Wi-Fi 7 set to officially launch in Q1 2024, brings 5x speed boost

0
[ad_1]

Your wireless internet speeds may soon get turbocharged. The Wi-Fi Alliance has announced that the final Wi-Fi 7 standard will see an official launch in Q1 2024. You can expect an exponential increase in the number of Wi-Fi 7-supported devices as the year progresses.

Wi-Fi 7 will be official in early 2024

Wi-Fi 7 has been in development for the past few years. A draft version of the next-gen wireless standard has been available for some time too. The few Wi-Fi 7 devices that you can buy today use the draft version of the standard as opposed to the final standard. A firmware update should move them to the final version once it is available.

The Wi-Fi Alliance hasn’t specified a date but says, “Wi-Fi Certified 7, based on IEEE 802.11be technology, will be available before the end of Q1 2024.” The organization adds that the next-gen wireless standard will “facilitate worldwide interoperability and bring advanced Wi-Fi performance to the next era of connected devices.”

Theoretically, Wi-Fi 7 can achieve peak speeds of over 40Gbps. That’s more than four times the peak speed of Wi-Fi 6 and Wi-Fi 6E (9.6Gbps). However, the real-world speed will depend on a lot of factors, including the implementation of the support specs by device manufacturers, location, and more. Nonetheless, you can expect massive improvements over the current Wi-Fi standards.

As Wi-Fi Alliance pointed out, Wi-Fi 7 will not only improve the throughput speed but also improve reliability and reduce latency and power consumption. You will get a more stable connection and speed with higher efficiency even in crowded networks. All of this is enabled by the addition of up to 320MHz superwide channel bandwidth, 16 spatial streams, Multi-Link Operation (MLO), and 4096-QAM (quadrature amplitude modulation).

For a quick recap, Wi-Fi 6/6E is limited to 160MHz channel bandwidth, 8 spatial streams, a single access point, and 1048-QAM modulation. Wi-Fi 6 only supports 2.4GHz and 5GHz frequency bands while Wi-Fi 6E supports the 6GHz band too. Wi-Fi 7 doesn’t add a fourth band. However, other upgrades mean it improves your wireless internet in pretty much every aspect.

Devices with Wi-Fi 7 are already here

Devices with Wi-Fi 7 have already started hitting the market, with the volume expected to grow next year. Samsung‘s Galaxy S24 Ultra may boast Wi-Fi 7 support. When connected to a compatible router, the device will deliver unprecedented wireless speeds. It may be a while before all of our household items move to Wi-Fi 7, though. Offices and commercial spaces may be the first to take full advantage of the next-gen wireless technology.

“Wi-Fi 7 brings cutting-edge capabilities to enable innovations that require high throughput, lower latency, and greater reliability across home, enterprise, and industrial environments, including key applications like augmented, virtual, and extended reality (AR/VR/XR), immersive 3D training, and ultra-high definition video streaming,” the Wi-Fi Alliance explains. Stay tuned for the launch of the final Wi-Fi 7 standard.


[ad_2]
Source link

Google Updates Chrome bfcache For Better Page Viewing

0
[ad_1]

Chrome users may now experience better page viewing when navigating through different pages. Google decided to update the Chrome browser’s bfcache feature for storing cached pages for faster loading during back/forward navigation.

Google Chrome Updates bfcache For Improved Performance

In a recent post, Google announced the introduction of some performance improvements for its Chrome browser. Specifically, the performance boost would arrive from the updates to the Chrome bfcache for quick page viewing.

Google describes bfcache on its web.dev website as a dedicated in-memory cache for browser optimization. It stores a complete snapshot of the website as the user navigates back or forward to another web page.

While such browsing may cause the already-visited web pages to take longer to load, with bfcache enabled, users can quickly return to their destination web page as the browser presents them with the cache. However, this bfcache doesn’t store web pages cache upon detecting the Cache-control: no-store HTTP header. This causes trouble in restoring pages during back/forward navigation.

To tackle this issue, Google proposed improvising the bfcache to continue storing the web caches even upon this header. As described,

This would allow pages to enter BFCache and be restored as long as there are no changes to cookies or network requests that receive response with “Cache-control: no-store” HTTP header.

With this implementation, where the HTTP requests remain consistent (given no changes to cookies or network requests), restoring pages during back/forward navigation will become easier and faster.

Though it sounds impressive for performance, this proposal has also triggered some privacy concerns, particularly regarding restoring web pages with sensitive content. Ideally, users should no longer retain access to sensitive content when navigating away, implemented with the Cache-control: no-store (CCNS) header, and denying which means retention of sensitive data.

However, Google addresses this problem by selectively restoring the non-sensitive data only. Regarding the “sensitive” data type, Google elaborated that local data isn’t considered a part of it. Rather, it counts fetched documents, data received via fetch and XMLHttpRequest, and data received from WebSocket, WebTransport, and WebRTC, as sensitive information that will remain a part of CCNS.

More details about this proposal are also available on GitHub.

Let us know your thoughts in the comments.


[ad_2]
Source link

Beeper Mini is Back with an Apple ID Sign In

0
[ad_1]

The whole saga between Beeper Mini and Apple this past week has been pretty entertaining to watch. And now we’re entering chapter 3 of this saga – the Return of Beeper Mini.

On Monday afternoon, Beeper Mini announced it was working again, using another workaround to get iMessage on Android. But it is only a matter of time before Apple shuts it down once again. Really what Beeper is doing here is helping Apple make iMessage a lot more secure than it already was.

With this new update for Beeper Mini, users will need to sign in with their Apple ID to register their device with iMessage. Previously, it would automatically register your phone number with iMessage, with no Apple ID needed. So now, the blue bubbles will come to and from your email address. It’s not as convenient, obviously, but it’s how it has to work for now.

Beeper has said that it is working on restoring phone number registration with iMessage.

Beeper Mini is now going to be free to use. Beeper wrote in a blog post on Monday that “things have been a bit chaotic, and we’re not comfortable subjecting paying users to this.” When Beeper Mini launched last week, it was charging users $2 per month to use the app, however everyone got a seven-day free trial – which means that no one has paid for the service anyways.

Beeper Mini and Apple are playing a cat-and-mouse game

No matter how many times Beeper Mini comes up with fixes for iMessage on Android, Apple is going to block and patch those attempts. But why? Well, the reason that Apple will give us is security. However, Beeper did object to Apple’s stance, stating that they would share the entire codebase with “a mutually agreed-upon third-party security research firm.”

What is the real reason why Beeper Mini will continue to be blocked by Apple? The iPhone. For Apple, a big selling point is iMessage. And if that is made available on Android, that could cost them a lot of iPhone sales, which Apple is not willing to give up.

Many will compare this to Google offering most of its services on other platforms, like Chrome, Gmail, YouTube, and much more on iPhone, and even paying Apple $18 billion per year to be the default search engine. But that’s a bit different than what Apple is doing here. Google makes almost all of its money from Search. So, no matter the platform, they want you to use their search engine. Apple, on the other hand, makes most of its money from selling hardware – like the iPhone.

I’m willing to bet that this new workaround for Beeper Mini won’t last more than 24 hours.


[ad_2]
Source link

Get a $300 Discount on this 2-in-1 Vacuum and Mop

0
[ad_1]

While Cyber Monday and Black Friday might be over, some fantastic deals on robot vacuums are still available. That includes the incredible iRobot Roomba Combo j7+. This robot vacuum is now $300 off, which will bring it down to just $699. That’s a really great price for this 2-in-1 robot vacuum.

The iRobot Roomba Combo j7+ is impressive because it does mopping and vacuuming. It does this by lifting the mop up and over the vacuum when it gets to the carpet. This keeps the mop from getting your carpet all wet and gross. It’s exciting how iRobot has done this, and it’s great to see both mopping and vacuuming in one here.

I’ve used the iRobot Roomba Combo j7+ for quite a few months and really enjoyed this robot vacuum. It doesn’t have a ton of settings for you to mess with. The idea here is for you to tell it to clean, and it does just that. It has pretty good suction, and the dual rubber roller brushes on the bottom work really well to get up as much dirt, dust, and other debris as they can.

It’s really good for those with pets since the roller brushes won’t get tangled with hair, and they get closer to the carpet to get all that hair up. It also has a camera in the front, as well as an LED light. This camera helps the robot vacuum see what is in front of it.

For a while there, iRobot had a serious problem where their Roombas were running over pet waste and smearing it around the house. iRobot has fixed that, and now their vacuums can identify and avoid objects. The LED light is used to see under beds, in dark rooms, and such.

This is a fantastic robot vacuum, and in fact, it’s one of the few that I would still recommend right now.

You can pick up the iRobot Roomba Combo j7+ from Amazon today at the link below.

Buy at Best Buy


[ad_2]
Source link

Toyota Ransomware Attack Exposes Customers Personal Data

0
[ad_1]

Toyota Financial Services (TFS) notifies customers after a data breach that exposed personal and sensitive financial information.

In a limited number of locations, including Toyota Kreditbank GmbH in Germany, Toyota Financial Services Europe & Africa has discovered unauthorized activity on its systems, as it announced on November 16.

“Due to an attack on the systems, unauthorized persons gained access to personal data. Affected customers have now been informed. Toyota Kreditbank’s systems have been gradually restarted since December 1st”, the company said.

Toyota Motor Corporation’s finance division is known as Toyota Financial Services (TFS). As a Toyota subsidiary, it offers a variety of financial services to Toyota dealers and customers all around the world. TFS provides a range of financial goods, such as leases, insurance policies, and auto loans. 

TFS aims to assist Toyota customers with financing their automobiles and to make it easier for customers to buy or lease Toyota cars.

Overview of the Ransomware Attack

Data from Toyota Financial Services was allegedly taken by the ‘Medusa ransomware gang’. The group offered the business ten days to provide the $8 million ransom.

The Medusa gang made claims on their leak site today, November 16, including screenshots of multiple documents confirming the hack’s authenticity and listed stolen sample data.

The files contain several spreadsheets, financial documents, staff email addresses, and scans of a Serbian passport. 

One document, in particular, contains un-hashed account passwords and usernames for several types of production and development environments, and much more were all included.

Medusa gang made claims on their leak site
Medusa gang made claims on their leak site

The leak site features a countdown to the full data release date of November 26, which is in ten days. The gang will extend the deadline by one day for US$10,000.

The company took a few systems offline to look into this activity and lower risk. They have also started collaborating with law enforcement. They have begun getting their systems back online in the majority of countries.

German media source Heise received the Toyota data breach notification that was delivered to German customers.

Threat actors were able to obtain the following information such as:

  • Full names, 
  • Residence addresses, 
  • Contract information, 
  • Lease-purchase details
  • IBAN (International Bank Account Number)
Notifying customers of a data breach
Notifying customers of a data breach

Toyota also reported the security violation to North Rhine-Westphalia’s data protection officer.

Cyber security analyst Kevin Beaumont pointed out that Toyota systems that are reachable online are susceptible to the “Citrix Bleed” vulnerability, which was disclosed late last month and has already impacted numerous major businesses and government agencies.

Recommendation

German customers of Toyota Financial Services are advised to exercise caution and get in touch with their bank to implement extra security measures. They ought to keep an eye out for strange activity and get a current credit report from Schufa.


[ad_2]
Source link

HONOR Magic6 coming with powerful cameras, here are the details

0
[ad_1]

A well-known tipster has just detailed the camera setup on the HONOR Magic6 series, and it’s powerful on paper, but also different. Do note that he did not specify the model, though we’re likely looking at the Magic6 Pro camera setup. The vanilla model likely won’t have the same cameras on the back.

The HONOR Magic6 will feature powerful cameras, which just got detailed

In any case, this information comes from Digital Chat Station, one of China’s most prominent tipsters. He says that the phone will include an OmniVision OV50H camera sensor. An OV50K sensor, and a 160-megapixel periscope zoom camera.

Having said that, the OmniVision OV50H sensor is a 1/1.3-inch camera sensor, while the OV50K will likely also be a 1/1.3-inch sensor, despite the fact some rumors pointed to a 1-inch sensor. It remains to be seen, however.

The OmniVision OV50K camera sensor is set to utilize LOFIC tech

In any case, the OV50K will utilize the LOFIC tech, which stands for ‘Lateral Overflow Integration Capacitor-based CMOS’. In other words, this will be a stacked sensor, similar to what Sony offers with its LYTIA lineup.

HONOR seems to be planning to go in the opposite direction of most other flagship smartphones. It will rely on OmniVision sensors, instead of Sony’s camera sensors. It remains to be seen if that will pay off for the company.

The tipster also mentioned that HONOR will utilize a ToF sensor, to be able to offer facial scanning. That is why the HONOR Magic6 series will have a pill-shaped cutout on the screen. It needs to accommodate both the front-facing camera, and a ToF sensor.

The Snapdragon 8 Gen 3 will fuel the most powerful phone in the series

The Snapdragon 8 Gen 3 will fuel the most powerful HONOR Magic6 phone. The vanilla model could utilize a processor from MediaTek, but nothing has been confirmed just yet.

The HONOR Magic6 series is expected to arrive in Q1 next year. they will likely launch at the Mobile World Congress (MWC) in Barcelona, actually.


[ad_2]
Source link

Samsung Display reorganized itself to prepare for foldable iPhones

0
[ad_1]

Samsung‘s display manufacturing division, called Samsung Display, has reportedly reorganized itself to focus on next-gen display solutions for Apple, one of its biggest clients. The reorganization will enable the firm to dedicate resources to developing folding OLED panels for Apple’s possible foldable iPhones in the future. The iPhone maker is expected to enter the foldable market in a year or two.

Samsung reorganizes its display division in anticipation of foldable iPhones

Samsung Display is one of the biggest display manufacturing companies around the world. It makes OLED panels for all sorts of gadgets, including smartphones, smartwatches, tablets, laptops, monitors, and TVs. The firm is also working on MicroLED displays for AR devices. Along with its sister firm Samsung, the company supplies its display solutions to Apple and many others. It was the biggest supplier of OLED panels for the iPhone 15 series.

The firm has a special internal business unit dedicated to Apple, which is understandable considering the iPhone maker’s size. Allegedly called the “A Business Team,” the unit focuses on the current and future display needs of Apple. Samsung Display recently reorganized itself to strengthen this team so it can better respond to Apple’s foldable display needs in a few years, Korean publication The Elec reports.

As part of this reorganization, Samsung Display has appointed its Vice President Choi Kwon-young, who was the head of the planning team at the headquarters, as the head of the A Business Team. The company is seemingly anticipating fierce competition in Apple’s display supply chain in the coming years as the Cupertino giant prepares to enter the foldable scene. The first foldable iPhone may arrive in 2025 at the earliest.

Samsung Display’s reorganization will also allow it to efficiently allocate resources to various other internal teams such as the small display division (smartphones and watches), medium display division (tablets), and IT display division (laptops and monitors). It will help strengthen the microdisplay team too. The company is looking for new avenues of growth amid growing competition.

LG has also created a display team dedicated to Apple

Samsung isn’t the only display firm that values Apple highly. Its compatriot LG, which is another major supplier of iPhone displays, is making similar moves in anticipation of foldable iPhones. It has reportedly established a strategic customer (SC) division focused on Apple’s display needs. LG Display’s Executive Director Choi Hyun-cheol, who was in charge of the small display business, leads the new team.


[ad_2]
Source link

The sound of you typing on your keyboard could reveal your password

0
[ad_1]

As if password authentication’s coffin needed any more nails, researchers in the UK have discovered yet another way to hammer one in. The technique, developed at Durham University, the University of Surrey, and Royal Holloway University of London, builds on previous work to produce a more accurate way to guess your password by listening to the sound of you typing it on your keyboard.

The slight differences in the sounds each key makes is an unintentional leak of information, known as a “side channel”. Computers typically have lots of side channels, such as noises, heat, and changes in electromagnetic emissions, which can be hoovered up and analysed by adversaries to learn more about what’s happening on the computer.

Side channel research can get a little far-fetched and impractical at times but it serves a useful purpose in improving our knowledge about what’s possible. However, this research is firmly rooted in the possible, starting with the decision to monitor sound, rather than something more exotic.

The ubiquity of keyboard acoustic emanations makes them not only a readily available attack vector, but also prompts victims to underestimate (and therefore not try to hide) their output. For example, when typing a password, people will regularly hide their screen but will do little to obfuscate their keyboard’s sound.

The researchers also used real-world attack scenarios, such as snooping on a laptop keyboard using the microphone on a smartphone in the same room, and by capturing the sound on a Zoom call.

As it is in so much cybersecurity research, Artificial Intelligence is centre stage. The new password-busting technique uses Deep Learning (a form of AI that mimics the learning process of the human brain) to determine which of a keyboard’s 36 keys are being pressed. The algorithm was taught using 25 presses on each key of an Apple laptop using different fingers and different pressures. The sounds from the key presses were processed extensively before being turned into images, and then fed into a deep learning algorithm used for image classification.

Did it work? Yes, even over Zoom.

The method presented in this paper achieved a top-1 classification accuracy of 95% on phone-recorded laptop keystrokes, representing improved results for classifiers not utilising language models and the second best accuracy seen across all surveyed literature. When implemented on the Zoom-recorded data, the method resulted in 93% accuracy, an improved result for classifiers using such applications as attack vectors.

Research like this always begs the question, should you be worried about this? Most people have far more basic password problems to concern themselves with before fixing their noisy keyboards. However, all targets of cybercrime are not created equal, and there are nation state agencies willing to spend millions to compromise specific people. It is not difficult to imagine an intelligence agency using a technique like this, and it isn’t too far fetched for industrial espionage either.

As the reseachers point out, a deep learning engine trained on one laptop could probably guess passwords on other laptops of the same model, meaning “a successful attack on a single laptop could prove viable on a large number of devices.” A hint that techniques like this could even be commodified one day.

If you are concerned about this it’s worth noting that entering a password with a password manager makes almost no sound. However, if you think you’re genuinely at risk from techniques like this you should be looking beyond passwords at things like passkeys anyway.


We don’t just report on threats—we remove them

Cybersecurity risks should never spread beyond a headline. Keep threats off your devices by downloading Malwarebytes today.


[ad_2]
Source link

Report says Galaxy S24 Ultra has 10x zoom, but it may be wrong

0
[ad_1]

With just over a month remaining before the official unveiling, Galaxy S24 leaks are starting to come thick and fast. While there isn’t much left to know, a fresh leak has created confusion among fans eagerly waiting for the new Samsung flagships. It says the Ultra model still has a 10x zoom camera, which was previously said to have been replaced with a 5x lens. From what it looks like, the report is incorrect. The 10x lens appears gone for once and all.

Galaxy S24 Ultra probably doesn’t have a 10x zoom camera

For the past few years, Samsung’s Ultra flagships have featured two dedicated zoom cameras—one with 3x optical zoom and one with 10x optical zoom. Based on leaks, the company is changing the configuration next year. The Galaxy S24 Ultra will have 5x and 3x zoom cameras with 50MP and 10MP sensors, respectively (both 10MP on the Galaxy S23 Ultra). Samsung is focusing on software improvements for better image quality.

Pretty much every Galaxy S24 leak in recent months said the same thing, that the Galaxy S24 Ultra doesn’t have a 10x optical zoom camera. However, reputed Korean publication The Elec recently reported that the phone features a 10MP 10x zoom camera and a 50MP 5x zoom camera. This led to speculations that Samsung may have changed its mind at the last minute and is instead replacing the 3x lens and upgrading the sensor for the other zoom camera.

That may not be the case, though. The publication may have got it wrong. Noted X tipster Revegnus states that the report is incorrect and that the Galaxy S24 Ultra doesn’t have a 10x zoom camera. As reported before, it features a combination of a 50MP 5x lens and a 10MP 3x lens. Other cameras include a 200MP primary rear shooter, a 12MP ultrawide lens, and a 12MP selfie camera.

The phone may let you capture 8K videos at 5x optical zoom

Samsung is reportedly using a higher-resolution telephoto camera with less optical zoom on the Galaxy S24 Ultra to improve the image quality. There are already reports that this change will enable seamless 4K video recording at 60fps. A new rumor says you can capture 8K videos at 5x optical zoom.

The Galaxy S23 Ultra already lets you zoom in when recording 8K videos. However, it’s all digital zoom. The switch to a 5x telephoto lens may allow the next-gen Samsung flagship to use optical zoom for 8K videos. You may even get optical zoom for 5x portrait shots. Other rumored features include improved stabilization during bright and low-light conditions and AI Object Aware Engine for front and rear cameras. The Galaxy S24 series debuts in January.


[ad_2]
Source link

WordPress Backup Migration Plugin Flaw Exposes 90K+ Websites

0
[ad_1]

Over 90,000 websites are currently at risk due to a vulnerability found in the WordPress Backup Migration Plugin. This vulnerability has enabled unauthenticated remote code execution, making it possible for potential attackers to gain access to these websites.

A group of researchers from Nex Team discovered the vulnerability while participating in the Wordfence Bug Bounty program.

It’s worth noting that the CVE-2023-6553 vulnerability, which allows for remote code execution, has been assigned a critical severity score of 9.8.

This vulnerability allows arbitrary PHP code to be injected and executed by unauthenticated threat actors on WordPress sites that use this plugin.

Wordpress plugin flaw
WordPress plugin flaw

The Backup Migration plugin for WordPress has a vulnerability in all versions up to and including 1.3.7, which allows attackers to execute remote code.

The vulnerability is present in the /includes/backup-heart.php file, making it possible for attackers to gain unauthorized access to sensitive data and execute malicious code on the website.

Suppose an attacker gains control of a target computer through some vulnerability and gains the power to execute commands on that remote computer. In that case, this process is called Remote Code Execution (RCE).

This indicates that BMI_ROOT_DIR is modifiable by the user. Threat actors can use this vulnerability to insert malicious PHP code into requests and run arbitrary commands on the underlying server under the WordPress instance’s security context.

After the incident, a new version, 1.3.8, was released that included a patch to address the issue.

It is recommended to update the plugin to the latest version as soon as possible to prevent exploitation of this vulnerability.


[ad_2]
Source link