NewApp Digest
search bot

system applications

Someone recreated the Windows 8 Start menu in Linux for some reason
Winsage
January 9, 2026

Someone recreated the Windows 8 Start menu in Linux for some reason

A developer has recreated the Windows 8.1 tiled Start menu for Linux, which is a Python-based application that supports flatpaks, Steam, and native apps. The tiles are movable and customizable in color. The project requires PyQt6 6.10.1 and pynput 1.8.1 to run and has been shared on Pastebin. It aims to replicate about 80% of the original Windows 8 Start menu's functionality, excluding search mode and larger tiles. The menu can be activated with the "super+p" command and remains in the system tray until then. The project has received significant interest, amassing 627 upvotes on a subreddit post.
Google Makes Uninstalling System App Updates More Complicated Than It Needs to Be
AppWizard
December 15, 2025

Google Makes Uninstalling System App Updates More Complicated Than It Needs to Be

Google has removed the "Uninstall updates" button from the Play Store interface for core system apps, requiring users to navigate through the Settings app to roll back updates. This change affects several key system applications, including Android Auto, Android System WebView, and Pixel Camera Services. Users can now only find an "Open" button in the Play Store for these apps. To uninstall updates, users must long-press the app icon, select "App info," tap the three-dot menu, and choose "Uninstall updates." This alteration adds complexity to the process of reverting to earlier app versions.
Malicious Android Photo Frame App Gives Hackers Full Device Control Without User Action
AppWizard
November 14, 2025

Malicious Android Photo Frame App Gives Hackers Full Device Control Without User Action

A security assessment has revealed that digital photo frames using Uhale technology are vulnerable to a new class of malicious Android applications that can take control of devices without user interaction. The pre-installed Uhale app can silently download and execute malware during device booting or software updates due to insecure connections and improper certificate verification. Attackers can intercept network traffic to execute remote code with a critical CVSS score of 9.4, allowing access to private photos and the potential to create botnets. Many affected devices run outdated Android versions (6.0/6.0.1) with SELinux disabled and rooted by default, facilitating privilege escalation and persistent malware installation. Additionally, the Uhale app's unsecured local network file transfer feature allows attackers on the same network to send malicious files or delete files without user consent. Researchers emphasize the need for improved software security in consumer electronics, urging manufacturers to adopt modern Android builds and enforce security protocols. Users are advised to disconnect or update their devices to mitigate risks.
Google tried to kill this Pixel VoLTE-enabling app, but the developer already has a fix
AppWizard
October 14, 2025

Google tried to kill this Pixel VoLTE-enabling app, but the developer already has a fix

In early 2023, a Korean developer launched the "Pixel IMS" app, enabling VoLTE and VoWiFi on unsupported carriers for Pixel users. A recent Google update in October 2025 disrupted this functionality by closing a loophole that allowed the app to access the overrideConfig API, resulting in the app crashing when users tried to toggle these features. The overrideConfig API is restricted to apps with the MODIFYPHONESTATE permission, typically reserved for privileged system applications. The Pixel IMS app had previously used Shizuku, an open-source tool, to gain elevated privileges and access the API. Google reclassified the loophole as a high-severity privilege escalation vulnerability but did not include it in the latest security bulletin. The update added a check to the overrideConfig API, blocking access from the shell user. In response, the developer created a workaround that indirectly calls the API through an Instrumentation component, circumventing the restriction. However, this workaround is vulnerable to future patches from Google, which could remove the necessary permissions from the shell app.
Microsoft is building a new OneDrive app for Windows 11 complete with redesigned gallery interface — here's your first look
Winsage
October 3, 2025

Microsoft is building a new OneDrive app for Windows 11 complete with redesigned gallery interface — here’s your first look

Microsoft is developing a new dedicated OneDrive app for Windows 11, featuring a modern interface focused on photo and video viewing, file management, and editing capabilities. The app was discovered through leaks revealing an executable file named OneDrive.app.exe. Upon launch, it presents a new OneDrive icon on the Taskbar and showcases a photo library with a design that combines Fluent Design principles and web aesthetics. Key features include a Copilot functionality for quick access to chat about files, a gallery tab for photo and video editing, and a Moments feature that displays curated images from previous years. The app has a redesigned gallery mode with a floating menu bar for editing or deleting photos and includes built-in editing tools similar to those in the Windows Photos app. Despite its appealing design, there are questions about its necessity since OneDrive is already integrated into File Explorer and the Photos app. Initial impressions indicate the app performs well for a web-based application, with a scheduled OneDrive event on October 8 that may provide more information about its rollout.
Signal Messenger Impersonated in 'ProSpy' Android Spyware Campaign
AppWizard
October 2, 2025

Signal Messenger Impersonated in ‘ProSpy’ Android Spyware Campaign

ESET researchers have identified two Android spyware campaigns, ProSpy and ToSpy, which masquerade as secure messaging apps, Signal and ToTok. These malware families were first detected in June 2025 and are distributed through phishing websites and fake app marketplaces. ProSpy, which mimics a “Signal encryption plugin” or an enhanced ToTok, extracts sensitive user information, including SMS messages, contacts, and device metadata, after gaining permissions. It disguises itself as “Play Services” to avoid detection. ToSpy, discovered concurrently, seeks to capture specific files related to ToTok backups and collects various document types. Both malware types maintain long-term access to infected devices and have been reported to Google, resulting in Play Protect blocking their known variants. The main targets of these campaigns are users in the United Arab Emirates.
Fire Toolbox 42 lets you make recent Amazon Fire tablets feel more like Android tablets (Disable & replace Amazon apps with
AppWizard
September 30, 2025

Fire Toolbox 42 lets you make recent Amazon Fire tablets feel more like Android tablets (Disable & replace Amazon apps with

Amazon's Fire Tablets are affordable devices that run on a customized version of Android called Fire OS, which is integrated with Amazon's services. Users have sought to modify their Fire tablets, and a new exploit in Fire Toolbox v42 for Windows and v12 for Linux allows enhanced control over system applications without granting root access. This version enables users to block over-the-air updates, ensuring modifications remain intact. Users must enable developer mode, connect their tablet to a PC, and use Fire Toolbox for modifications. Important considerations include the lack of support from Amazon for any issues arising from these modifications. Users are advised to block OTA updates to maintain customization capabilities.
Microsoft is finally updating this decade old File Explorer interface with a new color that better fits dark mode on Windows 11 — let's take a first look
Winsage
September 10, 2025

Microsoft is finally updating this decade old File Explorer interface with a new color that better fits dark mode on Windows 11 — let’s take a first look

Microsoft is updating the dark mode experience in Windows 11, introducing a new blue progress indicator for file operations like copying and deleting files in dark mode, replacing the long-standing green indicator. This change is part of ongoing efforts to enhance dark mode functionality, which has been inconsistent since its introduction in Windows 10. The new blue color is currently exclusive to dark mode, while light mode continues to use green. There are hopes for further updates to other legacy components, such as Control Panel and Registry Editor, but there is no indication that file property windows will receive similar updates soon. The upcoming Windows 11 feature update, version 25H2, is expected to maintain the same features as version 24H2, meaning the new dark mode interfaces may appear in future updates.
Android 16 will soon let you know which apps use Advanced Protection features (APK teardown)
AppWizard
August 27, 2025

Android 16 will soon let you know which apps use Advanced Protection features (APK teardown)

Google has launched an "Advanced Protection" mode in Android 16 to enhance security by preventing unauthorized app installations, restricting USB access, and disabling insecure connections. A new interface is being developed within the Settings > Security and privacy > Advanced protection menu to display a list of applications that can verify the status of the Advanced Protection feature. This functionality was found in the code of version 25.33.32 beta of Google Play Services, but is not yet publicly available. Currently, the list includes mainly Google applications like Chrome, Play Store, Messages, and Phone, with expectations for third-party applications to be included in the future. The feature is compatible with all devices running Android 16, allowing other manufacturers to enhance security, as seen with Samsung's One UI 8 integration. The list of applications will help users understand which apps have additional security features enabled and may influence their decision to disable Advanced Protection for certain functionalities.
Search