media files Archives

BetaBeacon

May 6, 2026

A rigged game: ScarCruft compromises gaming platform in a supply-chain attack

- ScarCruft, also known as APT37 or Reaper, is a North Korean espionage group targeting government, military organizations, and companies in Asia. - BirdCall is a Windows backdoor attributed to ScarCruft, with spying capabilities such as taking screenshots and logging keystrokes. - The Android version of BirdCall collects contacts, SMS messages, call logs, and media files, and was actively developed over several months. - The BirdCall backdoor was discovered in a trojanized card game on a gaming platform tailored for ethnic Koreans living in Yanbian, China. - The attack was likely aimed at collecting information on individuals from the Yanbian region deemed of interest to the North Korean regime, such as refugees or defectors.

BetaBeacon

May 6, 2026

North Korean hackers targeted ethnic Koreans in China with Android ‘BirdCall’ malware

North Korean hackers targeted ethnic Koreans in China with a malware disguised as a popular Android mobile game called BirdCall, allowing them to steal personal data from victims.

BetaBeacon

May 5, 2026

ScarCruft Hacks Gaming Platform to Deploy BirdCall Malware on Android and Windows

ScarCruft compromised a video game platform in a supply chain attack, trojanizing its components with a backdoor called BirdCall to target ethnic Koreans residing in China. The attack enabled the threat actors to target both Windows and Android devices, turning it into a multi-platform threat. The campaign targeted sqgame[.]net, a gaming platform used by ethnic Koreans in China, known as a transit point for North Korean defectors. BirdCall has features like screenshot capture, keystroke logging, and data gathering, and relies on legitimate cloud services for command-and-control. The Android variant collects various data and has seen active development.

AppWizard

May 5, 2026

North Koreans Spy on Defectors Via Android Game Apps

A North Korean hacking group has targeted a digital gaming platform popular among the Korean ethnic enclave in China, using a sophisticated strategy to infiltrate Android applications. Researchers from Eset discovered that an app on the platform contained a backdoor known as BirdCall, linked to North Korea. The official website for the gaming platform hosted the same suspicious APK file. A second Android file associated with another game on the same site was also found to contain the BirdCall backdoor. This supply-chain attack was attributed to the threat actor ScarCruft (APT37), active in Asia and extending into Europe and the Middle East since late 2024. The hackers likely compromised the web server to recompile original APKs with the backdoor, which can collect sensitive information such as contacts, SMS messages, call logs, documents, media files, and private keys, and can take screenshots and record audio. The malware disguises its command and control traffic among regular internet traffic, primarily using Zoho WorkDrive for operations.

AppWizard

April 27, 2026

LivU Chat App Download Guide: How To Install The APK On Android

Android users often seek APK files for app installations to ensure compatibility and a reliable download path. For the LivU chat app, it is recommended to start from the official website to avoid outdated versions. Users should check their device for sufficient storage, an up-to-date operating system, and a stable internet connection before installation. The installation process involves downloading the app, reviewing permissions, and completing the setup by creating or signing into an account. Common installation issues include low storage, interrupted connections, and unsupported Android versions, which can often be resolved by restarting the device or ensuring a stable network.

AppWizard

April 9, 2026

These 4 apps could seriously be slowing your Android phone down in plain sight

Many users attribute sluggish smartphone performance and rapid battery depletion to the need for an upgrade, but four popular applications may be the real culprits affecting Android phone performance. 1. TikTok: This app drains battery by preloading videos, syncing notifications, and tracking engagement metrics in the background, preventing the phone from entering sleep mode. It can also cause UI overdraw, straining the GPU. Switching to TikTok Lite may improve efficiency. 2. Google Maps: This navigation app uses continuous GPS tracking and real-time data updates, leading to high battery and processor usage. If set to 'Allow every time,' it retains GPS access even when not in use, causing lingering background processes that tax the CPU. Users can enable power-saving mode on Google Pixel 10 to extend battery life. 3. Spotify: Although it seems lightweight, Spotify consumes battery in the background through various services for playback, playlist syncing, and content caching. A growing cache can lead to system lag, especially with limited storage. 4. Google Photos: This app indexes images, generates thumbnails, and uploads photos to the cloud, consuming CPU and network resources. Frequent transfers of large media files or a large photo library can cause slowdowns. Limiting automatic backups can reduce network usage, conserve battery life, and free up storage space.

AppWizard

April 3, 2026

Android Spy Apps: 7 Best Tools for Real-Time Monitoring (2026)

Concerns about online safety have led to increased use of Android spy apps, which provide access to messages, calls, and real-time locations. Testing shows that top apps can sync data in under 5 seconds and track over 15 social platforms. Users can monitor behaviors and interactions through a single dashboard, with effective tools operating in stealth mode. uMobix is highlighted as the best Android spy app, scoring 9.8/10, with real-time updates every 3–5 seconds, access to calls, SMS, deleted messages, and GPS locations. It supports tracking for over 30 data types and has a starting price of .99/month. XNSPY, scoring 9.5/10, offers detailed monitoring with call and SMS updates every 10–15 seconds and remote control features, starting at .99/month. xMobi, rated 9.2/10, provides essential features with quick setup and a responsive dashboard, starting at .99/month. SpyBubble Pro, scoring 9.0/10, specializes in stealth monitoring with data syncing every 15 seconds, starting at .49/month. AccountViewer, rated 8.9/10, focuses on social media insights, starting at .99/month. PeekViewer, scoring 9.1/10, allows anonymous profile viewing, starting at .99/month. mSpy, rated 9.4/10, is designed for parental control, starting at .99/month. Effective Android spy apps should provide real-time tracking under 10 seconds, support multiple social platforms, and operate in stealth mode. Installation typically requires physical access to the device, and monitoring begins immediately after setup. The legality of using these apps depends on consent and local laws.

Winsage

March 25, 2026

Your Windows 11 File Explorer stutters because of an XP-era feature you can turn off in seconds

Windows 11's File Explorer has received mixed reviews, particularly due to delays in opening folders caused by the Automatic Folder Type Discovery feature. This feature scans folder contents to determine the best view, which can lead to frustrating delays, especially in folders with many files. Users can disable this feature through a registry edit, specifically by creating a new string value named FolderType and setting it to NotSpecified in the Registry Editor. After making this change and restarting the PC or File Explorer, the delays associated with Automatic Folder Type Discovery will be eliminated.

Winsage

March 24, 2026

Microsoft Now Requires OneDrive For Editing Projects In Clipchamp On Windows 11

Microsoft has updated Clipchamp on Windows 11, requiring users to sign in with a Microsoft account and save all projects to OneDrive for video creation and editing. All projects must be stored in OneDrive to remain editable; locally stored projects cannot be opened in Clipchamp. This requirement applies to both new and existing projects, necessitating the transfer of existing projects to OneDrive. Users can still keep media files locally, but project files must be in the cloud. The update eliminates the option for local-only editing, making cloud storage essential for all users. To use Clipchamp, users must log in with a Microsoft account and set up OneDrive. This change is currently being rolled out to Windows 11 devices, with no option to disable the requirement or a timeline for future adjustments provided by Microsoft.

TrendTechie

March 24, 2026

Торренты не пройдут. Как следят за интернетом в КНДР

North Korea allows limited access to the internet, smartphones, and laptops, but this access is heavily monitored by the government. Citizens use rebranded Chinese smartphones equipped with surveillance software called Red Flag, which captures screenshots of user activities. The country has developed a Linux-based operating system, Red Star, that alerts authorities if a file from outside the country is opened. Software designed by North Korean engineers tags media files accessed on devices, enabling tracking of foreign content consumption. The telecommunications system, developed with Egypt's Orascom, operates a dual network for locals and tourists, preventing direct communication between the two. Foreign SIM cards are tracked and destroyed to limit global internet access. Viewing certain foreign content can lead to severe penalties, including the death penalty for materials that criticize the regime or involve pornography. There is a black market for USB drives containing contraband content, reflecting demand despite the risks. To combat the appeal of foreign entertainment, the government has created approximately 125 mobile games, including one featuring Cristiano Ronaldo, to keep citizens engaged with local content.