NewApp Digest
search bot

Mail

CISA, Microsoft warn of active exploitation of Windows Shell vulnerability (CVE-2026-32202)
Winsage
April 30, 2026

CISA, Microsoft warn of active exploitation of Windows Shell vulnerability (CVE-2026-32202)

Attackers are exploiting CVE-2026-32202, a zero-click vulnerability in Windows Shell, allowing authentication of victims' systems without user interaction. This vulnerability stems from an incomplete patch for CVE-2026-21510 and has been used by the APT28 group with weaponized LNK files to bypass Windows security. Although Microsoft addressed these vulnerabilities in February 2026, the risk remains as opening a folder with a malicious LNK file can still connect victims' machines to the attacker's server, initiating an NTLM authentication handshake that exposes the victim’s Net-NTLMv2 hash. This affects various versions of Windows 10, 11, and Windows Server. Microsoft released a patch for CVE-2026-32202 on April 14, 2026, but did not label it as actively exploited until more than two weeks later, leaving security teams unaware of its urgency. Organizations are advised to apply the patch and consider blocking outbound SMB traffic to mitigate risks.
Don't fall for the Verizon 'loyalty' scam that's putting $1,500 iPads in the mail
AppWizard
April 28, 2026

Don’t fall for the Verizon ‘loyalty’ scam that’s putting $1,500 iPads in the mail

A sophisticated scam targeting Verizon customers has emerged, exploiting the My Verizon app to send fraudulent push notifications. A Reddit user, ApprehensivePace2969, experienced this scam when they received a call from someone impersonating a Verizon representative, claiming they qualified for a 65% discount and a free iPad. The legitimacy of the offer was reinforced by a push notification from the app. The victim received a 256GB iPad Pro, valued at ,500, and was charged a shipping fee, which was promised to be refunded upon activation. However, they later received calls from another supposed Verizon representative, instructing them to return the iPad or face a full charge. Red flags included a return shipping label not from Verizon's official center and an unrelated New York address. The victim took the iPad to a real Verizon store, contacted the fraud department, and successfully returned the device, avoiding financial loss.
The Best Internet Security Solutions Out There Right Now
Tech Optimizer
April 27, 2026

The Best Internet Security Solutions Out There Right Now

Mysterium VPN offers a decentralized infrastructure with over 7,500 residential IPs across 100 countries, ensuring user privacy without requiring contributions of personal IPs. It features DNS and IP leak protection, a kill switch, ChaCha20 encryption, and a no-logs policy, complying with GDPR. Mysterium supports up to 15 devices simultaneously and is priced at .59 per month with a 7-day money-back guarantee. Bitdefender Total Security provides comprehensive antivirus protection, including malware detection, ransomware protection, firewall management, and device optimization tools, along with webcam protection and anti-phishing features. Kaspersky Premium delivers real-time antivirus protection, identity theft monitoring, secure payment tools, and parental controls, maintaining high threat detection capabilities. Proton VPN, based in Switzerland, emphasizes privacy and transparency, offering a solid free tier and premium features like Secure Core routing, although its speeds may vary. Malwarebytes Premium focuses on detecting newer or less common threats, evolving from a malware removal tool to a comprehensive security platform. Avast One integrates antivirus protection, VPN services, and performance optimization tools, providing identity monitoring and breach alerts, while working to enhance transparency after past scrutiny. 1Password specializes in secure password storage, generation, and autofill capabilities, along with features to alert users to compromised credentials and secure document storage.
Суд взыскал 600 тыс руб за размещение пиратских копий "Универа" и "Физрука"
TrendTechie
April 27, 2026

Суд взыскал 600 тыс руб за размещение пиратских копий “Универа” и “Физрука”

The Moscow City Court has ordered a website administrator to pay a penalty of 600,000 rubles for hosting pirated copies of television series such as "Univer," "Fizruk," and "Devushki s Makarovym." The court found that the website generated revenue through advertisements and engaged in "intentional piratical activity" by offering downloads via torrent. The administrator was also required to pay an additional 11,000 rubles in court fees. Although he attempted to appeal the ruling, he missed the deadline and the court allowed him to restore it, but the original ruling remained in effect.
Fileless Malware and Email Authentication Gaps
Tech Optimizer
April 24, 2026

Fileless Malware and Email Authentication Gaps

Fileless malware operates stealthily within networks, utilizing legitimate system tools like PowerShell and Windows Management Instrumentation (WMI) to execute malicious code in memory without leaving traces on disk. Traditional antivirus solutions struggle to detect these threats due to their reliance on file signatures. The primary vector for fileless malware is email, where attackers use spoofed messages to trick users into activating malicious scripts. Misconfigurations in Sender Policy Framework (SPF) and DomainKeys Identified Mail (DKIM) records create vulnerabilities that attackers exploit to deliver spoofed emails. Traditional endpoint protection mechanisms are inadequate against fileless attacks, necessitating a shift towards behavioral analysis for detection. Organizations must assess their preparedness by ensuring proper email authentication configurations and enhancing endpoint security capabilities. Integration among security teams and updated employee security awareness programs are also essential. Sendmarc helps organizations mitigate vulnerabilities by providing visibility into SPF, DKIM, and DMARC configurations and enforcing DMARC to block unauthenticated messages.
silver Android smartphone
Winsage
April 19, 2026

Zorin OS 18.1 adds guided migrations, stronger app compatibility and wider hardware support, making switching from Windows far more practical for millions [clone]

Zorin OS has released version 18.1, enhancing hardware compatibility and introducing fingerprint reader support for older devices. The update recommends native Linux alternatives when detecting Windows applications, making it easier for users transitioning from Windows. Since the end of support for Windows 10, Zorin OS has gained popularity, reaching 3.3 million downloads. The update supports over 240 Windows applications, suggesting compatible Linux versions, and includes improvements to desktop features and pre-installed applications. Zorin Lite has also been updated to version 17.3 with fingerprint reader support and a redesigned File Manager. Meanwhile, Windows 11 is facing challenges in adoption due to hardware requirements and design issues, prompting discussions about the potential need for Windows 12. Alternative operating systems like Zorin OS are becoming more appealing to users dissatisfied with Windows.
Microsoft will shut down its Outlook Lite Android app on May 25
AppWizard
April 13, 2026

Microsoft will shut down its Outlook Lite Android app on May 25

Outlook Lite will cease operations on May 25, following its phased retirement that began last October when it was removed from the Google Play Store. Launched in 2022, Outlook Lite was aimed at users in emerging markets with entry-level smartphones and limited network connectivity, achieving over 10 million downloads by 2024. After May 25, the app may still launch but will not display emails or calendar items. Users are encouraged to transition to alternative email clients, with Microsoft recommending the Outlook Mobile app as the primary replacement, which syncs existing emails and calendar entries. Organizations using Outlook Lite should update their internal documentation and guide employees toward alternative applications before the deadline. Other Android alternatives include Proton Mail, Spark Mail, and Gmail, although none match Outlook Lite's compact 5MB size.
Fake Claude site installs malware that gives attackers access to your computer
Tech Optimizer
April 13, 2026

Fake Claude site installs malware that gives attackers access to your computer

Claude, an AI tool developed by Anthropic, receives nearly 290 million web visits monthly and has become a target for cybercriminals. A fake website has been found that impersonates Claude, distributing a trojanized installer named Claude-Pro-windows-x64.zip. This installer, while appearing legitimate, deploys PlugX malware, granting attackers remote access to users' systems. The fraudulent site mimics the official download page and uses passive DNS records linked to commercial bulk-email platforms, indicating active maintenance by the operators. The ZIP file contains an MSI installer that incorrectly spells "Claude" as "Cluade" and creates a desktop shortcut that launches a VBScript dropper. This script runs the legitimate claude.exe while executing malicious activities in the background, including copying files to the Windows Startup folder to ensure persistence after reboot. The attack utilizes a DLL sideloading technique recognized by MITRE as T1574.002, where a legitimate G DATA antivirus updater is exploited with a malicious DLL. Within 22 seconds of execution, the malware establishes a connection to an IP address associated with Alibaba Cloud, indicating control over the compromised system. The dropper script also employs anti-forensic measures to delete itself and the VBScript after deployment. Indicators of compromise include the filenames Claude-Pro-windows-x64.zip, NOVUpdate.exe, avk.dll, and NOVUpdate.exe.dat, along with the network indicator 8.217.190.58:443 (TCP) as the command and control destination. Users are advised to download Claude only from the official site and to remain vigilant against potential compromises.
Search