The Galaxy S23 FE is now available for purchase

0
[ad_1]

So, you want the Galaxy S23 experience, but you don’t have Galaxy S23 money. This sort of thing happens to us all the time, and it’s only getting worse with the state of the economy. Well, this is where the more affordable Samsung Galaxy S32 FE comes in. After months of waiting, the Galaxy S23 FE is now available for purchase.

In case you don’t know, Samsung has a line of more affordable devices under its FE (Fan Edition) line. This was sparked with the rerelease of the Galaxy Note 7. These devices heavily resemble their premium siblings to give you the impression that they’re just as premium.

Speaking of the FE line, Android Headlines just reviewed two FE products that you also get your hands on. Read our Galaxy Tab S9 FE+ Review and our Galaxy Bud FE Review to learn more about these products. The company has a whole Galaxy FE ecosystem.

The Galaxy S23 FE is now available for purchase

Folks have been waiting for this phone for a while, and it’s finally here for fans to get their hands on. It’s about as thick and heavy as a Galaxy S23 proper, and it shares the same design. So, if you really wanted to get a Galaxy S23, it’d be hard telling the difference.

This phone has a 6.4-inch Dynamic AMOLED 2X display with a 120Hz refresh rate and a 1080 x 2340 resolution. This screen is covered in tough Corning Gorilla Glass 5.

Moving onto the internals, this phone has the still-powerful Snapdragon 8+ Gen 1 SoC. This isn’t the latest and greatest from Qualcomm, but it’s definitely a powerful chip. This is backed up by 8GB of RAM and 128GB/256GB of storage. Keeping the lights on, we have a 4500mAh battery.

As for the cameras, the Galaxy S23 FE has a triple-camera setup on the back. The main camera is a 50MP camera, and that’s accompanied by a 12MP ultrawide and an 8MP 3x telephoto camera. Up front, there’s a 10MP selfie camera.

The Galaxy S23 FE starts at $599.99 for the 128GB variant. If you want to bump the storage to 256GB, it will run you $659.99.

Buy the Galaxy S23 FE – Amazon


[ad_2]
Source link

Google’s Bug Bounty program expands to generative AI

0
[ad_1]

Good old Google; this company is one of the leaders in the AI world, and it has a ton of potential to do harm. However, it’s doing what it can to reassure people that it’s handling its AI technology safely. This is why Google is extending its bug bounty program to generative AI.

Companies often hunt down and squash bugs in their software and products. However, handling the bugs and vulnerabilities in major pieces of software is sometimes too big for one company. This is why there are programs where independent firms and people are able to find bugs for the company, report them, and get a sum of money as compensation.

Google extends the bug bounty program to generative AI

Google also rewards people for finding bugs, and it does this through its bug bounty program. Until now, the company mostly focused on traditional software. However, the company just announced that its bug bounty program is expanding to include generative AI technology.

People have already been looking for and reporting bugs and security vulnerabilities regarding AI, but this program will help incentivize people to look for potential bugs. So, it’ll open the stage to more people. Google hasn’t explained too many details about the program, but you can read more about it on the official bug bounty page.

This is something that AI technology needs

Right now, even though this generative AI craze is about to turn a year old, it’s still relatively new in the grand scheme of things. There’s still a lot in the air. We don’t know the potential effects of generative AI, and we’re still not seeing those wide-reaching benefits that companies are touting.

Since generative AI involves so much data switching hands, this makes it a massive security risk. Opening the floor to more people to track down security bugs and vulnerabilities means that there are more eyes on these companies. and their AI models. This is what we’ll need if we want to mitigate the potential security risks of AI.


[ad_2]
Source link

Octo Tempest Attacking Organizations to Steal Financial Data

0
[ad_1]

Microsoft has been closely monitoring the Octo Tempest, a significant financial threat organization. 

This threat group employs various strategies and TTPs for worldwide extortion, making it one of the most sophisticated financial threat groups.

Octo Tempest, a native English-speaking group that uses:-

This group has been linked with the following threat clusters and started in 2022, targeting telecoms and BPOs for SIM swaps:-

  • 0ktapus
  • Scattered Spider
  • UNC3944

They made money by selling SIM swaps and taking over high-net-worth individuals’ accounts for cryptocurrency theft.

Attack evolution of Octo Tempest
Attack evolution of Octo Tempest (Source – Microsoft)

Octo Tempest Focus on Financial Data

Based on their early success, Octo Tempest expanded their tactics and targets. They extorted victim organizations for stolen data and joined ALPHV/BlackCat ransomware as a service. 

By mid-2023, they deployed ransomware to various industries, including technology and financial services. Octo Tempest’s methods include SMS phishing, SIM swapping, and advanced social engineering, challenging typical threat models.

The highly organized attacks of Octo Tempest showcase technical depth with multiple operators.

Octo Tempest TTPs
Octo Tempest TTPs (Source – Microsoft)

Octo Tempest targets technical admins with social engineering, mimicking victims to trick them into password resets and MFA changes. They even impersonate new hires to seem legit.

To get business credentials, Octo Tempest sometimes uses terror tactics by threatening people physically and using personal information, reads the Microsoft report.

Threats sent by Octo Tempest
Threats sent by Octo Tempest (Source – Microsoft)

Here below, we have mentioned all the tools used:-

  • Using PingCastle
  • Using ADRecon
  • Using Advanced IP Scanner
  • Using MicroBurst
  • Using Mimikatz, Hekatomb, Lazagne, gosecretsdump, smbpasswd.py, LinPEAS, ADFSDump, 
  • Using VMAccess Extension
  • Using privacy.sexy
  • Using ScreenConnect, FleetDeck, AnyDesk, RustDesk, Splashtop, Pulseway, TightVNC, LummaC2, Level.io, Mesh, TacticalRMM, Tailscale, Ngrok, WsTunnel, Rsocx, and Socat
  • Usage of the third-party tunneling tool Twingate

Octo Tempest’s goal is financial gain, employing diverse tactics like data theft from various sources, data exfiltration through file-hosting services, and employing Azure Data Factory for data movement. 

They also use legitimate Microsoft 365 backup solutions for data export and deploy ransomware for encryption, negotiation, and extortion, causing reputational damage.

Recommendations

Here below we have mentioned all the recommendations:-

  • Align privilege in Microsoft Entra ID and Azure
  • Segment Azure landing zones
  • Implement Conditional Access policies and authentication methods
  • Develop and maintain a user education strategy
  • Use out-of-band communication channels

Protect yourself from vulnerabilities using Patch Manager Plus to patch over 850 third-party applications quickly. Try a free trial to ensure 100% security.


[ad_2]
Source link

Horse Racing Game NEOBRED Integrates with Avalanche for Elite Gaming Experience

0
[ad_1]

NEOBRED, a blockchain horse racing game, has announced that it is integrating with the Avalanche blockchain. The integration will allow NEOBRED to offer players blazing fast and low cost gaming that delivers a superior web3 gaming experience.

In NEOBRED, players must breed and train their horses to create the fastest stable possible. They can then enter their horses into races and win prizes for finishing in the top ranks. By selecting horses with favorable genetic combinations, players can craft the optimum steed before subjecting it to intensive training to further enhance its attributes.

After retirement, each NEOBRED horse becomes a GENE that inherits its performance and can be paired with DNA to create new generations of offspring.While some players will seek out the full game experience, others will specialize in particular aspects such as breeding, training, or racing. This will support a vibrant in-game economy with strong demand for the best horses.

Avalanche is one of the fastest smart contract networks as measured by time-to-finality. Its scalability and throughput support a low fee environment making it one of the most cost-effective blockchains available. These characteristics make it the ideal platform for NEOBRED, which is committed to providing its players with smooth web3 gaming that doesn’t incur trade-offs.

“We are excited to integrate with Avalanche and offer our players a new level of gaming performance and efficiency,” said a spokesperson from NEOBRED. “Avalanche’s speed, scalability, and low costs have the potential to make NEOBRED one of the most enjoyable blockchain horse racing games on the market.”

“We are excited to welcome NEOBRED to the Avalanche ecosystem,” said Ed Chang, Head of Gaming at Ava Labs. “NEOBRED looks like it will take a proven on-chain game model with racing to the next level by improving gameplay.”

The NEOBRED game is set to launch later in Q4 of 2023. For more information about NEOBRED and its integration with Avalanche, please visit the NEOBRED website.

About Avalanche

Avalanche is a layer 1 blockchain that is known for its scalability, speed, and security. It uses a unique consensus protocol called Snow, which allows it to process transactions very quickly. Avalanche is home to a wide range of dApps, including DeFi protocols, NFT marketplaces, and gaming applications. 

About NEOBRED

NEOBRED is a blockchain horse racing game that is built on the Avalanche blockchain. The game allows players to own, breed, and race horses. Players can also earn rewards by participating in race. It is expected to launch in Q4 of 2023.

Website | Twitter | Discord | Telegram | Zealy

Media contact

NEOBRED Media Team

[email protected]


[ad_2]
Source link

Over 33 states file a lawsuit against Meta for ruining kids’ mental health

0
[ad_1]

The advent of social media platforms has undoubtedly had a big impact on society, considering multiple reports have directly linked apps like Instagram to the declining mental health of children. Now, in a recent development, more than 33 states have filed a lawsuit against Meta and Instagram, alleging that they prioritize financial gains over the protection of children.

The lawsuit, filed in a federal court in California, alleges that Meta, Instagram’s parent company, misled the public about the potential risks their platforms pose to children and teenagers in order to boost engagement numbers. Additionally, it argues that by emphasizing financial gains, these apps have shaped an entire generation of children, making them accustomed to features such as “Likes,” disordered eating, and cyberbullying.

Furthermore, the lawsuit also accuses Meta of violating the Children’s Online Privacy Protection Act (COPPA) by collecting personal data from users under 13 without proper consent.

Speaking on the matter, Tennessee Attorney General Jonathan Skrmetti stated, “This is a tough time in America. We have polarization, the likes of which we have not seen since the Civil War. And so for all of the attorneys general from both parties, people who frequently disagree very vocally and very publicly, to all come together and to move in the same direction, I think that says something.”

However, it’s important to note that this lawsuit follows claims made by Facebook whistleblower Frances Haugen, who exposed internal documents highlighting the adverse impact of Instagram on the self-esteem of young users.

Meta’s response

In response to this lawsuit, Liza Crenshaw, a spokesperson for Meta, emphasized the company’s dedication to providing a safe and positive online experience for teenagers. Additionally, she also pointed out that they have already introduced over 30 tools aimed at supporting teenagers and their families.

“We’re disappointed that instead of working productively with companies across the industry to create clear, age-appropriate standards for the many apps teens use, the attorneys general have chosen this path,” said Crenshaw.

Not the only lawsuit

According to Attorney General Skrmetti, the lawsuit against Meta is part of a broader “industry-wide investigation” because many of the company’s practices resemble strategies employed by other social media companies as well.

“This is not just about Meta, but as one of the biggest players and as an entity where there’s clear evidence of misleading the public and making deliberate decisions that hurt kids, I think it’s appropriate that we lead off with this particular lawsuit,” said Skrmetti.


[ad_2]
Source link

Indian Arrested for Stealing $150,000 via Computer Hacking

0
[ad_1]

A cybercriminal from India was taken into custody for utilizing computer hacking to steal a sum of $150,000 from an elderly woman.

A computer hacker is an individual with exceptional proficiency in computer technology, who is highly skilled in discovering and exploiting vulnerabilities in software and computer systems.

They possess a deep understanding of programming languages, network protocols, and system architectures, and use their knowledge to uncover weaknesses in security measures.

Fraud Incident

Jane Doe fell victim to a fraud incident due to a pop-up notification that appeared on her computer screen. The pop-up claimed that her system had been hacked and instructed her to contact customer service at a provided phone number.

Following Jane Doe’s acceptance, she was directed by a group of fraudsters to withdraw money from her bank accounts and store it at the “Fed.” Jane Doe complied and transferred a sum of $150,000 to the fraudsters in cash.

The FBI devised a trap by having Jane Doe inform the criminals that she possessed $50,000 in cash, which led to their apprehension.

So, Sukhdev Vaid and co-defendant Eddly Joseph came to Montana to steal money from Jane, and the Department arrested both criminals by installing Ultraviewer on Jane’s computer.

According to court documents, the government alleged that a sizable Indian enterprise was complicit in stealing funds from senior citizens in the United States. 

Even though Vaid was found guilty of hacking, he could face serious consequences including up to 20 years in prison, a fine of $250,000, and three years of supervised release.

The U.S. Sentencing Guidelines and other legally required criteria will be considered by the court when determining the sentence. Sentencing is scheduled for February 14, 2024, and Vaid is currently detained in custody after being arrested.

Protect yourself from vulnerabilities using Patch Manager Plus to patch over 850 third-party applications quickly. Try a free trial to ensure 100% security.


[ad_2]
Source link

OnePlus Open update delivers a bunch of camera & system improvements

0
[ad_1]

OnePlus has started to roll out a new update for its very first foldable smartphone, the OnePlus Open. This update is marked as OxygenOS 13.2.0.114, and it comes a day before the phone goes on sale. It has been available to pre-order for a while now, though.

A new update is rolling out to the OnePlus Open, with a ton of improvements

In any case, this update has a rather long changelog, which is separated into several categories. OnePlus delivers improvements in the following categories: System, Communications, and Camera.

This update weighs 138MB, and it’s rolling out over the air (OTA), of course. So, what’s new? Well, in regards to the ‘System’ section, OnePlus delivered the September 2023 Android security patch to the OnePlus Open.

The company is also improving the full screen layout for the live streaming page on Facebook. The Split View has also been improved for landscape mode. This update also delivers a better experience for finding recently used apps on the taskbar. The same goes for opening three apps in Split View.

In specific cases, accidental touches have been recognized as screen off gestures, that has been fixed too. The touch sensitivity of the main display has also been tweaked by OnePlus.

OnePlus listed quite a few camera fixes and improvements too

In regards to the ‘Camera’ section, OnePlus rolled out quite a few fixes. The camera app now shows the equivalent focal lengths for zoom options. The default wide-angle length can be changed. The Dolby Vision effects have been improved by the update as well.

The video-taking experience via tapping and holding the shutter button has been improved. OnePlus has also improved the stability and performance of the camera app in general, and the same goes for video-taking as well. The company also mentioned improvements in the photo-taking quality department.

This update is rolling out gradually, so you may not get it straight away. Everyone should have it within the next couple of days, though.

OnePlus Open October 2023 update


[ad_2]
Source link

X introduces audio & video calling, for better or worse

0
[ad_1]

X, formerly known as Twitter, has gone from being a regular social media platform for people to express their thoughts to now striving to become the “everything app” under the leadership of Elon Musk. Now, instead of fixing the much-important issue of misinformation, X has introduced a new feature that enables users to make audio and video calls.

As previously hinted by the current CEO, Linda Yaccarino, and owner, Elon Musk, the new video and audio calling feature is initially rolling out to iOS users. However, it is important to note that people will have the ability to customize who can call them and how this feature functions. To adjust the settings, users with access to the feature can navigate to the DM section’s settings and click on the small gear icon in the top right corner of the screen. On the subsequent page, they will find options to accept calls from verified users, individuals they follow, and contacts from their address book.

Does X even need a video calling feature?

For those wondering why X has introduced a video and audio calling feature, it’s part of the comprehensive plan of the current leader, Elon Musk, who envisions the platform as an all-in-one app for conversations, video consumption, and payments.

However, there are concerns surrounding the introduction of this feature. This is because not everyone receives an initial notification about the new calling feature, as it is enabled by default. And given X’s history of inadequately addressing harassment and abuse, some users may remain unaware of the feature until they face an unwelcome interaction.

Furthermore, there is a valid question about whether X should prioritize such features when the app has faced numerous criticisms from the EU and other governing bodies regarding the potential spread of disinformation, particularly concerning news related to the ongoing Israel-Palestine conflict. Moreover, to make matters worse, recent reports have suggested that in an attempt to boost premium accounts, X may be contributing to the misinformation pandemic concerning the conflict.


[ad_2]
Source link

Meta denies Pro-Palestinian content suppression, Malaysia to issue a warning to TikTok

0
[ad_1]

Meta and TikTok are close to getting an official warning from Malaysia’s communications regulator over the alleged blocking of pro-Palestinian content.

As Reuters reports, the communications minister in Malaysia is concerned with supposed censorship that regards pro-Palestinian content on both Facebook and Instagram, as well as on the short video-sharing app that’s popular mainly among the youth.

After Fahmi Fadzil (Malaysia’s communications minister) accused the social media platforms of restricting content supporting the Palestinians, Meta quickly denied it and said it was not deliberately suppressing voices on Facebook.

A spokesperson from Meta said there was “no truth” to the claim. “Our policies are designed to keep people safe on our apps while giving everyone a voice,” the spokesperson said in an email to Reuters on Thursday.

“If this issue is ignored, I will not hesitate to take a very firm approach and stance,” Fahmi said in a posting on the social media platform X. Without elaborating on what this firm approach might include besides an official warning, Fahmi said many parties in Malaysia had urged the government to take action against Meta and TikTok for allegedly restricting pro-Palestinian content. Fahmi said Malaysians have a right to freedom of speech regarding the Palestinian cause, adding that right will not be taken away.

He’s to meet TikTok representatives next week to discuss the matter.


[ad_2]
Source link

Spain Arrests 34 Cybercriminals Who Stole Data of 4M People

0
[ad_1]

Law enforcement officials have successfully apprehended a notorious criminal organization responsible for perpetrating computer scams and stealing sensitive data belonging to more than four million individuals.

Law enforcement officials arrested a criminal organization consisting of 34 cybercriminals. During the operation, authorities conducted 16 searches in various towns and seized several items, including two simulated firearms, a katana, a basketball, 80,000 euros in cash, four high-end vehicles, a database containing information on 4 million individuals, a computer, and electronic equipment worth thousands of euros.

Close to €3 million was illegally obtained by the group through various fraudulent means such as smishing, phishing, vishing, the son-in-distress scam, manipulation of technology company delivery notes, and pretending to be employees of an electricity supply company while engaging in vishing campaigns.

Spoofing Techniques

Smishing: Smishing is a text message tricking recipients into clicking a link or sending private information to an attacker.

Phishing: Phishing is a social engineering and scam where attackers deceive people into revealing sensitive information or installing malware such as ransomware.

Vishing: Vishing is a phone scam to steal confidential information from individuals or organizations.

Cryptocurrency assets were purchased by the leaders of the network using their profits. They also created fake documentation and used spoofing techniques to conceal their identities.

A specialized agent from the Central Cybercrime Unit conducted an investigation and discovered a criminal network that had unlawfully accessed the databases of several financial and credit institutions.

The network had deposited varying sums of money from the credit institution into their customers’ accounts.

Various banks’ identities were impersonated in vishing campaigns, while electricity supply companies’ identities were used in phishing campaigns, along with the ‘son in distress’ scam. The information was utilized for these purposes.

The organization’s fraudulent scheme consisted of rerouting the products obtained from suppliers towards the organization itself, effectively sidestepping the intended recipient company that had purchased the computer and electronic goods.

The main leaders of the network have been arrested, and over 1,000 complaints have been resolved, with the possibility of identifying more perpetrators and victims.

Protect yourself from vulnerabilities using Patch Manager Plus to patch over 850 third-party applications quickly. Take advantage of the free trial to ensure 100% security.


[ad_2]
Source link