security threat Archives

AppWizard

January 27, 2026

CCP-Controlled Messaging App WeChat Used for ‘Coordination Among Chinese Criminal Networks’ in US, Sen Lankford Writes to Trump

Senator James Lankford has requested the White House to consider banning WeChat from U.S. app stores due to concerns about its use by Chinese criminal organizations for activities like drug trafficking and money laundering. WeChat, owned by Tencent Holdings Ltd., has been identified as a key tool for coordinating these criminal networks. U.S. law enforcement currently lacks access to WeChat's encrypted communications, complicating investigations. This request follows a previous attempt by the Trump administration to ban WeChat, which was deemed unconstitutional. The Biden administration has since conducted a national security assessment and enacted the Protecting Americans from Foreign Adversary Controlled Applications Act, which allows the president to blacklist Chinese applications like WeChat. The Pentagon has already blacklisted Tencent for its ties to Chinese military companies. Recent criminal activities linked to WeChat include a case where a Chinese national was charged with murder on an illegal marijuana farm. Lankford urges the designation of WeChat as a "covered company" to enhance U.S. national security and assist law enforcement against Chinese criminal networks.

Tech Optimizer

January 10, 2026

Protect Yourself From the macOS Flaw that Bypasses Apple Privacy Controls

A newly identified macOS vulnerability, tracked as CVE-2025-43530, poses a significant risk by circumventing Apple’s privacy controls, potentially exposing users to malicious actors. This flaw arises from two vulnerabilities that allow hackers unauthorized access to systems by exploiting Apple-signed services and a timing gap in process verification. Hackers can execute AppleScript commands and access user files and microphone audio without triggering warnings. The VoiceOver screen reader service is a primary target for exploitation. Users are advised to update to macOS Tahoe 26.2, review app permissions, consider third-party antivirus solutions, and avoid downloading untrusted files to enhance security.

BetaBeacon

November 25, 2025

Roblox “Security Threat Detected” error crashes games on Android

Android users are experiencing frustrating crashes while playing Roblox, with a puzzling error message causing confusion. The issue seems to be affecting a wide range of Android brands and models, including Samsung, Lenovo, Xiaomi, Huawei, Amazon Fire, and Google Pixel devices. The crashes started around November 22-24, possibly linked to a recent app update. Users have tried various troubleshooting methods without success and some have resorted to downgrading to an older Roblox version. Speculation suggests that Roblox's anti-cheat system may be mistakenly flagging legitimate devices as security threats. The company has not publicly addressed the issue, but users are encouraged to try installing an older APK file as a temporary workaround.

Winsage

November 12, 2025

New Microsoft Alert — Update Windows 10 And 11 Now, Attacks Underway

Google has released an emergency update for Chrome users to address a critical security vulnerability. Microsoft has issued a warning about a zero-day vulnerability in the Windows Kernel, identified as CVE-2025-62215, which is actively exploited by attackers to gain system privileges. This vulnerability is a privilege escalation flaw that requires an attacker to exploit a race condition. It affects nearly all assets running Microsoft software and can potentially allow remote code execution without needing an existing foothold. The root causes are linked to improper synchronization and double free issues, leading to kernel heap corruption and the ability for attackers to hijack system execution flow. Users are advised to update their systems immediately.

Winsage

November 6, 2025

Latest Windows Updates Trigger BitLocker Recovery

Microsoft has warned that its October 2025 security update may cause a BitLocker recovery prompt on certain systems, particularly affecting devices running Windows 10 version 22H2 and Windows 11 versions 25H2 and 24H2. BitLocker, a security feature in Windows, encrypts drive contents to protect against unauthorized access. The issue arises when some devices inadvertently enter BitLocker recovery mode during startup. This is especially common with Intel-based devices that support Connected Standby. Affected users may need to enter a recovery key once, after which the device should boot normally. Microsoft has provided a fix that administrators must manually deploy, and users without their recovery key risk losing data. They are advised to try retrieving the key through their Microsoft account.

AppWizard

October 12, 2025

Police found secret messaging app on spy suspect’s phones

One of the suspects in the China spy case allegedly used secure communication applications on 'burner phones' intended for Beijing agents. Christopher Berry and Chris Cash were charged with transmitting secrets to China between 2021 and 2023, but the trial collapsed due to the Government's failure to assert that China posed a national security threat at the time of the alleged offences, leading to their not guilty declaration. Berry was stopped at an airport in February 2023, and suspicious applications were discovered on his electronic devices, which contributed to the charges. Berry is accused of transferring about 34 files to a Chinese handler, with the information reportedly obtained by Cash, who worked for the China Research Group and as a Commons researcher. Both men were arrested in March 2023 under the Official Secrets Act for conveying information detrimental to UK safety and interests. Berry is suspected of sharing information about internal government disputes over the Newport Wafer Fab semiconductor factory and accommodations for MPs during a visit to Taiwan. British intelligence identified Berry and Cash after detecting UK-related information in the Chinese intelligence framework. The potential for a successful prosecution was noted by experts, who criticized the government's reluctance to address espionage efforts.

Winsage

October 6, 2025

Windows 11 25H2 Installs Can Be A Breeze With This Rufus Tool Tip

Rufus continues to function effectively for Windows 11 installations despite concerns regarding the latest 25H2 update. A bug caused an "Assertion failed!" error when creating installation media, but a recent patch has resolved this issue. Users can bypass Windows 11's minimum requirements by selecting the "first bypass on the WUE dialog." The latest Rufus version 4.11 introduces a new option to use "Windows CA 2023" signed bootloaders, addressing the revocation of older Secure Boot certificates. However, users need a "compatible target PC" to avoid security violations, which can prevent installation if firmware updates are not applied. For a fresh installation, users should obtain the latest Windows 11 image directly from Microsoft.

AppWizard

September 23, 2025

Hundreds of Android apps infested with cyber attack with users told to delete immediately

Android users are facing a security threat from a campaign aimed at extracting personal and financial information through a form of ad fraud called SlopAds, which has affected 224 Android applications with over 38 million downloads from the Google Play Store. Attackers embed corrupted advertisements in these apps, degrading device performance and generating revenue through fraudulent ad impressions and clicks. The malicious apps use steganography to conceal their activities, creating hidden WebViews that redirect users to hacker-controlled sites. Google has removed the identified malicious applications from the Play Store and will alert users to uninstall them. Security experts recommend enabling Google’s Play Protect feature to safeguard against harmful applications. Ad fraud undermines the integrity of the advertising ecosystem, harming reputable advertisers and developers. Users are advised to act promptly on notifications regarding infected applications to maintain device security.

AppWizard

August 22, 2025

Android VPN Apps Linked to Chinese Co (Qihoo 360) Tied to PRC

Recent investigations by Arizona State University and Citizen Lab have revealed that several popular Android VPN applications are linked to entities in mainland China and Hong Kong, raising security concerns. These apps, which have millions of downloads, share ownership and infrastructure, and exhibit significant security flaws, including the collection of location data against privacy policies, outdated encryption methods, and hard-coded passwords that could compromise user traffic. One company manages all VPN servers for a second group of apps, while a third group is vulnerable to connection interference attacks. Notably, these VPN providers are connected to Qihoo 360, a Chinese company flagged as a potential national security threat, with ties to the Chinese military. The Tech Transparency Project reported that millions of Americans have downloaded apps that route internet traffic through Chinese companies, with one in five of the top 100 free VPNs in the U.S. App Store in 2024 being covertly owned by Chinese firms. Some VPNs have targeted younger audiences through social media ads, raising concerns about their marketing strategies. Qihoo 360 has been sanctioned and is on the Commerce Department’s Entity List, emphasizing the national security risks associated with these services. Users are advised to research their VPN providers to avoid affiliations with the Chinese Communist government.

AppWizard

July 19, 2025

Kremlin may ban popular messaging app to tighten control over internet resources

Analysts from the Institute for the Study of War (ISW) have noted an increase in the Kremlin's censorship efforts to control the digital landscape in Russia. On July 18, Anton Gorelkin, First Deputy Chairperson of the Russian State Duma Committee on Information Policy, warned that WhatsApp may face restrictions in the Russian market and indicated that the Kremlin-backed messaging app, MAX, is intended to replace it. Committee member Anton Nemkin labeled WhatsApp a national security threat, suggesting Telegram as an alternative, but acknowledged MAX as the preferred option. WhatsApp is currently the most popular messaging app in Russia, with about 84 million daily users, but a ban on it is seen as likely. Insiders believe Telegram will remain operational due to its support of Kremlin-affiliated channels. Meta, WhatsApp's parent company, has been classified as an extremist organization by the Russian government. ISW has previously reported on the Kremlin's plans for MAX as a national messenger, and if successful, Telegram and other Western social media platforms may also face bans. The Kremlin's strategy aims to isolate and censor Russian citizens while promoting its narratives.