warnings Archives

AppWizard

March 2, 2026

Meta makes changes following a Solon man’s $1 million loss in scheme police say started on Facebook Messenger

A 63-year-old resident in Solon, Ohio, lost over a million dollars to a scammer posing as a cryptocurrency investment guru. The scam began with a friendly outreach on Facebook, which transitioned to WhatsApp for private conversations. Over several months, the victim was convinced to invest in what he thought was a legitimate opportunity. This incident reflects a broader trend, as the FBI reported that Ohioans aged 60 and older lost over a million to fraud in 2024. Meta Platforms is enhancing tools to detect and disrupt fraudulent activities on its platforms, including new warnings for screen sharing requests on WhatsApp. In the first half of 2025, Meta removed eight million accounts suspected of scams and shut down 21,000 pages impersonating legitimate businesses. Warning signs in the Solon case included initial contact from a stranger, a quick shift to cryptocurrency discussions, and unusually high promised returns.

Winsage

March 2, 2026

RAT Malware Via Windows Explorer Puts Crypto at Risk

Cofense Intelligence reported that threat actors are exploiting Windows File Explorer and WebDAV servers to deliver Remote Access Trojans (RATs) to corporate systems, bypassing browser security measures. This method allows attackers to infiltrate machines without using web browsers, taking advantage of File Explorer's ability to connect to remote WebDAV servers. Despite WebDAV being deprecated by Microsoft in November 2023, it is still supported in Windows, creating a vulnerability. The campaigns began in February 2024, with a significant increase in September 2024, and 87% of these campaigns deliver multiple RATs, including XWorm, Async RAT, and DcRAT. Victims typically receive phishing emails disguised as invoices, containing URL or LNK shortcut files that initiate a WebDAV connection. The attacks often utilize Cloudflare Tunnel for hosting malicious WebDAV servers, making the traffic appear legitimate. Notably, 50% of affected campaigns are in German, while 30% are in English. The report emphasizes the risks posed to individuals holding digital assets, as RATs can access sensitive information, including crypto wallet files. Organizations are advised to monitor network traffic for Cloudflare Tunnel instances and educate users about the risks associated with File Explorer's capabilities.

Winsage

March 1, 2026

Hackers Abuse Windows File Explorer and WebDAV for Stealthy Malware Delivery

Cybercriminals are exploiting a legacy feature in Windows File Explorer, specifically the WebDAV protocol, to distribute malware and bypass traditional security measures. Despite Microsoft deprecating native WebDAV support in November 2023, it remains active on many systems. Attackers use WebDAV to deceive victims into executing malicious payloads by sending links that connect File Explorer directly to remote servers, avoiding web browsers and their security warnings. They employ methods such as direct linking, URL shortcut files, and LNK shortcut files to deliver exploits. The primary objective of these campaigns, which surged in late 2024, is to deploy Remote Access Trojans (RATs), with 87% of Active Threat Reports involving multiple RATs like XWorm RAT, Async RAT, and DcRAT. These campaigns predominantly target corporate networks in Europe, with many phishing emails written in German and English. Attackers use short-lived WebDAV servers hosted on Cloudflare Tunnel demo accounts to obscure their infrastructure. Security analysts are advised to monitor unusual network activity from Windows Explorer and educate users to verify addresses in File Explorer.

Tech Optimizer

February 27, 2026

Fake Avast Website Steals Users’ Credit Card Information

A phishing scam is targeting French-speaking users in Europe by impersonating Avast antivirus software. Victims are lured to a fraudulent website that mimics Avast's official portal, where they are tricked into providing credit card details due to a fabricated €499.99 charge and promises of a refund. The scam uses realistic branding, dynamic JavaScript for urgency, and live chat features to collect personal information. Users are asked to select refund reasons and submit their personal details, after which they are prompted for credit card information. The scam employs the Luhn algorithm to validate card numbers and displays a fake confirmation message after data submission. Key red flags include dynamic dates, tight deadlines, requests for full card re-entry, and suspicious live chat interactions. Avast has warned users about these scams and encourages reporting to authorities.

Winsage

February 26, 2026

Windows Update KB5077241 February 2026 Issues Nvidia GPU Bugs Task Manager Errors and ViVeTool Guide

Windows Update KB5077241, released in February 2026, is a 4.5GB feature update for the 24H2 and 25H2 versions. It poses significant performance risks for older hardware, particularly laptops and desktops without a Neural Processing Unit (NPU). Users with outdated Nvidia graphics cards, specifically the 900 Series (Maxwell) and 1000 Series (Pascal), report issues such as game stuttering, screen flickering, and system boot failures. The update also contains a flaw that inaccurately displays CPU usage in Task Manager, showing 0% utilization even under load. Many users face installation issues, encountering Error 0x800F0983, requiring them to delete update cache files and run repair tools. The update introduces features like a Taskbar Speed Test, Sysmon Security, improved Sleep/Wake functionality, and WebP wallpaper support, but many remain locked. Users can enable these features using ViVeTool with specific commands. Overall, the update is advised against for those with older Nvidia GPUs due to potential conflicts and performance issues.

AppWizard

February 26, 2026

Russia’s “Secure” Max App Flagged as Security Risk, Troops in Ukraine Told to Stop Using It

Russian military personnel in Ukraine have been advised against using the state-sponsored messaging application, Max, due to security concerns raised by pro-war military bloggers. Directives have been issued to prohibit the use and installation of Max, described sarcastically as the “most secure national messenger in the world.” An alternative communication program is expected to be introduced for frontline use, although details remain undisclosed. The Russian Digital Development Ministry has noted that while Telegram will not be blocked for troops, foreign intelligence agencies may access its correspondence, posing risks for the Russian military. The Federal Security Service has warned that Ukraine’s military could obtain information shared via Telegram, which could be used for tactical advantages.

AppWizard

February 24, 2026

Meta executive called Facebook Messenger encryption plan irresponsible court filing shows

Meta is implementing end-to-end encryption across its messaging services for Facebook and Instagram despite internal warnings about potential risks to child safety. Internal documents reveal that executives, including Monika Bickert, expressed concerns that the encryption would hinder the company's ability to report child exploitation incidents to law enforcement. A lawsuit filed by New Mexico Attorney General Raul Torrez accuses Meta of enabling predators to access underage users, leading to potential abuse and human trafficking. The New Mexico case is notable as it is the first against Meta to reach a jury amid heightened scrutiny regarding the safety of young users. Over 40 attorneys general are also pursuing claims that Meta's products contribute to youth mental health issues, and various school districts have filed lawsuits. Internal communications indicated that senior safety executives were worried about the implications of encryption, predicting a significant drop in reporting child exploitation cases. A briefing document from February 2019 estimated that child exploitation reporting would decrease by 65% if Messenger were encrypted. In response to these concerns, Meta spokesperson Andy Stone stated that the apprehensions from 2019 led to the development of additional safety features prior to the launch of encrypted messaging in 2023, including special accounts for underage users to protect them from adult contacts they do not know.

Winsage

February 24, 2026

Windows 11 Has 4 Powerful Features Most Users Never Turn On (But Should)

Microsoft's Windows 11 includes several built-in features that enhance usability and system management, which can be activated by users: 1. Clipboard History: Allows users to retain multiple copied items and access them with Win + V. To enable, go to Settings > System > Clipboard and toggle on Clipboard history. 2. Snap Layouts: Provides predefined window arrangements for better organization of applications. To ensure it's enabled, go to Settings > System > Multitasking and turn on Snap windows. 3. Show File Extensions: Displays full file names including extensions for better identification of file types. To enable, open File Explorer, select View > Show > File name extensions. 4. Storage Sense: Automates the removal of temporary files and manages storage space. To enable, go to Settings > System > Storage and toggle on Storage Sense. 5. "God Mode": Creates a folder that centralizes access to various administrative tools and settings. To enable, create a new folder on the desktop and rename it to GodMode.{ED7BA470-8E54-465E-825C-99712043E01C}. These features are built into Windows 11 and do not require third-party applications.

AppWizard

February 23, 2026

The Kremlin spent years building a messenger to replace Telegram. Now it’s reportedly telling soldiers the substitute is too insecure to use at the front.

Russian military personnel have been advised to stop using the messaging application Max due to security concerns, as reported by Mediazona. This recommendation follows intensified restrictions on Telegram, which began in the summer of 2025. The Federal Security Service (FSB) has warned that Ukrainian forces can intercept Telegram communications, prompting worries about the safety of sensitive information. Access to Telegram has been increasingly limited, with plans for further restrictions on media file access reported by RBC. Pro-war advocates, including Sergey Mironov, have criticized these limitations and defended Telegram as a reliable communication tool. Despite the Kremlin's claims that troops do not rely on Telegram, the Russian Defense Ministry asserts that they use standard communications equipment and a domestically developed messenger. On February 18, Russian Digital Development Minister Maksut Shadaev stated that Telegram would not be blocked for frontline use for now.

AppWizard

February 20, 2026

Google says its AI systems helped deter Play Store malware in 2025

Google reported a decrease in malicious apps targeting its Google Play platform, preventing 1.75 million policy-violating apps from being published in 2025, down from 2.36 million in 2024 and 2.28 million in 2023. The company banned over 80,000 developer accounts in 2025 for attempting to publish harmful apps, a decrease from 158,000 in 2024 and 333,000 in 2023. Google conducts over 10,000 safety checks on every app before publication and has integrated generative AI models into the app review process. The company prevented more than 255,000 apps from gaining excessive access to sensitive user information, down from 1.3 million in 2024, and blocked 160 million spam ratings and reviews. Additionally, Google Play Protect identified over 27 million new malicious apps, an increase from 13 million in 2024 and five million in 2023.