We value your privacy

We use cookies to enhance your browsing experience, serve personalized ads or content, and analyze our traffic. By clicking "Accept All", you consent to our use of cookies.

Customize Consent Preferences

We use cookies to help you navigate efficiently and perform certain functions. You will find detailed information about all cookies under each consent category below.

The cookies that are categorized as "Necessary" are stored on your browser as they are essential for enabling the basic functionalities of the site. ... 

Always Active

Necessary cookies are required to enable the basic features of this site, such as providing secure log-in or adjusting your consent preferences. These cookies do not store any personally identifiable data.

No cookies to display.

Functional cookies help perform certain functionalities like sharing the content of the website on social media platforms, collecting feedback, and other third-party features.

No cookies to display.

Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc.

No cookies to display.

Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.

No cookies to display.

Advertisement cookies are used to provide visitors with customized advertisements based on the pages you visited previously and to analyze the effectiveness of the ad campaigns.

No cookies to display.

NewApp Digest
search bot

DNS

SpyNote Android malware resurfaces in campaign using spoofed app install pages
AppWizard
April 10, 2025

SpyNote Android malware resurfaces in campaign using spoofed app install pages

A report from DomainTools LLC reveals that cybercriminals are using newly registered domains to distribute the SpyNote Android remote access trojan (RAT) by creating fake websites that resemble legitimate Google Play app installation pages. These counterfeit pages often include familiar visual elements to deceive users into downloading harmful APK files, such as a site mimicking the TikTok installation page. The downloaded files typically contain variants of SpyNote, which can conduct surveillance, harvest sensitive information, and execute remote commands on compromised devices. The delivery mechanism involves a two-stage process where a dropper APK installs a secondary APK with core spyware functionalities, utilizing JavaScript to trigger downloads from fake install buttons. Common characteristics of the domains distributing SpyNote include registration with NameSilo LLC and XinNet Technology Corp., hosting on infrastructure linked to Lightnode Ltd and Vultr Holdings LLC, and the presence of SSL certificates. The malware delivery sites contain code in both English and Chinese, suggesting a Chinese-speaking threat actor may be involved. SpyNote has been associated with advanced persistent threat groups targeting individuals in South Asia, including those in the Indian defense sector. Once installed, SpyNote requests intrusive permissions to access SMS, contacts, call logs, camera, microphone, and location services, and employs persistence mechanisms that make it difficult to remove. DomainTools advises users to be vigilant against spoofed app pages and avoid sideloading APKs from unverified sources.
PJobRAT makes a comeback, takes another crack at chat apps
AppWizard
March 28, 2025

PJobRAT makes a comeback, takes another crack at chat apps

In 2021, PJobRAT, an Android Remote Access Trojan (RAT), targeted Indian military personnel through deceptive apps. A new campaign was discovered in 2023, focusing on users in Taiwan, with malicious apps like ‘SangaalLite’ and CChat disguised as instant messaging applications. These apps were available for download from WordPress sites, which have since been taken down. The campaign began in January 2023, with domains registered as early as April 2022, and the latest sample detected in October 2024. The number of infections was low, indicating a targeted approach rather than a broad attack. The distribution methods remain unclear, but may involve SEO poisoning, malvertising, or phishing. Once installed, the apps request extensive permissions and feature basic chat functionality. Recent versions of PJobRAT have shifted from stealing WhatsApp messages to executing shell commands, allowing greater control over compromised devices. PJobRAT communicates with its command-and-control (C2) servers using Firebase Cloud Messaging (FCM) and HTTP, enabling the upload of various data types, including SMS, contacts, and files. The now inactive C2 server was located in Germany.
SteamOS 3.7.0 Preview brings the 'beginnings of support for non-Steam Deck handhelds'
Winsage
March 15, 2025

SteamOS 3.7.0 Preview brings the ‘beginnings of support for non-Steam Deck handhelds’

Valve has released the SteamOS 3.7.0 Preview, which is currently exclusive to the Steam Deck but will soon support a wider range of non-Steam Deck handheld devices. Users can access the Preview channel by adjusting their Steam Deck update settings. Key updates include: - Updated to a newer Arch Linux base and Linux kernel version 6.11. - Bluetooth controllers can now wake LCD models of the Steam Deck. - Added support for the Proteus Byowave controller. - Resolved issues with the Switch Pro Controller gyros and stuck controller inputs. - Enabled HFP/HSP profiles for integrated microphone use with Bluetooth headsets in Desktop mode. - Introduced a battery level display for supported Bluetooth devices. - Improved compatibility for specific displays with the Steam Deck Dock. - Enabled AMD P-State CPU frequency control and fixed performance issues in certain games. - Updated desktop mode to Plasma 6.2.5, with improved surround sound functionality and pre-installed KDE Filelight. - Fixed various UI and system update issues, enhanced system responsiveness, and enabled IPv6 Privacy Extensions by default. Known issues include problems with Creative Zen Air Pro earbuds, Super NES controllers, and DualShock 3 controllers. Developer updates include kernel updates and improvements to system management.
Microsoft March 2025 Patch Tuesday fixes 7 zero-days, 57 flaws
Winsage
March 11, 2025

Microsoft March 2025 Patch Tuesday fixes 7 zero-days, 57 flaws

Microsoft released security updates on March 2025 Patch Tuesday, addressing 57 vulnerabilities, including six classified as critical related to remote code execution. The vulnerabilities are categorized as follows: 23 Elevation of Privilege, 3 Security Feature Bypass, 23 Remote Code Execution, 4 Information Disclosure, 1 Denial of Service, and 3 Spoofing. The updates specifically address six actively exploited zero-day vulnerabilities and one publicly disclosed zero-day vulnerability. The zero-day vulnerabilities include: 1. CVE-2025-24983 - Elevation of Privilege in Windows Win32 Kernel Subsystem. 2. CVE-2025-24984 - Information Disclosure in Windows NTFS. 3. CVE-2025-24985 - Remote Code Execution in Windows Fast FAT File System Driver. 4. CVE-2025-24991 - Information Disclosure in Windows NTFS. 5. CVE-2025-24993 - Remote Code Execution in Windows NTFS. 6. CVE-2025-26633 - Security Feature Bypass in Microsoft Management Console. The publicly disclosed zero-day is: - CVE-2025-26630 - Remote Code Execution in Microsoft Access. A comprehensive list of resolved vulnerabilities includes various CVE IDs and their respective titles and severities, with several vulnerabilities affecting Microsoft Office products, Windows components, and Azure services.
How to clear the cache on your Windows 11 PC (and why it's important to do so)
Winsage
March 10, 2025

How to clear the cache on your Windows 11 PC (and why it’s important to do so)

To optimize your Windows computer's performance, ensure your operating system is fully updated. If updates are current, utilize built-in utilities to reclaim disk space. For Windows 11, access "Cleanup recommendations" by clicking the Start button, selecting Settings, navigating to System, and then Storage. This feature lists temporary files in your Downloads folder and Recycle Bin, which can be deleted to free up space. It also recommends removing large or unused files. Use the Disk Cleanup utility by searching for "Disk Cleanup" in the search bar to identify and delete temporary internet files, setup log files, and cache files. To clear your PC's location cache, go to Settings, select Privacy and Security, scroll to "Location history," and click "Clear." To flush the DNS cache, press the Windows key + R, type ipconfig/flushdns, and press Enter. Regular file management and cleanup can significantly enhance system performance over time.
How to clear the cache on your Windows 11 PC (and why you shouldn't wait to do it)
Winsage
February 23, 2025

How to clear the cache on your Windows 11 PC (and why you shouldn’t wait to do it)

For a digital refresh on a cluttered desktop and sluggish performance, users should keep their Windows operating system updated and utilize built-in utilities to enhance performance. Windows 11 offers a tool under Settings > System > Storage > "Cleanup recommendations" that identifies large files, unused applications, and system files for removal. The Disk Cleanup utility is accessible on all Windows versions by searching for "Disk Cleanup," which helps delete temporary internet files and cache files. To clear the location cache, navigate to Settings > Privacy and Security > "Location history" and click "Clear." To flush the DNS cache, open the Run command window, type ipconfig/flushdns, and press Enter. Regular file management can significantly improve system performance.
How to Clear Cache on Windows 11 to Free Up System Resources
Winsage
February 23, 2025

How to Clear Cache on Windows 11 to Free Up System Resources

A cluttered computer desktop can lead to a decline in performance, indicating the need for system cleanup. Regular maintenance enhances speed, storage space, and overall functionality. Windows has built-in tools for optimization, starting with ensuring the latest updates are installed. Windows 11 features "Cleanup Recommendations" to identify large files and unused applications for deletion. The Disk Cleanup utility can remove unnecessary files like temporary internet files and system cache files, recovering disk space and improving speed. Clearing the location cache and flushing the DNS cache can also enhance performance. Additional maintenance tips include regularly emptying the Recycle Bin, organizing files, uninstalling unused applications, using external storage for large files, and running malware scans.
Best new apps and games for Android for February 2025
BetaBeacon
February 17, 2025

Best new apps and games for Android for February 2025

- DNSnet is an application that speeds up and secures internet connections by allowing users to change DNS servers for faster website response and greater protection against tracking or malicious sites.
Search