impersonation Archives

AppWizard

April 8, 2026

VP Duterte warns public vs individuals posing as her on messaging app

Vice President Sara Duterte has warned the public about individuals impersonating her on messaging platforms. She posted on her Facebook and the Office of the Vice President's official page, advising citizens to be cautious of suspicious messages claiming to be from her. A screenshot of a conversation was included where the impersonator requested a list of supportive congressmen. Duterte emphasized not to engage, share personal information, or send money, stating she does not solicit favors from the public.

AppWizard

April 3, 2026

NCSC warns of messaging app targeting by Russia-linked actors

The UK National Cyber Security Centre (NCSC) has warned of an increase in cyber threats from Russia-based actors, targeting high-risk individuals through messaging applications like WhatsApp, Signal, and Messenger. These threats involve deceptive tactics such as coaxing users for login codes, unauthorized device access, group chat infiltration, impersonation of trusted contacts, and phishing links. The targeting is linked to state-affiliated groups from Russia, China, and Iran. High-risk individuals are those with access to sensitive information or influential roles. The NCSC recommends several protective measures: enabling two-step verification, not sharing verification codes, monitoring linked devices, being cautious with unknown contacts, limiting personal app use for work, and using disappearing messages to reduce data exposure.

AppWizard

March 12, 2026

Meta Rolls Out Scam Warnings on Facebook, Messenger, and WhatsApp

Meta is implementing measures to combat scams on its platforms, including Facebook, Messenger, and WhatsApp, by using artificial intelligence and forming enforcement partnerships. Users will receive real-time alerts on Facebook for suspicious friend requests, and Messenger will enhance scam detection by analyzing conversation patterns. WhatsApp will notify users of unusual device-linking attempts to secure accounts. Meta has removed over 159 million scam ads and disabled 10.9 million fraudulent accounts, collaborating with law enforcement to disable more than 150,000 accounts and effect 21 arrests. The company plans to mandate advertiser verification for high-risk categories to reduce fraudulent ads and aims for verified advertisers to account for 90% of ad revenue. The success of these initiatives will be measured by reductions in reported losses and chargebacks.

AppWizard

March 12, 2026

Meta Upgrades Safety Features of Facebook, Messenger, and WhatsApp to Protect Users From Fraud

Meta is implementing new safety measures to enhance user protection against online scams on its platforms, including Facebook, Messenger, and WhatsApp. The company is expanding its use of artificial intelligence (AI) for scam detection, integrating a system that analyzes text, images, links, and account behavior to identify impersonation attempts. User alerts will be introduced to warn Facebook users about suspicious friend requests and to flag risky messages in Messenger. WhatsApp users will receive notifications for suspicious device linking requests. Meta has removed over 159 million scam advertisements and disabled 10.9 million accounts. It is collaborating with global law enforcement to combat scam networks, including a recent effort that led to the disabling of more than 150,000 accounts linked to scam centers in coordination with the Royal Thai Police.

AppWizard

March 11, 2026

Meta Launches New Anti-Scam Tools on WhatsApp, Facebook, and Messenger

Meta has introduced a set of security tools for WhatsApp, Facebook, and Messenger to enhance user protection against scams. These tools utilize artificial intelligence to detect impersonation attempts and identify deceptive links, with the aim of removing malicious accounts proactively. In the previous year, Meta removed over 159 million scam ads and terminated 10.9 million accounts associated with scams. New features include alerts for users when scammers attempt to link their WhatsApp to a fraudulent device and notifications for suspicious Facebook friend requests, which provide information on account creation dates and mutual friends. Additionally, Meta is expanding its scam detection tools in Messenger to more countries, allowing users to report suspicious messages for AI analysis.

Winsage

March 4, 2026

PoC Exploit Released for Microsoft Windows Error Reporting ALPC Privilege Escalation

A proof-of-concept exploit for CVE-2026-20817, a local privilege escalation vulnerability in the Windows Error Reporting (WER) service, has been released by security researcher oxfemale on GitHub. This vulnerability allows low-privileged users to gain SYSTEM-level access through crafted Advanced Local Procedure Call (ALPC) messages. The flaw is located in the WER service's SvcElevatedLaunch method, which fails to validate caller privileges before executing WerFault.exe with user-supplied command line parameters. The CVSS v3.1 base score for this vulnerability is 7.8, indicating a high severity level. It affects unpatched versions of Windows 10, Windows 11, Windows Server 2019, and Windows Server 2022 prior to the January 2026 update. Demonstrations have shown successful exploitation on Windows 11 23H2. Security teams are advised to monitor for unusual processes related to WerFault.exe, investigate missing SeTcbPrivilege in SYSTEM tokens, and review WER-related activities from low-privilege users. Immediate application of the January 2026 security patches is recommended, and a temporary workaround involves disabling the WER service.

Tech Optimizer

February 17, 2026

Stay safe online with Bitdefender antivirus

Bitdefender is a cybersecurity company founded in 2001, known for its advanced, AI-powered threat prevention and user-friendly interface. It offers real-time protection, scheduled background scanning, and a straightforward installation process. Bitdefender does not disrupt app or device performance and currently provides a 50% discount on its security software compatible with Windows, Android, macOS, and iOS. The software includes antivirus, malware protection, data breach detection, identity protection, and a VPN with 200MB of traffic per day per device. A single account can secure up to three devices. Bitdefender Total Security protects against various online threats and includes a password manager and firewall, while Bitdefender Premium offers unlimited VPN access and the Scam Copilot AI assistant for enhanced security against scams. Users also have access to resources like user guides, video tutorials, and direct support through the Bitdefender Central mobile app.

Winsage

January 27, 2026

Microsoft warns Teams users about scammers posing as trusted brands

Microsoft has introduced a Brand Impersonation Protection feature for Teams that scrutinizes incoming VoIP calls from unfamiliar external contacts to identify potential brand impersonation. This feature alerts users to high-risk and suspicious calls, aiming to enhance security in digital communications. Additionally, Microsoft has postponed the rollout of its Wi-Fi location tracking feature to mid-March, which monitors users' live locations when connected to office Wi-Fi, raising concerns about corporate surveillance.

Winsage

January 7, 2026

Hackers Use Fake Windows BSOD To Spread Malware

Security researchers have identified a social engineering campaign that mimics the Windows Blue Screen of Death (BSOD) to deceive users into installing a remote access Trojan (RAT). The campaign, named PHALT#BLYX, begins with phishing emails that appear to be legitimate cancellation notices from travel websites, leading victims to a fake login page and an interactive CAPTCHA. This culminates in a full-screen imitation of the BSOD, prompting users to follow instructions that ultimately allow attackers to gain control of their computers. The attackers use a “ClickFix” process that involves executing commands through native Windows tools like PowerShell and MSBuild, making detection more challenging. The malware delivered is an obfuscated version of DCRat, which provides attackers with remote control capabilities, keylogging, and the ability to download additional malware. The campaign primarily targets hotels and hospitality businesses in Europe, exploiting the urgency of front-desk staff to respond to apparent technical issues. Indicators of a fake BSOD include the ability to interact with the screen, requests to execute commands via Windows tools, and the presence of CAPTCHA prompts. Organizations are advised to train employees, implement application control, enhance email and web defenses, and prepare for incident response to mitigate risks associated with such attacks.

Winsage

January 1, 2026

These 8 targeted Microsoft Teams updates close out the year — but some features feel like overdue fixes

The Microsoft Teams platform has received several updates during December, including the ability to pop out core functions into separate windows, and the integration of third-party ISV compliance recording at the call queue level. Microsoft 365 Copilot Chat now generates meeting summaries, highlights key discussion points, and suggests actionable tasks. A new security feature protects Teams messaging by identifying external users attempting to impersonate a tenant's domain. A Frontline Hub has been established for IT administrators to manage frontline Teams experiences more efficiently. Additionally, several new devices have been certified for Teams, including various EPOS headsets, Lenovo webcams, and Yealink devices, ensuring quality and compatibility.