fake Archives

AppWizard

June 11, 2025

Experts warn GTA and Minecraft being used to lure in cyberattack victims – here’s how to stay safe

Cybersecurity experts have reported a significant increase in game-themed malware targeting the gaming community, especially younger players. From April 1, 2024, to March 31, 2025, there were over 19 million attempts to download malicious files disguised as popular games, affecting around 400,000 individuals globally. Grand Theft Auto V (GTA V) was the most targeted game, with nearly 4.5 million attack attempts, followed by Minecraft with 4.1 million, Call of Duty (CoD) with 2.6 million, and The Sims with 2.4 million. Cybercriminals exploit established games and lure victims with fake offers, often leading to infostealers, cryptocurrency hijackers, backdoors, and Trojans. Kaspersky advises gamers to avoid pirated content and be cautious of suspicious offers.

Tech Optimizer

June 5, 2025

Fake DocuSign and Gitcode sites are tricking victims into downloading malware – here’s what you need to know

Researchers at DomainTools Investigations (DTI) have identified counterfeit websites mimicking platforms like DocuSign and Gitcode, designed to lure users into downloading malware, specifically a remote access trojan (RAT). These fraudulent sites use tactics such as fake CAPTCHA prompts to enhance credibility and prompt users to download malicious software disguised as necessary updates. The operation employs a multi-stage downloader PowerShell script, reminiscent of older scams that alarmed users with popups about virus infections. Users are advised to be cautious with unfamiliar websites and verify the authenticity of download prompts.

Tech Optimizer

June 4, 2025

Do I need an antivirus and a VPN?

Reliance on antivirus software for device protection is common, but certain threats, especially ransomware, can bypass even the best solutions. Cybercriminals have shifted tactics from encrypting data for ransom to exfiltrating sensitive information and threatening to leak it. The availability of ransomware kits and the use of AI by attackers have made cybercrime more accessible and targeted. Remote work environments increase vulnerabilities, as hackers exploit unsecured networks and personal devices. Antivirus software can help protect against malware and viruses, but built-in solutions often lack comprehensive security. A high-quality antivirus program can enhance protection through advanced features and AI. A Virtual Private Network (VPN) encrypts data and secures internet traffic, making it a valuable tool for cybersecurity. Implementing a VPN is cost-effective compared to potential data breach costs. Using both a VPN and antivirus software is essential for comprehensive coverage, as they address different security aspects. Businesses may need advanced endpoint protection solutions for heightened security, which continuously scans for suspicious behavior and integrates multiple security features. Despite these tools, proper personal practices and cybersecurity awareness are crucial to minimize vulnerabilities and human error, which is a leading cause of cyberattacks.

Tech Optimizer

June 2, 2025

Key service for malware developers taken offline

The takedown of AVCheck, a major Counter Antivirus (CAV) service used by cybercriminals, disrupts their ability to test malware against antivirus detection, thereby hindering successful attacks. Matthijs Jaspers from the High Tech Crime Team highlighted that this operation is crucial in combating organized cybercrime, as it prevents early-stage criminal activities. The investigation revealed connections between AVCheck and other services like Cryptor.biz and Crypt.guru. Additionally, law enforcement has taken proactive measures, including deploying a fake login page to deter AVCheck users and collaborating with Project Melissa to target malware services. The need for coordinated efforts among various sectors is emphasized to effectively combat cybercrime.

Tech Optimizer

June 2, 2025

International authorities dismantle AVCheck in cybercrime operation

International authorities have dismantled AVCheck, a platform used by cybercriminals to test malware against antivirus software. The website avcheck.net now displays a seizure notice from the US Department of Justice, FBI, US Secret Service, and Dutch police. AVCheck was one of the largest counter antivirus services globally, aiding cybercriminals in evaluating their malware's stealth capabilities. Investigators found links between AVCheck's administrators and crypting services like Cryptor.biz and Crypt.guru. Law enforcement had placed a fake login page on AVCheck to warn users about legal risks before its shutdown on May 27, 2025. Undercover agents confirmed the illegal nature of AVCheck through transactions and connections to ransomware attacks. The FBI has also warned about the Silent Ransom Group, which has targeted law firms in the US using social engineering tactics.

Tech Optimizer

June 1, 2025

Supercharging vector search performance and relevance with pgvector 0.8.0 on Amazon Aurora PostgreSQL

The Amazon Aurora PostgreSQL-Compatible Edition has integrated support for pgvector 0.8.0, enhancing vector search capabilities significantly. This version achieves up to 9x faster query processing and delivers 100x more relevant search results compared to previous iterations. Key improvements in pgvector 0.8.0 include: - Up to 5.7x improvement in query performance for specific patterns. - Introduction of the iterative_scan feature, enhancing recall for filter queries requiring approximate nearest neighbor (ANN) index searches. - Improved cost estimation for more efficient query planning, allowing the selection of traditional indexes for complex filtered searches. - Flexible performance tuning with two modes for iterative_scan: relaxed_order and strict_order. Previous versions faced challenges with overfiltering, where combining vector similarity search with traditional SQL filters resulted in fewer results than expected. The HNSW indexing algorithm accelerates vector similarity searches by creating a multi-layered graph structure for efficient navigation. Iterative index scans in pgvector 0.8.0 improve query reliability and performance by applying filters during the scanning process, reducing false negatives and enhancing performance. The configuration options for iterative scanning include off, strict_order, and relaxed_order, with relaxed_order providing the best balance between performance and accuracy. In performance tests, pgvector 0.8.0 demonstrated substantial improvements across various query patterns, with significant enhancements in result completeness and recall. The database can now efficiently handle enterprise-scale applications, such as e-commerce and recommendation systems, with high performance and result quality even as product catalogs expand. Best practices for deploying pgvector 0.8.0 include using HNSW with recommended parameters, creating additional indexes on commonly filtered metadata columns, and tuning query parameters based on specific use cases. Operational best practices involve using Graviton4-based instances for optimal performance, monitoring and tuning slow vector queries, and considering partitioning for very large tables.

Tech Optimizer

May 31, 2025

Devious new ClickFix malware variant targets macOS, Android, and iOS using browser-based redirections

ClickFix attacks have evolved from targeting Windows systems to also affecting macOS, iOS, and Android devices. The new version starts with a compromised website where cybercriminals inject JavaScript code that redirects users to a fake URL shortener. This action leads to a download page serving malware. On macOS, the attack executes a malicious shell script via a terminal command, while on Android and iOS, it can occur without user interaction, allowing malware to be downloaded simply by visiting the compromised site. The malware is packaged in a .TAR archive and has been flagged by multiple antivirus programs.

Tech Optimizer

May 30, 2025

Dutch police takes Counter Antivirus service AVCheck offline

The Dutch Team High Tech Crime, in collaboration with international partners, has dismantled the counter-antivirus service AVCheck, which was used by cybercriminals to make malware undetectable. AVCheck was one of the largest services of its kind, allowing malware developers to test their software against antivirus programs. The operation involved cooperation from the Netherlands, the United States, and Finland, and was executed by the High Tech Crime Team under the National Public Prosecutor’s Office. The investigation not only shut down AVCheck but also gathered evidence against its administrators and users, including those of related services like Cryptor.biz and Crypt.guru. Additionally, a fake login page was launched to deter AVCheck users, and collaborations with antivirus organizations were established as part of Project Melissa. This action is connected to Operation Endgame, which previously targeted other malware services.

Tech Optimizer

May 29, 2025

Windows PCs at risk as new tool disarms built-in security

All modern Windows PCs come with Microsoft Defender, a built-in antivirus solution. A tool called Defendnot can disable Microsoft Defender by tricking Windows into believing another antivirus is active. It uses an undocumented API to register a counterfeit antivirus, which leads to Microsoft Defender being automatically disabled without user notification. Defendnot creates a scheduled task for persistence and allows customization of the antivirus name. It is a successor to a previous project, No-Defender, which was removed due to copyright issues. Currently, Microsoft Defender flags Defendnot as a threat.

Tech Optimizer

May 29, 2025

Xanthorox, the AI that promotes itself as an easy resource for committing cybercrimes

Xanthorox is an AI developed in 2023 by an anonymous creator, claiming to surpass WormGPT and EvilGPT. It promotes itself as a tool for illicit online activities, offering features like ransomware creation, deepfake generation, phishing email production, and malware development. The AI operates on open-source models without typical security measures, allowing for unregulated content generation. Its pricing includes a free tier for limited features and negotiable rates for full access. Security experts note that while Xanthorox is effective, its actual impact on large-scale cybercrime is uncertain. The legality of Xanthorox stems from its open-source nature, which allows for its use as long as it does not violate laws, although using it for illegal activities remains unlawful.