Google Home app for Wear OS adds smart lights color and temperature changing controls and more

andreasc
-
0
Google Home app for Wear OS adds smart lights color and temperature changing controls and more
[ad_1]
During its I/O event, Google announced a slew of changes coming to Wear OS that will finally give its watch users features somewhat comparable to the competition. One of these was officially announced yesterday via a post on the Google Nest Blog, which will put the power of the Google Home app on your wrist.
This follows the Public Preview release of the redesigned Google Home app and its final release to everyone earlier this month, which focused on providing more user-friendly and intuitive controls for all your smart home tech. One of the most prominent improvements on this version has been the highly customizable home screen that allows you to set up your favorite devices for easy access.

A version of the Public Preview had also been available on Wear OS, namely the Pixel Watch, but was quite limited in its capabilities as per the warning given to its users as soon as the app is opened. However, this has changed now as new features are rolling out that will make the Home app on Wear OS more useful. 

Google Home app for Wear OS adds smart lights color and temperature changing controls and more

One of the most exciting new features is the ability to change the color and temperature of your smart lights right from your wrist. When accessing any compatible RGB smart light from the Wear OS Home app, you will be able to long press on that light’s control and be greeted with an additional screen where you can control these two aspects. I was able to test this with both Hue and Govee lights and was pleasantly surprised how smooth and quickly it worked.

Get ready for a wristload of new features for Google Home on Wear OS! Get notifications with preview images for Nest cameras and doorbell, view your favorite devices and automations, change the color of your compatible lights, control your thermostat modes, and more.

Besides light and temperature controls, you will also now have quick access to your favorite devices and automations, just as you can on the mobile app. Additionally, if you have a Nest camera or doorbell, you will be able to see a preview image should you get an alert or someone ring your doorbell. 

All of these changes are currently rolling out to the Google Home app on Wear OS. I currently have all those features available with version 2.66.58.3, but it is unclear if these updates are rolling out server-side or if a new version of the app is to be expected.


[ad_2]
Source link

SchoolDude Hacked – Over 3 million Users Records Exposed

andreasc
-
0
SchoolDude Hacked – Over 3 million Users Records Exposed
[ad_1]

The Office of the Main Attorney General of Maine reported that there was a data breach in one of the Brightly-owned Software on 20th April 2023, which was discovered 8 days later.

Brightly Inc is a Software company founded in 1999 by Siemens. It is one of the leading global Software-as-a-service (SaaS) platforms that provides management solutions to education, government, healthcare, manufacturing, and many others.

According to reports, the SchoolDude application was hacked, and nearly 3 million records were exposed.

SchoolDude was an online platform used by Educational institutions to maintain their work records. It was built and developed by Brightly Software Inc, 

Threat actors have extracted sensitive customer information like Name, Address, Account Password, Phone number, and School District Name.

Brightly has notified all affected users regarding this security incident and requested them to change their passwords before logging in to the applications.

Brightly Inc.’s email stated, “As part of our remediation efforts, please note that we have reset the passwords for all SchoolDude user accounts. Therefore, You will need to change your password to continue using the application.

In addition to this, Brightly also mentioned that they had informed the authorities regarding this data breach and have also been working with Industry-leading security experts to investigate this issue. 

With growing threats to data, it is important to implement security measures and educate all users about phishing campaigns.

The email sent by Brightly also mentioned its users to be vigilant towards phishing campaigns and requested their users not to respond to suspicious emails.

It also informed the users to reset their passwords on other applications if they have used the same password for all of them.

Investigation into this incident is still going on and Brightly said they are committed to addressing any user concerns.

Struggling to Apply The Security Patch in Your System? – 
Try All-in-One Patch Manager Plus

EHA

[ad_2]
Source link

Nothing Phone (2) spotted on Geekbench with old Qualcomm chip

andreasc
-
0
Nothing Phone (2) spotted on Geekbench with old Qualcomm chip
[ad_1]

Nothing is gearing up to launch its second smartphone later this summer. The company has been teasing the Nothing Phone (2) for a while now, while leaks have revealed its key specs. The handset has also picked up regulatory approvals in a few markets. As we wait for its official launch date, the Nothing Phone (2) has shown up on Geekbench.

The second-gen Nothing phone has visited Geekbench with the model number A065, which we have known since February of this year (via). Contrary to some rumors, the device appeared with Qualcomm’s Snapdragon 8 Gen 1 processor in this benchmark run. There have been rumors that Nothing will equip the Phone (2) with the Snapdragon 8+ Gen 1.

The two chips share most of the specs but the latter packs a faster CPU. More precisely, its Cortex-X2 prime CPU core operates at a maximum frequency of 3.2GHz as opposed to the Snapdragon 8 Gen 1’s 3.0GHz maximum CPU frequency. The rest of the CPU setup is unchanged. We have three Cortex-A710 mid-cores clocked at 2.5GHz and four Cortex-A510 efficiency cores clocked at 1.8GHz.

The Nothing Phone (2) will come with 12GB of RAM

While we will have to wait for confirmation on whether the Nothing Phone (2) will ship with the Snapdragon 8 Gen 1 or its Plus version, the Geekbench entry confirms that the device will arrive with 12GB of RAM. The company may offer an 8GB RAM variant as well. We should be looking at LPDDR5 RAM here, and not the faster LPDDR5X. Storage options may include 128GB and 256GB. Once again, Nothing will probably equip the phone with UFS 3.1 storage chip rather than the faster UFS 4.0.

Unsurprisingly, the Nothing Phone (2) will run Android 13 out of the box, likely with the latest version of the company’s custom skin on top. That’s all the Geekbench listing tells us about the phone. The early benchmark run yielded scores of 1,253 and 3,833 in sing-core and multi-core tests, respectively. These scores are on par with what other Snapdragon 8 Gen 1-powered devices have achieved on Geekbench 5. Nothing may push things up a little with further software optimizations closer to the phone’s launch.

The Nothing Phone (1) launched in July last year. The company may debut the second-gen model around the same time this year. Rumors suggest the new model will be of the same size as its predecessor, meaning that it would retain the 6.55-inch AMOLED display with FullHD+ resolution, 120Hz refresh rate, and an under-display fingerprint scanner. It’d be nice if Nothing makes the screen brighter, though. Expect to encounter more leaks and rumors about the Nothing Phone (2) in the coming weeks.

Nothing Phone (2) Geekbench


[ad_2]
Source link

8 Best Screen Protectors for Google’s Pixel 7a

andreasc
-
0
8 Best Screen Protectors for Google’s Pixel 7a
[ad_1]

Despite the Pixel 7a only costing $499, it’s still a good idea to protect that display, and you can do just that with a screen protector. There’s loads of options for the Pixel 7a, and we’ve rounded up the very best. So you can be sure you don’t waste your money.

Why you should use a screen protector

The Google Pixel 7a is a great phone, but it’s also a relatively fragile one. The screen is made of Gorilla Glass Victus, which is a very strong type of glass, but it’s not invincible. If you drop your phone, there’s always a chance that the screen could get scratched or cracked.

A screen protector is a thin, transparent film that is placed over the screen of your phone. It can help to protect the screen from scratches, cracks, and other damage. There are many different types of screen protectors available, so you can choose one that fits your needs and budget.

Here are some of the reasons why you should use a screen protector on your Google Pixel 7a:

  • To protect the screen from scratches. The screen of your Google Pixel 7a is made of Gorilla Glass Victus, but it’s not invincible. If you drop your phone, there’s always a chance that the screen could get scratched. A screen protector can help to prevent this from happening.
  • To protect the screen from cracks. If your phone falls, the screen protector can help to absorb the impact and prevent the screen from cracking. This is especially important if you drop your phone on a hard surface, such as concrete.
  • To make the screen look better. Some screen protectors have oleophobic coatings that help to repel fingerprints and smudges. This can make the screen look cleaner and clearer.
  • To increase the value of your phone. If you ever decide to sell your phone, a screen protector can help to increase its value.

Best Screen Protectors for Google Pixel 7a

Without further ado, here are the best screen protectors for the Google Pixel 7a. These include tempered glass screen protectors, as well as the plastic ones. Keep in mind that the plastic ones are typically much cheaper, but the tempered glass ones look and feel much better.

 

Product name Cost Where to buy
IMBZBK 4-Pack Tempered Glass $8.99 Amazon
OMOTON 3-Pack Tempered Glass $9.99 Amazon
Spigen 2-Pack Tempered Glass Screen Protector $15.99 Amazon
Supershieldz 3-pack Tempered Glass $7.99 Amazon
amFilm 3-pack Tempered Glass Screen & Camera protector $9.99 Amazon
EGV 3-Pack Tempered Glass Screen Protector $9.99 Amazon
Caseology Snap Fit Tempered Glass $13.99 Amazon
UniqueMe 2-Pack Tempered Glass Screen Protector $8.99 Amazon

IMBZBK 4-Pack Tempered Glass

71zhRIF1sTL AC SL1500

  • Price: $8.99
  • Where to buy: Amazon

The IMBZBK Google Pixel 7a Screen Protector is a great option for anyone looking to protect their new phone. It is made of high-quality tempered glass that is shatter-resistant and scratch-resistant. The protector also has an oleophobic coating that helps to prevent fingerprints and smudges. The IMBZBK screen protector is easy to install and comes with a lifetime warranty.

IMBZBK 4-Pack Tempered Glass – Amazon

OMOTON 3-Pack Tempered Glass Screen Protector

71Q djM7MPL AC SL1500

  • Price: $9.99
  • Where to buy: Amazon

The OMOTON Google Pixel 7a Screen Protector is a great option for anyone looking to protect their new phone. It is made of high-quality tempered glass that is shatter-resistant and scratch-resistant. The protector also has an oleophobic coating that helps to prevent fingerprints and smudges. The OMOTON screen protector is easy to install and comes with a lifetime warranty.

OMOTON 3-Pack Tempered Glass Screen Protector – Amazon

Spigen Tempered Glass Screen Protector

61uKLnBmb1L AC SL1200

  • Price: $15.99
  • Where to buy: Amazon

The Spigen Tempered Glass Screen Protector for Google Pixel 7a is a great option for anyone looking to protect their new phone. It is made of high-quality tempered glass that is shatter-resistant and scratch-resistant. The protector also has an oleophobic coating that helps to prevent fingerprints and smudges. The Spigen screen protector is easy to install and comes with a lifetime warranty.

Spigen Tempered Glass Screen Protector – Amazon

Supershieldz 3-pack Tempered Glass Screen Protector

61129u6CGiL AC SL1500

  • Price: $7.99
  • Where to buy: Amazon

The Supershieldz Designed for Google Pixel 7a Tempered Glass Screen Protector is a great option for anyone looking to protect their new phone. It is made of high-quality tempered glass that is shatter-resistant and scratch-resistant. The protector also has an oleophobic coating that helps to prevent fingerprints and smudges. The Supershieldz screen protector is easy to install and comes with a lifetime warranty.

Supershieldz 3-Pack Tempered Glass Screen Protector – Amazon

amFilm 3-Pack Tempered Glass Screen Protector

71UWL+u+2mL AC SL1500

  • Price: $9.99
  • Where to buy: Amazon

The amFilm Tempered Glass Screen Protector for Google Pixel 7a is a great option for anyone looking to protect their new phone. It is made of high-quality tempered glass that is shatter-resistant and scratch-resistant. The protector also has an oleophobic coating that helps to prevent fingerprints and smudges. The amFilm screen protector is easy to install and comes with a lifetime warranty.

amFilm 3-Pack Tempered Glass – Amazon

EGV 3-Pack Tempered Glass Screen Protector

71K3AC9n3dL AC SL1500

  • Price: $9.99
  • Where to buy: Amazon

The EGV Google Pixel 7a Screen Protector is the best screen protector for the Pixel 7a because it offers a combination of features that are hard to find in other screen protectors. These features include:

  • High-quality tempered glass: The EGV screen protector is made of high-quality tempered glass that is shatter-resistant and scratch-resistant. This means that it can protect your phone from scratches, cracks, and even drops.
  • Oleophobic coating: The EGV screen protector has an oleophobic coating that helps to prevent fingerprints and smudges. This makes it easy to keep your screen clean and free of smudges.
  • Easy to install: The EGV screen protector is easy to install. It comes with a pre-cut adhesive that makes it easy to align the protector perfectly.
  • Lifetime warranty: The EGV screen protector comes with a lifetime warranty. This means that you can replace it if it ever gets damaged or scratched.

In addition to these features, the EGV screen protector is also very affordable. It is currently priced at just $12.99, which is a great value for a high-quality screen protector.

EGV 3-Pack Tempered Glass Screen Protector – Amazon

Caseology Snap Fit Tempered Glass

61cBXWWxloL AC SL1080

  • Price: $13.99
  • Where to buy: Amazon

The Caseology Snap Fit screen protector is made of high-quality tempered glass that is shatter-resistant and scratch-resistant. This means that it can protect your phone from scratches, cracks, and even drops. The Caseology Snap Fit screen protector has an oleophobic coating that helps to prevent fingerprints and smudges. This makes it easy to keep your screen clean and free of smudges.

The Caseology Snap Fit screen protector is easy to install. It comes with a pre-cut adhesive that makes it easy to align the protector perfectly. The Caseology Snap Fit screen protector comes with a lifetime warranty. This means that you can replace it if it ever gets damaged or scratched.

Overall, the Caseology Snap Fit Screen Protector for Google Pixel 7a is a great option for anyone looking to protect their new phone. It is made of high-quality materials, is easy to install, and comes with a lifetime warranty.

Caseology Snap Fit Tempered Glass – Amazon


[ad_2]
Source link

Bing just beat Google in the race to have its AI chatbot as your smartphone home screen widget

andreasc
-
0
Bing just beat Google in the race to have its AI chatbot as your smartphone home screen widget
[ad_1]

Although no timeframe was given on when the Bard Android widget would be available, we knew that this was an important next step considering Google’s recent laser focus on AI, as evident in every single Google I/O presentation this year. It was also rumored that this widget would come first to Pixel phones before it makes its way to other Android devices.

Now, Microsoft is once again beating Google to the punch when it comes to rolling out its contextual AI chatbot on as many platforms as possible. Bing AI will now be part of the Bing app on both Android and iOS with a Bing Chat widget available to be added on the home screen.

Widgets are a great way to get timely information at a glance, or directly access features in your favorite apps. This week, we’re launching a new Bing Chat widget that you can add to your iOS or Android home screen. Soon, you’ll be able to click the Bing icon to land directly in the new Bing Chat experience, or click the microphone icon to verbally ask a question.

This isn’t Microsoft’s first attempt at bringing Bing’s AI chatbot to mobile, though. Earlier last month, Microsoft incorporated Bing Chat into the SwiftKey app for Android, a feature that has been expanded upon starting today by adding an AI compose feature that will help you draft a message based on your preferred tone, format, and length.

To round things off as far as AI is concerned, Microsoft is also making contextual chat improvements in the Edge mobile app, adding the capability to ask it questions about the page in the mobile browser you are currently viewing, including asking it to summarize it. It’s evident that Microsoft is taking its investment in OpenAI very seriously and does not intend to sit on its laurels, specially not following Google’s very recent AI-heavy Google I/O event.


[ad_2]
Source link

Qilin’s RaaS Program Advertised on Dark Web

andreasc
-
0
Qilin’s RaaS Program Advertised on Dark Web
[ad_1]
Qilin’s RaaS Program

In March 2023, Group-IB’s Threat Intelligence team accessed the Qilin ransomware (Agenda ransomware) group and discovered that it is a Ransomware-as-a-Service affiliate program using Rust-based ransomware to target victims.

Qilin ransomware employs personalized attack strategies, including modifying file extensions and terminating targeted processes, to optimize the impact of their attacks on individual victims.

The Rust variant of Qilin ransomware is particularly powerful due to its evasive nature, strong encryption capabilities, and flexibility to customize malware for various operating systems, including:-

Observations from Group-IB Threat Intelligence experts reveal that Qilin ransomware is promoted on the dark web, featuring a proprietary DLS with distinct company IDs and leaked account information.

Qilin Ransomware Operator

Qilin ransomware operators employ a double extortion method, encrypting and exfiltrating sensitive data, demanding payment for decryption, and promising non-disclosure of stolen information while retaining control over different encryption modes.

Qilin ransomware employs phishing emails with malicious links to initiate network infiltration, exfiltrate sensitive data, and subsequently explore the victim’s infrastructure for critical information to encrypt.

The threat actors implant a ransom note within every compromised system directory during the encryption procedure. The ransom note implanted by the threat actors contains the complete guide for purchasing the decryption key for the victims.  

Qilin ransomware may further complicate data recovery by attempting to reboot systems in normal mode, stop server-specific processes, and, if encryption is successful, use a double extortion technique to demand payment and prevent the release of stolen data.

Group-IB researchers found that Qilin ransomware not only targets victims but also posts their data on the group’s DLS, with data from 12 companies across multiple countries identified in May 2023:-

  • Australia
  • Brazil
  • Canada 
  • Colombia
  • France
  • Netherlands
  • Serbia
  • United Kingdom
  • Japan
  • The United States

Qilin’s Admin Panel

Group-IB discovered that Qilin ransomware operates as a Ransomware-as-a-Service (RaaS) and offers its affiliates an administrative panel to manage attacks, with further analysis of the program’s inner workings and admin panel made possible after Group-IB’s infiltration in March 2023.

In total there are six sections under which the affiliates’ panel of the Qilin ransomware group is divided, and here they are mentioned below:-

Section 1: Targets

While this section in Qilin’s administrative panel provides details on targeted companies and ransom amounts and enables affiliates to generate customized samples of Qilin ransomware with different configurations.

Here below, we have mentioned all the details that could be configured:-

  • name of the company
  • ransom amount
  • waiting period for a ransom payment
  • the timezone of the company
  • information about the company’s revenue from the Zoominfo website
  • announcement
  • description of the attacked company
  • content of the ransom note
  • the directories that will be skipped
  • the files that will be skipped
  • the extensions that will be skipped
  • the processes that will be killed
  • the services that will be stopped
  • login credentials of accounts
  • safe mode excluded hosts
  • mode of encrypting
  • extensions that will be encrypted
  • list of virtual machines (VMs) that will not be killed/shut down

Section 2: Blogs

Within this designated section, associates can generate and modify blog posts featuring details regarding targeted organizations that have failed to fulfill the demanded ransom.

EHA

Section 3: Stuffers

Qilin’s “Stuffers” section allows attackers to perform the following tasks:-

  • Create accounts for their team members
  • Control their level of access
  • Enable them to witness all attacks
  • Build ransomware samples
  • View victim chats

Section 4: News

As of April 2023, no updates or published posts were found in the News section of Qilin ransomware, where operators typically share information regarding their ransomware partnership.

Section 5: Payments

Qilin ransomware affiliates can withdraw ransom money from the Payments block, which includes details about the balance of their wallets, transactions, and fees to the ransomware group.

Section 6: FAQs

It is also possible for affiliates to access support and documentation in the FAQ section, as it provides detailed information about a variety of things, such as:-

  • The type of infections
  • How to use the malware
  • Additional information about the targets

Recommendations

Here below we have mentioned all the recommendations offered by the cybersecurity analysts:-

  • Increase the level of security by adding more layers.
  • Make sure that you have a “backup” plan in place.
  • Make sure to use a reputable business email protection service.
  • Implement a solution that is capable of detonating advanced malware.
  • Make sure to patch your connected devices with the latest available patch. 
  • It is important to train your employees.
  • Identify and control vulnerabilities in the system.
  • Whenever you receive a ransom note, do not pay it.

Struggling to Apply The Security Patch in Your System? – 
Try All-in-One Patch Manager Plus


[ad_2]
Source link

Here’s how the Google Weather app will look on the Pixel Fold

andreasc
-
0
Here’s how the Google Weather app will look on the Pixel Fold
[ad_1]

Google officially unveiled the long-awaited Pixel Fold at Google I/O, and fans seem to like it so far. Now, we’re going to be seeing how Google will format its first party apps for the foldable form factor. Thanks to 9To5Google, we now have a glimpse of the Google Weather app on the Pixel Fold.

If you want to know more about this device, Android Headlines has a lot of coverage on it. You can also check out coverage on the Pixel 7a and the Pixel Tablet. All three of these devices were announced at Google I/O, and they add to the Google Pixel ecosystem.

This is how the Google Weather app will look on the Pixel Fold

Now, this is going to be the first foldable phone with true to-form-stock Android. This is software coming straight from Google, so we expect its first party apps to work flawlessly with the device. Now, we can’t rule out a couple of growing pains while Google is getting used to developing for a foldable.

In the case of the Google Weather app, it looks like Google will effectively utilize the extra real estate. Looking at the picture below, we see that each side of this display shows one part of the app. On the left side, we see the search bar for the location and the 10-day forecast.

Pixel fold weather app

On the right side, we get the more detailed information about the current day. This includes the high and low temperatures for the day, the hourly forecast, and other information like the humidity and the max wind.

As you can imagine, the interface has the classic material you aesthetic. All of the rectangular elements are rounded as are the squares. We see a consistent color scheme with the app, and that might be the color of the system’s color scheme.

You can pre-order your Pixel full today, and the phone is going to start shipping next month. It starts at a hefty $1,799, so you’ll definitely want to either save up or trade in an older device.


[ad_2]
Source link

Kyocera is making a notable shift in the Japanese market

andreasc
-
0
Kyocera is making a notable shift in the Japanese market
[ad_1]

Kyocera might not be one of the top brands in the smartphone market, but it’s been around for a while. The Japanese company has been able to survive several phases in the history of the smartphone, and right now, the company’s looking to make some changes to its business. According to Japanese publication Nikkie (via Android Authority), Kyocera will be shifting its focus in the Japanese Market.

You don’t see many Kyocera phones out in public. In the US market, Kyocera made a shift away from consumer phones and toward Enterprise devices a few years ago. You’re more likely to see an office worker sporting a Kyocera device than your next door neighbor.

The consumer smartphone market in America is very much tied up in Apple, Samsung, and Motorola. At this point, it’d be really tough to make a splash in the US market against the competition.

Kyocera makes a shift in the Japanese Market

This strategy seems to be working for Kyocera, as the company will soon do the same for the Japanese market. At the behest of its parent company Kyocera Corporation, the company will be shifting away from the consumer market in its home country Japan.

The head of the company, Hideo Tanimoto, announced this during a conference call to discuss the fiscal year for Kyocera. We’re not sure about the company’s numbers, but there is word that about half of the company’s business last year came from corporate users.

Kyocera never really held a strong place in the smartphone market, and it hasn’t really been able to stand out. But, taking a more conservative route and distributing phones amongst Enterprise users might be a good call for the business. That’s a sector that is typically overlooked.

Hopefully this change in strategy will mean good fortune for the Japanese company. We’ll have to wait and see.


[ad_2]
Source link

Sonos discontinues important feature for Android devices

andreasc
-
0
Sonos discontinues important feature for Android devices
[ad_1]

Sonos is an increasingly popular brand in the audio streaming market, which makes the company’s latest announcement quite disappointing for those who love its products. Starting next week, Sonos will no longer support streaming of local audio files from Android devices.

Starting May 23rd, 2023, we’re removing the ability to play audio files directly to Sonos using the “On this device” menu in the Sonos app for Android. We recommend using one of the methods described in this article to make sure you can still play any files stored on your Android device.

Android was the last mobile platform to support the feature since iOS devices have been removed from the list of supported devices about three years ago. On the bright side, Sonos offers quite a few audio streaming options, including Bluetooth, AirPlay, and NAS (network-attached storage).

Not to mention that services like Apple Music, YouTube Music, Deezer and Plex allow you to upload and stream music online. Of course, you still have to pay for a premium subscription if the streaming service requires it. Once you’ve uploaded the music to one of these services, the tunes will be accessible via Sonos as soon as the service using the Sonos app is added.

That being said, if you have an Android device, you will no longer be able to play audio files directly to Sonos starting May 23. Instead, you can play the audio files downloaded to your Android devices on the Sonos system using the Sonos app via Bluetooth.

As far as the reasoning behind the change, Sonos said that “as newer versions of mobile operating systems are released, it can sometimes change the way information is shared between devices, and this feature will no longer be compatible with newer version of the Android operating system.”


[ad_2]
Source link

Ducktail Operation – Hackers May Steal Your Credentials

andreasc
-
0
Ducktail Operation – Hackers May Steal Your Credentials
[ad_1]
Ducktail Operation

WithSecure Labs, researchers uncovered a cyber operation named Ducktail in July 2022, where threat actors employed information-stealing malware to specifically target marketing and HR professionals with spear-phishing campaigns through LinkedIn direct messages, focusing on individuals and employees with potential access to Facebook business accounts.

The Ducktail campaign can compromise Facebook business accounts and misuse the ad feature for malicious advertising. While along with Facebook, LinkedIn is also now actively targeted by threat actors for cybercriminal activities. 

Trend Micro’s Managed XDR team in March 2023 found a file that collects user data and connects to Facebook and Telegram domains during their investigation of Ducktail-related incidents.

Operation Ducktail

How the Attackers Trick Victim

The sample file’s name, referencing a marketing director job opening, appears specifically tailored to attract marketing professionals by hinting at a higher leadership position.

Although the exact delivery method of these links to the target is uncertain, the historical use of LinkedIn messages by Ducktail suggests it as a potential means.

Experts determined the contents and source of the archive by examining the file name, and upon investigating the domain, they discovered that the malicious file was hosted on Apple’s iCloud service, although the URL is currently inactive.

Upon analyzing the created processes, security researchers identified three, including separate processes for Microsoft Edge and Google Chrome, which collect the victims’ IP addresses and geolocation data.

Here below, we have mentioned the arguments that are used in these processes:-

  • –headless
  • –disable-gpu
  • –disable-logging
  • –dump-dom

The last process is used to open a PDF file, and the complete details about the fake job are embedded inside this PDF. 

The malware operates by extracting browser credentials and acquiring Facebook-related information. At the same time, victims read the spawned PDF file, storing it in a temporary text file before exfiltrating it using Telegram every 10 minutes.

Due to the frequent use of social engineering lures by contemporary threat actors, both individuals and organizations need to exercise caution when opening links or downloading files from unknown sources, regardless of whether they are delivered through renowned social media platforms or means like:-

Security Recommendations

Here below, we have mentioned all the best security practices that could help users mitigate spear-phishing attacks:-

  • Beware of unexpected emails; exercise caution.
  • Always verify the sender’s identity before opening attachments from unknown sources.
  • Avoid suspicious links, especially from unknown or suspicious sources.
  • Educate employees on spear phishing to recognize and avoid it.
  • Enable multi-factor authentication for added security.

Struggling to Apply The Security Patch in Your System? – 
Try All-in-One Patch Manager Plus

EHA

[ad_2]
Source link
1...1,2421,2431,244...1,468Page 1,243 of 1,468