KYC Archives

AppWizard

February 19, 2026

New ‘Massiv’ Android banking malware poses as an IPTV app

A new strain of Android banking malware called Massiv is disguised as an IPTV application to steal digital identities and access online banking accounts. It uses screen overlays and keylogging techniques to capture sensitive information and can take remote control of compromised devices. Massiv has been observed targeting a Portuguese government application related to Chave Móvel Digital, which contains user data that could bypass know-your-customer (KYC) verifications. The malware allows fraudsters to open accounts in the victim's name at new banks and services, enabling money laundering and loan acquisition. Massiv features two remote control modes: a screen live-streaming mode and a UI-tree mode that extracts structured data from the Accessibility Service. There has been an increase in the use of IPTV applications as bait for Android malware infections, with many of these apps serving as droppers for the malware. The fake IPTV apps primarily target users in Spain, Portugal, France, and Turkey. Users are advised to download applications only from reputable sources and keep security measures active.

AppWizard

February 19, 2026

Fake IPTV Apps Spread Massiv Android Malware Targeting Mobile Banking Users

Cybersecurity researchers have identified a new Android trojan named Massiv, designed for device takeover attacks targeting financial theft. It disguises itself as IPTV applications and poses risks to mobile banking users by allowing operators to remotely control infected devices for fraudulent transactions. The malware was first detected in campaigns targeting users in Portugal and Greece, with features including screen streaming, keylogging, SMS interception, and fake overlays for credential theft. One campaign specifically targeted the gov.pt application to deceive users into providing sensitive information. Massiv can execute various malicious actions, such as altering device settings, sending device information, and downloading malicious files. It is distributed through dropper applications that mimic IPTV services, often via SMS phishing. The malware operates in the background while the dropper appears as a legitimate app. Recent campaigns have focused on regions like Spain, Portugal, France, and Turkey, indicating a growing threat landscape. The operators of Massiv are developing it further, suggesting intentions to offer it as a Malware-as-a-Service.

AppWizard

February 19, 2026

Massiv: When your IPTV app terminates your savings

Massiv is an Android banking Trojan that disguises itself as legitimate applications, primarily targeting users in southern Europe. It is distributed through side-loading and is capable of remote control over infected devices, enabling Device Takeover attacks that can lead to unauthorized banking transactions. Massiv often masquerades as IPTV applications to attract users seeking online television services. The malware employs overlay functionality to create deceptive screens, keylogging to capture sensitive information, and SMS/Push message interception. It can monitor applications on infected devices and present fake overlays to prompt users for sensitive data. Notably, it has targeted the Portuguese government application gov.pt and connects with Chave Móvel Digital, a digital authentication system, to access victims' banking accounts. Once it captures sensitive data, Massiv allows operators remote access to the device using Android’s AccessibilityService, facilitating real-time observation and manipulation of the user interface. It communicates over a WebSocket channel and supports screen streaming and UI-tree modes for enhanced control. Massiv's distribution includes malware droppers that initially do not contain malicious code but open a WebView to an IPTV website while the actual malware operates in the background. This tactic has increased in recent months, particularly in Spain, Portugal, France, and Turkey. Indicators of compromise include specific SHA-256 hashes and package names associated with the malware. The bot commands allow operators to perform various actions on the infected device, such as clicking coordinates, installing APKs, and showing overlays.

BetaBeacon

January 9, 2026

Better 20 Totally free Online casino games to have Android os

Accessing Hurry Game harbors is easy with just a few taps, allowing players to spin the reels and search for free slot app jackpots. Thousands of slots are available to suit all preferences.

BetaBeacon

January 3, 2026

What’s Next for Augmented Reality and Casino Games on Android?

- AR in casino gaming refers to digital elements appearing in a real environment, not replacing it - AR casino games on Android rely on ARCore and engines like Unity or Unreal for stability - Early AR casino experiences on Android are about curiosity and low commitment - Most AR casino projects on Android focus on adjusting existing games rather than introducing new concepts - Benefits for players include familiar games feeling different and enhanced social features - Challenges for AR casino gaming on Android include device performance variations and legal considerations - Tips for developers include prioritizing reliability over visual ambition and testing across a broad range of hardware - Tips for players include preparing their environment with good lighting and keeping ARCore and system software up to date - Progress in Android-based AR casino games is expected to come from slow improvements rather than sudden leaps - Wearable AR devices and hands-free interaction through movement and voice capabilities are expected to be the future of AR casino gaming on Android

AppWizard

December 3, 2025

India mandates SIM-linked messaging apps to fight rising fraud

India's Department of Telecommunications (DoT) has mandated that messaging services must operate with active SIM cards linked to users' phone numbers to combat cyber fraud. Popular apps like WhatsApp, Telegram, Signal, and Snapchat must comply with these SIM-binding rules within 90 days. The new regulations also require web sessions to automatically log out after six hours to enhance security and address issues related to long-lived web sessions, which have been exploited by fraudsters. This initiative aims to improve the traceability of accounts and reduce fraudulent activities, particularly phishing schemes and scams. Cyber-fraud losses in India reached ₹22,800 crore in 2024, prompting these Telecom Cyber Security measures. Users roaming with their SIMs will not be affected by the new regulations.

AppWizard

December 2, 2025

India Orders Messaging Apps to Work Only With Active SIM Cards to Prevent Fraud and Misuse

India's Department of Telecommunications (DoT) has mandated that app-based communication service providers implement measures requiring an active SIM card linked to the user's mobile number. This applies to messaging applications such as WhatsApp, Telegram, and Signal, which must comply within 90 days. The amendment to the Telecommunications (Telecom Cyber Security) Rules, 2024, aims to mitigate the misuse of telecommunication identifiers exploited for phishing and scams. The directive requires continuous linkage to the SIM card, and web service instances will log out every six hours, necessitating re-linking via QR code. This is intended to reduce account takeover risks and ensure that accounts are linked to KYC-verified SIMs. The DoT also announced a Mobile Number Validation (MNV) platform to combat identity fraud related to unverified mobile number associations.

AppWizard

November 21, 2025

HOME (HOME) – Android App

The Defi App has launched on Android, allowing users to trade over 40 million tokens directly from their smartphones. It integrates with @HyperliquidX for trading perpetual contracts and features a streamlined user experience without gas fees, signatures, bridges, or KYC requirements. Users can participate in trading for a chance to win from a ,000,000 prize pool.

AppWizard

November 3, 2025

The Best Crypto Apps for Android: A 2025 Guide to Trading and Managing Your Portfolio

There are over 3 billion Android devices in use, making it a significant platform for cryptocurrency applications. The Google Play Store features numerous trading, wallet, and portfolio apps due to evolving regulations and a focus on user experience. Key elements for navigating crypto apps include usability, security, compliance, and responsibility. Popular trading apps include Binance, Coinbase, and Bybit, which offer features like biometric login and real-time notifications. Security measures such as two-factor authentication and Know Your Customer verification are essential for safe trading. Users can choose between hot wallets and cold wallets, with options like Trust Wallet, MetaMask, and SafePal available. Staking apps like Binance Earn and Crypto.com encourage user engagement by offering rewards for locking tokens. Ethereum underpins many Android crypto apps, facilitating interactions with ERC-20 tokens and enhancing transaction efficiency. A checklist for safe app downloads includes security checks, reputation checks, functionality checks, and transfer checks. As the crypto landscape evolves, apps are expected to integrate more with fiat finance and Web3 technologies, emphasizing the importance of verification and security for users.

TrendTechie

August 16, 2025

Labubu-охота на криптопользователей, опасные торренты с фильмами и другие события кибербезопасности

- A user lost 140 ETH (approximately ,500) on August 15 due to crypto address "poisoning," resulting in a total loss of over .6 million from similar incidents within a week. - Labubu fans in Russia fell victim to a cryptocurrency theft scheme involving a counterfeit marketplace that prompted users to connect their crypto wallets. - The Efimer Trojan malware, distributed through compromised WordPress sites and torrents, has been identified as a method for stealing cryptocurrency by replacing wallet addresses in the clipboard. - Pro-Russian hackers gained control of a dam in Norway, opening discharge valves and allowing over 7.2 million liters of water to pass through before being stopped. - A cybersecurity researcher discovered a vulnerability in a car dealer's online portal that allowed remote access to customer data and vehicle control. - Tajikistan reportedly lost over million due to illegal mining activities. - BtcTurk suspended withdrawals amid suspicious transactions totaling million. - Hackers extracted million in Bitcoin from the Odin.fun platform, and KYC data leaks have led to increased attacks on crypto investors.