Hackers Registered 500k+ Domains Using Algorithms For Extensive Cyber Attack

andreasc
-
0
Hackers Registered 500k+ Domains Using Algorithms For Extensive Cyber Attack
[ad_1]

Hackers often register new domains for phishing attacks, spreading malware, and other deceitful activities. 

Such domains are capable of pretending to be trusted entities, which helps to make individuals disclose their sensitive details or download harmful content.

Cybersecurity researchers at InfoBlox recently discovered that hackers have registered more than 500k domains by using Registered Domain Generation Algorithms for extensive cyber attacks.

Hackers Registered 500k+ Domains

Registered Domain Generation Algorithms (RDGAs) are an evolution of the traditional DGAs that threat actors have used to register domains secretly, numbering up to millions.

Protect Your Business Emails From Spoofing, Phishing & BEC with AI-Powered Security | Free Demo

On the other hand, unlike malware-based DGAs, RDGAs are flexible and can be used for various malicious purposes, such as phishing, malware, and scams.

Besides this, researchers unveiled Revolver Rabbit, an RDGA threat actor associated with XLoader malware, and Hancitor malware’s long-time use of RDGA for C2 domains.

They utilize harder-to-detect RDGAs as opposed to traditional DGAs, and criminal groups and legitimate businesses apply them. Some registrars even provide domain variant generation tools.

Difference in domain registration behaviors of traditional DGAs and registered DGAs (Source – InfoBlox)

This new technique significantly alters the DNS threat landscape, creating more challenges in cybersecurity.

RDGAs vary from traditional DGAs in that they are used to register many domains privately.

Due to the complicated patterns exhibited by RDGAs, which range from random characters to constructed word combinations, detecting them is difficult without massive DNS data analysis.

The case study of Hancitor malware shows how RDGAs turned into C2 domain generators and adopted a repeated character pattern like typical English words.

Infoblox created a statistical model in 2018 for preemptively identifying and blocking domains created by Hancitor’s RDGA, which helps underscore the need for advanced detection techniques for these maturing threats.

Revolver Rabbit, a famous horn-stepper from RDGA, has registered more than 500,000 domains on the .bond TLD alone by using changeable patterns that mix up dictionary words, numbers, and country codes.

It is important to note that these actors’ domains have been linked to XLoader malware, which reminds us of the significance of RDGA detection.

During the six-month period in question, around 2 million unique RDGA domains were detected at an average rate of 11,000 new ones per day in approximately 52,000 actor groups.

Manual research is ineffective as of the magnitude and intricacy of RDGA operations, consequently, automatic detection must remain the frontline defense against such threats.

Organizations should be aware of multiple malicious activities associated with RDGAs and implement advanced DNS analytics-based security solutions for their networks.

Indicators Of Activity

Join our free webinar to learn about combating slow DDoS attacks, a major threat today.


[ad_2]
Source link

Get a $300 Amazon Gift Card with Galaxy Z Fold 6 Pre-Order!

andreasc
-
0
Get a $300 Amazon Gift Card with Galaxy Z Fold 6 Pre-Order!
[ad_1]

Amazon is still offering a $300 gift card when you pre-order the Samsung Galaxy Z Fold 6, and this does also include a free storage upgrade. So for $1,899, you’re getting a bump to 512GB of storage, along with a gift card that can be used to buy accessories, cases and much more.

The Galaxy Z Fold 6 is a really great phone from Samsung, and honestly, while it looks like an iterative upgrade, it’s a lot more than that. I’ve been using it for almost two weeks now, and it’s still hard to put it down. Thanks to the new boxy design, it looks a lot more premium than the previous models. It also is a tiny bit wider and shorter, which makes the front display a lot more usable. Finally, the new hinge is a huge upgrade. Not only does it feel stronger, but it is also smaller and lighter.

Inside the Galaxy Z Fold 6, Samsung has included the Snapdragon 8 Gen 3 for Galaxy, with 12GB of RAM and 256GB, 512GB or 1TB of storage. It also includes a 4,400mAh capacity battery which isn’t that large and is the same size as the Galaxy Z Fold 3. However, thanks to improvements in efficiency with the processor, it does have better battery life than its predecessor.

The Galaxy Z Fold 6 is available in pink, navy and silver shadow from Amazon and you can order yours from the link below.

Buy at Amazon


[ad_2]
Source link

40 GB of Confidential Data Exposed

andreasc
-
0
40 GB of Confidential Data Exposed
[ad_1]

Daikin, the world’s largest air conditioner manufacturer, has become the latest target of the notorious Meow hacking group.

The USA branch of Daikin has been listed as a victim, with hackers demanding a ransom of $40,000. The incident has raised significant concerns about cybersecurity vulnerabilities in major corporations.

40 GB of Confidential Data Exfiltrated

According to a HackManac tweet, the Meow hacking group has allegedly exfiltrated 40 GB of confidential data from Daikin. This data reportedly includes sensitive account information, bank details, and transaction records.

The breach has potentially exposed critical financial information, posing a significant risk to the company’s operations and customer trust.

Protect Your Business Emails From Spoofing, Phishing & BEC with AI-Powered Security | Free Demo

The hacking group has a history of targeting high-profile organizations, and their latest attack on Daikin underscores the growing threat of cybercrime.

The hackers have reportedly provided samples of the stolen data to substantiate their claims, adding pressure on Daikin to meet their demands.

Ransom Demand and Cybersecurity Concerns

The Meow hacking group has demanded a ransom of $40,000 in exchange for not releasing the stolen data.

This demand places Daikin in a precarious position. Paying the ransom could set a dangerous precedent, while refusing could expose sensitive information to the public.

The industry and cybersecurity experts will closely watch the company’s response to this crisis.

Daikin has yet to release an official statement regarding the breach. Still, they are expected to work closely with cybersecurity professionals and law enforcement agencies to address the situation.

This incident serves as a stark reminder of the importance of robust cybersecurity measures and cybercriminals’ ever-evolving tactics.

As the investigation unfolds, stakeholders will be keen to see how Daikin navigates this challenging situation and what steps they will take to prevent future breaches.

The outcome of this incident could have far-reaching implications for the company’s reputation and the broader industry.

Join our free webinar to learn about combating slow DDoS attacks, a major threat today.


[ad_2]
Source link

Blackmagic Camera app expands Android support: OnePlus, Xiaomi, more Pixel and Galaxy phones

andreasc
-
0
Blackmagic Camera app expands Android support: OnePlus, Xiaomi, more Pixel and Galaxy phones
[ad_1]
Last month, Blackmagic, renowned for its top-tier digital film cameras and DaVinci Resolve editing software, launched a free camera app for Android. Initially, the app was only compatible with a handful of recent flagship models. But now, it’s expanding to support more devices.

Blackmagic Camera 1.1 for Android adds support for the Pixel 6 series, as well as OnePlus and Xiaomi phones


On Threads, Blackmagic has announced that version 1.1 of its Camera app for Android is now compatible with several new devices, including:
The Blackmagic Camera 1.1 for Android update brings several new features, including HDMI monitoring support, pull focus transition controls, and integration with Blackmagic Cloud for Organizations. This new cloud feature lets you set up groups or teams for quick and easy project sharing.

The update also adds support for 3D LUTs during recording and monitoring, allowing for more advanced color grading. Plus, you can now dim the screen while recording, which is great for low-light situations. Plus, the app now includes image retouching tools like noise reduction and sharpening to enhance your footage. Performance has also been ramped up for a smoother experience.

If you’re eager to check out Blackmagic Camera 1.1 on your device, you can download the update from the Google Play Store.

It’s exciting to see more devices added to the list, and it would be awesome to see even more soon. For instance, foldable phones like the Pixel Fold or Galaxy Z Fold models would be great additions. Their large screens are perfect for editing and taking full advantage of all the features Blackmagic Camera has to offer.

[ad_2]
Source link

Emojis Are To Express Emotions, But CyberCriminals Using for Attacks

andreasc
-
0
Emojis Are To Express Emotions, But CyberCriminals Using for Attacks
[ad_1]

There are 3,664 emojis that can be used to express emotions, ideas, or objects in digital communication.

While seemingly harmless, criminals are increasingly exploiting emojis for covert communication in illegal activities. This allows them to conduct transactions and target victims while evading detection by law enforcement and text-based filtering systems. 

Law enforcement’s text-based detection methods struggle to interpret emojis, which can bypass filters and have subjective meanings, making it hard to distinguish between intended and malicious use. 

 DEA Emoji Drug Code Cheat Sheet 

Emojis create ambiguity for analysts and automated systems even when combined with text.

Protect Your Business Emails From Spoofing, Phishing & BEC with AI-Powered Security | Free Demo

Emojis’ ongoing evolution makes it more challenging for law enforcement to stay on top of the gap between detection and prevention. 

Criminals leverage emojis to conceal their activities online.

Drug dealers use specific emojis, like pills, plants, and crystals, to represent different narcotics, which allows for clear communication about pricing, quantities, and locations despite variations in devices and platforms. 

DISGOMOJI Emoji Cheat Sheet 

Law enforcement agencies like the DEA track these evolving codes. Similarly, human traffickers utilize emojis like high heels and roses to advertise and communicate about victims on social media, exploiting the internet’s reach. 

Cybercriminals embed emojis in phishing emails and malware to bypass text-based security filters, which highlights the challenge emojis pose for law enforcement due to their ability to act as a covert communication language. 

According to DarkOwl, romance scammers leverage emojis to build rapport with victims, while emojis like hearts and kisses create a false sense of intimacy and trust, making victims more vulnerable to manipulation. 

This approach transcends language barriers and platforms, allowing scammers to maintain a consistent, relatable persona across dating apps, social media, and messaging services, which ultimately increases the scammer’s success rate. 

Fraudsters leverage emojis to mask communication about financial crimes like money laundering and credit card fraud by using emojis like credit card, money bag, and package to symbolize their illegal activity. 

Fraudster Posts contain Emojis

Emojis help obfuscate content for potential victims. Since emoji encoding is standardized, fraudsters can easily manage multiple platforms with the same messaging, enabling them to reach a wider audience without customizing content for each platform. 

They function as a visual language supplement that transcends spoken or written language barriers, which is particularly helpful for non-verbal individuals and multicultural families.

Emojis visually convey emotions, ideas, and everyday activities, enabling communication regardless of spoken language proficiency. 

Emojis provide a way for nonverbal individuals to express emotions and needs. For multicultural families, they bridge the communication gap between family members who speak different languages. Emojis are also helpful for migrant families as they integrate into new communities by facilitating communication of basic needs and emotions.

Join our free webinar to learn about combating slow DDoS attacks, a major threat today.


[ad_2]
Source link

Some Android users can already talk to their Google Photos gallery: ‘Ask Photos’ is the test drive zone

andreasc
-
0
Some Android users can already talk to their Google Photos gallery: ‘Ask Photos’ is the test drive zone
[ad_1]

Google Photos is getting beyond smart: it’s getting artificially intelligent, as in AI!

That’s no surprise for anyone who watched the Google I/O conference in mid-May this year; during the presentation, the term ‘AI’ was mentioned over 120 times. If you were watching it live, these 120 times felt more like 1,200, but that’s another story.

One of the announcements – the Ask Photos feature – is now going live for some, but only for a testing phase. Things are not final and are about to be polished up, ironed out and enhanced before Ask Photos goes live for everybody.

Ask Photos is all about Gemini (Google’s AI model) getting more integrated into the popular Photos app, which will soon handle tasks based on your commands.

As previewed by Google, Ask Photos will help users find specific images or details within them with a smart, AI-powered search. The new Ask Photos feature leverages Gemini to understand image content, allowing for more advanced searches. For instance, it can identify a car license plate and let users ask about a specific plate number on a particular car model for precise identification.

Or, one could use Ask Photos to get the very best ten photos from that trip last year – in theory, this could be highly useful, if you’re the kind of person who takes 2,000-3,000 photos per day. On the other hand, you’re relying completely on Ask Photos and its understanding of what a ‘good photo’ is. Choices will have to be made!

Now, a 9to5Google report shines a light on Ask Photos on a Pixel 8 Pro – a user got a notification that their Google Photos app was part of a “pre-release” study. The disclaimer suggests Google is seeking feedback from some users, but the scope of this “study” remains unclear.

So, Ask Photos logically appears on the Search tab in the Google Photos app. A prominent Ask button with the Gemini logo appears next to the search bar. This is a new design, as Google previously showed the feature as a dedicated tab within the app. Of course, that was more than two months ago, so of course things like button positions and overall design are subject to change.

Here’s how it looks:

When you hit that Ask button, a page pops up. “What would you like to see?”, the new page reads. It offers example prompts (like: “Photos of me over time”) or the option to write your own question. Unfortunately, the sample prompt “Photos of me over time” wasn’t functional, and the feature disappeared for the user who got an early glimpse of it.

The exact release date for “Ask Photos” is still unknown, but its brief availability as part of this “study” suggests it could be relatively close. Google previously mentioned the feature would arrive in the summer.

[ad_2]
Source link

WhatsApp is not letting go of the plan to let you hide your phone number: choose a username!

andreasc
-
0
WhatsApp is not letting go of the plan to let you hide your phone number: choose a username!
[ad_1]
For almost a year and a half, WhatsApp has been teasing us with its idea to let users hide their phone numbers and introduce usernames.

At the beginning of 2024, the world’s most popular messaging app (over 2 billion monthly users), once again hinted at such a feature coming in the near future.

Now, the highly informative WABetaInfo platform reports that these plans, albeit delayed, are not yet scrapped.

WhatsApp is still working on a feature that will let users create unique usernames, enhancing privacy by allowing messaging without sharing phone numbers. This feature, currently in development, is expected to be available in a future update of the web client. Once it’s active on the web client, I expect it to arrive on Android and iOS as well, so stay tuned!

The goal is to enable users to personalize their profiles and connect using a unique identifier. This will add an extra layer of privacy and convenience, as users can find and connect with friends, family, and contacts without sharing phone numbers.

The report shows a screenshot from WhatsApp’s ongoing exploration of this feature, scheduled for a future update:

So, users will be able to select a unique username, provided it hasn’t been taken. Unlike platforms like Discord, WhatsApp usernames will be unique without a discriminator or tag, ensuring no confusion or duplication.

Users will check the availability of their desired username during setup, securing a unique identifier.

However, existing contacts who have your phone number – the prerequisite for joining WhatsApp – will still be able to find you on WhatsApp. Once a username is set, only those who know your username or phone number can contact you, adding control over who can initiate conversations.

In a nutshell, if you want to chat with someone and not have them see your phone number, you could do so thanks to the username. However, people who already have your phone number will still be able to find you on WhatsApp, ensuring that your existing contacts or other people you trust can continue to reach you using the default method.

Although WhatsApp has been developing this feature for some time, it remains in development, with specific release details uncertain.


[ad_2]
Source link

A week in security (July 15 – July 21)

andreasc
-
0
A week in security (July 15 – July 21)
[ad_1]

Last week on Malwarebytes Labs:

Last week on ThreatDown:

Stay safe!

Our business solutions remove all remnants of ransomware and prevent you from getting reinfected. Want to learn more about how we can help protect your business? Get a free trial below.

Summer mega sale

Go into your vacation knowing you’re much more secure: This summer you can get a huge 50% off a Malwarebytes Standard subscription or Malwarebytes Identity bundle. Run, don’t walk!


[ad_2]
Source link

X is working on a feature that allows you to disable links in replies to your post

andreasc
-
0
X is working on a feature that allows you to disable links in replies to your post
[ad_1]

X is working on addressing spam posts on the platform. One of its latest efforts on this front is a new feature that’s been discovered by Nima Owji, an independent app researcher. The researcher has uncovered unreleased X features in the past and now says that X is working on the ability to disable links in replies.

Users will be able to tick a box for the option if they don’t want people to respond with links to their posts.


Christopher Stanley, who’s the Senior Director for Security Engineering at the social media platform has confirmed that the feature exists in a separate post. The feature helps keep spam bots away and prevents real humans from promoting themselves and their websites on other people’s posts. Unfortunately, it can also prevent people from posting legitimate sources if they’re trying to debunk false information.

As with almost anything these days, this feature as you can see can be a double-edged sword. It is great to prevent scammers but it would be bad in the case where it fails to stop false information from spreading. We’ll see how this feature will be used when it’s live. For now, I’m left hoping it will do more good than harm.

Izzy, a tech enthusiast and a key part of the PhoneArena team, specializes in delivering the latest mobile tech news and finding the best tech deals. Her interests extend to cybersecurity, phone design innovations, and camera capabilities. Outside her professional life, Izzy, a literature master’s degree holder, enjoys reading, painting, and learning languages. She’s also a personal growth advocate, believing in the power of experience and gratitude. Whether it’s walking her Chihuahua or singing her heart out, Izzy embraces life with passion and curiosity.


[ad_2]
Source link

UK Police Arrested a Boy Responsible for MGM Resorts Hack

andreasc
-
0
UK Police Arrested a Boy Responsible for MGM Resorts Hack
[ad_1]

UK police have arrested a 17-year-old boy from Walsall in connection with a notorious cyber hacking group. This group has targeted significant organizations worldwide, including MGM Resorts in the United States, with sophisticated ransomware attacks.

Arrest Made in Coordinated Effort

The arrest was made on July 18, at an address in Walsall. Regional Organised Crime Unit Officers for the West Midlands Reports (ROCUWM) collaborated with the National Crime Agency and the United States Federal Bureau of Investigation (FBI) to apprehend the suspect.

The teenager was taken into custody on suspicion of blackmail and offenses under the Computer Misuse Act. Although he has been released on bail, the investigation is ongoing.

During the arrest, authorities recovered several digital devices from the suspect’s residence. These devices will undergo a forensic examination to gather further evidence.

This operation is part of a broader, global investigation into a large-scale cyber hacking community targeting major companies, including MGM Resorts.

International Cooperation and Complex Investigations

Detective Inspector Hinesh Mehta, Cyber Crime Unit Manager at ROCUWM, highlighted the investigation’s complexity, which spans international borders.

Protect Your Business Emails From Spoofing, Phishing & BEC with AI-Powered Security | Free Demo

“This arrest was made following a complex investigation that stretches overseas to America. We have been working closely with the National Crime Agency and FBI. These cyber groups have targeted well-known organizations with ransomware, successfully extorting significant amounts of money from multiple victims worldwide. We want to send out a clear message that we will find you. It’s simply not worth it,” Mehta stated.

Bryan Vorndran, Assistant Director of the FBI’s Cyber Division, emphasized the importance of international cooperation in combating cybercrime.

“Today’s arrest is a testimony to the strength of the FBI’s domestic, international, and private sector partnerships. In coordination with its partners, the FBI will continue to relentlessly pursue malicious actors who target American companies, no matter where they may be located or how sophisticated their techniques are.” MGM Resorts, one of the primary victims of the cyber attacks, expressed gratitude for the collaborative efforts of law enforcement agencies.

“We’re proud to have assisted law enforcement in locating and arresting one of the alleged criminals responsible for the cyber attack against MGM Resorts and many others. We know first-hand the damage these criminals can do and the importance of working with law enforcement to fight back. By voluntarily shutting down our systems, refusing to pay a ransom, and working with law enforcement on their investigation and response, the message to criminals was clear: it’s not worth it,” a spokesperson from MGM Resorts said.

Microsoft also commended law enforcement efforts to address cyber threats. Today, it sends a solid message to cybercriminals: there will be consequences for their actions.

Microsoft commends law enforcement for taking action against those who seek to cause harm. We remain committed to collaborating with others across the public and private sectors to combat cyber threats and make the Internet safer.

As this outcome shows, a Microsoft representative stated that we have a more significant impact when we come together to fight cybercrime. The arrest of the 17-year-old boy marks a substantial step in the global effort to combat cybercrime.

The coordinated efforts of UK police, the National Crime Agency, and the FBI demonstrate the power of international collaboration in bringing cybercriminals to justice.

As investigations continue, authorities remain vigilant in pursuing those who seek to exploit digital vulnerabilities for malicious gain.

Join our free webinar to learn about combating slow DDoS attacks, a major threat today.


[ad_2]
Source link
1...394041...1,475Page 40 of 1,475