tactics Archives

Winsage

July 29, 2025

Microsoft mysteriously offered a Windows 11 upgrade to this unsupported Windows 10 PC — despite it failing to meet the “non-negotiable” TPM 2.0 requirement

Microsoft launched Windows 11 in 2021, facing criticism for its minimum system requirements and design flaws compared to Windows 10. Windows 11 recently surpassed Windows 10, capturing a 50.88% share of the desktop operating system market. An unusual incident reported by BornCity indicated that Microsoft offered an upgrade to Windows 11 for unsupported hardware, despite its strict requirement for a Trusted Platform Module (TPM) 2.0 for security. Microsoft has not changed its requirements and continues to promote Windows 11, especially as support for Windows 10 will end on October 14, 2025. Users can enroll in the Windows 10 Extended Security Updates program for a fee or sync settings with a Microsoft Account for an additional year of free updates. The Public Interest Research Group (PIRG) has petitioned Microsoft to reconsider ending support for Windows 10, warning of potential increases in discarded computers, but Microsoft has shown little inclination to reverse its decision or relax Windows 11's hardware requirements.

Winsage

July 29, 2025

Windows 10 is 10 years old today — let’s look back at 10 controversial and defining moments in its history

On July 29, 2015, Microsoft unveiled Windows 10, integrating the live tile interface with the classic Start menu and focusing on the desktop experience. It was developed with public collaboration through the Windows Insider Program. Microsoft offered a free upgrade to Windows 7 and 8 users for one year, which was later extended until 2023, resulting in 100 million devices running Windows 10 within two months of its launch. The "Get Windows 10" app aggressively promoted the upgrade, leading to user backlash and its eventual removal. Windows 10 faced criticism for extensive data collection practices, with no option for complete telemetry disablement. It introduced "Windows as a Service" with a biannual update schedule, though it faced issues, including data loss in the October 2018 Update. The OneCore project aimed to create a universal Windows core for various devices but ultimately faltered. The dark mode feature had inconsistencies, and Windows 10 Mobile struggled in the smartphone market, leading to its discontinuation in 2017. The Universal Windows Platform (UWP) faced adoption challenges, and the Fluent Design System delivered minimal updates. The My People feature was disabled by default due to poor adoption rates. Windows 10 played a crucial role in shaping the current Windows landscape and laid the groundwork for future developments.

AppWizard

July 29, 2025

ANDROID MALWARE POSING AS INDIAN BANK APPS

The report discusses a sophisticated Android malware targeting users in India, which disguises itself as legitimate banking applications to steal credentials and conduct unauthorized financial activities. The malware employs advanced techniques such as silent installation, exploitation of Android permissions, and remote command execution to avoid detection. It utilizes Firebase for command-and-control operations and phishing pages that mimic real banking interfaces. The malware consists of a modular architecture with a dropper and a main payload. The dropper requests several Android permissions, including ACCESSNETWORKSTATE, REQUESTINSTALLPACKAGES, and QUERYALLPACKAGES, which facilitate reconnaissance and persistence. The dropper uses a silent installation mechanism to load additional payloads without user awareness. The main payload requests permissions that enable data theft and stealthy operation, such as READSMS, SENDSMS, and RECEIVEBOOTCOMPLETED. It hides itself from the user's app list and employs separate classes for specific malicious tasks, including harvesting user credentials and collecting debit card information. The phishing page mimics a legitimate banking app to capture user data effectively. The malware also monitors incoming SMS messages, extracts critical metadata, and can silently forward calls to an attacker-controlled number. A specific APK sample impersonating an Indian banking application was observed on April 3, 2025, highlighting ongoing trends in mobile-based credential theft and financial fraud. Recommendations include enforcing stricter mobile application security standards, launching public awareness campaigns, implementing threat intelligence-driven filtering, and deploying mobile endpoint detection solutions.

AppWizard

July 28, 2025

Kung fu action game Phantom Blade Zero’s has my new favorite take on hard mode balance: Beating it ‘in a very beautiful manner’ is the true challenge

During a preview event in Beijing, gameplay in Phantom Blade Zero showcased a transition from novice to skilled player, successfully completing an hour-long demo on "Hellwalker" difficulty. The game emphasizes aesthetic elegance and engaging gameplay, offering a more forgiving experience compared to traditional Soulslike titles. It features fluid, dance-like combat and allows for success through straightforward tactics, while also presenting a challenge for those aiming for mastery. The AI adapts dynamically to player actions, incorporating a 'lucky draw' mechanic where boss attacks depend on previous hits, and can recognize its disadvantage in combat. The game includes diverse boss encounters, with some exhibiting intelligent behavior and others relying on brute force, requiring players to adapt their strategies accordingly.

AppWizard

July 27, 2025

Inside Putin’s attempt to construct a ‘digital gulag’ spy app to snoop on Russians

The new messenger app Max, developed by VK, will be a standard feature on all new digital devices sold in Russia starting this September. It aims to integrate messaging, video calls, government services, and mobile payments. Experts express concerns that Max could enhance Kremlin surveillance capabilities, as its servers will be governed by local laws allowing the FSB to access user data. There is an increasing likelihood of a ban on WhatsApp, which is currently used by over 70% of Russians, as part of a strategy to promote Max. Opposition journalist Andrey Okun describes Max as a tool for creating a "digital gulag," while experts note it normalizes state surveillance of internet usage in Russia. The Russian government has designated WhatsApp as an extremist organization, and tactics may be employed to transition users to Max. Although the shift may not change the organized opposition landscape significantly, it could discourage casual dissent. Historically, the government has attempted to block services like Telegram, with renewed efforts expected by the end of the year.

AppWizard

July 26, 2025

Total War: Warhammer 3’s siege rework beta is live now and runs into August, letting you have your say on pocket ladder prohibition, battle AI improvements, and more

Creative Assembly has launched the beta phase of the Siege Rework for Total War: Warhammer 3, named the Proving Grounds Siege Beta, available for download on Steam. Key changes include the removal of "pocket ladders," a siege equipment rebalance allowing for more siege towers and battering rams, enhanced wall towers with increased lethality but reduced firing range, improved Battle AI addressing over 50 issues, and refined siege maps for better gameplay. The beta will last for two weeks, ending on August 7, and players can activate it through the Steam library. The focus on the siege overhaul has delayed the release of the Tides of Torment DLC to later this year.

Tech Optimizer

July 26, 2025

The best Android antivirus apps of 2025: Expert tested

Cyber threats targeting smartphones have evolved to include sophisticated malware and ransomware, with Android being particularly vulnerable to cyberattacks compared to iOS. Google recommends downloading apps only from the official Play Store, but some malicious applications can bypass these security measures. To protect Android devices from malware, investing in a reliable antivirus app is essential. Bitdefender Mobile Security is currently the top-rated Android antivirus app with a 4.7-star rating on Google Play, offering features like real-time web protection and app scanning. A free version is available, but a subscription is required for enhanced features. Sophos Intercept X for Mobile is a commendable free option with a 3.9-star rating, providing threat scanning and app protection. Other notable antivirus apps include Avast Security and Virus Cleaner, which has a 4.6-star rating and features a web shield and junk removal, and Malwarebytes Mobile Security, also rated 4.6 stars, known for its quick scans and digital footprint service. Norton360, with a 4.6-star rating, offers a comprehensive suite of features including antivirus scanning and a VPN. The best Android antivirus apps of 2025 include: - Bitdefender Mobile Security: Free, per year, 4.7 stars, 448K reviews - Sophos Intercept X: Free, 4.1 stars, 47.1K reviews - Avast: Ad-supported free, 4.6 stars, 7.34M reviews - Malwarebytes: Free, per year, 4.6 stars, 423K reviews - Norton360: Paid plans, 4.6 stars, 1.92M reviews The mobile malware landscape has reportedly increased by 151% since the beginning of 2025, with Google taking legal action against the BadBox 2.0 botnet targeting IoT devices, including Android. A new malware variant named ClickFix is also emerging, affecting macOS, Android, and iOS platforms. Relying solely on built-in protection and the Google Play Store is not advisable; a reputable antivirus app is recommended for additional security.

AppWizard

July 25, 2025

Fake Indian Banking Apps on Android Steal Login Credentials from Users

A recently discovered malicious Android application poses significant risks by masquerading as legitimate banking apps in India. It facilitates credential theft, conducts surveillance, and executes unauthorized financial transactions. The malware operates on a modular architecture with a dropper and primary payload, employing deceptive user interfaces and silent installation techniques to evade detection. The dropper requests extensive permissions, including ACCESSNETWORKSTATE, REQUESTINSTALLPACKAGES, and QUERYALLPACKAGES, to monitor connectivity, install secondary APKs without user awareness, and profile installed apps. It loads a hidden payload and initiates installation using an INSTALL_NOW flag, bypassing app store scrutiny. The main payload requests additional permissions such as READSMS, SENDSMS, and RECEIVESMS for intercepting one-time passwords (OTPs) and two-factor authentication (2FA) codes. It also requests REQUESTIGNOREBATTERYOPTIMIZATIONS, READPHONESTATE, and READPHONENUMBERS for uninterrupted execution, device fingerprinting, and potential call forwarding abuse. Data exfiltration occurs through Firebase Realtime Database, storing user IDs and intercepted SMS metadata. The malware uses Firebase for command-and-control operations and generates phishing pages resembling authentic banking interfaces. Delivery methods include smishing, email phishing, WhatsApp bots, vishing calls, SEO-poisoned websites, malvertising, Trojanized utilities, QR/NFC attacks, preloaded malware on counterfeit devices, and exploitation of accessibility service vulnerabilities. Indicators of compromise include specific SHA256 hashes for the base payload and main payload.

AppWizard

July 25, 2025

Malicious Android Apps Mimic as Popular Indian Banking Apps Steal Login Credentials

Attackers are exploiting India's reliance on digital financial services by distributing counterfeit Android applications resembling those of public and private banks. This campaign, detected on April 3, 2025, employs methods like smishing texts, QR codes, and search-engine manipulation to trick users into sideloading malicious software. Within 48 hours of discovery, over 7,000 devices attempted to connect to a specific Firebase Cloud Messaging endpoint. The malware uses permissions to bypass security measures, capture one-time passwords, and gain insights into installed applications for overlay attacks. It collects sensitive information such as phone numbers and CVVs, which are uploaded to a private database. The malware also enables call forwarding to the attacker's number and maintains persistence through various tactics. The infection mechanism involves a dropper that installs a secondary APK silently, evading detection by not displaying a launcher icon. Security experts recommend enhanced phishing detection and real-time sandbox analysis to combat these threats.

AppWizard

July 25, 2025

Google faces new EU antitrust complaint over restrictions on removing pre-installed Android apps

A coalition of five digital rights and privacy organizations has filed a complaint against Google under the European Union’s Digital Markets Act (DMA), alleging that the company restricts user autonomy on Android devices by making it difficult to remove or disable pre-installed applications like Google Search, Chrome, and Maps. The complaint claims that Google, designated as a ‘gatekeeper’ under the DMA, fails to comply with legal obligations to allow users to uninstall default services easily. Users reportedly face hidden settings, complicated instructions, and misleading warnings when trying to disable Google apps, which the coalition argues are designed to keep users reliant on Google's services. The European Commission has received the complaint and will review it as part of its enforcement process for the DMA, which allows for fines up to 10% of a company's global annual revenue and mandates changes in business practices for compliance.