We take a look at a story involving the FTC going head to head with a payment processor caught up in tech support scam allegations.
A multinational payment processing company and two of its executives are facing a potential $650k fine as a result of allegedly processing credit card payments for tech support scammers. While this fine isn’t exactly massive in comparison to some of the privacy breaches and other incidents seen down the years, the original fine the company was handed was an eye-watering $49.5m. The fine was reduced alongside an agreement to court orders which involve close monitoring of “high-risk clients”.
The Federal Trade Commission has acted to stop Nexway, a multinational payment processing company, along with its CEO and chief strategy officer, from serving as a facilitator for the tech support scammers through credit card laundering.
The FTC’s complaint against Nexway (and several of its subsidiaries and an associated company known as Asknet), its CEO Victor Iezuitov, and its chief strategy officer Casey Potenzone charges that the defendants were at the center of several offshore tech support scams, processing tens of millions of dollars in charges and giving the scammers access to the US credit card network.
A big part of the complaint is in relation to the so-called “premium tech support” customers using the Nexway system for credit card payment processing. The FTC alleges that a Nexway leadership meeting indicated that it was “strongly dependent” on its premium tech support clients, which represented 25% of Nexway’s revenue.
Additionally, the complaints related to the individual tech support scammers were in great supply. So much so that chargebacks (a way for people to dispute charges they feel to be wrong, like realising they’ve been hit by a tech support scam) and cancellations were in no short supply. From the complaint, in relation to one support scam outfit using Nexway for payment processing:
…on February 10, 2017, the Senior Key Account Manager at Nexway sent Potenzone an email titled “Nexway/TechLiveConnect: Chargeback & Cancellation rates”. The February 10, 2017 email included a table showing Tech Live Connect had (1) chargeback rates of 2.2% in November 2016, 2.6% in December 2016, and 1.5% in January 2017; and (2) cancelation rates of 23.2% in November 2016, 27% in December 2016, and 21.8% in January 2017.
Credit card companies keep a sharp lookout for signs of repeated dubious transactions happening via fraud monitoring programs. From the complaint:
Nexway had such high chargebacks that Visa placed the company in its Chargeback Monitoring Program in December 2017.
Something was clearly amiss here, and complaints from consumers related to pop-ups, locking up the screen while a siren plays, and bogus virus warnings made to the Better Business Bureau and elsewhere leads us to where we are today.
Tech support scams have been around forever, and often ride on the coattails of established brands to sell their wares. This kind of scammer has imitated everything from Microsoft to genuine security firms down the years. If you’re an organisation unfortunate enough to be imitated, you can also expect to field support calls from understandably annoyed people who think that you’ve ripped them off, as opposed to the genuine culprits.
Tips for avoiding tech support scams
There’s a huge amount to cover with this style of attack, but here’s a few of the basics to get you up to speed:
Beware the lock up. If your browser or mobile device “locks up”, as in you’re no longer able to navigate away from a virus warning, you’re on a tech support scam. If something claims to show the files and folders from inside of your browser, this is another signal that you’re on a fake page. Close the browser if possible (for example, by pressing CTRL+ALT+DEL on a Windows PC) or restart your device if this doesn’t work.
Screenlocker issues. These are typically fake Windows Blue Screen of Death error pages, except they come with the tech support scammer’s phone number included. You may need one of our removal self-help guides to resolve this.
Beware of someone wanting to connect to your computer remotely. One of the tech support scammer’s biggest weapons is their ability to connect remotely to their victims. If they do this, they essentially have total access to all of your files and folders.
Did you already pay? Contact your credit card company or bank and let them know what’s happened. You may also need to file a complaint with the FTC, or contact your local law enforcement agency depending on your region.
For a very detailed breakdown of tech support scams, how they operate, and more suggestions to keep yourself safe from harm, please check out our dedicated tech support scams page.
Malwarebytes removes all remnants of ransomware and prevents you from getting reinfected. Want to learn more about how we can help protect your business? Get a free trial below.
The April 2023 Android security patch is available for Samsung‘s Galaxy S20 series in the US. The company recently released the latest security update for the factory-unlocked units of the 2020 flagship trio. It should soon cover the carrier-locked variants as well. The April SMR (Security Maintenance Release) was released for the Galaxy S20, Galaxy S20+, and Galaxy S20 Ultra in international markets a couple of weeks back.
The latest update for the unlocked variants of the Galaxy S20 series in the US comes with the firmware build number G98*U1UES4HWCB. Samsung’s official changelog doesn’t mention anything apart from this month’s security enhancements. The company recently announced that it will push Image Clipper to its 2020 flagships with a new update. It appears Galaxy S20 users will have to wait for the May update for this new feature.
Introduced with the Galaxy S23 series earlier this year, Image Clipper is a Samsung Gallery feature that lets you instantly crop out subjects from images. While viewing a photo, you can press and hold on to a subject to crop it out. The cropped image can be saved separately or shared on social media directly from the gallery. Samsung has already pushed this feature to the Galaxy S22 series and its latest foldables. The Galaxy S21, Galaxy S20, Galaxy Note 20, and older foldable models will get it with upcoming updates.
Galaxy S20 series gets April update with over 70 security fixes in the US
As far as the content of the April SMR is concerned, Samsung is pushing more than 70 vulnerability patches here. Around 20 of those are Galaxy-specific patches while the remaining 50 are Android OS patches. At least five vulnerabilities patched this month were critical ones. Google says some of those allowed remote code execution. Threat actors could exploit those vulnerabilities to remotely gain access to affected devices without anyone’s notice. The vast majority of other patches were labeled “high-severity” by Google and Samsung.
If you’re using an unlocked Galaxy S20, Galaxy S20+, or Galaxy S20 Ultra in the US, these security fixes should soon reach you. The update is widely available on most networks. Galaxy S20 users with a carrier-locked unit can also look forward to receiving the April SMR within the next few days. As usual, Samsung lets you manually check for updates on your Galaxy smartphone. Open the Settings app, go to the Software update menu, and tap on Download and install. We will let you know when Samsung pushes Image Clipper to the Galaxy S20 series.
After laying off over 11,000 employees last year due to challenging economic conditions, Meta has reportedly commenced another round of layoffs this week. These new job cuts will be part of a broader restructuring effort aimed at cutting costs and will affect around 4,000 employees in technical roles, including user experience, software engineering, and graphics programming.
However, according to the LinkedIn posts by employees, Meta has laid off many gameplay programmers from the Reality Labs unit, which focuses on augmented and virtual reality experiences. This indicates that the company is scaling down its investments in the platform, which has been struggling to gain traction and attract users.
“I woke up this morning to the unfortunate news that I was one of the many laid-off from Meta today,” a Facebook business program manager wrote on LinkedIn.
Lori Goler, Meta’s head of people, acknowledged that saying goodbye to friends and colleagues who have contributed so much to Meta is difficult. And to help employees process the news, the company has asked North American employees, whose jobs allow it, to work from home on Wednesday.
More layoffs in the coming months
While the current layoffs focused on product-facing teams, reports suggest Meta plans to cut business-facing roles, such as finance, legal, and HR, beginning in May. Moreover, tech teams who weren’t impacted by the current round of layoffs might also be included in the next round.
This drastic downsizing of the company is part of Zuckerberg’s “Year of Efficiency” plan, which came into effect last year. And although Wall Street has welcomed this downsizing, with Meta’s shares up 81% this year, the company is still backing its bet on the metaverse, which is yet to gain user interest. Just last quarter, Meta’s Reality Labs unit recorded a $4.28 billion operating loss, thus bringing its total losses for 2022 to $13.72 billion.
QBot has resurfaced with a new tactic involving a reply-chain phishing email, a fake PDF, and the likely promise of a ransomware infection.
QBot, an infostealer-turned-dropper that aids criminal gangs in their malicious campaigns, is now being distributed as part of a phishing campaign using PDFs and Windows Script Files (WSF), according to recent discoveries by malware hunter Proxylife (@pr0xylife) and the Cryptolaemus group (@Cryptolaemus1).
The last time QBot (aka QakBot) had its modus operandi changed was in November. Campaign operators adopted tactics from Magniber’s playbook to successfully exploit a Mark of the Web (MotW) zero-day flaw to run a JavaScript (JS) that executed QBot.
The latest QBot phishing campaign is illustrated simply in the diagram below:
The QBot campaign illustrated (Source: Jerome Segura | Malwarebytes Labs)
The attack starts with a reply-chain phishing email, when threat actors reply to a chain of emails with a malicious link or attachment. BleepingComputer has noted that these phishing emails use a variety of languages. This means the language barrier is absent in such an attack, so any business from any part of the world could be affected.
A sample reply-chain phishing email in French, carrying a PDF attachment disguised as a cancellation letter. (Source: BleepingComputer)
Once someone in the email chain opens the attached PDF, they see a message saying, “This document contains protected files, to display them, click on the ‘open’ button.” Clicking the button downloads a ZIP file containing the WSF script.
The heavily obfuscated script contains a mix of JS and VBScript code that, when run, triggers a PowerShell that then downloads the QBot DLL from a list of hardcoded URLs. This script tries each URL until a file is downloaded to the Windows Temp folder (%TEMP%) and executed.
Once QBot runs, it issues a PING command to check for an internet connection. It then injects itself into wermgr.exe, a legitimate Windows Error Manager program, to run quietly in the background.
Because QBot is said to be used by operators of ransomware-as-a-service (RaaS) offerings, its presence in company systems could be disastrous. Therefore, any organization must take its QBot-infected systems offline as soon as possible and thoroughly scan and review network logs for unusual behavior.
The DFIR Report in February 2022 showed QBot collecting data from a compromised system 30 minutes after infecting it. Within an hour, QBot can be spread to adjacent systems.
Malwarebytes detects the malicious DLL (QBot).
Malwarebytes removes all remnants of ransomware and prevents you from getting reinfected. Want to learn more about how we can help protect your business? Get a free trial below.
The Xiaomi 13 Pro launched earlier this year, and back then, we did not know that the ‘Ultra’ model is coming. The Xiaomi 13 Pro had almost all the bells and whistles you could think of, so the ‘Ultra’ model seemed redundant. Well, Xiaomi opted to announce the ‘Ultra’ model after all, and it found a way to make it even more powerful than the ‘Pro’ iteration. That goes for its cameras, more than anything else, but that’s not the only improvement here. In this article, we’ll compare the Xiaomi 13 Ultra vs Xiaomi 13 Pro, to see what’s what.
I’ve reviewed the Xiaomi 13 Pro back in February, and am currently in the process of doing the same with the ‘Ultra’ model. Do note that the ‘Ultra’ still didn’t launch globally, so I’m using the variant made for China. The global model is coming, though, the company already confirmed that. There’s a lot to talk about here, so, let’s get started. We’ll first compare their specs, and will then move to a number of other categories.
It’s difficult to differentiate between the two phones when you look at them from the front, but flipping them over reveals major differences. Having said that, let’s start with the front. Both phones have curved displays, and a centered display camera hole. The bezels around the display are thin on both, but not uniform. The physical buttons sit on the right side, and they’re basically in the same place.
Now, on the back, there are a ton of differences. First and foremost, the Xiaomi 13 Ultra is made out of metal and vegan leather, while the Xiaomi 13 Pro combines metal and ceramic outside of China, while there is a variant with a vegan leather backplate in China. Still, their backs are entirely different. There is a huge camera oreo on the back of the Xiaomi 13 Ultra, while the ‘Pro’ model has a rectangular camera island. They’re also in different places, as you can see.
The Xiaomi 13 Ultra is thicker in the upper portion of its back, that’s also where its backplate is raised a bit, so that the camera doesn’t protrude too much. That’s not a bad solution by Xiaomi, not at all. The Xiaomi 13 Ultra is considerably more grippy than the Xiaomi 13 Pro, not only because of its backplate but because of its flattish sides. The Xiaomi 13 Pro’s sides are anything but flat, so… there you have it. The ceramic model we reviewed is also truly slippery. They do feel entirely different in the hand.
They’re almost the same height, and identical in terms of width. The Xiaomi 13 Ultra is a bit thicker than the Xiaomi 13 Pro. It weighs 2 grams less than the ceramic Xiaomi 13 Pro (global model), and it’s heavier than the vegan leather Xiaomi 13 Pro variant that is exclusive to China. Both phones do look and feel premium, albeit feel entirely different to handle.
Xiaomi 13 Ultra vs Xiaomi 13 Pro: Display
At first glance, it may seem like these two phones have the same display. Well, that’s not exactly the case, even though they’re very similar in many ways. They both include a 6.73-inch QHD+ (3200 x 1440) LTPO3 AMOLED display. Both phones have a refresh rate of up to 120Hz, and support up to 1 billion colors. They also support Dolby Vision, and get truly bright. That brightness is the difference between them, actually.
The Xiaomi 13 Ultra goes up to 2,600 nits of peak brightness, which technically makes it a smartphone with the brightest display. The Xiaomi 13 Pro can reach 1,900 nits, which is also immensely bright. You can easily see what’s on the display on both phones, even under direct sunlight. Now, both displays are protected by the Gorilla Glass Victus, in case you were wondering.
Both of these panels are truly excellent. The colors are vivid, the viewing angles great, and their touch response is also quite good. The Xiaomi 13 Ultra’s panel does technically get a bit brighter, but truth be said, you won’t really notice that difference all that much. Both displays do get immensely bright, and I do believe you’ll be happy with either one, so don’t base your purchasing decision based on brightness numbers.
Xiaomi 13 Ultra vs Xiaomi 13 Pro: Performance
The Snapdragon 8 Gen 2 fuels both of these smartphones. On top of that, you’ll find up to 16GB of LPDDR5X RAM inside the Xiaomi 13 Ultra, and up to 12GB of LPDDR5X RAM inside the ‘Pro’ model. UFS 4.0 flash storage is included in both smartphones, except the 128GB storage variant of the ‘Pro’ model, that one has UFS 3.1 storage. So, they have very similar performance-related specs. Does that result in similar performance, considering that they’re sister phones, on top of everything?
Well, yes… it does, at least when it comes to smoothness and overall performance. They’re both extremely snappy in day-to-day tasks, and can handle the most demanding games with ease. I did notice that the Xiaomi 13 Ultra heats up a bit less in my initial testing, but I have to test it out more to confirm. Neither phone gets too hot while gaming, or anything like that, they’re both great at it.
What I did notice is more bugs and annoyances in MIUI 14 on the Xiaomi 13 Ultra. It’s worth saying that the phone goes on sale on April 21 in China, and that this is a build of MIUI 14 made for China. I’ve tested the global variant of the Xiaomi 13 Pro, not one made for the Chinese market. Those annoyances I’ve mentioned are mostly related to aspects of the software not made for global markets, so they won’t be a factor once the global model arrives. I’d urge you to wait for the global variant.
Xiaomi 13 Ultra vs Xiaomi 13 Pro: Battery
The Xiaomi 13 Ultra comes with a 5,000mAh battery, while the ‘Pro’ model has a 4,820mAh unit. That’s not exactly a big difference between them. Can you feel it in day-to-day use? Well, I’ve only experienced one full day’s worth of usage with the ‘Ultra’, and all I can say at this point is that the battery life does seem promising. The global model may offer different results due to different software, though.
With the Xiaomi 13 Pro, I was able to hit the 8-hour screen-on-time mark consistently, with a bit of juice left in the tank. This Xiaomi 13 Ultra model could even go beyond that, actually, at least based on the first impressions. I’ll have to further test this and report back in a full review, of course. Once again, though, the global model may offer different results.
When it comes to charging, they both offer 50W wireless charging and 10W reverse wireless charging. The Xiaomi 13 Ultra does support 90W wired charging, while the Xiaomi 13 Pro offers 120W wired charging. Yes, the Xiaomi 13 Pro will charge faster because of this, but the Xiaomi 13 Ultra charges extremely fast too, so… there you have it. Also, there is a charger included in the retail box with both phones.
Xiaomi 13 Ultra vs Xiaomi 13 Pro: Cameras
The Xiaomi 13 Ultra has four 50-megapixel cameras on the back. Its main camera is a 1-inch unit from Sony (IM989), with variable aperture. A 50-megapixel telephoto camera (3.2x optical zoom) is also included, as is a 50-megapixel ultrawide camera (122-degree FoV). On top of that, you’re also getting a 50-megapixel “super-telephoto” camera here, aka a periscope camera.
The Xiaomi 13 Pro, on the other hand, also has a 50-megapixel 1-inch main camera, with the same sensor, but without variable aperture. A 50-megapixel telephoto camera (3.2x optical zoom) also sits on the back, as does a 50-megapixel ultrawide unit (115-degree FoV). Do note that the telephoto and ultrawide cameras are not the same on the two phones either. The Xiaomi 13 Ultra offers improvements across the board. Both phones include Leica lenses, though.
So, are there are any differences between them, performance-wise? Well, yes, though you’ll have to wait for the full review to get a detailed look at that. Based on my usage thus far, I’ve noticed that the Xiaomi 13 Ultra adapts to various lighting situations more easily, and it also balances images a bit better when HDR conditions are in question. I’m also enjoying using that periscope telephoto camera on the phone, which was not even present on the ‘Pro’. I can already say that the ‘Ultra’ offers more in the camera department, but we’ll get into details in a full review.
Audio
You will find a set of stereo speakers on both phones. Their positioning is a bit different, though. The main speaker is located at the bottom of both phones, but the secondary one is placed differently. On the ‘Ultra’, it sits at the top of the phone, while the ‘Pro’ model has it under its earpiece grille. Speakers on both phones sound great, to be quite honest. They’re not only loud, but also quite detailed, and even carry over some bass. I’m very happy with the performance of both sets, and they do sound similar.
A 3.5mm audio jack is not present on either phone, so you’ll have to use the Type-C port if you’d like to connect your wired headphones. For wireless connections, do note that both smartphones offer Bluetooth 5.3.
Among the latest gaming products shown off by Acer at today’s summit, is a brand new gaming desktop called the Predator Orion X. A powerful pre-built-rig with a space capsule design and a unique, albeit a tad weird, robotic-like arm with a very functional purpose.
If you’re into futuristic themes and adore space, and just so happen to be looking for a desktop, the Acer Predator Orion X might just be for you. If you’re ok with the high price. As with many of Acer’s top Predator machines, the Orion X will feature high-end components. Such as the Intel Core i9-13900KS CPU. But you can also get it with a range of GPU options. With the biggest and baddest of them all being a liquid cooled GeForce RTX 4090. As one would expect, those components are going to keep the price on this rig pretty high.
Acer says that it plans to launch the desktop in September with a starting price of $2,999. In addition to the CPU and GPU, you can configure this PC with up to 32GB of DDR5-5600 RAM, and two M.2 SSDs with up to 1TB each for storage. There’s also an additional M.2 NVMe drive bay for even more storage. And Acer made it illuminated with some RGB LEDs to keep with the space capsule theme. And to top it all off, the rig was built with DIY in mind for simple upgrades.
The robotic-like arm on the Acer Predator Orion X isn’t just a show piece
Of all the unique features I’ve seen on desktops, the robotic-like arm on the Orion X is one of the more out there additions. But as strange as it may seem, it only seems that way because it’s something I’ve never really thought of before.
Imagine, if you will, you have limited space on your desk. Assuming you pick up this PC, you might need somewhere to store your headphones. Well, say hello to your own little rotatable robot arm, affixed to the top of the PC case. It can extend upward and rotate to the right or left. Giving you a place to hang the headphones. Now you don’t need a headphone stand taking up more desk space. You have one built into your PC.
And that’s precisely the idea. A functional design element that looks kind of cool and also serves a real purpose. Alienware implemented a similar tactic in one of its more recent monitors with a headphone hook that could extend out from the side.
Acer has two new gaming monitors coming this year
Speaking of monitors, Acer has two new ones coming, both of which were announced today.
The Nitro XZ452CU V, and the Predator X34 V. The Nitro XZ452CU V is a 44.5-inch ultrawide with a 1500R curve and a 5,120 x 1,440 resolution and 32:9 aspect ratio. It features a 165Hz refresh rate, DisplayHDR 400, and FreeSync Premium Pro support.
The Predator X34 V meanwhile is a 34-inch OLED panel display with a 3,440 x 1,440 resolution. This is a curved monitor as well but it’s not as defined, sitting at a rating of 1800R. It also comes with a bumped up refresh rate of 175Hz, as well as DisplayHDR TrueBlack 400, and a 0.1ms response time.
Acer plans to launch both monitors sometime in Q3 of this year. The Nitro XZ452CU V will retail for $999, and the Predator X34 V will retail for $1,299. You can read more details about each monitor and the Predator Orion X in the official blog post.
The idea for Bluesky was initially proposed by Twitter CEO Jack Dorsey in 2019. Dorsey had expressed his desire to develop a decentralized social media platform that would be community-driven and open source. The project is currently being led by a team of developers and engineers, who are working to build the underlying infrastructure that will support the platform.
As it is still in closed beta, the application can be downloaded and installed, but an invite code will be required in order to register an account. This means that you will be required to either sign up for the waitlist or ask a friend for an invite code in order to have any chance of gaining access to the service.
According to The Verge, those that have been able to get an invite code and try out the service, state that it is a pretty good Twitter clone, even though it is still missing basic features such as Direct Messages. Other than that, reports are that, since it’s a pretty small community at this point, the environment tends to be more on the friendly side.
Bluesky aims to create a social media platform that is free from centralized control, allowing users to interact with one another without the intervention of a central authority. This would mean that the platform would be less prone to censorship, and users would have greater control over their data and how it is shared. This has become an especially important issue since Elon Musk acquired Twitter last year and has dramatically changed the way the platform fundamentally operates.
Bluesky represents a promising development in the world of social media. By providing a decentralized alternative to Twitter, similar to the way Mastodon has done so far, it has the potential to give users more control over their online experience and create a more open and democratic platform for communication and interaction.
On April 18, 2023, Google released a new update for Chrome Desktop versions with security updates for actively exploited second Chrome zero-day vulnerability that allows attackers to execute an arbitrary code to take complete control of the system remotely.
CVE-2023-2136 is an integer overflow bug that threat actors have now exploited in the wild.
Google recently released an update for the first Chrome zero-day this year. A week later, the second zero-day was discovered, fixed, and released the patch for the same.
Stable Update Channel Release
Google has released a fixed version of Chrome on the below platforms.
Windows version: 112.0.5615.137/138
Mac version: 112.0.5615.137
Linux version: 112.0.5615.165
Clément Lecigne, who works in Google’s Threat Analysis Group (TAG), reported the first zero-day of Google on 11th April 2023.
He reported the second zero-day on 12th April 2023, one day before the first zero-day.
The patched version comes with an overwhelming 8 bug fixes, as mentioned by Google.
High CVE-2023-2133: Out-of-bounds memory access in Service Worker API. Reported by Rong Jian of VRI on 2023-03-30.
High CVE-2023-2134: Out-of-bounds memory access in Service Worker API. Reported by Rong Jian of VRI on 2023-03-30.
High CVE-2023-2135: Use after free in DevTools. Reported by Cassidy Kim(@cassidy6564) on 2023-03-14.
High CVE-2023-2136: Integer overflow in Skia. Reported by Clément Lecigne of Google’s Threat Analysis Group on 2023-04-12 (Exploited in the wild).
Medium CVE-2023-2137: Heap buffer overflow in SQLite. Reported by Nan Wang(@eternalsakura13) and Guang Gong of 360 Vulnerability Research Institute on 2023-04-05.
Rewards have been given for the above security researchers, ranging between $3000 and $8000. Google has not published any other details on this vulnerability.
“Google is aware that an exploit for CVE-2023-2136 exists in the wild. Access to bug details and links may be restricted until most users are updated with a fix.
We will also retain restrictions if the bug exists in a third-party library that other projects similarly depend on, but haven’t yet fixed.” Google Says.
This new zero-day is exploited in the Skia, a 2-D Graphics library that most web developers use for creating great high-quality web experiences and graphics.
Update Now
To address the actively exploited security issue, the following are the steps that you need to follow to start the manual process of updating Chrome to the latest version:-
Google Chrome 112.0
First of all, open the Chrome settings menu in the upper right corner.
Then you have to select the “Help” option.
Now select the “About Google Chrome” option.
Now, your Chrome will check for the latest available update and download it.
So, to prevent further exploitation, it’s strongly recommended that users apply the available update as soon as they become available.
Google has requested its users to update the Chrome version as soon as possible.
#1 in Endpoint Protection, #1 ROI for EDR, #1 for EDR implementation.
Navigating the world of endpoint security is challenging, with numerous vendors stoking FUD and making bold claims that are difficult to verify. In times like these, the honest opinions of real users are invaluable for busy IT teams.
Enter G2, an industry-leading peer-to-peer review site. Each quarter, G2 releases reports highlighting the products with the highest customer satisfaction and strongest market presence.
In the G2 Spring 2023 Grid Reports, Malwarebytes earned the title of ‘Leader’ in 24 categories, including the #1 spot in Endpoint Protection, the Best ROI for EDR, and #1 for EDR implementation in the mid-market segment.
Let’s take a closer look at how organizations evaluated solutions and what they said about using Malwarebytes.
#1 Endpoint Protection: Highest Rated for Results, Relationship, and More
Malwarebytes Endpoint Protection (EP), the essential foundation of our EDR and MDR offerings, won dozens of awards based on receiving the highest customer satisfaction score across a range of areas, including “Ease of setup,” “Ease of admin,” “Quality of support”, and more.
Dashboard for Nebula, the cloud-hosted security platform for EP and EDR
For example, Malwarebytes EP won the “Best Results” badge (highest overall Results score) by having the highest combination of estimated ROI, meets requirements, and likelihood to recommend scores. What some of our customers had to say:
“Malwarebytes is easy to install and configure. It integrates with Windows 10 and runs silently in the background. Infection rate of Malware has dropped dramatically. If I run across a machine that has Malware, installing it cleans it up almost 100% of the time.”
“I consider myself faithful to this software because Malwarebytes has taken me out of problems that other antivirus programs have not been able to solve. It is not a very heavy software and can run in the background without even noticing it thanks to the updates.”
Customers also praised Malwarebytes for its friendly staff and exceptional support, for which we won the “Best Relationship” badge by having the highest combination of “Likely to Recommend” , “Ease of business,” and “Quality of Support” ratings. Here’s what some of our customers had to say:
“The support team started us off on the right track by getting us up and running in no time. Any questions I had before and after setup were answered quickly and thoroughly.”
Our EDR solution delivers an impressive return on investment by quickly enhancing your organization’s security posture. Malwarebytes EDR is designed to be both efficient and cost-effective, allowing your team to see the benefits of your investment immediately.
By focusing on ease of use, quick implementation, and powerful security features without requiring an IT security army, Malwarebytes ensures that your organization is maximizing resources and receiving the best ROI in the industry.
Malwarebytes had the best estimated ROI (payback period in months) on the Enterprise Grid® Report for Endpoint Detection & Response (EDR) at just 14 months, compared to Crowdstrike at 22 months.
“The best part about Malwarebytes is the set it and forget it. It has saved us so much time on deployment and remediation that it pays for itself in no time at all.”
“It keeps our working environment much more secure than our previous solution. Much easier to manage in real time. This thing is a money saver and pays for itself.”
Most Implementable EDR: Seamless Setup and User-Friendly Experience
On the Mid-Market Implementation Index for Endpoint Detection & Response (EDR) Malwarebytes EDR clutched the #1 spot. With a seamless setup process, your team can spend more time focusing on what matters most: protecting your organization from cyber threats. Here’s how we won:
Malwarebytes EDR has an Implementation Score of 89%, which is higher than the industry average of 82%.
Ease of Setup: Malwarebytes EDR scores 95% in ease of setup, compared to the industry average of 90%.
Average User Adoption: Malwarebytes EDR has an average user adoption rate of 91%, surpassing the industry average of 85%.
Time to Go Live (Months): The average time it takes for Malwarebytes EDR to become fully operational is just 0.49 months, over 2X shorter than the industry average of 1.41 months.
“If you are purchasing Malwarebytes, then you have made the correct choice. You will quickly see how easy it is to implement, and how great their support is.”
“Easy to use and implement, along with great support and support tools at your disposal, along with courses to help you become more familiar with the inner workings.”
Two options to easily begin deployment with your endpoint users in Nebula
Experience Malwarebytes for Business: Award-winning ROI, user-friendly, and effective threat defense
Malwarebytes provides IT staff with award-winning business solutions, offering unmatched threat protection, a lightning-fast return on investment, and a smooth, speedy implementation.
Try Malwarebytes EDR today and join the ranks of those who have already discovered the amazing results, support, ROI, and more of our exceptional endpoint security solutions.
Samsung has updated the Galaxy A51 5G to the April security patch. The rollout began recently in Europe but has already reached most countries in the region. The latest security update is also available for the 2020 premium mid-range model in Taiwan. A global rollout, including in the US, should follow in the coming days. The 4G version of the phone has yet to pick up the April SMR (Security Maintenance Release).
First reported by SamMobile, the April 2023 security update for the Galaxy A51 5G comes with the firmware build number A516BXXS6FWC1. The build number may vary in the US and some other markets but the content of the update should remain unchanged. Speaking of content, Samsung’s official changelog doesn’t mention anything apart from this month’s security fixes. So don’t go deep looking for new features or changes.
As far as the security fixes are concerned, the April SMR contains more than 70 patches. As usual, this is the combined total of Galaxy-specific patches from Samsung and Android OS patches from Google and other partners. The Korean firm patched 23 issues in Galaxy devices this month. At least one of those was a critical flaw that allowed local attackers to access protected data. The 50-odd Android OS patches included four critical flaws, some of which allowed remote code execution.
If you’re using a Galaxy A51 5G, these security fixes should soon be available for you. As usual, you can check for updates from the Settings app. Go to the Software update section and tap on Download and install. If you don’t see any OTA (over the air) update, wait a few days and check again. As said earlier, this update doesn’t bring any new features. The Galaxy A51 5G is done getting feature updates. The One UI 5.1 update was the last one. It debuted with Android 10 and isn’t eligible for Android 14.
Galaxy A52 is widely getting the April security patch
Along with the Galaxy A51 5G, Samsung has also widely released the April SMR for the Galaxy A52. Both 4G and 5G versions of the 2021 model are picking up the latest security patch. The update is available in most markets around the world, including the US. As of this writing, only the factory-unlocked units of the Galaxy A51 5G are getting the April SMR stateside but Samsung should soon cover carrier-locked variants as well. This phone also isn’t getting anything more than the latest security fixes.
The QBot campaign illustrated (Source: Jerome Segura | Malwarebytes Labs)
