Ukraine Archives

AppWizard

April 25, 2025

Russian military personnel on the front lines targeted with new Android spyware

A sophisticated Android malware, identified as Android.Spy.1292.origin, targets Russian military personnel by disguising itself within a modified version of the Alpine Quest mapping application. This malware is designed to steal contacts and monitor locations, evading detection while collecting sensitive data such as the user's mobile phone number, contacts, current date, geolocation, information about files on the device, and the app's version. It is distributed through a dedicated Telegram channel and unofficial Android app repositories. The malware's modular architecture allows for updates that enhance its capabilities, particularly in extracting confidential documents exchanged via Telegram and WhatsApp.

AppWizard

April 24, 2025

Trojanized Alpine Quest app geolocates Russian soldiers

Russian soldiers are facing a digital threat from a modified Android application, Alpine Quest, which has been tampered with to track their locations and extract sensitive information. The malware, known as Android.Spy.1292.origin, was embedded in an older version of the app and distributed as a free upgrade to Alpine Quest Pro via a fraudulent Telegram channel. Once installed, the trojan collects various types of information, including geolocation, downloaded files, phone numbers, and app versions, and can download additional modules to exfiltrate specific files. Additionally, researchers at Kaspersky discovered a backdoor hidden in counterfeit software updates for ViPNet, a secure networking suite. The malware, disguised as msinfo32.exe, connects to a command-and-control server to steal files and deploy more malicious components. On the Ukrainian side, Russian operatives are conducting a phishing campaign targeting Ukrainian officials and allies, using social engineering tactics to hijack Microsoft 365 accounts. Attackers contact victims via messaging apps, invite them to video calls, and trick them into providing OAuth codes, granting access to their accounts.

AppWizard

April 7, 2025

La Quimera, the new shooter from former 4A Games Ukraine studio Reburn, will be out later this month

La Quimera, a sci-fi shooter from Reburn, will launch on April 25. A closed beta test will take place on April 12 from 7 am PT/10 am ET for 24 hours. The game is set in a fictional Latin American megalopolis called Nuevo Caracas, featuring a narrative about a private military company involved in conflicts with rival factions and corporations. Players can engage in solo or cooperative gameplay with up to three friends, using high-tech exosuits. A gameplay trailer has been released, highlighting immersive action and a nostalgic feel reminiscent of the Crysis series. Interested players can visit the game's Steam page for beta participation.

AppWizard

March 30, 2025

Get up to 85% off some of the PCs weirdest adventure games, all to benefit ‘humanitarian relief in Ukraine’

Amanita Design is hosting a sale from March 26 to April 2, offering discounts of up to 85% on its entire game catalog, with all proceeds going to humanitarian aid in Ukraine through the organization People in Need. The original Samorost is free, Samorost 2 is priced at £1.28, Samorost 3 at £2.54, and Machinarium at £5. Botanicula, released in 2012, and Creaks, released in 2020, are both available for £5. Amanita's upcoming project, Phonopolis, features a narrative inspired by Karel Čapek and George Orwell. A complete bundle of all games and soundtracks is available for just over £25.

AppWizard

March 26, 2025

What is Signal messaging app? Can Bucks County, PA agencies use it

Signal is an encrypted messaging application owned by the nonprofit Signal Foundation, known for its end-to-end encryption. The app has drawn attention in a controversy in Bucks County, Pennsylvania, involving allegations that school board members used Signal to communicate after being instructed to retain records related to a Sunshine Act lawsuit. This has raised concerns about the potential destruction of evidence, as Signal's auto-delete feature may violate federal record retention laws. Additionally, during the Trump administration, Mike Waltz inadvertently included a journalist in a Signal chat discussing a military strike, raising questions about the appropriateness of using commercial messaging for sensitive government communications. The use of auto-deleting messages has sparked debate regarding public accountability and compliance with the Presidential Records Act, as many records must be retained for a minimum of two years.

AppWizard

March 20, 2025

Signal Messenger Exploited in Targeted Attacks on Defense Industry Employees

The Computer Emergency Response Team of Ukraine (CERT-UA) has warned about targeted cyberattacks against employees in the defense-industrial complex and members of the Defense Forces of Ukraine, which have been ongoing since at least summer 2024 and have intensified recently. Attackers are using the Signal messenger app to distribute malicious files by compromising trusted contacts' accounts. In March 2025, CERT-UA observed that attackers were sending archived messages through Signal, which included a PDF and an executable file called DarkTortilla, designed to activate the DarkCrystal RAT (DCRAT) software. The focus of these deceptive messages has shifted to critical topics like unmanned aerial vehicles (UAVs) and electronic warfare equipment. CERT-UA has labeled this activity UAC-0200 and advises reporting any suspicious messages immediately. They have also compiled indicators related to the attacks, including specific file hashes, IP addresses, and URLs linked to the attackers' infrastructure.

AppWizard

March 20, 2025

Telegram reached 1 billion users — and became the world’s second largest messenger after WhatsApp, or «a miserable copy» according to Durov

Telegram has reached 1 billion active users each month, making it the second most popular messaging app globally, after WhatsApp. Telegram generated revenues of 7 million in 2024, with each user opening the app 21 times daily and spending approximately 41 minutes per day on it. Pavel Durov returned to Dubai after facing legal challenges in France, where he was detained for nearly six months due to serious allegations. In Ukraine, around 73% of users rely on Telegram for news updates, reflecting a 1% increase over the past year.

AppWizard

March 18, 2025

Get in here, stalker: Stalker 2’s Patch 1.3 is here with a whopping 1,200 fixes

Stalker 2's 1.3 update introduces over 1,200 changes, including improvements to mutant AI, adjustments to artifacts like the Weird Pot, increased damage from explosive props, and enhanced durability for unique weapons. The A-Life system has also received general improvements. GSC Game World encourages player feedback for further development and has expressed resilience in the game's development despite challenges. A 15% discount is currently available on Steam for new players.

AppWizard

March 17, 2025

‘I want to raise this glass to our fans, to our community’: 4A Games celebrates Metro 2033’s 15th anniversary and hints at next Metro game

Yevhen "Lin" Fedorets, the creative director of 4A Games, expressed gratitude to fans in a video marking the 15th anniversary of Metro 2033. The game, based on Dmitry Glukhovsky's novel, has been influenced by the ongoing conflict in Ukraine, affecting the storytelling approach for the next installment. 4A Games plans to continue exploring political and anti-war themes in collaboration with Glukhovsky. The studio has undergone changes, with 4A Ukraine rebranding as Reburn and launching a new project, La Quimera, while 4A Games Limited was established in Kyiv. The next Metro game is in development, with hints of exciting developments. The original Metro title is currently available at an 85% discount on Steam, and the Metro Saga bundle is offered for under .

AppWizard

March 13, 2025

Signal no longer cooperating with Ukraine on Russian cyber threats, official says

The encrypted messaging app Signal has stopped responding to inquiries from Ukrainian law enforcement about Russian cyber threats, raising concerns that this inaction is aiding Russian intelligence operations. Ukrainian officials, including Serhii Demediuk from the National Security and Defense Council, claim that Signal's lack of engagement is allowing Russian actors to exploit the app for espionage against Ukrainian military and government personnel. Ukraine had previously communicated with Signal about misuse, but the app has not addressed these issues. In contrast, Ukrainians are increasingly using Signal as a safer alternative to Telegram, which has faced scrutiny for potential exploitation by Russian intelligence. Meanwhile, U.S.-Ukraine cooperation has been affected by changes in American foreign policy, including a freeze on U.S. foreign aid and a temporary halt in intelligence sharing, impacting Ukraine's cyber capabilities.