impersonation

Winsage
July 3, 2026
In June, Microsoft introduced several enhancements for Microsoft Teams, including new calling agents, brand impersonation protection, redesigned in-meeting controls, bot detection, a facilitator in Teams Rooms, and IntelliFrame people labels. A notable feature, "workplace check-in via Wi-Fi," is now generally available after initial criticism and a delayed rollout. SharePoint content shared through Quick Share retains permissions to enhance user privacy.
Winsage
June 13, 2026
Microsoft has rolled out support for DNS over HTTPS (DoH) in Windows DNS Server as part of the Windows Server 2025 update. This feature enhances the security of DNS communications through encryption and server authentication, allowing encrypted client-to-resolver traffic in on-premises DNS environments. DoH encrypts DNS queries and responses using HTTPS, protecting sensitive information from interception or alteration. It also uses digital certificates for DNS server authentication to reduce spoofing and impersonation risks. The feature is compatible with existing Windows DNS Server configurations and supports both encrypted and traditional DNS. DoH support is available on Windows Server 2025 with the June 9, 2026 update or newer. Administrators must configure a trusted TLS certificate and enable DoH in the DNS Server service to deploy this feature. Microsoft plans to extend encryption capabilities to include communication between the Windows DNS Server and upstream DNS resolvers in the future.
AppWizard
June 3, 2026
Android is introducing a fake call detection feature that identifies and flags suspected spoofed calls when both the user and the contact are using Phone by Google. This technology aims to protect users from impersonation scams, particularly those using AI voice cloning, and builds on previous measures like alerts for verified financial calls.
AppWizard
June 2, 2026
Google's Phone app is introducing a feature to alert users about potential AI impersonation scams by flagging calls that appear to be from their contacts as suspicious. This update is part of the broader June Android update, which includes other enhancements such as support for Apple AirDrop, accessibility of the Personal Safety app for children under 13, AI-powered clothing try-on features in Photos, and improved search functionality for outfits. The Phone app will notify users with a message indicating that "Someone may be pretending to call from your contact’s number," allowing them to hang up if the call is deemed suspicious. This feature will be automatically enabled for users on Android 12 and later, starting with Pixel devices, and relies on a system where both the user and their contact must use the Phone by Google app to verify call authenticity through a "silent confirmation signal." The feature utilizes end-to-end encrypted rich communication services (RCS) technology.
AppWizard
June 2, 2026
Phone by Google is introducing a fake call detection feature to protect Android users from impersonation scams that use AI-powered deepfake technology. This feature requires both parties to use Android devices with the Phone by Google app, Google Messages, and Google Contacts. It works by sending a silent confirmation signal to verify the legitimacy of a call. If an impersonation attempt is detected, the user's phone will check with the actual contact's device, and if the real device indicates that it is not making a call, a warning will appear on the user's screen. The feature will roll out globally for Android 12+ devices, starting with Pixel phones, and will be enabled by default. The underlying RCS technology may also be adopted by other apps and manufacturers.
AppWizard
May 28, 2026
A cybersecurity report released on May 22, 2026, identifies a counterfeit Android application posing as the official app of the Cockroach Janta Party as a significant malware threat. The malicious app, known as Cockroach.Janta.Party, functions as a Remote Access Trojan (RAT) and can infiltrate Android devices, steal sensitive information, intercept communications, and control infected smartphones. The genuine Cockroach Janta Party has no affiliation with this app and is a victim of brand impersonation. The app is distributed through WhatsApp, Telegram, and misleading websites, particularly a rogue domain, cockroachjantaparty[.]org. It targets Android devices running versions 8.0 to 14 and requests elevated permissions, including access to camera, SMS, call logs, and contacts, while misusing the Android Accessibility Service to read on-screen content and grant itself additional permissions. The app contains multiple malicious modules for data exfiltration and uses a Command and Control infrastructure based on the Telegram Bot API. Users are advised to uninstall the app, disable Accessibility permissions, reset banking credentials, enable two-factor authentication, and conduct a full mobile security scan. The legitimate Cockroach Janta Party is encouraged to issue a formal clarification regarding the impersonation.
AppWizard
May 20, 2026
Cybersecurity researchers have identified an ad fraud and malvertising operation called Trapdoor, targeting Android users with 455 malicious applications and 183 command-and-control domains. Users often download these disguised apps, which initiate malvertising campaigns and lead to further downloads of malicious applications. At its peak, Trapdoor generated 659 million bid requests daily, with over 24 million downloads of the associated apps, primarily from the United States. The operation exploits install attribution tools to activate malicious activities only for users acquired through fraudulent ad campaigns, while suppressing such behavior for organic downloads. Trapdoor employs advanced evasion techniques, including obfuscation and impersonation of legitimate software, to avoid detection. Google has removed the identified malicious apps from the Play Store in response to the threat.
Search