indicator Archives

Tech Optimizer

March 27, 2026

Bogus Avast website fakes virus scan, installs Venom Stealer instead

A deceptive website impersonating Avast antivirus tricks users into downloading Venom Stealer malware, which steals passwords, session cookies, and cryptocurrency wallet information. The site conducts a fake virus scan, falsely reporting threats to encourage users to download a malicious file named Avastsystemcleaner.exe. This file mimics legitimate software and operates stealthily, targeting web browsers to harvest credentials and session cookies. It also captures screenshots and sends stolen data to the command-and-control domain app-metrics-cdn[.]com via unencrypted HTTP. The malware employs evasion techniques to avoid detection and is part of a long-standing cybercrime tactic that exploits user trust in security software. Indicators of compromise include the file hash SHA-256: ecbeaa13921dbad8028d29534c3878503f45a82a09cf27857fa4335bd1c9286d, the domain app-metrics-cdn[.]com, and the network indicator 104.21.14.89.

AppWizard

March 27, 2026

Android 17 adds ‘location button’ for apps and more private ‘Approximate’ algorithm

Android 17 has introduced updates to enhance location privacy, including a new "location button" in Beta 3 that allows users to access location services for one-time use without granting permanent or background access. This feature provides a streamlined user experience, enabling users to share their location only when necessary and eliminating repeated prompts for location-dependent features. Developers can customize the button's appearance while the location icon remains mandatory and non-customizable. Additionally, Android 17 Beta 3 includes an improved runtime permission dialog with distinct options for "Precise" and "Approximate" location access. A persistent blue dot in the status bar indicates when a non-system app accesses a user's location, and users can view notifications about which apps have recently accessed their location. The algorithm for approximate locations has also been improved to consider local population density, enhancing privacy in low-population areas.

Winsage

March 20, 2026

Announcing Windows 11 Insider Preview Build 28020.1743 (Canary Channel)

Windows 11 Insider Preview Build 28020.1743 has been released to the Canary Channel. New features include: - A shared audio feature that allows two users to share audio with individual volume sliders for each listener and a taskbar indicator for audio sharing. - The context menu now displays the “Open” verb that matches the icon of the file's default application when right-clicking on .exe, .bat, or .cmd files. - An updated Feedback Hub app with a simpler feedback submission flow, improved navigation, a new compliment feedback type, options for private or public feedback, and enhanced screenshot capture tools. Additional notes for Windows Insiders in the Canary Channel include that features are rolled out gradually, a desktop watermark is present in pre-release builds, some features may appear in other channels first, localization may be incomplete, and exiting the Canary Channel requires a clean installation of Windows 11.

AppWizard

March 19, 2026

Here’s everything new in Android Canary 2603: App lock, Bubbles, Wi-Fi & Mobile data toggles

Google has released Android Canary channel version 2603, which includes the March 2026 security patch for various Pixel devices. Key features of this update include a redesigned screen recording interface, enhanced system UI with increased blur effects, separate Quick Settings toggles for Wi-Fi and mobile data, and new options for App lock and Bubbles accessible through a long-press on apps. The screen recording feature allows users to record the entire screen or a single app, with options to manage audio and touch visibility. The update aims to improve usability and functionality for developers and users.

BetaBeacon

March 15, 2026

Verified Steam Machine games will need to hit 1080p at 30fps

Steam Machine Verified badge requirements include a 1080p resolution target at 30fps.

AppWizard

March 14, 2026

Crimson Desert dev says not to worry about Denuvo, because the impressive PC preview builds they’ve shown already had the DRM and are “representative of the final consumer’s experience”

Crimson Desert will incorporate Denuvo anti-piracy technology, which has raised concerns about its impact on game performance among the PC gaming community. Pearl Abyss assured players that benchmark videos and performance specifications released before launch were generated using the same Denuvo implementation that will be in the final build. A benchmark video showed Crimson Desert running at ultra settings in native 4K resolution with a frame rate of "mainly" 60fps on a Radeon RX 7900 XTX graphics card. Some players are wary of Denuvo due to past performance issues, and the presence of the "Denuvo anti-tamper" label on Steam may affect purchasing decisions. Additionally, measures have been taken to secure early-shipped physical copies to prevent spoilers, raising concerns about game preservation.

AppWizard

March 12, 2026

This small change makes transferring data to your new Android phone a lot easier

The Android data transfer feature allows users to migrate data from an old device to a new one, taking under an hour for setup. Google introduced enhancements, including a QR code for sharing network details and a percentage indicator for data transfer progress. Recently, a user experienced a 20-minute estimated transfer time, with the transfer showing 54% completion after some time. A USB-C to USB-C cable is recommended for reliable connections, though wireless data migration is also effective. Android's data transfer may not be as fast as some Chinese manufacturers' tools, but it provides consistency across global smartphones.

AppWizard

March 7, 2026

I got stuck in a 13-day stalemate with an eldritch god in Bloodletter, and now it’s my new favourite deckbuilder

Bloodletter is a game where players assume the role of a medieval doctor, healing villagers while combating an eldritch god's influence in a town plagued by supernatural forces. Players manage metrics such as purity, health, sickness, and trust using a deck of cards to cure ailments and build trust with townsfolk. Successful interactions yield special cards that provide bonuses, while nightfall introduces a malevolent entity that increases the game's difficulty. Players must strategically prioritize which villagers to save, adapting their tactics to overcome challenges. Each day brings new obstacles, and players can enhance their decks through bonuses from trusted villagers. The game's striking visuals contribute to its immersive experience, making it a notable title in the deckbuilding genre.

Winsage

March 4, 2026

PoC Exploit Released for Microsoft Windows Error Reporting ALPC Privilege Escalation

A proof-of-concept exploit for CVE-2026-20817, a local privilege escalation vulnerability in the Windows Error Reporting (WER) service, has been released by security researcher oxfemale on GitHub. This vulnerability allows low-privileged users to gain SYSTEM-level access through crafted Advanced Local Procedure Call (ALPC) messages. The flaw is located in the WER service's SvcElevatedLaunch method, which fails to validate caller privileges before executing WerFault.exe with user-supplied command line parameters. The CVSS v3.1 base score for this vulnerability is 7.8, indicating a high severity level. It affects unpatched versions of Windows 10, Windows 11, Windows Server 2019, and Windows Server 2022 prior to the January 2026 update. Demonstrations have shown successful exploitation on Windows 11 23H2. Security teams are advised to monitor for unusual processes related to WerFault.exe, investigate missing SeTcbPrivilege in SYSTEM tokens, and review WER-related activities from low-privilege users. Immediate application of the January 2026 security patches is recommended, and a temporary workaround involves disabling the WER service.

Winsage

February 28, 2026

Microsoft testing Windows 11 batch file security improvements

Microsoft has released new Windows 11 Insider Preview builds that enhance security and performance for batch files and CMD scripts. IT administrators can now activate a secure processing mode by adding the LockBatchFilesInUse registry value, which prevents modifications to batch files while they are running. This update also requires signature validation only once per batch file, improving performance. Additionally, the Shared Audio feature has been refined, allowing users to share audio across multiple devices with individual volume sliders and a new taskbar indicator. The feature now supports more Bluetooth LE Audio accessories, including Samsung Galaxy Buds 4, Sony WF-1000XM6, and Xbox Wireless Headset. These updates are available for Windows Insiders in the Beta and Dev channels with specific preview builds installed.