NewApp Digest
search bot

November

Despite microtransaction woes at launch, MMO sequel Aion 2 will go global this year
AppWizard
April 23, 2026

Despite microtransaction woes at launch, MMO sequel Aion 2 will go global this year

Aion 2, launched in November of last year and set 200 years after the original game, has gained traction despite mixed reviews on its microtransaction strategies. It is preparing for a global release on Steam later this year, targeting players in North America, South America, Japan, and Europe by 2026. The game generated millions within the first month and a half of its release and has over 1 million subscribers, contributing to a 12% increase in NCSoft's revenue for the quarter.
Xbox Just Dropped The Price Of Game Pass Ultimate, But There's A Catch
AppWizard
April 21, 2026

Xbox Just Dropped The Price Of Game Pass Ultimate, But There’s A Catch

Microsoft has reduced the monthly fee for Xbox Game Pass Ultimate from .99 to .99 and for PC Game Pass from .49 to .99. Subscribers will lose immediate access to new releases of the "Call of Duty" series, which will now be available on Game Pass approximately a year after their initial release. Despite these changes, most aspects of the Game Pass services will remain unchanged, including day-one access to other gaming titles, online multiplayer capabilities, and in-game perks. The service has over 20 million users as of November 2022.
Trojanized Android App Fuels New Wave of NFC Fraud
AppWizard
April 21, 2026

Trojanized Android App Fuels New Wave of NFC Fraud

A new variant of the NGate malware family has emerged, using a trojanized Android application to capture payment card data and personal identification numbers (PINs). This modified version of HandyPay, a legitimate NFC relay app, has been distributed since November 2025, primarily targeting users in Brazil. The malware intercepts NFC payment card data and allows fraudulent transactions. Two distinct malware samples have been observed, delivered through phishing infrastructure that impersonates a Brazilian lottery site and a Google Play listing for a card protection tool. The trojanized app captures NFC data, requests the victim's card PIN, and transmits this information to attacker-controlled infrastructure. It requires minimal permissions, leveraging its role as the default payment application to evade detection. Evidence suggests that generative AI tools may have been used in its development, indicated by emoji markers in debug logs. ESET has reported its findings to Google, and Google Play Protect can detect known versions of the malware. The developer of HandyPay is investigating the misuse of its application.
NGate Android malware uses HandyPay NFC app to steal card data
AppWizard
April 21, 2026

NGate Android malware uses HandyPay NFC app to steal card data

A new variant of the NGate malware targets Android users by disguising itself within a trojanized version of the HandyPay app, which is a legitimate mobile payment processing application. This malware, documented since mid-2024, siphons payment card information through the mobile device's near-field communication (NFC) chip and sends the stolen data directly to attackers, who create virtual cards for unauthorized purchases or cash withdrawals from NFC-enabled ATMs. The new variant has been injected with malicious code into the HandyPay app, which has been available on Google Play since 2021. The code includes emojis, indicating the possible use of a generative AI tool in its development. The shift from previous iterations, which used an open-source tool named NFCGate, to HandyPay is likely motivated by financial considerations and the need for evasion, as HandyPay is more affordable and requires fewer permissions. This NGate variant has been active since November 2025, primarily targeting Android devices in Brazil. It employs two main distribution methods: a counterfeit app named “Proteção Cartão” hosted on a fraudulent Google Play page and a fake lottery website that redirects users to WhatsApp to download the malicious APK. Upon installation, the app prompts users to set it as their default NFC payment application, requests their card PIN, and instructs them to tap their card on the phone for reading, transmitting all collected information to an attacker's email address. To protect against such threats, Android users are advised to avoid downloading APKs from outside Google Play, disable NFC when not in use, and use Play Protect to scan for threats.
New NGate Android malware variant uses NFC app to steal card data
AppWizard
April 21, 2026

New NGate Android malware variant uses NFC app to steal card data

A new variant of the NGate Android malware exploits a legitimate NFC payment app, HandyPay, to steal users' card information and PINs, enabling unauthorized contactless transactions. This malicious version of HandyPay, which has been available since 2021, was identified by ESET researchers and is distributed through a fraudulent lottery website and a fake Google Play page. The malware captures sensitive information by prompting users to enter their payment card PIN and tap their card against the device, sending the data to an attacker-controlled phone and exfiltrating the PIN to a command-and-control server. The campaign employs social engineering tactics and requires minimal permissions, relying on users to enable app installations from unknown sources. The attackers use a centralized infrastructure for malware distribution and PIN collection, with evidence of compromised devices in Brazil. The shift to modifying a legitimate application is motivated by financial incentives, as it offers similar functionality at a lower cost compared to underground tools. Users are advised to avoid installing apps from unofficial sources and to ensure the legitimacy of applications before entering sensitive information.
Microsoft tests Windows Explorer speed, performance improvements
Winsage
April 20, 2026

Microsoft tests Windows Explorer speed, performance improvements

Microsoft is enhancing File Explorer for Windows 11 Insider program users, focusing on improved launch speed and performance. A preloading feature was tested that allows File Explorer to load in the background for faster access, which users can disable in the Folder Options. These updates follow the introduction of Startup Boost for Office applications, which also aims to improve loading times. The Windows Insider Program Team is also working on enhancing the reliability of the explorer.exe process and addressing issues with bright white flashes when opening File Explorer in dark mode. Additionally, a new Xbox mode has been introduced for Windows 11 PCs, providing a full-screen gaming interface to reduce distractions. These updates are being rolled out to Insiders in the Release Preview channel with specific Windows 11 builds installed.
The Death of the Console War: Why Project Helix is Both a PC and an Xbox
AppWizard
April 19, 2026

The Death of the Console War: Why Project Helix is Both a PC and an Xbox

Microsoft has announced Project Helix, a next-generation gaming initiative aimed at merging PC and console gaming into a unified ecosystem, set to launch in late 2027. The initiative features a hybrid gaming system that allows seamless play between Xbox and PC games. It is powered by a custom AMD System-on-Chip called Xbox Magnus, which includes next-generation ray tracing, generative AI technology, and Microsoft’s proprietary DLSS5 technology. Project Helix also introduces streamlined tools for developers to simplify game creation and porting, aiming to expand the Xbox game library. Key milestones include an official announcement in March 2026, a potential hardware reveal in mid-2026, and a consumer launch in late 2027. The initiative is led by Xbox executives Asha Sharma, Matt Booty, and Jason Ronald. Project Helix is positioned as a premium gaming device with a projected price of ,000, reflecting its advanced features and expansive game library.
Metro 2039 is "much darker" than its predecessors, but most importantly it's a statement of intent
AppWizard
April 16, 2026

Metro 2039 is “much darker” than its predecessors, but most importantly it’s a statement of intent

Anticipation is high for Metro 2039, the next installment in the Metro series, following the release of Exodus in 2019. The game is set in a post-apocalyptic Russia, specifically around a devastated Saint Basil's Cathedral, and will explore themes of death, tyranny, and political manipulation. Players will assume the role of The Stranger, who must dismantle the authoritarian regime of the Novoreich, led by Hunter. Metro 2039 will feature a fully voiced protagonist, enhancing immersion, and gameplay will include close-quarters shooting and survival horror elements. The game is expected to launch in winter 2026, likely between October and December, and aims to reflect the experiences of its Ukrainian developers amid ongoing conflict.
CISA flags Windows Task Host vulnerability as exploited in attacks
Winsage
April 16, 2026

CISA flags Windows Task Host vulnerability as exploited in attacks

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning about a vulnerability in the Windows Task Host, identified as CVE-2025-60710, which poses a risk of privilege escalation, potentially allowing attackers to gain SYSTEM privileges. This flaw affects devices running Windows 11 and Windows Server 2025 and arises from a weakness in link following. Microsoft released a patch for this issue in November 2025. CISA has added CVE-2025-60710 to its list of actively exploited vulnerabilities and mandated that Federal Civilian Executive Branch agencies secure their systems within two weeks. CISA encourages all organizations, including those in the private sector, to implement necessary patches and improve network security. CISA also advised organizations to follow vendor instructions for mitigations or discontinue use of the affected product if mitigations are unavailable.
Search