traffic Archives

Winsage

March 3, 2026

Best Shortcuts for PC Users

Keyboard shortcuts for Windows 11 include: - Ctrl + c: Copy the selected text or file. - Ctrl + v: Paste the last item from the clipboard. - Ctrl + x: Cut the selected item. - Ctrl + z: Undo your last change. - Ctrl + y: Redo what was undone with Ctrl + z. - Alt + Tab: Switch between open windows on the desktop. - Copilot key1: Open Copilot, the AI assistant. For screen capturing using the Snipping Tool: - Windows logo key + Shift + s: Open Snipping Tool overlay for image capture. - Windows logo key + Shift + r: Open Snipping Tool overlay for video capture. - Print Screen (PrtSc): Take a static image snapshot of the entire screen. For managing windows and multitasking: - Snap to the left: Windows logo key + left arrow. - Snap to the right: Windows logo key + right arrow. - Maximize: Windows logo key + up arrow. - Minimize: Windows logo key + down arrow. For managing virtual desktops: - Create a desktop: Windows logo key + Ctrl + D. - Switch between desktops: Windows logo key + Ctrl + left/right arrow. - Close the current desktop: Windows logo key + Ctrl + F4. - Show desktops in the taskbar: Windows logo key + Tab.

AppWizard

March 2, 2026

Best Secure and Encrypted Messaging Apps in 2026

Your text messages and calls can be intercepted by hackers, corporations, and government entities, putting your private information at risk. Corporations may use your messages for targeted advertising or sell your data, while hackers may exploit it for identity theft or fraud. Governments may monitor communications under the guise of national security. Secure messaging apps are essential to protect your communications, as many default options expose sensitive information through metadata or lack proper security. Signal is recognized as the most secure messaging app, offering end-to-end encryption, being open-source, and free of charge, though it requires a phone number for registration. Threema allows complete anonymity without data collection but has no free version. Telegram, while popular, has security concerns as not all communications are end-to-end encrypted by default. WhatsApp and Keybase are discouraged due to ownership issues affecting privacy. Characteristics to look for in a secure messaging app include end-to-end encryption, third-party testing, open-source code, self-destructing messages, and minimal user data collection.

Winsage

March 2, 2026

RAT Malware Via Windows Explorer Puts Crypto at Risk

Cofense Intelligence reported that threat actors are exploiting Windows File Explorer and WebDAV servers to deliver Remote Access Trojans (RATs) to corporate systems, bypassing browser security measures. This method allows attackers to infiltrate machines without using web browsers, taking advantage of File Explorer's ability to connect to remote WebDAV servers. Despite WebDAV being deprecated by Microsoft in November 2023, it is still supported in Windows, creating a vulnerability. The campaigns began in February 2024, with a significant increase in September 2024, and 87% of these campaigns deliver multiple RATs, including XWorm, Async RAT, and DcRAT. Victims typically receive phishing emails disguised as invoices, containing URL or LNK shortcut files that initiate a WebDAV connection. The attacks often utilize Cloudflare Tunnel for hosting malicious WebDAV servers, making the traffic appear legitimate. Notably, 50% of affected campaigns are in German, while 30% are in English. The report emphasizes the risks posed to individuals holding digital assets, as RATs can access sensitive information, including crypto wallet files. Organizations are advised to monitor network traffic for Cloudflare Tunnel instances and educate users about the risks associated with File Explorer's capabilities.

Winsage

March 2, 2026

Fake Xeno and Roblox Utilities Used to Install Windows RAT, Microsoft Warns

Cybersecurity experts at Microsoft Threat Intelligence have identified a trend where attackers distribute counterfeit gaming tools that install a remote access trojan (RAT) on users' systems. These trojanized executables, such as Xeno.exe or RobloxPlayerBeta.exe, are shared through browsers and chat platforms. The initial executable acts as a downloader, installing a portable Java runtime environment and launching a harmful Java archive, jd-gui.jar. Attackers use built-in Windows tools to execute commands via PowerShell and exploit trusted system binaries, minimizing detection risk. The embedded PowerShell script connects to remote locations, downloads an executable as update.exe, and executes it. The malware erases evidence of the downloader and modifies Microsoft Defender settings to allow RAT components to function undetected. It establishes persistence through scheduled tasks and a startup script named world.vbs, enabling prolonged access to the compromised device. Microsoft Defender can detect the malware and its behaviors, and organizations are advised to monitor outbound traffic and block identified domains and IP addresses. Users are encouraged to scrutinize Microsoft Defender exclusions and scheduled tasks for irregularities and remain cautious about downloading tools from unofficial sources.

Winsage

March 1, 2026

Hackers Abuse Windows File Explorer and WebDAV for Stealthy Malware Delivery

Cybercriminals are exploiting a legacy feature in Windows File Explorer, specifically the WebDAV protocol, to distribute malware and bypass traditional security measures. Despite Microsoft deprecating native WebDAV support in November 2023, it remains active on many systems. Attackers use WebDAV to deceive victims into executing malicious payloads by sending links that connect File Explorer directly to remote servers, avoiding web browsers and their security warnings. They employ methods such as direct linking, URL shortcut files, and LNK shortcut files to deliver exploits. The primary objective of these campaigns, which surged in late 2024, is to deploy Remote Access Trojans (RATs), with 87% of Active Threat Reports involving multiple RATs like XWorm RAT, Async RAT, and DcRAT. These campaigns predominantly target corporate networks in Europe, with many phishing emails written in German and English. Attackers use short-lived WebDAV servers hosted on Cloudflare Tunnel demo accounts to obscure their infrastructure. Security analysts are advised to monitor unusual network activity from Windows Explorer and educate users to verify addresses in File Explorer.

AppWizard

February 26, 2026

How Your Android Apps Keep Talking — Even When You’re Not Using Them

When connecting to public Wi-Fi, using a VPN is essential as it encrypts traffic and creates a secure tunnel between the device and a remote server, keeping activities concealed from the local network. Android devices continuously communicate in the background, performing tasks such as updating emails and syncing notes, which increases data visibility on public networks. Public Wi-Fi has become common due to remote work and shared spaces, leading to increased privacy risks as smartphones now store sensitive information like banking apps and personal photos. Users are encouraged to adopt simple security habits, including using a VPN when connecting to public networks. Android devices are always connected, making network-level protection important to safeguard background communications.

AppWizard

February 26, 2026

How to Add Android Apps to Your Car’s Factory Screen

Modern vehicles often have high-resolution touchscreens but are limited in app selection and customization. The Ottocast OttoAI Box P3 Pro offers an independent operating system, utilizing Android 13, allowing direct app installations without relying on a smartphone. It features a Snapdragon 6225 processor, 8GB of RAM, and 128GB of storage, enabling quick boot times and efficient multitasking. The P3 Pro supports alternative navigation apps, streaming services like Netflix and YouTube while parked, and multitasking with split-screen support. It includes built-in AI voice support and can be set up easily with factory wired Apple CarPlay or Android Auto. Connectivity options include CloudSIM, a physical SIM card, phone hotspot, and local Wi-Fi. Switching between CarPlay or Android Auto and the P3 Android OS is simple. The device is priced at 9, with a special offer of a 10% discount available.

AppWizard

February 24, 2026

Putin’s MAX messenger app banned in the Russian army due to “insufficient security”

Russian forces are facing communication challenges that have allowed Ukraine to reclaim hundreds of square kilometers of territory. The difficulties stem from regulatory actions by Russia's communications authority, Roskomnadzor, which has limited access to the messaging app Telegram and proposed a complete ban on it by April 1. This decision has faced backlash, with military personnel expressing concerns about the impact on coordination. Russian troops have been advised against using the state-run messaging app MAX due to security concerns. Additionally, the loss of access to the Starlink network, previously used by Russian forces for communication, has further complicated their operational capabilities, contributing to Ukraine's territorial gains.

Tech Optimizer

February 24, 2026

Fake Huorong Site Delivers ValleyRAT Backdoor in Targeted Malware Campaign

A cyber operation is targeting users of Huorong Security antivirus software through a typosquatted domain, huoronga[.]com, which mimics the legitimate site huorong.cn. Users who mistakenly visit the counterfeit site may download a file named BR火绒445[.]zip, which contains a trojanized installer that leads to the installation of ValleyRAT, a remote access trojan. The malware employs various techniques to evade detection, including using an intermediary domain for downloads, creating Windows Defender exclusions, and establishing a scheduled task for persistence. The backdoor facilitates activities such as keylogging and credential access while disguising its operations within legitimate processes like rundll32.exe. Attribution points to the Silver Fox APT group, and there has been a significant increase in ValleyRAT samples documented in recent months. Security measures include ensuring software downloads are from the official site and monitoring for specific malicious activities.

AppWizard

February 23, 2026

Resident Evil Requiem is this week’s headline PC game but don’t forget the Witchers, pirates and pinballs

Steam Next Fest is currently taking place, showcasing a variety of game demos. This year, the focus is on highlighting exciting demos rather than creating a wishlist. Some notable games featured include: - A game inspired by hiding spiders under cups at holiday parties, which includes power-up cards that are not microtransactions. - Rise Of Piracy, an early access RTS by MicroProse, where players command a fleet of corsairs and can engage in diplomacy and trading. - Emberbane, a 2D metroidvania with elemental martial arts elements. - Reigns: The Witcher, a deck-building narrative game set in the Witcher universe, where players control Dandelion. - Utawarerumono: ZAN 2, an anime-style hack-and-slash game with base management and humorous elements. - Spellcasters Chronicles, a 3v3 wizard MOBA from Quantic Dream. - Tales of Berseria Remastered, a revamped action-RPG from Bamco. - Snägäri Pinball, a pinball game themed around Finland’s late-night snack kiosks. - Resident Evil Requiem, Capcom's latest horror installment featuring both third-person and first-person gameplay. - Arrow World, a sokoban-style game with conveyor belt mechanics. The RPS team is actively playing Resident Evil Requiem and sharing their experiences.