Serpent Stealer Acquire Browser Passwords and Erases Logs

0
[ad_1]

Beneath the surface of the cyber realm, a silent menace emerges—crafted with the precision of the .NET framework, the Serpent Stealer slithers undetected through security measures, leaving traces of its intrusion

Researchers at K7 Labs have analyzed the malware called “serpent.” This malware can bypass several security measures implemented in Windows, such as User Access Control (UAC), debuggers, and virtual machines.

It can also steal sensitive data, including browser data and passwords, and exfiltrate it using Webhooks and Discord abuse.

This information is significant for individuals and organizations looking to protect their systems from potential cyber threats.

Dive into the realm of a 64-bit portable executable, discreetly infiltrating systems with unparalleled stealth.

Witness the Serpent Stealer’s insidious data harvesting prowess. 

Like a digital plunderer, it raids Google Chrome’s autofill data, extracting personal details for potential identity theft. 

Delving further, it uncovers the user’s online history, a treasure trove revealing vulnerabilities and patterns ripe for exploitation.

The Webhook Courier of Stolen Secrets

Embark on a journey through the Serpent Stealer’s clandestine transmission route. 

Utilizing Discord webhooks, this digital courier discreetly ferries stolen data to the attacker’s command-and-control server, ensuring a seamless exchange of pilfered secrets, reads the report.

Explore the Serpent Stealer’s insatiable appetite for passwords. 

Beyond browsers, it infiltrates crypto wallets and gaming platforms, seeking to unearth login credentials that unlock doors to valuable assets, perpetuating its unrelenting data heist.

UAC Ballet

Uncover the sophisticated dance of evasion orchestrated by the Serpent Stealer. With a UAC bypass mechanism, it sidesteps Windows’ User Account Control safeguards, operating with elevated privileges and rendering security barriers powerless in its quest for sensitive data.

Peer into the Serpent Stealer’s utilization of Fodhelper.exe, a legitimate Windows component. 

Exploiting this trusted tool, the malware executes commands with administrative privileges, effectively disabling security barriers and perpetuating its stealthy presence.

IOCs

HashDetection name
e97868c8431ccd922dea3dfb50f7e0b5Password-Stealer  (005ac0721 )
a3c4785a011c350839669b8e73c823f5Password-Stealer (005ac0721 )

[ad_2]
Source link

How IT teams can conduct a vulnerability assessment for third-party applications

0
[ad_1]

Google Chrome, Adobe Acrobat Reader, TeamViewer, you name it—there’s no shortage of third-party apps that IT teams need to constantly check for vulnerabilities. But to get a better picture of the problem, let’s bust out some napkin math.  

The average company uses about 200 applications overall. Assuming at least 75% of these have a vulnerability at any given time, small security teams are tasked with finding and prioritizing over 150 vulnerabilities on a rolling basis.  

If you’re not using a comprehensive tool like ThreatDown Vulnerability Assessment (free for all ThreatDown users), it’s going to take a solid combo of resourcefulness and patience to do that much vulnerability assessment on your own. 

With that in mind, we’ve compiled this list of the five things IT teams need to do in order to find vulnerabilities in their environment.

Vulnerability Assessment: A Step-by-Step Guide

1. Cataloging Applications

The crucial first step involves cataloging every application within the IT environment. This foundational task, akin to a thorough inventory check, is essential for identifying potential security issues.

2. Software Version Analysis

It’s not just about identifying the applications but also understanding their versions. 

Why? Because you’re not just looking for vulnerabilities in one version of 7-Zip; to see if you’re truly affected, you’ll need to match your list of applications against vulnerabilities across different versions, such as 3.5 or 3.7.4. Not to mention that if your organization’s workforce doesn’t require regular updates of important software, then you might find countless versions of the same app dating back to the longest-term employees.  

3. Correlating with CVE Databases

Matching the cataloged applications and their versions against entries in Common Vulnerabilities and Exposures (CVE) databases is the next critical step. This process helps in pinpointing specific vulnerabilities applicable to the software in use.

Here’s the play-by-play: 

  1. Go to https://cve.mitre.org/cve/search_cve_list.html  
  2. Type in the application you want vulnerability info on in the search bar. 
  3. Pinpoint whether the vulnerability impacts the specific version of the software that’s present throughout your network. 
  4. Rinse and repeat. 

4. Prioritizing Threats

This type of repetitive, sometimes monotonous work isn’t just about identifying a CVE—it’s also about determining its severity. After identifying potential vulnerabilities, the next challenge is to prioritize them by CVSS and by asking questions that should inform you and your team about the best response. This includes questions like: 

  • Is the vulnerability being actively exploited in the wild?  
  • Is the CVE impacting critical tools or areas? 
  • How important is the affected asset in maintaining operational continuity? 

5. Routine Vulnerability Assessment

Remember, this is not a one-time task. You don’t just run vulnerability assessment once a year, or even once a month; you should be doing this on a daily basis. Why? Because every day counts. New CVEs are constantly popping into existence left and right, and if you’re not on top of them, you could be the target of an attack.

For teams seeking a more streamlined approach, the ThreatDown Vulnerability Assessment tool offers a solution. 

Single, Lightweight Agent

To simplify security and reduce costs, Vulnerability Assessment deploys easily in minutes without a reboot, using the same agent and cloud-based console that powers all ThreatDown endpoint security technologies.

Quick Vulnerability Scans

Identifies vulnerabilities in modern and legacy applications in less than a minute.

Accurate severity ratings

Utilizes the Common Vulnerability Scoring System (CVSS) and Cybersecurity and Infrastructure Security Agency (CISA) recommendations to evaluate and rank vulnerabilities for proper prioritization.

Security Advisor Integration

Our Security Advisor tool to analyzes an organization’s cybersecurity health—such as by assessment of current inventory and which assets are vulnerable—and generates a score based off what it finds. To improve the endpoint security health score, Security Advisor delivers recommendations to address discovered vulnerabilities: patching, updates, or policy changes.

Vulnerability Assessment Doesn’t Have To Be Hard

While manually identifying vulnerabilities in third-party applications is a demanding task, following these structured steps can make the process more manageable. However, for ThreatDown customers, the ThreatDown Vulnerability Assessment tool is a valuable alternative.

The ThreatDown Vulnerability Assessment tool simplifies the process with features like a lightweight agent, quick vulnerability scans, accurate severity ratings based on CVSS and CISA guidelines, and integration with Security Advisor for tailored recommendations.

Try ThreatDown Vulnerability Assessment today.

Interested in adding Patch Management capabilities as well? Check out our Advanced, Ultimate, and Elite Bundles.


[ad_2]
Source link

Google app for Android will soon add a Sports widget

0
[ad_1]

Google is working on a new Sports homescreen widget for the Google app for Android. The widget will keep you up to date on the latest scores for your favorite sports teams. You can see live scores as well as upcoming and past matches, complete with the date, time, and sports league. It should soon be available to everyone.

Google readies a Sports widget for your Android homescreen

The in-development Android widget shows scores for sports teams you follow on Google Search. You can customize the list from the widget settings page or directly through Search. The widget lets you keep a single- or double-column view on the homescreen. The former view gives you a single scrollable list of games, while the latter view prominently shows one game at the top followed by a dual-columned scrollable list.

While scores are updated automatically, you can manually refresh the scores via a dedicated button at the very top of the widget, next to the “Last updated” timestamp. Tapping on a scorecard opens Google Search with the full Knowledge Graph card for the game. The widget offers scores for “Your games” and “Trending games.” The former list appears to be games in which your favorite teams are involved.

The latter, on the other hand, could be games involving sports, teams, or leagues you frequently search on Google but don’t follow. The widget settings page has a toggle to enable recommendations for such games. The whole thing leverages Dynamic Color for a consistent UI. Google can already keep you informed about your favorite sports teams via notifications. The new widget will make live scores more accessible.

Google may soon roll out the feature to everyone

The unreleased Google widget was discovered by 9to5Google during the latest APK Insight where it decompiles the APK files for Android apps to look for new features and changes. The publication could enable the homescreen widget with version 14.49.38.29 of the Google app for Android. It is currently in the beta channel.

If everything goes according to plan, Google may soon push the Sports widget to beta users (the feature is present in the latest beta version but not officially enabled). A public rollout may follow in the coming weeks. Keep the Google app updated to ensure that you don’t miss out on the latest features. You can click the button below to check for updates on the Google Play Store.

DOWNLOAD GOOGLE


[ad_2]
Source link

Google’s secret weapon in Chatbot debates

0
[ad_1]

After many months of talk, Google has finally released Gemini. This is a new AI model from Google, which the company claims outperformed GPT-3.5 in six out of eight benchmarks. GPT-3.5 powers ChatGPT and Microsoft AutoPilot. Google says that they have also specifically tuned Gemini Pro in Bard to be far more capable of understanding, summarizing, reasoning, coding, and planning.

In blind evaluations with Google’s third-party raters, Bard was found to be the most preferred free chatbot compared to leading alternatives. That is quite the feat for Google, considering how many competitors there are on the market today.

Bard, now available to English-speaking users in 170 countries today, is now powered by the new Gemini model. Google stated that Gemini would be coming to more languages and countries “soon.” It’s running on Gemini Pro, the middle tier of the Gemini Series. A “nano” and an “ultra” tier are also available for Gemini. It should be the best tier of the three, as it sits in the middle of being fast and efficient and as capable as possible.

Bard with Gemini Pro is available today for text-based prompts. Google says that support for other modalities are coming soon.

Bard is still just a chatbot, but “Bard Advanced” will launch next year

Next year, Google plans to release a preview of “Bard Advanced, which Gemini Ultra will power. This is the most capable and powerful version of Google’s new AI model. It is also the multimodal version of the model. This means that it can accept and create images, audio, and video in addition to just text.

This is where Gemini is set to really shine, outside of just text responses. The head of Google’s DeepMind, Demis Hassabis, said “we built it to be natively multimodal from the ground up. That’s one of the new capabilities it has…. the kind of seamless integration and reasoning it can do across modalities.”

One of the demos that Google showed off with Gemini was with YouTuber Mark Rober using Bard to make the perfect paper airplane. This included taking photos of his designs to get AI-provided feedback. Another example was of parents uploading pictures of their children’s homework to get help figuring out where their math went wrong.

Google believes that with Gemini, we are “one step closer to our vision of making Bard the best AI collaborator in the world.”

Google has finally caught up to ChatGPT

Last year, when OpenAI introduced the world to ChatGPT, Google was caught flat-footed. The company that had been working on AI for many, many years had nothing to compete with ChatGPT. So it rushed to put out Google Bard in March of 2023. At first, it wasn’t all that great. However, Google has continued to improve on it, with plenty of new features announced at Google I/O in May 2023.

A month after launching Bard, Google announced that it had combined its two AI labs – Google Brain and DeepMind. This brought together more than 2,000 researchers and engineers, helping to improve Bard at a rapid pace.

Now, with Gemini, Bard is taking the next step and is surpassing ChatGPT. Of course, Google is comparing it to GPT-3.5, which is not the latest version of ChatGPT right now. However, GPT-4 is a paid subscription with a waitlist. So, there are very few people actually using GPT-4.


[ad_2]
Source link

Beeper Mini is a new app for iMessage on Android that turns your phone number into a blue bubble

0
[ad_1]

Blue bubble mania continues with the release of a new app that lets you use iMessage on Android. However, this app differs from the rest in that it allows you to use your actual phone number, instead of an email address, so you can really fool your iPhone friends into thinking you’re part of the same ecosystem.

What is Beeper Mini and how does it work?

Beeper Mini is a new app from the folks at Beeper, the unified chatting app with a mac app companion, which lets you use iMessage, Telegram, Discord, RCS, and others on your Android device. Beeper Mini, however, allows Android users to send and receive only iMessages without having to provide their Apple ID credentials. The app is still in its early stages, but it already supports many of the most important iMessage features, such as group chats, high-resolution media sharing, emoji reactions, voice messages, and more.
Setting up Beeper Mini is simple. Just download the app from Google Play, tap on “continue with Google” to sign in with Google, grant the app permission to access your SMS conversations and contacts list, and then you’re on your way. Once you’ve finished setting things up, the app will seamlessly pull in your previous SMS conversations with iPhone users and upgrade them to iMessage.

These conversations will be arranged in a list like most chat apps, though you can pin certain conversations to the top. From the home screen, you can tap on the “New chat” button, swipe right to mark a conversation as unread, or swipe left on a conversation to mute it. From the top bar, you can change your display name and profile picture or access the app’s settings, where you can modify the theme, toggle read receipts, mute sounds, toggle push notifications, or connect your Apple ID — a step that is not completely necessary.

Is this secure?

After the Nothing Chats and Sunbird debacle, you would be one hundred percent justified in questioning the security of this app, and so Beeper has taken several steps to gain the trust of its security-conscious users. The Beeper Mini team published a technical deep dive into how the app works, along with other more technical documents and source code shared by the developer.
It is the opinion of those that know more about code than yours truly, such as Journalist and Android expert Mishaal Rahman, that the app is the first truly successful reverse-engineering of iMessage that doesn’t relay messages from a Mac Mini server farm or that requires you to sign in to your iCloud account.

In fact, the Beeper Mini team is so sure that their app is air-tight, that they’ve even gone as far as extending an invitation to security researchers to verify all of their claims. Boldly claiming the below and stating that they’re different from those “other apps”.


Is it free?

Beeper Mini will be free for the first seven days. After the 7-day free trial expires, the app will cost $1.99 per month. Beeper says the monthly cost of the app is so that the team can continue to improve the app by adding new features, and of course, to earn money since the app will be ad-free. This is a small price to pay if having the ability to use iMessage on Android is important to you.

What’s going to happen to the original Beeper app and my RCS messages?

Beeper Mini can work alongside the Messages app on your Android device (or whichever your default SMS/RCS app is). Beeper Mini will only handle iMessage conversations and anything that is not iMessage will continue to come in through your default SMS/RCS app. This means that you might need to use two apps — one for RCS and one for iMessage — on your Android device for now.

If this is an issue for you, you can always use Beeper Cloud, which is the new name for the original Beeper app. This app can incorporate iMessage, RCS, and many other messaging apps you may be using. However, please note that the cloud app will require you to sign in with your Apple ID and to have access to a Mac or PC for the initial setup. These extra steps are not needed on the Beeper Mini app since it connects directly to the remote network instead of using a server.

However, Beeper’s product roadmap states that Beeper Mini will continue to expand by adding more iMessage features such as importing past chat history, Facetime audio and video calls, and scheduled messages. Additionally, the app will gain support for Android OS chat bubbles, SMS, WhatsApp, and Signal, plus the other 10 non-encrypted chat networks that are currently supported on the Beeper Cloud app — among other planned features.

Eventually, Beeper Mini will replace Beeper Cloud and it will all become just one app again called “Beeper.” A new unified messaging app that uses a more advanced security protocol and was developed with Android’s Material Design in mind. You can download the app right now from the Google Play Store without having to go through a waitlist.

[ad_2]
Source link

New Malware Attacking MacOS Users

0
[ad_1]

Researchers have uncovered a new Trojan-attacking macOS user that is associated with the BlueNoroff APT group and their ongoing RustBucket campaign. 

As a subgroup of Lazarus, BlueNoroff possesses reverse engineering expertise because they spend time analyzing and patching SWIFT Alliance software as well as breaking apart legitimate software to uncover ways to steal a significant amount of money.

This financially driven threat actor targets ATMs, POST software and cryptocurrency businesses, banks, casinos, and fin-tech organizations. Major financial attacks, such as the theft of the Bangladesh Central Bank, were associated with this actor.

BlueNoroff Targeting macOS Users

The new loader variation was initially mentioned in a post on X (formerly Twitter).

The new loader variation mentioned on X

A malicious payload was disseminated via earlier RustBucket versions using an app that pretended to be a PDF viewer. 

According to Kaspersky, this new type was discovered within a ZIP package containing a PDF file with the title “Crypto-assets and their risks for financial stability,” and a thumbnail of the matching title page.

App structure
App Structure

According to researchers, it’s unclear exactly how the archive spread. The targets may have received an email from the criminals, similar to previous attacks. At the time of discovery, the app’s signature was still valid, but the certificate has since expired. 

“EdoneViewer,” an executable in universal format with versions for Apple and Intel silicon chips, was written in Swift. The main function, CalculateExtameGCD, is responsible for decrypting the XOR-encrypted payload. 

The app attempts to reduce the analyst’s attention by sending irrelevant notifications to the terminal while the decryption procedure is underway.

The .pw file is a Trojan that was discovered; it is a universal format file, just like the loader. The file collects and communicates to the C&C the following system information:

  • Computer name
  • OS version
  • Time zone
  • Device startup date
  • OS installation date
  • Current time
  • List of running processes

In response, the Trojan expects one of three commands:

However, during the investigation, researchers did not get a single command from the server, which prevented them from learning the content for the next attack phase. Right now, the majority of anti-malware programs can identify the Trojan.


[ad_2]
Source link

Adobe ColdFusion Flaw Used by Hackers to Access US Govt Servers

0
[ad_1]

Authorities urge Adobe ColdFusion customers to promptly install patches and update their systems.

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a Cybersecurity Advisory (CSA) alerting organizations to the exploitation of a critical vulnerability in Adobe ColdFusion by unidentified threat actors.

The vulnerability, CVE-2023-26360, affects Adobe ColdFusion versions 2018 Update 15 (and earlier) and 2021 Update 5 (and earlier), as well as older ColdFusion installations that Adobe no longer supports.

Exploitation of CVE-2023-26360 allows threat actors to execute arbitrary code on affected systems, posing a significant security risk. The vulnerability was added to CISA’s known exploited vulnerability (KEV) catalogue right after its discovery, and an April 5 deadline was given to agencies to fix the issue. 

Adobe ColdFusion is a widely used software suite for web application development. Hackread has been reporting this vulnerability ever since it was discovered in March. We reported in August 2023 that this critical remote code execution (RCE) flaw, which impacts both Windows and macOS platforms, allows attackers to seize control of affected systems, making it a high-severity cybersecurity risk. Adobe released security patches to address the following vulnerabilities:

  • APSB23-40
  • APSB23-41
  • APSB23-47

However, FortiGuard Labs observed continued exploitation attempts at that time, indicating that some users had not yet applied the patches.

Now, the same vulnerability has been exploited by unidentified hackers to gain access to two systems within a Federal Civilian Executive Branch (FCEB) agency. Reportedly, the FCEB was running outdated versions, including ColdFusion, which made it vulnerable to the exploit. The hackers were able to gain initial access to two public-facing web servers within the agency’s pre-production environment.

At least two public-facing servers within a Federal Civilian Executive Branch (FCEB) agency were targeted with this vulnerability between June and July 2023. Here are the details of the attacks:

June 2: Initial access, reconnaissance activities (local/domain admin information, network configurations, user details), and deployment of a remote access trojan (RAT). Attempts to exfiltrate data, obtain credentials, download data from C2 infrastructure, and change policies were unsuccessful.

June 26: Attackers connected through a malicious IP address, exploited the vulnerability, and analysed running processes. They navigated the filesystem, deleted logs, and executed malicious code designed for ColdFusion versions 9 and below (targeting usernames, passwords, and URLs).

The code could enable future attacks and upload additional files from an unknown source. Password decryption was not possible due to the agency’s newer ColdFusion version. Attempts to conceal the web shell also failed.

While the hackers could insert malware and launch a reconnaissance campaign, there is no evidence of data exfiltration or lateral movement. The agency removed the compromised servers from the network within 24 hours of receiving the alert. CISA is yet to clarify whether the two attacks originated from the same operators.

  1. 68% of US Websites Exposed to Bot Attacks
  2. Fake Lockdown Mode Exposes iOS Users to Malware Attacks
  3. Cyberattack Defaces Israeli-Made Equipment at US Water Agency
  4. Hackers Leak Thousands of Idaho National Lab Employees’ PII Data
  5. USPS Delivery Phishing Scam Exploits SaaS Providers to Steal Data

[ad_2]
Source link

Google Calendar is set to simplify event & task creation

0
[ad_1]

Google Calendar for Android may soon get a much-needed quality-of-life update. The company is readying chips to quickly switch between Event and Task when creating a new calendar entry. Currently, you have to decide up-front whether you want to add an event or a task. If you accidentally pick the wrong option, you will have to start over and lose all the information you have already entered.

Google Calendar will make it easier to switch between Event and Task

Google’s Calendar app is a powerful tool for keeping track of events and tasks. Along with calendar events, it shows tasks from the Google Tasks app. Creating new entries is fairly simple too. You tap on the “Plus” FAB (floating action button) in the bottom right corner of the screen, select between Event and Task, and proceed to enter the details such as reminder time, repeat settings, and more.

However, the current method has a quirky flaw that can be annoying at times. You cannot switch between Event and Task once you start entering the details. The option you selected from the FAB is final. If you incorrectly picked one when you meant the other, you must go back and start afresh. Details you have already entered are lost and cannot be preserved.

Google is fixing this with new chips for Event and Task on the creation page. The chips appear below the Title field at the top. The default option is Event but you can quickly switch to Task with a tap. Most importantly, this switch doesn’t erase the information you have typed up, including the title and date. Even if you select the wrong option at first, you can correct your pick without losing anything you have entered before.

The chips are still in development

The new chips were spotted inside version 2023.48.0 of the Google Calendar app for Android. The feature isn’t live for users but app researcher @AssembleDebug could enable it. Subsequently, 9to5Google got it up and running. This suggests the feature is almost ready for a public rollout. However, there’s no timeline available yet. We will let you know when we have more information.

Meanwhile, make sure to keep the Calendar app updated to get new features early. The existing FAB isn’t going away, so there’s no change to how you do things currently. But if you ever need to quickly change a calendar entry from an event to a task, the new chips will come in handy. You can click the button below to install the latest version of Google Calendar from the Play Store.

DOWNLOAD GOOGLE CALENDAR


[ad_2]
Source link

Google just announced Gemini, its GPT-4 competitor!

0
[ad_1]

The battle between Google and OpenAI just got more intense, as Google finally released its answer to OpenAI’s GPT-4. It’s something that we’ve been waiting for, as its launch was actually delayed until January 2024. Well, it looks like there’s no delay, as Google just announced Gemini, its latest multimodal AI model.

Google Bard is already pretty powerful, but the company wanted to create something much more capable. At the beginning of the generative AI race, it was all about creating the most powerful AI chatbot. However, times have changed over the year since ChatGPT launched. Companies are all looking to create the most capable all-in-one AI model that can create text and images.

Google just announced Gemini, and it’s pretty powerful

Gemini is a major step forward for Google’s AI, and it doesn’t only go up against GPT-4, it also goes up against human brains- scary, right? Google ran Gemini through some fundamental benchmarks that pit it against human-level thinking, and it was able to make history. It’s the first model to ever best human experts in the MMLU (massive multitask language understanding benchmark; it scored 90.0%.

Below, we see a table with eight benchmarks. The table has Gemini’s scores compared to GPT-4’s scores, and we see it best the latter in most of them.

gemini benchmark

The one area where it fell to OpenAI’s model was in the “common sense reasoning for everyday tasks” area. While it scored lower, it wasn’t by much. We can bet that Gemini has plenty of common sense.

What can Gemini do?

The main difference between Gemini and Bard is the fact that the former is multimodal. This means that it can understand and give you results that are different forms of media. It’s built from the ground up to be multimodal, so the image, text, and audio models will seamlessly communicate in order to deliver the most relevant response.

This also means that it will be able to use different forms of media as input. Most models are only trained on text. As stated by Meta’s chief AI scientist, Nick Clegg, during a recent Meta event, “Text is a very poor source of information.” The ability of Gemini to understand so many different forms of media lets it understand the world that much more efficiently.

Three sizes fit all

Gemini will come in three different sizes depending on what you’re going to be using it for. The largest size is called Gemini Ultra, and it will be for the most complex and taxing tasks. You’ll expect enterprise-level entities to benefit from this model. Ultra should have access to all of the model’s features.

Next, we have Gemini Pro. This is the sweet spot of the three tiers. So, you can expect to get a fair amount of power with just the right number of compromises to keep it lightweight enough. It seems like this will be the most effective for advanced tasks; maybe people making a start-up could benefit the most from it.

Lastly, we have Gemini Nano. As you can tell by the name, it’s the smallest and most power-efficient model. Google says that this is the most efficient model for on-device AI tasks. In fact, the Google Pixel 8 will get access to this model.

Availability

This multimodal model will have a multi-stage rollout. Today, Google is releasing a “fine-tuned” version of Gemini Pro for Bard. This is the biggest update to Bard since its launch, and users should see an improvement in the chatbot. This is launching in English in more than 170 countries.

Also today, Google will launch Gemini Nano to the Pixel 8 Pro. This will only boost the phone’s AI power. Bear in mind that we’re talking about the Pro version of the Pixel 8. The regular variant won’t get it. However, you can grab a Pixel 8 Pro if you don’t want to miss out.

You’ll start seeing Gemini make it to other services like Search, Duet AI, and Chrome over the coming months. On December 13th, developers will be able to gain access to Gemini Pro.

Lastly, Google will launch Gemini Ultra sometime early next year. The company didn’t give us a specific month or fiscal quarter. We had rumors that the company delayed the entire Gemini project until January 2024. However, there’s a chance that only Gemini Ultra was delayed. In any case, we can expect some major changes to come to Google’s AI landscape with the launch of Gemini.


[ad_2]
Source link

X / Twitter acknowledges and is investigating performance issues on Google Pixel devices

0
[ad_1]
X, the app and social media site formerly known as Twitter, is facing potential performance issues on Google Pixel devices, according to user reports and recent acknowledgements from Twitter itself. Users have been noticing sluggish performance, including slow loading times, image issues, and delayed tweet sending.This comes amidst concerns about the general lack of attention given to the Android version of the app compared to its iOS counterpart. The Android app has traditionally lagged behind in features, such as a dedicated tablet layout.

As noted by 9to5Google, Fred Lohner, a member of the Twitter/X mobile development team, acknowledged the reports on the platform and requested user examples of the slow app performance. While some users haven’t encountered major issues, others report sluggish performance even on fast internet connections. Specific issues mentioned include:

  • Slow loading times: The app takes a long time to load initial content and refresh feeds.
  • Image loading issues: Images randomly stop loading or fail to display altogether.
  • Delayed tweet posting: New tweets take significantly longer to post than usual.
Additionally, one user experienced slow notification opening times on Android 14, though this may be a broader Android issue not specific to Twitter/X. It’s important to note, though, that the overall functionality of the Twitter/X Android app is generally good. However, these reported performance problems highlight the need for optimization and improvement on Pixel devices.

With Twitter/X actively seeking user examples, it’s expected that the team will investigate and address these issues in future app updates, even though X has yet to provide a timeline for a fix. Regardless, knowing that the issue is actively being worked on, is good news for Pixel users who rely on the Twitter/X app for their social media needs. Users experiencing slow performance are encouraged to report their experiences through the Twitter/X app’s feedback channels to help identify the root cause and expedite a solution.


[ad_2]
Source link