fraud Archives

AppWizard

May 2, 2026

Minecraft PvP scandal claims top player is a catfishing fraud

Marlow, a top player in the Minecraft PvP community, faces serious allegations of faked gameplay, manipulated proof videos, and misleading practices. Accusations suggest that Marlow's rise in the MC Tiers rankings was based on deceit, with investigative journalist Karl Jobst highlighting the lack of live-streamed gameplay and unedited footage. A handcam response video released by Marlow showed discrepancies between match logs and the footage, leading to claims that the fights were fabricated. Marlow admitted that many montages were staged. Investigations linked Marlow to another player, Danger Mario, who allegedly helped create Marlow's YouTube presence and used cheats. A face reveal video raised further skepticism about Marlow's identity, as the individual did not engage in gameplay and had a different voice. Initially banned by MCT for being suspected as Danger Mario, Marlow was reinstated after a face reveal and alleged verification, causing backlash and staff resignations. Claims emerged that the face reveal individual was linked to MCT staff member The Randomizer, who admitted to paying someone to impersonate Marlow. The MCT Discord was reportedly transferred to Minecraft YouTuber DrDonut, with ongoing discussions about new ownership involving Dream. The controversy raises significant questions about the integrity of the Minecraft competitive scene.

Tech Optimizer

April 30, 2026

Protect your devices with our pick for the best antivirus software, now over 60% off

Bitdefender Total Security is currently available on Amazon at a 62% discount, offering a full year of protection for five devices across Windows, macOS, iOS, and Android. The software protects against online threats such as spam, fraud, malware, ransomware, cryptomining, and phishing attacks, and it blocks third-party data tracking and unauthorized access to microphones or webcams. It has received a perfect 5/5 rating from editors. There is no specified expiration date for the deal, but availability may change.

AppWizard

April 28, 2026

Don’t fall for the Verizon ‘loyalty’ scam that’s putting $1,500 iPads in the mail

A sophisticated scam targeting Verizon customers has emerged, exploiting the My Verizon app to send fraudulent push notifications. A Reddit user, ApprehensivePace2969, experienced this scam when they received a call from someone impersonating a Verizon representative, claiming they qualified for a 65% discount and a free iPad. The legitimacy of the offer was reinforced by a push notification from the app. The victim received a 256GB iPad Pro, valued at ,500, and was charged a shipping fee, which was promised to be refunded upon activation. However, they later received calls from another supposed Verizon representative, instructing them to return the iPad or face a full charge. Red flags included a return shipping label not from Verizon's official center and an unrelated New York address. The victim took the iPad to a real Verizon store, contacted the fraud department, and successfully returned the device, avoiding financial loss.

AppWizard

April 28, 2026

10,000 Users Exposed As Fake Document Reader App Delivers Anatsa Banking Trojan

Security researchers from ThreatLabz discovered a malicious document reader app on the Google Play Store that delivered the Anatsa Android banking trojan. The app, which had over 10,000 downloads before its removal, disguised itself as a legitimate file management tool using the package name com.groundstation.informationcontrol.filestationbrowsefilesreaddocs. It employed a "dropper" technique to hide its malicious code, connecting to an external server to retrieve the malware payload after installation. Anatsa is designed to steal financial information by overlaying a fake login screen over legitimate banking apps, capturing user credentials and enabling unauthorized transactions. Users are advised to delete the app and monitor their financial accounts. Technical indicators for identifying infections include the Anatsa Installer SHA256 (5c9b09819b196970a867b1d459f9053da38a6a2721f21264324e0a8ffef01e20), Payload URL (http://23.251.108[.]10:8080/privacy.txt), Payload SHA256 Hash (88fd72ac0cdab37c74ce14901c5daf214bd54f64e0e68093526a0076df4e042f), and Command and Control servers (http://172.86.91[.]94/api/ and http://193.24.123[.]18:85/api/).

Winsage

April 25, 2026

In France they “buried” Windows 10 at the Microsoft office

On April 24, a protest organized by environmental and consumer advocacy groups took place outside the Microsoft France office in Paris to oppose the company's decision to discontinue support for the Windows 10 operating system. Activists claim this could lead to the obsolescence of approximately 300 million computers worldwide, resulting in 58 million tons of carbon dioxide emissions and significant depletion of raw materials. Consumers may face an average cost of €600 for new devices if they upgrade. Experts warn users must choose between expensive new hardware or risking financial fraud due to lack of security updates. The organization Halte à l'Obsolescence Programmée is gathering signatures for a petition advocating for a mandatory 15-year software support period. Public advocacy previously convinced Microsoft to extend its software update releases by an additional 12 months. The protest aims to raise awareness and apply pressure until the end of October.

Tech Optimizer

April 23, 2026

Everywhen issues six checks to spot unsafe websites

Everywhen has released guidelines to help organizations identify unsafe websites and combat online fraud. The guidance includes six checks users can perform before visiting unfamiliar sites: 1. Utilize website safety checker tools like Google Safe Browsing and Norton Safe Web. 2. Verify the site contains standard business information, such as contact details and social media links. 3. Conduct reputation checks by reviewing public feedback for complaints related to fraud or poor service. 4. Evaluate visual and editorial standards for indicators of illegitimacy, such as poor grammar or outdated branding. 5. Maintain updated antivirus software to block malicious downloads and phishing attempts. 6. Adjust browser settings to receive alerts about suspicious websites. The guidance highlights the importance of scrutinizing URLs for unusual spellings or characters and distinguishes between HTTP and HTTPS, noting that the padlock symbol does not guarantee trustworthiness. The initiative aims to protect both consumers and organizations from cyber threats, particularly as fake websites increasingly target personal information and financial transactions.

AppWizard

April 21, 2026

Trojanized Android App Fuels New Wave of NFC Fraud

A new variant of the NGate malware family has emerged, using a trojanized Android application to capture payment card data and personal identification numbers (PINs). This modified version of HandyPay, a legitimate NFC relay app, has been distributed since November 2025, primarily targeting users in Brazil. The malware intercepts NFC payment card data and allows fraudulent transactions. Two distinct malware samples have been observed, delivered through phishing infrastructure that impersonates a Brazilian lottery site and a Google Play listing for a card protection tool. The trojanized app captures NFC data, requests the victim's card PIN, and transmits this information to attacker-controlled infrastructure. It requires minimal permissions, leveraging its role as the default payment application to evade detection. Evidence suggests that generative AI tools may have been used in its development, indicated by emoji markers in debug logs. ESET has reported its findings to Google, and Google Play Protect can detect known versions of the malware. The developer of HandyPay is investigating the misuse of its application.

Tech Optimizer

April 21, 2026

Gen Digital Inc stock (US36870C1018): Is its cybersecurity moat strong enough for steady investor re

Gen Digital Inc operates a consumer-focused cybersecurity model centered on subscription-based protection services, including antivirus, VPNs, and identity theft protection. The company generates predictable revenue through auto-renewals, with over 90% of customers renewing annually. Its business model scales with internet penetration and focuses on individual users rather than enterprise contracts. Gen Digital emphasizes organic growth through product innovation and geographic expansion, with key growth drivers including the increase of connected devices and cloud-based delivery. The product portfolio features tiered subscription plans, catering to diverse consumer needs, and the company maintains a competitive position through superior detection rates and customer support. Gen Digital's primary markets are North America and Europe, with emerging opportunities in Latin America and Asia. Analysts view the subscription model favorably for its resilience and cash flow generation, while risks include competition from free tools and regulatory changes. Upcoming earnings will provide insights into subscriber trends and pricing power.

Tech Optimizer

April 21, 2026

Safeguarding Against the Personal Attack Chain in the Age of “Always On” Connectivity

The cybersecurity industry has focused on protecting corporate perimeters, but cybercriminals are increasingly targeting executives and their families, exploiting personal vulnerabilities. Executives are twelve times more likely to be targeted than average employees, with over half experiencing personal breaches. The Personal Attack Chain is a multi-stage process where attackers exploit an executive's personal digital footprint to gain access to corporate resources. The stages include reconnaissance, intrusion, lateral movement, and action on objectives. Reactive security measures are insufficient; proactive intelligence is necessary to identify threats before they reach organizations. Home security is often compromised by vendors, and travel increases vulnerability. Digital Executive Protection (DEP) is becoming essential for safeguarding executives and their families, balancing privacy, convenience, and security. Effective strategies include minimizing digital footprints, safeguarding devices and networks, providing identity theft protection, and educating executives on online safety. Personal cybersecurity is now a corporate imperative, requiring a holistic approach to protect individuals and organizations alike.

AppWizard

April 21, 2026

NGate NFC malware targets Android users through trojanized payment app

NFC-based payment fraud targeting Android users in Brazil has been linked to a campaign using a trojanized version of the HandyPay app, part of the NGate malware family, since November 2025. The malware is distributed through a counterfeit website mimicking a lottery and a fraudulent Google Play page. The operators chose HandyPay for its low cost and minimal permissions required. The malware requests users to set it as the default NFC payment app, allowing it to capture payment card PINs and relay NFC card data to attackers. ESET Research identified this campaign and discovered logs from compromised devices containing sensitive information. The trojanized app has never been on the official Google Play store, and ESET has notified Google and the HandyPay developer about the issue.