Galaxy S20 series widely getting Samsung’s June update in the US

andreasc
-
0
Galaxy S20 series widely getting Samsung’s June update in the US
[ad_1]

Samsung is widely rolling out the June security update to the Galaxy S20 series in the US. The rollout began a few days back but was initially limited to factory-unlocked units. The company is now pushing the latest security patch to carrier-locked variants as well.

The June SMR (Security Maintenance Release) for the carrier-locked Galaxy S20, Galaxy S20+, and Galaxy S20 Ultra in the US comes with the firmware build number G98*USQS5HWF2. The rollout is already live on T-Mobile and sister networks, i.e. Sprint and Metro. Samsung should soon expand the rollout to units on the remaining networks. The Galaxy S20 series wasn’t sold carrier-locked by many wireless providers, including AT&T and Verizon.

Like the unlocked units, carrier-locked Galaxy S20 phones are also only getting the latest security fixes with this update. Samsung isn’t pushing any other goodies, SamMobile confirms. The official changelog also doesn’t mention anything. The latest update is all about this month’s vulnerability patches. The Korean behemoth’s monthly security bulletin states that the June SMR contains fixes for more than 60 vulnerabilities across the Galaxy family.

As usual, this is the combined total of Galaxy-specific issues and generic Android OS problems. The former flaws reside in various system apps, services, and components that Samsung adds to Android-powered Galaxy devices from its end. The company patched 11 such flaws this month. The remaining 50-odd patches come from Google and other partner vendors whose components are found in Android devices from various brands, including Samsung.

The June update for Galaxy devices patched three critical Android OS issues

At least three Android OS flaws patched this month were critical, according to Google. If you’re using a carrier-locked Galaxy 20, Galaxy S20+, or Galaxy S20 Ultra in the US, all of these security fixes will be available to you soon. You can check for new updates from the Settings app. Go to the “Software update” menu and tap on “Download and install”. Since updates are released in batches, some users may have to wait a few days to get the OTA (over the air) rollout.

The June security update has already reached most other eligible Galaxy devices in the US, including the Galaxy S22 series, Galaxy S21 series, and all recent foldables. But it’s yet to be available for the Galaxy S23 series. Samsung recently pushed the update in select international markets. The update, which is huge and brings camera improvements, should reach the US over the next few days. We will let you know when the rollout begins.


[ad_2]
Source link

Impersonation policies for YouTube fan channels get more strict

andreasc
-
0
Impersonation policies for YouTube fan channels get more strict
[ad_1]

To curb impersonation, YouTube fan channels are getting strict policies. YouTube took to its community page to announce this improvement and also alert fan channels on the coming change. Now most of these channels are to make certain changes or adjustments to the various accounts they run or face the consequences.

This policy change is coming in light of the influx of fan channels on the video-sharing platform. Most of these channels are not what they claim to be, as they are more into stealing content and impersonation. Reposting a video without tagging the creator or using a channel’s avatar or banner on a so-called fan page is now so common on YouTube.

With this change in the YouTube impersonation policy, most content creators will be able to protect their work from being stolen. Also, it will help guide those scrolling through YouTube to know the actual source of the videos that they enjoy watching. Let’s now have a look at the changes to the YouTube impersonation policies.

Details on the new impersonation policies that will affect some YouTube fan channels

In a bid to fight impersonation on its platform, YouTube is changing some of its policies. This change might spell the end for some accounts now present on YouTube, masquerading as fan accounts. Instead of these accounts acknowledging the works of content creators, they are outrightly stealing these works from them.

Now, the video-sharing platform requires all fan accounts to clearly state their objective. This means that fan accounts have to point out through their “channel name or handle” that their channel isn’t representing the source of their posts. By doing this, they’d be able to make it clear to other users that they have no link to the creator (source of the videos they repost) but they are only their fans.

In the coming months, permit fan accounts that outrightly repost the content of others on the platform. Also, fan accounts that make use of an original account’s logo, avatar, banner, or other identifying elements will face punishment. YouTube tags these actions as impersonation and not fandom, any account doing this will face some penalties.

The new impersonation policy will go into effect on August 21, 2023, so all fan accounts can make necessary changes. These will include brushing up their channel to not look like that of the YouTuber they are fans of. Failure to make these changes before the deadline will mean that the fan account will be deleted for violation of the impersonation policy.


[ad_2]
Source link

Chinese Espionage Malware Targets European Healthcare via USB Drives

andreasc
-
0
Chinese Espionage Malware Targets European Healthcare via USB Drives
[ad_1]

It all started when an employee attending an Asian conference unknowingly introduced malware to their organization in Europe by sharing a presentation with a colleague using a compromised USB drive.

According to a report by Check Point Research (CPR), a recent surge in new versions of Chinese espionage malware has raised concerns as they rapidly propagate through infected USB drives.

The malware campaign was discovered during an investigation into an attack on a healthcare institution in Europe, shedding light on the activities of the Chinese threat actor known as Mustang Panda, also known as TA416, Red Lich, Earth Preta, HoneyMyte, and Bronze President, Camaro Dragon and LuminousMoth.

It is worth noting that earlier in March of this year, Mustang Panda was observed using a new MQsTTang backdoor against government and political organizations across Asia and Europe.

While Mustang Panda has historically focused on Southeast Asian nations, this incident has unveiled their expanded global reach. The attack initially gained access to the institution’s systems through an infected USB drive.

An employee, who had attended a conference in Asia, unknowingly shared a presentation with a colleague using the compromised USB drive, thus introducing the malware into the organization upon their return to Europe.

The malware, as stated in CPR’s blog post, by part of the “SSE” toolset previously reported by Avast, employs a malicious Delphi launcher stored on the infected USB flash drive. Once executed, it deploys a main backdoor and spreads the infection to other connected drives.

One particularly potent variant of the malware, named WispRider, employs the HopperTick launcher to propagate through USB drives. Notably, it includes a bypass mechanism specifically designed to evade SmadAV, a popular antivirus software in Southeast Asia.

To enhance its evasion capabilities, the malware utilizes DLL-sideloading techniques, leveraging components from security software and prominent gaming companies. This multi-pronged approach enables the malware to establish backdoors on compromised machines while simultaneously infecting newly connected removable drives, potentially infiltrating isolated systems and granting access to a wide range of entities beyond the primary targets.

The CPR advisory serves as a timely warning following the company’s recent identification of a separate attack vector attributed to the Mustang Panda. The ongoing activities of this Chinese threat actor highlight the critical need for organizations to remain vigilant against evolving cyber threats and maintain robust security measures, especially when handling external storage devices like USB drives.

The technical research on this growing threat is available here.

  1. Hackers mailing USB drives to spread ransomware, FBI
  2. Hackers sending malware USBs with Best Buy Gift Cards
  3. US Military Targeted by Unsolicited Malicious Smartwatches
  4. New malware tool steals files from airgapped PCs using USBs
  5. USB Wormable Raspberry Robin Malware Hits Windows Installer
  6. VictoryGate cryptominer infected 35,000 devices via USB drives

[ad_2]
Source link

Can ChatGPT Detect Phishing Sites?

andreasc
-
0
Can ChatGPT Detect Phishing Sites?
[ad_1]
ChatGPT Detect Phishing Sites

The subject of whether ChatGPT can be used to create phishing sites and if it can also be used to detect them accurately has been discussed by security researchers.

This experiment has been conducted to see how much cybersecurity information ChatGPT has picked up from its training data and how it may help human analysts.

CSN

Researchers from Kaspersky examined 5,265 URLs, of which 2943 were safe, and 2322 were phishing.

Implementing AI-Powered Email security solutions can secure your business from today’s most dangerous email threats, such as Email Tracking, Blocking, Modifying, Phishing, Account Take Over, Business Email Compromise, Malware & Ransomware – Request Free Demo.

Based on URLs, Can ChatGPT Detect Phishing?

Researchers asked the straightforward inquiry, “Does this link lead to a phishing website?” to ChatGPT (GPT-3.5). The AI chatbot had a detection rate of 87.2% and a false positive rate of 23.2% based just on the URL format.

According to the reports, the number of false positives is unsatisfactory despite the high detection rate.

If every fifth website you visit was blocked, what would happen? Although no machine learning method can guarantee a false positive rate of zero, this figure is still too high.

Is this link safe to visit?” they asked, and the outcomes were significantly worse: a false positive rate of 64.3% and a detection rate of 93.8%.

“It turns out that the more general prompt is more likely to prompt a verdict that the link is dangerous”, reports Kaspersky.

The extraction of the possible phishing victim was the most impressive feature of ChatGPT’s performance. 

Possible Phishing Attack

Attackers strive to deceive consumers into thinking that a URL is legitimate and belongs to a particular organization while simultaneously obfuscating it just enough to evade automated examination when they create their samples.

In many situations, removing the assault target might be helpful.

Researchers added that ChatGPT performs a great job of extracting various internet and financial services with only a tiny amount of post-processing (e.g., combining “Apple” and “iCloud” or deleting “LLC” and “Inc”). 

Major online websites like Facebook, TikTok, and Google were among the organizations mentioned.

There were also marketplaces like Amazon and Steam, many banks from around the world, from Australia to Russia, and cryptocurrency and delivery services.

This is because ChatGPT has enough real-world information to know about them. More than half the time, it was successful in locating a target.

The findings from both strategies were insufficient. “It is possible to use this type of technology to assist flesh-and-blood analysts by highlighting suspicious parts of the URL and suggesting possible attack targets. It could also be used in weak supervision pipelines to improve classic ML pipelines”, researchers said.

According to reports, it performs on par with what they would anticipate from a phishing analyst intern: it is good, but never leave it unattended!

Overall, the researchers concluded that ChatGPT and LLMs are not yet prepared to fundamentally alter the cybersecurity landscape, at least not in terms of phishing detection.

Upgrade your email security to AI-enhanced levels with Trustifi – Try Free Demo


[ad_2]
Source link

Nothing OS screenshot points to a certain design detail

andreasc
-
0
Nothing OS screenshot points to a certain design detail
[ad_1]

It isn’t often that a screenshot reveals information about a device’s physical design, yet, here we are! Carl Pei showed off a screenshot to Twitter, and it looks like it might have been taken from Nothing OS 2.0. If that’s the case, then the latest slew of leaked Nothing (2) images could be inaccurate (via Android Police).

Right now, there’s still a lot of information in the air about the company’s second handset. Information like the specs, price, design, etc. are still speculation.

Speaking of price, a new rumor hints at a notable price increase over the Nothing Phone (1). The Nothing Phone (2) might cost around $800 for the 256GB variant and about $930 for the 512GB variant. We’ll need to wait for more information to confirm this.

This screenshot might show us Nothing OS 2.0

So, you’ll want to take this with a grain of salt. We all know that Carl Pei really likes to hype up the company’s products. However, neither Pei nor the company alluded to this being a nod toward Nothing OS 2.0.

On Thursday, Carl Pei posted a screenshot of his home screen to Twitter and asked others to share theirs. We’d assume that this would be shared from a Nothing Phone (1), but people noticed something notable about the image.

Nothing os 2 screenshot 1

This screenshot might tell us where the phone’s selfie camera will be located. The Nothing Phone (1) has its punch-hole on the upper-left corner of the phone’s display. However, the screenshot shows the clock in the left corner of the display where the punch-hole would be. The other symbols are in the right corner.

This could point to the phone having a center punch-hole. This disputes the previous leak because it shows the phone with a punch-hole on the left. Carl Pei even came out and said that those images weren’t real.

Since this screenshot is coming from Carl Pei himself, we know that it’s legitimate. The Nothing Phone (2) is set to make an appearance next month, so if you’re excited about it, then keep your eyes peeled for the launch event.


[ad_2]
Source link

Apple to Switch A17 Bionic Chip Technology to Cut Costs in 2024

andreasc
-
0
Apple to Switch A17 Bionic Chip Technology to Cut Costs in 2024
[ad_1]

The iPhone 15 series is set to debut in September with the A17 Bionic chipset. But we’re hearing that there could be some changes for the A18 Bionic next year.

Currently, Apple has been using the 5nm process to manufacture the A14, A15 and A16 chipsets in recent years. With the A17, Apple is going to be moving to 3nm. To be exact, they will be moving to the TSMC N3B process. However, Apple is planning to move over to the N3E sometime next year. This would likely affect the A18 Bionic and possibly the A19 Bionic.

The main differences here would be making the chips easier to manufacture. Which will also come with reduced efficiency.

N3B is TSMC’s original 3nm node that was created in partnership with Apple. However, N3E is a simpler, more accessible node that most of TSMC’s other clients use. N3E does also use fewer EUV layers and lower transistor density, compared to N3B. Another major difference is that N3B has been ready for mass production for a much longer time compared to N3E, however it does have a lower yield. Which helps raise prices on a per-chip basis.

It’s unlikely that this will affect the iPhone 15

Switching nodes like this for a processor is going to be a big deal, so it’s pretty unlikely that Apple would do this in the middle of the iPhone 15 life cycle. Meaning that the iPhone 15 will likely be more efficient than the iPhone 16, which would have chips made on the N3E process.

This is a cost-cutting measure by Apple, but it’s unclear if this is being done so that iPhone prices can stay the same, or if the price bump is going to be smaller because of this. There are rumors of the iPhone going up in price later this year, including in the US. Which hasn’t happened since the iPhone X was released back in 2017. So a price increase wouldn’t be too crazy, after all $999 in 2017 is now about $1,240.17 in 2023.


[ad_2]
Source link

NSA Releases Guide to Combat BlackLotus Malware

andreasc
-
0
NSA Releases Guide to Combat BlackLotus Malware
[ad_1]
Combat BlackLotus Malware

Malicious cyber actors might exploit a known flaw in Microsoft Windows’ secure startup process to bypass Secure Boot protection and run the BlackLotus malware.

BlackLotus uses a known flaw dubbed “Baton Drop,” tracked as CVE-2022-21894, to bypass beyond security precautions made by the device’s Secure Boot start-up procedure. 

CSN

Since October 2022, BlackLotus has been making appearances on hacker forums. It is advertised as malware that can avoid detection, go through removal attempts, and disable various Windows security mechanisms, including Defender, HVCI, and BitLocker.

By taking advantage of weak boot loaders that have not been added to the Secure Boot Deny List Database (DBX), the malware attacks Secure Boot.

The attack vector used to install BlackLotus is still present since the CVE-2023-24932 patch is by default, disabled.

Administrators must perform a manual procedure taking many steps to update bootable media and apply revocations before allowing this update to safeguard Windows devices.

“BlackLotus is very stoppable on fully updated Windows endpoints, Secure Boot-customized devices, or Linux endpoints. Microsoft has released patches and continues to harden mitigations against BlackLotus and Baton Drop,” the NSA said.

“The Linux community may remove the Microsoft Windows Production CA 2011 certificate on devices that exclusively boot Linux.

Mitigation options available today will be reinforced by changes to vendor Secure Boot certificates in the future (some certificates are expiring starting in 2026).”

Guidelines to Combat BlackLotus Malware

System administrators and network security professionals were recommended to take hardening measures on systems that have been patched against this vulnerability now.

The installation of the BlackLotus payload or the reboot event that initiates its execution and implantation can be detected and stopped by defensive software solutions.

According to the NSA, certain infrastructures may get a false feeling of security from currently available updates.

“NSA recommends system administrators within DoD and other networks take action. NSA reports that BlackLotus is not a firmware threat, but instead targets the earliest software stage of the boot”.

  • Update recovery media, install the most recent security updates, and turn on optional mitigation.
  • Improve defensive policies by setting endpoint security to thwart efforts to install BlackLotus malware.
  • Use endpoint security products and firmware monitoring tools to keep track of device integrity measures and boot settings.
  • Customize UEFI Secure Boot to block older (pre-January 2022), signed Windows boot loaders.

Attacks Against Windows 10 and 11

BlackLotus has been used in attacks against Windows 10 and 11 to take advantage of a vulnerability (known as Baton Drop and tracked as CVE-2022-21894) found in older boot loaders (also known as boot managers) that enables users to get around Secure Boot security and start a chain of malicious operations aimed at compromising system security.

The boot loaders impacted by this vulnerability have not yet been added to the Secure Boot DBX revocation list, enabling the attackers to remove the Secure Boot policy and prevent its enforcement.

“However, patches were not issued to revoke trust in unpatched boot loaders via the Secure Boot Deny List Database (DBX). Administrators should not consider the threat fully remediated as boot loaders vulnerable to Baton Drop are still trusted by Secure Boot,” the NSA said.

An older Extensible Firmware Interface (EFI) binary of the Windows boot loader is deployed onto the boot partition to install and run the malware on compromised devices.

Next, BitLocker and Memory Integrity protections are turned off just before the device is restarted to start and implant the malware. 

As a result, attackers can replace fully patched bootloaders with vulnerable versions. It is not easy to defend systems against BlackLotus.

Patching is an excellent initial step; however, Zachary Blum, NSA’s Platform Security Analyst, advises hardening activities depending on your system’s setup and security software employed.

Manage and Secure Your Endpoints Efficiently – Free Download


[ad_2]
Source link

Patched OpenSSH Exploited for IoT, Linux Cryptomining

andreasc
-
0
Patched OpenSSH Exploited for IoT, Linux Cryptomining
[ad_1]

Apart from cryptomining, the campaign also involves hijacking SSH credentials, hiding malicious SSH connections, and more.

Microsoft researchers have discovered a new cryptojacking campaign that leverages custom and open-source tools to target IoT (Internet of Things) devices and Linux-based systems for cryptomining (aka cryptocurrency mining).

Attackers use a backdoor that can deploy a wide range of “tools and components,” such as rootkits and IRC bots, to steal device resources. This backdoor installs a patched version of OpenSSH to hijack impacted device systems and install a cryptominer.

Once this is done, the attackers can perform a range of activities, such as moving laterally in the network, hijacking SSH credentials, and hiding malicious SSH connections, apart from cryptomining.

The attackers need to hijack SSH credentials, for which they look for misconfigured Linux hosts. These hosts are brute-forced to gain initial access. When the target device is compromised, the first step is to disable the shell history.

The next step is to extract a trojanized OpenSSH package, “openssh-8.0p1.tgz,” from a remote server. It contains “benign OpenSSH source code and other malicious files,” such as backdoor binaries for arm4I, arm5I, x86, i568, i686, a shell script inst.sh, and an archive containing the shell script vars.sh, which has all the files needed for the backdoor to operate. After payload installation, the inst.sh script runs a backdoor binary matching the device’s architecture.

The backdoor is a shell script compiled using the Shell Script Compiler. It allows threat actors to distribute payloads and conduct post-exploitation attacks, such as stealing and sending device information, as well as clearing Apache, nginx, httpd, and system logs to hide their malicious activities and remain undetected.

To retain SSH access, the backdoor modifies two public keys in the system’s authorized key configuration files for all users. Additionally, this backdoor can install the logtamper open-source utility for clearing the wtmp and utmp logs that record user sign-in sessions and system event data.

In this campaign, as Microsoft’s Threat Intel team stated in its blog post, attackers use cryptojacking to install a cryptominer. In cryptojacking, computer resources are illegally drained to generate revenue. Almost all devices, tools, services, and IT infrastructure, including IoTs, are vulnerable to cryptojacking. Before launching the miner, all competing cryptomining processes are eliminated.

Additionally, the backdoor runs a modified version of a Kaiten malware-based DDoS client called ZiggyStarTux that executes bash commands received from the attacker’s C2 server. The C2 communications are established via an unidentified Southeast Asian financial institute’s subdomain to hide the malicious traffic.

Patched OpenSSH Exploited for IoT, Linux Cryptomining

The backdoor determines if the device is a honeypot by testing access to the virtual filesystem /proc. If it cannot access it, the backdoor exits. If it can access /proc, it extracts device data, such as OS version and network configuration, etc., and emails it to a hardcoded address (dotsysadminprotonmailcom) or the attacker’s address. The open-source rootkits it can compile/download/install include Reptile and Diamorphine, both available on GitHub.

Microsoft urges users to improve the security of internet-exposed devices by ensuring secure configurations, using strong passwords, and regularly updating firmware. A VPN should be preferred for remote access, and users should always use the latest version of OpenSSH.

  1. Why IoT Security in Healthcare is Crucial
  2. Illegal cryptomining farm using thousands of PS4s seized
  3. CoinStomp cryptomining malware targeting cloud services
  4. BotenaGo botnet malware targeting millions of IoT devices
  5. Malware hits Hive OS cryptomining users; steals wallet funds

[ad_2]
Source link

Samsung treats Galaxy A71, A02 & more with the June update

andreasc
-
0
Samsung treats Galaxy A71, A02 & more with the June update
[ad_1]

Samsung is rolling out the June 2023 Android security patch to a bunch of budget and mid-range smartphones. The latest security update is now available for the Galaxy A71, Galaxy A Quantum, and Galaxy A02 in some markets. The Galaxy A53 5G is also getting the June SMR (Security Maintenance Release) in more regions. This month’s security patch fixes more than 60 vulnerabilities, including at least three critical issues.

As of this writing, the June SMR for the Galaxy A71 is available in Thailand, Polan, and Vietnam. The new firmware build number for the 2020 mid-range phone is A715FXXUADWE1. According to Samsung’s official changelog, the device is getting some system stability and reliability improvements along with the latest security fixes. The company should roll out the new security patch to the phone in more markets in the coming days.

While Samsung didn’t launch the Galaxy A71 in the US, its 5G sibling arrived stateside. The latter started picking up the June SMR a few days back but the rollout hasn’t expanded beyond Asia. Meanwhile, the South Korean version of the Galaxy A71 5G, which is known as the Galaxy A Quantum and is exclusive to SK Telecom’s network, is getting the June update. The new build number for this phone is A716SKSU6FWF2, and it is getting a lot more.

Samsung’s changelog states that the Galaxy A Quantum is picking up improvements to the Emergency SOS feature. The company has removed the ability to turn off this feature, which lets you make emergency calls by repeatedly pressing the power button five times in quick succession. It also now lets users turn off the countdown before the call is initiated. This change also rolled out to the Galaxy S23 series and several other models with the June update.

The Galaxy A02 is also getting Samsung’s June update

Samsung is also rolling out its June update to the Galaxy A02. The budget model is widely getting the new SMR in Latin America. For users in Brazil, the new build number is A022MUBS3BWF2. It’s A022MUBS3BWF1 for the rest of the continent. This phone isn’t picking up anything else with the latest update. It’s unclear if Samsung will push the June SMR to the Galaxy A02 in other markets. The device didn’t arrive in the US.

Meanwhile, the Galaxy A53 5G is now receiving the June update in several markets outside the US. Samsung began the rollout stateside a couple of weeks back. Users in Europe, Africa, and Asia can also now download the new SMR. Depending on your region and model number, the new build number is either A536BXXU6CWE9 or A536EXXU6CWE9 (via). The Galaxy A53 5G is getting some system optimizations but nothing more.


[ad_2]
Source link

These AI tools will help you find your dream job

andreasc
-
0
These AI tools will help you find your dream job
[ad_1]

There’s no way to deny it; AI is a big part of our modern world, and it’s here to stay. While we’re all preparing for the negative effects of this revolution, we can take a second to enjoy the positives. For example, there are a bunch of cool and useful AI tools that you can use to land your dream job.

These AI tools will help you find your dream job

Being on the job search can be a daunting task. Because of all of the layoffs going on, more people are, unfortunately, having to do this task. Well, here are some tools to help you get that interview.

Jobscan

Getting your dream job often starts with your resume. Getting your resume is one of the most important things to do and also one of the most discouraging. Jobscan can help you out immensely.

What this tool will do is scan your resume and help you optimize it. We all know how crucial (and annoying) this step can be. The thing is that a lot of companies use a database to search through resumes based on certain keywords. Jobscan will search through your resume and optimize it so that it will contain the right amount of keywords.

This will make it easier for your resume to be picked from the pool. The company says that this tool can increase your chances of landing an interview by up to 50%.

The Job For Me

Having the best resume in the world doesn’t mean anything if you’re not applying for the right job. This is where The Job For Me comes in. This is a site that will take the information you provide and feed you jobs that fit your skills.

There are already sites that do this, but there’s a difference. Other services usually require you to input a ton of information like your job history, education, and more. It’s an annoying process if you have to do it several times.

Well, with this service, you don’t have to enter any information. You’re able to simply upload your resume or post your LinkedIn link in the field. Then, it will use AI to scan through the information and deliver your job opportunities. Just know that this service does cost money.

The lowest tier costs $19/month, and it gives you five curated jobs every month. You can check out the prices and services here.

CareerHub AI

This is more like a tool belt than a tool. Imagine if ChatGPT was your personal career counselor. CareerHub AI uses generative AI to help you out in your search for a new job. It can actually help you from the first steps.

There’s a tool that will help you discover your career path. You’ll enter information like your interests and job preferences, and you’ll get some recommendations for careers you should look into.

The next tool will give you career advice based on your skills and career goals. It will give you some information to help you push your career to the next level.

When it comes to your new job, you’ll want to know your worth as an employee. For this tool, you’ll enter information like your current job role, experience, education, and country. It will use AI to estimate what you should be earning based on that information. This way, you’ll know what to put down on the job application when asked about the expected salary.

Do you need a cover letter written? There’s a tool that can write a personalized cover letter for you to present to the employer. It can save you a ton of time when getting your resume together. This requires you to create an account, however.

The last tool will give you personalized interview questions. It will ask you typical questions that you’d see during an interview. This will help you practice answering interview questions before the actual meeting. This also requires that you create an account.

Wonsulting

This is also a suite of tools geared toward finding your next job. It’s an all-in-one solution for people looking to maximize their chances of getting a new role. Wonsulting takes different aspects of the job search into account.

This service has a service that will generate a resume for you using AI. there’s also an AI cover letter writer that will do the same thing. You’ll just need to enter some details.

Wonsulting will also help you with your networking. There’s an AI tool that will help you connect with industry professionals across your field. Knowing the right people is an important part of landing certain jobs. This step is also handled with AI.

A word of caution

So, above, we mentioned some great tools to help you land your next interview. For all we know, this could be the thing to rocket you into your next corner office. However, there’s something that you need to be aware of.

AI has come a long way over the years; it exploded in the past seven months with the introduction of ChatGPT. We’ve seen some mind-boggling feats performed by AI chatbots, but the technology is still not perfect. AI is in a state where it’s still making mistakes.

Chatbots give you inaccurate information from time to time, and that might not be a big issue on the surface. However, if you’re generating entire resumes and cover letters, you’ll want to be careful.

Take a minute to carefully read over the content that these tools create. Make sure that there aren’t any inaccurate details. This is something that represents you and your worth to a company. You don’t want to give any wrong information. Read, reread, and proofread what it produces for you.

While there are powerful tools available at your fingertips, it’s still useful to learn what makes a proper resume and a proper cover letter. This way, you can better make changes if the AI-generated documents aren’t perfect. It could mean the difference between landing the review and landing in the unemployment line.

Looking for more AI content

If you want to find some more AI content, we have you covered. Check out the list below.


[ad_2]
Source link
1...1,1451,1461,147...1,474Page 1,146 of 1,474