Elon Musk believes brain chips will replace smartphones

andreasc
-
0
Elon Musk believes brain chips will replace smartphones
[ad_1]

Elon Musk said that brain chips will replace smartphones. Well, he mentioned his company, Neuralink, in specific. All this happened as a response to the ‘Not Elon Musk’ X account, which is a parody account.

Elon Musk actually believes that brain chips will replace smartphones

That account basically asked everyone if would they allow Neuralink to implant a chip in their brain to allow them to control their phones by thinking. To that, Elon Musk said: “In the future, there will be no phones, just Neuralinks”.

He could not have been more straightforward. In a separate tweet, Musk announced that Neuralink is accepting applications for the second participant. As some of you may recall, Neuralink implanted a brain chip in a 29-year-old paralyzed man in January.

It seems like Elon Musk is convinced this is the future we’re looking at. Brain chips will become the norm based on what he said. The reactions to the first brain chip implant were… colorful, let’s just say that.

People are very skeptical about all this, which is unsurprising

People are very skeptical when it comes to allowing a company plan a chip inside their brain. There’s no need to explain why that is. So it’s hard to imagine that it will become the norm, but Musk certainly believes it will.

That brain chip allowed Noland Arbaugh, Neuralink’s first human test subject, to play chess by using his brain. Chess is something he always loved to do, but was unable to due to his accident that happened 8 years ago.

The potential of brain chips is vast, of course, but it’s a touchy subject for many. People certainly won’t be running to get the same treatment anytime soon. Who knows what will happen down the line, though. The future is uncertain in so many ways and impossible to predict.


[ad_2]
Source link

New Highly Evasive SquidLoader Attacking Employees

andreasc
-
0
New Highly Evasive SquidLoader Attacking Employees
[ad_1]

Researchers discovered a new malware loader named SquidLoader targeting Chinese organizations, which arrives as an executable disguised as a Word document attached to phishing emails

It uses evasion techniques to avoid detection and analysis. Then it downloads a malicious payload through an HTTPS request, as the loader is signed with an expired legitimate certificate or a self-signed certificate issued by the C&C server. 

WeChat code never executed.

SquidLoader is a malicious loader that executes a decoy file pretending to be a Word document, containing obfuscated code referencing popular software products like WeChat or mingw-gcc, to mislead security researchers.

Scan Your Business Email Inbox to Find Advanced Email Threats - Try AI-Powered Free Threat Scan

Despite the decoy code, the real malicious code is delivered through the HTTPS body in the response and XOR-decrypted for execution.

The loader doesn’t have persistence itself, but the second-stage payload (Cobalt Strike) can achieve persistence on the victim machine.  

Alert generated by malicious code.

Techniques For The Defense Evasion:

SquidLoader utilizes various obfuscation techniques to hinder analysis and employs pointless instructions like “pause” or “mfence” to bypass emulators potentially.

Encrypted code sections are decrypted with a single-byte XOR and include decoy instructions. 

In-stack encrypted strings are decrypted with a multibyte XOR key when needed, where jumps are crafted to land in the middle of instructions, confusing disassemblers.

Overall, these techniques aim to hide malicious code within legitimate functions and make analysis more difficult.

Fixed function parsing by IDA

It employs multiple obfuscation techniques to hinder analysis and manipulates the stack to overwrite the return address with the shellcode address. 

Control flow is obfuscated using infinite loops and a complex switch statement that makes execution order unpredictable, while debuggers are detected by checking for specific processes, debugger objects, and kernel debuggers. 

The malware also checks for the presence of certain files and performs its own syscalls through wrappers to bypass potential hooks, making it difficult to understand the malware’s functionality and purpose. 

Code modifications after a debugger is detected

The analysis report by Level Blue details a Cobalt Strike loader that utilizes a custom communication protocol with the C&C server, where the loader fetches a single payload that leverages a configuration obfuscation technique similar to the loader itself. 

The payload communicates with the C&C server using HTTPS requests with custom headers to perform actions like initial connection, system information exfiltration, and receiving tasks, where the exfiltrated data is encrypted with a custom bitwise operation-based algorithm.  

C&C request sample.

To evade detection, the malware employs Win32 API obfuscation with dynamic resolution for position-independent execution and builds an in-memory table storing API function addresses. 

Instead of raw addresses, it stores a transformed value using a bitwise operation: the bitwise NOT of the lower DWORD ANDed with 0xCAFECAFE, OR’ed with the address itself ANDed with 0xFFFFFFFF35013501.

Before calling the functions, the malware undoes this transformation to retrieve the correct addresses for a successful API call.

Free Webinar! 3 Security Trends to Maximize MSP Growth -> Register For Free


[ad_2]
Source link

This ‘Life Changing’ Shark AI Ultra Robot Vacuum is on Sale for $299

andreasc
-
0
This ‘Life Changing’ Shark AI Ultra Robot Vacuum is on Sale for $299
[ad_1]

The Shark AI Ultra (AV2511AE) robot vacuum is currently on sale over at Amazon for a whopping 50% off right now. That’s going to bring the price down to just $299. And makes it a really good value now, almost a no-brainer purchase.

This incredible robot vacuum from Shark is able to pick up just about anything that might be on your floors, with Shark claiming 50% better edge cleaning when compared to the RV2502AE model. The incredible suction also makes the Shark AI Ultra a perfect robot vacuum for pets in homes. It’s able to get up all of that pet hair, even the most stubborn of pet hair. The HEPA filtration is also a good feature to have, especially for those with allergies.

Shark uses 360-degree LiDAR vision to quickly and accurately map out your home. This allows the robot vacuum to methodically clean and detect and avoid objects that are in its path. It’s also able to adapt to day or night, so even with not much light, it can clean your home with ease.

Finally, we can’t forget about the docking station. Like most newer robot vacuums, the Shark AI Ultra also has an auto-empty dock. This actually comes in two models – a 45-day capacity and a 60-day capacity – currently, the 60-day capacity is actually much cheaper. So that’s our pick for this one. That means it can vacuum your home every day for 60 days before it needs to be emptied. That’s not too shabby.

All in all, this is a pretty impressive robot vacuum that you can pick up at home for not a lot of money.

Buy at Amazon


[ad_2]
Source link

Hackers Attacking Vaults, Buckets, And Secrets To Steal Data

andreasc
-
0
Hackers Attacking Vaults, Buckets, And Secrets To Steal Data
[ad_1]

Hackers target vaults, buckets, and secrets to access some of the most classified and valuable information, including API keys, logins, and other useful data kept within these storage solutions.

These storage solutions’ centralized and often inadequately protected nature makes them exceptional targets for the threat actors.

Cybersecurity analysts at DATADOG Security Labs discovered that hackers have been attacking the vaults, buckets, and secrets to steal data.

Hackers Attacking AWS Vaults

From 2024-05-23 to 2024-05-27, analysts detected abnormal behavior in a client’s AWS during threat hunting. IP 148[.]252.146.75 attempted ListSecrets and ListVaults API calls. 

Enriched as a potential UK Vodafone residential proxy. Activity in another AWS included ListBuckets to enumerate S3 buckets, then ListObjects on available buckets – automated per event times.

Free Webinar on API vulnerability scanning for OWASP API Top 10 vulnerabilities -> Book Your Spot

No GetSecretValue, BatchGetSecretValue, or GetObject were observed despite the S3 data events that were enabled. While the reasons are:- 

  • Broad automated campaign assessing available data before exfiltration

or 

  • Testing AWS identity access level for resale value determination

First, the attacker was observed targeting the S3 Glacier vault backup data. After failed enumeration, subsequent InitiateJob calls were expected to retrieve the vault archive list and specific archive, then GetJobOutput to download. 

Attackers commonly mask location using VPNs like free Cloudflare WARP, whose AWS API calls may seem less suspicious than other VPN providers

Attack chain (Source – DATADOG Security Labs)

The requests-auth-aws-sigv4 Python library likely generated the identified user agent for manually signing AWS API requests, unlike typical AWS CLI or Boto3 SDK usage, which handles Sigv4 signing automatically. 

Manually managing to sign provides no real advantage but could indicate suspicious activity if unexpected in your environment.

Recommendations

Researchers recommend detection and response teams closely examine this campaign due to the potentially severe operational impact of the exfiltration of production LLM data and resources from your cloud environment.

Here below, we have mentioned all the detection opportunities:-

  • Utilize IoCs to detect specific campaigns.
  • Enrich CloudFlare IPs if expected API calls.
  • Multiple regions ListSecret/ListVault in a short period.
  • 17 regions under 1 minute in observed data.
  • Spikes in AccessDenied for ListSecrets, ListBuckets, ListObjects, ListVaults.
  • Suspicious AccessDenied spikes indicate a lack of proper permissions.

Free Webinar! 3 Security Trends to Maximize MSP Growth -> Register For Free


[ad_2]
Source link

Galaxy Z Fold 6 dummy shows a not-so-flattering display crease

andreasc
-
0
Galaxy Z Fold 6 dummy shows a not-so-flattering display crease
[ad_1]

The Galaxy Z Fold 6 dummy images surfaced several times thus far, but not a single one gave us a good look at the display crease. Those dummy units are allegedly very precise, and that includes the display crease.

The display crease on the Galaxy Z Fold 6 & Flip 6 is not exactly flattering

With that in mind, 9to5Google just obtained some images from Sonny Dickson, and they do show us the display crease. That is actually true for both the Galaxy Z Fold 6 and Flip 6, as both dummy units surfaced.

If you take a look at the images in the gallery below, you’ll see a significant display crease on both devices. The Galaxy Z Fold 6 seemingly has an even bigger “problem” with that than the Flip 6, as rumors indicated.

There are a number of phones out there that have less pronounced creases

Various other smartphone OEMs managed to tone down the crease significantly. That doesn’t seem to be the case for Samsung, though. The crease is still very much pronounced here. Well, we’ll see if the real products will be the same in that regard.

Based on these dummy units, which come in two colors, the Galaxy Z Fold 6 won’t be that thin either. The Galaxy Z Fold 5 is nowhere as thin as the HONOR Magic V2 for example, nor the OnePlus Open.

If you were hoping to see some significant changes in that regard, well, that won’t be the case, it seems. The Galaxy Z Fold 6 will have three vertically-aligned cameras on the back. It will look similar to its predecessor.

The Galaxy Z Flip 6 will still have two cameras on the back, as does the Flip 5. Both phones will be made out of metal and glass. Both of them will launch on July 10. That’s when Samsung’s second Unpacked event of the year will take place. That is still unofficial, but several sources confirmed it.


[ad_2]
Source link

TikTok goes to court with more evidence to overturn the US ban law

andreasc
-
0
TikTok goes to court with more evidence to overturn the US ban law
[ad_1]

TikTok and its Chinese parent company ByteDance have filed a brief spelling out their lawsuit against the US government over the proposed ban. Filed in the US Court of Appeals for the D.C. Circuit, the brief calls the newly passed law to ban the app unconstitutional and a restriction on freedom of speech. A group of TikTok creators, who have separately sued the US government over the same matter, also filed a similar appeal.

TikTok and TikTok creators appeal in court against the US ban law

After mulling over it for years, the US government finally framed a law to ban TikTok. President Joe Biden signed the law on April 24, just a day after the Senate passed it. American lawmakers have national security concerns with the platform over its potential ties with the Chinese government, which the firm has always denied. TikTok has until January 19, 2025, to either sell its US operations or face a nationwide ban and exit the country.

Unsurprisingly, the company disagrees with the US government’s decision and has challenged the law in court. It filed a lawsuit seeking a ruling that blocks the law. A group of US-based TikTok creators who earn their livelihood from the app also filed a similar lawsuit. All of them argue that the proposed ban violates the First Amendment rights of Americans. They called the law an attempt to put an “extraordinary restraint on speech.”

The plaintiffs have now filed briefs doubling down on their arguments, providing the court with more evidence supporting their case. TikTok says the US government didn’t consider other options and rapidly moved forward with a law to ban the app. The firm adds that it provided American lawmakers “with an extensive and detailed plan to mitigate national security risks” but they ignored it and passed the law in a hurry.

“Never before has Congress expressly singled out and shut down a specific speech forum,” TikTok’s newly filed brief laments Congress for an unconstitutional law. “Never before has Congress silenced so much speech in a single act,” the brief continues in the same tone. “Congress gave this Court almost nothing to review. Congress enacted no findings, so there is no way to know why majorities of the House and Senate decided to ban TikTok.”

Oral arguments in the case will begin in September

The court will hear oral arguments in TikTok’s lawsuit against the US government’s ban law on September 16, 2024. Both parties have asked the court to expedite the case and announce its ruling by the first week of December. This is to ensure that TikTok gets enough time to appeal to the Supreme Court review if needed. As said earlier, the firm has until January 19, 2025, to finalize its next steps, whether to sell the app or exit the US.

President Joe Biden can extend the deadline, though. He may do that if he sees enough progress toward a divesture. However, it won’t be easy for ByteDance to sell TikTok’s US arm unless it decides to give the platform away cheaply. There aren’t many buyers who might be willing to spend billions of dollars on TikTok without getting access to its coveted recommendation algorithm, the key to its success.

A Chinese export law reportedly blocks the sale of the platform’s recommendation algorithm. So any buyer might have to develop a fresh algorithm from scratch, which could severely impact the user experience. TikTok has already denied that it is developing a US-only algorithm for a possible sale. For the time being, it is seemingly focused on blocking the law and living on to see more success in the US. Its newly filed brief contains hundreds of pages of communications with the US lawmakers explaining its measures to mitigate national security concerns. Time will tell what the court decides.


[ad_2]
Source link

Microsoft Phone Link now lets users extract text from images on their Android phones

andreasc
-
0
Microsoft Phone Link now lets users extract text from images on their Android phones
[ad_1]

Microsoft is rolling out a new update that brings a feature that many Android users will want to take advantage of: the ability to extract text from the images stored on their phones.

The folks at Windows Latest report that the OCR (optical character recognition) is now making its way to all Windows 11 users after about one month spent in beta testing where only members of the Windows Insider Program had access to it.

Although Microsoft initially called the feature “Scan Text,” but it’s now labeled simply as “Text.” Regardless of how it’s called, it uses the same technology as the traditional OCR, so if you’d like to try it out, you’ll have to update Phone Link to the latest version (1.24052.124.0).

Unfortunately, it appears that the feature only works well with English texts. If you’re trying to extract text from other languages, you’ll notice that it’s not as accurate.

Microsoft claims that its OCR-like feature should work with multiple languages, but that seems to be false at the moment. Even so, having the ability to save text from an image in a sperate document can be invaluable sometimes, even the feature is limited to English language.

Keep in mind that you can bring up the ability to extract text from images stored on your Android phone by simply using the dedicated shortcut: Ctrl + T.


[ad_2]
Source link

Qilin Ransomware Leaks 400GB of NHS and Patient Data on Telegram

andreasc
-
0
Qilin Ransomware Leaks 400GB of NHS and Patient Data on Telegram
[ad_1]

On June 3, 2024, as reported by Hackread.com, attackers launched a targeted ransomware attack against Synnovis, a key outsourced lab service provider for NHS hospitals in South-East London. The perpetrators, identified as the Qilin ransomware gang, escalated their tactics after the NHS rejected their demand for a $50 million ransom. As a result, the gang stole and publicly leaked the entire dataset they had exfiltrated.

In its updated incident report, NHS revealed that King’s College Hospital NHS Foundation Trust and Guy’s and St Thomas’ NHS Foundation Trust were the most severely affected NHS Trusts in this incident. Consequentially, these trusts were forced to postpone 1,294 outpatient appointments and 320 elective procedures.

According to BBC reports, the ransomware incident severely impacted healthcare operations, affecting more than 3,000 hospital and GP appointments and operations due to disruptions in pathology services.

Hackread.com can confirm that The Qilin ransomware gang utilized Telegram to distribute 400GB of sensitive data stolen from Synnovis. This method differs from the typical approach of ransomware groups, who often use dedicated dark web leak sites or publicize their attacks to pressure and shame victims into paying ransom.

Expert Commentary

Peter Mackenzie, director of incident response at Sophos, commented on the latest development stating, “Unfortunately, healthcare organizations have been—and will continue to be—a prime target for ransomware attacks because the services they provide are so critical to the communities they serve, and this puts pressure on the targets to get back online as fast as possible.”

“We’ve already seen several high-profile ransomware attacks against hospital systems this past year around the world, and Sophos’ most recent State of Ransomware report found that 63% of UK healthcare organisations were hit by ransomware in the last year (although most were able to stop the attack before the data was encrypted),” said Peter.

“Further complicating matters is the rise in supply chain attacks across industries. They are a preferred method of compromise for a number of criminal groups because, as well as being difficult to defend against, they also have a ripple effect, allowing attackers to infiltrate multiple systems at a time,” he explained. “In fact, IT and cyber professionals working in the UK healthcare sector perceive partners and the supply chain to be their single biggest cybersecurity risk.”

According to a legal expert in the use of data in the Health sector, Sarah Tedstone of law firm Fieldfisher, such events are inevitably going to escalate as data becomes more fundamental to patient care and research.

“We are seeing a growing trend in this sector as there is a global push to prioritise the use and sharing of valuable health data to enable innovation in this sector. The pandemic showed that having more and better quality data contributed significantly to collaboration and innovation and we are seeing growth across many sectors including in diagnostic testing, which is contributing to significant health breakthroughs,” she commented.

The data is being analysed but at this point, it is not known if sensitive information such as blood test results could have been published.

“We have seen from other such incidents how distressing this can be to individuals involved. The disclosure of test results can involve very personal information about the individual but also where genetic or genomic information is involved this can infer information about wider family groups,” Sarah added.

It’s also thought confidential financial agreements between the NHS and Synnovis could be published.

“The consequences of such disclosure could be the loss of valuable commercially sensitive information and affect competition in the market resulting in increased cost for the NHS impeding its ability to obtain cost-effective services,” said Sarah.

“Regulators around the world are expressing their concern at repeated health hacks and consequently there have been in the last few years for the first time criminal sanctions laid against the management team in a European health company criticised for its lack of security and response to an incident,” Sarah warned.

The ransomware attack on Synnovis is already highlighting the consequences for healthcare services, disrupting over 3,000 hospital and GP appointments and operations. This breach not only compromises patient confidentiality but also jeopardizes critical medical procedures. It highlights vulnerabilities in healthcare cybersecurity, necessitating urgent measures to safeguard patient data and ensure uninterrupted medical care in the face of escalating cyber threats.

  1. BlackSuit Ransomware Leaks Kansas City Police Data
  2. Black Basta Ransomware Exploited Windows 0-day Before Patch
  3. INC Ransomware Hits NHS Scotland, 3TB of Patient Data at Risk
  4. NHS Psychiatrist Jailed; Dark Web Forum and 7,000 Images Seized
  5. NHS Dumfries and Galloway Faces Cyberattack, Patient Data at Risk

[ad_2]
Source link

Galaxy S25 Ultra’s camera upgrades detailed, two new 50MP sensors

andreasc
-
0
Galaxy S25 Ultra’s camera upgrades detailed, two new 50MP sensors
[ad_1]

Last month, a prolific tipster claimed that Samsung would upgrade the ultrawide and 3x zoom cameras on the Galaxy S25 Ultra. Another source has now backed this information and shed more light on the rumored upgrades. Huge resolution changes are on the cards.

Samsung to use two new 50MP cameras on the Galaxy S25 Ultra

A lengthy post on X by @ISAQUES81 details the new camera sensors Samsung is using on the Galaxy S25 Ultra. According to the tipster, the next Ultra’s ultrawide camera will use a new version of the 50MP ISOCELL JN1 sensor. At 1/2.76 inches, this sensor is slightly smaller than the Galaxy S24 Ultra’s 1/2.55-inch ultrawide camera. However, we are looking at a massive resolution upgrade from 12MP.

The tipster doesn’t reveal other specifications of the new camera for Samsung’s next Ultra flagship. The ISOCELL JN1 features 0.64μm pixels, though pixel binning technology allows it to merge neighboring pixels to absorb more light. It can record 4K videos at 60fps (frames per second). Since the company is using a new version of this sensor, we might see some changes to these specs.

For the 3x optical zoom camera, Samsung is turning to a larger sensor with a 50MP resolution, up from 10MP. The Galaxy S25 Ultra’s 3x zoom lens is said to feature a 1/3-inch sensor, larger than the current Ultra’s 1/3.52-inch sensor. Other details are missing but we have early confirmation that the new Ultra will bring major changes to its camera setup. Samsung is also working on improved camera algorithms.

As suggested in the previous leak, the Galaxy S25 Ultra doesn’t seem to be getting upgraded sensors for the 200MP main camera and 50MP 5x zoom camera. These are relatively new cameras, so this isn’t surprising. Anyways, Samsung is improving its algorithms, so the camera output may get better even with unchanged hardware. Things are looking good for the Galaxy S25 Ultra.

The other two models may get the same camera upgrade

Samsung will launch the Galaxy S25 series in early 2025, probably in January. As usual, the company should release three models. The Ultra should be accompanied by a Galaxy S25 and a Galaxy S25+. In the past, Samsung has equipped the smaller two models with the same ultrawide and 3x zoom cameras as the Ultra. If it doesn’t change things next year, these upgrades should be found across the lineup.

Interestingly, a recent leak suggested the Galaxy S25 and Galaxy S25+ will feature an unchanged 50MP primary rear camera and an unchanged 12MP selfie shooter. The leak didn’t mention anything about the ultrawide and 3x zoom cameras. This further hints at an upgrade for the latter two cameras. This might also hint at an unchanged selfie camera for the Galaxy S25 Ultra. Expect more detailed leaks in the coming months.


[ad_2]
Source link

Sales of Kaspersky products banned in the US, Russia ties cited

andreasc
-
0
Sales of Kaspersky products banned in the US, Russia ties cited
[ad_1]

The cybersecurity and antivirus software provider Kaspersky’s products are now banned in the US. On Thursday, the Biden administration announced plans to stop the sales of Kaspersky’s antivirus software. Notably, it is the first time the department has completely banned the sales of a cybersecurity technology firm in the nation. The administration has cited that Russia’s influence over Kaspersky poses a significant security risk in the country.

The ban on Kaspersky products in the US will kick in on July 20

The sales of the Kaspersky products will be banned in the US starting from July 20. It means that starting from next month, Kaspersky products will not be available on the store shelves. Besides that, the company will also not be able to sell its products via any online marketplace.

The ban doesn’t just end here because all third-party products that are utilizing Kaspersky services will also be banned in the nation. According to Reuters, the full ban will kick in on September 29, 2024. From the date, the new decision will also ban downloads of software updates, resales, and licensing of any Kaspersky product.

That said, the administration has provided a 100-day window to existing Kaspersky customers and businesses to look for viable alternatives for their computers. Notably, the Biden administration has also added Kaspersky and two of its other units to a trade restriction list in the nation.

Kaspersky to pursue legal options to continue its operations

In an email to Reuters, Kaspersky announced that it is going to pursue legal options to continue operations. Kaspersky said it believed the U.S. decision was based on “the present geopolitical climate and theoretical concerns, rather than on a comprehensive evaluation of the integrity of Kaspersky’s products and services.”

The company had previously already announced that it is a privately managed company without any connections to the Russian government.

It’s worth mentioning that Kaspersky has been in the regulators’ crosshairs since 2017. The sales of Kaspersky products were banned in 2017 as well over spying concerns. Besides that, the FCC added Kaspersky to the list of companies that pose a national security risk in 2022.


[ad_2]
Source link
1...110111112...1,470Page 111 of 1,470