Kyocera is making a notable shift in the Japanese market

andreasc
-
0
Kyocera is making a notable shift in the Japanese market
[ad_1]

Kyocera might not be one of the top brands in the smartphone market, but it’s been around for a while. The Japanese company has been able to survive several phases in the history of the smartphone, and right now, the company’s looking to make some changes to its business. According to Japanese publication Nikkie (via Android Authority), Kyocera will be shifting its focus in the Japanese Market.

You don’t see many Kyocera phones out in public. In the US market, Kyocera made a shift away from consumer phones and toward Enterprise devices a few years ago. You’re more likely to see an office worker sporting a Kyocera device than your next door neighbor.

The consumer smartphone market in America is very much tied up in Apple, Samsung, and Motorola. At this point, it’d be really tough to make a splash in the US market against the competition.

Kyocera makes a shift in the Japanese Market

This strategy seems to be working for Kyocera, as the company will soon do the same for the Japanese market. At the behest of its parent company Kyocera Corporation, the company will be shifting away from the consumer market in its home country Japan.

The head of the company, Hideo Tanimoto, announced this during a conference call to discuss the fiscal year for Kyocera. We’re not sure about the company’s numbers, but there is word that about half of the company’s business last year came from corporate users.

Kyocera never really held a strong place in the smartphone market, and it hasn’t really been able to stand out. But, taking a more conservative route and distributing phones amongst Enterprise users might be a good call for the business. That’s a sector that is typically overlooked.

Hopefully this change in strategy will mean good fortune for the Japanese company. We’ll have to wait and see.


[ad_2]
Source link

Sonos discontinues important feature for Android devices

andreasc
-
0
Sonos discontinues important feature for Android devices
[ad_1]

Sonos is an increasingly popular brand in the audio streaming market, which makes the company’s latest announcement quite disappointing for those who love its products. Starting next week, Sonos will no longer support streaming of local audio files from Android devices.

Starting May 23rd, 2023, we’re removing the ability to play audio files directly to Sonos using the “On this device” menu in the Sonos app for Android. We recommend using one of the methods described in this article to make sure you can still play any files stored on your Android device.

Android was the last mobile platform to support the feature since iOS devices have been removed from the list of supported devices about three years ago. On the bright side, Sonos offers quite a few audio streaming options, including Bluetooth, AirPlay, and NAS (network-attached storage).

Not to mention that services like Apple Music, YouTube Music, Deezer and Plex allow you to upload and stream music online. Of course, you still have to pay for a premium subscription if the streaming service requires it. Once you’ve uploaded the music to one of these services, the tunes will be accessible via Sonos as soon as the service using the Sonos app is added.

That being said, if you have an Android device, you will no longer be able to play audio files directly to Sonos starting May 23. Instead, you can play the audio files downloaded to your Android devices on the Sonos system using the Sonos app via Bluetooth.

As far as the reasoning behind the change, Sonos said that “as newer versions of mobile operating systems are released, it can sometimes change the way information is shared between devices, and this feature will no longer be compatible with newer version of the Android operating system.”


[ad_2]
Source link

Ducktail Operation – Hackers May Steal Your Credentials

andreasc
-
0
Ducktail Operation – Hackers May Steal Your Credentials
[ad_1]
Ducktail Operation

WithSecure Labs, researchers uncovered a cyber operation named Ducktail in July 2022, where threat actors employed information-stealing malware to specifically target marketing and HR professionals with spear-phishing campaigns through LinkedIn direct messages, focusing on individuals and employees with potential access to Facebook business accounts.

The Ducktail campaign can compromise Facebook business accounts and misuse the ad feature for malicious advertising. While along with Facebook, LinkedIn is also now actively targeted by threat actors for cybercriminal activities. 

Trend Micro’s Managed XDR team in March 2023 found a file that collects user data and connects to Facebook and Telegram domains during their investigation of Ducktail-related incidents.

Operation Ducktail

How the Attackers Trick Victim

The sample file’s name, referencing a marketing director job opening, appears specifically tailored to attract marketing professionals by hinting at a higher leadership position.

Although the exact delivery method of these links to the target is uncertain, the historical use of LinkedIn messages by Ducktail suggests it as a potential means.

Experts determined the contents and source of the archive by examining the file name, and upon investigating the domain, they discovered that the malicious file was hosted on Apple’s iCloud service, although the URL is currently inactive.

Upon analyzing the created processes, security researchers identified three, including separate processes for Microsoft Edge and Google Chrome, which collect the victims’ IP addresses and geolocation data.

Here below, we have mentioned the arguments that are used in these processes:-

  • –headless
  • –disable-gpu
  • –disable-logging
  • –dump-dom

The last process is used to open a PDF file, and the complete details about the fake job are embedded inside this PDF. 

The malware operates by extracting browser credentials and acquiring Facebook-related information. At the same time, victims read the spawned PDF file, storing it in a temporary text file before exfiltrating it using Telegram every 10 minutes.

Due to the frequent use of social engineering lures by contemporary threat actors, both individuals and organizations need to exercise caution when opening links or downloading files from unknown sources, regardless of whether they are delivered through renowned social media platforms or means like:-

Security Recommendations

Here below, we have mentioned all the best security practices that could help users mitigate spear-phishing attacks:-

  • Beware of unexpected emails; exercise caution.
  • Always verify the sender’s identity before opening attachments from unknown sources.
  • Avoid suspicious links, especially from unknown or suspicious sources.
  • Educate employees on spear phishing to recognize and avoid it.
  • Enable multi-factor authentication for added security.

Struggling to Apply The Security Patch in Your System? – 
Try All-in-One Patch Manager Plus

EHA

[ad_2]
Source link

A week in security (May 8-14)

andreasc
-
0
A week in security (May 8-14)
[ad_1]

The most interesting security related news of the week from May 8 till 14.

Last week on Malwarebytes Labs:

Stay safe!

Malwarebytes removes all remnants of ransomware and prevents you from getting reinfected. Want to learn more about how we can help protect your business? Get a free trial below.

TRY NOW


[ad_2]
Source link

Spotify app is now available in 11 new languages

andreasc
-
0
Spotify app is now available in 11 new languages
[ad_1]

Spotify is now available in more regional languages. The company announced on Monday that it has added support for 11 new languages to its app. These include Arabic (Egypt), Arabic (Morocco), Arabic (Saudi Arabia), Basque, Bosnian, English (UK), Galician, Macedonian, Spanish (Argentina), Spanish (Mexico), and Traditional Chinese (Hong Kong). The latest additions take the total number of supported languages to 74.

Spotify is one of the most popular music streaming platforms around the world. In fact, it is the largest music streaming service globally by market share. The company offers a vast library of music and is rapidly expanding its podcast collection. But the music library may not be the only factor driving its popularity. Spotify’s wide availability and support for regional languages is something that not many others match currently.

The app was available in 27 languages at launch. In March 2021, the company added support for 36 new languages, including a host of languages spoken in various parts of India. This expansion came around the same time Spotify announced plans to launch the app in more than 80 new markets across Asia, Africa, the Caribbean, Europe, and Latin America. As Spotify arrives in more markets, the company is now also adding support for more regional languages.

“This expansion will unlock an even more personal experience for our users, giving them the ability to access Spotify in their native or local tongue,” the company said in a press release announcing the rollout of new languages. “And the more people who can use Spotify, the more connections we can foster between creators and their audiences”. You can find the full list of Spotify’s supported languages here.

Spotify is testing a new UI on the web

Coinciding with the latest language expansion, Spotify is testing a new UI on the web. It is replacing the plain sidebar with a richer and expandable sidebar that lets you quickly access your playlists, podcasts, and more. The main section also gets a redesign with cards featuring rounded corners (via).

As of this writing, Spotify hasn’t officially announced this redesign of its web client. The new UI also appears limited to select users. The company is probably testing this update among a small group of users and may roll it out to everyone in the coming weeks. Meanwhile, if you want to use the Spotify app in one of the newly-added regional languages, check for an update for the app. You can click the button below to download the latest version of Spotify from the Google Play Store.

DOWNLOAD SPOTIFY


[ad_2]
Source link

Snapdragon 8 Gen 3 to be an “excellent SoC”, details shared

andreasc
-
0
Snapdragon 8 Gen 3 to be an “excellent SoC”, details shared
[ad_1]

The Snapdragon 8 Gen 3 is expected to arrive later this year, and it will allegedly be an “excellent SoC”. This information comes from Ice Universe, one of the most prominent tipsters out there.

The Snapdragon 8 Gen 3 will be an “excellent SoC”, as details surface

He went to Twitter to say that, and also share some details about the processor itself. The Snapdragon 8 Gen 3 will allegedly use a 1+5+2 setup, so it will be an octa-core CPU. The Adreno 750 GPU will be in charge of graphics processing.

The tipster also says that the performance “has been greatly improved”. In other words, it will be a better performer than its predecessor. Ice Universe also mentioned that you’ll get 10MB of L3 cache here.

To wrap things up, the tipster said the following: “This generation will maintain the overall energy efficiency of 8Gen2”. That is great, as the Snapdragon 8 Gen 2 is a very efficient processor.

The Snapdragon 8+ Gen 1 and Snapdragon 8 Gen 2 turned out to be outstanding. If what Ice Universe says is true, the Snapdragon 8 Gen 3 will be as well. It’s nice to see that Qualcomm found its footing, following the not-so-great Snapdragon 8 Gen 1.

Many smartphone OEMs will utilize the Snapdragon 8 Gen 3 next year

This processor, needless to say, will be utilized by a ton of companies. The Snapdragon 8 Gen 2 is included in the vast majority of proper streamlined flagship smartphones this year. The same will likely be the case with the Snapdragon 8 Gen 3, but next year.

The Snapdragon 8 Gen 3 could actually arrive sooner than expected. The Snapdragon 8 Gen 2 launched on November 16, while the Snapdragon 8 Gen 3 is tipped to arrive in late October. That would be rather early considering what happened in previous years, but there you go.

Qualcomm is also rumored to skip the Snapdragon 8+ Gen 2 entirely. The company usually launches two flagship processors a year, but the Snapdragon 8 Gen 2 is so great that the Snapdragon 8+ Gen 2 is completely unnecessary, it would seem.


[ad_2]
Source link

Now you Can Lock & Hide Chats

andreasc
-
0
Now you Can Lock & Hide Chats
[ad_1]
WhatsApp Chat Lock

Meta is introducing a new “Chat Lock” feature for WhatsApp to assist customers in securing their conversations.

“We’re excited to bring to you a new feature we’re calling Chat Lock, which lets you protect your most intimate conversations behind one more layer of security,” WhatsApp stated in a blog post.

Over two billion people around the world now use the WhatsApp video calling and instant messaging network, according to Meta.

Increasing the Privacy of Your Most Private Conversation

When someone writes you when a chat is locked, the sender’s name and the message’s content will also be concealed. The new functionality lets you password-protect your most private conversations and keep them in a separate folder.

“Locking a chat takes that thread out of your inbox and puts it behind its own folder that can only be accessed with your device’s password or biometric, like a fingerprint. It also automatically hides the contents of that chat in notifications, too”, the company said.

Features to note:

  • Password-protect your most private conversations.
  • Automatically hides contents in notifications.
  • Store them in separate folders.

By tapping the name of a one-on-one or group conversation and selecting the lock option, you can lock it. Pull down your inbox gently and input your password or biometric to reveal these chats.

“We believe this feature will be great for people who share their phones from time to time with a family member or in moments where someone else is holding your phone at the exact moment an extra-special chat arrives,” the company added.

The Meta-owned firm wants to expand Chat Lock’s capabilities, including locks for companion devices and the ability to create a customized password for your chats, allowing you to use a password distinct from the one you use for your phone.

Although WhatsApp provides end-to-end encryption, it is ineffective when someone has unlocked your phone and can read your messages. In these cases, the new functionality adds an extra degree of security.

The new feature arrived just a few weeks after WhatsApp made a few changes to its platform regarding polls and sharing.

As part of these upgrades, you can now build single-vote polls, which means you can run a poll where users can only vote once. You can directly forward media with captions when sharing.

Struggling to Apply The Security Patch in Your System? – 
Try All-in-One Patch Manager Plus

EHA

[ad_2]
Source link

Why we should be more open about ransomware attacks

andreasc
-
0
Why we should be more open about ransomware attacks
[ad_1]

Paying the ransom and not saying a word about what happened is what cybercriminals would like us all to do.

The UK’s National Cyber Security Centre (NCSC) has published an article that reflects on why it’s so concerning when cyberattacks go unreported, saying:

…we are increasingly concerned about what happens behind the scenes of the attacks we don’t hear about, particularly the ransomware ones.

One of the main reasons is that with visibility, it is easier to get a good picture of what is going on, what methods the criminals are using, and maybe even who they are. Another argument is that paying the ransom and keeping quiet about the fact that you have been attacked has a few negative consequences:

  • Paying the ransom funds the criminal ecosystem.
  • Not doing a thorough, third-party investigation could leave the access method used by the criminals wide open for the next attack.
  • If the news of the cyberattack gets into the public domain later it can be much more damaging than communicating about it straight away.
  • Good backups often restore encrypted systems faster and more effectively than paying a ransom for a decryptor provided by the criminals. Decryptors can be slow, and they have been known to fail (even though the criminals will tell you they work seamlessly).

Depending on the country an organization is based in, whether they handle data under GDPR regulations, whether they are a government contractor, what sector they are active in, or whatever other reasons, some organizations have a legal obligation to notify one or more authorities about a cyberattack.

This has led to some misconceptions in the past. For example, for some time researchers were under the impression that SamSam ransomware, one of the earliest “big game” ransomware gangs, specifically targeted healthcare providers. Later it turned out that most of its victims were in the private sector, but because a lot of the healthcare victims were obliged by law to report the attacks and none of the private sector victims were, the reported incidents painted a skewed picture of what was actually happening.

There are some obvious reasons why organizations would want to keep attacks under wraps. One of them is the fear of the fines involved in a data breach. Some ransomware gangs actually use these fines as an argument to persuade victims to pay a ransom. The NCSC provided an example of a ransomware message that stated:

The ransom demand is £50 million. If you pay, you’ll avoid a regulator fine of £600 million which is 0.5% of your annual profit.

The NCSC goes on to say that a data leak isn’t the only reason for a fine, and you won’t always be fined if data is leaked. From what we have seen, trying to cover a data leak up and then getting exposed later on, will drive the penalty to the max.

The stats in our monthly ransomware reports are based on known ransomware attacks, published by ransomware gangs on their Dark Web sites and Telegram channels. This means we only have visibility on successful attacks where the victim refused to pay. Estimates by experts like Allan Liska are that this is just the tip of the iceberg. We might be seeing only 10% of what is really going on. While there are no reasons to believe that this could change the proportions, in some cases it might.

  • If there are still ransomware gangs without a leak site, we would lack visibility. (At the moment we do not believe any of the major players operate without a leak site or a Telegram channel to leak stolen data.)
  • Ransomware gangs may not publicise attacks that fail to steal valuable data—news of failures would likely put off affiliates and have a negative impact on their income.

Basically, the NCSC is asking victims to do the right thing and allow us to learn from successful attacks, which can help others to avoid falling victim to the same methods. We do understand that some organizations feel they have no other choice but to pay. But even then, investigate the incident and share your findings so others may learn.

How to avoid ransomware

  • Block common forms of entry. Create a plan for patching vulnerabilities in internet-facing systems quickly; and disable or harden remote access like RDP and VPNs.
  • Prevent intrusions. Stop threats early before they can even infiltrate or infect your endpoints. Use endpoint security software that can prevent exploits and malware used to deliver ransomware.
  • Detect intrusions. Make it harder for intruders to operate inside your organization by segmenting networks and assigning access rights prudently. Use EDR or MDR to detect unusual activity before an attack occurs.
  • Stop malicious encryption. Deploy Endpoint Detection and Response software like Malwarebytes EDR that uses multiple different detection techniques to identify ransomware, and ransomware rollback to restore damaged system files.
  • Create offsite, offline backups. Keep backups offsite and offline, beyond the reach of attackers. Test them regularly to make sure you can restore essential business functions swiftly.
  • Don’t get attacked twice. Once you’ve isolated the outbreak and stopped the first attack, you must remove every trace of the attackers, their malware, their tools, and their methods of entry, to avoid being attacked again.

Malwarebytes removes all remnants of ransomware and prevents you from getting reinfected. Want to learn more about how we can help protect your business? Get a free trial below.

TRY NOW


[ad_2]
Source link

Galaxy A52s 5G & Galaxy A72 get Samsung’s May update

andreasc
-
0
Galaxy A52s 5G & Galaxy A72 get Samsung’s May update
[ad_1]

Samsung has released the May 2023 update for a couple of premium mid-range smartphones from 2021. The Galaxy A52s 5G and Galaxy A72 follow the Galaxy A52 to the latest security update party. The new SMR (Security Maintenance Release) has been already rolled out to dozens of other Galaxy devices.

The May SMR for the Galaxy A52s 5G is currently available in a handful of countries in Latin America. Users in Mexico are getting this update with the firmware build number A528BXXS3EWD5. That for users in Bolivia, Peru, Brazil, Uruguay, Colombia, and Paraguay is A528BXXS3EWD4. The update doesn’t seem to bring any new features or improvements. Samsung is only pushing the latest security fixes to the device. A global rollout should follow in the coming days. The Galaxy A52s 5G wasn’t released in the US.

The latest security update is also available to the Galaxy A72 in Latin America. The rollout began recently with the firmware build number A725MUBU5DWE1 in Argentina. The build number suggests the update contains more than just the latest security fixes. Maybe it brings One UI 5.1. Unfortunately, Samsung hasn’t yet added this release to its update tracker. So we can’t confirm anything. We expect the update to reach more markets in the coming days. Like the Galaxy A52s 5G, this phone also didn’t arrive in the US.

As usual, you will receive a notification once this update becomes available for your Galaxy A52s 5G or Galaxy A72. You can also manually check for updates from the Settings app. Go to the Software update menu and tap on Download and install. If an update is available, you will be prompted to download it. But if you don’t see any pending OTA (over the air) update today, wait a few days and check again. The May SMR contains fixes for more than 70 security flaws, including at least six critical issues across the Galaxy family.

Galaxy A52s 5G and Galaxy A72 should get the Android 14 update

Samsung released the Galaxy A52s and Galaxy A72 in September and March of 2021, respectively. Both devices came running Android 11 out of the box. They have since picked up updates to Android 12 and Android 13. Based on Samsung’s update policy, they should get one more major Android OS release. So the Android 14 will probably reach the two premium mid-range models. The rollout is expected to begin later this year but the Galaxy A52s and Galaxy A72 may not receive it until next year.


[ad_2]
Source link

The future of Android security

andreasc
-
0
The future of Android security
[ad_1]

Most people got introduced to Androids when they were watching Dragon Ball Z and knew them as robots that looked like humans. Even though that’s the main definition of the word, times have changed, and it now stands for phones that use an Android operating system.

Always battling for the top spot with iPhones in all aspects, there’s been a general debate that Android security pales in comparison. Most of the world uses Android, so let’s look at the future and how tomorrow’s threats can be defeated today.

The current state of Android security

Based on the most recent data, there are 3.6 billion people using Android devices, and there are more than 24000 different devices. It’s the Windows of mobile. This operating system is straightforward to code, open-source, and extremely widespread. Thus, making it the prime target for cyber attackers and hackers. Phishing attacks, data breaches, viruses, and malware are much more prevalent than the iPhone.

However, there’s a reason for that. There are only 14 models of the iPhone, but Android devices come in all shapes and sizes. Different manufacturers can play with the hardware and the software, making patching nearly impossible. Even when an update is released, most people ignore it, leading to even more security breaches.

Of course, this doesn’t mean they aren’t safe to use. Two-factor authentication, encrypted data, antiviruses, VPNs, and biometric authenticators added multiple layers of protection, which raised the level of security and decreased malicious content and apps by a large margin.

The Future of Android Security

The most significant part of Android is that it evolves rapidly. For example, artificial intelligence and machine learning can bulletproof this operating system’s security level. Most people are familiar with ChatGPT, but that’s only one piece of the technology. Machine learning algorithms can be trained on attacks that happened in the past and churn out new models that have much better protection. Not only that, AI can identify the patterns of user behavior and analyze them.

Now, here’s where it gets really interesting. Your phone could become a companion that recognizes when someone else is using the device. It will be trained on your typing speed to know whether it’s you using messaging applications. Your finger movement is unique, which can be tracked and used to see whether the phone is being used by someone else. These subtle cues are much stronger than a regular password.

Apart from artificial intelligence and machine learning, there’s blockchain technology. Hackers won’t be able to steal data or tamper with it because new storage systems could be added to keep everything in a decentralized manner. Medical records, transactions, and other sensitive data will be kept securely, meaning that even if a hacker gets a hold of a device, they won’t be able to find what they’re looking for.

What are the challenges?

The diversity of Android models and devices is both a blessing and a curse. Billions of people have an easy and affordable way to use the internet. But not all of them have the necessary knowledge to protect themselves from threats. A consistent security solution is nearly impossible because some devices are outdated, and users would need to replace them with newer models.

Next on the list is the number of existing applications that get deployed daily. Cybercriminals are always trying to attach malware to applications in the Play Store, which can exploit the data of those who download them. Of course, Google is well aware of the problem, and they’ve deployed Play Protect, App Signing, and stricter requirements for apps. But, there are still cracks where malware can pass through.

How can you be safe?

Rule number one is to always download applications from the Play Store. Don’t root your phone and install APKs that can compromise your device. When you drop the shields and firewalls, it’s easy for an unsuspecting app to spy on you.

Most people bring their phones when traveling and connect to every possible internet source. Unless you’ve got a VPN, don’t use public Wi-Fi. Hackers can make fake hotspots to breach your device and steal your data.

The same thing’s true at home. Your smart TV is probably unprotected while connected to your router. Use a VPN for Android TV and any other IoT device to ensure no prying eyes start spying on you.

Furthermore, whenever you see a software update, download and install it immediately. The five minutes it takes to reboot your device also enhances the operating system and ensures you’re protected against the newest attacks. You might hit snooze on your alarm, but don’t hit the snooze on an update!

Finally, don’t use your social media accounts to log into apps. The good, old-fashioned way of entering an email is much better than a one-click login with your Facebook. There’s one reason for that. If your device gets hacked, all your friends and family will likely be too. Launching a phishing attack when someone has your account will be incredibly easy because no one will doubt whether it’s you.

Should you just get an iPhone?

Even though it’s tempting to ditch your Android because of security reasons, the main culprit behind a breach is user behavior. If you follow all the cybersecurity norms and tips, you’ll be completely safe from prying eyes, hacks, and malware. Take care of your devices so that they can care for you!


[ad_2]
Source link
1...1,2331,2341,235...1,458Page 1,234 of 1,458