espionage Archives

AppWizard

May 8, 2026

Espionage Adventure Spymaster Is Out Today On Quest & PC VR

Developer Innerspace has launched its solo co-op secret agent thriller, Spymaster, in Early Access on Quest and Steam to gather community feedback for refinement before the full release. The game features innovative mechanics, including a time-rewinding device called C.A.S.S.E.T.T.E., allowing players to adjust their actions during parkour-infused missions. Each mission includes side objectives that can also utilize this mechanic. Game Director Jeremy Moirano expressed optimism about the VR market and the importance of community input in developing the game. Spymaster is priced at .99.

BetaBeacon

May 6, 2026

A rigged game: ScarCruft compromises gaming platform in a supply-chain attack

- ScarCruft, also known as APT37 or Reaper, is a North Korean espionage group targeting government, military organizations, and companies in Asia. - BirdCall is a Windows backdoor attributed to ScarCruft, with spying capabilities such as taking screenshots and logging keystrokes. - The Android version of BirdCall collects contacts, SMS messages, call logs, and media files, and was actively developed over several months. - The BirdCall backdoor was discovered in a trojanized card game on a gaming platform tailored for ethnic Koreans living in Yanbian, China. - The attack was likely aimed at collecting information on individuals from the Yanbian region deemed of interest to the North Korean regime, such as refugees or defectors.

BetaBeacon

May 6, 2026

North Korean hackers targeted ethnic Koreans in China with Android ‘BirdCall’ malware

North Korean hackers targeted ethnic Koreans in China with a malware disguised as a popular Android mobile game called BirdCall, allowing them to steal personal data from victims.

BetaBeacon

May 5, 2026

ScarCruft Hacks Gaming Platform to Deploy BirdCall Malware on Android and Windows

ScarCruft compromised a video game platform in a supply chain attack, trojanizing its components with a backdoor called BirdCall to target ethnic Koreans residing in China. The attack enabled the threat actors to target both Windows and Android devices, turning it into a multi-platform threat. The campaign targeted sqgame[.]net, a gaming platform used by ethnic Koreans in China, known as a transit point for North Korean defectors. BirdCall has features like screenshot capture, keystroke logging, and data gathering, and relies on legitimate cloud services for command-and-control. The Android variant collects various data and has seen active development.

AppWizard

May 5, 2026

007 First Light devs accidentally gave Bond “magic powers” when creating his arsenal of gadgets

Gadgets are a key aspect of James Bond's character, serving as essential tools in his espionage activities. In the development of 007 First Light, Tom Marcham, Senior Combat Designer at IO Interactive, highlighted the extensive design process, which involved numerous iterations to ensure functionality within the game's environment. The gadgets allow for stealthy eliminations and unlock various pathways in the game. Some ambitious gadget concepts were discarded for straying too far from the essence of Bond, as the team aimed to maintain a grounded aesthetic consistent with the franchise's realistic tone. The game features innovative gadgets that enhance the overall experience while staying true to the spirit of Bond.

Winsage

May 1, 2026

Microsoft fixes Remote Desktop warnings displaying incorrectly

Microsoft resolved an issue affecting the display of security warnings when opening Remote Desktop (.rdp) files across all supported Windows versions, including Windows 11, Windows 10, and Windows Server. This problem was particularly evident on devices with multiple monitors having different display scaling settings. The fix was included in the optional KB5083631 preview cumulative update for Windows 11. The issue arose after the installation of the April 2026 security update, which introduced security warnings to enhance protection against phishing attacks. Users reported misalignment and obscured buttons in the security dialog, making it difficult to interact with. Additionally, the April security updates caused issues with third-party backup applications on Windows 11 systems and led to restart loops and failures during update installations on Windows Server.

Winsage

April 28, 2026

Incomplete Windows Patch Creates New Zero-Click Attack Risk

A new vulnerability in Microsoft Windows, designated as CVE-2026-32202, has been discovered due to an incomplete security patch for a previous flaw (CVE-2026-21510). This new vulnerability allows attackers to execute zero-click attacks by processing specially crafted shortcut files, enabling automatic authentication requests without user interaction. The vulnerabilities are linked to another flaw (CVE-2026-21513) in Microsoft’s MSHTML framework, and cybercriminals, specifically the APT28 group, have exploited these issues in attacks against Ukraine and the European Union. Microsoft has released a fix for the new vulnerability in its April 2026 security updates.

Winsage

April 17, 2026

France to remove Windows from government computers in sovereignty push

France is transitioning from Windows to Linux for its government computers, announced on April 8 by the Interministerial Directorate for Digital Affairs, to reduce reliance on American technology firms. This change involves modifying the software on thousands of state computers, which is a significant task given that Windows is the most widely used operating system globally. Linux, an open-source system, allows for code modification and sharing. Experts highlight the benefits of open-source software, including transparency and collective ownership, which enhance data security and management. Other European countries, like Spain and Germany, have also adopted similar systems. The transition is expected to create jobs in the local economy as France will invest in hiring engineers instead of paying Microsoft licensing fees. However, the timeline for the rollout is uncertain, with no specifics on the number of computers involved or the duration of the project. Additionally, Microsoft has reportedly spent €7 million in 2025 on lobbying efforts related to digital regulations in the EU, which may complicate the transition.

AppWizard

April 17, 2026

European civil servants are being forced off WhatsApp

Apps like Signal and WhatsApp are recognized for their end-to-end encryption but are increasingly seen as inadequate for organizational communication due to their consumer-grade design. Benjamin Schilz, CEO of Wire, points out the risks of using such apps for professional purposes. Recent cybersecurity threats, including a Russian espionage campaign targeting these applications, highlight the importance of advanced features like access controls and metadata management, especially for large organizations. Belgium's De Waele advocates for controlled communication environments that include only government employees to mitigate risks. Transparency advocates have raised concerns about the privacy features of consumer apps obscuring important decision-making processes, as exemplified by a situation involving Commission President Ursula von der Leyen and a vaccine deal. The re-election of former U.S. President Donald Trump has prompted a shift in priorities towards secure communication channels within European governments.

AppWizard

April 3, 2026

Russia’s Messaging Tactics: Concerns Over State-Backed App MAX

The Kremlin is promoting MAX, a state-sponsored messaging application, to reduce foreign influence and address privacy concerns among Russians. This initiative coincides with a crackdown on internet freedoms and stringent regulations on foreign messaging platforms like Telegram, with the government framing MAX as essential for national security. Despite official support, many Russians are skeptical due to historical aversions to censorship and a preference for personal autonomy in digital communications. While some have begun using MAX, they still advocate for the right to choose their messaging services, emphasizing individual privacy over state mandates.