monitor Archives

AppWizard

March 23, 2026

Russia’s Max: The unencrypted super-app being forced on citizens

The Max application was launched by VK in 2025, raising concerns about potential government surveillance and a separation from Western digital services. The app combines social media, messaging, and government services, including a digital ID and banking, and is being promoted as a "secure" platform by President Vladimir Putin, who aims for "technological sovereignty." Since September, Max has been pre-installed on devices sold in Russia and is included on a "white list" of services operational during internet blackouts. Initially available only to users with Russian or Belarusian SIM cards, it now supports English and phone numbers from 40 "friendly" countries but is not available in the EU or Ukraine. Public sentiment is mixed, with some individuals feeling forced to use it for communications, while others have concerns about privacy and data security. Max does not offer end-to-end encryption, and user data is stored on Russian servers. The app's introduction is part of Russia's strategy for a "sovereign internet," with increased regulatory authority to monitor online activities.

AppWizard

March 23, 2026

I gave my favorite mini PC an instant upgrade with this eGPU dock

Khadas’ Mind Graphics 2 is a compact device that allows users to upgrade their mini PCs into powerful gaming setups without opening them. It features a proprietary 122-pin Mind Link connector for efficient connections and is equipped with an Nvidia RTX 5060 Ti GPU, enhancing gaming and creative tasks. The device has a CNC unibody aluminum shell that serves as a heat sink, maintaining quiet operation. Weighing six pounds, it is stable on a desk and easy to connect. The setup process involves placing a mini PC on top, engaging a magnetic connection. The Mind Graphics 2 supports high-end gaming, running titles like Skate Style and Ratchet & Clank: Rift Apart smoothly. It is priced at ,349 and offers multiple video output ports and integrated speakers. Khadas also provides a standard Mind Dock for those not needing a GPU. Future expansions include the Mind x Play add-on, which will convert a mini PC into a laptop.

AppWizard

March 20, 2026

Google slows Android sideloading to trip up scammers

Google is implementing a new flow for installing applications from unverified developers on Android, which includes several steps to reduce risks associated with sideloading. Users must first enable developer mode, followed by a verification check to ensure no external influence is guiding the installation. They then restart their devices and reauthenticate, disrupting any potential remote access. A one-day waiting period is enforced before installation, allowing users time to reconsider. Finally, users must confirm their action using biometric authentication or a device PIN. After successful verification, users can install apps from unverified developers for a limited duration or indefinitely, with warnings about the app's source provided throughout the process.

Winsage

March 20, 2026

Retro Weather Display Acts Like It’s Windows 95

The weather display created by Jordan features the ESP32-2432S028, known as the CYD or Cheap Yellow Display, which has a 320 x 240 LCD screen housed in a 3D-printed design resembling a vintage CRT monitor. It includes a lever mechanism for tactile button engagement and is programmed to access Open-Meteo feeds for current weather and forecasts, as well as webcam feeds and satellite images. The interface is inspired by Windows 95, providing pages for current conditions, forecasts, and wind speeds.

AppWizard

March 20, 2026

This is Android’s new ‘advanced flow’ for sideloading apps without verification, includes one-day waiting period [Gallery]

Google will introduce a new Android developer verification process later this year to enhance user security and accommodate power users. This will include an "advanced flow" that allows users to disable the verification requirement and install software from unverified developers. Users must activate Developer mode, confirm they are not being guided by a malicious actor, restart their device, and undergo a mandatory one-day "Security wait" period for identity verification through biometric authentication or a device PIN. After this, they can install apps from unverified developers indefinitely, with a temporary option for seven days. Users will still receive a warning when installing apps from unverified developers but can choose to proceed. The rollout is set for August, alongside new developer verification requirements. Additionally, Google will offer limited distribution accounts for developers to share apps with up to 20 users without registration fees or government ID.

AppWizard

March 20, 2026

Google introduces a new way for users to sideload Android apps that still protects against scams

Google has announced a new "advanced flow" setting that simplifies the process for Android users to install applications from sources outside the Play Store by allowing them to disable a verification requirement. This change responds to user demand for more flexibility in app installation, despite the associated risks of unverified applications. Previously, Google required all Android apps to be registered by verified developers to prevent malware and fraud. The new setting involves enabling developer mode, followed by a verification check to ensure users are not being scammed, a phone restart, and a protective waiting period of one day before confirming the change. Users can choose to enable the option to install apps from unverified developers for seven days or indefinitely, with a warning provided for unverified apps. Additionally, Google is offering free distribution accounts for students and hobbyists to share apps with a small group without ID verification. These changes follow a legal settlement with Epic Games, resulting in reduced Play Store commissions to 20% on in-app purchases.

Tech Optimizer

March 19, 2026

ClickFix Lures Power LeakNet’s Growing Ransomware Attack Chain

The ransomware group LeakNet has evolved its tactics, increasing its average targets from three per month and shifting from purchasing stolen network access to launching its own campaigns. They now use deceptive error screens and a new tool that executes malicious code in a computer's memory. Their strategy includes ClickFix lures, which compromise legitimate websites to display fake security checks, tricking users into executing malicious commands. This method broadens their victim reach and reduces costs. The Deno loader, part of this strategy, collects machine information and retrieves additional malicious code without leaving standard files, making detection difficult. After infiltrating a network, LeakNet checks for active user credentials and uses PsExec for lateral movement, employing Amazon S3 buckets for payload staging and data exfiltration. Defenders are advised to monitor for suspicious behavior rather than just known malicious files, focusing on unusual web commands and unexpected cloud storage connections.

AppWizard

March 19, 2026

RUSSIA Mammut virus hits Russia’s patriotic messaging app

A virus known as Mamont is targeting users of the messaging platform Max, which has 100 million registered profiles. Mamont infiltrates online banking applications and spreads primarily through family and parental chat groups, allowing cybercriminals to steal payment information. The virus often begins with a deceptive message prompting users to click, leading to the silent download of a Trojan that siphons off data. Despite claims from the Max press service that the virus's spread is exaggerated, concerns remain about the security of user data, particularly given that all communications on Max are monitored by the state. Many users resort to using a second device, referred to as Maxofon, to comply with the platform's requirements while keeping their primary device for other applications.

AppWizard

March 19, 2026

New Android malware hiding in streaming apps to spy on users’ personal notes

Researchers have discovered a sophisticated malware called Perseus that targets Android users by disguising itself within television streaming applications to steal sensitive information, including passwords and banking details. This malware, reported by ThreatFabric, primarily affects users in Turkey and Italy and is based on the leaked code of previous Android banking trojans, particularly Cerberus. Perseus masquerades as IPTV service apps, often downloaded from unofficial sources, and employs overlay attacks and keylogging techniques to capture user credentials. It specifically targets personal note-taking applications like Google Keep, Evernote, and Simple Notes to extract sensitive information stored within them. The malware landscape is evolving, with new threats like the banking trojan Herodotus and the Crocodilus variant, which can manipulate contact lists. Users are advised to be cautious when downloading applications from unofficial sources.

AppWizard

March 19, 2026

Android 16 has a silent VPN bug Google hasn’t fixed for months, claim multiple VPN providers

Multiple VPN providers are reporting a bug in Android 16 that disrupts their services and may compromise user security. The issue arises after VPN app updates, causing the apps to malfunction in the background and preventing users from connecting to the internet. Proton VPN first flagged the problem in September 2025, with other providers like Mullvad VPN, WireGuard, and TunnelBear also experiencing similar issues. The bug can leave users confused, as the VPN app may appear to be connecting but fails to provide internet access. Restarting the app does not resolve the issue; users may need to reboot their devices or reinstall the VPN. The bug affects a small percentage of users inconsistently, complicating diagnosis and resolution for developers. Google has not provided a comprehensive acknowledgment or solution, with the last communication indicating that the issue has been reported to relevant teams. Users are advised to monitor their VPN performance after app updates.