Samsung Auto Blocker is here to protect your Galaxy device

0
[ad_1]

Along with One UI 6, Samsung is delivering not just improvements and new features, but also a handful of new applications that further enhance the security of your Galaxy device.

One such app is Auto Blocker, a new security tool that comes along with One UI 6 and promises to protect your Galaxy device “in the way that best fits [your] lifestyle.”

The main purpose of Auto Blocker is to prevent the installation of apps from unauthorized sources, which is about anywhere but Google Play Store and Galaxy Store. It’s important to mention that if you’d rather sideload apps (install them from sources other than the ones Samsung considered authorized), this feature will not affect you because it’s off by default.

However, if you’re not in the habit of sideloading apps, then Auto Blocker should provide an additional layer of security, which comes in handy especially with the rise of voice phishing, where attackers could talk users into installing malicious software.

The security app has a handful of additional controls, including the ability to turn on app security check to help detect potential malware and prevent harmful commands and software installations via USB cable. Also, the app can protect users in a situation where someone has physical access to their device.

As per Samsung’s statement, Auto Blocker is only available on Galaxy devices compatible with One UI 6, which is a bit strange considering that it won’t have issues running on older phones like the Galaxy S20.


[ad_2]
Source link

US-Led Alliance of 40 Countries Unites to Combat Ransomware Threat

0
[ad_1]

Cybersecurity experts welcome the alliance’s efforts, considering it a crucial step in combating the ransomware threat.

A US-led alliance of 40 countries is taking aim at the ransomware ecosystem, with a new initiative to disrupt payments, take down infrastructure, and share intelligence.

The initiative was launched two months after the severe MGM ransomware attack and two years subsequent to the Colonial Pipeline ransomware attack, during which the company paid a ransom of 75 Bitcoins (equivalent to $4.4 million at that time) to the DarkSide ransomware group.

The alliance, which was announced on October 31 2023, is a response to the growing threat of ransomware attacks, which have targeted businesses, governments, and individuals around the world. Ransomware attacks involve criminals encrypting a victim’s data and demanding payment to decrypt it.

The alliance’s efforts will also focus on three key areas:

  • Disrupting ransomware payments: The alliance will work to disrupt ransomware payments by blacklisting cryptocurrency wallets and accounts used by ransomware gangs. They will also work to develop tools and techniques to track and seize ransomware payments.
  • Taking down ransomware infrastructure: The alliance will work to take down ransomware infrastructure, such as servers and command-and-control servers. This will make it more difficult for ransomware gangs to operate.
  • Sharing intelligence: The alliance will share intelligence about ransomware gangs and their tactics, techniques, and procedures. This will help them to better understand the threats they face and to develop more effective countermeasures.

In addition to these measures, as reported by Reuters, the alliance is also working to educate the public about the dangers of ransomware and to help organizations improve their cybersecurity posture.

It is worth noting that the alliance’s announcement is entirely contrary to the FBI’s long-standing advice to ransomware victims, which has been to pay the ransom. Nevertheless, cybersecurity experts welcome the alliance’s efforts, considering them a crucial step in combating the ransomware threat.

“Ransomware is a global problem, and it requires a global response,” said Anne Neuberger, deputy national security adviser for cyber and emerging technologies in the Biden administration. “The International Counter Ransomware Initiative is a significant step forward in our efforts to disrupt the ransomware ecosystem and protect our citizens and businesses.”

Watch as Deputy National Security Advisor Anne Neuberger as she delves into international cyber cooperation initiatives aiming to bolster resilience against ransomware. She highlights efforts focused on disrupting ransomware operations, pursuing those accountable for its widespread existence, and countering the illicit financial framework that supports the ransomware ecosystem.

The alliance’s efforts are a sign that the world is taking the ransomware threat seriously. By working together, the alliance can make it more difficult for ransomware gangs to operate and protect people and businesses around the world.

  1. 5 Biggest Ransomware Attacks of All Time
  2. Lessons from the Holy Ghost Ransomware Attacks
  3. FBI and CISA Issue Joint Advisory on Snatch Ransomware Threat
  4. Kaspersky Reveals Alarming IoT Threats and Dark Web DDoS Boom
  5. White House Cybersecurity Strategy: Software Firms Liable for Breaches

[ad_2]
Source link

Google ‘math solver’ is getting a major upgrade

0
[ad_1]

If you find math difficult, then the new Google search engine upgrade might help you out. This upgrade makes it easier for students to do their math homework with the help of their smartphone. Yes, the Google search engine will be able to help you out with those difficult math questions.

Google offers two ways for users to make use of the math solver feature that is now rolling out. The first way is to type the entire question into the text bar, and the second way is to use Google Lens and take a picture of the question. For most users, Google Lens is the way to go, as they might have a hard time typing math questions into the text bar.

Either way, the user picks the Google Math solver will provide a guide on how to solve the question. By following the steps it gives, users will be able to complete their assignments whilst learning. If you are a student struggling with math then this feature is great for you.

Students can benefit and learn from the new Google Math solver feature on the search engine

Math can be difficult at times, that’s why the new Google search update is bringing a feature to help students. The math solver feature is accessible via the Google search app on Android, iOS, and web devices. For Android and iOS devices, users have the option to type in the math questions or more conveniently use the Google Lens feature to take a picture of it.

Once the question has been uploaded to the search engine, a response is given back to the user. This response includes step-by-step instructions guiding the user on how to solve the math problem. Students around the world will come to appreciate this feature, as it’ll help guide them as they get done with their math assignments.

To access this feature, users should type “math solver” into the search bar on the Google App. This will pull up the math solver feature for quick usage on the search engine. From here, users can type in their math problems (supports word problems) or snap them for solutions.

Aside from this math solver feature, Google is also offering other educational tools on the search engine to help students. These features are currently rolling out to users via an app update from the Google Play Store or the App Store. If you are yet to see this feature on your Google Search app, it means that you’re yet to get the update.


[ad_2]
Source link

Google antitrust trial highlights conflicts between search & ads teams

0
[ad_1]

Google is in the middle of an antitrust trial in the US. That trial has been ongoing for quite some time now, and new information keeps on coming. This trial is semi-private, though, so we have to hunt for info. The latest information reveals conflicts between search and ads teams over at Google.

Conflicts between Google search & ads teams gets highlighted during the trial

A report by Bloomberg says that this period is referred to as “Code Yellow”. It occurred back in 2019. It seems like the head of Google Search (at the time), Ben Gomes, raised some concerns about ads being too heavily entwined with search.

As a reminder, these are two completely separate divisions within the company. The company got quite concerned when it thought it wouldn’t meet the search revenue targets for that quarter. That’s why the ‘Code Yellow’ term was used.

For that reason, engineers from Google Search and Chrome browser teams were reassigned for seven weeks, to investigate what’s going on. They were supposed to figure out why queries had slowed down.

We didn’t get many details regarding this, but it sure is an important detail

This conflict between the two teams is rather important, as both of those divisions are under the microscope at this trial. Chances are we’ll hear more about this moving forward, but not much information surfaced, unfortunately.

Recently, it was revealed that Google paid Apple a staggering amount of $18 billion in 2021 to stay the default search engine on Apple devices. The company paid over $25 billion overall that year to keep its place. That sum was paid to various companies, and Apple is included in the equation.

Regardless of how this trial ends, it will shake Google. We’re past the halfway point of this trial, but there’s still plenty to go, so we’re expecting a lot more information. If you’d like to know more about the Google vs DoJ trial, check out our huge article linked here.


[ad_2]
Source link

Vivo X100 series flagships will launch on November 13

0
[ad_1]

The launch date for Vivo’s latest flagships has been confirmed. The Vivo X100 series will launch on November 13 in China. Three smartphones are expected, but the rumors are all over the place, so who knows.

The Vivo X100 series launch date has been revealed, they’re coming in two weeks

We’ll most likely see the Vivo X100, Vivo X100 Pro, and Vivo X100 Pro+ launched during the event. The event itself was confirmed by the company on Weibo, China’s social media network.

The event will take place at 7 PM China time / 1 PM CET / noon BST / 7 AM EST / 4 AM PST, in case you’re wondering. It will be in Chinese, though, so chances are not many of you will follow along.

Vivo X100 series launch date

Vivo does usually release its flagship lineups to more markets, to some of them. The point is that global variants do become a thing after the initial launch. So, chances are that we’ll get a global variant of at least one of these devices.

In addition to those devices, Vivo will also announce a new smartwatch, the Vivo Watch 3. You can check out the official image of that watch below. The Vivo Watch 3 will run Vivo’s BlueOS, and have a round smartwatch. Unfortunately, that’s all the information we have about it.

Vivo Watch 3 image 1

ZEISS optics will once again be a part of the package

The Vivo X100 series, on the other hand well, some info did surface. The rumors and leaks are kind of mixed together. The Vivo X100 Pro+ is expected to ship with the Snapdragon 8 Gen 3, and four powerful cameras on the back. ZEISS optics will once again be a part of the package.

This series of phones will be the first to use the LPDDR5T RAM, the fastest RAM on the market. A 6.78-inch QHD+ OLED display with a 120Hz refresh rate is expected on the top-end model.

A 50-megapixel Sony IMX898 camera is tipped to be included, along with a 50-megapixel ultrawide shooter (Sony’s IMX589 sensor). On top of that, a 50-megapixel portrait camera (Sony’s IMX758 sensor) could sit on the back. The last camera on the back will be a 200-megapixel unit from Samsung, the ISOCELL HP3 camera.


[ad_2]
Source link

Best screen recording software in 2023

0
[ad_1]

In the modern world, most people encounter videos of various types, ranging from educational to entertaining. Due to this, many content creators need to decide on reliable software that will allow them to create quality screen recordings and become familiar with how to start a video podcast in 6 simple steps. Our experts have studied the market and identified several of the best programs that help you create successful screenshots. This article will provide brief reviews of screen video recording tools that are popular in 2023.

Screen recording has now become a popular activity that allows content creators to create tutorials, gameplay, guides, and other types of content. However, you must turn to reliable recording software to get the most favorable results and learn how to record any live stream. Below, we will briefly describe several screen video recording tools that have gained popularity and are in demand in 2023.

Camtasia

Camtasia is one of the most popular screen recording software that allows users to take advantage of many features and tools for editing videos. This program is compatible with many video formats and can record websites, video calls, etc. The application also has many editing tools with which you can improve the quality of the video, add transitions, text, music, and special effects, and remove unnecessary parts.

Almost all of the program’s features are free, so if you’re looking for a simple and convenient way to create an incredible recording, you’ve come to the right place. Additionally, Camtasia makes it easy to collaborate with third-party platforms and makes it easy for beginners to use. This software is perfect for professionals and novice users who, before using the application, can watch a video tutorial that describes the editor’s features in detail. Many video templates and visual effects are here to make your video bright and exciting.

Loom

Loom is a software that was founded in 2015. This program allows users to create high-quality screen recordings and edit videos without leaving the platform. The application has a distinctive feature – the ability to record video using any method, such as a microphone, built-in sound, camera, or screen. After recording, your video will be automatically saved in the cloud, and you can access it anytime.

In addition, this software allows you to create and edit videos and interact with viewers collaboratively. Loom is similar in functionality to the DeskShare app and also allows content creators to edit and collaborate on content professionally. Every time new viewers visit your account, you will receive notifications, which will not allow you to miss any news.

Movavi

Movavi is a reliable screen recording program that has gained popularity due to its wide selection of video editing tools. Here, you can edit music movies, add visual effects, create slideshows, and add video titles. In addition, the program is perfect for novice users who have yet to experience similar programs due to its intuitive and straightforward interface. With Movavi, you can create screen recordings and edit them directly from your mobile phone or other device anytime. There are tools for cropping, removing excess parts, color correction, adding transitions, and more.

Nvidia ShadowPlay

Nvidia ShadowPlay is a software tool that is designed to record screen videos. This option is created exclusively for Windows operating system users and is a powerful program that allows you to create professional videos. The uniqueness of the application lies in the fact that it is designed to record games and can automatically save various exciting moments that occurred during the game. With ShadowPlay, you can record video in 8K HDR format using hardware acceleration. Such features mean that the video will be continuous and will not play back with delays. The software is compatible with various devices and offers seamless collaboration across multiple platforms.

OBS Studio

OBS Studio is a reputable and popular software that allows you to create high-quality screen recordings and work with various formats. The program is free and can mix and match multiple materials. You can combine an image, text, screenshot, or image from a webcam or an Internet window. The platform has an intuitive interface that even a beginner can understand and quickly access all functions, including editing videos. Here, you can see tools for trimming the video, removing unnecessary frames, and adding text, sound, incredible transitions, or visual effects. Take advantage of a wide range of options and create a high-quality recording at a professional level!

Conclusion

Since video has become a popular way to grow your business, communicate with your audience, and provide educational content in today’s world, content creators need to choose reliable software that can help them successfully record and edit their screens. We have provided a list of several of the best screen video recording software that are reputable and have gained popularity in 2023. However, it is essential to remember that the best application should be chosen based on your goals, requirements, and needs. After reviewing each program’s characteristics, you will find one that will have several functions and capabilities that are suitable for you.


[ad_2]
Source link

Hackers Abuse NuGet Packages to Deliver SeroXen RAT

0
[ad_1]

The NuGet package manager, which .NET developers widely use, has been under attack by a series of malicious activities, according to a report by cybersecurity firm ReversingLabs. 

The report, which follows previous investigations on npm, PyPI, and RubyGems ecosystems, shows that NuGet is also vulnerable to software supply chain attacks by threat actors.

The report reveals a coordinated campaign that started in August, where attackers have abused NuGet’s MSBuild integrations feature, showing a more sophisticated and stealthy way to compromise the open-source ecosystem. 

The campaign, similar to earlier attacks on npm and PyPI, shows the persistent attempts of these attackers to undermine the trust and security of software packages.

The Hidden Danger: Abusing NuGet’s MSBuild Integrations

ReversingLabs researchers have discovered a novel execution technique used by these attackers. 

Instead of using conventional methods where malicious code is embedded in initialization and post-installation PowerShell scripts, the attackers used the `<packageID>.targets` file in the “build” directory. 

This technique allows them to conceal the malicious functionality, raising alarms about the quality of open-source packages.

The discovery goes back to a package named “IAmRootDemo,” which revealed the core of this execution technique. 

By exploiting MSBuild integrations, attackers can run code embedded in inline tasks, posing a significant security risk for developers depending on external packages.

Typosquatting and Decoy Packages

The malicious packages identified by ReversingLabs, such as ZendeskApi.Client.V2, Betalgo.Open.AI, and Forge.Open.AI, are part of the same elaborate scheme initiated in August. 

These packages cleverly used typosquatting on popular NuGet packages, making them hard to distinguish from legitimate ones. 

Utilizing MSBuild integrations
Utilizing MSBuild integrations to execute malicious code in NuGet packages


Moreover, the attackers used spaces and tabs to hide the malicious code, adding another level of deception.

The Ongoing Fight for Software Supply Chain Security

This revelation highlights the urgent need for improved visibility inside software packages to differentiate between malicious and legitimate functions. 

Traditional application security testing tools face difficulties in combating these advanced attacks, requiring specialized skills and modern solutions. 

ReversingLabs Software Supply Chain Security emerges as a vital tool, filling the gaps and enabling development and application security teams to protect their supply chains from compromise.

As developers navigate the complex landscape of open-source ecosystems, vigilance and proactive security measures are essential. 

The evolving tactics of threat actors require a collaborative effort from the cybersecurity community, developers, and organizations to ensure the integrity and security of software packages. Stay tuned for further updates as the cybersecurity landscape continues to evolve.

Protect yourself from vulnerabilities using Patch Manager Plus to patch over 850 third-party applications quickly. Try a free trial to ensure 100% security.


[ad_2]
Source link

Iran’s Scarred Manticore Targets Middle East with LIONTAIL Malware

0
[ad_1]

Scarred Manticore is targeting high-profile organizations focusing keenly on telecommunication, military, and government entities apart from financial institutions, IT service providers, and NGOs.

Check Point Research (CPR) and Sygnia’s Incident Response Team have uncovered a new Iranian espionage campaign they have tied to the notorious Scarred Manticore threat group.

In its technical report titled “From Albanian to the Middle East: The Scarred Manticore is Listening,” it is revealed that the group is using a previously undocumented malware framework called LIONTAIL. This malware uses custom loaders and memory-resident shellcode payloads to blend its malicious functionalities into legitimate network traffic.

Researchers believe that the primary goal behind this campaign is espionage. This threat actor is among the Iranian actors involved in destructive cyberattacks against the Albanian government infrastructure at the behest of MOIS (Ministry of Intelligence & Security) back in July 2022. CPR claims that this threat group has been active since at least 2019, prefers gaining covert access, and persistently pursues data extraction.

Further probing revealed that Scarred Manticore is targeting high-profile organizations in the Middle East in this ongoing espionage campaign, focusing keenly on telecommunication, military, and government entities apart from financial institutions, IT service providers, and NGOs.

Though the LIONTAIL framework appears unique with no code overlaps with any known malware family detected thus far, the other tools used in the attacks overlap with previously reported attacks. Some of these attacks are linked to the OilRig or OilRig-affiliated clusters but there’s insufficient evidence to link the Scarred Manticore group with OilRig. 

Since 2019, this group has been using a custom toolset to compromise internet-exposed Windows servers in the Middle East. In this particular campaign, CPR has uncovered, that the victims are located in Saudi Arabia, the UAE, Kuwait, Jordan, Iraq, Oman, and Israel.

The geographic regions targeted in this campaign and Scarred Manticore’s previous activities sharply align with Iranian interests and with the typical victim profile targeted by MOIS-sponsored groups in espionage operations.

Scarred Manticore’s toolset has evolved considerably over time as from open-source web-based proxies, they gradually switched to powerful tools combining open-source and custom components. The Tunna-based web shell is one of the group’s earliest tools, an open-source tool used to tunnel TCP communications over HTTP to let attackers connect to any service on the remote host, even those blocked by firewalls. 

This actor now uses a range of IIS-based backdoors to target Windows servers, including custom web shells, custom DLL backdoors, and driver-based implants. The custom malware framework LIONTAIL, which CPR dubbed ‘digital chameleon,’ can establish persistence on compromised systems and steal sensitive data without being detected. It uses custom loaders and special codes to remain in the computer’s memory and hijacks the HTTP.sys driver to become a part of the regular network activity.

Iran's Scarred Manticore Targets Middle East with LIONTAIL Malware

The evolution in Scarred Manticore’s tools and capabilities demonstrates the progress Iranian threat actors have undergone within the past few years because the techniques used in recent campaigns are far more sophisticated than previous ones tied to Iran.

  1. Iran-linked hackers hit Israeli, US and EU defence tech firm
  2. GhostSec Claim Breaching Iranian Govt Surveillance Software Tool
  3. Iranian Hackers Posed as Israelis in Targeted LinkedIn Phishing Attack
  4. Iranian Stalkerware ‘Spyhide’ Steals Data from 60,000 Android Devices
  5. Ransom fail: Iranian hackers leak trove of Israeli LGBTQ dating app data
  6. Log4Shell – Iranian Hackers Accessed Domain Controller of US Federal Network

[ad_2]
Source link

Samsung Game Launcher app gets a name change, new features incoming

0
[ad_1]

Samsung’s One UI 6.0 update brings a lot more changes than we initially thought. Just about every aspect of Samsung’s user interface, as well as most of the apps that come pre-installed, have received new features and improvements or complete revamps in some cases.

The Game Launcher app is not an exception, which isn’t really a surprise since Samsung announced the change before actually releasing the stable version of One UI 6.0.

What’s important though is the fact that Samsung plans to turn Gaming Hub into much more than just a simple launcher app. As spotted by SamMobile, Gaming Hub will be getting “many different features over time.”

As per Samsung’s description, “Gaming Hub aims to be a gaming platform that not only automatically groups your installed games and provides various convenient features, but also provides a more diverse gaming experience.”

Apart from the name change, the Gaming Hub didn’t receive any new features or major improvements, but since Samsung felt the need to inform users about its future plans, it looks like the app will play a very important role in the company’s push for gaming.


[ad_2]
Source link

Atlassian Asks Customers to Fix Critical Security Flaw Right Away!

0
[ad_1]

Atlassian has been reported with a critical vulnerability in their Confluence Software, which several organizations have widely adopted.

The CVE for this vulnerability has been assigned as CVE-2023-22518, and the severity has been given as 9.1 (Critical).

Atlassian has addressed this vulnerability in its recent security advisory and fixed it on its latest version. Additionally, they have also released affected versions of Confluence for this vulnerability.

CVE-2023-22518 – Improper Authorization Vulnerability

This vulnerability affects Confluence Data Center and Server customers, potentially leading to significant data loss if exploited by an unauthenticated threat actor. Atlassian hasn’t released any additional details about this vulnerability.

“As part of our continuous security assessment processes, we have discovered that Confluence Data Center and Server customers are vulnerable to significant data loss if exploited by an unauthenticated attacker. There are no reports of active exploitation at this time; however, customers must take immediate action to protect their instances. Please read the Critical Security Advisory below for instructions and vulnerability details,” reads the advisory by Atlassian.

Atlassian also confirmed that publicly accessible Confluence Data Center and Server versions are at critical risk and require immediate attention.

Affected Versions and Fix 

ProductAffected VersionsFixed Versions
Confluence Data Center and ServerAll versions are affected7.19.16 or later8.3.4 or later8.4.4 or later8.5.3 or later8.6.1 or later

Mitigation

To mitigate this issue, Atlassian has recommended their users “Back up the instance” and, if possible, “Remove the instance from the internet until this can be patched.”

Users of these products should upgrade to the latest versions to prevent these vulnerabilities from getting exploited. 

Protect yourself from vulnerabilities using Patch Manager Plus to patch over 850 third-party applications quickly. Try a free trial to ensure 100% security.


[ad_2]
Source link