security breach Archives

AppWizard

July 30, 2025

Tea dating app breach bigger than previously thought, company says

A recent investigation revealed that a cyberattack on the dating advice app Tea compromised users' direct messages and personal photos, including 59,000 accessed images and messages. The app's system has been taken offline as a precaution. Users' selfies uploaded prior to February 2024 were among the sensitive information exposed. Cybersecurity expert Ted Miracco criticized Tea for inadequate security measures and emphasized the risks of sharing personal information on popular applications.

Winsage

July 27, 2025

Microsoft Weekly: a new Surface, big Windows 11 feature update, and more

In July 2025, Microsoft released non-security updates for Windows 10 (KB5062649) and Windows 11 (KB5062663 for versions 22H2 and 23H2; KB5062660 for version 24H2), introducing AI functionalities, improvements in Settings, and a redesigned BSOD. Companies like Brave and AdGuard are blocking Windows Recall due to privacy concerns. Microsoft is developing a tool for transitioning from older to newer computers and published a guide for Windows 10's end of support on October 14, 2025. The Windows Insider Program released Build 27909, focusing on minor fixes, and introduced an audio-sharing feature. Microsoft disclosed a security breach in SharePoint affecting the US nuclear weapons department and provided fixes. The Surface Laptop 7 was launched with Intel's Core Ultra 200 Series processors and optional 5G connectivity. The Files app received a preview update with a new Omnibar. Meta is transitioning WhatsApp on Windows to a progressive web app, and Firefox released version 141.0 with AI-powered tab groups. Microsoft is testing a cross-device play history feature for Xbox and reversed its decision on Xbox game pricing. EA announced a new Battlefield installment, and Nvidia added new titles to GeForce NOW. Various discounts and a free game, Legion TD 2, were featured in the Weekend PC Game Deals.

Winsage

July 14, 2025

ChatGPT falls for another Windows license key scam — generating valid codes in a guessing game after a researcher “gives up”

Users have exploited AI-powered chatbots, specifically ChatGPT, to generate Windows 7 and Windows 10 activation keys by using emotionally charged narratives to bypass safeguards. The keys produced were ineffective. Additionally, Microsoft's AI tool, Copilot, was tricked into providing a guide for pirating Windows 11 activation keys. Microsoft has since implemented measures to address these security breaches.

Winsage

July 10, 2025

Researchers Trick ChatGPT into Disclosing Windows Product Keys

Researchers have successfully bypassed ChatGPT's guardrails, allowing the AI to disclose valid Windows product keys by disguising requests as a guessing game. The technique involved using HTML tags to hide sensitive terms from filters while still enabling AI comprehension. They extracted real Windows Home/Pro/Enterprise keys by establishing game rules and using the phrase "I give up" to trigger disclosure. This vulnerability highlights flaws in keyword-based filtering and suggests that similar techniques could expose other restricted content. The attack exploits weaknesses in AI's contextual interpretation and emphasizes the need for improved content moderation strategies, including enhanced contextual awareness and detection of deceptive framing patterns.

AppWizard

July 10, 2025

Activision pulls game after PC hacking reports

Activision has removed Call of Duty: WWII from the Microsoft Store and PC Game Pass due to reports of hackers exploiting a critical vulnerability in the game's PC versions. Players experienced hijacked computers during gameplay, with evidence of remote code execution attacks. An outdated and insecure build of the game was uploaded to Microsoft’s services, despite having been patched on other platforms. The game is still accessible via Steam and console versions. Activision has not reinstated access to the game and is investigating the security breach.

AppWizard

July 8, 2025

Activision took down Call of Duty game after PC players hacked, says source

Activision has temporarily removed the Microsoft Store version of “Call of Duty: WWII” due to a serious security breach involving a vulnerability that allowed hackers unauthorized access to players' computers. The company is investigating the situation and is working on a patch to resolve the exploit. Players have reported hacking incidents while playing, with concerns raised about a remote code execution vulnerability. The affected version of the game differs from those on Steam, as it contained an outdated flaw that had already been patched elsewhere. Activision has faced multiple hacking incidents in recent years, including issues with its anti-cheat system and malware targeting players. The company has also experienced layoffs that have impacted its cybersecurity resources.

Tech Optimizer

June 24, 2025

Why Every File Demands Sanitization

Zero Trust addresses the issue of misplaced trust in cybersecurity, particularly the assumption that files from known senders are safe. This assumption can lead to security breaches, as malware can be hidden in documents from internal employees, vendors, or customers. Familiar interactions often bypass essential security checks, creating vulnerabilities. Security tools may fail to detect modern threats, which can evade traditional defenses. Compromised accounts and infected devices can introduce risks regardless of the sender's identity. To mitigate these risks, Votiro's solution cleanses every file using Content Disarm and Reconstruction (CDR) technology, removing harmful elements while maintaining functionality. Votiro's approach ensures that file security does not disrupt business operations, providing a seamless and efficient solution for organizations.

AppWizard

May 8, 2025

Signal clone used by Trump team hacked, GlobalX flight data leaked

The messaging app TeleMessage, used by President Donald Trump’s national security advisor, has been suspended due to a reported security breach, raising concerns about the security of sensitive government communications. The app, a modified version of Signal, was halted after a hacker accessed message contents from its customized versions, although the communications of national security advisor Mike Waltz were reportedly not affected. TeleMessage's suspension follows a statement from its parent company, Smarsh, confirming an investigation into the security incident. Despite President Trump's criticism of Signal, the White House continues to defend it, highlighting its pre-installation on government devices. Concerns about privacy protections arise from TeleMessage's archiving features, which may compromise Signal's end-to-end encryption. Additionally, GlobalX, the airline involved in Trump’s deportation flights, experienced a hacking incident, resulting in the exposure of flight records and passenger lists.

AppWizard

May 7, 2025

Another messaging app used by the White House is in hot water

Former National Security Adviser Mike Waltz has come under scrutiny for using TeleMessage, an app that has recently experienced a security breach resulting in the theft of sensitive data, including direct messages and group chats. High-ranking officials from the Trump administration, including Waltz, Vice President J.D. Vance, Secretary of State Marco Rubio, and Director of National Intelligence Tulsi Gabbard, were reported to have used the app. A photograph captured Waltz during a Cabinet meeting appearing to use TeleMessage to access Signal messages, raising concerns due to his previous controversy involving a chat room on Signal that included a journalist. The security vulnerabilities of TeleMessage have been criticized, particularly as it lacks the robust encryption features of Signal. The app was initially marketed as a solution for preserving messages for government record-keeping, but its reliability has been questioned.

AppWizard

May 6, 2025

Messaging App Tied to Trump Cabinet Investigating Cyber Incident

TeleMessage is investigating a potential security breach, suspecting that hackers may have exploited its technology. The company has temporarily suspended its app services as a precautionary measure. TeleMessage, a product of Smarsh Inc. based in Portland, Oregon, archives messages from encrypted applications like Signal, WhatsApp, and Telegram.