Cisco Disclosed Vulnerabilities In SPA500 Series IP Phones

0
[ad_1]

Heads up, Cisco users! Cisco recently disclosed numerous vulnerabilities in SPA500 series IP phones, confirming that no workarounds exist for the flaws. Also, the firm has no plans to address the issues as these devices have reached their end-of-life. Therefore, users must consider getting rid of the vulnerable devices at the earliest.

Cisco IP Phones Vulnerabilities

In a recent advisory, Cisco described two different vulnerabilities affecting its SPA500 Series IP Phones.

SPA500 are Cisco’s small business IP phones offering affordable communications with numerous supportive features such as wideband audio, Bluetooth and WiFi support, etc. Their common usage in various big and small firms indicates the extent of impact of any exploits involving vulnerabilities in these devices.

According to Cisco, the first of these vulnerabilities include a cross-site scripting vulnerability (CVE-2023-20181). The vulnerability existed “due to insufficient validation of user-supplied input by the web-based management interface of the affected software.” Exploiting the flaw could allow an unauthenticated, remote adversary to execute arbitrary codes or access browser-based data. Whereas achieving this goal required the attacker to trick the victim user into clicking a maliciously crafted link.

The second vulnerability, CVE-2023-20218, includes an HTML injection due to insufficient user-input validation by the web-based management interface. A remote, unauthenticated adversary could easily exploit this flaw by tricking the victim into clicking a maliciously crafted link. Once done, the attacker could perform client-side attacks, such as injecting malicious redirections from the target web page.

The firm has acknowledged the researchers Ahmed Hassan and Josef Hassan of Titanium Cyber Security Solutions for discovering and reporting these vulnerabilities.

No Plans To Patch Flaws Due To Devices’ EOL

As explained in the advisory, both vulnerabilities received medium severity ratings and a CVSS score of 6.1. Also, the firm detected no active exploitation attempts for the flaws.

However, these flaws are important for the users because the firm has confirmed not to address these issues. That’s because the SPA500 IP Phones have reached their end-of-life. Consequently, no workarounds exist to mitigate the issues. Therefore, the only way for users to protect their networks from potential threats is to migrate to other devices.

Let us know your thoughts in the comments.


[ad_2]
Source link

You can now stream Android apps on your Chromebook

0
[ad_1]

People have been waiting for the ability to stream their Android apps to their Chromebook for over a year. Now, the wait is coming to a close, as app streaming for ChromeOS is now out of beta testing, according to Engadget. However, there’s a bit of a catch for the time being.

Last year during CES, Google introduced us to app streaming for ChromeOS. This is a feature that allows you to stream an app directly from your Android phone to your Chromebook.

When you use the feature, you’ll see the app represented on the right side of your screen. You can interact with the app directly on your Chromebook, so you don’t need to wake up your phone to interact with it. Also, this gives you the mass majority of the functionality of the app. You can use the app and navigate to other apps if need be. For example, if you’re in Threads, and you choose to open a link in Chrome, it seamlessly navigates to Chrome so that you can use it.

The things that you can do are the obvious ones. These are the functions that require the phone’s hardware to function. So, don’t expect to use the camera app or something like Snapchat.

What’s neat about this feature is you don’t need to open the app on your phone first. When you open the app on your Chromebook, it will automatically open on your phone in the background. Just know that if you close the app on your phone, it will close on your Chromebook. Also, if you bring the app to the foreground on your phone, it will close on the Chromebook.

You can stream apps to your Chromebook, but it’s still limited

So, this is a fun capability, but it’s still new, so there are some limitations. For the time being, there aren’t many phones that are compatible with this functionality. For the time being, you can only use this feature on a Pixel 4a or later. Also, you can only use it with the Xiaomi 12T, 12T Pro, 13, and 13 Pro.

As for the Chromebook, Google didn’t specify any model or company. It just needs to be running the latest stable version of ChromeOS M115. Make sure that your Chromebook is up to date.


[ad_2]
Source link

North Korean Hacker Group Breached US IT Firm JumpCloud

0
[ad_1]

The cloud-based IT management firm JumpCloud was compromised by North Korean Lazarus Group hackers who appear to be financially motivated to steal cryptocurrencies.

Since at least 2009, this hacking group has been active, and it is well recognized for its international attacks against prominent targets, including banks, governments, and media organizations.

The company revealed that a nation-state actor was responsible for the system breach that compelled it to reset its clients’ API keys in June.

The company did not identify the country of origin of the hackers at the time, but now researchers at cybersecurity firms CrowdStrike and SentinelOne have identified the hackers as Lazarus, a well-known group known for attacking crypto entities like the Ronin Network and Harmony’s Horizon Bridge. 

Additionally, Tom Hegel of SentinelOne verified that the indications of compromise (IOCs) given by JumpCloud are “linked to a wide variety of activity we attribute to DPRK.”

He stated North Korea was responsible for the intrusion and speculated that the hackers might also be responsible for a recent social engineering effort that targeted GitHub users.

Mandiant incident responders also blamed North Korea for the breach. Also, the renowned Lazarus hacking group’s “Labyrinth Chollima,” a subgroup that was also connected to the recent supply-chain hacks on corporate phone manufacturer 3CX, has been blamed by CrowdStrike for the JumpCloud attack.

Specifics of the JumpCloud Breach

JumpCloud found a breach of its systems by a sophisticated nation-state-sponsored threat actor on June 27th due to a spear-phishing attempt.

JumpCloud quickly cycled credentials and rebuilt compromised infrastructure as a precaution, even though there was no immediate proof of a customer effect.

Later the reports say JumpCloud discovered “unusual activity in the commands framework for a small set of customers.” It also examined logs for indications of malicious activity and forced the rotation of all admin API keys while working with incident response partners and law enforcement.

JumpCloud gave information about the incident and revealed indications of compromise (IOCs) in an alert that was issued on July 12 to assist partners in securing their networks against assaults from the same group.

A North Korean APT group carried out the assault in June, JumpCloud has now confirmed.

According to Bob Phan, JumpCloud CISO, “Importantly, fewer than 5 JumpCloud customers were impacted and fewer than 10 devices total were impacted, out of more than 200,000 organizations that rely on the JumpCloud platform for a variety of identity, access, security, and management functions. All impacted customers have been notified directly”.

Stay up-to-date with the latest Cyber Security News; follow us on GoogleNewsLinkedinTwitterand Facebook.


[ad_2]
Source link

Sony Xperia 5 V leak could hint at lower price

0
[ad_1]

Sony isn’t exactly known for making affordable smartphones, but a new video leak of the Sony Xperia 5 V suggests that Sony may be changing its tune just a little.

The leak, which is originally from Reddit user u/JB2unique and spotted by Android Authority, shows what appears to be an ad spot for Sony’s upcoming device. And there’s a pretty significant change to this phone that may be pointing to the lower price point. Based on the leaked video, it looks like Sony’s Xperia 5 V will only have two rear cameras.

Of course, this doesn’t mean Sony will charge less money for this phone. However, every other device in the series has had a triple camera array for the rear sensors. And with one less camera, the phone might cost Sony less to make. Which in the end could result in a lower cost to the consumer. At least that’s the logical conclusion to come to. Of course this isn’t a confirmation from Sony. And even with a lower price it may still be more expensive than competing phones.

Xperia 5 V video leak shows off more than just the cameras

Sony Xperia 5 V Video Leak (1)

It’s not an in-depth review or anything like that, but the video leak does show off a couple of other interesting details. This would appear to be the first good look at the phone’s official design. Which, surprise, doesn’t look all that different from the last phone in the series. It has the same beveled edges on the frame with rounded corners. And the same vertical pill-shaped camera housing, save for the third sensor.

And judging from the video it looks like there’s at least one confirmed color. White. You can also see that there’s ZEISS T branding on the camera housing. At the very end, there’s a brief moment where you get a glimpse of the more sustainable packaging Sony looks to be using for the device. It’s minimal and has a low footprint. So not a lot of packaging is going to waste here. And if nothing else, there’s at least something commendable about trying to minimize the packaging for your products to be more sustainable. Even if the products can cost a lot.

 

Xperia 5 V
by u/JB2unique in SonyXperia


[ad_2]
Source link

Adobe Patched Critical ColdFusion Zero-Day Flaw Under Attack

0
[ad_1]

Adobe released an emergency security patch for ColdFusion, addressing a critical zero-day vulnerability. The tech giant warned users of active exploitation of the flaw, urging users to update their systems as soon as possible.

Active Exploitation Detected For Adobe ColdFusion Zero-Day

Adobe’s recent security bulletin highlights addressing a critical-severity zero-day flaw affecting Adobe ColdFusion.

ColdFusion is Adobe’s proprietary software development platform facilitating rapid web application development. The platform includes an integrated IDE and full scripting language. It helps develop diversified applications from data-driven sites to remote services such as WebSockets, REST services, SOAP web services, etc.

According to Adobe’s advisory, the service has addressed three vulnerabilities in the tool. One of these, CVE-2023-38205, is a critical-severity flaw with a CVSS score of 7.5. Adobe confirmed this vulnerability as a zero-day, detecting its active exploitation in “limited attacks.”

The firm has not shared details about this vulnerability besides listing it as a security feature bypass due to improper access control. However, researchers from Rapid7 reported the matter in detail when they noticed active exploitation attempts chaining the previously patched vulnerabilities CVE-2023-29298 (discovered by Rapid7) and CVE-2023-38203 (discovered by ProjectDiscovery). The researchers observed that the patch for CVE-2023-29298 didn’t completely fix the issue, leaving space for adversaries to exploit the flaw.

Following this discovery, Rapid7 swiftly reported the matter to Adobe, which then included the patch for CVE-2023-29298 with CVE-2023-38205.

The other two vulnerabilities fixed with the latest ColdFusion release include a critical code execution vulnerability due to the deserialization of untrusted data, CVE-2023-38204 (CVSS 9.8), and a moderate severity security feature bypass, CVE-2023-38206 (CVSS 5.3).

Adobe listed the following software versions as vulnerable to the flaws.

  • ColdFusion 2023 (Update 2 and earlier)
  • ColdFusion 2021 (Update 8 and earlier)
  • ColdFusion 2018 (Update 18 and earlier)

Whereas the firm patched the issues with ColdFusion 2023 (Update 3), ColdFusion 2021 (Update 9), and ColdFusion 2018 (Update 19). Users must update their systems to these versions to receive the patches accordingly.

Let us know your thoughts in the comments.


[ad_2]
Source link

Netflix rolls multiple features into My Netflix tab on mobile

0
[ad_1]

Netflix is hoping you’ll forget about the password sharing crackdowns with the launch of its new feature called the My Netflix tab. It’s a “one-stop shop tailored to you with easy shortcuts to help you choose what you want to watch,” the company says in a blog post.

Basically, the My Netflix tab is taking the place of downloads in the mobile app. Downloads will now be rolled into the new tab along with a handful of other features the service offers. Tapping on the new tab, you can find not only your downloads, but a host of content you’ve interacted with. Including shows and movies you’ve liked, things you’ve added to your list, and reminders.

It even contains a carousel of trailers you’ve watched on the platform. That last one could actually be quite useful. Had you watched any trailers for content you think you might be interested in. But forgot to add to your list.

The My Netflix tab rolls out to iOS users today, and Android soon

My Netflix Tab Feature (2)

Netflix is rolling out this new feature beginning today, but only for iOS users. The company says iOS users can find the My Netflix tab in the app from today. But Android users won’t have access to it until August.

The company doesn’t mention a specific time for the Android arrival of the feature. So if you’re looking forward to it, it might be best to just assume it’ll show up at the end of the month. That way if it shows up earlier you can be excited that it’s available sooner than you were expecting.

Netflix says the more you tell it what you like, the more you’ll see on this new tab. So think of it kind of like recommendations. Where the recommendations for content pop up the more you watch stuff on Netflix as it tries to learn what content to serve you. For now this seems to be an iOS and Android only feature. Which means you shouldn’t expect it to show up on the website, or the apps for other platforms like consoles or smart TVs.


[ad_2]
Source link

The coming Spotify Premium price hike will hit the US next week

0
[ad_1]

Recent reports from the Wall Street Journal point out that US users will see a Spotify Premium price hike. Currently, premium subscribers pay a monthly fee of $9.99, but that is set to see a change in this price in the coming days. The increment to premium subscription pricing is one that the company’s CEO has been hinting at over the past few months.

Spotify sees this price increment as being okay since it’d help boost profit for the company. However, users of the streaming platform’s services might not see things from Spotify’s point of view. Once this price increment hits, there might be some compliance on the part of users in the US.

For now, the reports point out that this price hike will affect US users sometime next week. But Spotify isn’t the first streaming service to hike its prices in recent times. Also, this isn’t the first time that Spotify will be increasing the prices of its subscription prices across various plans.

The US will soon see a Spotify Premium price hike, here is what you need to know

Back in 2021, Spotify increased the prices of plans in certain markets by up to $2. From then till now, users of Spotify in these markets have been able to adapt to that price change. Now, two years after the last price increment, Spotify is a few days away from increasing the price for their plans again.

This time around, the coming price increase is said to be up to $1 on certain plans. At the moment, Spotify’s Basic plan costs $9.99, but the coming increase might cost $10.99. This is a slight increase, but a good amount of users will complain about this increase.

So, if users will get irritated by the price increase, why would Spotify still affect it by next week? At the moment, Spotify hasn’t made any comment about the coming price increase. However, over the past few months the streaming platform has been informing users of this coming change, so prepare themselves.

Other streaming platforms like Apple Music, Amazon Music, Tidal, and even YouTube Music have kicked up their prices. These are the biggest competitors in the music streaming industry and they have all made some adjustments to their subscription prices. For some reason, Spotify is the last on this list to increase prices for its plans.

By next week, users in the US will get to know the new price they’d pay for monthly subscriptions. This change might go into effect with subscriptions for the coming month. Users will get to know the new price they’d pay to continue streaming without ads by next week.


[ad_2]
Source link

Netflix adds new feature to iOS, Android to help you quickly find content to watch

0
[ad_1]

Netflix announced today that it is adding a new feature to its popular mobile phone app. Called My Netflix, this is a one-stop shop for both iOS and Android users that features shortcuts to help you find something to stream on the platform. The new My Netflix Hub will show you the content you recently downloaded, the movies and television shows you gave a thumbs up to, shows and movies you’ve saved to My List, trailers that you’ve viewed, what content you’re in the middle of watching, content you’ve recently viewed and more.

With the My Netflix Hub, you can check it out wherever you are to get ideas of what to watch next including shows and movies that you’re in the middle of watching, or content that you’ve downloaded to view at any time. Even with the capabilities of the My Netflix Hub, you can always visit your Home tab or other parts of the app to see the entire Netflix library.

The My Netflix Hub learns more about you the more you use it. So if you save more medical dramas or give a thumbs up to every episode of Grey’s Anatomy, you’re apt to find more medical dramas in the My Netflix Hub. The Hub is rolling out today to iOS users and will be available on Android devices early next month. Check to see if the My Netflix Hub has arrived by opening the app and looking for the tab on the bottom right corner of the display.

If the My Netflix Hub hasn’t been added to your iOS Netflix app, you can try to manually update the app by opening the App Store and tapping on the profile picture in the upper right corner. You’ll see a list of apps that are in a queue to be updated. Scroll down until you see “Netflix” (that is, if it appears on the list) and tap on “Update.” Wait for the app to be updated before you open the Netflix app to check whether the My Netflix Hub has arrived on your iPhone. I can tell you that the update has hit the Netflix app on my iPhone 11 Pro Max running iOS 16.6.

And one last thing. If you don’t have the Netflix app on your device, you can tap on this link to install it on your iOS device or tap on this link to install it on your Android device.

[ad_2]
Source link

Cl0p Ransomware Gang Leaks MOVEit Data on Clearweb Sites

0
[ad_1]

At the time of writing, the clearweb domain of the Cl0p Ransomware Gang was offline; however, the gang’s entry to the clearweb reveals upcoming cybersecurity threats intended for their victims.

The Cl0p ransomware gang is among the cybercrime syndicates that have exploited the MOVEit vulnerability more extensively than any other. To exacerbate the situation, the ransomware gang is now leaking the data it stole through the MOVEit vulnerability on its clearweb domain.

According to security researcher Dominic Alvieri, the Cl0p ransomware gang is leaking the data they stole from the MOVEit Transfer platform in May on the publicly accessible website. The gang exploited a zero-day vulnerability in the secure file transfer platform, leading to a data breach that drastically impacted hundreds of businesses and government institutions worldwide. 

Cl0p has dumped the data as large downloadable files instead of opting for specific searchable items and didn’t host the site on the Tor network, as has been the case in many previous data leaks.

Cl0p Ransomware Gang Leaks MOVEit Data on Clearweb Sites
Screenshot from Cl0p’s dark web domain (Image credit: Hackread.com)

What is the difference between Clearweb and Dark Web

The Clearweb, also known as the Surface Web or Visible Web, refers to the part of the internet that is easily accessible and indexed by search engines like Google. It includes websites and web pages that can be accessed through standard web browsers without requiring any special configurations.

On the other hand, the Dark Web is a portion of the internet that is intentionally hidden and not indexed by traditional search engines. Accessing the Dark Web requires specialized software, such as the Tor browser, which provides anonymity and encryption.

This anonymity allows users to access hidden websites that use “.onion” domains. The Dark Web is often associated with illicit activities, illegal marketplaces, and anonymous forums where users can communicate without revealing their identities.

It is worth noting that Cl0p has recently developed this tactic to blackmail their victims where the gang creates Clearnet websites hosted on the surface web to leak stolen data. They first tried this tactic to leak data stolen from the PWC business consulting firm, which was uploaded in four spanned ZIP archives. Later Cl0p used the same tactic for leaking data from TD Ameritrade, Aon, Kirkland, and Ernest & Young.

Screenshot from Cl0p’s clearweb domain (Image credit: Hackread.com)

Perhaps, the Cl0p ransomware gang believes it to be a more effective method for extorting victims (even though such websites get quickly removed). Leaking data on Tor-hosted darknet platforms has lost the charm given their restricted reach.

Although Tor offers anonymity, not all users can access the sites without a specialized browser, whereas, on the surface web, anyone having the website link can download the stolen data.

Another reason is that search engines don’t index darknet content, so, download speed is usually pretty slow, whereas, on Clearweb, the site gets indexed, and downloading is quicker. Nonetheless, this tactic is more detrimental for the victims as they become vulnerable to harassment and online scams from all fronts.

Cl0p is among the most notorious hacking gangs currently having successfully targeted high-profile firms and extracted millions of dollars in ransom. Per Coveware’s latest report, the gang has raked in $75-$100 million from their latest MOVEit attacks. Coveware CEO Bill Siegel noted that only a handful of Cl0p’s victims generally give in to their demands.

Therefore, the hackers are using different extortion strategies. Siegel also noted that MOVEit attacks have proven far more successful than GoAnywhere data theft, where the hackers could breach 130 victims and didn’t receive their desired ransom as well.

As expected, all Clearweb extortion sites created by the Cl0p ransomware gang have been taken offline, proving the short-lived nature of this method. Security researchers highlighted that Cl0p’s latest site lacks the sophistication seen in the approach used by the rival ALPHV ransomware gang, aka BlackCat, which introduced this method to pressurize their victims more profoundly.

  1. Big Head Ransomware Found in Fake Windows Updates
  2. LockBit Ransomware Expands Attack Spectrum to Mac Devices
  3. Genesis Market’s Clearnet domain seized; Dark Web site still online

[ad_2]
Source link