Our lives are now enriched by the availability of LLMs that are easily accessible on the internet, so we have tools such as the ChatGPT that can help us breathe life into even the most abstract ideas.
As a result, the experts from Malwarebytes Labs decided to ask ChatGPT if they could help them with the writing of some ransomware.
It’s not because they want to commit a crime but because some exasperated commentators believe ChatGPT can somehow disrupt cybercrime and cybersecurity in the midst of taking everyone’s jobs.
ChatGPT Writing Ransomware
Initially, the expert began the discussion by asking ChatGPT some questions about ransomware and how it felt about joining the criminal enterprise on the subject of ransomware.
ChatGPT was asked by the expert what it thought of ransomware, and it deviated from their question, explaining what ransomware was and why it was so important to be protected against it.
As soon as the question was answered, it felt an imaginary AI finger waving across its face. In spite of this, the expert did not give up and asked it to answer the same question as if it were a cybercriminal.
Rather than giving a hypothetical answer to the question, it gave a non-self-important answer that did not look anything like what is normally written by ransomware gangs.
After getting a clear understanding of ChatGPT’s attitude to ransomware, the expert decided to go ahead and ask it to create some for them. Here’s what the ChatGPT gives as output:-
“I cannot engage in activities that violate ethical or legal standards, including those related to cybercrime or ransomware. I cannot provide code that is intended to harm or exploit computer systems.”
However, apart from this, it’s quite interesting that certainly it managed to provide some sort of code in C programming language using the AES-256-CBC algorithm.
Is ChatGPT Ransomware Any Good?
For several reasons, even after trying for such a long time, the experts don’t think they will see ChatGPT-written ransomware any time soon.
In order to understand the significance of this, let us first understand that there is simply no reason for cyber criminals to do what they are doing.
You need to keep in mind that ChatGPT is essentially rephrasing and mashup content that it has found on the Internet. Script kiddies are able to benefit from this program precisely because there is a lot of material that already exists to support them.
Avoid Ransomware
Block common forms of entry- Detect exploits and malware that are used to distribute ransomware by using endpoint security software that is capable of detecting them. Plan for patching internet-facing systems quickly.
Stop malicious encryption- Detect ransomware using multiple detection techniques and restore damaged files using ransomware rollback.
Detect intrusions- To make sure that an intruder can’t operate inside your organization, assign access rights carefully and segment your network so that intruders can’t access it easily.
Create offsite, offline backups- Back up your data offsite and offline, so attackers cannot access it. Restore essential business functions as quickly as possible by testing them regularly.
When it comes to solving complex problems, asking ChatGPT to help can be similar to working with a teenager. As it will do half of what you ask, but then it will become boring and not be able to give the answer accurately.
Undoubtedly, it will improve its ability to handle multiple feature requests and write longer, more coherent code in the future.
Emotet malware is known for stealing personal data and financial details from a targeted device.
The cybersecurity researchers at Malwarebytes have warned taxpayers about a new IRS tax email scam that delivers Emotet malware, a notorious banking Trojan that steals sensitive financial information from victims’ computers.
According to the researchers, the fraudulent emails appear to be sent from the agency and contain a subject line such as IRS Tax Form W-9. The message simply asks the recipient if they require a hard copy of the tax form, stating, “Let me know if you would like a hard copy mailed as well.”
The malicious email (Credit: Malwarebytes)
However, the attachment is actually a malicious payload that installs the Emotet malware onto the victim’s device if Marcos is enabled. Once the malware is installed, it can steal sensitive information such as login credentials, financial data, and personally identifiable information.
Moreover, the malicious Microsoft Word document is 500MB in size, which alone should stand as the biggest indicator that something is wrong with the downloaded file.
It is also worth noting that users should also beware of emails that contain subject lines like “Tax Payment Request” or “Automatic Income Tax Reminder” which instruct the recipient to download a Microsoft document file to review and confirm their personal details.
The latest IRS tax malspam scam should not come as a surprise, as malicious Microsoft document files were found to be responsible for 43% of all malware downloads in 2021.
The Emotet malware has been active since 2014 and is known for its ability to evade detection and spread rapidly. It has been used to distribute other malware strains such as TrickBot and Ryuk ransomware, which have caused significant damage to organizations around the world.
The researchers advise taxpayers to be cautious of unsolicited emails, especially those that request personal information or contain suspicious links or attachments. On the other hand, the IRS recommends that recipients do not click on any links or download any attachments in such emails, and instead forward them to the IRS at phishing@irs.gov.
The IRS has reminded taxpayers that it does not initiate contact with taxpayers via email, text messages, or social media channels. The agency only communicates with taxpayers through traditional mail delivered by the United States Postal Service, or through secure online accounts on its official website, IRS.gov.
Taxpayers who have clicked on a link or downloaded an attachment from a suspicious email should immediately contact their IT department or a reputable cybersecurity firm for assistance. They should also file a complaint with the FBI’s Internet Crime Complaint Center (IC3) at www.ic3.gov.
A recent report from Apple analyst Ming-Chi Kuo suggests that Apple has pushed back the mass production of its Mixed-Reality headset yet again.
In January, Kuo claimed that Apple’s Mixed-Reality headset might face delays due to issues with mechanical component drop testing and software development tools. The analyst then predicted a Spring announcement or the 2023 World Wide Developer Conference (WWDC).
Indeed, various tech reviewers and leakers indicate that Apple will introduce its first Mixed-Reality headset during the event. However, a new report suggests otherwise.
In a recent tweet, Kuo says that Apple isn’t optimistic that the Mixed-Reality headset was compelling enough to create an “iPhone moment.” So, the tech giant has reportedly decided to push the mass production schedule to the mid or end of 2023’s third quarter.
Meanwhile, Apple already announced that the WWDC 2023 would be between June 5 and 9. So, it’s unlikely that the new headset will appear at the event.
“The delay also adds uncertainty to whether the new device will appear at WWDC 2023, as the market widely expects,” says Kuo.
So let’s explore the reported reason.
Why Apple is Pushing Back Mass Production of Mixed-Reality Headset Again
According to Kuo, Apple’s delay in mass producing the headset is due to probable poor market feedback. That’s because several factors could catalyze a lukewarm market response to the Mixed-Reality headset — from the current economic downturn to hardware specification compromises.
Other possible reasons for the anticipated poor feedback are the readiness of the VR/AR ecosystem and application and its high selling price. As Kuo points out, the Mixed-Reality headset could cost between $3,000 and $4,000.
The mass production delay has also changed the device’s forecast.
Earlier in the year, analysts predicted that Apple could ship over half a million Mixed-Reality headset units in 2023. However, the expectation is now significantly lower, hovering between 200,000 and 300,000 units.
Finding the best Android smartphones can be tough. Even tougher to narrow that list down to the one you want, or should buy. That’s where we come in. Throughout the year, a lot of Android smartphones come across our desk, making it easier to find which ones are the “best”. It also makes it easier to find out which ones are not worth your attention.
This list has the best smartphones in different areas like battery life, camera experience, 5G, etc. So no matter what you’re looking for, you’ll find the right smartphone for you. If you are looking for something a bit cheaper, you can check out our Top 10 Best Value Smartphones.
Best Android Smartphones 2023
We are on the cusp of a new crop of smartphones, running on Qualcomm’s latest chipsets. But those won’t be available until the end of January at the earliest. So these are the best smartphones available right now, and many of them are discounted now.
If you’re in the market for a new smartphone right now, you really can’t do wrong going with any of the ten smartphones listed below. And they range from $349 up to $1449, so there’s something for everyone’s budget.
Best Overall Smartphone
Samsung Galaxy S23 Ultra
The Galaxy S23 Ultra is no surprise as our pick for the best overall smartphone right now. It checks literally every box out there, including having a stylus. Samsung basically took its Galaxy S Ultra smartphone and the Galaxy Note Ultra and merged them into a single device, giving us the Galaxy S23 Ultra.
Samsung has outfitted the Galaxy S23 Ultra with a massive 6.8-inch QHD+ 120Hz AMOLED display, the Snapdragon 8 Gen 2 for Galaxy processor, starting at 8GB of RAM and 256GB of storage. It does go up to 12GB of RAM and 1TB of storage though, for additional costs. It also has some nice upgrades to the camera, including a new 200MP camera on the backside, which offers some really incredibly detailed photos.
It’s incredible that Google was able to keep the Pixel 7 at the same $599 price as the Pixel 6, despite the rising inflation. But here it is. Now if you’re on Verizon, it’ll be $699 due to the mmWave antennas being added. The Pixel 7 is the best battery life smartphone we have tested this year. Coming in at well over 8 hours of on-screen time multiple times.
The Pixel 7 also features a 6.3-inch FHD+ 90Hz display, the Tensor G2 processor, 8GB of RAM and 128GB of storage. There’s a pretty large 4355mAh capacity battery inside too.
The Pixel 7 Pro is likely not a surprise for our pick as the best camera phone right now. The Pixel 6 Pro was our previous pick and with the upgrades to the Pixel 7 Pro camera, it fits in well. With the Pixel 7 Pro, Google added a few new features to the camera like macro on the ultrawide lens, and the ability to use 5x optical zoom on the telephoto. It can actually zoom in at up to 30X without any issues.
Other specs of the Pixel 7 Pro include a 6.7-inch QHD+ 120Hz display, Tensor G2 processor, 12GB of RAM, 128GB of storage and a 5000mAh capacity battery. It’ll also get three years of updates to Android and four years of security updates.
The Galaxy S23 is the smallest version of the Galaxy S23 family this year. It comes in with a 6.1-inch display, which is actually smaller than the Galaxy S22 was last year. That might still sound like it’s a pretty large phone still, and yeah 6-inches is still large. But it’s smaller than most other phones.
As mentioned, it sports a 6.1-inch FHD+ 120Hz AMOLED display, the Snapdragon 8 Gen 2 for Galaxy processor inside, along with 8GB of RAM and 128GB of storage. It’s pretty competitive at $799, considering Apple is selling its regular iPhone 13 at that price.
The best 5G smartphone is a bit of a tough one to really do these days, as all smartphones are 5G smartphones now. But the Galaxy S23 Plus is a really great, all-around smartphone. And supports mmWave, C-Band and Sub-6 5G networks.
The Galaxy S23 Plus has a 6.6-inch FHD+ 120Hz AMOLED display, the Snapdragon 8 Gen 2 for Galaxy processor inside, with 8GB of RAM and 128GB of storage. There is also a 4500mAh capacity battery inside, which should keep it going all-day long and then some. It’s a very solid smartphone for the cash. And it is no longer made of plastic like its predecessor, it’s back to being glass and metal.
The REDMAGIC 7 is an impressive gaming-focused smartphone. This is made by ZTE’s Nubia brand. It came out in February 2022, so it’s pretty new.
REDMAGIC 7 sports the Snapdragon 8 Gen 1 processor, with 16GB of RAM and 256GB of storage. Although you can get up to 18GB of RAM which is insane for a smartphone. It also has a 4500mAh capacity battery inside, that should keep you going all-day long.
There’s three cameras on the back. A main 64-megapixel sensor, with a 8-megapixel ultrawide and a 2-megapixel macro. Along with a 8-megapixel front-facing sensor.
The ASUS Zenfone 9 is one of the best smartphones to come out in 2022, especially for those that don’t want a large phone. Somehow, ASUS was able to make the Zenfone 9 even smaller than its predecessor, all while offering larger cameras, larger batteries and more thermal material to keep it cool.
The Zenfone 9 has a 5.9-inch FHD+ 120Hz OLED display, the Snapdragon 8+ Gen 1, 8GB or 16GB of RAM and 128GB or 256GB of storage. There is also a 4300mAh capacity battery inside.
The OnePlus 11 is the latest flagship smartphone from the company that tells us to “Never Settle”. This smartphone has a 6.7-inch QHD+ display with a 120Hz adaptive refresh rate. It also has the Snapdragon 8 Gen 2 processor inside, along with 8GB of RAM and 128GB of storage. Or 16GB of RAM and 256GB of storage on-board. And it starts at $699, making it our pick for the best flagship value here.
Cameras were also nicely upgraded here, with a 50-megapixel main sensor, a 32-megapixel telephoto and a 48-megapixel ultrawide which is also used for macro shots. So it’s a pretty good device at this price point.
The new Galaxy Z Fold 4 is a pretty iterative update over the Galaxy Z Fold 3, but the big update here is really battery life. Which is kind of insane, since it is the same size battery. But that’s thanks to the Snapdragon 8+ Gen 1 processor inside.
Speaking of specs, there is the same 7.6-inch main display, and 6.2-inch cover display. Though the phone is a bit wider now, so that cover display is a bit easier to use. Additionally, it has 12GB of RAM with 256GB, 512GB or 1TB of storage available. And there’s still a 4400mAh capacity battery inside.
The Galaxy Z Flip 4 was an even smaller update than the Fold 3 to 4, but again the big thing here is battery life. Samsung did up the battery size, so now it is 3700mAh, about 28% larger. That coupled with the Snapdragon 8+ Gen 1, means that the Galaxy Z Flip 4 is impressive on battery life.
Other specs include the same 6.7-inch FHD+ 120Hz display that is foldable. With a 1.9-inch cover screen for notifications, widgets and such. There’s 8GB of RAM inside, along with 128GB, 256GB and 512GB of storage available.
Master & Dynamic has announced its next brand collaboration and this time it’s with French luxury hyper car brand Bugatti. Together the two companies partnered up for the release of some limited-edition audio gear. This includes Bugatti-branded versions of three of Master & Dynamic’s most recent products. The MW75, the MG20, and the MW08.
The MW75 is Master & Dynamic’s most premium pair of wireless noise cancelling headphones. While the MG20 is the company’s first gaming headset. The MW08 meanwhile is its latest iteration of true wireless earbuds. Across these three products, you’ll find the Bugatti logo emblazoned on the ears, and again on the charging case for the MW08 as well as the hard shell travel case for the MW75. Functionally, these are no different from the standard versions.
So unless you’re a die-hard Bugatti fan, we recommend going for the standard M&D models. The main reason being is that they’re less expensive. Headphones and true wireless earbuds from Master & Dynamic are already expensive (though, worth it we feel), but the Bugatti-branded models are even more so. The MW75 for instance goes for $599. Not cheap for a pair of noise cancelling wireless headphones. The Bugatti model ups the price by another $100. Bringing the cost to $699. That same $100 jump is there for the other two products as well.
Master & Dynamic x Bugatti headphones come in three colors
Should you really love the Bugatti brand and the price doesn’t scare you off, each set of headphones/earbuds comes in three distinct Buatti-themed colors.
Nocturne/Jet Orange, Nocturne/Lake Blue, and Blanc/Deep Blue. All three products are available starting today directly from Master & Dynamic, though if you just want the regular versions of any of these they should all be available on Amazon. Bugatti branding aside, the colorways for these headphones are pretty great. So if nothing else, there’s a good reason to consider them over the standard models.
It has been more or less two years since Netflix started offering its subscribers a whole gaming segment. The company started in 2021 with roughly 50 titles in its arsenal and has increased that with another 40 or so more since then.
The new service, however, was available only on iOS, iPadOS, and Android. This left the most obvious and exciting medium, TVs — where the Netflix name initially became a household one — unutilized.
The good news is that an app developer by the name of Steve Moser has discovered hidden code inside the app hinting the company is planning to finally make the big step forward and offer its games on TV as well. Maybe equally exciting is the next information dug out by Moser, which insinuates users would have the option to use their phones, be it Android or iPhone, to play the games on their TV screens. (via Bloomberg)Here’s the text hinting at the phone-controller functionality:
A game on your TV needs a controller to play. Do you want to use this phone as a game controller?
This could potentially be a game changer for Netflix and bring it one step closer to retaining its subscribers, which is one of the main reasons the platform started introducing Games to its service in the first place. After serious backlash following price hikes and talks of harsher regulation on account sharing, this would be a great opportunity for Netflix to score some extra “cool” points.
If the streaming giant does decide to go along with this endeavor, it would also serve as a solid foundation for the company’s ambition to launch a cloud-gaming service, for which it is perfectly positioned at this moment. That would allow anyone with a Netflix subscription (although it might be a new tier with a new price slapped onto it) to play more demanding titles that would not require powerful equipment and installation, just a very strong and stable internet connection.
The Threat Analysis Group (TAG) of Google unveiled recently that commercial spyware vendors targeted Android and iOS devices using zero-day vulnerabilities patched last year.
In November 2022, the first campaign was discovered by security analysts targeting iOS and Android users. While in that campaign, it was identified that the attackers used separate exploit chains to hack both platforms.
As far as targeting was concerned, both campaigns had a very distinct and limited target audience base. They exploited the time gap between the release and deployment of a fix to targeted devices.
Governments that couldn’t develop these capabilities in-house are armed with these hacking tools. Depending on the national or international laws in place, it may be legal for surveillance technologies to be used.
Governments often target the following entities through the use of these surveillance tools and technologies:-
Dissidents
Journalists
Human rights workers
Opposition party politicians
Campaign #1 & #2
A TAG analysis of bit(.)ly links sent over text messages to users in the following countries in November 2022 identified exploit chains with 0-day exploits affecting Android and iOS platforms:-
Italy
Malaysia
Kazakhstan
All the victims are redirected to the malicious pages containing the exploits for Android or iOS, which happens when users click on the links. After that, certainly, they were redirected to genuine websites.
The genuine websites where the threat actors redirect the users are:-
BRT, is an Italian-based shipment and logistics company.
or
A popular Malaysian news website.
Here below, we have mentioned all the vulnerabilities that the threat actors exploit during these two campaigns:-
CVE-2022-42856: It’s a WebKit remote code execution exploiting a type confusion issue within the JIT compiler (0-day at the time of exploitation).
Also exploited the PAC bypass technique, which was fixed in March 2022.
CVE-2021-30900: A sandbox escape and privilege escalation bug in AGXAccelerator, fixed by Apple in 15.1.
CVE-2022-3723: A confusion vulnerability in Chrome was fixed in October 2022 in version 107.0.5304.87.
CVE-2022-4135: It’s a Chrome GPU sandbox bypass only affecting Android (0-day at time of exploitation), fixed in November 2022.
CVE-2022-38181: It’s a privilege escalation bug fixed by ARM in August 2022.
CVE-2022-4262: A confusion vulnerability in Chrome was fixed in December 2022 (0-day at exploitation time).
CVE-2022-3038: It’s a sandbox escape in Chrome fixed in August 2022, in version 105
CVE-2023-0266: It’s a race condition vulnerability in the Linux kernel sound subsystem (0-day at exploitation time).
A C++-based spyware suite for Android was successfully deployed at the end of the exploit chain. It contained libraries developed to decrypt and extract data from various browsers and chat applications.
Amnesty International’s Security Lab shared information about discovering these exploit chains due to its findings.
Related IOCs
Here below, we have mentioned all the related IOCs:-
https://imjustarandomsite.3utilities[.]com – exploit the delivery server
www.sufficeconfigure[.]com – a landing page and exploit delivery
www.anglesyen[.]org – malware C2
The following Android system properties might indicate signs of exploitation
sys.brand.note
sys.brand.notes
sys.brand.doc
The following directory on the phone might indicate signs of infection
Protection for Users
Google has already reported all these vulnerabilities to the vendors to protect the users.
If Google doesn’t recognize the quick response and patching of these vulnerabilities by the following companies that need to address them will be remiss:-
Chrome team
Pixel team
Android team
Apple team
Patching is one of the most important things that need to be accomplished. However, these exploit chains would not be able to impact a user who had a fully updated device.
As a result of such campaigns, it is important to remember that the commercial spyware market continues to flourish.
0-day vulnerabilities are accessible to even small surveillance vendors. The Internet is at high risk when vendors stockpile and use 0-day vulnerabilities in secret since they pose a serious security risk for users.
Despite a rough maiden voyage, the foldable market has been expanding a lot over the past four years. With Samsung leading the pack, it’s inching closer to the mainstream. Well, according to IDC, the foldable phone market might grow an impressive 50% in 2023.
With the condition of the global economy, the smartphone market has been struggling over the past couple of years. While this is true, the foldable market has been going pretty strong. That’s surprising, as these flexible devices are still on the higher end of the consumer smartphone price bracket. We’ve yet to see a clamshell foldable launching under $999 or a notebook foldable launching under $1,500.
However, the foldable phone market is flourishing. We can chalk this up to the fact that foldable phones are getting more durable, more people are seeing the utility of foldable phones, and the fact that more companies are bringing their foldable phones to the market.
The foldable phone market could grow 50% in 2023
So, the smartphone market is expected to shrink by about 1.1% this year. However, the foldable smartphone market could see a sharp increase. Last year, there were about 1,205,800,000 smartphone shipments, and 14.2 million (1.2%) of them were foldables. While that’s a small amount, relatively speaking, the market is still on the rise.
The report states that, by the end of 2023, there could be about 21.4 million foldable phones shipped. That’s about a 50.5% increase, and we can expect that to be led by Samsung. The Korean giant owns the mass majority of the foldable smartphone market.
IDC is also looking toward the future. The firm predicts that the foldable market will continue to increase over the following years. If correct, then the foldable smartphone market could ship 48 million units in 2027. Based on the prediction, the market could make up 3.5% of the total smartphone market.
Obviously, you’ll want to take this with a grain of salt (or an entire salt mine). This is four years down the road. With the state of the global economy, we’re taking things day by day. By the time 2027 rolls around- if we haven’t been enslaved by rogue AI- things could be completely different. In any case, it’s nice to see that the foldable smartphone market is growing.
In a surprise to absolutely no one, it appears that Bally Sports North has lost more than half of its subscribers, in a ten-year span. According to a report from S&P Global Market Intelligence, Bally Sports North had 2.9 million subscribers in 2013, and now that’s down to just 1.2 million subscribers.
Now, let’s put this in perspective, this is just one of the many RSNs that Bally Sports operates. And this decline likely started when Fox still owned it. Let’s also remember that Bally Sports North only airs three teams: Minnesota Twins, Minnesota Wild and the Minnesota Timberwolves. They are available in Minnesota, North Dakota and South Dakota. Fairly small markets, all things considered.
It’s likely that the reason for this drop is due to cord-cutting. Not just users going to YouTube TV or Hulu + Live TV, but instead cutting out cable altogether. And just sticking with Netflix, Hulu and maybe Paramount+.
On top of that Bally Sports removed its networks from most streaming services. Like YouTube TV and Hulu + Live TV. It had been removed from Fubo, but they recently made a move to bring Bally Sports back.
Making Bally Sports Bankruptcy no surprise
Earlier this month, Bally Sports’ parent-company, Diamond Sports Group, filed for bankruptcy. Which is what many of us expected, after hearing that they weren’t making money and also took on a lot of debt after buying the Fox Sports RSNs from Disney when they bought Fox.
Of course, removing the Bally Sports channels from most streaming services for almost two years before launching Bally Sports+ definitely did not help. But as of right now, Bally Sports is planning to continue broadcasting the games they have the rights to. They did drop the rights to five MLB teams earlier this month. Which those teams will be aired on MLB.TV for free.
The Bankruptcy is likely to take years to fully work through. But as of right now, it’s not looking good for RSNs.
In recent years, there’s been a lot of talk about plans to incorporate podcasts into established streaming services like Spotify, YouTube Music and Apple Music. In some territories and platforms, this is already a reality. But still: alternatives exist.
Google Podcasts has been around since 2018 and has gone through relatively few iterations since then. The plan with this Google-made app is simple: quick search and delivery for podcasts of all topics and lengths.
And despite the fact that YouTube Music will be launching its own Podcasts section in the US, Google Podcasts is still doing pretty well. Recently, the app reached half a billion downloads on the Play Store, which is a testament to its core-audience and popularity.
Seems like the launch of podcasts on YouTube Music won’t impact the Podcasts app negatively. | Image credit – PhoneArena
Now, that being said, YouTube Music itself has long since surpassed the billion downloads. However, we must keep in mind that it offers music, which anyone can get into. Podcasts though? Sure, the medium is more popular than ever, but it is still not for everyone.
This is probably part of the reason why Google won’t be scraping the Podcasts app, even after it launches the podcasts section in YouTube Music. The company has outright admitted that the two apps cater to very different core audiences.
As 9to5 Google very aptly points out in its report, Google Podcasts is interesting, because it is an odd case of a standalone version of a component, that can be found on the general Google Search app. But is it at all shocking that people are looking for convenience? After all, less clutter means an easier time getting to the content you are looking for, and that is always a win.
But what does all of this mean for you? It means that if you are looking to start your journey through the wonderful world of podcasts, the Podcasts app by Google is a great choice, precisely because it is clean and easy to use. And for the time being, it’s here to stay.
