malware Archives

Tech Optimizer

March 26, 2026

Protect your devices from AI scams, malware, and identity theft for under $30 — Norton 360 Premium is ‘the antivirus deal to go for’ in Amazon’s Big Spring Sale

The Norton 360 Premium 2026 one-year pre-paid subscription is available for a reduced price of .99 on Amazon, down from .99. It provides security for up to 10 devices and includes features such as AI-powered scam protection, a VPN for secure internet connections, Dark Web Monitoring for personal information, real-time threat detection, and cloud backup support for up to 75GB. The subscription offers automatic renewal with the option to cancel anytime before renewal.

Winsage

March 26, 2026

This is probably the first mainstream mini PC that can dual-boot Ubuntu and Windows out of the box — and it even comes with the hottest AI application of 2026

GMKtec has launched the NucBox K13 mini PC, which supports dual-booting of Windows 11 Pro and Ubuntu. It features an Intel Core Ultra 7 256V processor with eight cores up to 4.8GHz and an Intel Arc 140V GPU. The device offers 16GB of LPDDR5X RAM, dual M.2 SSD slots for up to 16TB of storage, Wi-Fi 6E, and five-gigabit LAN. It supports triple 4K display outputs and includes various ports such as USB 3.2 Gen2, USB4, HDMI 2.1, and a 5Gbps RJ45 LAN port. Concerns have been raised about the AI tool OpenClaw, which has known vulnerabilities and has been linked to malware, leading Microsoft to advise against its use on personal or enterprise systems.

AppWizard

March 26, 2026

Phishing Campaign Targeting Messaging Apps’ Users

A phishing campaign targeting users of messaging applications has been reported by the Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI). This campaign exploits human behavior rather than software vulnerabilities, leading to the compromise of thousands of accounts worldwide, despite encryption. Attackers impersonate official support accounts and use social engineering tactics to prompt users to click on malicious links, request verification codes, or suggest account recovery actions. If users comply, attackers can take control of their accounts and may deploy malware. Platforms like Signal have been specifically targeted, but the tactics can apply to various messaging applications. Recommendations for users include being cautious with suspicious messages, avoiding unknown requests, carefully checking links, monitoring group chats for fake accounts, using built-in security features, and reporting incidents promptly.

AppWizard

March 25, 2026

Alert warns of cyber actors using Telegram messaging app to push malware

The FBI issued an alert on March 20 about a sophisticated cyber technique linked to the Iranian government, using the Telegram app to distribute malware globally. This has led to data breaches and reputational damage for many victims. The FBI provided recommendations for organizations and individuals to enhance cybersecurity, including staying informed about cyber threats, implementing security protocols, and educating employees on suspicious communications. Contacts for further insights at the AHA include John Riggi and Scott Gee, with resources available at aha.org/cybersecurity.

Tech Optimizer

March 25, 2026

This Norton Deal Makes Premium Cybersecurity Worth It

Norton’s premium suites, traditionally seen as luxury cybersecurity options, are now more accessible due to a recent promotional offer. This package includes antivirus protection, a VPN, a password manager, and dark web monitoring, all in one subscription. It offers real-time protection and simplifies cybersecurity management through a single interface. The VPN protects data on public Wi-Fi, while the password manager enhances security by securely autofilling credentials. The deal allows protection for multiple devices under one subscription. However, it is a paid plan with renewal pricing returning to the original rate, and some features may not be included in every package. The software may consume more system resources than free alternatives, and users seeking basic malware scanning might find the additional tools excessive. The promotion encourages consumers to invest in cohesive cybersecurity solutions rather than relying on free tools.

AppWizard

March 25, 2026

FBI warns of Russian, Iranian cyber activity involving messaging platforms

The FBI issued alerts regarding cyber campaigns by Russian and Iranian actors targeting messaging platforms. Russian intelligence services are reportedly infiltrating applications like Signal, leading to unauthorized access of thousands of accounts of U.S. government officials, military personnel, political figures, and journalists. Russian operatives are using phishing messages disguised as support notifications to trick users into providing verification codes or account PINs, potentially allowing attackers to take over accounts. Once compromised, attackers can access messages, contact lists, and launch further phishing attempts. The advisory emphasizes that while Signal is targeted, similar tactics can affect any messaging app. In a separate alert, the FBI highlighted Iran’s Ministry of Intelligence and Security (MOIS) using Telegram to distribute malware aimed at Iranian dissidents and journalists, enabling them to steal sensitive information. This malware often disguises itself as legitimate software and connects to Telegram bots for remote access and data exfiltration. The FBI linked these activities to the Handala Hack group, which claimed responsibility for a recent attack on medical device manufacturer Stryker. The malware can be introduced through social media by hackers posing as technical support. Experts note that the use of Telegram for cyber compromises is increasing, as it helps malicious actors avoid detection by blending their traffic with trusted platforms.

Tech Optimizer

March 24, 2026

This tax-themed malvertising attack can blind security software before it arrives — and then unleashes ransomware

Cybercriminals are targeting taxpayers with phishing schemes and malware attacks as the April 15 tax deadline approaches. They create fake tax form websites that appear in Google Ads, leading users to download malicious software like ScreenConnect, which can disable device security. These tactics aim to steal sensitive information and potentially facilitate ransomware attacks. Counterfeit Chrome updates are also being used in similar schemes. Taxpayers are advised to verify the authenticity of websites and rely on trusted sources to protect their personal information.

AppWizard

March 23, 2026

FBI Warns of Russian Hackers Targeting Messaging Apps – The Advocate-Messenger

The FBI has issued a warning about phishing campaigns conducted by cyber actors linked to the Russian Intelligence Services (RIS), which target commercial messaging applications (CMAs). These actors have compromised numerous individual accounts, focusing on individuals with significant intelligence value, such as U.S. government officials and journalists, without breaching the encryption of the applications. The campaigns have allowed unauthorized access to private messages, contact lists, and the ability to send deceptive messages. Users of CMAs, especially Signal, are particularly targeted. The phishing tactics involve disguising messages as communications from automated CMA support, leading victims to click malicious links or provide sensitive information. To mitigate risks, users are advised to enhance their cybersecurity measures, remain vigilant, and follow best practices such as scrutinizing links, verifying group chats, and reporting suspicious activity to the Internet Crime Complaint Center or local authorities.

AppWizard

March 23, 2026

Russian hackers hijack thousands of ‘high intelligence’ messaging app accounts, FBI warns

Hackers linked to Russian intelligence are targeting high-profile users of popular messaging applications, according to a warning from the FBI and CISA. The primary targets include U.S. government officials, military personnel, political figures, and journalists. The attackers compromise accounts to access messages and contact lists, allowing for further phishing attempts. Signal users are particularly at risk, though techniques can extend to WhatsApp and Telegram. The hackers use social engineering tactics, impersonating official support accounts to trick users into revealing sensitive information. The FBI and CISA advise users to be cautious of unexpected messages and suspicious links. Victims are encouraged to report incidents to the Internet Crime Complaint Center (IC3).

AppWizard

March 23, 2026

Google adds ‘Advanced Flow’ for safe APK sideloading on Android

Google has introduced a new mechanism called Advanced Flow within Android to facilitate the sideloading of APKs from unverified developers for power users while enhancing security. This system will launch in August and aims to balance user flexibility with protection against malware and scams, which caused losses of approximately billion last year. To install APKs from unverified developers, users must complete a one-time process that includes activating Developer Mode, confirming they are not influenced by threat actors, restarting the device, and verifying the legitimacy of modifications after a day. Once completed, users can install applications from unverified developers and choose to enable them for a week or indefinitely, with Android providing a warning about the unverified source. The Advanced Flow process is designed to prevent users from being coerced into installing malicious software during scam attempts. Google emphasizes that this system is a compromise between Android's openness and necessary user protections, leading to upcoming developer verification requirements. All Android app publishers will need to undergo identity verification by Google, with non-compliance resulting in blocked software installations on certified Android devices. This verification initiative is now set for rollout in August 2026.