Southeast Asia Archives

BetaBeacon

December 31, 2025

Best Android Games To Play When You’re Stuck Waiting in Coffee Shops, During Commutes & More

- Candy Crush Saga is a popular casual Android game that combines strategy with chance. - Roblox and Minecraft are digital playgrounds where players can create and explore unique worlds. - Five Nights at Freddy's is a horror game that has gained popularity for its simple mechanics and tense gameplay. - Garena's Free Fire is a popular battle royale game on Android with over a billion downloads. - There are many other great Android games for short gaming sessions that cater to different preferences and needs.

Winsage

December 18, 2025

China-Aligned Threat Group Uses Windows Group Policy to Deploy Espionage Malware

A newly identified cyber threat cluster called LongNosedGoblin has been linked to cyber espionage attacks targeting governmental entities in Southeast Asia and Japan, with activities traced back to at least September 2023. The group uses Group Policy to spread malware and employs cloud services like Microsoft OneDrive and Google Drive for command and control. Key tools include NosyHistorian, NosyDoor, NosyStealer, NosyDownloader, and NosyLogger, which perform functions such as collecting browser history, executing commands, and logging keystrokes. ESET first detected LongNosedGoblin's activities in February 2024, identifying malware on a governmental system. The attacks showed a targeted approach, with specific tools affecting select victims. Additionally, a variant of NosyDoor was found targeting an organization in an EU country, indicating a possible connection to other China-aligned threat groups.

Winsage

December 5, 2025

Windows 10 Support Ending: Windows 11 Upgrade Guide

- Before upgrading to Windows 11, it is essential to update Windows 10 to ensure a smoother migration process. - A USB flash drive with a minimum capacity of 8GB is needed if using the Media Creation Tool method for the upgrade. - A stable internet connection is crucial for downloading the upgrade, especially in Malaysia, where the download size is substantial. - The upgrade can be performed through three methods: Windows Update Automatic Upgrade, Media Creation Tool Installation, and Clean Installation Process. - A clean installation will erase all files on the device, so backing up important data is necessary before proceeding. - Users should complete their Windows 11 upgrade before October 14, 2025, to avoid potential issues after support ends. - Businesses can utilize Microsoft Endpoint Manager for remote upgrades and should verify device compatibility with Windows 11. - The upgrade from Windows 10 to Windows 11 is free for users with a valid Windows 10 license. - If a device does not meet the requirements for Windows 11, transitioning to a compatible PC or laptop is recommended. - Users can roll back to Windows 10 within 10 days of upgrading, but after that, a clean installation is required to revert. - The upgrade process typically takes 20 to 40 minutes, depending on hardware and internet speed. - Most applications that work on Windows 10 will continue to function on Windows 11, but testing critical applications is advised. - Backing up files before the upgrade is essential, with recommendations for both cloud and physical storage solutions. - Upgrading to Windows 11 provides enhanced security features, such as improved virus protection, biometric authentication, and encrypted storage. - The end of Windows 10 support on October 14, 2025, impacts compliance, insurance coverage, productivity tools, remote work capabilities, and vendor support for businesses. - HP Malaysia offers a range of devices for users needing to transition to Windows 11-compatible PCs or laptops.

AppWizard

November 25, 2025

Live-action Far Cry TV series starring It’s Always Sunny’s Rob Mac will mimic the games’ standalone format, with each season given ‘a new setting following a new cast of characters’

Ubisoft has confirmed the development of a live-action Far Cry television series, co-created by Noah Hawley and Rob McElhenney. The series will follow the structure of the games, with each season set in a different location and featuring a new cast of characters. Hawley describes the Far Cry franchise as an anthology, while McElhenney will serve as an executive producer and star in the series. The creative team has a variety of locations to draw inspiration from, including Micronesia, Central Africa, Southeast Asia, and Montana. This adaptation follows a previous film attempt in 2008 and a recent Netflix animated series that received positive feedback.

AppWizard

November 15, 2025

Google launches a mandatory program to verify Android app developers outside its official store

Google is launching a new program to verify the identities of developers distributing apps outside the Google Play store, while still allowing advanced users to install unverified apps. The program is currently in an early access phase for developers outside the Play store, with invitations for developers on the Play store starting on November 25, 2025. Google aims to combat fraud and malware, particularly in emerging markets, by ensuring that a real person or organization is behind each app. The company is also creating a simpler account type for students and hobbyists and a dedicated path for advanced users to install unverified apps with clear warnings. This change is intended to enhance security while maintaining user choice and flexibility in app installation. Developers will need to join the verification program to gain wider exposure, and users will have clearer identities for developers, leading to greater protection against fraud.

AppWizard

November 13, 2025

Android will let ‘experienced users’ sideload unverified apps as Google makes case for verification

In August, Google announced plans to implement developer verification for Android applications, including those installed via sideloading, with early access available immediately. The company is creating an advanced flow for experienced users that allows them to accept risks associated with installing unverified software while resisting coercion from scammers. This feature will include clear warnings about the risks involved. Google is gathering early feedback on this design and plans to share more details later. The importance of developer verification is highlighted, as it helps protect users from manipulation by scammers, who often use high-pressure tactics to bypass security warnings. An example of such a scam in Southeast Asia involves scammers posing as bank representatives to trick victims into installing malware disguised as a verification app. Google believes that requiring verification will force malicious actors to use real identities, making it harder and more costly to distribute malware. Additionally, Google is developing a dedicated account type for students and hobbyists to facilitate limited app distribution without full verification requirements.

AppWizard

November 4, 2025

Crusader Kings 3 wastes no time improving its new DLC, and I can’t wait to force my medieval kids to go to school

Crusader Kings 3 has released the expansion All Under Heaven, which introduces cultures from China, Japan, and Southeast Asia and has received 'mostly positive' reviews on Steam. Developer Paradox is implementing hotfixes and balance patches and planning a significant update. The expansion features a new gameplay mechanic allowing players to "Command Family to take Exams" to enhance family dynamics. Update 1.18.0.2 improves the Celestial Government in China by removing maintenance penalties for Men-at-Arms and armies, providing the Chinese Emperor with greater flexibility in strategic maneuvers, and allowing players to reject tributary missions. Future updates include 1.18.1, which will enhance visuals for Southeast Asia, and 1.18.2, expected at the end of November.

Winsage

October 31, 2025

Windows LNK UI Spoofing Vulnerability Weaponized for Remote Code Execution

A cyber espionage campaign targeting European diplomatic institutions has been attributed to the Chinese-affiliated threat actor UNC6384, which exploits the ZDI-CAN-25373 vulnerability in Windows shortcut files. The campaign, noted for its use of social engineering tactics that mimic legitimate diplomatic events, has specifically targeted entities in Hungary, Belgium, and surrounding European nations between September and October 2025. The attack utilizes spearphishing emails with malicious LNK files related to European Commission and NATO meetings, leading to the deployment of PlugX, a remote access trojan. The attack chain involves a weaponized LNK file that executes PowerShell commands to unpack a tar archive containing a malicious DLL and an encrypted payload. UNC6384 employs advanced techniques to evade detection, including dynamic loading of Windows API functions and anti-analysis measures. The malware allows extensive espionage activities and creates hidden directories for persistent access. Recommendations for organizations include disabling automatic LNK file resolution, blocking known command and control domains, and enhancing user training to defend against such threats.

Winsage

October 31, 2025

Windows LNK UI Spoofing Vulnerability Weaponized for Remote Code Execution

A cyber espionage campaign has been launched by the Chinese-affiliated threat actor UNC6384, targeting European diplomatic institutions using a vulnerability in the Windows shortcut (LNK) user interface, identified as ZDI-CAN-25373. This vulnerability was disclosed in March 2025. Between September and October 2025, entities in Hungary, Belgium, and neighboring European nations were specifically targeted. The attack utilizes spearphishing emails with conference-themed LNK files that exploit the Windows vulnerability to execute PowerShell commands, leading to the deployment of the PlugX remote access trojan (RAT). The attack sequence involves a weaponized LNK file that unpacks a tar archive containing a legitimate Canon printer assistant executable, a malicious DLL, and an encrypted payload. The Canon binary, despite being digitally signed, loads the malicious DLL which injects the PlugX payload into memory. The malware employs anti-analysis techniques and creates a hidden directory for persistent access. Recommendations for organizations include disabling automatic LNK file resolution, blocking known command and control domains, and monitoring for DLL side-loading attacks.

Winsage

October 31, 2025

Windows zero-day actively exploited to spy on European diplomats

A China-linked hacking group, identified as UNC6384 or Mustang Panda, is exploiting a Windows zero-day vulnerability (CVE-2025-9491) to target European diplomats, particularly in Hungary, Belgium, Serbia, Italy, and the Netherlands. The attacks are initiated through spearphishing emails that disguise malicious LNK files as legitimate invitations to NATO and European Commission events. Once activated, these files allow the deployment of the PlugX remote access trojan (RAT), enabling persistent access to compromised systems for surveillance and data extraction. The vulnerability requires user interaction to exploit and resides in the handling of .LNK files, allowing attackers to execute arbitrary code remotely. As of March 2025, the vulnerability is being exploited by multiple state-sponsored groups and cybercrime organizations, but Microsoft has not yet released a patch for it. Network defenders are advised to restrict the use of .LNK files and block connections from identified command-and-control infrastructure.