A new position paper argues that Privacy Enhancing Technologies (PET) used in Home Routing are making it difficult for law enforcement to intercept information during investigations lawfully.
Home Routing allows a user’s communication to be routed through their home network even when they are abroad, as the data is subject to the laws of the home country, which may have stricter privacy protections, and not accessible by the local law enforcement where the crime is suspected to occur.
Investigations are made more difficult as a result, and potential solutions are proposed in order to guarantee that law enforcement will continue to fulfill their mission of protecting citizens and gathering evidence.
Home Routing allows a telecom provider to continue servicing customers traveling abroad. The customer’s communication data (calls, messages, data) remains on the home network instead of switching to the visited country’s network.
This prevents law enforcement agencies in the visited country from accessing the data through legal requests, potentially hindering investigations involving foreign SIM cards.
The issue applies to both foreign visitors using their own SIM cards and domestic users with foreign SIM cards.
Cooperation agreements between service providers can be established to disable Privacy Enhancing Techniques (PET) in Home Routing for specific situations.
A privacy-enhancing technology, creates a loophole for criminals to evade interception by law enforcement because domestic interception orders are ineffective when users’ data is routed through their home network while abroad.
Issuing a European Investigation Order is a slow and cumbersome alternative, taking up to 120 days and requiring cooperation from foreign service providers, which creates an imbalance between criminals who can exploit this gap and law enforcement’s ability to perform their duties.
Europol is calling for a solution to a technical challenge hindering law enforcement, where mobile roaming technology, specifically SMS home routing, makes it difficult to intercept communications within a country’s jurisdiction when a suspect is using a foreign SIM card.
They emphasize the need to find a balance that allows legal access to evidence while upholding secure communication standards by proposing considering operational, technical, privacy, and policy aspects to achieve this equilibrium.
It acknowledges the need to anticipate the impact of technological advancements on law enforcement by emphasizing the importance of balancing technology’s positive societal contributions, like privacy protection, with the need to prevent criminal exploitation.
This exemplifies Europol’s dedication to navigating this complicated landscape and ensuring the general public’s safety in the digital age.
"Is Your System Under Attack? Try Cynet XDR: Automated Detection & Response for Endpoints, Networks, & Users!"- Free Demo
The HONOR Magic V3 information just keeps on coming. HONOR recently announced that the phone will launch on July 12, and the company also shared the design of the phone with the public. On top of that, various real-life images surfaced too, in all colors. With that being said, some HONOR Magic V3 camera samples were shared (unofficial ones), while some additional information arrived.
The HONOR Magic V3 camera samples are now available
If you check out the gallery below, you’ll see the images in question. Do note that they’ve been compressed, though. You can access their original versions by clicking here.
These images are nothing to write home about, to be quite honest. They’re vibrant and bright, but in one of them, the focus seems to be off, while in the other the colors are a bit off. As per usual, we won’t be making any conclusions until we’ve had the chance to test out the phone. Last year’s model offered a good camera, but nowhere near the top camera smartphones. This year’s model is expected to be an improvement, so let’s wait and see.
We already know that a 50-megapixel main camera will offer OIS support. On top of that, a periscope telephoto camera will be a part of the package this time around. That was not the case with the Magic V2. 3.5x optical zoom is tipped.
The device will be immensely thin for a book-style foldable, even thinner than the Magic V2
Having said that, the HONOR Magic V3 will also be even thinner than its predecessor. It will be 9.7mm thick, while the Magic V2 is 9.9mm thick when folded. The phone is also tipped to weigh 226 grams, so it’ll be even lighter than the Magic V2.
The device will allegedly pack in a 5,200mAh battery, and offer an IPX8 water resistance. 66W wired charging will be on offer, while some rumors even say that wireless charging will be supported, but we somehow doubt that.
The display crease will be minimal
Now, if you check out the image below, you’ll see the Magic V3’s main display and its crease. It’s minimal, as expected. It was minimal on the Magic V2, and the same will be the case here, which is great.
It’s also worth noting that the Magic V3 will feature the industry’s first 10% silicon high-density battery. It will be 4.4% thinner than the battery unit HONOR used inside the Magic V2.
Everything will be revealed in only four days, on July 12, so stay tuned.
Google Contacts has been getting some nice features recently, and now, an upcoming version of the app will let people use it without a Google account.
The folks at Android Authority have once again dug in some code and discovered interesting stuff. This time, it’s the Google Contacts version 4.35 where the new option was discovered. When you tap on the profile picture on the top right, you can pick the option “without an account”. The option is not currently live though, but it’s probably going to be available at some point in the future.
When you tap on the “Use without an account” button, you are redirected to the Organize tab of the app, and a dialog is explaining what will happen if you use without an account. Basically, you lose out on Google Contact sync, and any contacts imported from your Google account will be removed.
Right now, you can also turn off Google Contacts sync, but the process is somewhat complicated. One of the ways to do that is from Contact settings and then, in Google Contact sync settings. Then you have to go to the desired Google account (if you have more than one) and tap the Status option to turn off Google Contact Sync’s toggle.
On top of that, Google is working on refining the individual contact page with some tweaks to its looks. Some options are relocated, like Share contact, Add to home screen, move to another account, and delete. Those are currently in the menu and will be right on the page with the update.
This second update is also currently in testing and it’s not available in the app just yet.
I especially love the option to not use a Google account if you want to. I think giving people choices on how to use an app is always good, so I’m all up for this new update. However, the second change we talked about in this article may be the first one that we get to see live, as it’s a smaller update. There’s currently no timeline for the official release of these changes.
Izzy, a tech enthusiast and a key part of the PhoneArena team, specializes in delivering the latest mobile tech news and finding the best tech deals. Her interests extend to cybersecurity, phone design innovations, and camera capabilities. Outside her professional life, Izzy, a literature master’s degree holder, enjoys reading, painting, and learning languages. She’s also a personal growth advocate, believing in the power of experience and gratitude. Whether it’s walking her Chihuahua or singing her heart out, Izzy embraces life with passion and curiosity.
A newly identified multi-stage trojan, dubbed “Orcinius,” has been reported to exploit popular cloud services Dropbox and Google Docs as part of its attack strategy.
The sophisticated malware begins its assault with an innocuous-looking Excel spreadsheet, which contains a VBA macro modified through a technique known as ‘VBA stomping’.
Upon execution, this macro hooks into the Windows operating system, enabling the trojan to monitor and capture keystrokes and active windows.
How Orcinius Operates
According to Broadcom reports, the initial attack vector of Orcinius is particularly insidious.
The Excel spreadsheet, once opened, triggers the VBA macro, which then initiates the download of secondary payloads from Dropbox and Google Docs.
This multi-stage approach allows the malware to evade traditional detection methods, making it a formidable threat.
The trojan’s ability to hook into the Windows OS and capture sensitive information like keystrokes and active windows further amplifies its danger, potentially leading to significant data breaches and financial losses for affected users.
Symantec has identified several indicators of this threat, including ISB.Downloader!gen60, ISB.Downloader!gen68, X97M.Zorex, Web.Reputation.1, and WS.Malware.1.
These indicators are crucial for detecting and mitigating the impact of Orcinius.
VMware Carbon Black products have also been updated to block and detect associated malicious indicators through existing policies.
The recommended policy includes blocking all types of malware from executing, whether known, suspect, or potentially unwanted programs (PUPs) and delaying execution for cloud scans to leverage the VMware Carbon Black Cloud reputation service fully.
As cyber threats evolve, individuals and organizations must stay vigilant and adopt robust cybersecurity measures.
"Is Your System Under Attack? Try Cynet XDR: Automated Detection & Response for Endpoints, Networks, & Users!"- Free Demo
July 5, 2024 – The cybercriminals behind the Ticketmaster data breach are giving away free Taylor Swift concert tickets.
July 4, 2024 – Authy users have been warned that their phone numbers have been obtained by cybercriminals that abused an unsecured API endpoint.
July 3, 2024 – Buy now and pay later provider Affirm has notified the SEC that customer data of its card users was compromised in the Evolve data breach.
July 2, 2024 – It turns out that a breach at the Prudential impacted a lot more people than was initially thought. The company is now offering identity monitoring to affected customers.
July 1, 2024 – An Australian man was arrested for alleged evil twin attacks. What are they and what can you do about them?
WhatsApp’s verification badge is getting a Meta-inspired look
WhatsApp is updating its verification system to match Meta’s style, so get ready to see the in-app verification badge switch from green to blue. This change was spotted in the Android beta version 2.24.14.18 and should be rolling out to everyone soon.
Some beta users can already see the blue checkmark in action.
This update seems to be all about standardizing verification badges across Meta’s platforms, bringing WhatsApp in line with the blue checkmarks you see on Instagram and Facebook.
The blue checkmark is now available to some beta testers who have installed the latest WhatsApp beta updates for Android from the Google Play Store. It will be rolling out to even more users in the coming weeks.
Switching the verification badge color might seem like a minor tweak, but it makes it easier for users to identify which accounts are trustworthy and which ones aren’t.
I mean updating the green verification badge to a blue checkmark on WhatsApp aligns it with the visual identity of other Meta platforms like Facebook and Instagram. Beyond Meta, platforms like X and TikTok also use blue verification badges. This consistency makes it simpler for users to identify verified accounts across different platforms.
WhatsApp’s verification badge is getting a Meta-inspired look
WhatsApp is updating its verification system to match Meta’s style, so get ready to see the in-app verification badge switch from green to blue. This change was spotted in the Android beta version 2.24.14.18 and should be rolling out to everyone soon.
Some beta users can already see the blue checkmark in action.
This update seems to be all about standardizing verification badges across Meta’s platforms, bringing WhatsApp in line with the blue checkmarks you see on Instagram and Facebook.
The blue checkmark is now available to some beta testers who have installed the latest WhatsApp beta updates for Android from the Google Play Store. It will be rolling out to even more users in the coming weeks.
Switching the verification badge color might seem like a minor tweak, but it makes it easier for users to identify which accounts are trustworthy and which ones aren’t.
I mean updating the green verification badge to a blue checkmark on WhatsApp aligns it with the visual identity of other Meta platforms like Facebook and Instagram. Beyond Meta, platforms like X and TikTok also use blue verification badges. This consistency makes it simpler for users to identify verified accounts across different platforms.
Roblox, the globally renowned online gaming platform, has suffered a data breach.
According to a tweet from cybersecurity expert H4ckManac, the breach has exposed sensitive information, including email addresses and IP addresses of millions of users.
Roblox has informed all developers registered on FNTech about a recent data breach.
The compromised data includes full names, email addresses, and IP addresses. Affected individuals have been notified via email at their FNTech registration address.
This alarming incident has raised serious concerns about the security measures in place to protect the personal data of Roblox’s vast user base, which predominantly consists of children and teenagers.
Details of the Breach
H4ckManac first reported the breach on Twitter, which highlighted the severity of the situation.
The exposed data includes email addresses and IP addresses, which malicious actors can exploit for phishing attacks, identity theft, and other cybercrime.
The tweet, which quickly went viral, has prompted an outcry from the Roblox community and parents alike, demanding immediate action and transparency from the company.
Roblox Corporation has yet to release an official statement addressing the breach.
However, cybersecurity experts urge users to change their passwords and enable two-factor authentication to mitigate potential risks.
Additionally, users are advised to be vigilant for suspicious emails or activities on their accounts.
Community Reaction and Next Steps
The Roblox community has been vocal about their concerns, with many taking to social media to express their frustration and demand accountability.
Parents, in particular, are worried about protecting their children’s personal information.
“This is unacceptable. Roblox needs to ensure our kids’ data is protected,” one parent tweeted.
In response to the breach, cybersecurity firms offered assistance to Roblox to strengthen its security infrastructure.
Experts recommend that Roblox conduct a thorough investigation to identify the source of the breach and implement robust security measures to prevent future incidents.
As the situation unfolds, Roblox must maintain open communication with its users and provide regular updates on the steps to address the breach.
The gaming community will closely monitor the company’s response and the effectiveness of the measures implemented to safeguard their data.
The Roblox data breach is a stark reminder of the importance of cybersecurity, especially for platforms with a young user base.
As investigations continue, users are urged to take proactive steps to protect their personal information and stay informed about the latest developments.
The gaming world will watch closely how Roblox navigates this crisis and restores trust among its dedicated community.
"Is Your System Under Attack? Try Cynet XDR: Automated Detection & Response for Endpoints, Networks, & Users!"- Free Demo
During this summer, we figured to hear about a lot of new records being set considering that this is an Olympic year with the Summer Games kicking off on July 26th in France. But a new record has just been set and unfortunately, it is not good news. Nearly 10 billion unique plainword passwords were leaked in a file titled rockyou2024.txt found in a popular hacking forum. The passwords were posted by a forum member with the username ObamaCare.
A report calls this the “largest password compilation” making it a dubious record. The account has previously posted passwords from other data breaches including an employee database from law firm Simmons & Simmons, leads from online casino AskGamblers, and student applications for Rowan College at Burlington County. The latest and record-breaking file was cross-referenced with data from Cybernews’ Leaked Password Checker revealing that these passwords came from a combination of old and new data breaches.
This data breach is serious and the precise number of passwords in the file is 9,948,575,739. If you’re the type of person that reuses passwords on multiple apps and websites to make them easier to remember, there’s a possibility that the password to your sensitive accounts is among those in the file. The file was posted on the hacking forum on July 4th and with the large number of stolen passwords there is the possibility of fireworks coming from this data breach.
On a hacker forum, an attacker announces that he has posted a file containing nearly 10 billion passwords|Image credit-Cybernews
Researchers at Cybernews said, “In its essence, the RockYou2024 leak is a compilation of real-world passwords used by individuals all over the world. Revealing that many passwords for threat actors substantially heightens the risk of credential stuffing attacks.” Recent attacks have targeted Santander, Ticketmaster, Advance Auto Parts, and QuoteWizard and were the result of credential stuffing attacks against the victim’s cloud service provider Snowflake. Such an attack uses credentials stolen from a previous data breach on one service to log in to an unrelated service.
The Cybernews researchers added, “Threat actors could exploit the RockYou2024 password compilation to conduct brute-force attacks and gain unauthorized access to various online accounts used by individuals who employ passwords included in the dataset.” And that is exactly what you should be worried about. You might want to come up with a new password for your most important financial and personal apps and websites by including uppercase and lowercase letters, numbers, and special characters.
In the fast-paced world of tech, it’s easy to miss out on some of the juiciest stories and the most groundbreaking announcements. Fear not, for we’ve got you covered! From the latest in smartphone innovations and AI advancements to the hottest news in the social media realm, we’ve sifted through the noise to bring you the highlights of the week. So sit back, relax, and catch up on everything you might have missed in our latest episode of “News You Probably Missed and Shouldn’t Have!”
The iPhone 16 Pro Max features a bigger battery
The iPhone 16 Pro Max could be the energizer bunny of phones, lasting you like a whole day of Netflix episodes on a single charge (don’t try that). All thanks to a fancy new stainless steel battery case that’s practically bursting with juice (but hopefully not literally). Imagine never having to fight your friend for that last charger port at the coffee shop again. This phone will basically have its own built-in solar panel. Apple’s solving iPhone battery woes like a pro.
You can now share your Samsung SmartThings routines
Imagine your friend struggling to remember their morning routine: fumbling for the coffee pot, tripping over the cat, and blasting heavy metal instead of morning news. Samsung SmartThings to the rescue! Now you can share your perfectly-tuned routine like a digital handshake. No more burnt toast symphonies, just smooth jazz and a perfectly brewed cup for your sleep-deprived friend. Sharing is caring, and with Samsung, sharing is automated bliss.
Opera GX gets new AI features to power up gamers
Opera’s gaming-oriented GX web browser just got a power-up with more AI features. It is now your personal gaming co-pilot, helping you out with all sorts of cool stuff. We’re talking next-level image generation, where you can describe what you want and the AI whips it up in a flash. Need a fire-breathing cat riding a rocket for your new Twitch stream? No problem! The AI can now understand images too, figuring out what’s going on in any picture you throw at it. More time for epic wins and less time for browsing black holes!
Galaxy S25 leaks begin with battery certification
It looks like Samsung’s internal sieve struck again, this time leaking info on the Galaxy S25’s battery. No word on how long they’ll last, but hey, we’re just getting started. The never-ending flow of Samsung leaks has picked up another stream and will continue to flow. So, stay tuned folks, because the only shocking thing we know for sure is that these phones will need to be plugged in eventually, no matter how big their batteries are.
The Apple Watch Series 10’s rumored radical redesign was probably a hoax
The Apple Watch Series 10 is looking like that friend who promised a whole new look for a night out but just shows up with a slightly bigger shirt. Maybe new bands? The latest rumor is that the upcoming watches won’t get a radical redesign. So much for rumors about a fresh new look! It appears Apple gave up on the redesign midway after seeing people troll Samsung’s Watch Ultra. Hey Apple, people get used to a new design quickly. The trolls only last so long.
Google Chrome might be joining the FAB party
Google Chrome might be following the FAB trend! The company is considering adding a Floating Action Button (FAB) to its popular browser app. The new button will help you start a new tab in a flash from the tab overview menu. Currently, the “New tab” button sits at the top, so the change makes it more accessible and visible. Many Google apps already boast FABs. This may be a move to keep things streamlined so users don’t get confused.
YouTube lets you remove your AI copy you never approved
YouTube is getting hip to the whole “AI-fake-me-out” game. It is letting users fight fire with fire–you can now flag videos that use fancy AI to make you say or do things you never did! So, if you see yourself giving a speech about the virtues of polka-dotted socks, but you secretly despise them, you can get that video outta there. Just remember, with great flagging power comes great responsibility! Don’t go overboard and report videos that are clearly satire or just mean-spirited fun.
Google breaks Nest Wifi Pro with an update
Oh dear, looks like Google’s Nest Wifi Pro update went about as smoothly as a greased pig wrestling competition. Users are reporting all sorts of woes since the update, from slower speeds than a sloth on vacation to spotty connections that make online gaming about as fun as watching paint dry. Some folks are also having trouble with their fancy smart home gadgets, like printers that suddenly decided they only speak gibberish. So, if you’ve got a Nest Wifi Pro and things seem wonky, you’re not alone. Let’s hope Google won’t behave like a plumber on a coffee break and patch things quickly.
Samsung’s Galaxy AI will translate your WhatsApp calls
Imagine you’re chatting with your friend abroad using walkie-talkies, but instead of sounding like gibberish, it magically translates to your language. That’s basically what Samsung’s Galaxy AI is trying to do for WhatsApp calls! Get ready for future arguments where you cannot blame language barriers for forgetting your anniversary…or maybe finally understand what your in-laws are gossiping about. Galaxy AI will also translate your calls on Google Meet, WeChat,…you name it.
Microsoft brings ads to its weather app
Microsoft’s love affair with ads has hit a new low: the weather app! Users are experiencing more frustration than sunshine thanks to a recent update. Imagine checking your phone for rain showers and instead getting bombarded with promotions for, well, who knows what. It’s like Microsoft is saying, “Hey, you want to know if it’ll rain? Great! But first, a word from our sponsors” This whole situation is about as welcome as a pop-up ad during a thunderstorm.
LG buys smart home platform Homey to compete against Samsung’s SmartThings
LG just stole a page from its compatriot Samsung’s book, buying into the smart home platform Homey—it acquired an 80% stake in Homey’s parent company Athom and plans to acquire the remaining 20% in three years. The firm is hoping to turn your home into an LG-powered wonderland, with Homey users potentially controlling their fancy LG gadgets soon. Homey promises to stay independent, but this could be the start of a new smart home empire…or a confusing mess.
Google Message prepares for iPhone RCS support in group chats
Looks like Google Messages is throwing a party for iPhones joining the RCS group chat club! This means better photo sharing, read receipts, and all that good stuff for mixed-OS chat groups. There’s no official date yet, but RCS on iPhones is still a few months away, so Google has time. Google Messages might welcome the iPhones with a notification. Hopefully, this is the end of the green bubble blues!
Samsung receives an industry-first display certification from Pantone
Samsung Display just won the gold medal in color accuracy! Its fancy new monitor and laptop screens are like super-powered chameleons, blending colors so perfectly that it got a special handshake from Pantone, the color experts. It’s a first-of-its-kind Pantone certification in the display industry. Get ready for more realistic colors and graphics on your new Samsung gadgets. Creators are gonna love this, and so are consumers.
Netflix is phasing out its cheapest ad-free plan
Netflix is ditching its cheapest ad-free plan, saying “adios” to those sweet, sweet budget-friendly streams. Subscribers need to upgrade to a pricier plan or pick up an ad-supported plan, which is like having a movie interrupted by a surprise game show host selling dish soap. Canada and the UK are the first guinea pigs, forced to choose between ads, a pricier ad-free plan, or giving Netflix the boot. The rest of the world can probably expect the same treatment soon, so get ready for some internal debates about whether you really need to see that commercial for wrinkle cream.
New Apple iPads are on the way, of course
Surprise, surprise! New iPads might be on the horizon. Website detectives spotted hints of four new iPads in code. This suggests an 11th-gen iPad with Apple’s A16 chip, a 7th-gen iPad mini with the A17, and possibly two new Pro models with the next-gen flagship M5 chip. The fresh discovery also lifts the lid on some models Apple scrapped mid-way through development or planning, including an A14 model and two M3 iPad Pros.
Russian hackers tried snooping on US government agencies via Microsoft
Uh oh! Looks like Russia pulled a fast one on Microsoft and some US agencies. Hackers from Russia infiltrated Microsoft’s system and used that access to snoop around emails in some US government agencies. Bummer! The good news? It seems they weren’t looking for super sensitive stuff like social security numbers, or maybe couldn’t find any. This is still a black eye for Microsoft though, and a reminder to be extra cautious online.
YouTube’s ‘Erase Song’ removes copyrighted music, doesn’t affect other audio
YouTubers rejoice! Struggling to remove that pesky copyrighted song from your video without killing the whole soundtrack? YouTube’s got your back with its upgraded “Erase Song” tool. It’s like magic, it silences the unwanted music while keeping your hilarious commentary or fire soundtrack intact. No more awkward silence or scrambling to replace the audio. Now you can focus on creating awesome videos, copyright woes are gone! Maybe not entirely, but certainly up to an extent.
Google Messages improves photo captions in chats
Google Messages is giving a makeover to how photos with captions appear in RCS chats! Imagine this: you send a pic of your adorable cat with a hilarious caption, and now the photo and caption cuddle up together on the screen, looking all cute and organized. This tweak makes captions look like captions rather than separate messages. It’s a small change, but it adds a touch of polish to your conversations.
Qualcomm has yet to finalize the Snapdragon 8 Gen 4’s price
Qualcomm’s hot new Snapdragon 8 Gen 4 chip is like that super fancy restaurant everyone’s talking about, but no one’s making reservations yet. No phone maker is nearing mass production of the next-gen Snapdragon, so no orders. This mystery is making the price anyone’s guess—super expensive or a waiting game for a bargain? Guess we’ll have to wait to see if this chip lives up to the hype! It’s a waiting game for the smartphone superstar of the future.
Samsung flags off the July update train
Looks like Samsung’s forgotten the Galaxy S24 Ultra and foldables! The Galaxy A55, the often-ignored middle child, is surprisingly the first Samsung phone to get the July 2024 security update. Is this the update A55 users have been waiting for? Not really, it’s just the security patch and nothing more. But hey, at least it’s something, right? Maybe Samsung is making amends for all those times it delayed the phone’s updates. In the meantime, S24 Ultra and Galaxy foldable users can console themselves with some new Paris 2024 Olympic accessories…
The HMD View is an upcoming budget phone from the Nokia maker
HMD, the Nokia maker, is preparing a new budget phone under the HMD brand. A new leak gives an early view (pun intended) into the HMD View. It’s got a decent camera that won’t make your cat look like a blurry mess, a good screen that properly shows the cat photo you captured, and a battery that won’t die halfway through your cat video binge-watching session. No official word yet, but this could be a good option for those who want a phone that won’t break the bank. Here’s what it looks like.
