sensitive content Archives

Winsage

February 27, 2026

Is Microsoft really spying on you with Windows telemetry?

Windows 10 was released in 2015 and faced criticism for its telemetry feature, which some viewed as a surveillance tool. In 2017, the Dutch Data Protection Authority found Microsoft's telemetry settings non-compliant with local privacy laws, leading to changes by Microsoft. Telemetry, termed diagnostic data by Microsoft, is essential for device reliability and security, with a baseline level of data collection set to "Required." Users can opt to limit data collection to this level. The Optional category of diagnostic data may include device settings and browsing history, raising privacy concerns. Microsoft introduced the Diagnostic Data Viewer in 2018 to enhance transparency, allowing users to inspect the telemetry data sent to them. As of now, Microsoft has over a billion monthly active Windows 11 users.

AppWizard

February 19, 2026

New ‘Massiv’ Android banking malware poses as an IPTV app

A new strain of Android banking malware called Massiv is disguised as an IPTV application to steal digital identities and access online banking accounts. It uses screen overlays and keylogging techniques to capture sensitive information and can take remote control of compromised devices. Massiv has been observed targeting a Portuguese government application related to Chave Móvel Digital, which contains user data that could bypass know-your-customer (KYC) verifications. The malware allows fraudsters to open accounts in the victim's name at new banks and services, enabling money laundering and loan acquisition. Massiv features two remote control modes: a screen live-streaming mode and a UI-tree mode that extracts structured data from the Accessibility Service. There has been an increase in the use of IPTV applications as bait for Android malware infections, with many of these apps serving as droppers for the malware. The fake IPTV apps primarily target users in Spain, Portugal, France, and Turkey. Users are advised to download applications only from reputable sources and keep security measures active.

AppWizard

January 26, 2026

Future Android Update Could Make Your Notifications More Private Than Ever

Android Authority has reported on a forthcoming App Lock feature expected to debut with Android 17, which will enhance user privacy by allowing management of app notification content. Code found in the January developer build of Android Canary 2601 indicates that while apps protected by App Lock will still send notifications, sensitive content will be obscured. Notifications may only show generic alerts like "New message" or "New notification." Users can secure individual apps with a password, PIN, or biometric lock, and can choose to disable notifications from locked apps entirely. This feature is anticipated to first appear on Google Pixel devices, with uncertain availability on other brands. App Lock will function even when the phone is unlocked, distinguishing it from existing privacy features like Private Space, which requires apps to be relocated to a secure area. Currently, developers implement their own app locks, but App Lock aims to provide a universal solution for securing any app on a device.

AppWizard

January 21, 2026

OpenAI enhances safety, rolls out age prediction measures in ChatGPT

OpenAI has introduced "Age Predictions" in ChatGPT for EU users, which assesses account-level factors to estimate a user's age and restrict access to sensitive content for those identified as under 18. The feature uses various indicators, including stated age and usage patterns, to enhance user safety. If a user is mistakenly restricted, they can undergo an age verification process via a service called Persona. OpenAI is also implementing additional parental controls for managing teen accounts, such as setting "quiet hours" and monitoring AI retention of information. Furthermore, OpenAI plans to launch a ChatGPT Go subscription tier in the U.S. with higher usage limits and will introduce advertisements within ChatGPT conversations, ensuring that user conversations are not used for ad targeting.

AppWizard

January 21, 2026

Age verification expands in gaming: Minecraft selects Yoti, Discord tests Persona

Minecraft players in the UK with adult accounts will be required to complete an age verification process starting in February to access social features like chat. Microsoft is notifying players via email, and Yoti will handle the verification. Players who do not complete the verification will still have access to the game and its other features. Critics have raised concerns about age verification systems, citing risks such as data breaches and identity fraud. Yoti has successfully implemented age checks for Fortnite since 2023 without reported breaches. Discord is also implementing age checks in Australia, using k-ID technology, while Roblox employs Persona’s facial age estimation for chat access, facing issues with the system's reliability.

AppWizard

October 28, 2025

What’s new in Android’s October 2025 Google System Updates [U]

The monthly “Google System Release Notes” detail updates for various platforms, including Play services, Play Store, and Play system updates for Android devices, Wear OS, Google/Android TV, Auto, and PC. Features may target end users or developers, and their presence in the changelog does not guarantee immediate availability. Key updates include: - Google Play services v25.42 introduces new developer APIs for multi-device experiences and enhanced device connectivity. - Google Wallet has a revamped user interface for feedback and now supports provisioning a Wavelynx corporate badge. - Android WebView v142 includes security and privacy enhancements and new developer features for web content display. - Google Play services v25.41 adds developer features for ads, allows mobile reCAPTCHA verification, and enables users to add cards through issuer apps. - Google Play Store v48.5 allows personalized app content viewing and in-app purchases in Mongolia. - Android System Intelligence V.39 includes maintenance and bug fixes. - Google Play services v25.40 supports Maps-related processes and allows pairing of LE Audio devices. - Google Play services v25.39 introduces Quick Start for supervised accounts and updates to user journeys and profile picture design.

AppWizard

October 10, 2025

Fake WhatsApp and TikTok apps are trying to fool Android users into downloading spyware — don’t fall for this

A spyware campaign is disguising itself as popular applications like TikTok, YouTube, and WhatsApp to lure users into downloading the ClayRat spyware. This campaign uses Telegram channels for distribution and employs fake download counts and testimonials on malicious websites. Discovered by Zimperium, the spyware requires users to set it as their default SMS application, allowing it to access sensitive information and spread further. The campaign is primarily targeting Russian users, with at least 600 samples and 50 droppers detected in the last 90 days. The malware uses obfuscation techniques to evade detection. Android users with Google Play Protect have some protection, but best practices for online safety are recommended, such as using reputable app sources and avoiding suspicious links.

AppWizard

October 10, 2025

This devious Android malware spoofs WhatsApp, TikTok and more – here’s how to stay safe

A new strain of malware called ClayRat has emerged, targeting Android users, particularly in Russia, by disguising itself as popular applications like WhatsApp, TikTok, Google Photos, and YouTube. It exploits SMS handler capabilities to gain access to sensitive information without user consent and spreads through the victim's contact list. Over 600 variants of ClayRat have been identified. Users are advised to download apps only from trusted sources, check app legitimacy through reviews, use antivirus tools, and manage app permissions to protect personal data.

AppWizard

October 9, 2025

New ClayRat Spyware Targets Android Users via Fake WhatsApp and TikTok Apps

A sophisticated Android spyware campaign called ClayRat is targeting users in Russia through Telegram channels and deceptive phishing websites that mimic popular applications like WhatsApp and TikTok. Once activated, ClayRat can exfiltrate sensitive data such as SMS messages and call logs, access device information, take photos, and send messages or make calls from the victim's device. It propagates by sending malicious links to all contacts in the victim's phone book. Over the past 90 days, Zimperium has identified over 600 samples and 50 droppers of ClayRat, which uses advanced obfuscation techniques to evade detection. The malware redirects users to fraudulent websites leading to Telegram channels, where they are lured into downloading APK files. Some samples function as droppers, displaying counterfeit Play Store update screens while concealing the actual payload. Once installed, ClayRat communicates with its command-and-control infrastructure and can capture sensitive content, making infected devices automated distribution nodes. Additionally, a study by researchers from the University of Luxembourg and Université Cheikh Anta Diop found that pre-installed applications on budget Android smartphones sold in Africa operate with elevated privileges, with 9% disclosing sensitive data and 16% exposing critical components without safeguards.

AppWizard

October 1, 2025

Amazon’s forgotten MMO is getting a huge update, but there’s a nasty catch

Lost Ark, developed by Amazon Games, is facing player dissatisfaction due to the game's time-sensitive content, RNG mechanics for gear upgrades, and the need for separate accounts for each server. It currently has a 'mixed' rating on Steam, with 67% of English-language reviews being positive. Developer Smilegate has announced a roadmap for new content, including the Kazeros raid, which will begin with a prologue questline this month and culminate in November with an eight-player, two-gate raid requiring high-level gear. Additionally, a series of quality-of-life updates and holiday-themed cosmetics are planned for December. To help new players, Smilegate will introduce progression events and a Mokoko bootcamp. Before the Kazeros raids, the NA East and NA West regions will be merged, leading to potential downtime and enforced name changes for players with duplicate usernames. Smilegate also plans to release additional names from inactive accounts later this year or early next year.