Top seven hacks and cyber security threats in APAC

andreasc
-
0
Top seven hacks and cyber security threats in APAC
[ad_1]

In 2022, 59 percent of business in the Asia-Pacific region reported being the victim of a cyber attack, 32 percent reported being the victim of multiple cyber attacks and the region suffered a shortage of 2.1 million cyber security professionals.

This has culminated in the Asia-Pacific region being victim to a number of high-profile cyber attacks within the last 12 months. In this article, Cyber Security Hub explores seven of these attacks.

Contents

  1. New Zealand government compromised in third-party attack
  2. Medibank suffers data leak that affects 9.7 million people
  3. Toyota admits to data breach after access key is posted on GitHub
  4. MyDeal data breach impacts 2.2 million people
  5. Vulnerabilities in GPS tracker could put 1.5 million vehicles in danger
  6. Data breach sees Telstra employees’ details posted online
  7. Details of 11 million customers accessed in Optus data breach

New Zealand government compromised in third-party cyber attack

In December 2022, an IT managed service provider that supports a range of organizations across New Zealand including several within its government suffered a cyber attack, compromising access to its data and systems.

Those affected by the cyber security incident includes some providers contracted to Te Whatu Ora (Health New Zealand), although health service delivery was not been affected. 

The Ministry of Justice was also affected by the third-party data breach and confirmed the cyber attack impacted access to some coronial data. This allegedly included thousands of autopsy reports.

New Zealand’s National Cyber Security Center (NCSC) said that it was coordinating governmental response to the cyber attack, both within the Government Communication Security Bureau and alongside the New Zealand Police, CERT NZ and the Privacy Commissioner.

Lisa Fong, deputy director-general of the NCSC, said that the organization is working with the compromised third party to “understand more fully the nature of the data that has been impacted” and how the cyber attack occurred. 

Medibank suffers data leak that affects 9.7 million people

On October 13, 2022, Australian health insurance provider Medibank suffered a data breach which affected 9.7 million people.

The malicious actor responsible for the breach attempted to extort the company by contacting them directly to negotiate the release of the data. Medibank refused, which led to the hacker releasing private medical information obtained in the breach on the dark web.

The hacker posted a file labelled “abortions” to a site backed by Russian ransomware group REvil on November 10, 2022, which apparently contained information on procedures that policyholders have claimed on, including miscarriages, terminations and ectopic pregnancies.

They also released files containing customer data called “good-list” and “naughty-list” on November 9, 2022. The so-called “naughty-list” reportedly includes details on those who had sought medical treatment for HIV, drug addiction or alcohol abuse or for mental health issues like eating disorders.

The hacker added to the November 10 data leak post, saying: “Society ask us about ransom, it’s a 10 millions (sic) usd. We can make discount 9.7m 1$=1 customer.”

During question time in Australian Parliament on November 10, minister of home affairs Clare O’Neil hit back at the hackers, saying: “I want the scumbags behind this attack to know that the smartest and toughest people in this country are coming [at] you.

“I want to say, particularly to the women whose private health information has been compromised overnight, as the minister for cyber-security but more importantly, as a woman, this should not have happened, and I know this is a really difficult time.”

David Koczkar, CEO of Medibank, called the release of the data “disgraceful” and a “weaponization of people’s private information”. He also called those involved in the cyber-attack and data leak “deplorable”.

In an attempt to protect those affected by the cyber security incident and the subsequent data leaks, Medibank urged members of the public and the media to not “unnecessarily download sensitive personal data from the dark web” and to “refrain from contacting customers directly”.

Toyota admits to data breach after access key is posted on GitHub

On October 7, 2022, Japanese car manufacturer Toyota issued a statement and an apology after it was discovered that third parties may have gained unauthorized access to customer details between December 2017 and September 2022. 

The breach occurred because a section of the source code for T-Connect, an app which allows customers to connect their phone to their car, had been posted on source code repository GitHub in December 2017. As the source code contained an access key for the server, this may have allowed unauthorized access to customer data for five years.

Any customers who registered for the app from December 2017 to September 2022 were at risk for their data being accessed, meaning the data for a potential 296,019 customers may have been leaked. The information available for access included email addresses and customer management numbers. Personal or sensitive information including payment card information, name and address were not accessed.

Following a security investigation, Toyota said that while it “cannot confirm access by a third party based on the access history of the data server where the customer’s email address and customer management number are stored, at the same time [it] cannot completely deny it”.

Toyota also said that it would individually notify all those who were affected by the breach.  

MyDeal data breach impacts 2.2 million people

Australian online retail marketplace MyDeal confirmed in October 2022 that it was the victim of a data breach that exposed the data of around 2.2 million customers.

The retailer, which is a subsidiary of supermarket chain Woolworths, said that it would be contacting all those affected by the breach via email, as well as alerting the “relevant regulatory authorities and government agencies”.

Woolworths said that the breach was caused by a malicious actor using “a compromised user credential” to gain unauthorized access to MyDeal’s Customer Relationship Management (CRM) system.

Customer information exposed during the cyber-attack included names, dates of birth, phone numbers and email addresses. For 1.2 million customers, the data exposed was limited to their email address. Confidential information like passport, payment card and drivers license details is not stored by MyDeal, and therefore was not exposed in the hack.  

Vulnerabilities in GPS tracker could put 1.5 million vehicles in danger 

A GPS tracker manufactured by Chinese company MiCODUS was been revealed to have numerous critical cyber security vulnerabilities that could allow bad actors to remotely hack a vehicle’s system in August 2022. 

At the time of the discovery, the MiCODUS MV720 GPS tracking device had been sold to customers across 169 countries and installed in more than 1.5 million devices. 

The critical cyber security issues were first discovered by cyber security startup BitSight. Following the discovery of the vulnerabilities, BitSight informed the US Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA).

The CISA confirmed that “successful exploitation of these vulnerabilities could allow an attacker control over any MV720 GPS tracker, granting access to location, routes, fuel cutoff commands and the disarming of various features (e.g. alarms)”. 

In a report on the vulnerabilities, BitSight said it had found MiCODUS devices were being used by a range of organizations including “a Fortune 50 energy company, a national military in South America, a national government and a national law enforcement organization in Western Europe, and a nuclear power plant operator”.

It was also revealed that MiCODUS has a global customer base of 420,000, with 1.5 million devices sold. However, BitSight did note that it was unable to determine the number of MiCODUS MV720 units currently in use globally, as well as the number of MiCODUS devices used for personal or businesses uses.

Data breach sees Telstra employees’ details posted online

Australian telecommunications company Telstra revealed on Tuesday that it had been hit by a data breach that had revealed the details of 30,000 current and former employees.

The details included employee’s first and last names and email addresses, and were posted on hacking forum BreachedForums.

In a tweet, Telstra confirmed that the data leak “wasn’t a breach of any Telstra system” and that it has notified its employees and authorities first, before notifying former employees, despite “minimal risk” to them.

A Telstra spokesperson said the company had been “made aware of a data breach affecting a third party that included limited Telstra employee information from 2017.”

Of the information shared, 12,800 of the employees named were current employees.

Details of 11 million customers accessed in Optus data breach

Australian telecommunication company Optus suffered a devastating data breach on September 22, 2022 that led to the details of 11 million customers being accessed.

The information accessed includes customers’ names, dates of birth, phone numbers, email addresses, home addresses, driver’s license and/or passport numbers and Medicare ID numbers. Payment detail and account passwords were not compromised in the breach.

Optus confirmed that it has now contacted all customers to notify them of the cyber-attack’s impact, beginning with those who had been affected by the breach and finishing with those who had not had their data accessed.

Someone claiming to be the hacker told Australian journalist Jeremy Kirk that they had “accessed an unauthenticated API endpoint” meaning that they did not have to log in to access the data and that it was “all open to internet for any one[sic] to use”.

A person claiming to be the hacker responsible for the data breach posted a small sample of the customer data stolen to the hacking forum BreachedForums on September 23. 

Using the alias optusdata, the hacker demanded that Optus pay them $1mn ransom, or they would leak the data of all 11 million customers affected by the breach. When Optus did not respond to the ransom demand, optusdata then posted a text file of 10,000 customer data records on September 26, allowing other malicious actors to use the data in their own phishing campaigns.

Victims of the breach reported on September 27 that they had been contacted with demands that they pay AU$2,000 (US$1,300) or their data will be sold to other hackers.

However, on the same day, the supposed hacker posted a new message on BreachedForums, rescinding their demand and apologizing to Optus.

The hacker said there were “too many eyes” so they will not be selling the data to anyone and claimed that they had deleted all the data from their personal drive, and that they had not made any copies. They offered an apology also to the 10,200 people who had their data exposed via their posts on BreachedForums, and to Optus itself, saying “hope all goes well with this”.

They finished by saying they “would have reported [the] exploit if [Optus] had [a] method to contact” and that while the ransom was not paid, they “dont[sic] care anymore” as it was a “mistake to scrape publish data in the first place”.


[ad_2]
Source link

Critical Flaws in WordPress Houzez Theme Exploited

andreasc
-
0
Critical Flaws in WordPress Houzez Theme Exploited
[ad_1]
Flaws in WordPress Houzez Theme

Houzez is a high-quality WordPress theme that is available for purchase on ThemeForest, a popular marketplace for digital products. This premium theme has been widely recognized for its outstanding features and has garnered an impressive 35,000 sales to date with a price tag of $69.

The Houzez theme and plugin for WordPress, which are commonly utilized by real estate websites, are currently under attack from hackers who are exploiting two high-risk vulnerabilities. 

Vulnerability Details:

These security flaws are considered critical in severity and can potentially cause significant harm to websites and their users.

A threat researcher from Patchstack named Dave Jong has identified two vulnerabilities in the Houzez theme and plugin for WordPress. Upon discovery, the issues were reported to the theme’s vendor, ThemeForest, and were addressed in two separate updates. 

EHA

The first vulnerability was fixed in version 2.6.4, which was released in August 2022, and the second issue was resolved in version 2.7.2, which was released in November 2022.

Here below we have mentioned the vulnerabilities:-

  • CVE ID: CVE-2023-26540
  • Description: Houzez Theme Vulnerability
  • CVSS Score: 9.8
  • Severity: Critical
  • CVE ID: CVE-2023-26009
  • Description: Houzez Login Register Vulnerability
  • CVSS Score: 9.8
  • Severity: Critical

A recent report from Patchstack highlights that certain websites have yet to implement the security updates released for the Houzez theme and plugin, leaving them vulnerable to exploitation. This report serves as a warning that hackers are currently targeting these unpatched vulnerabilities in ongoing attacks.

The privilege escalation vulnerability has been found both in the theme itself as well as one of the plugins that are included in the theme. It is important to note that the Houzez Login Register plugin is also vulnerable to the same vulnerability.

Exploitation

At present, the security vulnerability present in the Houzez theme and plugin for WordPress is being actively exploited by cybercriminals. These attacks are being carried out from the IP address 103.167.93.138 and have been observed in significant numbers.

A backdoor was uploaded by the threat actors in the attacks observed by Patchstack that enabled them to perform the following illicit activities:-

  • Executing commands
  • Injecting ads on the website
  • Redirecting traffic to other malicious sites

Patchstack has committed to continuously monitoring any further attempts to exploit the vulnerabilities in the Houzez theme and plugin for WordPress. Apart from this, the website owners and administrators should prioritize the process of applying the available patches with the highest level of priority.

Network Security Checklist – Download Free E-Book


[ad_2]
Source link

PureCrypter Malware Targets Governments Through Discord

andreasc
-
0
PureCrypter Malware Targets Governments Through Discord
[ad_1]

PureCrypter delivers multiple types of malware and info-stealers, including Redline Stealer, Eternity, AgentTesla, Philadelphia Ransomware, and Blackmoon.

The cybersecurity researchers at Menlo Labs discovered an unknown threat actor exploiting an evasive malware campaign operated through Discord. In their campaign, the prime victims are government entities in North America and Asia-Pacific.

According to researchers, the attackers in this campaign are delivering the PureCrypter downloader, and their primary targets are government entities. The threat actor uses a compromised non-profit organization’s domain as their C2 center to deliver a second payload.

Researchers noticed that in this campaign, PureCrypter delivers multiple types of malware and info-stealers, including Redline Stealer, AgentTesla, Philadelphia Ransomware, and Blackmoon.

PureCrypter Malware Targets Governments Through Discord

How Was the Campaign Discovered?

Researchers wrote that they became suspicious after detecting that Menlo’s Cloud Security Platform had blocked archive files, which were password-protected, across numerous government customers across the North American and Asia-Pacific regions.

The attacks start with a phishing email that contains a malicious link to Discord. This URL launches a password-protected ZIP file containing the .NET malware downloader PureCrypter, which downloads a secondary payload from the attackers’ C2 infrastructure. 

The sample Menlo Labs analyzed downloaded AgentTesla, a widely used RAT and info stealer that can steal browser-based passwords, take screenshots, and log keystrokes after establishing a connection with an FTP server located in Pakistan.

On the other hand, victim data is stored on this server, which was observed in another campaign using OneNote to deliver malware.

“The FTP server appears to have been taken over and the leaked credentials for the domain were found online, thus suggesting that the threat actors used these credentials to gain access to the server.”

Menlo Labs

What is PureCrypter?

PureCrypter is a malware downloader capable of distributing a wide range of ransomware, malware, and information stealers. It was first detected in June 2022. Its creator, PureCoder, offers it for $59 per month or a one-time payment of $245 for life.

The developer recently expanded its features to include PureLogs logger and info stealer, which can steal data from crypto wallets, web browsers, and email clients, for just $99 a year or lifetime access for $99.

  1. Telegram and Discord Bots drop Malware
  2. Google Ads Malware Wipes Crypto Wallet
  3. Teen “Hackers” on Discord Selling Malware
  4. Hackers drop NjRAT in “Earth Bogle” attack
  5. Malware targets Discord users to steal data

[ad_2]
Source link

One UI 5.1 rolling out to OG Galaxy Z Flip & Galaxy A23

andreasc
-
0
One UI 5.1 rolling out to OG Galaxy Z Flip & Galaxy A23
[ad_1]

Last week, Samsung released the One UI 5.1 update for the 5G model of the original Galaxy Z Flip. The company is now pushing the new One UI version to the LTE model as well. The update is also available for the Galaxy A23, a mid-range phone launched last year.

As of this writing, Samsung’s One UI 5.1 update for the Galaxy Z Flip LTE is currently rolling out to users in Australia. The new firmware build number for the first-ever clamshell foldable Galaxy smartphone in the region is F700FXXUAJWAD (via). The Korean behemoth should globally release the update over the next few days. The handset was sold in the US too, with both carrier-locked and unlocked options. One UI 5.1 should reach all of those phones soon.

That said, even the 5G model hasn’t received the new One UI version anywhere outside Switzerland so far. Samsung released the update in the European country last week but hasn’t expanded the release anywhere else. Hopefully, it will not take much longer. the new firmware version for the Galaxy Z Flip 5G in Europe is F707BXXU7JWAD. It may vary slightly in the US and other markets, but the content will mostly remain the same.

Speaking of content, this update brings plenty of goodies to Samsung’s first-gen Flip models. Firstly, you’re getting the February 2023 Android security patch that fixes more than 50 vulnerabilities across the Galaxy ecosystem. On top of that, there are tons of new features and improvements for your phone. New selfie effects, Shared Family Album, enhanced gestures for efficient multitasking, improved modes and routines, and dynamic widgets are a few major additions. You can check out Samsung’s official One UI 5.1 changelog for the Galaxy Z Flip 5G here.

Samsung’s Galaxy A23 is also getting One UI 5.1

Samsung has also released the One UI 5.1 update for the Galaxy A23. The device is picking up the update with firmware version A235FXXU2CWB4 in Ukraine. It is getting the February security patch and a host of goodies, though not as many as the Galaxy Z Flip or other flagship models. A wider One UI 5.1 rollout for the Galaxy A23 should be just around the corner. The handset wasn’t released in the US.

This is the humblest Galaxy phone to get the new One UI version so far. Part of the 2022 Galaxy A lineup, the device follows premium models Galaxy A33 5G, Galaxy A53 5G, and Galaxy A73 5G in the party. Samsung also released a Galaxy A23 5G last year, which arrived in the US too, but it has yet to get One UI 5.1. We will let you know when the rollout begins for the 5G model of this budget handset.


[ad_2]
Source link

Qualcomm CEO reveals Apple’s 5G modem launch date

andreasc
-
0
Qualcomm CEO reveals Apple’s 5G modem launch date
[ad_1]

Qualcomm’s CEO, Cristiano Amon was speaking at MWC Barcelona today, and talked about Apple’s rumored 5G chipset. Amon believes that their own modem will be ready in 2024, but adds that “if they do need ours they know where to find us”. Basically, Amon saying “please still use our modem”.

Since the iPhone 12 lineup, when Apple added 5G support, they have been using Qualcomm’s 5G modems in conjunction with their own in-house chipset.

Apple’s 5G modem could be used in the iPhone 16 or the iPad first. It’s possible that Apple could use it in a lower-volume product at first, like an iPad Pro. While it is a popular iPad, it’s nowhere near as popular as the iPhone. Typically, Apple will sell around 10 million units just on the launch weekend of the new iPhone.

Qualcomm has been supplying 5G modems since 2020

Apple has been using Qualcomm’s 5G modems since 2020, when it added 5G to its iPhones. That was a big get for Qualcomm, since the iPhone does sell so many units. As mentioned above, Apple does typically sell around 10 million units in a single weekend after the device launches. That’s more than most Android phones will sell in their lifetime. So while Qualcomm was only selling modems and not the entire mobile platform, like a Snapdragon 8 Gen 2, it’s still a big customer for Qualcomm.

Amon does seem to be pretty bummed about Apple opting to use its own modem in the iPhone 16 next year. Again, that’s a big time customer for Qualcomm. Which will lose a lot of money with this move by Apple. But for Apple, this gives them more control over their iPhones, it also lowers the cost to build the iPhone. And it might also improve 5G connectivity on the iPhone. Which is definitely a good thing here.

Time will tell how good Apple’s first 5G modem will truly be. But in the past, their modems have been pretty good. Way better than the Pixel 6 modem that Google had.


[ad_2]
Source link

Apple iOS Vulnerability Could Expose Users’ Messages And Photos

andreasc
-
0
Apple iOS Vulnerability Could Expose Users’ Messages And Photos
[ad_1]

Apple silently patched a serious security vulnerability affecting iOS users that could expose data. Specifically, the flaw existed due to an improper patch for the previously known FORCEDENTRY vulnerability. An adversary could exploit the bug to access stored messages and photos in the target device.

Apple iOS Vulnerability Leaking Data

Researchers from Trellix have shared details about a new exploit affecting Apple iOS devices in a post. They demonstrated how a previously patched vulnerability could still let an adversary infiltrate iPhones.

Specifically, the researchers demonstrated bypassing the patch for the “FORCEDENTRY” bug discovered in 2021. As reported, FORCEDENTRY served as a major attack vector for the notorious Pegasus malware, targeting iOS 14.4 and 14.6 as a zero-day.

While Apple patched the vulnerability soon after receiving the bug report, it still posed a serious security risk. As Trellix explained, the second part of the vulnerability (as Google Project Zero demonstrated later) could allow sandbox escape. Exploiting this aspect could let an adversary bypass codesigning and execute arbitrary codes by abusing the “NSPredicate” class.

With this lead, Trellix researchers demonstrated how an attacker with code execution privileges could collect data from the target device via malicious NSPredicate. That includes accessing messages, calendar, location, address book, photos, and bypassing permissions.

The researchers demonstrated the exploit in the following video.

Apple Patched The Flaw

Upon discovering the vulnerability, the Trellix team contacted Apple to report the matter. They highlighted how this vulnerability affected both iOS and macOS systems alike.

Following their report, Apple developed a fix and released the patches with iOS 16.3 and macOS 13.2. The researchers further confirmed to have detected no active exploitation of the vulnerability before patching.

Hence, it means all users who updated their devices accordingly remained safe from risks. However, those who haven’t updated their systems should do so immediately to prevent any potential cyberattack.

Let us know your thoughts in the comments.


[ad_2]
Source link

How to work from home securely, the NSA way

andreasc
-
0
How to work from home securely, the NSA way
[ad_1]

The NSA has some advice about keeping remote workers safe from harm.

People working remotely is no longer unusual, so the National Security Agency (NSA) has produced a short Best Practices PDF document detailing how remote workers can keep themselves safe from harm. In fact, the guide can also be applied to people using computers at home generally and is written in a way that’s easy to understand.

Back to basics

The NSA’s three main executive summary points are:

  • Upgrade and update all equipment and software regularly, including routing devices
  • Back up your data and disconnecting any devices you can
  • Limit administration to the internal network only

You may be surprised by how seemingly basic these suggestions are given the source, but this simplicity is in its favour. Consider how many folks will only decide to start making backups once they’ve lost everything for the first time. You have to start somewhere, and not every organisation asking employees to work from home has necessarily considered these opening talking points due to budget, resources, or other factors. They may not even have a budget for work-owned devices, amd may instead be relying on employees using their own devices.

Even thinking about who has access to what on a home network is beneficial—there’s nothing wrong with limiting access to guests on the home network, for example. Some routers and packages allow you to isolate guests on their own little network, away from the main one. This can help reduce the spread and impact of an infection, and keep all of those valuable work and / or home documents safe.

Much of the NSA’s advice leans heavily into ensuring all the little things are taken care of:

  • Keep your software up to date. From Windows to your web browser, everything needs to be updated regularly.
  • Keep your router updated. This may sound odd if your router is supplied by your ISP, as many of those update automatically. But if you run an off-the-shelf router you may be fully responsible for its overall well being. This isn’t mentioned, but you should consider changing the default password when you first boot up the router. Without some hunting around on the Internet, you may never know if what’s shipped is a default applied to multiple routers, or if it’s unique to you.
  • Use a password manager and two-factor authentication (2FA). The guide highlights that while some form of 2FA is better than nothing, some types of 2FA are better than others.
  • Separate work and life activities. It’s a lot easier to figure out where a breach happened if you don’t have sensitive work documents scattered across 3 personal devices.
  • Connect to your office with a Virtual Private Network (VPN). Using a work-supplied VPN makes your computer part of the work network, keeping data safe as it travels over the Internet.

Getting physical about security

There’s a strong focus on physical device security of one kind or another too, which is often overlooked. Some highlights include:

  • Cover your webcam.
  • Mute microphones.
  • Limit sensitive conversations.

The latter is particularly interesting given the slow rise of IoT in the home alongside an increasing amount of voice activated and “always listening” hubs. As the guide notes, all of the below could potentially cause trouble if set to record:

  • Baby monitors
  • Children’s toys
  • Smart devices
  • Home assistants
  • Games consoles
  • PCs with microphones attached

This is especially the case where a poorl-secured device is recording audio and storing it (for example) on a wide-open server where anyone can grab the contents. If you have children at home, consider how many of the toys in the next room may have recording / Internet connectivity and make yourself a to-do list.

If you’re going to make backups, I would add to the NSA’s advice to place files on an external device by suggesting that you also encrypt your data. While it’s unlikely that someone will break into your home and steal a hard drive, better safe than sorry. You’re probably more at risk of taking it somewhere and accidentally losing it, so the encryption will help in any case. Finally, keeping those external devices disconnected when not in use will help lessen the device’s exposure to bad things. If you experience an infection on your PC, you don’t want it affecting your backups.

Unsocial networks

There’s quite a bit of advice in relation to social networks and social engineering. It’s easy to let your guard down when at home, and security advice from work may be a little harder to come by when not in the office.

  • Don’t post personal information online that can be used to reset your passwords, such as your first pet’s name or the street you grew up on.
  • Lock your contact list down to friends only, if you can.
  • Watch out for copycat and imitation profiles.

The best practices document also correctly notes that it’s worth checking both the Terms of Service and app or website settings regularly. Changes in policy can leave you exposed.

Overall, the NSA has produced a useful step by step guide covering a lot of bases, including public hotspots, email, and even user habits. Give the document a read and feel free to add in some tips you think the NSA may have missed in the comments section.

Have a burning question or want to learn more about our cyberprotection? Get a free business trial below.

GET STARTED


[ad_2]
Source link

Samsung appears on track to achieve its Galaxy S23 sales target

andreasc
-
0
Samsung appears on track to achieve its Galaxy S23 sales target
[ad_1]

Samsung is aiming to sell around 30 million units of the Galaxy S23 series globally this year. That’s more than a ten percent increase from total Galaxy S22 sales last year. While it may seem an ambitious target, the company has begun on a high note. The new flagships received record-breaking pre-orders in several markets, including India, South Korea, and France. Samsung has now revealed Galaxy S23 pre-order numbers for Latin America and Taiwan, and the story is the same.

According to Samsung, the early demand for the Galaxy S23 series is substantially higher than the Galaxy S22 in Latin America. For the first time, the company opened pre-orders for its latest flagships in Brazil on the same day as other global markets. This helped it rake up 50 percent more pre-orders for the new phones across Latin America. Last year, Galaxy S22 pre-orders more than doubled from Galaxy S21 in the region. A further increment on that bodes well for the Korean behemoth’s long-term future.

“The great momentum we are witnessing shows the excitement of customers for products that go the extra mile and give them the freedom to express themselves creatively,” said TM Roh, head of Samsung’s mobile business. Unsurprisingly, the Galaxy S23 Ultra is almost outselling the other two models combined. Nearly 60 percent of buyers picked up the most expensive model in the lineup. This has been a global trend and it’s no different in Latin America. After all, the phone is in a league of its own in terms of specs and features.

The numbers for Taiwan are even more impressive. The Galaxy S23 Ultra accounted for more than three-fourths (75 percent) of all pre-orders in the region. Overall Galaxy S23 pre-orders also grew by double digits in Taiwan. Samsung is still running some attractive promotions for its latest flagships there. Buyers get a free 45W travel adapter, silicone case, Samsung Wallet EasyCard rebates, Samsung Care+ discounts, extended free trials for Microsoft 365 Basic, YouTube Premium,  Adobe Lightroom, and Adobe Express, free optional accessories, and more freebies.

Samsung may not find it difficult to achieve its Galaxy S23 sales target

Going by these pre-order success stories, Samsung may comfortably achieve its sales target for the Galaxy S23 series this year. The company had set a similar target for the Galaxy S22 series last year but fell short of it. That may not be the case this time around. A lot depends on rival products, though. Xiaomi’s new Xiaomi 13 Pro series is turning a few heads. Samsung will have to continue offering attractive promotions to keep the momentum going. We should get a clearer picture of the overall Galaxy S23 demand in the next few months.


[ad_2]
Source link

Best Samsung Smart TVs – February 2023

andreasc
-
0
Best Samsung Smart TVs – February 2023
[ad_1]

Samsung is one of the larger TV makers in the world right now, and they make a ton of great TVs. But which Samsung TV is the best one to buy? Well that’s what we’re going to help you decide on today.

Samsung has mostly moved over to QLED for its TVs, but you’ll still find some that are LED or LCD. Those will be cheaper too, since QLED does cost more to manufacture and it’s also a newer technology. These TVs are all at least 4K, if not 8K. So you’re going to get a really great picture out of these.

Top 10 Best Samsung Smart TVs

We have listed ten of the best Samsung smart TVs that are currently on the market, down below. These range from smaller TVs, to larger ones, as low as $549, all the way up to several thousand dollars.

There’s even a 8K Samsung QLED TV available in this list. Which is going to be future proof for likely about a decade from now.

SizesPriceWhere to Buy
Samsung Q80R QLED 4K TV55, 65, 75, 82″Starting at $1299Samsung.com
Samsung QN900A QLED 8K TV65, 75, 85*Starting at $4999Amazon
Samsung AU8000 Series 4K TV43, 50, 55, 65, 75, 85″Starting at $1797Amazon
Samsung QN90A Neo QLED 4K TV50, 55, 65, 75, 85″Starting at $1449Samsung.com
Samsung QN85A Neo QLED 4K TV55, 65, 75, 85″Starting at $1499Samsung.com
Samsung Frame QLED TV32, 43, 50, 55, 65, 76″Starting at $599Samsung.com
Samsung Sero QLED 4K TV43″$1499Samsung.com
Samsung Q70T QLED 4K TV55, 65, 75, 82, 85″Starting at $899Samsung.com
Samsung TU9010 Series 4K LED TV86″$1,897Amazon

Samsung Q80R

QN65Q80RAFXZA 012 Front3 Silver NS 0

  • Available in: 55, 65, 75 & 82-inches
  • Price: Starting at $1299
  • Buy: Samsung.com

The Samsung Q80R is the best smart TV you can buy right now for a few reasons. But the biggest one is the picture quality. It’s going to give you the best looking picture, thanks to it being a QLED TV. That’s going to give you some very bright and vivid colors, and with HDR included, it’s going to look stunning.

This is partly thanks to the Quantum processor that is inside the Q80R, processing the picture to give you the best picture yet. Viewing angles on the Q80R are also pretty insane. Meaning that you can sit anywhere in your living room and still get a really great looking picture when watching the big game.

Samsung uses its own Tizen operating system for its smart TVs. It doesn’t quite have as many apps as Amazon Fire TV, Roku or Android TV, but all of the big name apps are available. Including Netflix, Hulu, YouTube, Amazon Prime Video and much more. Samsung also has support for Apple’s AirPlay 2, iTunes and even Homekit.

Samsung Q80R – Samsung.com

Samsung QN900A 8K QLED TV

QN65QN900AFXZA 012 Front3 Stainless Steel 1600x1200

  • Available in: 65, 75, 85-inches
  • Price: Starting at $4999
  • Buy: Amazon

The QN900A is the second-generation 8K TV from Samsung, so it does have a big improvement over the Q9000R that was on this list previously. It’s also more expensive and only available in bigger sizes. Though, to really see the difference in an 8K TV, you kind of need it in at least a 65-inch model.

This has the new Samsung Neo Quantum Processor 8K which is going to provide a stunning picture on the QN900A. It will also upscale non-8K content to an 8K resolution. Which is needed since there is very few titles available in 8K right now.

It also has what Samsung calls “Infinity Screen” with almost no bezels on any of the sides of the TV. So it can melt into the wall of your home, particularly if you have it mounted.

Samsung QN900A 8K QLED TV – Amazon

Samsung AU8000 Series 4K TV

71LJJrKbezL AC SL1500

  • Available in: 43, 50, 55, 65, 75, 85-inches
  • Price: Starting at $1,797
  • Buy: Amazon

The Samsung AU8000 series is a really good “default” TV. Basically, it’s the one you should buy if you just need a TV for anywhere in your home. It comes in many different sizes from 43-inches up to 85-inches. So it’ll be great in a smaller bedroom, or in your living room.

The AU8000 series has dynamic crystal color and a crystal processor 4K. This is going to provide a really incredible picture, and reveals true-to-life colors, all without paying for a QLED TV.

It also has three HDMI ports, however, there’s no HDMI 2.1 included here. So no 4K120 gaming on this one.

Samsung AU8000 Series 4K TV – Amazon

Samsung QN90A Neo QLED 4K TV

Q90A GalleryImage 1600x1200 1

  • Available in: 50, 55, 65, 75, 85-inches
  • Price: Starting at $1449
  • Buy: Samsung.com

This is the 2021 release of the lower-end Neo QLED TVs from Samsung. It comes in a variety of sizes ranging from 50 to 85-inches. So there’s something for everyone here.

Neo QLED is a sort of new technology that Samsung started using in 2021. This means that it uses Mini LEDs instead of just regular LEDs. Making it a much improved picture over the older models. It’s also brighter, without appearing washed out.

Samsung has AI upscaling available here, thanks to the Neo Quantum Processor 4K. Which ensures that you always get full 4K resolution on your TV.

Samsung QN90A Neo QLED 4K TV – Samsung.com

Samsung QN85A Neo QLED 4K TV

01 QN65QN85AAFXZA 011 Front3 Titan Black 1600x1200 1

  • Available in: 55, 65, 75, 85-inches
  • Price: Starting at $1499
  • Buy: Samsung.com

This Neo QLED TV is actually slightly cheaper than the QN90A series, but it also doesn’t come in the smaller size. You still get to enjoy all the benefits of Neo QLED here though, which is nice.

The Neo Quantum Processor 4K will upscale non-4K content to 4K resolution. So you can really take full advantage of this impressive looking display.

Like the rest of the Samsung TVs on this list, this does also have all of your favorite apps available. Like YouTube, HBO MAX, Netflix, Hulu and much more.

Samsung QN85A Neo QLED 4K TV – Samsung.com

Samsung Frame QLED TV

01 PDP GALLERY Frame product QN75LS03TAFXZA Front black 1600x1200 1

  • Available in: 32, 43, 50, 55, 65, 75-inches
  • Price: Starting at $599
  • Buy: Samsung.com

This is a rather unique QLED TV. This is what Samsung calls “The Frame”. Basically, the bezels are the same width on all four sides, and you can use this as a picture frame when you’re not watching TV. And thanks to QLED offering realistic colors, it can really look like a painting.

That is also why The Frame comes in much more sizes, and smaller sizes, like this 32-inch QLED TV. So it’s a great way to get a smaller TV, with a great looking panel.

Samsung Frame QLED TV – Samsung.com

Samsung Sero QLED 4K TV

Q43TW1 001 Front Navy Blue

This is another odd TV from Samsung. The Sero was announced at CES 2020, and it’s what Samsung envisions as the future for TV. Basically, the TV can rotate to landscape or portrait orientation. Allowing you to watch vertical videos on your TV. That also explains why it comes in just one size.

But this is still a QLED TV, running on Tizen. So all of your favorite apps are available on this one too. But it will take up more space than you probably expected it too. Since it needs to be able to rotate.

Samsung Sero – Samsung.com

Samsung Q70T QLED 4K TV

GalleryCut 01 Q70T 65QTE1 Front2 Black

  • Available in: 55, 65, 75, 82, 85-inches
  • Price: Starting at $899
  • Buy: Samsung.com

This is one of the higher-end QLED TVs from the 2020 release cycle. So it’s not a Neo QLED TV, and that means it is using LED instead of Mini LED for the backlight. So it’s not quite as bright, but you won’t be disappointed with this. Especially since you can get it for under $1000.

It has the same upscaling that almost every 4K TV has these days. Allowing you to watch 1080p content at 4K resolution. It also runs on Tizen, which means your favorite apps are here. Like YouTube, Netflix, Hulu, HBO MAX and more. As well as support for Bixby, Google Assistant, Amazon Alexa, Chromecast, and AirPlay.

Samsung Q70T QLED 4K TV – Samsung.com

Samsung TU9010 Series 4K LED TV

91uYabXqo8L AC SL1500

  • Available in: 86-inches
  • Price: $1897
  • Buy: Amazon

If you’re not sold on QLED, then this is a great TV for your living room or man cave. As this is still LED, and it’s a massive 86-inch TV, which is always nice to have.

It also has a crystal processor 4K, which offers ultra fast processing and can transform everything into 4K quality. It’s powered by Tizen and brings along a ton of your favorite apps like YouTube, Netflix, HBO MAX and much more.

This is likely the cheapest 80+ inch TV that you can purchase today.

Samsung TU9010 Series – Amazon


[ad_2]
Source link

Spotify upgrades one important feature in the latest update

andreasc
-
0
Spotify upgrades one important feature in the latest update
[ad_1]
One of the biggest music streaming services, Spotify, has just announced a small yet meaningful update to its app. Typically, we don’t report on updates that involve minor changes like turning a Heart icon into a Plus, but Spotify’s update does more than just add visual changes.

Earlier today, Spotify officialized a brand-new change that’s beneficial to all its users. The app’s iconic Heart button will be replaced with a Plus button that does more than just marking the songs you want to save.

Basically, Spotify is unifying the Heart and “Add to playlist” icons into a single symbol: the Plus (+) button. This means that when you use the Plus (+) button, you will be able to save and choose the destination of any song, playlist, or podcast with a single tap.

Going forward, in order to save a song or podcast episode, Spotify users must tap the Plus (+) button positioned to the right of the song or episode title in the Now Playing view. After the song or podcast has been added to Liked Songs or Your Episodes, the Plus (+) button will become a green check. Moreover, you can even change the destination of your saved content by simply tapping the green check.

Another option at your disposal makes it possible to add an entire album to Your Library. Simply click the Plus (+) button to add your favorite album, playlist, or audiobook to Your Library. Once you see the green check, it means that it’s been successfully added.

Obviously, the reason behind the new change is a simple, more unified user experience. Having a more streamlined way to save favorite music and podcasts means a lot these days when any extra action makes us lose focus.

Unsurprisingly, this is exactly what Spotify found in its user research. On top of that, the same research found that saving songs and podcasts makes us more likely to listen to them again, which is pretty interesting.

According to Spotify, the new changes to the Heart icon will begin to roll out to all users globally on iOS and Android starting today and will become available to all users in the coming weeks.


[ad_2]
Source link
1...1,4231,4241,425...1,476Page 1,424 of 1,476