pop-ups Archives

AppWizard

December 2, 2025

Android users warned to check phones now as Google bans apps

Recent findings have revealed that certain widely-used Android applications have been involved in an adware campaign, identified as 'GhostAd', which drains phone resources and disrupts normal usage. This malicious software disguised itself as utility and emoji-editing tools and infiltrated at least 15 applications, targeting unsuspecting users. Many of these compromised apps were available on Google’s Play Store, including the GenMoji Studio app, which became popular in the 'Top Free Tools' category. Users reported issues such as disappearing app icons, intrusive advertisement pop-ups, and sluggish device performance after installation. Google has removed all compromised applications from its Play Store, but users who installed them must manually delete the harmful software. Check Point noted that the GhostAd campaign blurs the line between marketing and malware, repurposing users' phones to generate revenue. To protect against future threats, users are advised to scrutinize app reviews, verify the app creator's reputation, and exercise caution with permissions.

Tech Optimizer

November 29, 2025

Virus Alert: 4 Warning Signs on Your Laptop You Must Not Ignore

Laptops are at risk of viruses due to internet connectivity and USB drives. Signs of potential virus infection include: 1. Sudden Slowdown: A laptop that slows down unexpectedly may have a virus consuming resources. Action: Conduct a full antivirus scan. 2. Unexplained Pop-Ups: Frequent pop-ups or ads may indicate malware. Action: Install a malware removal tool and enable pop-up blocking. 3. Programs Opening or Closing Automatically: Applications launching or shutting down without command could signal a remote access trojan. Action: Disconnect from the internet and run antivirus scans. 4. Strange Hard Drive or Network Activity: Excessive disk or network activity while idle may suggest hidden malware. Action: Monitor task manager for suspicious processes. Preventive measures include keeping antivirus software updated, avoiding unknown USB drives, regularly updating the operating system, and backing up important files.

Winsage

November 26, 2025

Do Not Click—This Porn Site Installs Malware On Your Device

Attackers are using malicious emails with links to adult websites to exploit human curiosity and urgency, leading to the installation of harmful malware through deceptive update processes. Acronis has identified these "JackFix" attacks, which use screen hijacking techniques combined with ClickFix methods, presenting victims with fake Windows Update screens that claim to deliver critical security updates. This campaign leverages counterfeit adult websites as phishing mechanisms, increasing psychological pressure on victims to comply with prompts to install updates. The attack takes over the victim's screen and displays a convincing update interface, occurring entirely within the browser. Acronis advises users to avoid accessing adult sites through links in emails or messages and to navigate directly to these sites for safer browsing.

Winsage

November 25, 2025

JackFix Uses Fake Windows Update Pop-Ups on Adult Sites to Deliver Multiple Stealers

Cybersecurity experts have identified a new campaign that combines ClickFix tactics with counterfeit adult websites to trick users into executing harmful commands under the guise of a "critical" Windows security update. This campaign uses fake adult sites, including clones of popular platforms, as phishing mechanisms, increasing psychological pressure on victims. ClickFix-style attacks have risen significantly, accounting for 47% of all attacks, according to Microsoft data. The campaign features convincing fake Windows update screens that take over the user's screen and instruct them to execute commands that initiate malware infections. The attack begins when users are redirected to a fake adult site, where they encounter an "urgent security update." The counterfeit Windows Update screen is created using HTML and JavaScript, and it attempts to prevent users from escaping the alert. The initial command executed is an MSHTA payload that retrieves a PowerShell script from a remote server, which is designed to deliver multiple payloads, including various types of malware. The downloaded PowerShell script employs obfuscation techniques and seeks to elevate privileges, potentially allowing attackers to deploy remote access trojans (RATs) that connect to command-and-control servers. The campaign has been linked to other malware execution chains that also utilize ClickFix lures. Security researchers recommend enhancing defenses through employee training and disabling the Windows Run box to mitigate risks associated with these attacks.

Winsage

November 23, 2025

Fake Windows Defender notifications are on the rise

Microsoft's latest AI language interpreter has raised concerns among cybersecurity experts, as it has inadvertently provided new opportunities for cybercriminals. Scammers are using fake Windows Defender pop-ups, which appear authentic, to deceive users into granting unauthorized remote access to their computers. Certain ransomware groups have found ways to disable Windows Defender remotely using trusted Windows drivers, leaving users vulnerable without alerts. These fraudulent notifications often lock users' browsers and prompt them to call a number associated with the scammers, who then guide them through granting access under false pretenses. The pop-ups originate from compromised websites, malicious ads, or bundled software, exploiting the familiar Defender name to instill fear. Relying solely on Windows Defender is risky, as it struggles against sophisticated attacks, lacks deeper monitoring, and is a prime target for cybercriminals. A multi-layered security approach, including reputable third-party security packages like Trend Micro’s Internet Security, is recommended. Additionally, maintaining smart security habits, such as keeping systems updated and using strong passwords, is essential for effective protection.

Winsage

November 23, 2025

Microsoft Swaps BSOD to Black, Adds Auto-Hide and AI Tools for Reliability

Microsoft is launching an initiative to eliminate the Blue Screen of Death (BSOD) by introducing a new black screen error interface in Windows 11, which will replace the traditional blue backdrop. This redesign aims to modernize the error display and provide actionable insights while removing the frowning face emoji. A new feature called Digital Signage Mode will automatically conceal BSODs on public displays after 15 seconds, preventing prolonged visibility of errors. This mode suppresses all Windows error dialogs and allows systems to reboot or enter recovery without displaying errors, which is crucial for environments like retail and transportation. Microsoft is also enhancing remote recovery tools for IT administrators and promoting proactive measures for error prevention, such as regular driver updates and system scans. The company is collaborating with hardware manufacturers to improve driver compatibility and reduce BSOD incidents. Despite concerns about obscuring underlying issues, Microsoft ensures that all incidents are logged for future review. By 2026, experts anticipate advancements in AI-driven error handling that could eliminate public BSODs entirely. User adoption remains a challenge, particularly among small businesses, and Microsoft is addressing this through educational campaigns. The transition to a black screen has been positively received in consumer spaces, marking a cultural shift away from the blue screen as a symbol of computing errors.

Winsage

November 23, 2025

Windows: New “Digital Signage Mode” Ends Bluescreens

The new Digital Signage Mode introduced by Microsoft allows Windows to display system error messages, such as the Blue Screen of Death, for only 15 seconds before turning the screen black. This feature aims to prevent public visibility of technical errors on digital signage while still allowing support teams to address issues. The mode also applies to other disruptive Windows dialogs, but it is specifically designed for non-interactive public displays and does not extend to kiosks, which require direct user interaction. The mode can be enabled through the Windows Settings app or a registry key.

Winsage

November 22, 2025

Data Doctors: Beware fake Windows Defender alerts

Microsoft's Windows Defender has vulnerabilities that can be exploited by cybercriminals, including a method to remotely disable it using a trusted Windows driver. There has been an increase in counterfeit "Windows Defender" pop-ups that prompt users to call a phone number, connecting them to scammers. These pop-ups do not originate from Microsoft and are often triggered by compromised websites or malicious ads. Scammers use these alerts to gain remote access to victims' computers under the pretense of fixing non-existent issues, often charging for fraudulent services or installing malware. Windows Defender struggles against advanced threats, lacks deeper monitoring capabilities, and is a prime target for attackers due to its widespread use. A multi-faceted security approach, including third-party solutions like Trend Micro, is recommended to address these gaps and enhance protection. Additionally, maintaining smart security habits, such as updating software and using strong passwords, is crucial for overall system security.

AppWizard

November 18, 2025

Best Android browser app is about to get even better

The Samsung Internet Browser app can be installed from the Play Store and the Galaxy Store. An upcoming update with One UI 8.5 is expected to coincide with the Galaxy S26 series launch. The update will feature a new icon, a revamped welcome screen, and a floating address bar that disappears while scrolling. Users will be able to block fixed-position pop-ups, and the tab management layout will resemble the Gallery app's grid view. A compact floating bar will allow customization of button arrangements. Users will also be able to "like" videos directly from the browser, and the browser will check for APK availability in the Galaxy Store during downloads. Additionally, a pop-up will offer the option to close all open tabs when closing the browser, with the ability to disable this feature for future sessions.

AppWizard

November 17, 2025

One UI 8.5 leak reveals Samsung Internet app’s major UI changes

Samsung's Internet app will undergo a significant redesign with One UI 8.5, featuring a revamped address bar, a new grid layout, enhanced privacy features, and an AI Search option. The update aims to improve user experience by addressing fixed-position pop-ups, allowing users to like videos directly within the app, and simplifying tab management with a new pop-up menu for closing all tabs or suppressing notifications. The redesign is expected to enhance the browser's ability to block intrusive pop-up advertisements.