methods Archives

Tech Optimizer

April 21, 2026

Even trusted apps can infect your PC with malware now

Recent supply-chain attacks are increasingly targeting well-known software such as CCleaner, Steam games, and Notepad++, allowing hackers to distribute malware through legitimate updates. The introduction of artificial intelligence has accelerated the frequency and sophistication of these attacks, with hackers compromising developers or exploiting third-party tools to inject malicious code. Notepad++ was specifically affected by a supply-chain attack where a compromised third-party tool led to the distribution of tainted software. Attackers use various strategies, including hacking developers' credentials, purchasing access, or compromising tools relied upon by developers. Antivirus software is crucial for protecting users from malware, even from trusted sources, as modern solutions have minimal impact on system performance.

AppWizard

April 21, 2026

X deep-link issue on Android is stopping shared posts from opening properly

Android users are experiencing an issue with the X app where tapping on shared links does not direct them to the intended posts, leaving them on their timelines or the last viewed profile. Complaints have increased, and standard troubleshooting methods like clearing caches and reinstalling the app have not resolved the problem. A temporary workaround involves removing the app from recent tasks before tapping the link, but this is not a permanent solution. The issue affects various Android models and may have started after a recent Android system update, indicating a potential flaw within the X app itself. Some users have chosen to open links in mobile browsers by adjusting app settings. There has been no official acknowledgment of the bug from the X team, although the product head made a lighthearted comment about the situation on social media.

AppWizard

April 21, 2026

NGate Android malware uses HandyPay NFC app to steal card data

A new variant of the NGate malware targets Android users by disguising itself within a trojanized version of the HandyPay app, which is a legitimate mobile payment processing application. This malware, documented since mid-2024, siphons payment card information through the mobile device's near-field communication (NFC) chip and sends the stolen data directly to attackers, who create virtual cards for unauthorized purchases or cash withdrawals from NFC-enabled ATMs. The new variant has been injected with malicious code into the HandyPay app, which has been available on Google Play since 2021. The code includes emojis, indicating the possible use of a generative AI tool in its development. The shift from previous iterations, which used an open-source tool named NFCGate, to HandyPay is likely motivated by financial considerations and the need for evasion, as HandyPay is more affordable and requires fewer permissions. This NGate variant has been active since November 2025, primarily targeting Android devices in Brazil. It employs two main distribution methods: a counterfeit app named “Proteção Cartão” hosted on a fraudulent Google Play page and a fake lottery website that redirects users to WhatsApp to download the malicious APK. Upon installation, the app prompts users to set it as their default NFC payment application, requests their card PIN, and instructs them to tap their card on the phone for reading, transmitting all collected information to an attacker's email address. To protect against such threats, Android users are advised to avoid downloading APKs from outside Google Play, disable NFC when not in use, and use Play Protect to scan for threats.

AppWizard

April 21, 2026

NGate NFC malware targets Android users through trojanized payment app

NFC-based payment fraud targeting Android users in Brazil has been linked to a campaign using a trojanized version of the HandyPay app, part of the NGate malware family, since November 2025. The malware is distributed through a counterfeit website mimicking a lottery and a fraudulent Google Play page. The operators chose HandyPay for its low cost and minimal permissions required. The malware requests users to set it as the default NFC payment app, allowing it to capture payment card PINs and relay NFC card data to attackers. ESET Research identified this campaign and discovered logs from compromised devices containing sensitive information. The trojanized app has never been on the official Google Play store, and ESET has notified Google and the HandyPay developer about the issue.

AppWizard

April 21, 2026

New NGate Android malware variant uses NFC app to steal card data

A new variant of the NGate Android malware exploits a legitimate NFC payment app, HandyPay, to steal users' card information and PINs, enabling unauthorized contactless transactions. This malicious version of HandyPay, which has been available since 2021, was identified by ESET researchers and is distributed through a fraudulent lottery website and a fake Google Play page. The malware captures sensitive information by prompting users to enter their payment card PIN and tap their card against the device, sending the data to an attacker-controlled phone and exfiltrating the PIN to a command-and-control server. The campaign employs social engineering tactics and requires minimal permissions, relying on users to enable app installations from unknown sources. The attackers use a centralized infrastructure for malware distribution and PIN collection, with evidence of compromised devices in Brazil. The shift to modifying a legitimate application is motivated by financial incentives, as it offers similar functionality at a lower cost compared to underground tools. Users are advised to avoid installing apps from unofficial sources and to ensure the legitimacy of applications before entering sensitive information.

Tech Optimizer

April 21, 2026

Microsoft Defender: The Gold Standard for 2026 Security

Microsoft asserts that Microsoft Defender Antivirus is sufficient for most Windows 11 users as their sole security solution, following updates to the Windows security framework designed to counteract emerging threats. The current Windows security experience includes features such as real-time protection, cloud-delivered intelligence, smart app control, and cross-platform presence. Microsoft believes that the operating system itself is the most effective guardian of user data, embedding protections directly into the kernel to avoid performance slowdowns associated with external antivirus solutions. Despite this, the cybersecurity sector argues that specialized third-party software remains important, offering features like advanced password management and dedicated identity theft protection that Microsoft Defender lacks. The threat landscape in 2026 is increasingly driven by AI, prompting Microsoft to integrate AI into the Defender engine for proactive threat detection. While Microsoft Defender provides a robust baseline for security, a comprehensive strategy also requires good digital hygiene, strong password policies, and skepticism towards suspicious links.

AppWizard

April 20, 2026

Monday’s Android app deals and freebies: Methods Detective, AVARIS3, The Fall 2, more

A selection of Android game and app deals includes Methods: Detective Competition, AVARIS3, Front Armies, Hero of the Kingdom III, Tower Defense Legend 5 Pro, SciFi Survivor Premium, Galaxy Vanguard I, and The Fall 2: Zombie Survival. Samsung Galaxy Tabs are available starting at 0, with Amazon expected to adjust its pricing. Google’s Pixel 45W USB-C Power Charger and the 10 Pro XL are also discounted.

Tech Optimizer

April 19, 2026

Avast Antivirus: Between Free Tier Strength and Privacy Risks, Things Are Getting Interesting

Avast Antivirus offers free protection against malware, phishing, and unsafe websites, featuring real-time scanning, ransomware protection, and a behavior-based detection system. The free edition includes protective shields for files, emails, and web browsing, while Avast Premium Security provides advanced ransomware defense and a secure browser. Avast One bundles additional features like a VPN and parental controls. Gen Digital acquired Avast in 2022, positioning it as a key part of its consumer cybersecurity strategy, with a freemium model that attracts users and encourages upgrades to premium plans. Avast has a user base of 435 million, with millions transitioning to paid subscriptions annually. The global antivirus market is experiencing double-digit growth, driven by increasing cyber threats. Avast competes with major players like Norton, Bitdefender, and Kaspersky, while facing challenges from free alternatives like Windows Defender. The company previously faced privacy issues related to the sale of anonymized browsing data but has since implemented transparency measures and compliance with EU regulations. Avast is exploring AI-driven detection methods and post-quantum defenses to enhance its offerings.

Winsage

April 19, 2026

Fix: “Cannot Complete the Archive Extraction” in Windows

Users may encounter the error message “Cannot complete the archive extraction wizard” when using the built-in Windows extractor for ZIP or RAR files, indicating limitations of this tool. Common issues include damaged archives, incompatible compression methods, long file paths, restricted extraction locations, insufficient disk space, or interruptions from security software. To address these challenges, users can: 1. Use third-party extractors like 7-Zip, WinRAR, or PeaZip for better compatibility and success rates. 2. Check if the archive is corrupted and re-download it if necessary, ensuring the download completes fully. 3. Shorten the file path by moving the archive to a simpler directory to avoid exceeding path limits. 4. Temporarily disable antivirus or real-time protection, as it may interrupt the extraction process. If problems persist, testing the archive on a different PC can help determine if the issue is with the archive or the current system. If the archive fails on another computer, it is likely corrupted or incomplete, requiring a fresh download or replacement.

AppWizard

April 18, 2026

The new Slay the Spire 2 roadmap has no dates: “Exacting deadlines produce sloppy, uninspired work”

Mega Crit has released a roadmap for Slay the Spire 2, focusing on bug fixes, balancing, and visual enhancements since its launch over a month ago. The development approach is flexible, allowing for creativity, with new features planned such as Steam Workshop support, expanded language options, a Bestiary, and experimental game modes. Upcoming content includes an alternate Act Two, a new character, an alternate Act Three, and additional cards, events, relics, and potions. Ongoing improvements will continue alongside new features, with a humorous promise of "more silly voices" and "less silly placeholder art." Yano also teased the concept of "True Victory," Steam Achievements, Trading Cards, and potential platform ports. Community statistics reveal that 44% of players keep the Lantern Key, 88% free War Historian Repy when taking the key to its destination, 63% indulge in the Room Full of Cheese, and 49% consume the Byrdonis Egg for a health boost. Beta patches are released more frequently than main branch updates, and players are encouraged to join the beta for the latest developments.