a magical, must-play game for Android

andreasc
-
0
a magical, must-play game for Android
[ad_1]

The launch of Laya’s Horizon is finally here and the game is ready to delight anyone with a current Netflix subscription, as it’s the latest Netflix mobile game. From the makers of previous smash hit mobile titles like Alto’s Adventure and Alto’s Odyssey, developers ‘Snowman’ have spent the last five years pouring their very heart and soul into the making of this newly released mobile game. And it’s one you should definitely check out if you subscribe to Netflix.

For the last few weeks, I’ve had the pleasure of testing out Laya’s Horizon in both pre-release and review builds prior to the game’s official launch on May 2. And to say Laya’s Horizon is anything other than a magical, surreal experience would be doing the game a disservice. This is something you will need to experience for yourself to get the full effect. Just know that you’re in for a good time.

Laya’s Horizon is a Netflix-exclusive launch title

Like quite a few other games this past year for Android and iOS, Laya’s Horizon is a game that’s exclusive to Netflix. When asked about why the studio went this way instead of premium or traditional free-to-play offerings, Snowman said this was simply the route that made the most sense. It allowed them to focus on developing just a really good quality mobile game. Without the worry of charging players for the game directly. Or sidelining and alienating parts of the player base with a game that was rife with ads.

No ads, no in-game purchases to get rid of them, and no in-game purchases for gear or upgrades. Just a fully-fledged mobile title that you have complete access to as part of the Netflix subscription. Where unlocks require player progression and time spent. And oh my, is that time spent going to be well worth it.

The gift of flight

So, what makes this game so special? It’s quite simple really. It gives you the gift of flight. You might think, “you can fly in tons of games, what makes Laya’s Horizon any different?” And that’s not an unfair question. But most games don’t allow you to fly the way Laya’s Horizon does.

If you’ve ever had the chance to try out games like No Man’s Sky in VR, where you’re jumping into hyperspace as you jet set around the galaxy in your ship’s cockpit, you know how surreal that is. Almost like you’re actually flying through space exploring the universe.

I won’t go so far as to say that Laya’s Horizon does that for you on such a grand scale. But it’s probably as close as any mobile game will ever come. And it’s all thanks to Snowman’s ingenious vision for how the flight mechanics work.

When you were a kid, you can probably remember pretending to fly using your arms as wings. Maybe you wore a cape too. Snowman took that idea and implemented it here. In Laya’s Horizon, you take control of Laya who will leap off cliffs and mountain peaks. To control her flight, the game uses gesture controls. Where each of your two thumbs will control one of Laya’s arms. You can move them independently to control whether she turns right or left. Or slide them up or down in sync to move Laya up or down.

Sliding your thumbs inwards will pull Laya’s arms inwards. Making her more aerodynamic and giving her a speed boost. Meanwhile, sliding them outwards will force Laya to open her arms and legs wide, briefly pivoting her to a vertical position. Slowing her down. Frankly, it’s a magical detail that really tries to put you into the role of Laya. And it works amazingly well.

Explore, expand, collect

Now that you know how flight works, what about the actual game content? Well there’s quite a lot of it. Laya will start with one single cape that she can use to fly down the mountainside. As you complete races and other small tasks, you can unlock and equip new capes. Each one having its own unique abilities depending on what kind of boost you want Laya to have.

One can give Laya an enhanced speed boost (this is actually the first cape you’ll acquire). There are also charms, one of which has the ability to suck in collectibles called sparks like a magnet. You’ll need these sparks, too, so it’s definitely a charm worth equipping. And there are many more of each item type that are there to discover. You can also explore a pretty vast landscape filled with different biomes. Basically, there’s no shortage of content.

And flying through it all is a pretty cool way to see everything that Snowman has built.

The controls are easy to learn, but tough to master

There is little out there that’s as rewarding as overcoming a challenge. And that’s kind of how I feel about the controls in this game. They’re extremely easy to learn. Heck, the game walks you through how to do every little movement Laya can perform before you really set out to chew on the real meat of the game.

But while these descriptions of what to do are simple to read, putting them into practice is an entirely different story. They’re a bit of a challenge to say the least. A challenge however, that is a fulfilling experience once you nail things down. Easy to learn and tough to master.

Even if you shy away from challenges in games more often than not, I would urge you to stick with it and really get the controls down. Because once you do, the game becomes so, so much more fun, as you’re able to effortlessly zip and glide through the world. And it’s already insanely fun to play to begin with.

Final thoughts

There are lots of mobile games, many of them worth your time. But few if any will provide you with a gameplay experience like Laya’s Horizon. In most cases I wouldn’t recommend getting a Netflix subscription just to play a game. But that isn’t the case here.

Sign up for Netflix for a month or two. Or even just a free trial if you have one available. Play through Laya’s Horizon and experience the wonder that it offers. And in between your flight sessions, enjoy whatever other content Netflix has that you can kick back and watch.

Just, if you like mobile games, especially ones with overflowing amounts of forethought and attention to detail, do yourself a favor. Play. This. Game. You can grab it on Google Play now.

Laya’s Horizon


[ad_2]
Source link

Best Nintendo Switch OLED accessories

andreasc
-
0
Best Nintendo Switch OLED accessories
[ad_1]

The Nintendo Switch OLED is great all on its own but for the best experience there are some accessories that all Switch OLED owners should consider. While some are simply nice-to-haves, others are absolute must-haves.

Whether you play your Switch OLED in handheld mode or while docked, or both, these accessories can help ensure you not only protect your Switch OLED, but also play it more comfortably, and just with more convenience and enjoyment. Most of these will also work for the regular Nintendo Switch. So if you don’t have an OLED, not to worry.

Also worth noting is that there are tons of other great Switch accessories out there, these are just what we found to be the best and most useful ones.

Best Nintendo Switch OLED accessories

AccessoryPriceWhere to buy
SanDisk Extreme Plus microSD card (512GB)$79.99Best Buy
ZAGG InvisibleShield Glass+ Defense Screen Protector$34.99Best Buy
tomtoc Slim Carrying Case$24.99Amazon
SteelSeries Arctis Nova 7 Wireless$179.99Best Buy
PowerA Joy-Con Charging Dock$22.99Best Buy
Nintendo Switch Pro Controller$69.99Best Buy
Hori Split Pad Pro Handheld Controller$49.99Best Buy
KontrolFreek Turbo Thumb Grips for Joy-Con$22.88Amazon
Skull & Co. NeoGrip$22.99Amazon
GENKI Global Convert Dock$69.99Amazon

SanDisk Extreme Plus microSD card (512GB)

SanDisk Extreme Plus

You can probably skate by for a while without a microSD card for your Switch OLED. Especially if you’re buying most of your games in their physical cart form. But sooner or later, you may end up wanting to download some games digitally. This is where the microSD card comes in handy.

There are lots of options out there but you don’t want to skimp on a microSD card. Not only do you want one with fast read and write speeds to ensure quicker load times and smoother gameplay, but you want one that won’t be poor quality. The last thing you want is for it suddenly break on you. That’s why we’re recommending the SanDisk Extreme Plus. It has read speeds of up to 200MB/s, and write speeds of up to 140MB/s. More than capable for the Switch and Switch OLED.

This card also comes in 128GB, 256GB, and 512GB sizes. So you have options for how much space you want or need. Of course we think it’s always better to have more than not enough. You could always go for the Nintendo co-branded SanDisk cards as well, but you may find them to more expensive than these non-branded ones. So these are just a better value. Hands down a good microSD card is one of the best accessories you could pick up for the Nintendo Switch and Switch OLED.

SanDisk Extreme Plus microSD card

ZAGG InvisibleShield Glass+ Defense Screen Protector

ZAGG InvisibleShield Glass Defense Screen Protector

With portable devices that come with a display, it’s always an excellent idea to protect that display as best you can. That’s why we’re recommending this ZAGG InvisibleShield Glass+ screen protector for the Switch OLED.

In fact this is probably the first accessory you should buy. Or at the very least, some form of glass screen protector for the device. It doesn’t necessarily have to be this one, although we do feel this is the best one you can get. You just want something to protect that beautiful Switch OLED display from scratches and scuffs. This will do the job. It also comes with a smudge resistant coating and it’s super simple to apply.

Absolutely one of the best Nintendo Switch OLED accessories. That being said, this particular screen protector only works with the Switch OLED. But ZAGG does offer a version for the normal Switch as well.

ZAGG InvisibleShield Glass+ Defense Screen Protector

tomtoc Slim Carrying Case

tomtoc Slim Carrying Case for Nintendo Switch OLED

  • Price: $24.99
  • Where to buy: Amazon

If you plan to take your Nintendo Switch OLED with you outside of the home, you want a carrying case. We absolutely love this one from tomtoc for its slim and stylish design, but also for its utility. The fact that it’s slim means it’s easy to stuff into a backpack or bag pocket without taking up too much space. And if you don’t have a backpack or bag that you’re bringing with you, the case also has a carry handle.

Beyond that, you’ll get a nice snug (but not too snug) fit for the Switch OLED and the normal Switch, along with extra space for the Joy-Con joy sticks and buttons. Additionally, it has space for 10 physical game carts and the case is military standard drop tested, with a spill resistant coating. Plus it comes in loads of color options like white, black, and a range of new gradient colors. It’s one of the best Nintendo Switch OLED accessories and one of the cases for the console in general. So good we also recommend the Steam Deck version that tomtoc makes.

tomtoc Slim Carrying Case

SteelSeries Arctis Nova 7 Wireless

SteelSeries Arctis Nova 7 Wireless

There’s a few reasons why this is an excellent headset worth your consideration for the Nintendo Switch OLED, not the least of which is the comfort. It also provides great audio quality and most importantly, lag-free audio thanks to the 2.4GHz USB-C dongle.

Simply plug that dongle into the Switch’s USB-C port and enjoy a lag-free connection. Or if you like, the headset works with Bluetooth as well and you could simply connect it that way.

Additional features include 360-degree spatial audio, multi-platform compatibility with PC, PlayStation, and mobile, and a 38-hour battery life. While something like the Arctis 1 Wireless would also work, this is quite a bit more comfortable and has better battery life. So if can get past the extra $80 in price, it’s worth it.

SteelSeries Arctis Nova 7 Wireless

PowerA Joy-Con Charging Dock

PowerA Joy Con Charging Dock

If you only have one pair of Joy-Con controllers, then you can easily just charge them by connecting to them to the console and then docking the console. But, if your console dock is broken or you have more than one pair of Joy-Con controllers that you want to keep charged up, this Joy-Con charging dock from PowerA is an invaluable accessory to have and one of the best accessories for the Nintendo Switch OLED.

It charges up to four Joy-Con controllers at the same time too. So if you have even more of them, you can easily top them up on power. The base is weighted so it stays in place and the dock isn’t terribly expensive. An excellent pickup for sure.

PowerA JoyCon Charging Dock

Nintendo Switch Pro Controller

Nintendo Switch Pro Controller 1

There’s more than one pro controller out there for the Switch, but quite honestly it’s hard to justify anything other than the official Pro Switch controller from Nintendo. While there are some other good ones out there, like the Fusion Pro controller for Switch from PowerA. But that controller is more expensive and doesn’t include things like the HD rumble haptics or the NFC support. Which means no use of Amiibos.

When it comes down to it, the official Switch Pro controller is still your best bet if you want something wireless. Whether you’re playing in docked mode or in the tabletop mode, the Switch Pro controller is a much more comfortable option (especially for longer sessions) than the Joy-Cons.

Nintendo Switch Pro Controller

Hori Split Pad Pro Handheld Controller

Hori Split Pad Pro

Probably one of the single best accessories for the Nintendo Switch OLED and the regular model is the Hori Split Pad Pro. This is an officially licensed accessory, and it’s a full size controller for the console while in handheld mode. Unfortunately it doesn’t support HD rumble or the motion controls, and it doesn’t support NFC which means no use of Amiibos. But it is a lot more comfortable to use when playing the Switch in handheld mode than the Joy-Con controllers.

It has larger grips, larger joysticks, a full size actual d-pad, and turbo functionality in addition to remappable rear triggers. It also comes in multiple colors.

Hori Split Pad Pro

KontrolFreek Turbo Thumb Grips for Joy-Con

KontrolFreek Turbo Thumb Grips for Joy Con

  • Price: $22.88
  • Where to buy: Amazon

If you like the Joy-Con controllers and prefer to use them, you may want to consider the Turbo Thumb Grips for the Joy-Con controllers from KontrolFreek. The Joy-Con controllers are great, and they certainly look nicer than alternative options for handheld mode. But in all honesty the thumbsticks could be a little more comfortable.

These thumb grips for the Joy-Con controllers really help quite a bit to provide more comfort and some additional anti-slip. They’re also high-rise for better control. Plus they’re not too expensive.

Turbo Thumb Grips for Joy-Con

Skull & Co. NeoGrip

Skull Co NeoGrip

  • Price: $22.99
  • Where to buy: Amazon

A really cool accessory that some people may not know about is the NeoGrip from Skull & Co. It’s an ergonomic hard shell that you can slide the Nintendo Switch into while the Joy-Con controllers are attached, so you get extra grip from the NeoGrip but can still use the Joy-Con controllers. We love this thing with the Turbo Thumb Grips above for a really comfortable handheld gaming experience.

This model of the NeoGrip also works with both the Nintendo Switch OLED and the regular Nintendo Switch, and there’s even a cutout space so you can use the Switch OLED’s kickstand with this thing on. It also comes with three different grip styles so you can find one that suits you best. And, it even works with the Switch OLED dock. So you don’t have to take it off when you dock the console. If you play a lot in handheld mode, definitely consider this accessory for your collection.

Skull & Co. NeoGrip

GENKI Global Convert Dock

GENKI Global Convert Dock

  • Price: $69.99
  • Where to buy: Amazon

Last but certainly not least, we have the Global Convert Dock from GENKI. This is an absolute must-have accessory if you travel or take the Switch with you places often that have a TV or monitor.

It’s essentially your Switch and Switch OLED dock but in a compact formfactor. Simply plug the wall adapter into an available outlet, then plug in the USB-C cable to the Switch itself to charge it, and plug an HDMI cable into the dock and the other into the TV or monitor. And boom, you’re playing your Switch OLED in docked mode without the dock itself. There’s even a USB-A port for plugging in an accessory.

This particular version is the Global model which comes with three additional regional adapters. We highly recommend this one if you ever plan to play the Switch OLED or the regular Switch away from home in docked mode. Because it’s a lot easier to carry this around then the dock and associated cables.

GENKI Global Convert Dock


[ad_2]
Source link

People are making entire spam websites using AI

andreasc
-
0
People are making entire spam websites using AI
[ad_1]

We’re only beginning to tap the generative potential of artificial intelligence, and the further we push this technology, the more potent our fear of it grows. Thanks to a new report from NewsGuard (via The Verge), it looks like people are using AI to generate entire spam websites.

We have already seen people use AI to generate images, articles, books, advertising copy, videos that border on nightmare fuel, and more. There’s no doubt that it put many people out of their jobs, as it’s becoming harder to distinguish between AI content and human content. However, according to the new report, AI just took a major step forward.

People are using AI to generate spam websites

This should come as no surprise, as scores of people are using AI for their nefarious needs. Hundreds of books on Amazon are co-authored by AI, so people making entire websites using the technology won’t shock you.

The report from NewsGuard says that it has identified 49 sites. They seem to be completely written using AI. If they’re not completely written using AI, then they are almost entirely written using it. These are websites that seem to focus on posting written content like articles.

The thing about it is that, since they’re using AI, they can churn out hundreds of Articles every day. That basically gives a person the power to create a full newsroom from their bedroom.

The tells

That is scary, but there is a bit of a silver lining to this. There are obvious tells that the sites are using artificial intelligence. As sophisticated as chatbots are at creating articles, the delivery is still as clinical as a doctor’s report.

Also, since these articles are being copied and pasted right onto the website, no one is proofreading them. This means that blatant errors are being found in the articles.

According to NewsGuard, one article left an error message from the chatbot in the article. We see the text “I’m sorry, I cannot complete this prompt as it goes against OpenAI’s use case policy on generating misleading content,” appears randomly in the article. That is a dead giveaway.

Another tell is a little bit more subjective. Some of the sites have very generic names such as Biz Breaking News and Market News Reports. Ostensibly, if you’re churning out a ton of spam websites, then you won’t put that much effort into making a clever title. However, there are some legitimate sites out there whose names are a bit generic, so you won’t want to use that as your primary metric.

The best thing to do to fight off these AI spam sites is to always check for those tells. Pay attention to the wording and the phrasing of the articles and see if they sound human. Read the About pages for these sites and check out the writing staff.

Also, check out the dates for the articles. If the publication only started publishing articles a week ago, yet, it has a full writing staff of 20 people posting 500 articles every day, then it’s most likely an AI-generated site.


[ad_2]
Source link

AresLoader Malware Attacking Citrix Users

andreasc
-
0
AresLoader Malware Attacking Citrix Users
[ad_1]
AresLoader

Cyble Research and Intelligence Labs (CRIL) has recently detected AresLoader, a novel loader that is found to be disseminating numerous malware families.

Malware loaders are designed to deploy and execute diverse malware strains on the targeted computer system of the victim.

To evade detection by antivirus software, loaders often employ various tactics such as encryption or obfuscation of the malicious payload, rendering it harder to detect by security measures.

AresLoader

In 2022, AresLoader, a loader malware coded in the C programming language, emerged for the first time.

It has been identified that this loader was distributed through Telegram channels and malicious forums.

AresLoader, developed by the same threat actors behind the AiD Locker ransomware and distributed as Malware-as-a-Service (MaaS).

There is a monthly fee of $300 for AresLoader, which includes five build images.

There is also suspicion that the members of this group have ties with a hacktivist group based in Russia.

Technical Analysis

The notorious AresLoader follows a complex modus operandi. The initial loader binary serves as a container for the embedded code that is further injected in multiple stages, resulting in a complex chain of malicious activities.

During further analysis, it was noticed that the methods of extraction and injection of the loader code in each binary are inconsistent throughout the entire code.

By constantly updating their infection techniques, the threat actors evade the security measures implemented by the AV tools, and not only that even, there have also been multiple malware strains that have been observed to be using this loader.

Apart from this, CRIL discovered a GitLab repository distributing the AresLoader malware that is located at:-

  • hxxps[:]//gitlab.com/citrixchat-project/citrixproject/

While it has been detected that threat actors are actively targeting Citrix users with this repository masquerading as “citrixproject.”

During the execution of AresLoader, the malware utilizes a 32-bit binary compiled in C, which invokes the CreateWindowEx() API using the following elements:-

EHA
  • GLSample (Class name)
  • OpenGL Sample (Window name)

This distinct characteristic is one of the many ways cybersecurity experts identify and track the loader.

In an attempt to complicate the detection and analysis of this malware, API hashing is employed, and here the APIs that are targeted belong to:- 

Following is a list of API functions that the loader retrieves:-

  • pLdrFindResource_U
  • pLdrAccessResource
  • pNtAllocateVirtualMemory
  • pNtQueueApcThread
  • pNtTestAlert

Decrypting the resource data obtained earlier is the next step in the process, and then from the .rdata section, a key is acquired to accomplish this complete process.

The decryption loop begins immediately after the memory has been allocated, and the temporarily allocated memory is used to store the newly decrypted PE file.

Moreover, using a POST request, AresLoader registers the victim with the C&C server using additional information obtained from the victim’s system.

Recommendations

Here below, we have mentioned all the recommendations offered by the security experts:-

  • Do not download files from unknown websites. 
  • Ensure that a reputable antivirus and internet security software package protects your connected devices, such as your PC, laptop, and mobile phone. 
  • Ensure you verify the authenticity of all links and attachments in an email before opening them. 
  • Protect employees from threats such as phishing and untrusted URLs by educating them about the risks. 
  • The beacon should be monitored at the network level to prevent data exfiltration by malware or attackers.
  • Ensure that employee systems are protected by a Data Loss Prevention (DLP) solution.

Building Your Malware Defense Strategy – Download Free E-Book


[ad_2]
Source link

Google teases the Pixel 7a before the launch

andreasc
-
0
Google teases the Pixel 7a before the launch
[ad_1]

Google has said to announce some exciting devices this year, and one of them is coming very soon. As we know, Google I/O is happening next Wednesday, and we expect to see it unveil its latest mid-range phone. Well, ahead of the announcement, the Google India Twitter account posted a teaser for the Pixel 7a.

The Pixel 7a isn’t the only device we’re expecting to be announced during Google I/O. If the rumors hold true, then Google will also unveil the Pixel Tablet and its rumored Pixel foldable phone. If you’re excited to hear about these devices, Google I/O will kick off next Wednesday, May 10th. Be sure to mark your calendar.

Google posts a teaser for the Pixel 7a

So far, we’ve probably seen this phone from every angle via leaks. Just recently, we had a couple of leaks showing this device in several colors including an interesting blue color. This is the color that we see in the teaser.

In the teaser, we only see the top of the phone, and it’s from the back. The dual camera package is facing the audience, and it shows us that the camera visor will be metal just like with the Pixel 7 phones. Since this is only a teaser, the company is leaving a lot to the imagination, as the picture gradually blurs.

Pixel 7a teaser full

Along with the picture, the Tweet also states that the Pixel 7a will come to Flipkart on May 11th. That’s likely when the pre-orders are going to begin, and general sales are expected to come in the following weeks. However, we will have to wait and see if that’s what Google is planning.

The Pixel 7a is expected to use Google’s Tensor G2 SoC, which is the same processor powering the Pixel 7 and Pixel 7 Pro. We expected to retain similar dimensions to the Pixel 6a. So, if you have that phone, you will feel right at home with a Pixel 7a. The Pixel 6a was one of the most popular mid-range phones of 2022, so the Pixel 7a should be able to fill those shoes.


[ad_2]
Source link

T-Mobile suffers its second data breach in 2023

andreasc
-
0
T-Mobile suffers its second data breach in 2023
[ad_1]

After suffering its second-biggest data breach back in January, impacting over 37 million people, T-Mobile has recently disclosed yet another data breach. And although this time, the breach was not extensive and only impacted over 800 people, threat actors did manage to get their hands on vast amounts of user information.

According to Bleeping Computer, the breach, which occurred between February 24th and March 30th, compromised user’s names, contact information, account numbers, phone numbers, account PINs, social security numbers, government IDs, dates of birth, balance due, internal codes, and the number of lines. While T-Mobile claims the hackers did not gain access to call records or personal financial account information, this amount of exposed data provides cybercriminals with enough information to commit identity theft and other forms of fraud.

“In March 2023, the measures we have in place to alert us to unauthorized activity worked as designed, and we were able to determine that a bad actor gained access to limited information from a small number of T-Mobile accounts between late February and March 2023,” says T-Mobile.

T-Mobile’s response

T-Mobile says that after first detecting the data breach, they were quickly able to mitigate it by resetting the account PINs for affected users. Additionally, the company is also offering two years of free credit monitoring and identity theft detection services through Transunion myTrueIdentity.

“We notified a small number of customers that our systems and processes worked to detect and stop a bad actor who was accessing accounts using compromised credentials,” said T-Mobile in a statement to CNET.

This latest data breach once again highlights the ever-growing importance of implementing stringent security measures to prevent cyber attacks. While, on the one hand, companies should implement strict security policies, provide ongoing employee training, and perform regular security audits, users, on the other hand, should regularly update their PINs and passwords, enable 2FA, and refrain from sharing sensitive information online.


[ad_2]
Source link

Nothing foldable smartphone concept has LED lights on the hinge

andreasc
-
0
Nothing foldable smartphone concept has LED lights on the hinge
[ad_1]

Nothing has released only one smartphone thus far, the Nothing Phone (1). The Nothing Phone (2) is expected to launch this year. Some of you may wonder if Nothing plans to launch a foldable smartphone, well, while we can’t answer that yet, a Nothing foldable smartphone concept did surface.

This Nothing foldable smartphone concept has LED lights on the hinge itself

This concept has been shared by Brandon Paul aka 3DPCat/BitJewel, and was reshared by Nothing on Twitter. He created some nice-looking renders, envisioning a Nothing-branded foldable smartphone.

The first thing I personally noticed are the LED lights in the first image included in the gallery below. These LED lights are placed on the outer part of the hinge itself. One long strip, and a smaller circular light. These make for really nice design detail.

This foldable device has flat sides all around, and the hinge itself is also boxy and unusual. The device seems to be impossibly thin when folded, but that’s not surprising considering this is a concept phone.

There is no display camera hole on the main panel

It seems to be made out of metal and glass, and there is no display camera hole on the main display. We presume that the designer envisioned an under-display camera for this phone. The bezels around the main display are also quite thin.

Nothing is a rather new company, and it probably has no plans to release a foldable smartphone anytime soon. Who knows, Nothing maybe is testing such a device, but we don’t expect it to arrive soon.

The company is now fully focused on the Nothing Phone (2) which is expected to arrive in a couple of months. The Nothing Phone (1) launched in July last year, so it’s easily possible its successor is coming in July this year.


[ad_2]
Source link

Samsung bans employees from using AI tools like ChatGPT

andreasc
-
0
Samsung bans employees from using AI tools like ChatGPT
[ad_1]

Samsung has reportedly banned its employees from using generative AI tools such as ChatGPT and Google Bard on company-owned devices and internal networks. The move comes after some employees inadvertently leaked confidential information through ChatGPT a few weeks back.

Samsung bans the use of ChatGPT and Bard on official devices

Like many other companies, Samsung also planned to use generative AI tools for business growth. It hoped AI to help boost its faltering chip business. However, things didn’t pan out as planned. Shortly after the company gave its employees access to ChatGPT to speed up various processes in mid-March, reporters emerged that the AI chatbot leaked confidential semiconductor information.

This happened after some Samsung employees fed internal data to the AI tool created by Microsoft-backed OpenAI. Where they erred is that they didn’t realize that the likes of ChatGPT and Bard permanently store any information fed to them. These tools use the information for learning purposes. But in the process, they could also end up sharing the information with other users. And since they store the data on external servers, it’s difficult for Samsung to retrieve and delete it.

It’s unclear what information Samsung employees inadvertently leaked through ChatGPT. However, the leaks happened in three separate instances within three weeks. The company has now sent a memo to employees ordering them to stop using the AI tool on official devices and internal networks. Employees are also advised not to feed any company-related information to generative AI tools on their personal devices. They are also barred from sharing personal data that could reveal the company’s intellectual property.

According to a Bloomberg report, Samsung has warned its employees that breaking these policies could cost them their jobs. “We ask that you diligently adhere to our security guidelines and failure to do so may result in a breach or compromise of company information resulting in disciplinary action up to and including termination of employment,” part of the memo reads. The memo was sent to employees at one of Samsung’s biggest divisions on Monday, the report states.

Samsung is developing its own AI tools for internal use

Samsung may have banned the use of ChatGPT and Bard on its official devices, but it still sees AI going a long way in boosting its business. The company is reportedly creating its own generative AI tools for internal use. It plans to use those tools “for translation and summarizing documents as well as for software development”. At the same time, Samsung is also working on ways to block external AI services from obtaining sensitive company information. ChatGPT recently added an “incognito” mode where it doesn’t save conversations for learning purposes.

“Interest in generative AI platforms such as ChatGPT has been growing internally and externally. While this interest focuses on the usefulness and efficiency of these platforms, there are also growing concerns about security risks presented by generative AI,” Samsung told staff. “HQ is reviewing security measures to create a secure environment for safely using generative AI to enhance employees’ productivity and efficiency. However, until these measures are prepared, we are temporarily restricting the use of generative AI,” the memo added.


[ad_2]
Source link

Critical Vulnerabilities Spotted In Zyxel Firewall

andreasc
-
0
Critical Vulnerabilities Spotted In Zyxel Firewall
[ad_1]

Heads up, Zyxel users! The vendors have patched a few critical vulnerabilities in Zyxel Firewall that could allow remote command execution attacks. Users must rush to update their devices with the latest software releases to receive the patches.

Multiple Vulnerabilities Found In Zyxel Firewall

Zyxel – the Chinese technology and networking giant – has patched multiple Firewall vulnerabilities with the latest releases.

Specifically, the vendors have addressed three security vulnerabilities affecting their Firewall devices.

The first of these is a critical-severity remote command execution vulnerability, CVE-2023-28771 (CVSS 9.8). According to Zyxel’s advisory, the flaw existed due to improper message handling, allowing an unauthenticated remote adversary to execute OS commands on the target firewall devices. Exploiting the flaw required the attacker to send maliciously crafted data packets to the target device.

The devices affected by this vulnerability include ATP ZLD V4.60 to V5.35, USG FLEX ZLD V4.60 to V5.35, VPN ZLD V4.60 to V5.35, ZyWALL/USG ZLD V4.60 to V4.73. Zyxel has credited TRAPA Security for detecting and reporting this flaw.

The next vulnerability, CVE-2023-27990, is a high-severity (CVSS 8.8) cross-site scripting (XSS) vulnerability in Zyxel firewalls. Exploiting this flaw could let an authenticated adversary with admin privileges store malicious scripts on the target device. The scripts would execute if a user visits the Logs page.

Then, the third vulnerability, CVE-2023-27991, could also allow OS command injection attacks. The flaw impacted the CLI command of firewalls, allowing an authenticated attacker to execute remote commands.

According to Zyxel’s advisory, these two vulnerabilities affected the ATP ZLD V4.32 to V5.35, USG FLEX ZLD V4.50 to V5.35, USG FLEX 50(W)/USG20(W)-VPN ZLD V4.16 to V5.35, and VPN ZLD V4.30 to V5.35. Zyxel attributed Alessandro Sgreccia from Tecnical Service SRL for reporting both vulnerabilities.

Patches Rolled Out

Zyxel patched all three vulnerabilities with the latest software releases for vulnerable devices. Specifically, the patched releases include ATP ZLD V5.36, USG FLEX ZLD V5.36, VPN ZLD V5.36, ZyWALL/USG ZLD V4.73 Patch 1 (bug fix for CVE-2023-28771), and USG FLEX 50(W) / USG20(W)-VPN ZLD V5.36 (bug fix for CVE-2023-27990, CVE-2023-27991).

While the updates might reach the affected automatically, users must check for possible updates for their devices manually to ensure receiving the patches in time.

Let us know your thoughts in the comments.


[ad_2]
Source link
1...1,2541,2551,256...1,452Page 1,255 of 1,452