What is the Dark Web, Search Engines, and What Not to Do on the Dark Web

0
[ad_1]

In this article, we will delve deeper into what is the dark web, exploring its definition, the top dark web search engines, and, crucially, the key precautions to observe when venturing into this hidden side of the Internet.

In the hidden part of the internet, there’s a mysterious place called the “Dark Web.” It’s like a secret world where people go to find things that are not allowed on the regular internet but it is an ideal place for whistleblowers, journalists, researchers, dissidents, etc., to protect their privacy online.

In this article, we’ll try to explain what is the Dark Web, how you can get there, and the things you should and shouldn’t do if you decide to check it out.

What Is the Dark Web?

The Dark Web, often mistakenly used interchangeably with the “Deep Web,” constitutes a small but significant portion of the vast internet. Unlike the Surface Web, which encompasses websites indexed by search engines, the Deep Web includes all web pages that aren’t indexed, such as your personal emails and private databases. The Dark Web, however, goes further into obscurity.

It operates on anonymous networks, most notably Tor (The Onion Router), which reroutes internet traffic through multiple servers, making it exceedingly difficult to trace. This inherent anonymity has led to the proliferation of both legal and illicit activities within this clandestine world.

How to Access the Dark Web

Accessing the Dark Web is not as straightforward as using mainstream web browsers like Chrome or Firefox. To begin your journey, follow these steps:

  1. Download and Install Tor: Visit the official Tor Project website to download and install the Tor Browser, specifically designed for anonymous web browsing.
  2. Stay Updated: Keep the Tor Browser updated to ensure you have the latest security patches.
  3. Use a VPN (Optional): For an extra layer of anonymity, consider using a virtual private network (VPN) alongside Tor.
  4. Stay Informed: Familiarize yourself with the intricacies of Tor and its safety measures to minimize risks.

You can also use the Brave browser to access the Dark Web and Onion domains because the browser has its own Tor Onion service accessible through the Tor gateway.

1. Ahmia.fi

Ahmia.fi, a search engine tailored for the “dark web” or “dark net,” grants access to the hidden layers of the internet, exclusively reachable via specific software like the Tor browser. Ahmia stands among the select few dark web search engines that make this secretive online domain more accessible.

Notably, Ahmia maintains a strict policy against “abuse material,” distinguishing it from many other dark web search engines that also index content related to child sexual abuse. Ahmia is available on the surface web and supports searches on the i2p network as well. You can visit Ahmia’s .Onion domain here

Deep Search, an open-source dark web search engine, is dedicated to indexing and searching the onionspace, the concealed services section of the Tor network. Users have lauded Deep Search for providing precise and valuable results, a notable departure from the spammy links often encountered on other platforms.

Additionally, Deep Search offers a comprehensive list of marketplaces, exchanges, and websites involved in fraudulent activities. To explore Deep Search, you can access its Onion domain here.

3. Haystak

Haystak, designed for the Tor network, is a dark web search engine boasting an impressive index of over 1.5 billion pages, encompassing more than 260,000 websites. This makes Haystak a valuable resource on this list.

Haystak also offers a paid version with added features, including the ability to search using regular expressions, access now-defunct onion sites, and utilize their API. For those interested, Haystak’s Onion link can be found here.

4. The Hidden Wiki

The Hidden Wiki serves as a dark web directory exclusively accessible through the Tor network. This site contains links to a variety of different websites, making it a valuable resource for those seeking to navigate the dark web safely and conveniently. Additionally, there is a surface web version available. You can visit The Hidden Wiki by following its Onion link here.

5. Torch

Torch, a long-standing dark web search engine in operation since 1996, performs the essential task of crawling addresses and indexing their content, making it searchable for users. However, it falls short in terms of search results accuracy, as observed from personal experiences. Despite this, it remains a fast and useful tool. You can explore Torch through its .Onion link here.

What Not to Do on the Dark Web

The main purpose of the Dark Web was not to serve a specific single intent. Instead, it evolved as a hidden part of the internet where users could have increased privacy and anonymity. It was initially developed by the U.S. Naval Research Laboratory for secure communications.

Over time, it has been used for various purposes, including protecting free speech, circumventing censorship, and enabling confidential and anonymous communication. However, it has also gained notoriety for being a space where illegal activities can occur due to the high degree of anonymity it offers.

Therefore, it’s important to note that while the Dark Web has legitimate uses, it has also become associated with illegal trade, hacking, and other illicit activities including the following:

  1. Engage in Illegal Activities: The Dark Web is infamous for hosting illegal marketplaces where you can find everything from drugs and stolen data to counterfeit passports. Engaging in such activities is not only unethical but also exposes you to legal repercussions.
  2. Share Personal Information: Protect your identity on the Dark Web. Do not disclose your real name, location, or any personally identifiable information.
  3. Trust Blindly: The Dark Web is rife with scams and deceit. Always exercise caution and scepticism when interacting with others.
  4. Download Files Recklessly: Downloading files from the Dark Web can be risky. Only obtain content from sources you trust, and use strong antivirus software to scan downloads.
  5. Venture Unprepared: Before exploring the Dark Web, educate yourself about the risks and equip your device with security measures.
  6. Participate in cybercrime: Participating in cybercrime or black hat activities on the Dark Web is both illegal and unethical, carrying serious consequences. Black Hat Hackers engage in activities that compromise computer systems, steal sensitive data, and cause harm to individuals, organizations, and even governments. These actions violate not only the law but also principles of digital ethics. Engaging in such activities can lead to severe legal repercussions, including imprisonment and hefty fines, not to mention damage to one’s reputation.
  7. Keeping Java enabled: Enabling Java in the Tor Browser is strongly discouraged for several reasons, including security risks, fingerprinting, and reduced anonymity. As Java is known to have security vulnerabilities, it can be exploited by cybercriminals to potentially steal your cryptocurrency funds and by state-sponsored hackers to conduct surveillance on your activities.
  8. Using Google as a search engine: Google utilizes various tools, such as Google Analytics, to construct comprehensive profiles of its users. While this approach contributes to improving search results and the overall user experience, it necessitates the collection of substantial personal information, including names and locations.
  9. STOP and NEVER Distribute Child Sexual Abuse Material (CSAM): According to a recent report, Dark Web paedophiles are already using Open-Source AI to generate CSAM. However, engaging in malicious activities, such as distributing Child Sexual Abuse Material (CSAM), is abhorrent and illegal, whether on the clearnet (the visible internet) or the Dark Web, for a multitude of compelling reasons:
  • Criminal Offense: The distribution and possession of CSAM is a serious criminal offence, and those involved can face severe legal consequences, including lengthy prison sentences. It’s an indefensible crime that causes immense harm to children.
  • Victim Exploitation: CSAM involves the exploitation and abuse of children. Sharing such material perpetuates the suffering of the victims, who are often subjected to horrific abuse and harm.
  • Ethical Repugnance: Engaging in CSAM activities is fundamentally unethical and morally reprehensible. It violates the rights and well-being of innocent children, causing irreparable harm.
  • Destruction of Lives: Those who create, distribute, or consume CSAM contribute to the destruction of young lives and their long-term psychological and emotional trauma.
  • Negative Consequences for the Internet: Engaging in such activities not only ruins lives but also leads to stricter regulations and monitoring of online activities. This compromises the privacy and freedoms of all internet users.
  • Anonymity Doesn’t Guarantee Immunity: While the Dark Web offers a higher degree of anonymity, it is not foolproof. Law enforcement agencies have successfully tracked down and apprehended individuals involved in CSAM activities on the Dark Web.
  1. What is an OSINT Tool – Best OSINT Tools 2023
  2. DarkBERT: Enhancing Cybersecurity Efforts on the Dark Web
  3. Unreleased Music Stolen and Sold on Dark Web: Hacker Fined
  4. Russian Dark Net Markets Dominate the Global Illicit Drug Trade
  5. 10 Top DDoS Attack Protection and Mitigation Companies in 2023

[ad_2]
Source link

Google Wallet supports state IDs in three more states

0
[ad_1]

Google has had some wild ambitions with Google Wallet. Since its inception, the company wanted to make it a replacement for your real-life wallet. Well, this decade-long mission is getting closer to fruition, as Google Wallet supports IDs in three more states.

At the moment, everyone can load a plethora of different cards onto their Google Wallet. This includes credit/debit cards, rewards cards, gift cards, membership cards, and others. Well, Google wants to take it a step further by letting you load legitimate methods of identification onto the app. This includes state-issued IDs, driver’s licenses, and passports.

So far, Google allows people in the state of Maryland to load their IDs. It’s been testing this since last year. We know that the company is hard at work expanding this to more states.

Google Wallet supports IDs in three more states

As you can tell, getting an entire state to allow people to load their IDs onto their Google Wallets is a tough thing to pull off. This is why the rollout is so slow. Well, according to a new report, there’s been progress on that front. Folks in Arizona, Colorado, and Georgia can load their IDs to their Google Wallet.

If you live in one of these states, then you can add your ID today. Just know that this is a pretty involved process.

Adding your ID

Tap on the Add to Wallet button at the bottom of the screen and select the ID option. On the next screen, you’ll choose the state that you live in. Each state will be represented with a card with an image depicting something notable about the state.

For instance, the Georgia card will show a peach. As for the other states, Arizona will show you a cactus in a desert, Colorado will show you a Bighorn sheep, and Maryland will show you a crab.

When you select the state, you’ll then need to submit a picture of the front and back of your card. Make sure that both pictures are clear and well-lit. You’re also going to send in a short video clip to make sure that for an extra layer of security. You never know if the pictures were photoshopped.

Things to keep in mind

Having your ID on your phone is a neat thing, but there are just a few things that you’ll want to remember. While your ID is on your phone, it won’t be accepted everywhere, so you will want to carry your physical card with you. Many places will still need you to present an actual plastic card.

Next, this isn’t available for Android users, unfortunately. We’re not sure when Android compatibility will roll out, but only iPhone users can use this.

While only four states are supported, there are about 30 more states that are getting this set up. So, don’t be surprised if your state is in the next batch.


[ad_2]
Source link

Despite the streamer’s price hike, T-Mobile’s Netflix on us sees no changes except for one scenario

0
[ad_1]
It was back in September 2017 when T-Mobile debuted “T-Mobile One with Netflix On Us.” It was one in a long line of Un-carrier moves made by the carrier designed to set T-Mobile apart from the competition. According to The Mobile Report, T-Mobile says that it plans to continue offering the promotion to its subscribers despite the higher subscription prices for the service announced by the video streaming platform last week.
In a support page put up by T-Mobile for its “Netflix on us” promotion, the carrier notes the changes being made by Netflix and responded by saying, “On October 18, 2023, Netflix announced pricing changes for its plans. The good news is that there are no changes for T-Mobile customers. For eligible customers, it’s still On Us!” So if you qualified to receive free Netflix before the rate hike, you’re still qualified to receive it now.
With one qualifying Magenta Max line or two or more qualifying Magenta lines, T-Mobile subscribers can receive free service under the most basic Netflix tier which allows streaming over one screen. You can get free Netflix service under its standard tier, which allows service over two screens, if you have two or more qualifying Magenta Max lines in good standing.

But there is one scenario under which T-Mobile subscribers will end up paying more for Netflix on us. Netflix increased the price of its premium tier of service to $22.99 per month while the standard tier remains at $15.49 per month. The Standard tier is the highest that T-Mobile is willing to pay for. If you’re a T-Mobile subscriber and already have a premium Netflix account that you’re paying for yourself, T-Mobile will cover the $15.49 monthly tab and you will be responsible for the remaining $7.50 per month. 

Before T-Mobile hiked the price of its premium service, if you had your own premium Netflix plan and T-Mobile paid $15.49 toward your subscription each month, you laid out $4.50 12 times a year. But after the $3.00 price hike by Netflix, you are now paying $90 annually for premium Netflix service up from $54 before the price hike.

So yeah, as long as you stick to the standard or basic Netflix tiers, the price hike by Netflix will not affect your free T-Mobile subscription. But if you subscribe to the premium service, you will be paying for Netflix’s recent price hike even though T-Mobile will pay for some of your service.


[ad_2]
Source link

Android QR code reader now zooms in on codes

0
[ad_1]

Don’t you hate it when you need to scan a QR code, but it’s too far away? That happens much too often, but Google has a solution for it. According to a new report, the built-in Android QR code reader now automatically zooms in on codes from a distance.

This feature has been in testing for a bit, and an early version of this function was discovered a while back. Now, Google is officially pushing the update to people. Depending on what company made your phone, you might get the update later than others. If you’re on a Pixel phone, then you should expect it sooner rather than later.

The Android QR code reader zooms in on QR codes

If you’re trying to scan a QR code from across a restaurant or on a far-away sign, it can be troublesome. Sometimes, you can’t get close enough, but you don’t want to let the opportunity go. This is the thinking behind this feature. It’s an update to the built-in QR code scanner, so you don’t have to download anything.

All you have to do is access your QR code reader and point it at the code you want to scan. The reader will detect that you’re trying to scan a distant code and automatically zoom in. This will eliminate the need to move from your spot.

Just know that the effectiveness of this feature will rely on your camera’s resolution. If you’re sporting an 8MP camera, you won’t have as much reach as a 16MP camera. So, camera quality and image processing will play a role in how effective this tool is. Also, if you’re trying to scan a QR code in a dark environment, your results will vary.

Right now, Google is in the process of rolling this out, so you should expect to wait a bit. It’s only been spotted on a Pixel 8 Pro thus far, so it will make it to more phones as time goes on.


[ad_2]
Source link

If your Fire TV storage is low, Amazon’s got your back

0
[ad_1]

Streaming devices don’t particularly come out with a ton of storage with most high-end offerings sporting 16GB. As such, maxing out a device’s storage isn’t a challenge, but Amazon’s got your back in case you start running low on GB’s. Amazon Fire TV has a new Auto Offload feature that will save you space.

How does the Fire TV Auto Offload feature work?

You should be familiar with this concept if you remember the Nextbit Robin. That phone had a feature where it would automatically upload data from apps that you haven’t used in a while to the cloud. Then, it would delete that app data, thus saving you space.

That concept hasn’t taken off in the mobile world, but it’s still a useful feature. Well, Amazon is going to bring its own take on it. Announced on Medium, Amazon has this new Auto Offload feature that will do as the name implies.

There are two steps to this feature. Firstly, if an app hasn’t been used in at least 30 days, then the software will delete that app’s cache. Secondly, if your device dips below 800MB of available space, then the software will delete apps that you haven’t used in 60 days.

This is a neat feature to have because it’s easy to forget about apps that we don’t use in a while. What’s the point of having them on the device if they’re not being used?

Now, if you rediscover your love for that app and want to use it again, the operating system will automatically sign you back into the app so you can pick up where you left off. This is to give the illusion that it wasn’t even deleted in the first place.

There are exceptions

This feature won’t apply to all of the apps on your device. There are some core Fire TV apps that won’t be deleted. As you can imagine, native Fire TV apps won’t be deleted. You can enable/disable this feature from the settings menu. So, if you don’t like it, you won’t need to have it on.

Amazon started rolling this feature out earlier this month, so there’s a chance that you’ll already have it. However, the rollout isn’t going to be complete until early November.


[ad_2]
Source link

Ragnar Locker ransomware group taken down

0
[ad_1]

One of the oldest active ransomware gangs has been taken down by an international cooperation of law enforcement agencies

Even though it had a long run for a ransomware group, it seems the bell might be tolling for Ragnar Locker. On October 19, 2023, the group’s leak site  was seized by an international group of law enforcement agencies.

seizure notice on Ragnar Locker's leak site

The take down action was carried out between 16 and 20 October. During the action searches were conducted in Czechia, Spain and Latvia. The main target, suspected of being a developer of the Ragnar group, has been brought in front of the examining magistrates of the Paris Judicial Court.

The action was coordinated at international level by Europol and Eurojust. The ransomware group’s infrastructure was also seized in the Netherlands, Germany and Sweden and the associated data leak website was taken down in Sweden.

Ragnar Locker started its operations at the end of 2019, making it unusually long lived. Most ransomware groups do not survive that long, mostly due to internal struggles or a takedown such as this one.

Based on known attacks, as shown in out monthly ransomware reviews, Ragnar Locker was number 15 on the list of the most active ransomware groups over the last twelve months. (A known attack is one where a victim’s details are posted on a ransomware group’s leak website becasue they didn’t pay a ransom. The number of known attacks probably represents 50%-75% of the total attacks.)

graph showing know attacks by Ragnar Locker over the last year
Known attacks by Ragnar Locker, October 2022 – September 2023

Ragnar Locker has been called out for specifically targeting the energy sector—after attacks on Energias de Portugal (EDP) and Greek gas operator DESFA—but at Malwarebytes we never noticed any specialization. In the chart below, you can see it that across 36 known attacks in the last 12 months it attacked 15 different sectors.

known attacks by Ragnar Locker by vertical
Ragnar Locker’s known attacks by industry sector, October 2022 – September 2023

In 2022, the FBI published a flash alert to warn that the Ragnar Locker ransomware gang had breached the networks of at least 52 organizations across 10 critical infrastructure sectors.

One of the biggest upsets occurred when Ragnar Locker published information it had stolen from police computers in Zwijndrecht, a municipality in the province of Antwerp, Belgium) The stolen information included police records about license plates, speeding tickets, and at least one case of child abuse. Other high profile victims include Campari and Capcom.

Ragnar Locker is not a Ransomware-as-a-Service (RaaS) that was constantly advertising for new affiliates, so we assume it worked with a pretty constant group of people. It also seemed capable of developing new attack methods, like the ESXi encryptor that was recently deployed by the Dark Angels group in an attack on Industrial giant Johnson Controls.

Ragnar Locker specifically targeted software commonly used by managed service providers (MSPs) to prevent its attacks from being detected and stopped. It also used the double extortion method of encryption and data theft pretty much from the start

The questionable honor of being the last victim posted on the leak site was IP international presence on October 6, 2023. There is always the chance that some victims are now left without an option to negotiate with the ransomware group.

How to avoid ransomware

  • Block common forms of entry. Create a plan for patching vulnerabilities in internet-facing systems quickly; and disable or harden remote access like RDP and VPNs.
  • Prevent intrusions. Stop threats early before they can even infiltrate or infect your endpoints. Use endpoint security software that can prevent exploits and malware used to deliver ransomware.
  • Detect intrusions. Make it harder for intruders to operate inside your organization by segmenting networks and assigning access rights prudently. Use EDR or MDR to detect unusual activity before an attack occurs.
  • Stop malicious encryption. Deploy Endpoint Detection and Response software like Malwarebytes EDR that uses multiple different detection techniques to identify ransomware, and ransomware rollback to restore damaged system files.
  • Create offsite, offline backups. Keep backups offsite and offline, beyond the reach of attackers. Test them regularly to make sure you can restore essential business functions swiftly.
  • Don’t get attacked twice. Once you’ve isolated the outbreak and stopped the first attack, you must remove every trace of the attackers, their malware, their tools, and their methods of entry, to avoid being attacked again.

Malwarebytes EDR and MDR removes all remnants of ransomware and prevents you from getting reinfected. Want to learn more about how we can help protect your business? Get a free trial below.

TRY NOW


[ad_2]
Source link

Vietnamese DarkGate Malware Targets META Accounts in the UK, USA, India

0
[ad_1]

The cybersecurity researchers at WithSecure have identified a connection between Vietnamese DuckTail infostealer and DarkGate malware.

KEY FINDINGS

  • Vietnamese cybercrime groups are actively targeting organizations in the UK, USA, and India with various MaaS infostealers and RATs, reports WithSecure cybersecurity firm.
  • A connection is noticed between recent DarkGate malware attacks and the group running a campaign to hijack Meta business accounts because both attacks use the same infrastructure.

Cybersecurity firm WithSecure, formerly F-Secure Business, has uncovered a link between the recent DarkGate malware attacks targeting its customers and Vietnam-based threat actors operating a campaign to hijack Meta business accounts and steal sensitive data.

According to WithSecure’s Detection and Response Team (DRT), multiple infection attempts with DarkGate malware were made against their clients’ organizations in the UK, USA, and India on 4 August 2023.

The lure documents, target patterns, themes, delivery methods, and overall attack tactics closely resemble the attack mechanism observed in the recent DuckTail infostealer campaigns. WithSecure has been tracking this infostealer for over a year.

DarkGate is a Remote Access Trojan (RAT) that first emerged in cyberspace in 2018. It is usually offered as a Malware-as-a-Service (MaaS) tool to cyber criminals. It is a versatile malware employed in various malicious activities such as cryptojacking, information theft, and ransomware attacks.

WithSecure researchers analyzed open-source data linked to the DarkGate malware campaign and established links to multiple infostealers. This pattern indicates that the same group or threat actor is launching these attacks. 

“By identifying characteristics of DarkGate malware lures and campaigns, we have been able to find multiple pivot points which lead to other information stealers and malware being used in very similar if not identical campaigns, and it is assessed as likely that the same threat actor group performs these campaigns” read WithSecure’s report.

The attack commenced with a file named ‘Salary and new products.8.4.zip.’ Once unwitting users downloaded and extracted it, a VBS script was activated. This script renamed and duplicated the original Windows binary (Curl.exe) to a new location, connecting to an external server to retrieve two additional files: autoit3.exe and a compiled Autoit3 script. Subsequently, the script executed the executable, de-obfuscated, and assembled the DarkGate RAT using strings within the script.

WithSecure found strong identifiers that helped the company establish links between the two campaigns. They also noted that the attackers used many different malware and infostealers, including Ducktail, Redline Stealer, and Lobshot.

“Based on what we’ve observed, it is very likely that a single actor is behind several of the campaigns we’ve been tracking that target Meta Business accounts,” stated WithSecure™ Senior Threat Intelligence Analyst Stephen Robinson in a blog post.

After obtaining control of an account, they can perform miscellaneous malicious activities, including distributing malware and conducting frauds. The lures and malicious documents used in the campaigns have similar identifiable metadata, including:

  • LNK Drive ID
  • MSI file metadata
  • Canva PDF design service account details

These distinctive markets are digital fingerprints, helping researchers link disparate campaigns to a single actor. However, many other groups could be using the same malware, which highlights the need to dig deep and find similarities in attack patterns rather than relying on malware-based analysis.

“DarkGate has been around for a long time and is being used by many groups for different purposes, not just this group or cluster in Vietnam,” Stephen Robinson, Senior Threat Intelligence Analyst at WithSecure™, explains.

Organizations must remain vigilant and employ stringent cybersecurity mechanisms to prevent DarkGate and other malware threats. It is essential to ensure up-to-date antivirus solutions, educate employees on cybersecurity best practices, use strong passwords backed by MFA (multi-factor authentication), and monitor network activity for suspicious behavior.

  1. Formbook Takes the Throne as Most Prevalent Malware
  2. New Magecart Attack Uses 404 Errors to Steal Your Card Data
  3. New Windows Infostealer ‘ExelaStealer’ Being Sold on Dark Web
  4. Newly Surfaced ThirdEye Infostealer Targeting Windows Devices
  5. Fake Bitwarden Password Manager Website Drops Windows ZenRAT

[ad_2]
Source link

Here’s your first look at Xiaomi’s new HyperOS Android UI

0
[ad_1]

Xiaomi will announce HyperOS soon, a replacement for MIUI. The company announced that a couple of days ago. Well, thanks to leaked screenshots, we can now get our first look at Xiaomi’s upcoming HyperOS Android UI.

Leaked screenshots give us the very first look at Xiaomi’s new HyperOS Android UI

Just to be clear, HyperOS will completely replace MIUI, on a global scale. This is not just a UI for the Chinese market. It is said that it will gradually replace MIUI all over the globe. It looks like Xiaomi is looking to retire the MIUI name.

HyperOS will debut on the Xiaomi 14 series, which is tipped to arrive before the end of the month. That being said, if you take a look at the gallery below the article, you’ll be able to see Xiaomi’s upcoming UI.

Seven screenshots were shared in total, and we can see the lockscreen area, along with some lock screen customization. The homescreen itself is shown, and the quick toggles menu. On top of that, the weather app and calendar apps are both on display here. Do note that these screenshots seem to be taken from the Chinese version of HyperOS.

The leaked screenshots show us a UI very similar to MIUI 14

Those of you who are familiar with MIUI, will immediately notice that new lock screen customization options are available here. That is something MIUI does not offer. This seems to be inspired by iOS, as reported a couple of days ago.

You will be able to choose between various templates for the clock, font, and widget options. The control center looks very similar to what we got with MIUI 14, and the same goes for the home screen. Even the app icons look rather similar to MIUI 14’s app icons.

In fact, almost everything shown in these screenshots reminds us a lot of MIUI 14. It is worth noting that these screenshots are taken from an early beta build of HyperOS, so the design could change by the time the Xiaomi 14 series launches.

Speaking of which, that will allegedly happen on October 31, at least based on a leaked image. The global launch will likely occur in Q1 2024.


[ad_2]
Source link

Google Play Protect can now find malicious Android apps that try to evade detection

0
[ad_1]

Google already scans 125 billion apps daily to protect Android users from malware. If it finds an app that might be problematic, Google Play Protect can send you a warning, prevent you from installing said app, or, if already installed, it can disable the app automatically. The bad guys have their own plan to evade detection by changing features on apps in third-party app stores to hide their true identity as malware. This tricks users into sideloading what they think is a clean app but is malware in reality.

Another ploy being used by cyber criminals is to trick users using malicious apps, messaging apps, or emails into revealing confidential info such as passwords, credit card PINs, and personal banking info. The trick here is that the attackers play on users’ emotions. 

For example, if you received a text that appeared to come from your bank about a large withdrawal that it is looking to verify, many would be tricked into clicking on a link, revealing pertinent account information and more due to the fear of getting ripped off. Ironically, in this case, the fear of getting ripped off could actually lead someone into getting, well, ripped off. In this example, the text didn’t really come from the bank and was sent just to scare the user into revealing personal data.

Google Play Protect aims to protect you outside of Google Play by checking your Android device for harmful apps regardless of where you installed them from. And Google has improved Play Protect starting this past week. According to a release from the tech giant, when conducting a real-time check of an app being installed by an Android user, Google previously relied on existing scanning intelligence, on-device machine learning, and similarity comparisons with infected apps to find apps loaded with malware.
To make Google Play Protect a stronger security force, when installing an app that has never been scanned before, it will now recommend that a real-time app scan be conducted at the code-level. After the analysis is completed, the Android user will be told that the app is safe to install or if it is potentially harmful and is blocked. This will help prevent users from installing an app that uses various methods, including AI, to escape detection and steal your personal data.

Google says, “Our security protections and machine learning algorithms learn from each app submitted to Google for review and we look at thousands of signals and compare app behavior. Google Play Protect is constantly improving with each identified app, allowing us to strengthen our protections for the entire Android ecosystem.”

The enhanced version of Google Play Protect has started rolling out to all Android devices that use Google Play services. The rollout started in India and will broaden to include all markets in the months ahead.

Google notes that its multi-layered system keeps Android users safe from malware and unwanted software thanks to Google Play Protect, monthly security updates, app permission controls, and Safe Browsing. Google and Gmail also protect users from phishing and spam. As the company said last week, “Keeping Android users safe is a top priority. We are committed to working with our ecosystem partners and app developer community to improve the security of apps and combat malware and unwanted software to make Android even more secure.”

[ad_2]
Source link

Truly powerful specs tipped for the Vivo X100 series

0
[ad_1]

The Vivo X100 series is coming, and based on the latest reports, both devices will have truly powerful specs. The devices in question are the Vivo X100 and Vivo X100 Pro, and the ‘Pro’ model will be the company’s flagship.

The Vivo X100 series will include quite powerful specs, especially the Pro & Pro+ models

Now, first and foremost, both devices are expected to launch in mid-November, in China. Chances are that they will become available in more countries, though, as the Vivo X90 series.

Having said that, the Vivo X100 is tipped to utilize Sony’s IMX920 sensor for the main camera, while the ‘Pro’ model will utilize the IMX989. The Sony IMX989 sensor has been used by its predecessor too, and it’s Sony’s 1-inch camera sensor. The Xiaomi 13 Ultra also uses it, and the OPPO Find X6 Pro as well.

The Vivo X100 could utilize a 5,100mAh battery based on rumors, and the ‘Pro’ model will include a 5,400mAh unit. Wireless charging allegedly won’t be a part of the Vivo X100 package. It will, however, be included in the ‘Pro’ model, 50W wireless charging. The regular model is tipped to offer 120W wired charging, while the ‘Pro’ model will offer 100W wired charging.

Both MediaTek’s & Qualcomm’s flagship SoCs could be utilized

Both of those models are said to be fueled by the MediaTek Dimensity 9300 SoC. That is MediaTek’s upcoming flagship SoC. The Vivo X100 Pro+ is also a possibility, and that model could end up sporting the Snapdragon 8 Gen 3 SoC.

Now, the Vivo X100 and Vivo X100 Pro could also include a Sony IMX663 ultrawide camera. A 64-megapixel periscope telephoto camera will also sit on the back of both phones, based on earlier rumors. The Vivo X100 Pro+ could include a 50MP ultrawide camera, and a 200W telephoto unit.

Android 14 is expected to come pre-installed on the devices, along with a new version of Funtouch OS. Vivo’s new ISP is also expected here, the V3 chip.


[ad_2]
Source link