exclusive content Archives

AppWizard

May 5, 2026

Meta enhances security of WhatsApp and Messenger encrypted backups

Meta has enhanced the security and transparency of its end-to-end encrypted backup system for WhatsApp and Messenger. The improvements focus on refining the distribution and verification of encryption keys, and allow for independent audits of certain infrastructure components. The updates are based on Meta's Hardware Security Module (HSM)-based Backup Key Vault architecture, which securely stores recovery secrets in tamper-resistant hardware, ensuring that neither Meta nor cloud service providers can access users' message archives. For encrypted backups, users' devices generate a 256-bit encryption key locally, which encrypts all backup data before uploading it to cloud storage. The key remains on the device in an encrypted format, with the user's password not visible to Meta or third parties. An encrypted version of the backup key is stored in the HSM-based vault using the OPAQUE password-authenticated key exchange protocol, enhancing recovery security without revealing the password. The recent updates include an over-the-air (OTA) fleet key distribution mechanism, which avoids hardcoding trusted infrastructure keys into Messenger applications. Clients receive a “validation bundle” containing the HSM fleet's public keys during runtime, with signatures verified against Cloudflare’s Key Transparency system. The vault operates across at least seven data centers using majority-consensus replication to ensure availability and integrity. Meta plans to publish cryptographic proof of each new HSM fleet deployment, allowing advanced users and researchers to verify these deployments through the open-source “mbt” (Meta Binary Transparency) CLI tool, which conducts multiple checks to confirm that fleet keys are untampered.

AppWizard

April 21, 2026

New NGate Android malware variant uses NFC app to steal card data

A new variant of the NGate Android malware exploits a legitimate NFC payment app, HandyPay, to steal users' card information and PINs, enabling unauthorized contactless transactions. This malicious version of HandyPay, which has been available since 2021, was identified by ESET researchers and is distributed through a fraudulent lottery website and a fake Google Play page. The malware captures sensitive information by prompting users to enter their payment card PIN and tap their card against the device, sending the data to an attacker-controlled phone and exfiltrating the PIN to a command-and-control server. The campaign employs social engineering tactics and requires minimal permissions, relying on users to enable app installations from unknown sources. The attackers use a centralized infrastructure for malware distribution and PIN collection, with evidence of compromised devices in Brazil. The shift to modifying a legitimate application is motivated by financial incentives, as it offers similar functionality at a lower cost compared to underground tools. Users are advised to avoid installing apps from unofficial sources and to ensure the legitimacy of applications before entering sensitive information.

AppWizard

April 17, 2026

The Future Games Show Summer Showcase, FGS Live, and the PC Gaming Show have been confirmed for June, with the Showcase to feature ‘world premieres, exclusive trailers, and stealth demo drops’

Future has announced the return of its summer gaming events, including the Future Games Show Summer Showcase and FGS Live from Los Angeles on June 6 at 12 PM PDT / 3 PM EDT / 8 PM BST. The PC Gaming Show will follow on June 7. Both events will be available on platforms like YouTube, Twitch, X/Twitter, and Steam. Last year's showcases had a combined viewership of 41.9 million. Anticipated titles include Fable, Phantom Blade 0, The Expanse: Osiris Reborn, and Grave Seasons, with Fable set to launch in Fall 2026.

Winsage

April 16, 2026

Fake Proton VPN sites are pushing NWHStealer malware to Windows users

A malware campaign is utilizing counterfeit Proton VPN websites and other deceptive tactics to distribute a Windows infostealer known as NWHStealer. This malware extracts sensitive information, including browser credentials and cryptocurrency wallet details, and operates stealthily by injecting itself into legitimate processes. Two primary infection vectors have been identified: malicious ZIP archives on a free web hosting platform and trojanized installers from fake Proton VPN sites. The malware employs DLL hijacking and can exfiltrate data to a command-and-control server while ensuring persistence through scheduled tasks and disguising payloads as legitimate system processes. It also exploits the Windows cmstp.exe utility to bypass User Account Control. Users are advised to avoid downloading software from unofficial sources and to verify file signatures and publisher information.

AppWizard

April 15, 2026

Rival Aptoide sues Google in U.S. over alleged Android app store monopoly

A Portuguese app store, Aptoide, has filed a lawsuit against Google in a U.S. federal court, alleging monopolistic practices that hinder competition in the Android ecosystem. Aptoide claims that Google controls app distribution and in-app billing systems, violating U.S. antitrust laws. The company argues that it could compete more effectively against Google's pricing and policies if not for what it describes as an "anticompetitive chokehold." Aptoide alleges it is directed away from exclusive content and is excluded from accessing critical services, which harms its business. The lawsuit seeks to stop these practices and demands unspecified triple damages. Aptoide has approximately 436,000 apps and serves over 200 million annual users. This lawsuit follows Aptoide's previous complaint against Google with EU regulators in 2014. The case adds to Google's ongoing antitrust issues, including a recent agreement to modify its practices following a legal battle with Epic Games and a separate ruling declaring Google's search engine an illegal monopoly.

AppWizard

April 12, 2026

New LEGO Minecraft sets scheduled for this summer have leaked

Reddit has announced strategic initiatives to enhance user engagement and monetization, including new moderation tools for community leaders, personalized content recommendations using advanced algorithms, and monetization opportunities for content creators through subscriptions and exclusive content. The company is attracting investor interest due to its potential for growth and innovation, with a focus on diversifying revenue sources. Reddit's strategy emphasizes community involvement and user feedback in developing new features, aiming to balance innovation with its foundational principles.

AppWizard

April 10, 2026

22 of Russia’s 30 most popular Android apps monitor whether users have VPN enabled, study finds

Recent research by RKS Global found that 22 out of the top 30 Android apps in Russia monitor users' VPN status. Banking apps like T-Bank, Sberbank, VTB, and Alfa-Bank are leading this trend, along with Yandex and VK applications such as Yandex Browser and VKontakte. Online marketplaces including Wildberries, Ozon, MegaMarket, and Samokat also track VPN usage. In total, 18 of the 30 apps transmit VPN status data to their servers, while 24 send lists of installed applications. Yandex Browser uniquely searches for the Tor browser, and Samokat and MegaMarket retrieve lists of installed VPN apps. The Russian Digital Development Ministry has mandated that major internet platforms restrict access for users with VPNs by April 15.

BetaBeacon

April 8, 2026

Google enables system-wide gamepad customization in Android 17

Google has introduced native controller remapping for its Android 17 Beta, allowing users to customize gamepad buttons, sticks, and triggers uniformly across games.

Winsage

April 7, 2026

Disgruntled researcher drops “BlueHammer” Windows zero-day LPE exploit

A security researcher, known as "Nightmare-Eclipse," released proof-of-concept exploit code for a Windows zero-day vulnerability called "BlueHammer," which allows local privilege escalation (LPE). The exploit has been validated by another researcher, Will Dormann, who confirmed it can escalate privileges on Windows systems, allowing non-administrative users to gain SYSTEM-level access. The exploit's reliability varies across different Windows versions, with inconsistent success rates reported. Microsoft has not acknowledged the vulnerability or provided a patch, raising concerns about potential exploitation by threat actors. Users are advised to restrict local user access, monitor for suspicious activity, and enable advanced endpoint protection.

Winsage

April 7, 2026

Google offers free ChromeOS Flex upgrade for Windows 10 users

Over 500 million Windows 10 PC owners are unable to upgrade to Windows 11 and may face security vulnerabilities. Google is offering a complimentary upgrade to ChromeOS Flex for these users, along with a reusable USB Kit priced at approximately €3 to facilitate the transition. Support for Windows 10 ended in October 2022, prompting users to either invest in new devices or continue using an outdated system. Microsoft is providing a free extended support update for Windows 10 users until October 2023, but many remain on the unsupported operating system due to slow adoption of Windows 11. Transitioning to ChromeOS Flex can reduce energy consumption by an average of 19% compared to other operating systems, promoting device longevity and reducing electronic waste.