domains Archives

AppWizard

August 5, 2025

Google Gemini Android App to Add Audio Uploads for AI Insights

Google's Gemini app for Android is set to enhance its functionality by supporting audio file uploads, as indicated by an APK teardown revealing code strings and user interface elements for this feature. This development will allow users to summarize podcasts, transcribe meetings, and extract insights from voice memos. The introduction of audio capabilities follows earlier features like Audio Overviews, which enable podcast-style discussions from written documents. However, there are significant privacy concerns regarding the handling of sensitive audio data, with fears that Google may access personal information without explicit user consent. Critics warn that audio uploads could lead to unauthorized data scraping and complicate compliance with data protection regulations. Google has mentioned configurable privacy settings to address these risks, but skepticism remains about their adequacy. The anticipated rollout of this feature is expected in the coming months.

TrendTechie

August 3, 2025

NEPLP заблокировал доступ к одному из самых популярных российских торрент-трекеров

The National Electronic Media Council (NEPLP) has restricted access to the Russian torrent tracker kinozal.tv and added it to its list of restricted domains, along with ThePirateBay.org. This action follows a previous decision in late July to block access to ten websites that disseminate Russian propaganda, which were deemed to contradict Latvia's national security interests. These websites were reported to promote biased information regarding the war in Ukraine and could negatively impact Latvian society and its support for Ukraine. Additionally, two specific websites were identified as platforms for recruiting Russian servicemen for military operations in Ukraine.

Tech Optimizer

August 1, 2025

Best Alternative to Bitdefender Antivirus of 2025

Bitdefender secures over 500 million devices worldwide and is known for its user-friendly interface and streamlined dashboard. ESET, a strong alternative, has a functional but less intuitive interface that requires more navigation. Both provide robust security with minimal false positives, ranking among the top five in AV-Comparatives tests, but Bitdefender has slightly better overall coverage. ESET excels in malware protection, particularly with its Ransomware Shield and Exploit Blocker features, and has a quicker full scan time, completing it five minutes faster than Bitdefender. Both include firewall protection, with Bitdefender offering a customizable option and ESET providing four filtering modes. ESET's pricing starts at .99 for one device, with plans that include varying features such as a password manager and unlimited VPN. ESET's Ultimate plan costs .99 for five devices and includes advanced identity protection and identity theft coverage of up to million. Both providers offer good support options, including a knowledge base, email support, and live chat.

AppWizard

July 30, 2025

If you catch the ball in Rematch, there’s a small chance you didn’t—Sloclap’s desync issues are upsetting players in a game I otherwise can’t stop playing

Players are logging around 40 hours of gameplay in Rematch, but desynchronization issues remain significant, causing frustration during matches. Despite a recent patch from developer Sloclap aimed at addressing these problems, improvements have not fully materialized, and many players report erratic netcode. Some players have expressed discontent on the r/Rematch subreddit, with one player mentioning their goalie uninstalled the game due to ongoing issues. Sloclap has urged players to be patient, stating that improvements are in progress but require time and specialized resources. The game maintains a peak player count of 21,000, indicating a healthy player base despite the concerns.

AppWizard

July 29, 2025

ANDROID MALWARE POSING AS INDIAN BANK APPS

The report discusses a sophisticated Android malware targeting users in India, which disguises itself as legitimate banking applications to steal credentials and conduct unauthorized financial activities. The malware employs advanced techniques such as silent installation, exploitation of Android permissions, and remote command execution to avoid detection. It utilizes Firebase for command-and-control operations and phishing pages that mimic real banking interfaces. The malware consists of a modular architecture with a dropper and a main payload. The dropper requests several Android permissions, including ACCESSNETWORKSTATE, REQUESTINSTALLPACKAGES, and QUERYALLPACKAGES, which facilitate reconnaissance and persistence. The dropper uses a silent installation mechanism to load additional payloads without user awareness. The main payload requests permissions that enable data theft and stealthy operation, such as READSMS, SENDSMS, and RECEIVEBOOTCOMPLETED. It hides itself from the user's app list and employs separate classes for specific malicious tasks, including harvesting user credentials and collecting debit card information. The phishing page mimics a legitimate banking app to capture user data effectively. The malware also monitors incoming SMS messages, extracts critical metadata, and can silently forward calls to an attacker-controlled number. A specific APK sample impersonating an Indian banking application was observed on April 3, 2025, highlighting ongoing trends in mobile-based credential theft and financial fraud. Recommendations include enforcing stricter mobile application security standards, launching public awareness campaigns, implementing threat intelligence-driven filtering, and deploying mobile endpoint detection solutions.

AppWizard

July 24, 2025

Over 250 malicious apps found targeting Android users in worrying attack – here’s how to stay safe

Researchers from Zimperium zLabs have discovered an extortion scheme involving over 250 fraudulent dating applications targeting Android users. These apps request extensive permissions to steal sensitive personal files, threatening victims with the release of their private information unless they comply with extortion demands. Many of the associated domains have been indexed by search engines, making it difficult for users to identify the apps as fraudulent. None of the identified apps were available on the official Google Play Store or Apple App Store. Users are advised to be cautious when downloading apps from unfamiliar sources, review permissions regularly, and consider installing mobile security solutions.

AppWizard

July 23, 2025

Threat Actors Blend Click Fraud Apps and Malware to Steal Android Credentials

Security researchers at Trustwave SpiderLabs have identified a complex cluster of Android malware that combines click fraud, credential theft, and brand impersonation. This malware exploits the Android Package Kit (APK) file format to distribute malicious applications, often through phishing messages or deceptive websites. Users are tricked into installing these APKs, which are disguised as reputable brands or promotional apps. Once installed, the malware takes advantage of Android's permission model to access sensitive resources, primarily for click fraud and traffic redirection to generate illicit revenue. Some variants engage in data collection and credential harvesting, employing advanced evasion tactics to avoid detection, such as using counterfeit Chrome applications and overlay screens. A notable variant includes a spoofed Facebook app that mimics the official interface and connects to a remote command-and-control server for instructions. The malware uses encryption and encoding to secure data exchanges and employs open-source tools to bypass Android's signature verification. Evidence suggests that the operators may be Chinese-speaking, as indicated by the use of Simplified Chinese in the code and the promotion of related APK campaigns on Chinese-speaking underground forums.

AppWizard

July 22, 2025

Threat Actors Combine Android Malware With Click Fraud Apps to Steal Login Credentials

A new wave of malicious Android Package Kit (APK) files is combining click-fraud advertising and credential theft, primarily affecting regions like Southeast Asia, Latin America, and parts of Europe. These APKs disguise themselves as casual games or clones of legitimate apps, enticing users to sideload them and bypass Google Play’s security measures. Once installed, they request excessive permissions and operate in the foreground to inflate ad impressions while capturing user credentials through convincing login forms. The malware uses a modular configuration system and communicates with an encrypted command-and-control backend. The installation process often begins with social media messages or QR codes leading to spoofed landing pages. The app can embed secondary payloads without invalidating its original signature and minimizes detection by sandboxes. By the time users notice unusual activity, the malware has already exfiltrated ad revenue and credentials.

AppWizard

July 22, 2025

Cybercriminals Merge Android Malware with Click Fraud Apps to Harvest Credentials

Researchers have identified a sophisticated cluster of Android malware that merges brand impersonation with traffic monetization strategies, utilizing Android Package Kit (APK) files to compromise user trust and extract sensitive information. The malware disguises itself as legitimate services and uses social engineering techniques to encourage manual installations. Once installed, it exploits Android's permission model to access device resources and hijack network traffic for advertising fraud. The malware includes various categories such as ad fraud apps, credential stealers, background data harvesters, task reward apps, and gambling apps, each designed to manipulate user interactions and collect sensitive data. Common strategies include redirecting traffic through monetized domains and employing encrypted command-and-control communications. A notable variant is a spoofed Facebook APK that requests extensive permissions and retrieves encrypted configuration files from specific domains. The malware's infrastructure allows it to circumvent Android signature verification and adapt its behavior based on the environment, evading detection. Analysis suggests involvement from Chinese-speaking operators, with connections to underground economies trading stolen data. The campaign combines ad fraud and credential theft, highlighting a dual purpose of monetization and intelligence gathering. Users are advised to limit installations to trusted sources and scrutinize unsolicited APKs to mitigate threats.

AppWizard

July 18, 2025

Gmail brings one-click appointment booking right to your inbox

Gmail users can now integrate Google Calendar booking pages directly into their email drafts using a new Calendar icon, making it easier to share real-time appointment slots. This feature aims to reduce the back-and-forth communication typically involved in scheduling. Users can access existing booking pages or create new ones by clicking the Calendar icon at the bottom of their email drafts. The feature is available to Google Workspace customers, Workspace Individual subscribers, and personal Google account users, though some advanced scheduling features are limited to paid subscriptions. The rollout for Rapid Release domains has begun, with a wider release scheduled for July 28. Additionally, Gmail has introduced features like the Gemini AI assistant for summarizing emails and the ability to react to emails with emojis.