Amazon’s giving you a $150 GC to buy Samsung’s Galaxy Z Flip 5

0
[ad_1]

Looking for a reason to buy the Galaxy Z Flip 5 before pre-orders end on Thursday? Well, here’s a good reason. Amazon is bundling a $150 gift card with the Galaxy Z Flip 5 right now, and it is honoring the free storage upgrade from Samsung too.

So this means, for $999, you are getting a 512GB Galaxy Z Flip 5, and also getting a $150 Amazon Gift Card. Not to shabby at all.

Samsung Galaxy Z Flip 5 – Amazon

Why you should buy the Samsung Galaxy Z Flip 5

The Samsung Galaxy Z Flip 5 is the latest and greatest foldable phone from Samsung. It’s compact and portable, has a large, beautiful display, and is packed with features that make it perfect for everyone.

The first thing you’ll notice about the Galaxy Z Flip 5 is its unique design. It folds in half like a clamshell, making it easy to take with you wherever you go. When folded, it’s just as small as a credit card, so you can easily slip it into your pocket or bag. But when you unfold it, you’ll be greeted with a large, 6.7-inch AMOLED display that’s perfect for watching videos, playing games, or just browsing the web.

The Galaxy Z Flip 5 is also packed with features. It has a powerful Qualcomm Snapdragon 8 Gen 2 for Galaxy processor, 8GB of RAM, and 256GB 512GB of storage. That means it can handle even the most demanding tasks with ease. It also has a great camera system, with a 12MP main sensor and a 12MP ultrawide sensor. So you can take great photos and videos no matter where you are.

But the best thing about the Galaxy Z Flip 5 is its versatility. You can use it as a traditional smartphone, or you can fold it in half and use it as a compact device for taking notes, watching videos, or making calls. It’s the perfect phone for people who are always on the go and need a device that can do it all.

If you’re looking for a unique, stylish, and powerful foldable phone, the Samsung Galaxy Z Flip 5 is the perfect choice for you. It’s sure to meet your needs and exceed your expectations.

Samsung Galaxy Z Flip 5 – Amazon


[ad_2]
Source link

iPhone 15 & iPhone 15 Plus will offer frosted back glass

0
[ad_1]

If you’re annoyed by the shiny glass back on the iPhone 14 series, and the fact it loves fingerprints, well, we have some good news. The iPhone 15 and iPhone 15 Plus will offer frosted back glass.

Frosted back glass will make its way to the iPhone 15 & iPhone 15 Plus

Frosted, in other words, means matte. The fingerprints should be far less visible on it, as was the case with the iPhone 14 Pro series. This information comes from Unknown21, a tipster.

He is not the first one to have shared this rumor, but he kind of confirms it. Does this mean only frosted back glass will be available on the iPhone 15 and 15 Plus series? Well, we’re not sure, but that probably won’t be the case.

Having said that, the entire iPhone 15 series is tipped to launch on September 12 or 13. The devices are expected to become available to pre-order on September 15, and go on sale on September 22.

Nothing has been officially confirmed yet, but this information does come from Mark Gurman, who is usually spot on when it comes to Apple-related information. If the rumors end up being true, we’re around a month away from the launch event.

All iPhone 15 models will feature Type-C USB ports & Dynamic Island

The entire iPhone 15 series will offer Type-C USB ports. These will be the first iPhones to do so, actually. A Dynamic Island will also be present on all models. The ‘Pro’ iPhones will have some advantages, though, of course. Like thinner bezels, better material for the case (titanium), better cameras, and so on.

The iPhone 15 and 15 Plus are expected to get a 48-megapixel camera, though, an upgrade over the 12-megapixel main camera their predecessors have. The bad news is, price bumps are expected.

The ‘Pro’ iPhones will almost certainly be $100-200 more expensive, depending on the source. Regarding the vanilla models, we’re not sure yet. One source said they will, another said they won’t. We’ll have to wait and see.


[ad_2]
Source link

New Security Advisor amps up security in minutes

0
[ad_1]

The new feature provides comprehensive health score that assesses the quality of your Nebula implementation.

Malwarebytes Security Advisor, a transformation of the Nebula customer experience, enables organizations to visualize and improve their organization’s security posture in just a few clicks.

“If you’re not fully configured, you aren’t fully protected,” says Jonny Rivera, Director, Customer Experience Strategy. Rivera has worked with Malwarebytes customers to optimize their deployments and saw that there were big gaps in understanding their overall cybersecurity posture, including what assets they had and how policies were configured.

Security Advisor Dashboard

Security Advisor analyzes an organization’s cybersecurity health—such as by assessment of current inventory and which assets are vulnerable—and generates a score based off what it finds, illuminating gaps in defenses and providing actionable recommendations for improvements that can be made in minutes.

In this post, we’ll demonstrate how Security Advisor works and how it’s improving organizations’ security postures.

Read the full features here: https://service.malwarebytes.com/hc/en-us/articles/18242146189587-Understanding-the-Security-Advisor-in-Nebula

Why Security Advisor?

In a world where a whopping 70% of IT security personnel cite increasing workload and lack of visibility into IT infrastructure as top barriers to success, it’s easy to see why simplicity is the key to optimizing security while reducing employee burnout.

But there’s a problem.

Without a real-time snapshot of device usage or quick summaries of outdated applications, for example, IT teams are left scrambling to pick up the pieces of the information most important to them—ultimately increasing the mean time to resolution (MTTR) from days to possibly months.

Enter Malwarebytes Security Advisor.

A Leap Beyond Traditional Reporting

Security Advisor overview page

Security Advisor understands the specific tasks IT & security teams must perform, and flags which are crucial before a security issue arises.

With Security Advisor, organizations now have a real-time view into four key areas:

1. The CURRENT STATE of their security posture. Security Advisor provides a comprehensive snapshot of the existing security measures, revealing vulnerabilities and strengths such as properly configured policies or endpoint deployment.

2. The steps to IMPROVE the organization’s current security posture. Once the current state is understood, Security Advisor outlines actionable steps that organizations can take to enhance security measures, mitigate risk and safeguard assets.

Security Advisor policy optimization 

3. How to MAINTAIN the improved security posture. Since security doesn’t end with the implementation of improvements, Security Advisor guides customers on how to maintain the elevated security status over time, ensuring sustained protection.

4. How to REPORT the organization’s current posture. Crucial for transparency and accountability, Security Advisor equips users with the tools to effectively communicate the company’s security status.

By guiding and facilitating immediate actions, Security Advisor speeds a holistic approach to security management.

Key Features

Inventory Check

Security Advisor offers a complete inventory of physical and digital assets, identifies which devices and services are in use and by whom, and presents this information in a user-friendly dashboard.

Current State Analysis

Assesses the vulnerabilities associated with your assets. It checks for out-of-date devices, scans for threats, evaluates data security, and identifies any employees who may pose a greater security risk.

Security Advisor issues by severity

Access Control

Security Advisor enables simple and intuitive configuration of permissions and keeps track of changes over time, providing clear visibility of user permissions.

Maintenance and Reporting

Security Advisor’s maintenance and reporting capabilities provides real-time status updates and prompt alerts on any emerging issues, while also supporting compliance reporting for various regulations.

Adaptive Recommendations

As your business changes and grows, Security Advisor offers suggestions for additional security solutions that can further enhance the organization’s security portfolio.

Benchmarking

Security Advisor leverages anonymized data from all Malwarebytes customers to provide benchmark comparisons with other organizations with a similar security mix.

“Whether it’s checking to see if EDR policies are properly configured or making sure scheduled scans are running regularly, we’re providing the recommended actions organizations need to quickly improve security and get back to running their business,” said Jonny Rivera.

Try Security Advisor Today

Ready to improve your organization’s security posture? Nebula users can start using Security Advisor today, free-of-charge.

Not a Nebula user? Get a free demo.


[ad_2]
Source link

Pixel 8, Pixel 8 Pro storage variants confirmed

0
[ad_1]

A leaked spec sheet of the Pixel 8 Pro last month suggested that the new Google flagship may lack a 512GB storage variant. Turns out, it won’t. Reliable sources have confirmed to WinFuture that you will be able to buy the device with half a terabyte (TB) of storage space.

According to the new report, Google isn’t changing anything in the storage department for either Pixel 8 model. The vanilla Pixel 8 will be available in 128GB and 256GB storage options, while the Pro model will add a third 512GB option. Though not confirmed, we should be looking at the UFS 4.0 storage solutions here. It’s the latest mobile storage standard. The Pixel 7 series features the previous-gen UFS 3.1 storage chips.

This upgrade likely won’t add to the devices’ price. The report states that Google is keeping the base storage at 128GB to ensure a low entry price. Last year, it priced the 128GB Pixel 7 at $599, while the Pixel 7 Pro started at $899. We are expecting similar price tags this year, though there are rumors of a minor price hike in some markets, including the US and Europe.

The new Pixels are said to cost $50 more, or at least the base model is. Higher storage variants may see bigger hikes. This is due to a rise in component cost, effectively increasing the total manufacturing cost of the devices. Flagship phones have gotten more expensive in recent months because of increased manufacturing costs. It remains to be seen if Google can keep the Pixel 8’s entry price unchanged.

Pixel 8 leaks have started coming more frequently

Leaks and rumors about the Pixel 8 series have been getting more frequent in recent weeks. If anything, that’s a sign of a nearing launch. By nearing, we don’t mean it’s just around the corner. The new Pixels are still a couple of months away. We aren’t expecting Google to take wraps off its latest flagships before October. The same launch event should also bring the Pixel Watch 2.

Google’s second-gen smartwatch is rumored to address many shortcomings of the original model. We are reportedly in for a much-improved processor, a jump from a 10nm chip to a 4nm solution with twice as many CPU cores, which operate faster too. The wearable is also rumored to bring a bigger battery, UWB (ultra-wideband) support, faster updates, improved display, and more upgrades. We will keep you posted with the latest information about all upcoming Pixel devices as Google prepares for the launch.


[ad_2]
Source link

Technology, accessibility, and the benefits of online learning

0
[ad_1]

Technology, in one form or another, has gone hand in hand with the education process for as long as technology has existed. The tools available in a particular time go on to shape how those that grow up in that time develop their understanding of the world. This makes sense, as anyone who is striving to make a name for themselves in their chosen field will need to ensure that they have a strong understanding of any advancements that may be required to work effectively, but it’s more than that.

As technology has connected us with each other, so too has it expanded the number of options we have in learning from others and gaining a more robust understanding of the world around us. It has been a vital piece of the puzzle in terms of transforming our society and allowing us to reach levels of comprehension and understanding that would have been impossible in years past.

So, with the understanding that technology has enormously impacted the world of learning and education, let’s take a closer look at what that impact has actually been.

The Advancement of Geographical Accessibility

Issues with access to information and learning opportunities continue to exist in our society to this day, but one thing we rarely associate with inaccessibility is geography. In a time before the internet, if you happened to not live near a highly-ranked university, and didn’t have the high level of funding required to move for several years and dedicate yourself to your studies in a new place, your options were quite limited. However, as time has gone on, internet access has become the norm for many countries and areas. This has allowed for a swell of online learning opportunities to arise, giving those that were once unable or not wanting to physically attend a university a chance to take on many potential educational pathways from anywhere in the world.

More theoretical and information-heavy courses such as an online MBA, or a master’s in education, have translated flawlessly to online platforms, with the best online MBA courses offering a streamlined approach to learning practices that don’t necessitate the more hands-on approach often associated with traditional academia.

Advancements in Disability Accessibility

Inevitably, face-to-face lectures within study halls can prove far more difficult for some than for others. Whether this be due to large lecture halls posing issues for hearing-impaired individuals or those with near-sightedness, or due to older buildings being poorly equipped for those with mobility issues, there are many reasons that certain students may experience difficulties that others don’t.

Online learning has, over the years, found ways to tackle these accessibility issues in ways that are unique to the platform of digital resources. Lectures can be subtitled, either manually or by auto-generated text, students with mobility needs can access learning without having to navigate spaces that don’t meet their needs, and especially in the time of COVID-19, those with preexisting immuno-compromising conditions are not put at risk by being placed in densely populated learning spaces.

None of this is to say that the online learning process has been made perfect for those with particular needs. However, given the alternatives that have historically been available, access to online learning has provided a more reliable means for those who struggle in classroom environments to seek higher education and learning resources.

The Archival of Information

In a time before the easy sharing of data, especially audio and video, lectures were often one-off talks that were unlikely to have a genuine record once they had ended. Cut to 2023, and the internet has allowed for the archival and storage of thousands of lectures from across the world, providing information that spans fields, disciplines, methodologies, and even eras, with recordings from as far back as the 1800s now digitised for people to learn from and discover.

For academics, this is an invaluable source of learning and reference, allowing students to compile ideas from some of the great minds of history and develop a far more complex understanding of the world from the perspectives of innumerable people throughout the last several hundred years. Whilst digital archival is still an ongoing issue and one that has become far more pressing at a time when remnants of the early internet are beginning to disappear, we must be able to appreciate the amount of information we now have compared to every other time in history.

~

Technology has changed everything for academia, and with online learning effectively becoming the norm as of the 2020s, we are sure to see more advancements to better cater to this growing body of remote students. Everything is shaped by accessibility, and for those of us that benefit from these movements towards a higher availability of information, nothing could be more exciting.


[ad_2]
Source link

Meta’s Messenger app will no longer support SMS come September

0
[ad_1]

Meta has started to notify users that Messenger will no longer support SMS come September. If you’re relying on Meta’s app for SMS, you’ll have to replace it with something else or simply use Android’s default app for this particular feature.

Messenger users who’ve already received notifications have taken to Reddit to complain about the change. Not to mention that Meta did not give them any reason for why it’s dropping SMS support. Perhaps it’s Google that suddenly decided that Meta’s Messenger should no longer support SMS and we should wait for the search giant to announce some sort of replacement.

Here is Meta’s support page regarding the upcoming changes: “if you use Messenger as your default SMS messaging app for your Android device, please note you will no longer be able to use Messenger to send and receive SMS messages sent by your cellular network when you update your app after September 28, 2023.”

Keep in mind that even if Meta’s Messenger will no longer support SMS, you will still be able to send and receive SMS messages through the cellular network through the phone’s default messaging app.

More importantly, even if you don’t choose another messaging app to redirect your SMS, they will automatically go to your phone’s default messaging app.

According to Meta, SMS will no longer be available on Messenger as early as September 28, 2023. An update should implement the change around that timeframe, so if you see a new version in the Google Play Store and download it, then you’ll no longer receive SMS in your Messenger app.


[ad_2]
Source link

New PaperCut NG/MF Flaw Let Attackers Execute Code on Unpatched Windows Servers

0
[ad_1]

A Critical vulnerability was discovered in the widely used PaperCut MG/ NF print management software running on Windows prior to version 22.1.3.

As of the July 2023 security bulletin, patches have been released by PaperCut to fix this vulnerability. PaperCut is a widely used print management software that has two different software as, MG and NF.

PaperCut is a printing management and control tool, while NF is a versatile solution that offers printing, copying, scanning, and specialty printing capabilities.

CVE-2023-39143: Chained Path Traversal in Authenticated API

On certain configurations, this vulnerability enables an unauthenticated attacker to potentially read, write and upload arbitrary files resulting in remote code execution.

The CVSS Score for this vulnerability is yet to be confirmed.

Configuration Required Exploitation

As reported, servers running on Windows platforms that have the external device integration setting enabled are vulnerable to this remote code execution through file upload.

This setting is enabled by default on certain PaperCut installations such as PaperCut NG Commercial version or PaperCut MF.

Detection

This vulnerability can be detected using the following command, which checks if the server is patched and whether it is running on Windows.

curl -w “%{http_code}” -k –path-as-is “https://<IP>:<port>/custom-report-example/..\..\..\deployment\sharp\icons\home-app.png”

A 200 response to this command indicates that the server is not patched and vulnerable, and a 404 response states that the server is patched and not vulnerable.

Users of these products are recommended to upgrade to the latest version of PaperCut NG/MF, version 22.1.3. As a workaround, users can also configure an allowlist of IP addresses that are permitted to connect with the PaperCut server.

Keep informed about the latest Cyber Security News by following us on GoogleNews, Linkedin, Twitter, and Facebook.


[ad_2]
Source link

2022’s most routinely exploited vulnerabilities—history repeats

0
[ad_1]

What can the routinely exploited vulnerabilities of 2022 tell us, and what do we think will make it on to next year’s list?

The Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), Federal Bureau of Investigation (FBI), and international partners have released a joint Cybersecurity Advisory (CSA) called the 2022 Top Routinely Exploited Vulnerabilities.

We went over the list and it felt like a bad trip down memory lane. If you adhere to the expression “those who ignore history are doomed to repeat it” then you may consider the list as a valuable resource that you can derive lessons from. Unfortunately as George Bernard Shaw said:

“We learn from history that we learn nothing from history.”

But since that’s a self-contradicting expression, let’s assume there are lessons to be learned.

Last year’s top vulnerabilities

First let me show you the bad memories. The Common Vulnerabilities and Exposures (CVE) database lists publicly disclosed computer security flaws. We will use the CVE codes to uniquely identify the covered vulnerabilities.

  • CVE-2021-40539 is a REST API authentication bypass vulnerability in ManageEngine’s single sign-on (SSO) solution which results in remote code execution (RCE). When word of this vulnerability came out it was already clear that it was being exploited in the wild. Noteworthy is that this vulnerability also made it into the top 5 routinely exploited vulnerabilities of 2021.
  • CVE-2021-44228, aka Log4Shell, is a vulnerability in Apache’s Log4j library, an open-source logging framework incorporated into thousands of other products. Malicious cyber actors began exploiting the vulnerability after it was publicly disclosed in December 2021, and continued to show high interest throughout the first half of 2022.
  • CVE-2018-13379 is a vulnerability affecting Fortinet SSL VPNs, which was also routinely exploited in 2020 and 2021.
  • ProxyShell is a combination of three vulnerabilities in Microsoft Exchange Server (CVE-2021-34473, CVE-2021-31207, and CVE-2021-34523) that can be chained together to allow a remote attacker to break in, take control, and then do bad things on an unpatched server. Proxyshell also made it into the top 5 routinely exploited vulnerabilities of 2021.
  • CVE-2021-26084 is a vulnerability affecting Atlassian Confluence Server and Data Center which could enable an unauthenticated cyber actor to execute arbitrary code on vulnerable systems. This vulnerability quickly became one of the most routinely exploited vulnerabilities after a proof-of-concept (PoC) was released within a week of its disclosure. Attempted mass exploitation of this vulnerability was observed in September 2021 and also made it into the top 5 routinely exploited vulnerabilities of 2021.

Looking at the above, it looks like Shaw was at least partly right. We are not learning from history. It also indicates that we should be able to predict some of the vulnerabilities that will show up in next year’s list. Let’s take a stab at that. So we’re looking for easy to overlook and/or hard to patch vulnerabilities in the 2022 list that we haven’t already covered above.

This year’s top vulnerabilities?

These are the ones that I think will make it to the top 10 next year, maybe together with the ones that have already been around for years.

  • CVE-2022-22954, CVE-2022-22960 are two vulnerabilities that can be chained to allow Remote Code Execurion (RCE), privilege escalation, and authentication bypass in VMware Workspace ONE Access, Identity Manager, and other VMware products. Exploitation of these VMware vulnerabilities began in early 2022 and attempts continued throughout the remainder of the year.
  • CVE-2022-26134 is a critical RCE vulnerability that affects Atlassian Confluence and Data Center. The vulnerability, which was likely initially exploited as a zero-day before public disclosure in June 2022, is related to an older Confluence vulnerability (see CVE-2021-26084 above), which cyber actors also exploited in 2022.
  • CVE-2022-1388 is a vulnerability in the F5 BIG IP platform that allows attackers to bypass authentication on internet-exposed iControl interfaces, potentially executing arbitrary commands, creating or deleting files, or disabling services.
  • CVE-2022-30190, aka Follina, is a Microsoft Windows Support Diagnostic Tool RCE vulnerability. An attacker can send you a malicious Office document that will compromise your machine with malware when you open it.

So I was hoping we can strike a deal. I’ll check next year how well this prediction does and you all patch these vulnerabilities real quick, so I can write about some new ones next year.


We don’t just report on vulnerabilities—we identify them, and prioritize action.

Cybersecurity risks should never spread beyond a headline. Keep vulnerabilities in tow by using Malwarebytes Vulnerability and Patch Management.


[ad_2]
Source link

Galaxy S23 series gets big new update with August security patch

0
[ad_1]

Samsung is rolling out a big new update to the Galaxy S23 series. Weighing in at about 1.4GB, it’s a massive OTA (over the air) firmware release for the flagship trio. However, the official changelog is short of details. It doesn’t mention anything apart from the latest security patch (August 2023). The company has yet to detail the content of the new security release.

The new update for the Galaxy S23, Galaxy S23+, and Galaxy S23 Ultra started rolling out recently in some Asian countries with the firmware build number S911*XXU3AWGJ. First spotted by Twitter user @tarunvats33, we can currently confirm the availability of the update in Indonesia, Thailand, Malaysia, and the Philippines. Samsung should soon expand the release to other markets, including the US.

As said earlier, the official changelog supplied by the Korean firm doesn’t mention anything notable apart from the August SMR (Security Maintenance Release). It’s the generic stuff such as some device stability and reliability improvements and updates for first-party Samsung apps. However, the build number and the size of the OTA file suggest there’s plenty more.

Unfortunately, with the rollout limited to a few Asian countries, we can’t confirm what the new Samsung flagships are getting with the August update. The company recently announced that the Galaxy S23 trio will get some of the new camera features introduced with the Galaxy Z Fold 5 and Galaxy Z Flip 5 foldable last month. Maybe a few of them are part of this package if not all.

The Galaxy S23 series and other models will get new camera features

As we wait for confirmation about the changes brought by the latest update for the Galaxy S23 series, here’s a quick reminder of what new features Samsung has been readying. The company says the new flagships will get the ability to copy editing effects such as filters and color tones from one photo and apply them to another. They will also pick up improvements for digital zoom, the built-in video editor, and the Photo Remaster tool.

Some of these features will also roll out to the Galaxy S22 and Galaxy S21 series, as well as all recent Samsung foldables. The latter group of devices is also in line for improved Pro/Pro Video mode. The Galaxy S23 series, meanwhile, will get improved document scanning with the Android 14-based One UI 6.0 update. So plenty of goodies are in store for Galaxy users. Stay tuned and we will keep you posted with all the latest updates as they arrive.


[ad_2]
Source link