NewApp Digest
search bot

hosts

A rigged game: ScarCruft compromises gaming platform in a supply-chain attack
BetaBeacon
May 6, 2026

A rigged game: ScarCruft compromises gaming platform in a supply-chain attack

- ScarCruft, also known as APT37 or Reaper, is a North Korean espionage group targeting government, military organizations, and companies in Asia. - BirdCall is a Windows backdoor attributed to ScarCruft, with spying capabilities such as taking screenshots and logging keystrokes. - The Android version of BirdCall collects contacts, SMS messages, call logs, and media files, and was actively developed over several months. - The BirdCall backdoor was discovered in a trojanized card game on a gaming platform tailored for ethnic Koreans living in Yanbian, China. - The attack was likely aimed at collecting information on individuals from the Yanbian region deemed of interest to the North Korean regime, such as refugees or defectors.
ScarCruft Hacks Gaming Platform to Deploy BirdCall Malware on Android and Windows
BetaBeacon
May 5, 2026

ScarCruft Hacks Gaming Platform to Deploy BirdCall Malware on Android and Windows

ScarCruft compromised a video game platform in a supply chain attack, trojanizing its components with a backdoor called BirdCall to target ethnic Koreans residing in China. The attack enabled the threat actors to target both Windows and Android devices, turning it into a multi-platform threat. The campaign targeted sqgame[.]net, a gaming platform used by ethnic Koreans in China, known as a transit point for North Korean defectors. BirdCall has features like screenshot capture, keystroke logging, and data gathering, and relies on legitimate cloud services for command-and-control. The Android variant collects various data and has seen active development.
ScarCruft hackers push BirdCall Android malware via game platform
BetaBeacon
May 5, 2026

ScarCruft hackers push BirdCall Android malware via game platform

APT37, also known as ScarCruft and Ricochet Chollima, has developed an Android version of the backdoor BirdCall, which serves as spyware in addition to a backdoor. The malware was delivered through a Chinese website that hosts games for Android, iOS, and Windows, targeting only Android and Windows systems. The Android variant of BirdCall has capabilities such as extracting IP geolocation information, collecting contact lists, call logs, SMS data, device information, taking screenshots, recording audio, and exfiltrating files. Users are advised to download software only from official marketplaces and trusted publisher sites to protect against malware infections.
Microsoft: New Remote Desktop warnings may display incorrectly
Winsage
April 28, 2026

Microsoft: New Remote Desktop warnings may display incorrectly

Microsoft has identified an issue affecting the display of security warnings when users open Remote Desktop (.rdp) files across all supported versions of Windows, including Windows 11, Windows 10, and Windows Server. The security warning may not render correctly, making the text difficult to read and buttons misaligned, especially when multiple monitors with different display scaling settings are used. This issue often results in overlapping text or obscured buttons in the warning window. The problem is part of Microsoft's security enhancements introduced with the April 2026 cumulative updates, which aim to mitigate risks associated with malicious RDP connection files. Users receive a one-time educational prompt upon opening an RDP file for the first time, followed by a security dialog that provides information about the file's publisher and resource redirections. RDP files are commonly used in enterprise environments, but their exploitation in phishing campaigns has raised security concerns, particularly by groups like the Russian state-sponsored APT29.
Самому старому BitTorrent-трекеру The Pirate Bay исполнилось 22 года
TrendTechie
April 21, 2026

Самому старому BitTorrent-трекеру The Pirate Bay исполнилось 22 года

The Pirate Bay celebrates its 22nd anniversary and continues to serve millions of users despite access-blocking attempts. When it launched, only about 10% of the global population had internet access, and content consumption was mainly offline. The oldest active torrent on The Pirate Bay is an episode of "High Chaparral" featuring Uri Geller, uploaded on March 25, 2004. The oldest active music torrent is a compilation titled Instant Hits by Gyllene Tider, and the oldest active gaming torrent is The Lord of the Rings: The Battle for Middle-earth. Additionally, the documentary Revolution OS, uploaded on March 31, 2004, remains available, despite the director's dissatisfaction with piracy. The oldest active torrent on the internet is a short amateur parody film, The Fanimatrix, created in September 2003.
The Internet Archive has preserved 758 old PC Gamer demo discs you can download and play
AppWizard
April 19, 2026

The Internet Archive has preserved 758 old PC Gamer demo discs you can download and play

The Internet Archive hosts a collection of hundreds of promotional demo discs from PC gaming history, which include unique extras and bonuses. Notable examples include the Quake-O-Rama disc from October 1997, featuring Quake maps and the first speedrun demo file, and a March 2008 disc containing a full episode of Telltale's Sam & Max along with a Duke Nukem Forever trailer. Additionally, a 1994 floppy disk may contain FMV clips with the Coconut Monkey mascot. The archive's cover disc collection, curated by Jason Scott and contributors, includes 758 entries that showcase the history of PC gaming magazines.
This legit-looking software is actually antivirus-killing adware
Tech Optimizer
April 19, 2026

This legit-looking software is actually antivirus-killing adware

Security researchers at Huntress discovered adware signed by Dragon Boss Solutions LLC, which was designed to deliver unwanted advertisements and disrupt user experience. The software had a sophisticated update mechanism that disabled antivirus programs and prevented their reactivation. Huntress found that the primary update domain and its fallback had not been registered, creating a vulnerability that could have allowed malicious actors to take control of the compromised network. In response, Huntress acquired the domains to prevent further exploitation, observing tens of thousands of compromised endpoints attempting to connect. They identified 324 infected devices in high-value sectors, including 221 academic institutions, 41 Operational Technology networks, 35 municipal governments and public utilities, 24 educational institutions, and 3 healthcare organizations. Additionally, networks of multiple Fortune 500 companies were also compromised. Researchers advised monitoring for specific WMI event subscriptions and processes associated with Dragon Boss Solutions LLC to mitigate risks.
EDB Spearheads the Year of the Agentic Workforce with Industry Recognition, Ecosystem Momentum, and Continued Postgres® Leadership
Tech Optimizer
April 17, 2026

EDB Spearheads the Year of the Agentic Workforce with Industry Recognition, Ecosystem Momentum, and Continued Postgres® Leadership

EnterpriseDB (EDB) announced that its product, EDB Postgres AI (EDB PG AI), won the "Data Management Innovation of the Year" at the 2026 Data Breakthrough Awards. EDB PG AI is recognized for transforming Postgres into a unified data and AI platform, facilitating hybrid management and observability across workloads. EDB contributes 30% to the open-source Postgres project, leading contributions among commercial entities. EDB PG AI was highlighted at the NVIDIA GTC 2026 and received multiple accolades, including recognition in CRN's 2026 AI 100 and Sustainability Innovation of the Year. EDB hosts a podcast, AI & Data Horizons, featuring industry experts discussing responsible AI use and data sovereignty. EDB PG AI is described as the first open, enterprise-grade sovereign data and AI platform, capable of unifying various workloads while ensuring compliance and security.
Search