Chicago IT Support & Cyber Security | Forward Technologies

Chicago-based Forward Technologies delivers IT support and cyber security to businesses in the Chicago area and nationwide.

Hackers Hide Malware in DNS Records to Evade Detection

by

An endpoint computer receiving a DNS response, which reassembles into a malicious script, shown as puzzle pieces forming a bug icon at the user’s terminal.A new cybersecurity threat is emerging as attackers use DNS records—the very system that directs internet traffic—to hide malware. Instead of relying on email attachments or suspicious downloads, bad actors are embedding malicious payloads into DNS TXT records. This method sneaks malicious code past traditional defenses because security tools often ignore DNS traffic.

DNS, or Domain Name System, acts like the internet’s phonebook, translating domain names into IP addresses. It is so fundamental and routine that most security systems allow it without scrutiny. That makes it a perfect hiding place. According to researchers at Infoblox, attackers are disguising shellcode—malicious binary instructions—inside base64-encoded TXT records. These look like harmless text but are reassembled and executed by compromised devices once fetched.  [Read more…]

Google says its Gemini AI will soon be able to access your messages and utilities on your phone. I fail to see that as a good thing.

by

Cartoon-style Android phone surrounded by apps like Messages, WhatsApp, and Phone, while a robot labeled “Gemini” peeks out from inside the screen holding binoculars.If you use an Android phone, there’s a good chance Google’s Gemini AI is now interacting with your apps, even if you thought you had disabled it. The company recently rolled out changes that grant Gemini new levels of access to messages, phone calls, and third-party apps like WhatsApp, regardless of whether users had previously opted out. If that sounds invasive, it’s because it is.

In emails sent to Android users ahead of the rollout, Google framed the change as a convenience upgrade. Gemini, they said, can now help users perform everyday tasks more easily, such as initiating calls, sending messages, and launching utilities. These functions, Google explained, would be available “whether your Gemini Apps Activity is on or off.” The update began rolling out automatically on July 7. [Read more…]

Homoglyph Phishing: When One Letter Steals Everything

by

A user clicking an email link, leading to two identical websites—one real, one fake—split like a mirror.You click a link. It takes you to a site that looks exactly right. The logo matches, the name checks out, and everything feels familiar. But something’s off. And before you realize what it is, you’ve handed over your login, your credit card, or worse, your network credentials. The trick wasn’t in the layout or the content. It was in the letters.

Cybercriminals are using homoglyphs—lookalike characters from other alphabets—to build fake domains that mimic real ones down to the pixel. A Cyrillic “а” is nearly identical to the Latin “a” your eyes expect to see. To a browser, they’re completely different. To a person, they’re the same. That’s the whole con. [Read more…]

Stalkerware App Meant for “Parental Control” Leaks Passwords and User Data

by

A cartoon-style smartphone with glowing eyes hidden under a trench coat, sneaking data into a dark web dashboard while a folder labeled “Passwords” leaks out onto the ground.A surveillance app marketed as a stealthy tool for parents has exposed sensitive data from over 62,000 users, raising fresh concerns about the real audience for apps like it.

The app, called Catwatchful, claims to offer invisible monitoring for Android phones. According to its creators, it’s intended to help parents keep tabs on their children’s digital activity. But the app’s heavy emphasis on secrecy and undetectability tells a different story. On its website, Catwatchful boasts that it “cannot be detected,” “cannot be uninstalled,” and “only you can access the information it collects.” [Read more…]

Microsoft Retires the Blue Screen of Death, Because Apparently Black Is More Soothing

by

Cartoon-style desktop computer surrounded by blue error screens in the trash, with a sleek black screen displaying a simplified crash message on the monitor.After 40 years of glaring blue error messages and frowny faces, Microsoft is giving the infamous Blue Screen of Death a final sendoff. Starting later this summer, Windows 11 devices will crash in a new color. Say hello to the Black Screen of Death.

The change isn’t just about ditching the old aesthetic. Microsoft says the new screen will simplify crash messages and speed up recovery. Gone is the sad face emoticon. In its place is a stripped-down message with technical details like the stop code and system driver that triggered the failure. The goal is to help users recover faster and give IT teams what they need without dragging them into a full-blown forensic session. [Read more…]

Social Media

Forward Technologies
747 N LaSalle
STE 500B
Chicago, IL 60654
(312) 715-7806