Dimensity 9300 stress test reveals heavy CPU throttling

0
[ad_1]

Earlier this month, MediaTek launched a new 4nm flagship Android smartphone processor, the Dimensity 9300. While it is a highly capable SoC, it lacks power-efficient CPU cores. The Taiwanese firm has fitted the chipset with four prime cores and four mid cores. Unsurprisingly, there are concerns about its efficiency and thermal management capabilities. It appears the company is relying on heavy performance throttling to keep the temperature in check.

A stress test shows the Dimensity 9300 throttling the CPU to stay cool

The Dimensity 9300 features one Cortex-X4 prime core clocked at 3.25GHz, three more Cortex-X4 cores at 2.85GHz, and four Cortex-A720 mid cores at 2.0GHz. MediaTek says this “groundbreaking All Big Core” design brings a 40% boost in peak CPU performance. However, with no efficiency cores, it was bound to be a power hog when running at its peak speed. There have been reports of the chip getting uncomfortably hot long before it arrived.

We expected MediaTek to throttle the CPU to ensure that the Dimensity 9300 doesn’t overheat. It has turned out that way. YouTuber @KaroulSahil recently ran the CPU Throttling Test on the new MediaTek processor to measure its performance. The test loads the CPU with up to 100 threads, which are a series of instructions or tasks. The test results posted (via Wccftech) on X show that the chip started throttling after just two minutes.

While throttling, one of the new MediaTek chip’s CPUs operated at a frequency of just 0.60GHz. Four of them ran at a speed of 1.20GHz while the other three reached a 1.50GHz frequency (the peak CPU speed is 3.25GHz). That’s a massive performance throttling. As you can see in the image below, the Dimensity 9300’s CPU was throttled to 46% of its max performance to avoid overheating and keep power consumption in check.

Dimensity 9300 CPU performance throttling test

This test was carried out on the Vivo X100 Pro. The device features a vapor chamber to efficiently dissipate heat away from the processor and main board. However, that doesn’t seem to have helped the Dimensity 9300 perform at peak speed for much longer. The chip itself is fabricated using TSMC’s energy-efficient N4P 4nm process node but the lack of efficiency cores was always a problem.

CPU throttling in normal use should be lower

Of course, it isn’t like competing chipsets, such as Qualcomm’s Snapdragon 8 Gen 3, won’t throttle the performance during the CPU Throttling Test. The sole purpose of the test is to push chips to their limits. Even the most thermally efficient processors can’t pass the test without CPU throttling. The Dimensity 9300 may not throttle its CPU so much during normal use. However, from what it looks like, ditching efficiency cores wasn’t a wise move from MediaTek. It remains to be seen whether the company will stick to this CPU design for the Dimensity 9400 next year.


[ad_2]
Source link

North Korean Hackers Exploit MagicLine4NX Zero-day

0
[ad_1]

North Korea, DPRK threat actors, have been reportedly involved in several supply-chain attacks to gain unauthorized access to the intranet of an organization.

One of the software exploited by the DPRK threat actors was the MagicLine4NX security authentication program, which contained a zero-day vulnerability.

This vulnerability allowed initial intrusion into an internet-facing system and moved laterally or gained unauthorized access to information.

The threat actors were using a watering-hole attack for these attacks in which one compromise led to supply-chain infection.

The vulnerability was undisclosed but found to be existing in versions MagicLine4NX 1.0.0.1 ~ 1.0.0.26.

Document
Free Webinar

In the upcoming webinar, Karthik Krishnamoorthy, CTO and Vivek Gopalan, VP of Products at Indusface demonstrate how APIs could be hacked. The session will cover: an exploit of OWASP API Top 10 vulnerability, a brute force account take-over (ATO) attack on API, a DDoS attack on an API, how a WAAP could bolster security over an API gateway

MagicLine4NX Zero-day

As part of the initial access with the Watering-hole attack, threat actors compromised a media outlet website and deployed a malicious script that runs only when accessed by specific IP ranges. 

Suppose any victim from the particular IP range opens an infected article on the compromised website. In that case, the malicious code is executed due to the vulnerable software that connects the victim’s computer to the Command and Control server (C2), providing remote access to the threat actors.

Attack Flow (Source: NCSC)
Attack Flow (Source: NCSC)

The threat actors were then able to access an internet-connected server from the compromised system and exploit the data synchronization function of the network-linked system for spreading malicious code to business-side servers and stealing sensitive information.

Two C2 servers

The business servers affected with malicious codes had two C2 servers one of them acts as a gateway in the middle, and the other is located on the external internet.

In addition to this, the malicious code was capable of exfiltrating initial beacon data and executing encrypted payloads.

However, the code was not able to move laterally due to the security policy of the solution and was blocked from moving, which prevented several pieces of information from being exposed.

Furthermore, a complete report has been published by NCSC, providing detailed information on the DPRK threat actors and their supply chain attack vectors.

Experience how StorageGuard eliminates the security blind spots in your storage systems by trying a 14-day free trial.


[ad_2]
Source link

Global OnePlus 12 launch confirmed for January

0
[ad_1]

Not long ago, a tipster, Max Jambor, claimed that the OnePlus 12 will launch globally in January. Not only that, but he said that the OnePlus 12 series will launch then, as in more than one phone. Well, OnePlus has just confirmed that a global OnePlus 12 launch will occur in January.

Global OnePlus 12 launch will take place in January, it’s confirmed now

The information appeared on various global OnePlus websites. What is interesting, however, is that OnePlus is not mentioning the OnePlus 12 series. The company simply says ‘OnePlus 12’. So, either OnePlus is holding off with the ‘series’ announcement, or Max Jambor was wrong.

The company did not say when exactly will the OnePlus 12 arrive either. All that we know is that it’s coming in January, that’s it. Earlier today, however, OnePlus confirmed a ton of information about the device, including a December 5 initial launch date.

OnePlus also released plenty of images of the device, showing it from all sides, basically. Not only that, but the device was shown from all sides in all color options. So there’s basically nothing left to hide design-wise.

The phone will resemble the OnePlus 11, but its hole punch on the display will be in a different spot, it’ll be centered. Also, the alert slider will move from the right side to the left, which is a change not many people will appreciate.

The phone will feature three rear cameras, including a periscope shooter

Those images also confirmed a triple camera setup on the back, with a periscope camera as part of the package. Hasselblad will once again be included in the mix, and the phone will feature a curved display. Its backplate will also be curved towards the sides.

The Snapdragon 8 Gen 3 will fuel the OnePlus 12, while the phone will mark the comeback of 50W wireless charging to the brand. Extremely fast RAM and storage will also be included, and an incredibly bright display too, BOE’s X1 panel.

All in all, there’s plenty to look forward to when it comes to the OnePlus 12.


[ad_2]
Source link

Save $70 on this 1080p Logitech webcam

0
[ad_1]

You missed out on Black Friday (shoot!), but don’t worry. You have a second wind, as Cyber Monday is alive and well. This is your chance to pick up some amazing tech at amazing discounts. Today, you can pick up the 1080p Logitech StreamCam 1080 for $70 off its original price. This brings it down from $169.99 to just $99.99.

So, you’ve been flirting with streaming on Twitch or YouTube, and you need a trusty webcam to capture you. There are plenty of 1080p webcams on the market, but most of them just have crappy video quality. 1080P means that there are 2,073,600 pixels in the picture, but it doesn’t matter if those pixels don’t look good.

Logitech professionally calibrated this camera to give you a truly high-quality picture. Factors such as the colors, exposure, and contrast all look amazing on the camera.

The Logitech StreamCam 1080 sits comfortably on the top of your display with a moveable arm anchoring it into place. This means that you don’t have to worry about it wobbling or falling off while you’re streaming.

Along with being secured, this device is well-built. It’s a sturdy device that can take drops and other impacts. That’s important in case your controller “accidentally” slips out of your hand when you lose that round in Call of Duty.

The Logitech StreamCam 1080 is a wired webcam, which means that it’s a plug-and-play device. You don’t have to deal with a complicated setup process to get it working. Just plug it into the USB port on your computer and start streaming.

This is the perfect addition to your streaming setup. If you want to get your streaming career off of the ground, it’s a great place to start.


[ad_2]
Source link

Google expands Quick Phrases functionality to Pixel Buds Pro

0
[ad_1]

In a recent development, Google has expanded its Quick Phrases functionality beyond Pixel phones to include Pixel Buds Pro. It offers users a more seamless experience in managing voice actions. Originally introduced with the Pixel 6, Quick Phrases enable users to perform voice commands without the need to initiate with the customary “Hey Google.”

Quick Phrases was Initially available for only alarms and timers. However, it gained additional functionality last year with the introduction of the “Silence” command for handling incoming calls. With this recent update, Pixel Buds Pro users can now leverage the convenience of Quick Phrases to answer, decline, stop, and snooze. It accomplishes all without the need to verbally prompt the voice assistant.

Pixel Buds Pro users can now effortlessly manage alarms, timers, and calls

Interestingly, Google has updated the Assistant settings page to specify the devices on which each command is available. While Pixel Buds Pro is explicitly mentioned, users have reported successful implementation on the A-Series as well. It demonstrates Google’s under the hood efforts for a broader compatibility.

Folks at 9to5Google founds the feature to be working reliably in their testing. The Pixel Buds Pro accurately interpreted answer/decline commands. And it worked even when the paired phone was in a different room. Additionally, the feature appears to have been extended to the A-series as well, even though the updated Assistant settings page only mentions the Pixel Buds Pro.

Quick Phrases are still quite limited

Nonetheless, it’s essential to note that Google has yet to introduce any additional Quick Phrases. It limits the feature to manage alarms, lights, timers, time, and weather. Although development hints at the potential for custom Quick Phrases beyond the current eight presets, there hasn’t been official confirmation or documentation regarding this expansion.

The expansion of Quick Phrases to Pixel Buds Pro underscores the company’s commitment to expand the intuitive and convenient voice command functionalities across the Pixel ecosystem.


[ad_2]
Source link

A number of Google Drive users lost data, Google is investigating

0
[ad_1]

It seems like Google potentially lost Google Drive data for multiple users. Do note that this could just be a bug of some sort, though… it remains to be seen. What exactly happened? Well, let’s delve into it.

Google Drive users lost data, as Google is investigating what happened

A user by the name ‘Yeonjoong’ reported an issue less than a week ago, on Google issue tracker. He basically said that his Google Drive files “suddenly disappeared”. He claims that “the Drive literally went back to condition in May 2023”.

So, basically everything he put on the Drive after May 2023 is not there anymore. He did not delete any files manually, and there are no files in the Trash. The user also mentioned that he never syncs or shares his files with anyone else.

He also tried to fire up the recovery program after reaching out to the Google support team from South Korea, but it didn’t help. He reported the issue to the Google support team, he guesses in the United States, and was then passed on to the company’s engineer.

That user did not get a response, it seems, but another one did. ‘User 18316101495719567270’ said that the Google Support team said that they’re “continuously tracking this case”, and that this is not an isolated case.

Google is trying to figure out what happened, and retrieve lost data

It was said that the issue is “being investigated by our Product Engineers and we are also waiting for a root cause analysis as well on how we can fix it”. The message also asked the user not to make changes on the root/data folder in Google Drive until further notice.

A number of other users reported the same thing in the same thread, basically. Let’s hope that Google’s Project Engineers will be able to find a way to recover lost data, and that this is not permanent. If it is, then it’s an even bigger problem than initially thought.


[ad_2]
Source link

Google Messages brings Ultra HDR photo sharing to RCS chats

0
[ad_1]

Google Messages, the default messaging app for many Android users, has been making strides in enhancing the user experience. The team behind the app is currently working on an update that aims to simplify photo sharing, and it looks like it recently added Ultra HDR support in RCS chats.

Recent reports from TheSpAndroid (via Android Authority) indicate a subtle addition to the app has been made—support for Ultra HDR in RCS chats. Apparently, the feature was quietly introduced just before the launch of the Pixel 8 and Pixel 8 Pro.

Ultra HDR, an image format exclusive to Android 14, enhances the messaging experience for RCS users. To use the Ultra HDR feature, users will need an Android 14 device, like the Pixel 8 series, for capturing Ultra HDR images. Ultra HDR support in RCS chats means users can now share high-quality photos with enhanced colors, contrast, and overall visual fidelity.

HDR stands for High Dynamic Range. It is a technique used to capture images with a wider range of colors and tones than traditional photography. This results in more realistic and lifelike photos, with darker shadows, brighter highlights, and more detail.

Ultra HDR is a new take on HDR. It builds upon the standard JPEG format by adding HDR metadata. This means that Ultra HDR images will appear as normal on non-HDR displays. However, on HDR displays, the metadata will be used to enhance the image and provide a more vibrant visual experience.

Although there are no visible indicators identifying an Ultra HDR image, the HDR gain map is applied when viewing it. Google Messages retains the HDR gain map, suggesting potential developments for the future of this image format and the messaging platform.

The addition of Ultra HDR support is a welcome addition to Google Messages. It makes it easier for users to share high-quality photos with friends and family. With the continued development of HDR technology, we can expect to see even more impressive image quality in the future.


[ad_2]
Source link

DarkGate Malware-as-a-Service Evolved as Complete Toolkit

0
[ad_1]

DarkGate is a complete toolkit, first discovered in 2018, that provides attackers with extensive capabilities to access target systems completely.

On underground cybercrime forums, an actor known as RastaFarEye develops and sells the software as Malware-as-a-Service (MaaS).

The malware is offered through a subscription-based approach that costs up to $15,000 per month, justified by the fact that the malware has been developed continuously since 2017.

The features of DarkGate include information-stealing capabilities, privilege escalation, keylogging, a Hidden Virtual Network Computing (HVNC) module, and the ability to download and execute files to memory.

Document
Free Webinar

In the upcoming webinar, Karthik Krishnamoorthy, CTO and Vivek Gopalan, VP of Products at Indusface demonstrate how APIs could be hacked. The session will cover: an exploit of OWASP API Top 10 vulnerability, a brute force account take-over (ATO) attack on API, a DDoS attack on an API, how a WAAP could bolster security over an API gateway

All of these traits attracted the interest of cybercriminals, who began to acquire the tool and compromise the systems of businesses and people all over the world.

Figure 6: Overview of the DarkGate v4 multistage infection chain. The initial vector is either a remote VBS script or local MSI file. The VBS method retrieves an AutoIT binary and second stage payload remotely. Meanwhile, the MSI file directly drops the embedded payload. Both vectors ultimately execute an AutoIT script to launch the next loader stage, culminating in DarkGate v4 installation.
Overview of the DarkGate v4 multistage infection chain

An Attack Utilizing an Emerging Malware Family – DarkGate

An attack utilizing an emerging malware family called DarkGate was successfully discovered and stopped by the Trellix Security Operations Center (SOC) on September 20, 2023, against Musaruba, the holding company for Trellix and Skyhigh Security.

The attacker sent a Teams message with a link to a group of employees while posing as a senior executive of Musaruba. The link opened a ZIP file hosted within SharePoint, but only the employees who got the mail could view it, presumably to keep researchers from analyzing it. 

 “This ZIP compressed file contained five Windows shortcut or LNK files trying to masquerade a PDF file using the double extension method, “.pdf.lnk”. Also, these files used a deceptive PDF icon to lure unsuspecting users into executing the file”, Trellix said in a report shared with Cyber Security News.

These files included a Windows Batch script that uses the Windows Script Host’s “CScript.exe” program to run the VBS script once it has been retrieved from a remote server using the Windows’s “curl” utility.

The Continued Evolution of the DarkGate Malware-as-a-Service

DarkGate version 4 was launched in June, which included sophisticated evasion tactics, command and control capabilities, and a variety of modules for credential theft, keylogging, screen recording, and other functions.

Figure 6: Overview of the DarkGate v4 multistage infection chain. The initial vector is either a remote VBS script or local MSI file. The VBS method retrieves an AutoIT binary and second stage payload remotely. Meanwhile, the MSI file directly drops the embedded payload. Both vectors ultimately execute an AutoIT script to launch the next loader stage, culminating in DarkGate v4 installation.
Overview of the DarkGate v4 multistage infection chain

A new execution chain utilizing DLL side-loading and improved shellcodes and loaders is introduced in DarkGate version 5. It does, however, still include some version 4 functionality, such as AutoIT scripts and the first phases of VBS/MSI.

Figure 14 Overview of the DarkGate v5 multistage installation chain. The VBS method retrieves an AutoIT binary and second stage payload remotely. Meanwhile, the MSI executable drops a legit application and the DLL that will be side-loaded, which will execute a shellcode to download and execute the second stage payload.
Overview of the DarkGate v5 multistage installation chain

It was previously reported that only 10 people were able to get the tool due to its limited release. Now that this number has increased to 30, DarkGate is considered a limited MaaS in comparison to previous versions.

Despite its limited client base, it is imperative to emphasize the seriousness of the cyber threat.

Experience how StorageGuard eliminates the security blind spots in your storage systems by trying a 14-day free trial.


[ad_2]
Source link

Different OnePlus 12 launch date gets announced, my suspicion was right

0
[ad_1]

The OnePlus 12 won’t launch on December 4 after all. A different OnePlus 12 launch date has just been announced, thus proving my suspicion. Are you confused? Well, let me explain.

The OnePlus 12 launch date is set for December 5, not December 4

Last week, OnePlus announced some sort of event for its anniversary on December 4. The company did mention the OnePlus 12 in its announcement, but OnePlus did not specifically say that the phone will launch on that date.

OnePlus managed to fool plenty of publications with this, as many of them took that mention of the OnePlus 12 as a rule. Well, it turns out that the phone will launch a day later, on December 5.

The global launch is expected to occur in January

Do note that this is a China launch that we’re talking about. The OnePlus 12 global launch is expected to take place in January. In fact, Max Jambor mentioned the OnePlus 12 series, so we may get more than one phone.

In any case, the OnePlus 12 event will kick off at 2:30 China time on December 5. That translates to 8:30 AM CET / 7:30 AM BST / 2:30 AM EST / 11:30 PM PST (December 4).

OnePlus confirmed the phone’s design recently

The company actually confirmed the phone’s design recently. The phone will resemble its predecessor quite a bit, but its display camera hole will be centered this time around, and the alert slider will also sit in a different spot.

OnePlus showed us the phone’s design from all angles, while the company also provided us with all the colors too. The OnePlus 12 is coming in three color options, and one variant will seemingly include vegan leather on the back.

50W wireless charging is making a comeback

You can expect top-of-the-line specs inside of this phone. The Snapdragon 8 Gen 3 will be included, and the same goes for top-of-the-line RAM and storage. 50W wireless charging will make a comeback, and will be paired with 100W wired charging. We’re only scratching the surface here, check out our OnePlus 12 preview for more information.

OnePlus 12 launch confirmation


[ad_2]
Source link

Dbrand’s X-ray skins offer unique glimpses inside your device

0
[ad_1]

Canadian skin and case manufacturer Dbrand has not only taken a rival case maker to court for allegedly copying its unique “Teardown” skins, but have also unveiled an impressive set of X-Ray skins. The X-ray skins have required a 450-kilovolt X-ray machine to delve millimeters deeper into a device’s components. Using X-ray for imaging the components has yielded some never seen before results, that are impossible to obtain by a simple teardown and photographing in visible light.

Dbrand’s X-Ray skins are not limited to some handful of devices either. The company has X-rayed an extensive list of 125 devices, including Dell XPS, Razer Blade, Framework laptops, Microsoft Surface Pros, gaming consoles like the Steam Deck, Nintendo Switch, Sony PS5, Xbox Series X, and S, and the Lenovo Legion Go handheld, and the obvious ones like the latest iPhones and Galaxy devices.

From ‘Teardown’ to X-Ray: Dbrand takes skin customization to a whole new level

CEO Adam Ijaz shared insights into the technology behind these skins (via The Verge), revealing a custom-built 450-kilovolt unit with a 431.8mm detector capable of capturing details at an impressive 50-micron resolution. This level of precision allows Dbrand to achieve extraordinary detail in an uninterrupted scan, setting it apart from alternatives with significantly lower resolutions.

Dbrand holds an exclusive license with Haven Metrology for the use of digital X-ray imaging in the production of hardware accessories. Ijaz emphasized that unless a specific military defense contractor enters the business of making X-Ray cases, Dbrand remains the sole entity with access to this cutting-edge technology for their purposes.

These skins come in both ‘Dark’ & ‘Light’ versions

The company’s X-Ray skins offer both “Dark” and “Light” versions for a limited time. will provide users with the flexibility to choose the style that suits their preferences. The pricing ranges between $25 and $50 excluding taxes and shipping costs.

Dbrand continues to push the boundaries in creating unique customized skins for your device and the latest X-Ray skins are no doubt the most innovative of all, besides the fact that the new product line is the first to catch my eyes on the product category.


[ad_2]
Source link