Chrome Security Update – 4 High-Severity Vulnerabilities Patched

andreasc
-
0
Chrome Security Update – 4 High-Severity Vulnerabilities Patched
[ad_1]

Chrome Security Update – 4 High-Severity Vulnerabilities Patched. For Mac, Linux, and Windows, the Stable and Extended Stable channels have been upgraded to 114.0.5735.198/114.0.5735.198/199, respectively. 

This update will be rolling out over the next few days/weeks.

CSN

With three issues that were discovered by outside researchers, this update offers four high-severity fixes.

Vulnerabilities Patched

Confusion in V8 issue CVE-2023-3420 is the first high-severity bug reported by Man Yue Mo of the GitHub Security Lab, who also received a $20,000 bug bounty from Google.

The next High-severity weakness is CVE-2023-3421, which may be used for free in media. As reported by Piotr Bania of Cisco Talos and a $10000 bug reward from Google.

The following High-severity weakness is CVE-2023-3422, which may be used for free in guest view. Upon Asnine’s report, Google awarded a $5000 bug reward.

Google said that libFuzzer, AFL, Control Flow Integrity, AddressSanitizer, MemorySanitizer, UndefinedBehaviorSanitizer, and UndefinedBehaviorSanitizer are often used to find security flaws.

“The Stable and extended stable channels have been updated to 114.0.5735.198 for Mac and Linux and 114.0.5735.198/199 for Windows, which will roll out over the coming days/weeks”, reads the Google Chrome release notification.

There are several different release channels that Chrome supports.

Starting with their nearly daily Canary channel builds and progressing up to our Stable channel releases, which occur around every six weeks, Google uses these channels to push out improvements to consumers gradually.

The stable and tested release channel for Chrome is at the top of the list, whereas the canary channel is entirely untested and probably the least stable. 

Since they do not exchange profiles, you can operate any channel concurrently with every other channel. This enables you to experiment with their most recent code while retaining a working copy of Chrome.

Make a backup of your profile, including your bookmarks, frequently viewed pages, history, cookies, etc., before making the switch. 

Your updated profile data might not be compatible with the earlier version if you decide to return to a more stable channel. 

Create a copy of the User DataDefault directory ( copy it to ‘Default Backup’ in the same place). Your operating system will determine the location.

AI-based email security measures Protect your business From Email Threats! – Request a Free Demo.


[ad_2]
Source link

A week in security (June 19 – 25)

andreasc
-
0
A week in security (June 19 – 25)
[ad_1]

Last week on Malwarebytes Labs:

Stay safe!

Malwarebytes EDR and MDR removes all remnants of ransomware and prevents you from getting reinfected. Want to learn more about how we can help protect your business? Get a free trial below.

TRY NOW


[ad_2]
Source link

WhatsApp wants to make the app’s look more consistent

andreasc
-
0
WhatsApp wants to make the app’s look more consistent
[ad_1]

WhatsApp is one of the fastest-evolving messaging apps on the market because it’s always working on new features and changes. The latest change discovered in the beta for the app shows that it’s looking to create a more cohesive experience. WhatsApp could bring a white action bar to the Android version of the app.

Over the past several versions, it’s clear that WhatsApp is looking to make some major changes to the app’s aesthetic. We’ve seen it make changes to bring it more in line with Material Design 3. This includes rounded UI elements like what we see with Google’s apps.

WhatsApp could be bringing the white action bar to the Android app

WhatsApp is present on both iOS and Android, so there will be some aesthetic differences between both versions. That’s not the biggest issue, admittedly. If you’re using the Android version, you’re not really concerned about what the iOS version looks like. However, WhatsApp is looking to make the app more consistent across both platforms.

According to WABInfo, WhatsApp’s latest Android beta version (2.23.13.16) will bring the white action bar. This is the toolbar on the bottom of the screen that will house essential tabs to help you navigate the app. We see in the screenshot below that it will have four tabs. You’ll see the Chats, Status, Communities, and Calls tabs at the bottom of the screen.

whatsapp white action bar

The toolbar will be the same color as the rest of the interface, so it will seem more seamless. You’ll know which tab you’re on by the pill-shaped highlight around the current tab. While this is the white action bar, it will also change color to match the dark theme.

In a recent beta version, we saw that WhatsApp added the ability to simply swipe between the tabs rather than needing to tap on them. We expect this to be the case when/if the feature makes its way to the public.


[ad_2]
Source link

Congress staff have limited use of ChatGPT

andreasc
-
0
Congress staff have limited use of ChatGPT
[ad_1]

While the launch of generative AI tools such as ChatGPT has opened up a world of opportunities, it’s no surprise to hear that with it comes the concern of around potential security breaches and misuse of data, especially when it comes corporate and government organizations. This is precisely why the U.S. Congress has reportedly established a strict limit on the use of ChatGPT in congressional offices.

Congress is reportedly setting a limit on the use of ChatGPT and similar generative AI tools.

As Engadget reports, Congress has apparently limited the use of ChatGPT and other generative AI tools. The news first broke by Axios, which received a memo today from the House of Representatives administrative chief Catherine Szpindor. In the memo, Szpindor set narrow conditions for the use of ChatGPT in congressional offices. Limiting use to ChatGPT Plus. The paid version of the AI chatbot, due to its enhanced privacy features.

According to the memo, offices can use the tool for research and evaluation only. Privacy settings must also be enabled as they are turned off by default.

Szpindor also said in the memo that offices should only be only be inputting “non-sensitive” data into the chatbot. In other words, congressional staff are advised to “paste into the chat bot any blocks of text that have not already been made public.”

The bigger picture of corporate and government use of ChatGPT.

Congress is far from the only entity to retrist the use of ChatGPT. Earlier this year, companies such as Samsung and Apple have banned the internal use of the chatbot over privacy concerns these fears are backed by previous OpenAI privacy blunders, like one ChatGPT bug that temporarily exposed people’s chat histories to each other.

According to Axios, the ChatGPT limit “comes as lawmakers across the ideological spectrum and in both chambers are rushing to craft legislation regulating AI.” Some senate and congressional lawmakers have been introducing bills to regulate the industry.


[ad_2]
Source link

Opera’s new AI-powered browser is now available for all Android users

andreasc
-
0
Opera’s new AI-powered browser is now available for all Android users
[ad_1]

Aria, the native AI browser developed by Opera and OpenAI, is now available for all Android users, as well as on desktops. Marketed as a “free service giving users access to a popular GPT tool paired with live results from the web,” Opera Aria promises a new browsing experience.

With the usage of AI tools on the rise, the launch of new native AI browsers that leverage the power of these tools to enhance productivity is not out of the ordinary. Based on Opera’s Composer infrastructure, Aria connects to OpenAI’s GPT technology, which is further enhanced by additional capabilities, including the ability to add live results from the web.

The AI in Opera provides a user-controlled experience, which means that users have the choice to opt in or not, depending on whether or not they need AI services. Those who do want to try out Aria’s AI services are promised “smart insights and answers, fresh ideas,” as well as the ability to respond to voice commands at will.

To make use of Aria’s powerful AI features, users in more than 180 countries worldwide, including the EU, you’ll need to log in with your Opera account or register for free if you don’t have one. Then, simply open the browser AI in the main many and start checking out the new features. Also, Aria is also available in Opera One, the software company’s redesigned flagship browser.


[ad_2]
Source link

OpenSSH trojan campaign targets Linux systems and IoT devices

andreasc
-
0
OpenSSH trojan campaign targets Linux systems and IoT devices
[ad_1]

Poorly configured Linux and Internet of Things (IoT) devices are at risk of compromise from a cryptojacking campaign.

Poorly configured Linux and Internet of Things (IoT) devices are at risk of compromise from a cryptojacking campaign, according to researchers at Microsoft. The attacks, which involve brute forcing a way into a system, are designed to profit from mining in illicit fashion for cryptocurrency.

Once the attackers have broken into their target system, a patched version of OpenSHH, a remote login tool, is downloaded from a remote server. When the rogue version of this tool is deployed, it looks to backdoor hijacked systems and swipe credentials to ensure it lingers on the system for as long as it possibly can.

As Microsoft explains:

Utilizing an established criminal infrastructure that has incorporated the use of a Southeast Asian financial institution’s subdomain as a command and control (C2) server, the threat actors behind the attack use a backdoor that deploys a wide array of tools and components such as rootkits and an IRC bot to steal device resources for mining operations. The backdoor also installs a patched version of OpenSSH on affected devices, allowing threat actors to hijack SSH credentials, move laterally within the network, and conceal malicious SSH connections. The complexity and scope of this attack are indicative of the efforts attackers make to evade detection.

A backdoor on the system checks to see if the hijacked device is a honeypot—a fake system set up by researchers or someone else to make an attacker think that they’ve compromised a genuine system when in reality everything the attacker does is being logged.

If it determines the system is a honeypot, it exits. If it determines that the system is the real thing, it begins a process of data exfiltration to a chosen email address. The data that is taken includes:

  • Operating system version
  • Network configuration
  • The contents of /etc/passwd and /etc/shadow

Open source rootkits are installed in systems which support them, used to further hide malicious files and processes taking place under the hood. Activity records are removed from various places on the system to mask any malicious presence, and additional tools are installed to clean up other logs which could reveal evidence of sign-ins.

Years ago you’d occasionally see adware programs try to remove rivals from a PC, in order to take all of the ad revenue for its creator. Here, we have something similar happening with the cryptomining tools being used in this attack. It identifies mining processes by name and/or files, and then terminates the processes or blocks them outright. As a general point of order here, you don’t really want lots of rival programs fighting it out in your systems. It could easily lead to unstable performance. Even worse if the programs doing the fighting aren’t supposed to be there in the first place. They won’t be playing by any theoretical rules, and so you simply can’t predict what they’ll do to gain the upper hand.

Meanwhile, the patched version of OpenSSH is designed to look like the legitimate version and so may prove hard to detect. That’s not all, however. There’s botnet activity too. A portion of the install makes use of an open-source IRC bot with Distributed Denial of Service (DDoS) features.

Microsoft claims to have traced this particular campaign to a member of a hacking forum who offers several tools for sale in what may be a dedicated malware as a service operation. The operating system giant has some specific advice for those who may be worried about this attack impacting their business:

  • Harden internet-facing devices against attacks
  • Ensure secure configurations for devices: Change the default password to a strong one, and block SSH from external access.
  • Maintain device health with updates: Make sure devices are up to date with the latest firmware and patches.
  • Use least-privileges access: Use a secure virtual private network (VPN) service for remote access and restrict remote access to the device.
  • When possible, update OpenSSH to the latest version.

Malwarebytes EDR and MDR removes all remnants of ransomware and prevents you from getting reinfected. Want to learn more about how we can help protect your business? Get a free trial below.

TRY NOW


[ad_2]
Source link

How To Schedule A Tweet On Twitter

andreasc
-
0
How To Schedule A Tweet On Twitter
[ad_1]

Perhaps one of the most under-utilized features of Twitter, is the ability to schedule a tweet, and we’ll be showing you how to do that today. This is a really useful feature because you can set tweets to be sent in the future. This is great for all kinds of things. Like tweeting while you’re on vacation without actually opening your phone.

Unfortunately, it appears that Twitter has removed this functionality from the Twitter mobile apps (for iOS and Android) so you can only do it from Twitter’s website and a few other third-party apps. Tweetdeck is one that supports it, and has for many years. So do keep that in mind here as we go through how to schedule a tweet on Twitter.

How to Schedule a Tweet on Twitter’s website

First, head to Twitter’s website.

Then type in your new tweet in the compose box like usual.

Screen Shot 2021 04 06 at 10 20 29 AM

Now tap on the icon that looks like a calendar and clock. It’ll be the fifth icon from the right.

From here, you can select the date, and time as well as the time zone for sending your tweet. The time zone is a really useful trick.

Screenshot 2023 06 26 at 12 12 09 PM

Now tap on Confirm in the upper-right hand corner. Make sure that the tweet is set for the future, otherwise you won’t be able to schedule it.

After you tap on confirm, the Tweet button changes to Schedule. Tap on that.

Now your tweet will go out at the specified date and time. And that’s all there is to it.

Screen Shot 2021 04 06 at 10 21 07 AM

You can go back and edit the tweet since it hasn’t been sent out yet. Just repeat the steps above and when you get to the schedule portion, tap on “Schedule Tweets” at the bottom. This will take you to your scheduled and draft tweets. And you can edit them from there.


[ad_2]
Source link

Netflix quietly drops its basic ad-free plan in Canada

andreasc
-
0
Netflix quietly drops its basic ad-free plan in Canada
[ad_1]

Netflix may have a habit of testing out its policies on Canadian subscribers. Earlier this year, the streaming service abolished password-sharing outside of your household, an update they first tested in a few countries, including Canada. Now, the company announced that its most basic plan will no longer be available to Canadian subscribers.

Netflix’s basic ad-free plan is no longer available in Canada.

As TechRadar reports, Netflix has quietly dropped its cheapest ad-free tier in Canada. So, what does this mean? Well, although existing subscribers are unaffected (unless they change plans), the new policy means that “the Basic plan is no longer available for new or rejoining members,” according to Netflix Canada’s help website.

Now, potential customers will have to choose between spending $5.99 CAD for the standard plan with ads, $16.49 CAD for standard without ads, or $20.99 for the premium plan.

Apparently, Netflix’s basic ad-free tier has been dropped a while ago in Canada — it’s just that no one noticed. The earliest mention comes from a Twitter user who complained about the termination of Netflix’s basic plan back on June 10.

Despite Canadian users feeling a loss, time will tell if they will move onto another tier. After all, although the company’s password-sharing crackdown was controversial, it did in fact lead to new subscribers to the platform. 

As TechRadar further notes, it doesn’t look like any other countries around the world have seen any similar changes. For instance, the American Netflix Plans and Pricing page still has the basic ad-free plan listed at $9.99. So, it stands to reason that users outside of Canada are safe. 

However, this could change at any point. It’s unclear whether new abolishment of Netflix’s basic-ad free plan will be limited to Canada. Or if it will be tested in any other countries.


[ad_2]
Source link

A stealthy precursor to infostealers and ransomware attacks

andreasc
-
0
A stealthy precursor to infostealers and ransomware attacks
[ad_1]

Malvertising, the practice of using online ads to spread malware, can have dire consequences—and the problem only seems to be growing.

This article is based on research by Jérôme Segura, Senior Director of Threat Intelligence at Malwarebytes, who oversees data collection from spam feeds and telemetry to identify the most relevant threats.

Malvertising, the practice of using online ads to spread malware, can have dire consequences—and the problem only seems to be growing.

New research from the Malwarebytes Threat Intelligence team shows over 800 malvertising-related attacks in 2023 so far alone, an average of almost 5 attacks per day. But even these are only the ones reported by security researchers—in reality the number is much higher.

Our research indicates that malvertising ads often deliver infostealer malware such as IcedID, Aurora Stealer, and BATLOADER among others. These programs steal credentials from users’ browsers or computers, sowing the seeds for a future ransomware attack. 

Malvertising attack count throughout 2023

Ransomware gangs often buy stolen credentials from other cyber criminals involved in the dirty work of initial access brokering. In the case of malvertising, the chain of events looks something like this:

  1. Malvertising campaigns infect users with infostealers.
  2. Infostealers harvest user credentials.
  3. Stolen credentials are sold in underground forums.
  4. Ransomware actors buy these credentials to infiltrate networks.

Alternatively, some ransomware gangs have been observed use malvertising themselves to launch an attack on a victim machine directly.

The Royal ransomware group, for example, used malvertising to disguise BATLOADER as legitimate installers for applications like TeamViewer. BATLOADER then drops a Cobalt Strike Beacon as a precursor to the ransomware execution. 

For organizations looking to nip the malvertising-ransomware connection in the bud, however, perhaps the biggest challenge is how hard malvertising can be to spot. Threat actors often impersonate the official brand name and website in the ad snippet, making attacks extremely deceptive for the average user.

Can you spot the typo in this malvertising attempt? 

Even experts at Google have struggled to identify malicious redirects from an ad, underscoring the fact that malvertising is a nuanced, technical problem that requires advanced tools to spot.

In other words, your defense strategy against malvertising shouldn’t hinge entirely on your team recognizing brand impersonation. Instead, focus on equipping your team with advanced security tools to do the heavy lifting.

Some of the main tools you can use to prevent malvertising include:

  • Vulnerability and patch management software: Malvertising often exploits known vulnerabilities in systems, applications, or browsers. These tools can help ensure that web browsers (including plug-ins) are up-to-date with the latest security patches.
  • Web protection applications: Since malvertising campaigns often rely on connecting to malicious servers to download additional malware or steal information, blocking these connections can stop the attack in its tracks.
  • Ad blockers: These can filter out potential malvertising threats and prevent hazardous content from loading. Malwarebytes Browser Guard provides additional protection to standard ad-blocking features by covering a larger area of the attack chain all the way to domains controlled by attackers.

Download the Malwarebytes Threat Intelligence Threat Brief today for comprehensive insights on malvertising and its role in stealing credentials.

Download Now


[ad_2]
Source link
1...1,1381,1391,140...1,474Page 1,139 of 1,474