user data Archives

AppWizard

May 17, 2025

Google’s ML Kit GenAI APIs with Gemini Nano: On-Device AI for Privacy-Preserving Android Apps

Google announced on May 14, 2025, the expansion of its ML Kit offerings with new GenAI APIs powered by the Gemini Nano model, aimed at providing Android developers with access to advanced AI features while ensuring user privacy through on-device processing. The ML Kit GenAI APIs include four key capabilities: summarization, proofreading, rewriting, and image description. These APIs process data locally, keeping user data on the device, ensuring consistent functionality without internet connectivity, and avoiding recurring server costs. This development enhances the accessibility of sophisticated AI capabilities for Android developers and aligns with consumer privacy concerns. The architecture allows for future expansion of capabilities as Gemini models evolve.

AppWizard

May 17, 2025

Best VPN for Android 2025: NordVPN Voted Best of VPNs for Android

NordVPN has been recognized as the Best VPN for Android in 2025, continuing its commitment to trusted VPN services since launching its Android app in 2016. The user interface has been redesigned for a streamlined experience, featuring a clean, map-based home screen and easy server access. It has received praise for exceptional speed on Android devices, attributed to its NordLynx protocol, and boasts over 7,000 servers in more than 100 countries for reliable internet access. NordVPN maintains a strict no-logs policy to protect user privacy and includes advanced security features like Threat Protection Lite. The app is optimized for battery efficiency and offers robust customer support, including 24/7 live chat. NordVPN's competitive pricing plans and various payment methods enhance its accessibility.

AppWizard

May 15, 2025

Valve refutes reports of massive Steam hack

Valve addressed concerns about alleged breaches of user data, refuting claims of a significant hack involving Steam account information. The company clarified that reports of leaked two-factor authentication text messages do not indicate any compromise of its internal systems. The source of the leak is under investigation, and it involved older text messages containing one-time codes valid for 15 minutes, without linking phone numbers to Steam accounts or exposing sensitive information like passwords or payment details. Valve emphasized that old text messages cannot compromise account security and that attempts to change account details via SMS will trigger additional confirmation steps. Allegations from Underdark.ai about a dataset containing over 89 million Steam user records are questioned due to the low asking price for the data.

Tech Optimizer

May 14, 2025

Best Antivirus Software (2025): ESET Recognized as Top Cybersecurity Solution by Software Experts

ESET is recognized as a leading antivirus provider in 2025, known for its robust security solutions that effectively combat rising cyber threats such as phishing, ransomware, and zero-day exploits. The company's offerings include heuristic and behavioral detection, ransomware and phishing protection, exploit blocker technology, and low resource usage, ensuring minimal impact on system performance. ESET provides various products for home users, including ESET HOME Security Essential, Premium, and Ultimate, as well as a Small Business Security package for up to 25 devices and scalable solutions for larger organizations. Pricing for home products starts at .99/year, with multi-device and multi-year discounts available. ESET operates in over 200 countries, utilizing a global network for real-time threat intelligence and maintaining a commitment to effective digital security since its establishment in 1992.

AppWizard

May 14, 2025

Marbled Dust leverages zero-day in Output Messenger for regional espionage

Since April 2024, the threat actor Marbled Dust has been exploiting a zero-day vulnerability (CVE-2025-27920) in the Output Messenger chat application, targeting user accounts that have not applied necessary fixes. This exploitation has resulted in the collection of sensitive data from users in Iraq, specifically linked to the Kurdish military. Microsoft has high confidence in this assessment and notes that Marbled Dust conducts reconnaissance to identify potential targets using Output Messenger. Marbled Dust has successfully utilized this vulnerability to deploy malicious files and exfiltrate data. Microsoft notified the application’s developer, Srimax, about the vulnerability, leading to the release of a software update. A second vulnerability (CVE-2025-27921) was also found, but no exploitation of this second flaw has been observed. The zero-day vulnerability allows an authenticated user to upload malicious files to the server's startup directory. Marbled Dust has exploited this flaw to place a backdoor file, OMServerService.vbs, in the startup folder, enabling them to access communications and sensitive data indiscriminately. The attack chain begins with Marbled Dust gaining access to the Output Messenger Server Manager, likely through DNS hijacking or other credential interception techniques. Once inside, they exploit the vulnerability to drop malicious files, including a GoLang backdoor, which connects to a Marbled Dust command-and-control domain for data exfiltration. To mitigate this threat, Microsoft recommends updating to the latest version of Output Messenger, activating various security protections, and implementing rigorous vulnerability management strategies. Microsoft Defender XDR customers can identify potential threat activity through specific alerts related to Marbled Dust and utilize advanced hunting queries for detection. Indicators of compromise include traffic to the domain api.wordinfos[.]com, associated with Marbled Dust activities.

AppWizard

May 13, 2025

Turkish spies caught exploiting zero-day for over a year

Microsoft reported that Turkish espionage operatives have been exploiting a zero-day vulnerability (CVE-2025-27920) in the Output Messenger app to gather intelligence on the Kurdish military in Iraq. This operation, attributed to the group Marbled Dust, began in April 2024. The vulnerability is a directory traversal flaw in version 2.0.62 of the app, and many users have not yet updated to the patched version released in December. Marbled Dust has used this flaw to access sensitive user data and deploy malicious files within the Output Messenger server. The group has a history of targeting entities opposing Turkish interests and has evolved its tactics by leveraging this vulnerability for unauthorized access. Srimax and Microsoft are advising users to upgrade to version V2.0.63 to mitigate the risks associated with the exploit.

Tech Optimizer

May 12, 2025

MySQL at 30: Still important but no longer king

MySQL was created by Swedish developer Michael “Monty” Widenius in 1995 and became fully open-sourced under the GPL license by 2000. It emerged as a key component of the LAMP stack, offering a free and easily installable database solution that appealed to web developers, particularly during the 2000s when many startups adopted it. Major platforms like Facebook, YouTube, Twitter, and Flickr utilized MySQL for managing user data and content. Initially, MySQL had limitations, such as lacking full SQL compliance and robust transaction support, but its speed and simplicity made it accessible for developers. By the mid-2000s, MySQL introduced the InnoDB storage engine, enhancing its capabilities and solidifying its popularity. Projections for 2025 indicate that MySQL will remain the most widely deployed database globally, with numerous applications still using it today.

Tech Optimizer

May 11, 2025

Mac users once skipped antivirus software — here’s why that’s no longer a good idea

In 2024, 22 new Mac malware families emerged, up from 13 in 2022, indicating a rise in malware targeting macOS. Built-in security features include XProtect, which warns users about known malicious software; Gatekeeper, which prevents the installation of unsigned software; Sandboxing, which isolates applications to prevent unauthorized changes; Lockdown Mode, which restricts app functionality to protect user data; Safari protections against phishing and tracking; and password security measures that alert users about weak or compromised passwords. While Apple's built-in protections are robust, third-party antivirus software may provide additional security layers. Users are advised to practice good security habits, keep software updated, avoid unverified apps, and use a VPN on public Wi-Fi.

Tech Optimizer

May 9, 2025

Does Antivirus Software Collect Your Data

Antivirus software collects various types of data to protect systems, including system details (operating system version, RAM, CPU type, computer name), network data (local and external IP addresses, DNS server, network name), user data (Windows username, time zone, language, general location), browsing history (if web protection features are enabled), and file-related information (file names, locations, hashes, and sometimes entire files). The AV-Comparatives report indicates that while some antivirus companies manage data responsibly (e.g., F-Secure, G Data, K7), others (e.g., Norton, Panda, McAfee) have been criticized for poor practices. Data sharing can enhance malware detection but poses privacy risks, as seen in AVG's past actions of selling user browsing history. Users can limit data collection by adjusting settings, reviewing installation agreements, avoiding free antivirus software, choosing privacy-conscious vendors (like F-Secure, ESET, G Data), and reading privacy policies. Despite concerns about data collection, antivirus software is essential for protection against cyber threats, and selecting a transparent provider can help safeguard privacy.

AppWizard

May 6, 2025

Exploring ChromeOS – A New Era In Android App Support

ChromeOS has introduced significant enhancements, particularly in Android app support, improving functionality and integration. The latest updates include upgraded Bluetooth technologies, improved content search capabilities, and the integration of Android 11 changes using virtual machines for better app performance. The initiative "Start building apps for ChromeOS" provides guidance for developers to optimize applications for these devices. Accessibility features like Face Control, Bounce Keys, and Slow Keys have been added to assist users with various needs. Security improvements include theft detection and quick locking, while usability enhancements like Fast Pair simplify device connections. Recent updates also focus on integration and compatibility with existing file systems and support for Android and Linux applications, aiming to create a cohesive ecosystem.