Reddit could be blocking all search engines except Google

andreasc
-
0
Reddit could be blocking all search engines except Google
[ad_1]

Google is a company that stays in the headlines consistently for one reason or another. They could either be good reasons or bad reasons. The company made waves by entering a deal with Reddit to use its data to train its AI. Well, it seems that, conveniently, Reddit is only showing search results for Google and no other search engine. This could be a developing story, so more details may come out as time goes on.

Right now, major media companies and publications are entering deals that will fork over their data to AI companies. For example, companies like Axel Springer (owns Business Insider), Vox Media (owns The Verge), and News Corp (owns more than a dozen publications) have entered multi-million-dollar partnerships that will allow OpenAI to legally train on their data.

Well, before many of these deals took place, Google entered a partnership with Reddit that lets the search giant access its content and data. That’s unfortunate, as we found out about this right after we found out that OpenAI was scraping tons of data from social media sites. So, these major companies were making deals that would give AI our data without our knowing.

Reddit seems to be blocking search engines, but not Google

Google isn’t the only search engine this side of the Mississippi. Other search engines have been serving up results for years like Bing (Google’s biggest competitor), DuckDuckGo, Mojeek, and Qwant. There are hundreds out there, but we mostly only know about a handful.

Well, it appears that Reddit only knows one, and that’s Google. According to a new report from 404 Media, when searching for content using “site:reddit.com” you won’t see any recent results if you’re not using  Google. It appears that you won’t see any results from the past week or so. This only goes for search engines that don’t rely on Google’s indexing. If a search engine uses Google’s crawlers, then it will surface results.

Users surmise that this is because of the deal that the two companies cut a few months back. It’s just so convenient that Reddit and Google cut a content deal and suddenly, all non-Gooogle search engines can’t access Reddit’s recent content. However, that hasn’t been confirmed just yet.

Crawlers

While there’s no proof that Reddit is blocking other search engines because of the deal, it would make sense. A bit part of AI tech has to do with what are called “crawlers.” Crawlers “crawl” throughout websites and extract important information from them. If you have a website, it has crawlers from different companies on it at all times. It’s important, as this is how search engines index your site. It’s how they surface your site in search results. So, in order to see your website in Google’s search results, your site needs to be crawled by Googlebot, Google’s crawler.

Well, crawlers are also notorious because AI companies use them to extract data to train their models. Well, there’s a way to combat crawlers. Site developers can use “Robots.txt.” This is a file that tells them not to index that site’s data. However, these files can also make exceptions for certain crawlers, allowing them to crawl the site and not others.

Well, since Reddit allows Google to use its data, there’s a chance that it only allows Google to crawl it, so only it can access its data to train Gemini. However, since other companies aren’t able to crawl it to train their models, they’re also not able to index Reddit and surface search results. That’s only speculation.

Mojeek’s CEO’s situation

According to 404 Media, Mojeek’s CEO, Colin Hayhurst, recounted his experience with this issue. The company realized that Reddit was blocking Mojeek’s crawler from indexing the website.

What makes things worse is the fact that Reddit hasn’t responded to his emails. It’s been nearly two months since he emailed the social media site. He told 404 Media in a call that Reddit is “killing everything for search but Google.”

It’s never happened to us before,” he continued. “Because this happens to us, we get blocked, usually because of ignorance or stupidity or whatever, and when we contact the site you certainly can get that resolved, but we’ve never had no reply from anybody before.”

That’s probably the most frustrating part of this ordeal. Hayhurst has been trying to resolve the issue for over a month with no progress. We’re not sure if other search engines are also experiencing the same issues that he’s experiencing.

Reddit claims no foul play

Reddit has been radio silent to Hayhurst, but not to everyone else. A company spokesperson responded to the accusations.

This is not at all related to our recent partnership with Google. It is not accurate to say recent Reddit results are not coming up in non-Google search engines because of our recent deal with Google,” said spokesperson Tim Rathschmidt to 404 Media. According to Rathschmidt, Reddit has been shooting down crawlers that want to use data to train AI models.

Rathschmidt continues to say that Reddit has been “in discussions with multiple search engines. We have been unable to reach agreements with all of them, since some are unable or unwilling to make enforceable promises regarding their use of Reddit content, including their use for AI.

If true, then that would be good on Reddit. However, we can’t overlook the fact that only Google search engines seem to be getting through to Reddit, and that’s the only company that signed a $60 million deal with it. With that information, it seems that Reddit is only interested in letting sites crawl in if they pay up. That’ll be corroborated if we see news of Microsoft making a deal with Reddit, and suddenly, Bing results start showing recent Reddit posts in its results.

Reddit is already in bad faith with its users. Last year, there was the whole controversy of the company charging an exorbitant amount of money to access its API. After that, signing over its users’ data to Google for use in AI. If Reddit is really selling access to its site for search engines, it could really sour its vision in the public eye.

Developing story

As stated, this is still a developing story, so it will be updated should any more information reach the surface. We’re still waiting for some sort of response from Google on the whole situation.


[ad_2]
Source link

Chinese SMS Phishing Group Hits iPhone Users in India Post Scam

andreasc
-
0
Chinese SMS Phishing Group Hits iPhone Users in India Post Scam
[ad_1]

The notorious Chinese Smishing Triad gang, known for its SMS phishing attacks against Pakistan, the US, and European nations, has now set its sights on iPhone users in India. The group is exploiting iMessage and the government-owned India Post in a sophisticated phishing scam.

FortiGuard Labs has revealed a sophisticated Smishing (SMS Phishing) campaign targeting users of India Post, the country’s government-operated postal system. The scam, attributed to a China-based threat actor known as the Smishing Triad, involves sending deceptive iMessages to iPhone users, claiming that a package is waiting for them at an India Post warehouse.

The fraudulent messages often contain a short URL leading to a fake website designed to mimic the official India Post site. Victims are then prompted to provide sensitive personal information, such as their name, residential address, email ID, and phone number. In some cases, the scammers even request credit card details under the guise of a small redelivery fee.

FortiGuard Labs’ investigation revealed that between January and July 2024, over 470 domain names were registered to impersonate India Post’s official domain. Notably, 296 of these domains were registered through a Chinese registrar, Beijing Lanhai Jiye Technology Co., Ltd., raising concerns about the intentions behind the campaign.

The Smishing Triad has previously targeted other regions, including the US, UK, EU, UAE, KSA, and Pakistan. Their modus operandi involves using third-party email addresses, such as Hotmail, Gmail, or Yahoo, to create Apple IDs and send phishing messages via iMessage. This tactic allows the scammers to bypass traditional email security measures and reach users directly on their iPhones.

Chinese SMS Phishing Group Hits iPhone Users in India Post Scam
Malicious text messages received by users – One of the fake India Post domains used in the scam (Credit: FortiGuard Labs)

According to Fortinet Labs’ report shared with Hackread.com ahead of its publication on Thursday, the phishing campaign is quite sophisticated and well planned. The investment in registering the malicious domain names alone exceeds USD 1500.

Jason Soroko, Senior Vice President of Product at Sectigo, commented on the issue, stating, “The use of third-party email addresses on iMessage facilitates these attacks, highlighting a need for increased awareness and robust security measures among users to mitigate potential financial losses and data breaches.”

Stephen Kowski, Field CTO at SlashNext Email Security+, emphasized the need for comprehensive mobile web threat protection, stating, “As smishing attacks become increasingly sophisticated, organizations must prioritize educating their users on how to identify and report suspicious messages, while also implementing robust security measures that can inspect and mitigate threats in real-time, regardless of the communication channel used.”

To protect themselves from such scams, users are advised to be cautious of unexpected emails or messages, verify URLs before clicking on them, and avoid sharing personal information via email or messaging apps. Enabling multi-factor authentication and keeping software up to date can also help strengthen account security.

  1. Chinese APT Posing as Cloud Services to Spy on Cambodia
  2. Chinese Hackers Stole 60K US State Dept Emails from Microsoft
  3. Chinese Smishing Triad Gang Hits US Users in Cybercrime Attack
  4. Chinese Scammers Exploit Cloned Websites in Gambling Network
  5. How Chinese Hackers Stole Signing Key to Breach Outlook Accounts

[ad_2]
Source link

Threat Actors Claiming Leak of IOC list with 250M Data, CrowdStrike Responded

andreasc
-
0
Threat Actors Claiming Leak of IOC list with 250M Data, CrowdStrike Responded
[ad_1]

A hacktivist entity known as USDoD has asserted that it has leaked CrowdStrike’s “entire threat actor list” and claims to possess the company’s “entire IOC [indicators of compromise] list,” which purportedly contains over 250 million data points.

Details of the Alleged Leak

On July 24, 2024, the USDoD group announced an English-language cybercrime forum, stating that they had obtained and leaked CrowdStrike’s comprehensive threat actor database.

The group provided a link to download the alleged list and shared sample data fields to substantiate their claims.

The leaked information reportedly includes:

  • Adversary aliases
  • Adversary status
  • The last active dates for each adversary
  • Region/Country of Adversary Origin
  • Number of targeted industries and countries
  • Actor type and motivation
Claim of the breach
Claim of the breach

The sample data contained “LastActive” dates up to June 2024, while the Falcon portal’s last active dates for some actors extend to July 2024, suggesting the potential timeframe of the data acquisition.

Join our free webinar to learn about combating slow DDoS attacks, a major threat today.

Cyber Press researchers stated that they were able to view some of the documents leaked.

Background on USDoD

USDoD has a history of exaggerating claims, likely to enhance its reputation within hacktivist and eCrime communities.

For example, they previously claimed to have conducted a hack-and-leak operation targeting a professional networking platform, which was later debunked by industry sources as mere web scraping.

Since 2020, USDoD has engaged in both hacktivism and financially motivated breaches, primarily using social engineering tactics.

In recent years, they have focused on high-profile targeted intrusion campaigns and have sought to expand their activities into administering eCrime forums.

USDoD also claimed to possess “two big databases from an oil company and a pharmacy industry (not from the USA).” However, the connection between these claims and the alleged CrowdStrike data acquisition remains unclear.

The potential leak of CrowdStrike’s threat actor database could have significant implications for cybersecurity:

  • Compromise of ongoing investigations
  • Exposure of tracking methods for malicious actors
  • Potential advantage for cybercriminals in evading detection

This story unfolds following a CrowdStrike update that caused Windows machines to experience the Blue Screen of Death (BSOD) error.

CrowdStrike’s Response

CrowdStrike, a leading cybersecurity firm known for its threat intelligence and incident response services, has responded to the claims. The company stated:

“The threat intel data noted in this report is available to tens of thousands of customers, partners, and prospects – and hundreds of thousands of users. Adversaries exploit current events for attention and gain. We remain committed to sharing data with the community.”

While USDoD has been involved in legitimate breaches, its credibility in this specific case is questionable.

Their history of exaggeration, the inconsistencies in the leaked data, and CrowdStrike’s response all cast doubt on the authenticity and severity of the claimed leak.

Protect Your Business Emails From Spoofing, Phishing & BEC with AI-Powered Security | Free Demo


[ad_2]
Source link

Best Samsung Galaxy Watch Ultra Deals

andreasc
-
0
Best Samsung Galaxy Watch Ultra Deals
[ad_1]

While the Samsung Galaxy Watch Ultra is the company’s first “Ultra” smartwatch, and it really doesn’t disappoint. In my review, I called it the “Best Wear OS smartwatch available” and that will likely be true for a good amount of time. As we’re only expecting the Pixel Watch 3 to launch this year with Wear OS now. It’s a huge 47mm smartwatch that is made for those that are more outdoorsy. We’re talking hikers, cyclists and runners. As this is a much more durable smartwatch, with the MIL-STD-810H certification.

The Galaxy Watch Ultra comes in Titanium White, Titanium Silver and Titanium Black, with different bands for each one. Samsung has created a new band mechanism for attaching to the watch, so unfortunately your old bands won’t work on this one. But there are Marine, Trail and Peakform bands available.

In this article, we’ll be showing you the best deals you can get on the Galaxy Watch Ultra and we’ll be keeping it updated too.


[ad_2]
Source link

Microsoft’s Windows Hello for Business Flaw Let Attackers Bypass Authentication

andreasc
-
0
Microsoft’s Windows Hello for Business Flaw Let Attackers Bypass Authentication
[ad_1]

Researchers have uncovered a vulnerability in Microsoft’s Windows Hello for Business (WHfB) that allows attackers to bypass its robust authentication mechanism.

This flaw, which downgrades the authentication process to a less secure method, has raised concerns about the security of enterprise environments relying on WHfB for phishing-resistant authentication.

What is Windows Hello for Business?

According to the Medium blog report, Windows Hello for Business is a sophisticated authentication mechanism that enhances security using a cryptographic key pair stored on the user’s device.

It leverages the Trusted Platform Module (TPM) to store the private key securely while the public key is sent to the authentication server. The process involves two main phases:

  1. Registration: Users register for WHfB, creating a cryptographic key pair. The private key is stored in the TPM, and the public key is sent to the server.
  2. Authentication: When users authenticate, they use their Windows Hello PIN or fingerprint, which triggers the encryption of a nonce (unique challenge) issued by Microsoft. This encrypted nonce, along with the origin field, is sent back to the server for validation.
Windows Hello for Business prompt
Windows Hello for Business prompt

The Flaw: Bypassing WHfB Authentication

The vulnerability in WHfB allows attackers to intercept and alter the authentication requests, coercing users into using a less secure, phishable authentication method.

Join our free webinar to learn about combating slow DDoS attacks, a major threat today.

This can be achieved by manipulating the POST request values, specifically the isFidoSupported parameter and the User-Agent header.

Regular sign-in using WHfB
Regular sign-in using WHfB

Exploitation Process

  1. Intercepting Requests: Attackers use tools like Burp Suite to intercept the outgoing authentication request.
  2. Modifying Parameters: They change the isFidoSupported parameter to false or alter the User-Agent header to an unsupported value.
  3. Downgrading Authentication: This manipulation downgrades the authentication method from WHfB to a standard, less secure method, which can be easily phished using frameworks like EvilGinx.

A proof of concept (PoC) video demonstrates how this attack can be executed.

The authentication method is downgraded by intercepting the POST request to /common/GetCredentialType and changing the isFidoSupported parameter, allowing attackers to bypass WHfB.

Automated Exploitation with EvilGinx

Researchers have modified the EvilGinx framework to automate this attack. EvilGinx is a tool used for phishing attacks, and the customizations include:

  • Modifying the core/http_proxy.go file: This allows manipulation of POST requests with JSON bodies.
  • Creating a Phishlet: A phishlet is a customizable template for creating phishing pages.
  • The phishlet for this attack alters the POST request to /common/GetCredentialType to set isFidoSupported to false and hides the “Sign-in options” button.

Snippet from BurpSuite’s intercept proxy (/common/GetCredentialType) showing the value “isFidoSupported”

/ set the value of the specified key in the JSON body
func SetJSONVariable(body []byte, key string, value interface{}) ([]byte, error) {
    var data map[string]interface{}
    if err := json.Unmarshal(body, &data); err != nil {
        return nil, err
    }
    data[key] = value
    newBody, err := json.Marshal(data)
    if err != nil {
        return nil, err
    }
    return newBody, nil
}

lp() function

Firstly, find the document element by class (table), which belongs to the box containing the various sign-in methods — such as Fido/WHfB authentication:

Identifying the class name `table`
Identifying the class name `table`

Recommendations for Mitigation

Microsoft recommends creating conditional access policies using authentication strength to mitigate this attack vector.

This involves:

  1. Implementing Strong Authentication for Cloud Apps: Enforce phishing-resistant authentication methods across all cloud applications.
  2. Creating Custom Authentication Strengths: Define custom authentication strengths that include phishing-resistant methods like Temporary Access Pass (TAP).
  3. Secondary Policy for Registering Phishing-Resistant Methods: Implement a secondary Conditional Access (CA) policy for users registering new methods via compliant devices.

The discovery of this vulnerability in Windows Hello for Business highlights the need for continuous vigilance and robust security practices.

By implementing strong authentication policies and staying informed about potential threats, organizations can better protect their sensitive data and maintain the integrity of their authentication processes.

Windows Hello for BusinessCaption: Windows Hello for Business aims to provide a secure and phishing-resistant authentication mechanism.

Organizations must adopt advanced security measures as cyber threats evolve and stay ahead of potential vulnerabilities.

The flaw in Windows Hello for Business serves as a reminder of the importance of layered security and proactive risk management. 

This comprehensive news article provides an in-depth look at the vulnerability in Microsoft’s Windows Hello for Business, detailing the exploitation process, proof of concept, and recommendations for mitigation.

By understanding the mechanics of this flaw and implementing the suggested security measures, organizations can enhance their defense against sophisticated phishing attacks.

Protect Your Business Emails From Spoofing, Phishing & BEC with AI-Powered Security | Free Demo


[ad_2]
Source link

You can now talk to Gemini without installing it, here’s how

andreasc
-
0
You can now talk to Gemini without installing it, here’s how
[ad_1]

Google Gemini is one of the AI tools out there that’s getting more popular by the hour: now there’s a way to talk to it without installing it.

Okay, with the Google Gemini support team, at least! That’s because Google’s Gemini model service is getting its own X account. That’s a surprise, given that Google’s previous virtual helper, a.k.a. Google Assistant, never had a dedicated account on the former Twitter platform.

Now, things are changing, and the search engine giant naturally wants to put Gemini in the spotlight. Hey, AI models could very well prove to be the Eight Wonder of the World, but even champions need a bit of advertising!

A tad more than two months ago, at the annual Google I/O conference, the presentation was all about AI. The two-letter abbreviation was mentioned no less than 120 times on stage.

Gemini is an advanced voice assistant powered by Google’s latest Language Learning Models (LLMs) and a successor to the aforementioned Google Assistant, although both currently coexist. This is due to some features not being fully compatible between the two. However, compatibility is improving, and it’s possible that Gemini will eventually replace Google Assistant entirely.

“We’re the Gemini app team, your inside source for product news, tips & tricks, and unfiltered enthusiasm”, reads the short bio of the X @GeminiApp account.

Currently, there are only two posts, with the first one reading “*taps mic* Is this thing on?

The second one is in the form of a short video stating that the X account will be the “go-to resource for the latest news, tips and updates”:


A new voice for Gemini


Google’s Gemini is getting more than just an X account. The smart assistant currently offers a single voice so far, but things are changing. Now, Gemini is beginning to offer a second voice option. Originally, Gemini’s voice had a male sound, but it is now introducing a voice that sounds female. This update appears to be in limited testing and is not yet available globally.

While this update might not seem significant, it represents a refinement expected from digital assistants. Offering users the ability to customize the voice of their digital assistant enhances the user experience. Customization is always a welcome feature, providing users with a more personalized interaction.

When this update becomes available globally (no timeline has been provided yet), users will have the option to choose the tone with which Gemini communicates. It is hoped that even more voice options will be introduced in the future.

[ad_2]
Source link

Google Messages update brings Snapchat-like face filters

andreasc
-
0
Google Messages update brings Snapchat-like face filters
[ad_1]

Google Messages is about to get more fun with a new feature that has somewhat started to be released. It’s now quietly rolling out: we’re getting Snapchat-like face filters. The filters are available with the in-app camera UI, and you can find the relevant icon to the left of the camera shutter button (if you’ve received the update).

The new feature was first unearthed by Android Authority and their APK teardown searches in code to find hints of new features. According to their discovery, you’ll be getting nine filter options, including a bunny, a dinosaur, a basic touch-up, and hats.


So far, it seems this isn’t a wide release just yet, and the feature isn’t available to most people at the moment. It should be rolling out gradually though, so if you don’t see it yet, you have to wait for some time to get it.

That feature may not be as fun for some (I, for one, may now be too old for it), but it’s a nice little addition to Google Messages and is in line with Google preparing a variety of features for the app. Now that it’s replacing Samsung Messages in the US on flagship Galaxy phones, the app should get even more updates so the switch isn’t disappointing.

Izzy, a tech enthusiast and a key part of the PhoneArena team, specializes in delivering the latest mobile tech news and finding the best tech deals. Her interests extend to cybersecurity, phone design innovations, and camera capabilities. Outside her professional life, Izzy, a literature master’s degree holder, enjoys reading, painting, and learning languages. She’s also a personal growth advocate, believing in the power of experience and gratitude. Whether it’s walking her Chihuahua or singing her heart out, Izzy embraces life with passion and curiosity.


[ad_2]
Source link

LummaC2 Malware Using Steam Gaming Platform as C2 Server

andreasc
-
0
LummaC2 Malware Using Steam Gaming Platform as C2 Server
[ad_1]

Cybersecurity experts have uncovered a sophisticated variant of the LummaC2 malware that leverages the popular Steam gaming platform as a Command-and-Control (C2) server.

This new tactic marks a significant evolution in the malware’s distribution and operational mechanisms, posing a heightened threat to users and organizations worldwide.

The Rise of LummaC2

LummaC2 is an information-stealing malware that has been actively distributed by masquerading as illegal programs such as cracks, keygens, and game hacks.

These malicious files are disseminated through various channels, including distribution sites, YouTube, LinkedIn, and even search engine advertisements, using a technique known as SEO poisoning.

Recently, the malware has also been disguised as legitimate applications like Notion, Slack, and Capcut, further broadening its reach.

According to the ASEC ahnlab reports, Initially, LummaC2 was distributed as a single executable (EXE) file or through DLL-SideLoading, where a malicious DLL is compressed together with a legitimate EXE file.

This method allowed the malware to execute its payload while remaining under the radar of many security systems.

Distribution in single EXE form (left), distribution in DLL form (right)
Distribution in single EXE form (left), distribution in DLL form (right)

Exploiting Steam for C2 Domains

In its latest variant, LummaC2 has adopted a novel approach by exploiting the Steam gaming platform to obtain C2 domain information. Previously, all C2 information was embedded within the malware sample itself.

Join our free webinar to learn about combating slow DDoS attacks, a major threat today.

However, attackers can dynamically change the C2 domain by leveraging a legitimate platform like Steam, enhancing the malware’s resilience and reducing the likelihood of detection.

This technique is not entirely new; it mirrors the strategy used by the Vidar malware, which has a history of exploiting various legitimate platforms such as TikTok, Mastodon, and Telegram to obtain C2 information.

LummaC2 exploit Steam page (left), Vidar exploit Steam page (right)
LummaC2 exploit Steam page (left), Vidar exploit Steam page (right)

Decryption and Execution

Upon execution, LummaC2 decrypts its internal encrypted strings to obtain C2 domain information. The encryption uses Base64 and a proprietary algorithm, with each sample containing approximately 8 to 10 C2 domains.

C2 domain decryption code
C2 domain decryption code

The malware initiates a Steam connection routine if all embedded C2 domains are inaccessible. Unlike the C2 domain, the Steam URL is stored in executable code, and the decryption algorithm differs.

The Steam URL points to a Steam account profile page believed to be created by the attacker. The malware obtains a string by parsing the “actual_persona_name” tag on this page, which is then decrypted using the Caesar cipher to reveal the C2 domain.

Steam account page source
Steam account page source

Dynamic C2 Domain Management

Using a legitimate domain like Steam, with its vast user base, helps reduce suspicion and allows the attacker to change the C2 domain if needed easily.

This flexibility increases the attack’s success rate and makes it more challenging for security systems to block the malware.

Once the C2 domain is decrypted, LummaC2 connects to the C2 server and downloads an encrypted settings JSON file. This file is then decrypted, and the malware performs various malicious actions based on the settings.

The stolen information is sent back to the C2 server and includes:

  • Wallet program information
  • Browser storage information
  • Password storage program information
  • TXT files in the user directory
  • Messenger program information
  • FTP program information
  • VPN program information
  • Remote program information
  • Memo program information
  • Mail program information
  • Browser extension plugin (virtual currency wallet) information
Part of LummaC2 settings JSON
Part of LummaC2 settings JSON

The exploitation of the Steam gaming platform by LummaC2 malware represents a significant escalation in cyber threats.

By leveraging a legitimate and widely used platform, attackers can dynamically manage C2 domains, making the malware more resilient and harder to detect.

This development underscores the need for heightened vigilance and advanced security measures to protect against evolving cyber threats.

Recommendations

To mitigate the risk posed by LummaC2 and similar malware, users and organizations should:

  1. Avoid Downloading Illegal Software: Refrain from downloading cracks, keygens, and game hacks from untrusted sources.
  2. Use Reputable Security Software: Employ advanced antivirus and anti-malware solutions that can detect and block such threats.
  3. Regularly Update Software: Ensure all software, including security programs, is up-to-date to protect against known vulnerabilities.
  4. Educate Users: Raise awareness about the dangers of downloading and executing unknown files, and promote safe online practices.
  5. Monitor Network Traffic: Implement network monitoring tools to detect unusual traffic patterns that may indicate a malware infection.

By adopting these measures, users and organizations can better defend against LummaC2’s sophisticated tactics and other evolving cyber threats.

Protect Your Business Emails From Spoofing, Phishing & BEC with AI-Powered Security | Free Demo


[ad_2]
Source link

Threads update gives you the option to save search results as a dedicated feed

andreasc
-
0
Threads update gives you the option to save search results as a dedicated feed
[ad_1]

Threads, Meta’s answer to X (formerly Twitter) is getting more and more users and it’s been graced with some nice updates this year. Earlier, we had real-time search results, which helped you find posts in the order in which they were posted. Now, Threads is getting a new update that allows you to create dedicated feeds based on search results.

The new experience is gradually rolling out to mobile users right now. This feature lets you search for a topic and then bookmark the search results, which creates a dedicated feed that shows up in the Home tab, accompanied by the For You and Following feeds. 

The feature was already available for the desktop version.

Threads recently celebrated more than 175 million monthly active users and a one-year anniversary. Initially, the social media platform was launched with lots of pretty basic features missing, and most of these issues have now been addressed for a very nice experience. We now have a built-in translation, chronological search, fast switching between accounts, tabs, and more.

Threads is a direct competitor to Elon Musk’s X, which used to be Twitter. It’s a platform focused on short posts with a limit of 500 characters and is a useful way to share information and express your opinion (if you can do that in short posts, which is something beyond me).

This new update for mobile is extra useful, especially if you want to closely follow a specific topic and how it unfolds. It almost makes me want to create a Threads account now, just to try all of this out.

Izzy, a tech enthusiast and a key part of the PhoneArena team, specializes in delivering the latest mobile tech news and finding the best tech deals. Her interests extend to cybersecurity, phone design innovations, and camera capabilities. Outside her professional life, Izzy, a literature master’s degree holder, enjoys reading, painting, and learning languages. She’s also a personal growth advocate, believing in the power of experience and gratitude. Whether it’s walking her Chihuahua or singing her heart out, Izzy embraces life with passion and curiosity.


[ad_2]
Source link

63,000 IG accounts banned after a horrific crime wave with devastating consequences

andreasc
-
0
63,000 IG accounts banned after a horrific crime wave with devastating consequences
[ad_1]

, Meta is also taking actions into its own hands. It’s not about self-harm though, but instead, Meta is trying to combat a horrific crime that can have devastating consequences.

Financial sextortion: over recent years, there’s been a growing trend of scammers (cybercriminals known as Yahoo Boys) who target people across the internet.

– Meta blog, July 24, 2024

That’s why Meta announced the “strategic network disruption” of two sets of accounts in Nigeria affiliated with Yahoo Boys and involved in financial sextortion scams.

Zuck’s conglomerate removed approximately 63,000 Instagram accounts in Nigeria that engaged in the horrible scam. This included a coordinated network of around 2,500 accounts linked to a group of about 20 individuals. These scammers primarily targeted adult men in the US, using fake accounts to conceal their identities.

The coordinated network of around 2,500 accounts was identified through new technical signals and in-depth investigations by expert teams. Most of these accounts had already been detected and disabled by enforcement systems, and the investigation facilitated the removal of the remaining accounts and enhanced the understanding of the techniques used to improve automated detection.

The investigation revealed that most of the scammers’ attempts were unsuccessful and primarily targeted adults, although some attempts targeted minors. What an appaling thing to do! These accounts were reported to the National Center for Missing and Exploited Children (NCMEC). Relevant information is also shared with other tech companies through the Tech Coalition’s Lantern program to enable broader action.

Applying lessons from dismantling terrorist groups and coordinated inauthentic behavior, the identification of this network helped uncover more accounts in Nigeria attempting similar sextortion scams, bringing the total to around 63,000 accounts removed.

I’m sure that each of the said 63,000 scam accounts has targeted more than one potential victim, so the total number of affected people could amount to some staggering figures. This is an epidemic that has to be dealt with.

Secondly, Meta removed approximately 7,200 assets, including 1,300 Facebook accounts, 200 Facebook Pages, and 5,700 Facebook Groups in Nigeria that provided tips for conducting scams. These efforts included selling scripts and guides for scamming and sharing links to photo collections for fake accounts.

Since this disruption, systems have been identifying and automatically blocking attempts by these groups to re-establish their activities. New tactics observed have been used to further improve the detection of accounts, Groups, and Pages engaging in such activities.

Meta aims to help people recognize and avoid these scams while making it difficult for the criminals to succeed. Teens under 16 (under 18 in certain countries) are defaulted into stricter message settings to prevent them from being messaged by anyone they are not connected to, and Safety Notices encourage them to be cautious.

Meta has developed new signals to identify accounts potentially engaging in sextortion and is taking steps to prevent these accounts from finding and interacting with teens. Additionally, an on-device nudity protection feature in Instagram DMs is being tested, which will blur images detected as containing nudity, encourage caution when sending sensitive images, and direct users to safety tips and resources, including NCMEC’s Take It Down platform.

The Take It Down platform is a service that is described as “a step you can take to help remove online nude, partially nude, or sexually explicit photos and videos taken before you were 18”.

Take It Down works by assigning a unique digital fingerprint, called a hash value, to nude, partially nude, or sexually explicit images or videos of people under the age of 18. Online platforms can use hash values to detect these images or videos on their services and remove this content. This all happens without the image or video ever leaving your device or anyone viewing it. Only the hash value will be provided to NCMEC.


[ad_2]
Source link
1...262728...1,474Page 27 of 1,474