SMS Archives

Winsage

May 2, 2025

Microsoft Warns Windows Users—Delete Your Password

Microsoft aims to eliminate passwords for a billion users, promoting the use of passkeys that enhance account security by linking it to physical devices. The company warns that password-related attacks are increasing and emphasizes that having both a passkey and a password leaves accounts vulnerable to phishing. On World Password Day, Microsoft encourages users to abandon passwords entirely. The FIDO Alliance supports this initiative with a "Passkey Pledge," highlighting that over 35% of individuals have faced account compromises due to password vulnerabilities. Research shows that 54% of those familiar with passkeys find them more convenient, and 53% believe they offer better security. Microsoft will make new accounts passwordless by default and encourages existing users to remove their passwords. Passkeys are described as easy to use, intuitive, and resistant to phishing. For those who continue to use passwords, Microsoft advises making them long and complex and using authentication apps for two-factor authentication.

AppWizard

April 29, 2025

This is the notification manager Google should’ve built for Android years ago

Buzzkill is a premium application designed to help users manage notifications on their devices through customizable "rules." It allows users to dictate responses to notifications based on the application sending them, the content of the notification, and the desired action. Buzzkill offers 25 actions, including dismissing notifications, obfuscating content, reading notifications aloud, and triggering device functions. Users can create rules to suppress spam, prioritize important messages, copy one-time PINs, batch news notifications, and manage smartwatch alerts. The app is priced at .99 and requires regular updates and adjustments to maintain effectiveness.

AppWizard

April 28, 2025

For Android users: How to secure your Instagram account

Two-factor authentication (2FA) enhances online account security by requiring a second form of verification in addition to a password. To enable 2FA on Instagram, users should: open the app, go to their profile, tap the menu icon, select "Settings," navigate to "Security," and choose "Two-Factor Authentication." Users can receive verification codes via text message or an authentication app. This measure helps protect accounts even if a password is compromised.

AppWizard

April 25, 2025

12 Android apps secretly recorded your conversations

Recent findings from cybersecurity experts at ESET revealed that several Android applications, disguised as harmless tools, have been secretly recording conversations and stealing sensitive data. These malicious apps infiltrated devices through the Google Play Store and third-party platforms, compromising the privacy of thousands of users. One tactic used by cybercriminals involved romantic deception, where victims were coaxed into downloading a seemingly harmless messaging app containing the VajraSpy Trojan, which activated upon installation to record conversations and harvest personal data. The identified malicious apps fall into three categories: 1. Standard Messaging Apps with Hidden Trojans: These apps, including Hello Chat, MeetMe, and Chit Chat, request access to personal data and operate silently in the background, stealing contacts, SMS messages, call logs, device location, and installed app lists. 2. Apps Exploiting Accessibility Features: Apps like Wave Chat exploit Android’s accessibility features to intercept communications from secure platforms, record phone calls, keystrokes, and ambient sounds. 3. Single Non-Messaging App: Nidus, a news app, requests a phone number for sign-in and collects contacts and files, increasing the risk of data theft. The 12 malicious Android apps identified include: Rafaqat, Privee Talk, MeetMe, Let’s Chat, Quick Chat, Chit Chat, YohooTalk, TikTalk, Hello Chat, Nidus, GlowChat, and Wave Chat. The first six apps were available on the Google Play Store and had over 1,400 downloads before removal. Users are advised to uninstall these apps immediately to protect their personal data.

AppWizard

April 16, 2025

The App Apocalypse: Why Messaging Will Replace Retail Apps in 2025

Standalone retail apps are predicted to become obsolete by 2025 due to advancements in Rich Communication Services (RCS) technology, which will enhance business-consumer interactions. RCS combines SMS simplicity with app interactivity, allowing consumers to engage with brands through enriched messaging experiences without needing to open separate apps. The development and maintenance costs of retail apps are significant, leading brands to reconsider their value as messaging offers similar or superior engagement at lower costs. By 2026, many brands are expected to adopt messaging-first strategies.

Winsage

April 11, 2025

Microsoft Re-releases Recall for Windows Insiders Alongside New Copilot+ Features

Microsoft has begun rolling out the Recall feature in Insider build version 26100.3902 after addressing previous security vulnerabilities. The Recall feature uses Neural Processing Units (NPUs) in Copilot+ PCs to capture screenshots and convert them into natural language descriptions for improved productivity. The new build also introduces the Click to Do feature for Snapdragon-powered PCs, enhances Phone Link functionality for easier content sharing, and includes the Windows Share feature for quick image edits before sharing. The rollout of these features will be gradual.

AppWizard

April 10, 2025

SpyNote Android malware resurfaces in campaign using spoofed app install pages

A report from DomainTools LLC reveals that cybercriminals are using newly registered domains to distribute the SpyNote Android remote access trojan (RAT) by creating fake websites that resemble legitimate Google Play app installation pages. These counterfeit pages often include familiar visual elements to deceive users into downloading harmful APK files, such as a site mimicking the TikTok installation page. The downloaded files typically contain variants of SpyNote, which can conduct surveillance, harvest sensitive information, and execute remote commands on compromised devices. The delivery mechanism involves a two-stage process where a dropper APK installs a secondary APK with core spyware functionalities, utilizing JavaScript to trigger downloads from fake install buttons. Common characteristics of the domains distributing SpyNote include registration with NameSilo LLC and XinNet Technology Corp., hosting on infrastructure linked to Lightnode Ltd and Vultr Holdings LLC, and the presence of SSL certificates. The malware delivery sites contain code in both English and Chinese, suggesting a Chinese-speaking threat actor may be involved. SpyNote has been associated with advanced persistent threat groups targeting individuals in South Asia, including those in the Indian defense sector. Once installed, SpyNote requests intrusive permissions to access SMS, contacts, call logs, camera, microphone, and location services, and employs persistence mechanisms that make it difficult to remove. DomainTools advises users to be vigilant against spoofed app pages and avoid sideloading APKs from unverified sources.

Tech Optimizer

April 7, 2025

Scanguard

Scanguard is owned by Total Security LTD and offers a comprehensive security and optimization suite that includes virus protection, system performance improvements, junk file removal, a password vault, and a VPN. Its security features include real-time protection against malware, ransomware, spyware, and adware, facilitated by specialized guards. A free version is available for Windows, but it has limitations regarding update speed. The initial scan on a 512 GB SSD takes under five minutes and covers various checks. The app prompts users to upgrade for certain features, although discounts are available for first-time users. Core features include Malware Guard, Ransomware Guard, Spyware Guard, Aware Guard, and WebShield for real-time protection against malicious sites. Scanguard also offers identity theft protection services and a system optimizer that cleans junk files and manages applications. An Android app is available, but there is no iPhone app, and the Android version must be downloaded from the Scanguard website. Scanguard's pricing includes a free version and a paid plan with a promotional rate for the first year, with payment through PayPal. The paid plan offers real-time protection, cloud-based threat detection, and customer support. Recent evaluations show a detection rate of 96.94% in a VB100 test, with a 0.000% false alarm rate, but it is not currently VB100 certified. The user interface is modern and intuitive, though the installation process may take time due to database updates.

Winsage

April 5, 2025

Microsoft Confirms Password Deletion For Windows Users—What You Do Now

Microsoft is transitioning away from passwords to enhance security, encouraging users to adopt passkeys. Passkeys are securely stored secrets on a user's device, unlocked through biometrics, PINs, or patterns, making them resistant to phishing and eliminating the need for complex passwords. Users can set up passkeys by signing into their Microsoft account's Advanced Security Options or Security Info, selecting a sign-in method, and following on-screen instructions. Once established, signing in is straightforward, requiring only the chosen authentication method. Microsoft is prioritizing passkeys for new accounts and refining its sign-in logic to improve efficiency, with passkeys being three times faster than traditional passwords. Passkeys can be used across devices and applications that support them, with Windows Hello facilitating authentication.

AppWizard

March 31, 2025

Android users ALERT! Google has an update but you need to stop installing THESE apps?

Google's AI-driven threat detection and security measures blocked approximately 2.36 million policy-violating applications from being released on the Play Store last year. In February, Google removed hundreds of malicious applications that were infecting devices with adware and malware. Over 50 times more Android malware originates from internet-sideloaded sources compared to those found on the Play Store. Google is expanding its Play Protect feature across all applications and the upcoming Android 15 will introduce live threat detection. Sophos warned about PJobRAT malware, which can steal SMS messages, contacts, and files from infected Android devices. Experts advise against sideloading apps unless their legitimacy and security are certain.