Samsung pushes June update to Galaxy S20 FE, A51 & more

andreasc
-
0
Samsung pushes June update to Galaxy S20 FE, A51 & more
[ad_1]

Samsung‘s June 2023 update has reached a few more Galaxy devices. The Korean behemoth has released the latest security patch for the Galaxy S20 FE, Galaxy A51, Galaxy A51 5G, and Galaxy A12. The new SMR (Security Maintenance Release) is also widely available for the Galaxy Z Flip 4, Galaxy Z Flip 3, and Galaxy A52.

This month’s security update for the Galaxy S20 FE is rolling out widely in Asia and Europe. Depending on the model number, the device is picking up the firmware version G780FXXUCFWE5 or G780GXXU5EWE5. The update seems to bring some system optimizations along with the latest security fixes. There aren’t any major new features here, though.

The Galaxy S20 FE wasn’t released in the US but its 5G version was. The latter recently started picking up the June SMR. The rollout is currently limited to Europe. Samsung should soon cover both 4G and 5G versions of this phone with the latest security patch globally. It contains fixes for more than 60 vulnerabilities, at least three of which are critical issues.

These security fixes are also rolling out to the Galaxy A51 and Galaxy A51 5G. Both versions are getting the latest SMR in the UK. The new build numbers are A515FXXU7HWF1 and A516BXXU7FWE2, SamMobile reports. A wider rollout should follow in the coming days. Once again, Samsung doesn’t seem to be pushing anything more than the new SMR and some system stability improvements.

The Galaxy A12 is another Samsung phone that is getting the June update today. This budget handset is picking up the latest security patch in Uzbekistan, Russia, Germany, Kazakhstan, Ukraine, and Caucasus Countries with the build number A125FXXS3CWF1 (via). It isn’t receiving any other changes. The weirdly-named “Nacho” version of the Galaxy A12 picked up the June SMR last week.

Samsung’s June update reaches the Galaxy Z Flip 4, Flip 3, and A52 in more markets

Samsung has been rolling out the June SMR to eligible Galaxy devices for almost two weeks now. It has already released the latest security patch for dozens of devices. As usual, the initial rollout only covers units in select markets. In recent days, the company has pushed the update to the Galaxy Z Flip 4, Galaxy Z Flip 3, and Galaxy A52 in a host of new markets.

The two foldables initially received the June SMR in the US. It’s now also available in Europe and some other regions. If you’re using any of these Samsung phones, you can check for new updates from the Settings app.


[ad_2]
Source link

New parent-managed accounts for Meta Quest lower the minimum age

andreasc
-
0
New parent-managed accounts for Meta Quest lower the minimum age
[ad_1]

Meta is lowering the minimum age for users to access and engage with Quest content on the company’s popular VR headsets. In a blog post outlined on the company’s website, Meta says it’s going to be launching new parent-managed accounts for the Meta Quest platform.

These new parent-managed accounts would be set up by parents for children between the ages of 10 and 12. The minimum age for Meta Quest accounts was previously 13. According to the blog post, these changes will be pushed out later this year. Parent-managed accounts will also be supported on both Quest 2 and Quest 3 headsets.

For children under the age of 13, use of the hardware will require a parent’s approval. This will allow parents to manage the apps that their kids engage with, Meta says.

The new minimum age will allow Meta to recommend appropriate Quest apps

Meta Quest Minimum Age

Meta’s new minimum age limit will be a multifaceted change for families. Parents with kids under the age of the 13 can share their kid’s age with Meta during the account creation process.

In doing so, Meta says this can help the company provide age-appropriate experiences. “When parents share their preteen’s age with us, we’ll use this information to provide age-appropriate experiences across our app store. For example, we’ll only recommend age-appropriate apps.”

The new changes are a step towards helping parents ensure kids aren’t consuming content they don’t want them to. With parent-managed accounts, parents have the final say. But by sharing the age, kids within the minimum age range shouldn’t end up seeing app content that isn’t appropriate for them in the first place.

Providing parents with another barrier between their kids and that kind of content. Meta says these changes will allow families more ways to use and enjoy Meta Quest.

Parents can block access at any time

In addition to the approval for account creation, Meta says parents also have control over app access. With the ability to block access to content at any time on a parent-managed account.

There will be parental controls for setting time limits for usage too. With the ability to lay out set schedules for access time. In addition, the controls will include a VR casting feature that lets parents see what their kids are seeing on the headset. This feature would allow parents to cast the content to a phone or TV screen.


[ad_2]
Source link

MOVEit discloses THIRD critical vulnerability

andreasc
-
0
MOVEit discloses THIRD critical vulnerability
[ad_1]

Progress has released an advisory about yet another MOVEit Transfer vulnerability while new victims of the first one keep emerging.

In chess, the threefold repetition rule states that a player may claim a draw if the same position occurs three times during the game. Whether this means that customers of the popular file transfer utility MOVEit Transfer can ask for their money back remains to be seen, but we do hope it signals the end of the game.

Let’s do a small recap first, because it’s easy to lose track here. The Common Vulnerabilities and Exposures (CVE) database lists publicly disclosed computer security flaws. We will use these CVE numbers where available.

Timeline:

This latest vulnerability could lead to escalated privileges and potential unauthorized access to the environment.

Please note that it is very important to follow the instructions outlined in the latest advisory regarding the order in which the patches need to be applied and based on how many patches have already been applied.

The best advice provided by Progress is probably to disable all HTTP and HTTPs traffic to MOVEit Transfer on ports 80 and 443 to safeguard the environments while a patch is being prepared to address the vulnerabilities and in case even more of them come to the surface.

Meanwhile the Cybersecurity and Infrastructure Security Agency (CISA)  says it’s providing support to several federal agencies that have experienced intrusions affecting their MOVEit applications. Among the probably hundreds of victims are Payroll provider Zellis who serves British Airways and the BBC, oil giant Shell, several financial services organizations, insurance companies, and many others. Reportedly, two US Department of Energy (DOE) entities were also compromised.

Victims have been identified in the UK, US, Germany, Austria, Switzerland, Luxembourg, France, and the Netherlands. Organizations in the US make for most of the victims, but no ransom demands have been made of federal agencies according to a CISA spokesperson.

Cl0p re-emphasized that it was not going to use data stolen from government organizations with a message on its dark web site:

“We got a lot of emails about government data, we don’t have it. We have completely deleted this information. We are only interested in business, everything related to the government has been deleted.”

We shouldn’t mistake this for altruism. It could be they are simply afraid of the consequences and because they are fully aware that governmental organizations are not allowed to pay the ransom anyway, so there is no profit to be made there.

Our own Cybersecurity Evangelist, Mark Stockley, has his doubts about Cl0p’s methods:

“Cl0p’s approach supposes that the US government would react more strongly to sensitive data being leaked than it would to multiple simultaneous breaches by the same criminal organisation. This ignores the fact that by using zero-days to attack hundreds of targets simultaneously, including parts of the federal government, Cl0p has already made itself ransomware’s squeakiest wheel.”

Stay tuned for future developments.

How to avoid ransomware

  • Block common forms of entry. Create a plan for patching vulnerabilities in internet-facing systems quickly; and disable or harden remote access like RDP and VPNs.
  • Prevent intrusions. Stop threats early before they can even infiltrate or infect your endpoints. Use endpoint security software that can prevent exploits and malware used to deliver ransomware.
  • Detect intrusions. Make it harder for intruders to operate inside your organization by segmenting networks and assigning access rights prudently. Use EDR or MDR to detect unusual activity before an attack occurs.
  • Stop malicious encryption. Deploy Endpoint Detection and Response software like Malwarebytes EDR that uses multiple different detection techniques to identify ransomware, and ransomware rollback to restore damaged system files.
  • Create offsite, offline backups. Keep backups offsite and offline, beyond the reach of attackers. Test them regularly to make sure you can restore essential business functions swiftly.
  • Don’t get attacked twice. Once you’ve isolated the outbreak and stopped the first attack, you must remove every trace of the attackers, their malware, their tools, and their methods of entry, to avoid being attacked again.

Malwarebytes EDR and MDR removes all remnants of ransomware and prevents you from getting reinfected. Want to learn more about how we can help protect your business? Get a free trial below.

TRY NOW


[ad_2]
Source link

Twitter furthers plans to add commerce features

andreasc
-
0
Twitter furthers plans to add commerce features
[ad_1]

Twitter appears to be gearing up for adding digital payment transfers to its app, according to a recent report from Reuters. This would be another source of revenue for the company in addition to its growing focus on advertisements in the past few months. As well as its Twitter Blue subscription.

Commerce is just one potential new way for Twitter to bring in cash. The company also looks to be ramping up its push for more video content. Vertical video now accounts for 10% of the time people spend on Twitter. With the app‘s hundreds of millions of users, 10% could be a sizeable chunk of revenue if used for ad placement.

Musk also believes video content growth could be an avenue for securing sponsorships for the platform through creators. Similar to the way YouTube and Twitch content creators get sponsorships from brands to plug their products. The details about Twitter’s new revenue plans were recently presented to investors, Reuters says.

Musk furthers plans for Twitter to offer digital payment transfers

It’s not clear right now if this is something that will ever come to fruition. But Musk has been open about wanting Twitter to offer payment transfer features for months now. Back in the beginning of this year Musk stated his vision for allowing users to both buy products on Twitter and send money to each other.

Now it looks like the company is taking the next step to further those plans. Reuters notes that Twitter has now applied for “money transmitter licenses” in all 50 states. If those licenses get approved, then it would certainly open some doors. Twitter could become more than just a social media app. It could also essentially become a peer-to-peer payments platform.

It’s unclear when those applications were made. Or if they’re poised to gain regulatory approval. But the action showcases Musk, and Twitter, are absolutely serious about bringing these features to users.


[ad_2]
Source link

Google warned its staff about using AI chatbots

andreasc
-
0
Google warned its staff about using AI chatbots
[ad_1]

Google staff should be more cautious when using AI chatbots, including the company’s tool Bard. The tech giant has issued a warning to Google staff to warn them about sharing business data with AI chatbots.

Using AI-driven chatbots is booming among users. However, even the employees sometimes use these tools to gather information about a topic or solve a glitch. The problem is employees might share confidential company data with a chatbot. As you might know, data shared with a chatbot remains in the chatbot servers and will be used to enrich the database.

It was reported in early April that ChatGPT leaked Samsung semiconductor information after the company’s employees shared source codes with the tool. At the time, Samsung applied precautionary measures to prevent similar incidents in the future. Now, Google is taking the same path by asking employees not to enter confidential materials into AI chatbots.

Google employees should not enter confidential data into AI chatbots

The tech giant is also asking engineers and programmers not to use the codes generated by AI chatbots. Google noted that it prefers to stay transparent about its products’ limitations while knowing Bard can make undesired code suggestions.

“Don’t include confidential or sensitive information in your Bard conversations,” Google noted in its updated privacy notice.

Google Bard is yet an “experimental” product for the company that aims to expand to more markets in the coming years. Bard could soon be available in 180 countries and 40 languages.

Unsurprisingly, the European watchdogs have recently asked Google to explain Bard’s impact on privacy before an official launch in the continent. The company met with Ireland’s Data Protection Commission to discuss the topic.

Google’s rivalry with Microsoft in the search market is becoming increasingly sensitive for the company. Relying on ChatGPT and OpenAI initiatives, Microsoft is turning Bing into a stubborn rival for Google Search. In the coming years, traditional search engines might be wiped out complementary and replaced by an AI chatbot.


[ad_2]
Source link

YouTube Music web platform gets improved UI redesign

andreasc
-
0
YouTube Music web platform gets improved UI redesign
[ad_1]

If you frequently use the YouTube Music web platform, then you should expect some changes. These changes focus on improving how the web platform looks in terms of its design. This redesigned platform is now gradually rolling out to users around the globe.

Considering that this redesign is happening to the YouTube Music web platform, users will not need to install an update. The redesign will happen automatically and become available to users of the music streaming web service. One of the major benefits of this redesign is that it makes playlists more accessible to users.

With the previous design, accessing a playlist was done through the “Library” button on the app bar. This bar sits at the top of the interface and houses the YouTube Music logo as well as other buttons. The update now makes it possible for users to access their playlists faster, whilst making the design look a bit cleaner.

The new YouTube Music web platform redesign harmonizes with the YouTube web platform

Another notable aspect of this redesign is the fact that it harmonizes YouTube Music and the YouTube web platforms. The navigation tab is now moving from the top of the screen to the left-hand side. This now leaves only the YouTube Music logo, search tab, cast button, and the user’s account icon at the top of the screen.

Now, on the left-hand side of the screen, you will find the Home, Explore, and Library options. Above these three options is a sandwich button that rolls out other options when selected. Having a look at the YouTube web platform, you’d find a similar design approach.

By tapping on the sandwich button you will reveal a list of your playlists and songs you recently played. You can also pin some of these playlists or songs to the top of the list for easy access when next you are using the web streaming platform. To play songs from the playlist, users can simply hover their mouse cursor over the song or playlist to reveal a play button.

With this, there will be little or no need to open the entire playlist before you can play songs in it. This is a very convenient approach to accessing songs in your library or playlist. If you also listen to podcasts, YouTube Music is also offering you access to new episodes from the sandwich menu.

You can as well create a new playlist directly from this menu with the “New playlist” button right above the list of songs, playlists, and podcasts. This new redesign is impressive and will change how users interact with the music streaming web platform. Asides from the outlined design changes, the web platform remains the same.


[ad_2]
Source link

This 100W charging brick can be used in over 200 countries

andreasc
-
0
This 100W charging brick can be used in over 200 countries
[ad_1]

OneAdaptr has released a new charging adapter, and this one is quite interesting. The name of the product is ‘OneWorld 100’, and it’s a 100W charging brick that can be used in over 200 countries worldwide.

The OneWorld 100 is a 100W charging brick that can charge your devices in over 200 countries

Sounds great? Well, it kind of is, as it makes this adapter very versatile, while allowing you to charge a bunch of devices at the same time. You can use it to charge both your Android and iOS devices, and far more than that.

One thing to note is that the company actually has three different variations of the ‘OneWorld’ adapter. The OneWorld 30, 65, and 100. Those numbers represent charging speed, so we’re looking at 30W, 65W, and 100W adapters.

The 30W and 65W models can charge up to 6 devices at the same time, while the 100W model charges up to 5 devices simultaneously. That’s the one we’ll focus on here, but they’re very similar. We’ve basically highlighted the differences between them already. Also, do note that they are different in terms of size.

The OneWorld 100 can charge up to 5 devices at the same time

Anyhow, as far as the output is concerned, we’re looking at two USB-C ports, two USB-A ports, and an AC port. The USB-C ports provide charging up to 100W max (5V3A, 9V3z, 12V1.5A, 20V3A). The USB-A ports provide up to 15W max charging (5V3A). The AC output supports 100-240V at 7A max charging. Quick Charge 3.0 is supported, by the way.

OneWorld 100 image 2

Considering the sheer number of different AC plugs this adapter can provide you with, OneAdaptr says that you can use it in over 200 countries worldwide. That goes for all three OneWorld adapters, by the way.

The OneWorld 100 now costs $89 (discounted from $109). You can also get additional discounts if you purchase more than one. The OneWorld 65 is priced at $69 (discounted from $74.99), while the OneWorld 30 usually costs $54, but it’s sold out now.

If you’re interested in getting a OneWorld adapter for yourself, the links are included below.

OneWorld 100

OneWorld 65

OneWorld 30


[ad_2]
Source link

TAG Heuer’s Golden Bright Connected watch brings the glam

andreasc
-
0
TAG Heuer’s Golden Bright Connected watch brings the glam
[ad_1]

TAG Heuer is a watch brand that many already associate with luxury, but the Golden Bright edition Connected smartwatch takes things up to another level. Adding a layer of glitz and glam that might just be your style.

Over the past few years TAG Heuer has released various models of the Connected smartwatch. With little updates here and there, all running on Wear OS. This latest model comes in two different configurations – the Golden Bright and the Bright Black. These are both new styles of the Connected Calibre E4. There are some similarities between the two when it comes to design. The most obvious being that there is lots of black and gold on both watches. Both also come with a black strap. This is where things start to deviate though.

The Bright Black comes with a black watch case while the Golden Bright watch case is gold. As one would probably suspect with those names. The Golden Bright also has a smaller form factor, as it’s a 42mm watch compared to the Bright Black which is 45mm.

The TAG Heuer Golden Bright and Bright Black have exclusive watch faces

Aside from the style, these new watches are the same as the prior most recent Connected that came out. It runs on Wear OS 3, features a Snapdragon Wear 4100+ from Qualcomm, and AMOLED displays with battery life that can last for up to a day.

They also come with exclusive watch faces though. Which you’ll only find on these two styles. So that might be the hook for picking these up if you’re in the market for a smartwatch upgrade. That being said, as with all TAG Heuer watches, smartwatches included, these come with a high price tag. If that doesn’t turn you away, the TAG Heuer Connected Cailbre E4 in Bright Black can be yours for $2,750 while the Golden Bright can be yours for $2,300. If that’s a little more than you’d prefer to spend, there are plenty of much less expensive options on our Best Smartwatches guide.

TAG Heuer Connected Calibre E4 – Bright Black

TAG Heuer Connected Calibre E4 – Golden Bright


[ad_2]
Source link

Info stealer malware Skuld is targeting Windows PCs in the US

andreasc
-
0
Info stealer malware Skuld is targeting Windows PCs in the US
[ad_1]

Threat actors and hackers are always developing new methods to infiltrate systems and gain unauthorized access. Now, according to a report from Trellix Advanced Research Center, hackers have developed a new Golang-based malware called Skuld, which is targeting and stealing information from Windows systems across Europe, Southeast Asia, and the United States.

While threat actors generally do not utilize Golang for developing malware, Skuld takes advantage of its simplicity and cross-platform compatibility to target a wide range of systems and extracts information using Discord’s webhooks, thus posing a significant threat to victims.

Similar to other info stealer malware

According to the researchers, Skuld, developed by a programmer named “Deathined,” is similar to other publicly available information stealers such as Creal Stealer, Luna Grabber, and BlackCap Grabber. But, since the malware is Golang-based, detecting it and implementing effective countermeasures is much more difficult.

Moreover, the fact that anyone can find Deathined on popular social media platforms like GitHub, Twitter, Reddit, and Tumblr raises serious concerns, as other malicious actors could also exploit the malware to compromise systems.

How does the malware work?

Once installed, Skuld first checks whether it is running within a virtual environment or not. It then extracts a list of running processes and terminates the ones that match its blocklist, thereby ensuring its survival. After completing this process, the malware presents victims with a fake error message, such as “Error code: Windows_0x988958 – Something has gone wrong.”

Now, if an unsuspecting user clicks on the “Ok” message, it triggers the execution of different modules within the malware, which collect and exfiltrate sensitive information from the victim’s system, including files found in a Windows user’s profile folder, such as Desktop, Documents, Downloads, Pictures, Music, Videos, and OneDrive. Finally, the malware utilizes Discord webhooks and the Gofile upload service to send the stolen information back to the threat actor.

This incident once again highlights the increasing efforts of threat actors to infiltrate our systems. As a result, individuals and organizations must prioritize robust security practices, including regularly updating software and operating systems, using a trustworthy antivirus, refraining from downloading files from unknown sources, implementing strong passwords, and enabling two-factor authentication (2FA).


[ad_2]
Source link

Galaxy S21 series gets Samsung’s June 2023 update in the US

andreasc
-
0
Galaxy S21 series gets Samsung’s June 2023 update in the US
[ad_1]

Samsung has released the June 2023 security update for the Galaxy S21 series in the US. The update is available for both carrier-locked and unlocked units of the 2021 flagship trio. International versions of the phones picked up the June SMR (Security Maintenance Release) a couple of days back.

The latest security patch for the Galaxy S21, Galaxy S21+, and Galaxy S21 Ultra comes with the firmware build numbers G99*USQS7EWF1 (carrier-locked) and G99*U1UES7EWE1 (unlocked) in the US. The update is widely available for users on pretty much every carrier network. Samsung should soon cover the remaining few networks (if any) as well.

The official changelog supplied by the Korean firm for this Galaxy S21 update only mentions this month’s security fixes. And that’s probably it. Don’t expect any major user-facing changes or new features here. The latest firmware release for these phones is all about the new security patches, which are plenty in numbers (more on that later).

As said earlier, Samsung has already released the June SMR for the Galaxy S21 series in international markets. But the rollout doesn’t seem to have expanded beyond Europe. Users in Europe are getting some device stability and reliability improvements along with the new security fixes. Those are nothing but some software optimizations.

Samsung has also rolled out the June SMR to the Galaxy S21 FE in the US and some international markets. But it’s only available for factory-unlocked units stateside. The company should soon cover the remaining units globally. This phone isn’t getting any additional goodies, either. The update only brings this month’s security fixes.

Samsung’s June update for the Galaxy S21 series patches dozens of vulnerabilities

The June SMR for Galaxy devices contains fixes for more than 60 vulnerabilities. Samsung’s official security bulletin states that 11 of those are Galaxy-specific issues, while the other 50 patches concern Android OS issues. As you might expect, not all 60-odd vulnerabilities exist in every model, but every Galaxy device is affected by a few of them. Google says that at least three Android OS issues patched this month were critical.

If you’re using a Galaxy S21, Galaxy S21+, Galaxy S21 Ultra, or Galaxy S21 FE, these security fixes are coming your way. Watch out for a notification about the OTA (over-the-air) rollout and install the new update as soon as you can. Samsung lets you manually check for updates from the Software update menu of your Galaxy phone’s Settings app.


[ad_2]
Source link
1...1,1621,1631,164...1,473Page 1,163 of 1,473