fake

AppWizard
July 14, 2026
Recent findings from a study by Positive Technologies indicate that AI is increasingly being used by hackers to modify mobile applications, with a success rate of over 60% for embedding unauthorized code without disrupting functionality. The study analyzed 90 Android applications, finding closed commercial models had an 84% success rate, while open-source applications had a 61% success rate. Modifications were completed in as little as 5 minutes and 38 seconds to up to 9 minutes and 9 seconds, with costs ranging from 0.88 to 40.89 rubles per modification. Messaging platforms and third-party sites are particularly at risk, especially for users seeking unofficial app versions. Developers are advised to improve security against code modification and unauthorized clones.
Tech Optimizer
July 10, 2026
Cybercriminals are exploiting the VLC media player to install ValleyRAT, a remote access trojan, by embedding malware in a seemingly harmless file linked in phishing emails. The attack starts with an email that prompts the victim to download a ZIP archive containing a fake VLC executable and a malicious DLL named libvlc.dll. This method uses DLL sideloading to execute the malware under the guise of a legitimate application. Once executed, the malware establishes persistence by creating a registry entry and connects to a remote server to retrieve the final payload. ValleyRAT employs evasion tactics to avoid detection, including assessing system characteristics before executing harmful actions and using a fileless approach to deliver the payload directly into memory. Researchers have identified indicators of compromise, including specific SHA1 hashes and URLs associated with the malicious campaign.
Tech Optimizer
July 6, 2026
Check Point Research has identified a public relations-style campaign by hackers to distribute a Rust clipboard hijacker disguised as legitimate software, targeting both Windows and macOS. The malware monitors clipboard activity for cryptocurrency wallet addresses and replaces them with those of the attackers, leading victims to send funds to the hackers. The threat actors use a phishing page as a hub, promote projects on GitHub and SourceForge through fake accounts, and operate a YouTube channel with AI-generated narrators to create a false sense of credibility.
Search