WordPress Archives

TrendTechie

August 17, 2025

Похитители сид-фраз начали маскироваться под торренты

The Efimer Trojan spreads through torrent files and targets cryptocurrency wallets by disguising itself as a media player named xmpeg_player.exe. Cybercriminals exploit poorly secured WordPress sites to distribute this malware, while in corporate settings, they use phishing emails related to copyright infringement to deliver the Trojan. Once activated, it searches for cryptocurrency seed phrases and replaces transfer addresses with those of the attackers. Victims have been reported in Russia, India, Spain, Italy, and Germany. Kaspersky Lab has also reported on another malware, SparkKitty, aimed at stealing cryptocurrency from users in Southeast Asia and China.

TrendTechie

August 16, 2025

Labubu-охота на криптопользователей, опасные торренты с фильмами и другие события кибербезопасности

- A user lost 140 ETH (approximately ,500) on August 15 due to crypto address "poisoning," resulting in a total loss of over .6 million from similar incidents within a week. - Labubu fans in Russia fell victim to a cryptocurrency theft scheme involving a counterfeit marketplace that prompted users to connect their crypto wallets. - The Efimer Trojan malware, distributed through compromised WordPress sites and torrents, has been identified as a method for stealing cryptocurrency by replacing wallet addresses in the clipboard. - Pro-Russian hackers gained control of a dam in Norway, opening discharge valves and allowing over 7.2 million liters of water to pass through before being stopped. - A cybersecurity researcher discovered a vulnerability in a car dealer's online portal that allowed remote access to customer data and vehicle control. - Tajikistan reportedly lost over million due to illegal mining activities. - BtcTurk suspended withdrawals amid suspicious transactions totaling million. - Hackers extracted million in Bitcoin from the Odin.fun platform, and KYC data leaks have led to increased attacks on crypto investors.

TrendTechie

August 8, 2025

Троян Efimer крадет криптовалюту через торренты и сайты на WordPress

A new Trojan named Efimer has been identified, which can alter cryptocurrency wallet addresses in the clipboard, redirecting funds to cybercriminals. Efimer spreads primarily through compromised WordPress sites and phishing emails. Once installed, it can disable Windows Defender, install a Tor client, and capture seed phrases and wallet addresses. It targets Windows users globally, particularly those in Brazil, Russia, India, Spain, Germany, and Italy. The Trojan primarily targets wallets holding Bitcoin, Ethereum, Monero, Tron, and Solana, but may expand to other cryptocurrencies. To protect against Efimer, users are advised to use reliable security solutions, create strong passwords, enable two-factor authentication, avoid downloading files from unverified sources, and not store seed phrases in plain text.

Tech Optimizer

August 5, 2025

Building a job search engine with PostgreSQL’s advanced search features

Job search platforms connect employers and candidates through advanced search engines that analyze structured and unstructured data. These platforms require robust database technologies for executing complex queries, full-text and semantic searches, and geospatial functionalities. A modern job search engine consists of a data repository that stores job listings and candidate profiles, and a search engine that facilitates bidirectional searches. Key features of an effective job search engine include: - **Full-text search**: Provides lexical matching for job titles and skills, supporting exact phrase matching and typo-tolerant searches. - **Semantic search**: Uses vector-based similarity to understand context and relationships beyond literal terms. - **Geospatial search**: Incorporates geographic considerations to find opportunities within specific distances. PostgreSQL serves as both a data repository and search engine, supporting full-text search, semantic search via the pgvector extension, and geospatial queries using the PostGIS extension. The job search engine utilizes PostgreSQL to manage job listings and candidate profiles, enabling real-time searches across millions of entries. The data model for a job search engine includes tables for jobs and resumes, with columns for full-text search vectors, semantic vectors, and geographical locations. PostgreSQL's full-text search capabilities include tokenization, dictionaries for language-aware parsing, and ranking functions for relevance. Advanced features such as proximity search, simple and weighted ranking, and fuzzy matching enhance search accuracy. Vector embeddings represent text in high-dimensional space, allowing for semantic searches that recognize similar roles or skills. PostgreSQL supports vector similarity searches with specialized indexing methods like IVFFlat and HNSW for efficient querying. Geospatial search capabilities in PostgreSQL enable location-aware job searches, allowing candidates to find jobs within commuting distances. Combining different search techniques, such as full-text and semantic searches, provides more relevant results. Performance optimization features in PostgreSQL address challenges related to computational complexity, indexing overhead, and concurrent query loads. The architecture discussed is applicable to various applications beyond job search platforms, including e-commerce, real estate, content recommendation systems, travel, and healthcare provider matching.

Winsage

April 24, 2025

Download WampServer (free) for Windows

WampServer is a web development environment designed for Windows users, integrating MySQL, Apache, and PHP into a single package for local web application development. It simplifies the setup process, allowing novice developers to create functional development servers without affecting live websites. WampServer operates independently of an internet connection and provides a user-friendly control panel for managing server components. It supports both free-form PHP coding and content management systems like WordPress, Joomla, and Drupal. WampServer is free to use and compatible with Windows 7, 8, 10, and 11, but not with macOS or Linux. Alternatives to WampServer include MAMP, XAMPP, and Apache HTTP Server, each offering different features and compatibility.

AppWizard

March 28, 2025

Hackers target Taiwan with malware delivered via fake messaging apps

Recent research from cybersecurity firm Sophos has identified the use of PJobRAT malware targeting users in Taiwan through instant messaging applications SangaalLite and CChat, which mimic legitimate platforms. These malicious apps were available for download on various WordPress sites, now taken offline. PJobRAT, an Android remote access trojan first identified in 2019, has been used to steal SMS messages, contacts, device information, documents, and media files. The recent cyber-espionage initiative lasted nearly two years, affecting a limited number of users, indicating a targeted approach by the attackers. The latest version of PJobRAT lacks the ability to steal WhatsApp messages but allows attackers greater control over infected devices. The distribution method for these apps remains unclear, but previous campaigns involved third-party app stores and phishing pages. Upon installation, the apps request extensive permissions and provide basic chat functionalities. Sophos researchers note that threat actors often refine their strategies after campaigns, suggesting ongoing risks.

AppWizard

March 28, 2025

PJobRAT Android Malware Masquerades as Dating and Messaging Apps to Target Military Personnel

PJobRAT is an Android Remote Access Trojan that re-emerged in 2023, targeting users in Taiwan. Initially known for targeting Indian military personnel, it now disguises itself as benign apps like ‘SangaalLite’ and ‘CChat’, distributed via defunct WordPress sites operational from January 2023 to October 2024, with domain registrations dating back to April 2022. The malware is spread through counterfeit applications resembling legitimate messaging services, prompting users to grant extensive permissions. Enhanced capabilities allow it to execute shell commands, access data from any app, root devices, and communicate with command-and-control servers via Firebase Cloud Messaging and HTTP. The campaign appears to have concluded, highlighting the evolving tactics of threat actors. Users are advised against installing apps from untrusted sources and to use mobile threat detection software.

AppWizard

March 28, 2025

PJobRAT Android RAT as Dating & Instant Messaging Apps Attacking Military Personnel

PJobRAT is an Android Remote Access Trojan (RAT) that re-emerged in 2023 with improved capabilities and a refined targeting strategy, previously known for attacking Indian military personnel in 2021. It is now targeting users in Taiwan through social engineering tactics, disguising itself as legitimate dating and messaging apps. The malware is distributed via compromised WordPress sites hosting fake applications like “SaangalLite” and “CChat.” The infection footprint is small, indicating highly targeted attacks rather than widespread campaigns. PJobRAT retains its core functionality of exfiltrating sensitive information, including SMS messages, contacts, and media files, while enhancing command execution capabilities. Upon installation, the malicious apps request extensive permissions to operate continuously in the background. The malware uses a dual-channel communication infrastructure, with Firebase Cloud Messaging (FCM) as the primary command channel and a secondary HTTP-based channel for data exfiltration to a command-and-control server. The campaign appears to have concluded, but the evolution of PJobRAT highlights the ongoing threat of sophisticated mobile malware targeting high-value individuals.

AppWizard

March 28, 2025

PJobRAT makes a comeback, takes another crack at chat apps

In 2021, PJobRAT, an Android Remote Access Trojan (RAT), targeted Indian military personnel through deceptive apps. A new campaign was discovered in 2023, focusing on users in Taiwan, with malicious apps like ‘SangaalLite’ and CChat disguised as instant messaging applications. These apps were available for download from WordPress sites, which have since been taken down. The campaign began in January 2023, with domains registered as early as April 2022, and the latest sample detected in October 2024. The number of infections was low, indicating a targeted approach rather than a broad attack. The distribution methods remain unclear, but may involve SEO poisoning, malvertising, or phishing. Once installed, the apps request extensive permissions and feature basic chat functionality. Recent versions of PJobRAT have shifted from stealing WhatsApp messages to executing shell commands, allowing greater control over compromised devices. PJobRAT communicates with its command-and-control (C2) servers using Firebase Cloud Messaging (FCM) and HTTP, enabling the upload of various data types, including SMS, contacts, and files. The now inactive C2 server was located in Germany.

AppWizard

March 19, 2025

Exclusive Liquid Web Webinar: Learn to Resell Minecraft Servers & Claim 4 Free Months of Hosting

26% of players are willing to invest more for superior server hosting in the gaming sector. Liquid Web is hosting a free webinar on March 27th at 2 PM EST titled "How to Start Selling Minecraft Servers," aimed at helping gaming enthusiasts turn their passion into a business. The Minecraft community has over 173 million active players, with one in four willing to invest in enhanced hosting tools to improve performance. Pre-registered attendees will receive four complimentary months of bare metal hosting with an annual plan. The webinar will cover the business opportunity, market potential, technical requirements, reseller process, pricing strategies, and include a Q&A session with experts.