messages Archives

AppWizard

May 7, 2026

Messenger Statistics By Revenue, Usage And Behavior (2026)

Messenger has approximately 1.12 billion monthly active users as of the first quarter of 2026. In the first half of 2026, it generated USD 3.2 billion in non-ad revenue, reflecting a 63% year-over-year growth. In India, there are 424.3 million Messenger users, making up 28.7% of the country's population. South-Eastern Asia accounted for 212 million Messenger users in 2025, representing 22.4% of the global total. The user base shows a gender disparity with 55.5% male users and 44.5% female users, and is primarily favored by those aged 25–34, who comprise 32.4% of users. Messenger has surpassed 5 billion downloads on the Google Play Store, with users spending an average of 3 hours and 21 minutes per month on the app. It supports customer communication for over 40 million businesses, with approximately 80% of messages opened within the first hour. Messenger.com received 244.62 million visits in March 2026, a 30.67% increase from February. Chatbots on the platform handle up to 80% of routine inquiries, and the engagement rates for campaigns are high, with open rates ranging from 70% to 88%. Overall, Messenger is among the top three or four most-used platforms globally, trailing only behind Facebook and WhatsApp.

Winsage

May 6, 2026

New Trojan attacks Windows and steals data from smartphones via Phone Link

Cisco Talos experts have discovered a trojan that has been operational since at least January 2026, which installs the CloudZ RAT (Remote Access Tool) on Windows systems along with the Pheno plugin. The attack starts with an undisclosed initial access vector and involves executing a counterfeit SmartConnect update to deploy the CloudZ RAT. This RAT establishes an encrypted connection to its command and control (C2) server, allowing attackers to extract sensitive information. The CloudZ RAT assists in harvesting credentials from web browsers and downloads the Pheno plugin, which accesses Phone Link app data and transmits it to the C2 server. The Phone Link feature synchronizes critical data, including SMS messages with one-time passwords and account login details, which are the primary targets of the attackers.

AppWizard

May 6, 2026

Google just gave me the best reason ever to uninstall Chrome

Google has installed a 4GB AI model called Gemini Nano on users' computers without their explicit consent. This model enhances user experience with features like "Help me write," AI-assisted browsing, and scam detection, but was integrated without prior notification to users. The AI scam detection features have been available on Android and desktop platforms for some time. The deployment of the Nano model has raised concerns about user autonomy and trust, as it was done without user consultation or approval.

BetaBeacon

May 6, 2026

A rigged game: ScarCruft compromises gaming platform in a supply-chain attack

- ScarCruft, also known as APT37 or Reaper, is a North Korean espionage group targeting government, military organizations, and companies in Asia. - BirdCall is a Windows backdoor attributed to ScarCruft, with spying capabilities such as taking screenshots and logging keystrokes. - The Android version of BirdCall collects contacts, SMS messages, call logs, and media files, and was actively developed over several months. - The BirdCall backdoor was discovered in a trojanized card game on a gaming platform tailored for ethnic Koreans living in Yanbian, China. - The attack was likely aimed at collecting information on individuals from the Yanbian region deemed of interest to the North Korean regime, such as refugees or defectors.

AppWizard

May 6, 2026

Threads adds direct messaging access on desktop

Threads has rolled out its messaging feature on the desktop version of the app, allowing users to access DMs through the left sidebar. This feature aims to enhance communication on the platform and was the most requested upgrade since messaging was introduced in July. Threads Chief Connor Hayes emphasized the importance of facilitating private discussions. Initially, there were doubts about incorporating a DM feature due to Meta's strategy to unify its messaging platforms. After a legal victory, Meta shifted focus and introduced Threads DMs, allowing for new experimental features such as interactive elements and DM links.

Winsage

May 5, 2026

April 2026 Windows Update Breaks Third-Party Backup Software by Blocking Vulnerable Driver

Microsoft will include the psmounterex.sys driver in its Vulnerable Driver Blocklist in the April 2026 security update, affecting third-party backup applications that use this driver for image mounting and Volume Shadow Copy Service (VSS) snapshots. This decision addresses CVE-2023-43896, a critical buffer overflow vulnerability. Affected software includes Macrium Reflect, Acronis Cyber Protect Cloud, UrBackup Server, and NinjaOne Backup on Windows 11, Windows 10, and Windows Server platforms. Users may face issues during image-mount operations, receiving error messages related to VSS timeouts and Code Integrity errors in the Event Viewer. To check if a system is affected, users can look for Event ID 3077 in the Code Integrity Operational log. Microsoft recommends upgrading to newer versions of backup applications that do not use blocked drivers and advises against uninstalling or delaying the April update. Additionally, the update may cause certain Windows Server 2025 devices to boot into BitLocker recovery mode and has led to out-of-band updates for Windows Server update failures and restart loops on domain controllers.

AppWizard

May 5, 2026

Google Messages may soon solve your dark viewfinder struggles

Google is introducing a feature called Low Light Boost for its messaging platform's in-app camera preview, aimed at improving visibility in dim lighting. This feature brightens the viewfinder in real-time, allowing users to frame their shots better before taking a photo. Low Light Boost adjusts brightness based on surrounding light conditions and operates instantly, unlike traditional Night Mode. There are two methods for implementing Low Light Boost: 1. Low-Light Boost AE Mode, a hardware-level auto-exposure mode available on devices running Android 15 or later, specifically on Pixel 10 devices. 2. Google Low Light Boost, a software-based solution (HDRNet) for devices that do not support AE mode, enhancing brightness through post-processing techniques. The latest beta version of Google Messages, v20260501, includes code hints for the integration of Low Light Boost, although it is not yet fully operational. The feature enhances the viewfinder experience but does not affect the quality of the final image, which requires a separate Night Mode.

BetaBeacon

May 5, 2026

ScarCruft Hacks Gaming Platform to Deploy BirdCall Malware on Android and Windows

ScarCruft compromised a video game platform in a supply chain attack, trojanizing its components with a backdoor called BirdCall to target ethnic Koreans residing in China. The attack enabled the threat actors to target both Windows and Android devices, turning it into a multi-platform threat. The campaign targeted sqgame[.]net, a gaming platform used by ethnic Koreans in China, known as a transit point for North Korean defectors. BirdCall has features like screenshot capture, keystroke logging, and data gathering, and relies on legitimate cloud services for command-and-control. The Android variant collects various data and has seen active development.

AppWizard

May 5, 2026

Meta enhances security of WhatsApp and Messenger encrypted backups

Meta has enhanced the security and transparency of its end-to-end encrypted backup system for WhatsApp and Messenger. The improvements focus on refining the distribution and verification of encryption keys, and allow for independent audits of certain infrastructure components. The updates are based on Meta's Hardware Security Module (HSM)-based Backup Key Vault architecture, which securely stores recovery secrets in tamper-resistant hardware, ensuring that neither Meta nor cloud service providers can access users' message archives. For encrypted backups, users' devices generate a 256-bit encryption key locally, which encrypts all backup data before uploading it to cloud storage. The key remains on the device in an encrypted format, with the user's password not visible to Meta or third parties. An encrypted version of the backup key is stored in the HSM-based vault using the OPAQUE password-authenticated key exchange protocol, enhancing recovery security without revealing the password. The recent updates include an over-the-air (OTA) fleet key distribution mechanism, which avoids hardcoding trusted infrastructure keys into Messenger applications. Clients receive a “validation bundle” containing the HSM fleet's public keys during runtime, with signatures verified against Cloudflare’s Key Transparency system. The vault operates across at least seven data centers using majority-consensus replication to ensure availability and integrity. Meta plans to publish cryptographic proof of each new HSM fleet deployment, allowing advanced users and researchers to verify these deployments through the open-source “mbt” (Meta Binary Transparency) CLI tool, which conducts multiple checks to confirm that fleet keys are untampered.

Tech Optimizer

May 5, 2026

The best mobile antivirus software of 2026: Expert tested and reviewed

Bitdefender Mobile Security is currently regarded as the best mobile antivirus software, achieving a 100% detection rate for malware on Android devices according to AV-TEST's August 2025 report. The 2026 version introduces App Anomaly Detection and includes features like Scam Alert and anti-theft tools. Sophos Intercept X for Mobile offers a free version with a perfect score in AV-TEST's comparisons and features such as multi-factor authentication and a Privacy Advisor. Surfshark Antivirus, part of the Surfshark One package, scored six out of six in AV-TEST's evaluations and includes various security tools, but is only available for Android, macOS, and Windows. Avast Mobile Security is a popular free option with robust features and achieved perfect scores in protection and usability in AV-TEST's September-October 2025 report. AVG Antivirus, operating on the same engine as Avast, also detected 100% of malware in AV-TEST's March-April 2025 evaluations and includes anti-theft tools.