encrypted Archives

AppWizard

May 20, 2025

Preventing App-Based Threats on Android Devices

By 2025, the Android platform faces increasingly sophisticated app-based threats, including ransomware, fake apps, social engineering, and remote access attacks. Cybercriminals exploit Android's open architecture, prompting the need for advanced security measures. Android's security architecture includes: 1. Google Play Protect: Scans applications before installation using real-time machine learning to detect emerging malware and deceptive tactics. 2. Application Sandboxing: Isolates apps to prevent data access between them, utilizing Linux permissions and SELinux policies. 3. App Signing and Code Integrity: Requires cryptographic signatures for apps, complicating the introduction of rogue certificates and runtime modifications. Advanced protections include Runtime Application Self-Protection (RASP) for high-security apps, which monitors behavior in real time, and secure coding practices that encourage regular code reviews, strong authentication, and data encryption. User vigilance is crucial, emphasizing responsible downloading, limiting permissions, keeping software updated, enabling two-factor authentication, and being cautious with public Wi-Fi. Google continuously updates security measures, ensuring older devices receive new protections, while collaboration with the security community aids in identifying and countering emerging threats.

AppWizard

May 20, 2025

Digital Content Observatory Warns of Rising Blackmail via Instant Messaging Apps

The Digital Content Observatory has reported a significant increase in digital blackmail cases linked to instant messaging applications, driven by the rise in their use across various age groups and a lack of awareness about associated risks. Blackmail schemes often start with fake accounts that engage users and escalate to threats demanding compliance under the risk of exposing personal information. Messaging apps like WhatsApp, Facebook Messenger, and Telegram are favored for these activities due to their private nature and encryption challenges. The Observatory emphasizes the importance of raising awareness, especially among younger users, advising caution in sharing personal information and encouraging the reporting of blackmail attempts. They highlight the need for improved digital literacy as a preventive measure against unsafe digital practices.

Winsage

May 15, 2025

Microsoft Copilot+ Recall: who should disable it, and how

Microsoft's Recall feature for Copilot+ PCs was initially announced a year ago but delayed due to privacy concerns raised by cybersecurity experts. The updated version was released in April 2025 for Windows Insider Preview builds and rolled out more broadly in May. Key updates include requiring user permission for activation, encrypting database files with hardware-based Trusted Platform Module (TPM), and implementing a filter to prevent saving sensitive information. Recall is enabled on a per-user basis, can be uninstalled, does not require a Microsoft account, and processes data locally. However, it still has vulnerabilities, such as allowing access with a regular Windows PIN after initial biometric authentication and failing to consistently filter sensitive data. Recall can log interactions during calls and capture self-destructing messages, posing privacy risks. It can impact performance and battery life, especially during gaming. Users handling sensitive data or frequently using video conferencing may want to disable or remove Recall. Instructions for disabling or removing Recall are provided, along with precautions for those who choose to use it.

AppWizard

May 14, 2025

The Android Show I/O Edition: Everything that was announced from Android 16 to Android XR

Google is unveiling key features ahead of the Google I/O event, including Material 3 Expressive (M3), which focuses on enhancing user experience through color, shape, size, motion, and containment. M3 will introduce a vibrant UI for smartphones and wearables, featuring a new "tear away" notification system and playful animations. The Pixel Watch will have animations that follow the display's curvature, and Wear OS 6 will allow users to customize color schemes and watch faces. Google's Gemini AI will be integrated into more devices, replacing Google Assistant and enhancing interactions on Wear OS, Google TV, Android Auto, and Android XR. Gemini will provide hands-free assistance for Wear OS users and facilitate natural conversations in Android Auto. It will also improve content discovery on Google TV and offer real-time planning assistance in Extended Reality devices. To combat online scams, Google is introducing privacy tools with Android 16, including enhanced warning systems in caller and Google Messages apps, AI-driven detection of fraudulent messages, and a Key Verifier program for secure end-to-end encrypted communication. Google Play Protection will implement live threat detection for malicious app changes.

AppWizard

May 13, 2025

Google announces new security features for Android for protection against scam and theft

Google unveiled new security and privacy features for its Android platform, focusing on safeguarding calls, screen sharing, messages, device access, and system-level permissions. Key measures include blocking unsafe actions during calls with unknown contacts, restrictions on side-loading apps from unverified sources, and limiting accessibility permissions to prevent scams. Users on Android 6 or later will not be able to disable Google Play Protect, which scans for harmful applications. Enhanced screen-sharing protection includes reminders to stop sharing after calls and a warning screen for banking apps when sharing with unknown numbers. Google Messages will improve scam detection using on-device AI for various fraud types. Verification keys in the Google Contacts app will allow users to authenticate contacts, with end-to-end encryption for verified conversations. Identity Check protection requiring biometric authentication will be extended to more devices, and stricter controls on Factory Reset functions will be implemented. Google is also enhancing its Play Protect program to detect unsafe apps and strengthening Advanced Protection Mode for public figures, along with introducing a new Find My Hub feature.

AppWizard

May 13, 2025

Waltz’s Use of Messaging Platform Raises New Security Questions

Michael Waltz, the former national security adviser, mistakenly included a journalist in a sensitive chat on Signal during a cabinet meeting, raising concerns about communication practices among senior officials. A photograph captured him using a different messaging app that promotes archiving for record-keeping, which raises compliance questions with federal regulations. Visible contacts on his screen included Vice President JD Vance, special envoy Steve Witkoff, Secretary of State Marco Rubio, and Director of National Intelligence Tulsi Gabbard. The use of encrypted messaging apps like Signal complicates the National Archives' role in preserving governmental records, highlighting the tension between secure communication and the need for transparency in government operations.

AppWizard

May 13, 2025

Platkin joins letter pushing messaging app to stop fentanyl trafficking

New Jersey Attorney General Matt Platkin has joined a bipartisan coalition of attorneys general to address concerns regarding the encrypted messaging app WeChat, which is believed to facilitate fentanyl trafficking in the United States. This group claims that WeChat enables traffickers to launder money, particularly through transactions from China to Mexico. They have urged the app to take immediate action against these "dangerous and unlawful" activities. The attorneys general emphasize a pattern of complicity by WeChat in facilitating money laundering related to fentanyl trafficking, with a DEA agent stating that criminal activities are openly occurring on the platform.

Winsage

May 12, 2025

Upgrade to Windows 11 Pro for just $15

Microsoft Windows 11 Pro is available for .97, reduced from 9, until June 1. Key features include an intuitive interface, enhanced multitasking with snap layouts, improved voice typing, advanced security features like biometric login and encrypted authentication, seamless integration with Microsoft Teams, Azure Active Directory for managing logins, Hyper-V for virtual machines, Windows Sandbox for secure file experimentation, touchscreen support, and Copilot, an AI-powered assistant. The system requirements are 4GB RAM and 40GB of hard drive space.

Winsage

May 12, 2025

Do these five important things after installing Windows 11

- After setting up Windows 11, it is recommended to back up your BitLocker key to prevent access issues, as drives are encrypted by default without user notification. - To back up the BitLocker key, sign in to your Microsoft Account, navigate to the "Devices" tab, and manage recovery keys. - Context menus in Windows 11 can be cleaned up by uninstalling unnecessary applications or modifying the system registry to remove unwanted entries. - The "End Task" feature can be enabled by navigating to Settings > System > For developers and toggling on the feature. - To reduce notifications and ads, users can disable various settings in the Personalization and Privacy & Security sections of the Settings app. - OneDrive auto-backup is enabled by default, and users can disable it by accessing OneDrive settings and turning off backup options.

Winsage

May 10, 2025

Hackers Using Windows Remote Management to Stealthily Navigate Active Directory Network

Threat actors are exploiting Windows Remote Management (WinRM) to navigate through Active Directory environments stealthily, allowing them to bypass detection systems, escalate privileges, and deploy malicious payloads. WinRM operates on HTTP port 5985 and HTTPS port 5986, enabling remote command execution and management tasks. Attackers can gain access through compromised credentials and use WinRM-enabled PowerShell commands for reconnaissance, deploying payloads while evading detection. The attack chain includes initial access, reconnaissance, payload deployment, persistence, and lateral movement, often utilizing techniques that obfuscate malicious activities. Detecting such attacks is challenging due to the use of built-in Windows functionalities and encrypted channels. Recommended mitigation strategies include monitoring for unusual activity, restricting WinRM access, enforcing credential hygiene, and implementing advanced monitoring solutions.