Google Chrome Archives

Winsage

May 29, 2025

Windows 10 KB5058481 update brings seconds back to calendar flyout

Microsoft has released the optional KB5058481 preview cumulative update for Windows 10 22H2, which includes seven changes, notably the restoration of seconds to the time display in the calendar flyout. This update is part of the routine "optional non-security preview updates" and does not address security vulnerabilities. Users can install the update by navigating to Settings and manually checking for updates. Upon installation, Windows 10 22H2 will be updated to build 19045.5917. The update also includes enhancements for user experience and addresses a known issue with NOTO fonts appearing blurry at 96 DPI, particularly affecting CJK text in Chromium-based browsers. A temporary solution is to adjust the display scaling to 125% or 150%.

AppWizard

May 28, 2025

Google’s latest fraud advisory update keeps users keen on emerging threats

Google has released an updated fraud and scam advisory in anticipation of its inaugural Scams Summit, highlighting prevalent scam tactics such as customer support, package tracking, and toll road scams. The company has enhanced its Phone and Messages app with advanced scam protection features for Android users, integrating Gemini technology to detect and block potential scams. Google’s updated advisory also addresses risks from malvertising and counterfeit travel websites, while Chrome has received an update featuring AI-driven warnings for potential scams. Additionally, new scam protection features for calls and texts have been introduced, focusing on blocking actions when potential call scams are detected and identifying various scams related to toll roads, billing, cryptocurrency, and financial impersonation.

Tech Optimizer

May 28, 2025

Hackers Mimic Popular Antivirus Site to Deliver VenomRAT & Steal Finance Data

Cybercriminals are executing a sophisticated malware campaign through a counterfeit Bitdefender antivirus website, specifically the domain “bitdefender-download[.]co,” which mimics the legitimate site. This fraudulent site distributes three types of malware: VenomRAT, StormKitty, and SilentTrinity, aimed at stealing financial data and maintaining persistent access to victims’ computers. When users click the “Download For Windows” button, they inadvertently download a ZIP file containing these malicious programs. VenomRAT acts as a remote access tool, allowing attackers to steal files, cryptocurrency wallets, and browser data, including credit card information. StormKitty quickly harvests sensitive credentials, while SilentTrinity provides stealthy long-term access for further exploitation. The fake Bitdefender site is linked to other malicious domains impersonating banks, indicating a coordinated phishing operation. The attackers utilize the same command and control infrastructure, with the IP address 67.217.228.160:4449 identified as a connection point. Bitdefender is working to take down the fraudulent site, and Google Chrome has begun flagging the link as malicious. Security experts recommend verifying website authenticity and downloading software only from official sources.

Tech Optimizer

May 21, 2025

Lumma Stealer: Breaking down the delivery techniques and capabilities of a prolific infostealer

Microsoft has monitored Lumma Stealer, an infostealer malware used by financially motivated threat actors. Lumma Stealer, also known as LummaC2, functions as a malware-as-a-service (MaaS) solution that extracts data from browsers and applications, including cryptocurrency wallets. The entity behind Lumma is identified as Storm-2477, which maintains the malware and its command-and-control (C2) infrastructure. Affiliates can create malware binaries and manage C2 communications through a panel provided by Storm-2477. Ransomware groups have integrated Lumma Stealer into their operations. Lumma Stealer employs various delivery techniques, including phishing emails, malvertising, drive-by downloads, Trojanized applications, and abuse of legitimate services. Specific campaigns have been identified, such as one in April 2025 that used EtherHiding and ClickFix techniques to deliver Lumma Stealer via compromised websites. Another campaign on April 7, 2025, targeted Canadian organizations with emails containing invoice lures that led to malicious downloads. The malware is developed using C++ and ASM, employing advanced obfuscation techniques to evade detection. It can extract a wide range of user data, including browser credentials, cryptocurrency wallet information, and user documents. Lumma Stealer maintains a robust C2 infrastructure with multiple hardcoded and fallback C2 servers, utilizing encryption methods to secure communications. Microsoft's Digital Crimes Unit has disrupted Lumma Stealer's infrastructure by blocking approximately 2,300 malicious domains. Recommendations to mitigate the impact of Lumma Stealer include strengthening Microsoft Defender configurations, implementing multifactor authentication, and utilizing phishing-resistant authentication methods. Microsoft Defender products can detect and block activities associated with Lumma Stealer, providing alerts and insights for incident response.

BetaBeacon

May 21, 2025

Google’s best-kept secret needs to be a standard Android 16 feature — and it could be game changing

The text discusses the potential for smart glasses to be used as a monitor for Android desktop mode, making a stronger case for their adoption.

AppWizard

May 21, 2025

Gemini bursts into Google Chrome, making browsing as easy as a single click

Google Chrome will integrate Gemini on May 21, enhancing browsing for Google AI Ultra and AI Pro subscribers in the U.S. Users must have the latest version of Chrome with English as their preferred language. Gemini will assist users with tasks and navigate the web with minimal input, allowing commands like directing to specific sections of a website. Future updates will enable Gemini to work across multiple devices. Google aims for Gemini to execute tasks autonomously and develop it into a "World Model" by combining Project Mariner's multitasking with Project Astra's visualization capabilities.

AppWizard

May 16, 2025

Chrome for Android could soon automatically fill verification codes sent via SMS

Google Chrome for Android is set to introduce a feature that will automatically detect and fill two-factor authentication (2FA) codes sent via SMS. This functionality aims to enhance user convenience by eliminating the need for manual copying and pasting of 2FA codes, streamlining the process for users accessing websites through the browser. A screenshot from tipster Leopeva64 suggests this feature will provide a more integrated approach to online security. While SMS-based 2FA is considered less secure than alternatives, this addition could significantly improve the experience for users who rely on SMS for verification.

BetaBeacon

May 14, 2025

Android 16’s new 90:10 split-screen is a game-changer for multitasking

Google is introducing a new split-screen mode for Android 16, changing the ratio from 70:30 to 90:10. This allows one app to occupy 90% of the screen while leaving 10% for a secondary app. Tapping on the smaller app swaps the sizes of both apps, allowing for easy switching between them. This new feature promises to enhance multitasking capabilities on Android phones.

Tech Optimizer

May 7, 2025

Opinion: Do you really need separate antivirus software? Probably not

A friend is considering purchasing antivirus software for a new Windows PC and sought advice on the best options. Major antivirus providers include Norton, McAfee, AVG, and Bitdefender, but many features overlap with Windows Defender. Most home users may not need paid antivirus software, as Microsoft and Apple provide built-in solutions. Web browsers and email providers also offer protection against online threats. Windows 11 users can monitor security through the Windows Security dashboard, while Apple users should keep their systems updated. If encountering issues from suspicious links, downloading Malwarebytes is recommended for scanning and repair. The free version is available for both Mac and Windows, but the paid version is suggested for regular use. Opinions on antivirus necessity vary, and those using computers for business may consider investing in a security suite for added peace of mind.

Winsage

April 27, 2025

New Security Warning After 1 Billion Windows Users Told Do Not Delete

Microsoft's recent security update for Windows has raised concerns among users due to the introduction of a new vulnerability. The update, intended to address the CVE-2025-21204 vulnerability, inadvertently created a folder named inetpub, which Microsoft claims is essential for user protection. Security researcher Kevin Beaumont has warned that this update has introduced a denial of service vulnerability that allows non-admin users to halt future Windows security updates. Microsoft has classified the issue as moderate in severity and suggested that deleting the inetpub symlink and retrying the update may resolve the problem. The report has been forwarded to the Windows security team for potential further action.