evidence of compromised devices in Brazil. The shift to modifying a legitimate application is motivated by financial incentives, as it offers similar functionality at a lower cost compared to underground tools. Users are advised to avoid installing apps from unofficial sources and to ensure the legitimacy of applications before entering sensitive information.

Winsage

April 20, 2026

I just heard about this free Windows 11 customization app despite it having 42 million downloads

ExplorerPatcher is a free and open-source application that has over 42 million downloads and 32,200 stars on GitHub. It aims to restore legacy Windows shell components in Windows 11, allowing users to manage settings more comfortably. The app is compatible with both x86-64 Windows and Windows on ARM. Users can revert the Windows 11 taskbar to its Windows 10 design, disable the Windows 11 context menu, and restore the control ribbon in File Explorer. ExplorerPatcher offers additional features such as improved multi-display taskbar support and customizable settings. It includes preset configurations like the "Classic Windows 10" option and allows for custom configurations to be saved and shared. Despite its popularity, ExplorerPatcher is not widely recognized due to security warnings from Windows, which flag it as a potential threat, and potential disruptions following major Windows updates.

Winsage

April 20, 2026

Microsoft tests Windows Explorer speed, performance improvements

Microsoft is enhancing File Explorer for Windows 11 Insider program users, focusing on improved launch speed and performance. A preloading feature was tested that allows File Explorer to load in the background for faster access, which users can disable in the Folder Options. These updates follow the introduction of Startup Boost for Office applications, which also aims to improve loading times. The Windows Insider Program Team is also working on enhancing the reliability of the explorer.exe process and addressing issues with bright white flashes when opening File Explorer in dark mode. Additionally, a new Xbox mode has been introduced for Windows 11 PCs, providing a full-screen gaming interface to reduce distractions. These updates are being rolled out to Insiders in the Release Preview channel with specific Windows 11 builds installed.

Winsage

April 19, 2026

Fix: “Cannot Complete the Archive Extraction” in Windows

Users may encounter the error message “Cannot complete the archive extraction wizard” when using the built-in Windows extractor for ZIP or RAR files, indicating limitations of this tool. Common issues include damaged archives, incompatible compression methods, long file paths, restricted extraction locations, insufficient disk space, or interruptions from security software. To address these challenges, users can: 1. Use third-party extractors like 7-Zip, WinRAR, or PeaZip for better compatibility and success rates. 2. Check if the archive is corrupted and re-download it if necessary, ensuring the download completes fully. 3. Shorten the file path by moving the archive to a simpler directory to avoid exceeding path limits. 4. Temporarily disable antivirus or real-time protection, as it may interrupt the extraction process. If problems persist, testing the archive on a different PC can help determine if the issue is with the archive or the current system. If the archive fails on another computer, it is likely corrupted or incomplete, requiring a fresh download or replacement.

Winsage

April 19, 2026

14 defaults I think are worth changing: Windows 11 feels modern, but many out‑of‑box settings push services, tracking, and clutter.

Windows 11 has default settings that prioritize background services, cloud integration, and recommendations, which can lead to user frustration. Key issues include: - Diagnostic data collection is enabled by default, requiring users to opt out rather than opt in, with no complete opt-out option available. - Post-setup prompts can disrupt workflow, and users can disable them in Settings > System > Notifications. - The default Taskbar includes features like Widgets and Copilot, which can clutter the interface; users can unpin unwanted icons. - Users are encouraged to sign in with a Microsoft account during setup, but can create a local account instead. - Preinstalled applications may clutter the Start menu, and users can uninstall them through Settings > Apps. - Automatic updates can disrupt user activity, and users can schedule restarts in Settings > Windows Update. - Device encryption is enabled by default, with recovery keys saved to a Microsoft account; users should back up the key offline. - The "Find my device" feature requires ongoing location tracking, which can be disabled in Settings > Privacy & security. - File extensions are hidden by default, which can hinder usability; users can enable them in File Explorer settings. - The redesigned context menu hides advanced options, accessible via Shift + Right-click. - Promotional content is integrated throughout the OS, and while it cannot be fully disabled, users can limit suggestions in settings. - Microsoft Edge can consume system resources upon startup due to background processes, which can be disabled in Edge settings.

Winsage

April 19, 2026

Windows Defender Security Flaws Actively Exploited by Hackers

Three vulnerabilities in Microsoft Defender, known as BlueHammer (CVE-2026-33825), RedSun, and UnDefend, are being actively exploited by hackers. BlueHammer has been patched, while RedSun and UnDefend remain unpatched. The public release of exploit code has accelerated real-world attacks, affecting Windows 10, Windows 11, and Windows Server systems. Attackers have begun exploiting these vulnerabilities, leading to concerns about privilege escalation, disruption of security updates, and the rapid spread of attacks.

Winsage

April 19, 2026

Microsoft reportedly redesigning Start Menu in Windows 11 after actually listening to user complaints

Microsoft is updating the Start Menu in Windows 11, focusing on enhanced customization and improved performance. The update will allow users to disable specific sections, choose between small or large layouts, and toggle off elements like the recommended feed and pinned apps. The new Start Menu is expected to be more responsive, especially during heavy usage, and will improve search functionality. Feedback on the redesign has been mixed, with some users expressing dissatisfaction and nostalgia for the Windows 10 Start Menu.

Winsage

April 19, 2026

Copilot to Be Removed From These Windows Applications

Microsoft is phasing out Copilot from various applications in Windows 11, reducing the overall presence of AI in the operating system. In the latest version of Notepad (11.2512.28.0), the Copilot icon has been replaced with a traditional pencil icon, but the underlying functions remain unchanged, allowing users to disable AI features if desired. The Snipping Tool has completely removed Copilot integration, eliminating the AI button and any references to AI features. Microsoft previously indicated plans to streamline Copilot access points in applications like Notepad, Photos, Widgets, and the Snipping Tool. Despite these changes, Microsoft intends to integrate AI more subtly within Windows 11, keeping functionalities intact but positioning them discreetly.

AppWizard

April 18, 2026

5 Android Auto settings I always change on any new Android phone

Android Auto has become a popular tool for drivers, supporting both wired and wireless connections in vehicles. Google regularly updates the platform, adding features like Google Meet support. Users can enhance their experience by adjusting settings, such as disabling auto-play for music when connecting, managing notifications from apps like YouTube Music and Spotify, preventing Android Auto from starting automatically, setting up shortcuts for Google Assistant commands, and enabling quick controls for music playback from the taskbar.