Google Archives

TrendTechie

November 25, 2025

Пост @denis-19 — Децентрализованные сети

A new open-source Telegram bot developed in Python integrates a torrent client, allowing seamless file downloads through magnet links and Google Drive URLs. It features a built-in torrent search engine for easy content location and incorporates yt-dlp for downloading videos from various platforms.

Winsage

November 25, 2025

JackFix Uses Fake Windows Update Pop-Ups on Adult Sites to Deliver Multiple Stealers

Cybersecurity experts have identified a new campaign that combines ClickFix tactics with counterfeit adult websites to trick users into executing harmful commands under the guise of a "critical" Windows security update. This campaign uses fake adult sites, including clones of popular platforms, as phishing mechanisms, increasing psychological pressure on victims. ClickFix-style attacks have risen significantly, accounting for 47% of all attacks, according to Microsoft data. The campaign features convincing fake Windows update screens that take over the user's screen and instruct them to execute commands that initiate malware infections. The attack begins when users are redirected to a fake adult site, where they encounter an "urgent security update." The counterfeit Windows Update screen is created using HTML and JavaScript, and it attempts to prevent users from escaping the alert. The initial command executed is an MSHTA payload that retrieves a PowerShell script from a remote server, which is designed to deliver multiple payloads, including various types of malware. The downloaded PowerShell script employs obfuscation techniques and seeks to elevate privileges, potentially allowing attackers to deploy remote access trojans (RATs) that connect to command-and-control servers. The campaign has been linked to other malware execution chains that also utilize ClickFix lures. Security researchers recommend enhancing defenses through employee training and disabling the Windows Run box to mitigate risks associated with these attacks.

BetaBeacon

November 25, 2025

Can you really improve game performance with a spoof emulator?

Developers are creating spoof APK versions of game emulators to maximize performance on smartphones.

AppWizard

November 25, 2025

Own an Android phone? 12 settings I changed to greatly extend its battery life

Many users seek to extend battery life on Android devices, especially budget models. Here are twelve settings that can enhance battery performance: 1. Turn off the always-on display to improve battery life. 2. Enable Adaptive Battery to optimize resource management based on usage patterns. 3. Activate Battery Saver mode to limit background activity and visual effects. 4. Switch to dark mode to reduce energy consumption on OLED displays. 5. Adjust display brightness and sleep time to enhance battery longevity. 6. Remove unused accounts to prevent background syncing that drains battery. 7. Turn off keyboard sounds and haptics to conserve energy. 8. Reduce notifications to limit background activity that drains battery. 9. Turn off "Hey Google" detection to prevent unnecessary battery drain. 10. Reduce the screen's refresh rate to improve battery performance. 11. Turn off unused wireless features like Wi-Fi, Bluetooth, and location services. 12. Use low-power mode to limit background activity and reduce screen brightness in critical situations.

Winsage

November 25, 2025

ClickFix Attack Uses Steganography to Hide Malicious Code in Fake Windows Security Update Screen

A new wave of ClickFix attacks has emerged, using fake Windows Update screens and PNG image steganography to deploy infostealing malware like LummaC2 and Rhadamanthys. The attacks trick users into executing a command by pressing Win+R and pasting a command copied to their clipboard. Attackers have shifted from using “Human Verification” lures to more convincing full-screen fake Windows Update screens. The fake update prompts users to run a command that initiates mshta.exe with a URL containing a hex-encoded IP address, leading to the download of obfuscated PowerShell and .NET loaders. A notable feature of the campaign is the use of a .NET steganographic loader that hides shellcode within the pixel data of a PNG image, which is decrypted and reconstructed in memory. The shellcode is Donut-packed and injected into processes like explorer.exe using standard Windows APIs. Huntress has been monitoring these ClickFix clusters since early October, noting the use of the IP address 141.98.80[.]175 and various paths for the initial mshta.exe stage, with subsequent PowerShell stages hosted on domains linked to the same infrastructure. Despite the disruption of Rhadamanthys’ infrastructure in mid-November, active domains continue to serve the ClickFix lure, although the Rhadamanthys payload appears to be unavailable. To mitigate the attack, disabling the Windows Run box through Group Policy or registry settings is recommended, along with monitoring for suspicious activity involving explorer.exe. User education is critical, emphasizing that legitimate processes will not require pasting commands into the Run prompt. Analysts can check the RunMRU registry key to investigate potential ClickFix abuse.

BetaBeacon

November 25, 2025

Roblox “Security Threat Detected” error crashes games on Android

Android users are experiencing frustrating crashes while playing Roblox, with a puzzling error message causing confusion. The issue seems to be affecting a wide range of Android brands and models, including Samsung, Lenovo, Xiaomi, Huawei, Amazon Fire, and Google Pixel devices. The crashes started around November 22-24, possibly linked to a recent app update. Users have tried various troubleshooting methods without success and some have resorted to downgrading to an older Roblox version. Speculation suggests that Roblox's anti-cheat system may be mistakenly flagging legitimate devices as security threats. The company has not publicly addressed the issue, but users are encouraged to try installing an older APK file as a temporary workaround.

AppWizard

November 24, 2025

You can finally use Waze on your phone while connected to Android Auto

Waze has introduced a new feature for Android Auto users that allows navigation locations to be selected directly from their phone's screen, enhancing user interaction compared to the previous setup where the app operated independently. This update is now widely accessible following a period of testing, with some users reporting a new pop-up indicating the feature's availability. The functionality is particularly useful for drivers without touchscreens, as it allows navigation through rotary controls. If users do not see the feature, they can try force-stopping and restarting the app to access it.

AppWizard

November 24, 2025

Gmail gives Android users a window into email attachments with this update

Gmail is rolling out an update for Android users that includes notification previews, allowing users to see email titles and attachment previews in the notification panel. A unified Purchases Tab will be introduced to track online orders, featuring an "Arriving Soon" section for order and tracking details. The Promotions tab will be updated to provide timely notifications about personalized offers. Additionally, a one-tap appointment booking feature will be integrated with Google Calendar, enabling users to manage appointments directly within Gmail and allowing Workspace customers to add booking pages to email drafts easily.

AppWizard

November 24, 2025

Google Assistant could shut down for Android Auto in March 2026

Google Assistant will remain available on Android Auto until March 2026. The transition to Gemini has begun, with the rollout starting on November 20, 2025. A support document indicates uncertainty about Google Assistant's future on other platforms. Initially, Google planned to phase out Google Assistant by March 2025 on most mobile devices, but this timeline may be extended. Gemini is replacing Google Assistant on most mobile devices and will understand the same commands while allowing for more natural speech.

Winsage

November 24, 2025

In wake of Windows 10 retirement, over 780,000 Windows users skip Win 11 for Linux, says Zorin OS developers — distro hits unprecedented 1 million downloads in five weeks

Zorin OS 18 has surpassed one million downloads, with over 78% of these coming from Windows systems. The latest version features a redesigned interface that combines elements of Windows 11 and MacOS, introduces Windows-style window tiling, and allows web-app integration for services like Office 365 and Google Docs. It includes a "Search Everywhere" function in the Files app, RDP remote-login support, and improved Bluetooth audio through the PipeWire audio stack. Zorin OS 18 is a Long Term Support release, guaranteeing updates until 2029. The release coincides with the end of support for Windows 10, leading to increased interest in alternatives among Windows users.