Update now! Apple patches vulnerabilities on iPhone and iPad

0
[ad_1]

Apple has issued an emergency update to patch two vulnerabilities, including an actively exploited one.

Apple has released iOS 17.0.3, an emergency update fixing two vulnerabilities, one of which has already been exploited by cybercriminals.

The update is available for iPhone XS and later, iPad Pro 12.9-inch 2nd generation and later, iPad Pro 10.5-inch, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 6th generation and later, and iPad mini 5th generation and later.

The updates may already have reached you, but it doesn’t hurt to check you’re on the latest version of iOS. Here’s how:

  1. Go to Settings > General, then tap Software Update.
  2. If an update is available it will ask if you want to update now tonight. Chose Update Now.
  3. Enter your passcode, then tap Install Now.

Setting your device to update automatically is really the best way to stay on top of any vulnerabilities. Here’s how:

  1. Go to Settings > General, then tap Software Update.
  2. Tap Automatic Updates
  3. Toggle the settings to all be on.

Technical details

The CVEs patched in these updates are:

CVE-2023-42824: A vulnerability in the kernel. Exploitation would allow a local attacker may be able to elevate their privileges. Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 16.6. The issue was addressed with improved checks.

CVE-2023-5217: A heap buffer overflow in vp8 encoding in libvpx prior to 1.13.1 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. A buffer overflow is a type of software vulnerability that exists when an area of memory within a software application reaches its address boundary and writes into an adjacent memory region. In software exploit code, two common areas that are targeted for overflows are the stack and the heap. A buffer overflow may result in arbitrary code execution. The issue was addressed by updating to libvpx 1.13.1.

The vulnerability in libvpx impacted other applications as well, including Chrome, Edge, and other Chromium browsers.


We don’t just report on threats—we remove them

Cybersecurity risks should never spread beyond a headline. Keep threats off your devices by downloading Malwarebytes today.


[ad_2]
Source link

This update will make Google Drive less of a headache

0
[ad_1]

If you’re using Google Drive for business, then you should be used to a cluttered Recent Activity screen. This is one of the issues affecting people on the platform, but the company has a change in store that folks will like. According to a Google blog post, Google Drive will get a revamped Recent Activity. This change will make using the platform less frustrating.

People who use Google Workspace for business will store a ton of data on the Drive. The issue is that the interface just isn’t optimized for a ton of activity. It can be trouble sifting through the files that need your attention, messages, requests, etc. This is why this is a welcomed change.

This update will make using Google Drive less frustrating

When you open Google Drive, you’ll see a Recent Activity screen. This keeps you up to date with the most recent actions that happened. Unfortunately, this view just wasn’t organized, so it was a chore tracking down all of the files and notifications that need your attention.

Fortunately, Google is releasing an update to Drive that will bring a new Activity section. It’ll sit under the Priority section. When you click on that section, you’ll see a whole page open up. This will give you a listed view with all of your comments, access requests, and shared files. All of your new activities will be accessible from one view. This will make using Drive much less of a headache.

This is a Google Workspace feature, and the company said that it will be available to all Workspace tiers. That’s good, as everyone could benefit from a feature like this. The company has this on rapid release, so it will be made to everyone within the next 15 days. So, if you don’t see this new feature, you’ll just have to be patient.


[ad_2]
Source link

Windows 12 might come with a subscription service

0
[ad_1]

When you buy a computer, you’re buying the operating system along with the hardware. For most people, their financial obligation ends the moment they purchase their computer. However, Microsoft might have some changes in the near future. According to PCMag, Windows 12 might have a subscription service.

Since we’re talking about a leak, you’ll want to take this information with a grain of salt. The information deals with a future version of Windows. Between now and its launch, Microsoft could change or cancel this.

Windows 12 could have a subscription service

Windows 11 was released just two years ago, and it’s been getting new features ever since. Since computer upgrades are far different from phone upgrades, we didn’t really expect Microsoft to release the next version for at least six more years. So, it seems odd to cover leaks about Windows 12. Well, based on some leaks from last year, Microsoft might actually release Windows 12 sometime in 2024.

When Windows 12 does hit the market, there’s a chance that it will be monetized much differently from current and past versions. According to the source, German website DeskModder discovered an INI configuration file in the Windows Canary channel. The file in question includes references to “Subscription Edition,” “Subscription Type,” and a “subscription status.

Since this is still very early information, don’t grab your pitchforks just yet. We don’t know what this means 100%. For all we know, it could be a different subscription service.

In any case, it shouldn’t come as a big surprise if the company decides to do this. Right now in the tech industry, most services have moved on to subscription-based plans. Microsoft Office has its Office 356 subscription service. Also, think about Snapchat+, X Premium, Meta Verified, WhatsApp Premium, Telegram Premium, etc. The world is moving toward a subscription-based future, and that could have an effect on Windows in the future.

However, we don’t believe that (if the company does follow through with this) Microsoft will charge people a subscription just to use the software. Right now, there’s the free version of Windows 11; one is free and one is paid. Well, there’s a chance that the company would just have one version. You’ll start with a free version and, if you want to have the features that would have been in a premium version, you’ll just pay the subscription.

At this point, there’s no way of telling. We will have to wait for what Microsoft has in store for us.


[ad_2]
Source link

WhatsApp tests new text formatting tools and secret codes for locked chats

0
[ad_1]
WhatsApp is testing a couple of features on the beta for Android app that will give users more control over their locked chats and how they compose their messages. The upcoming features provide additional text formatting tools and the ability to lock down their private chats even further by adding a secret code.
Both of these features began to appear in the beta version of the app on Android, though not at the same time. As reported by WaBetainfo and covered by us, the text formatting tools began to appear about two months ago in WhatsApp Web and then in version 2.23.21.3 of WhatsApp beta for Android.
Similarly, the secret code feature reportedly appeared on the WhatsApp beta for Android 2.23.21.8 update, after the Chat Lock feature launched back in May. You may recall that Chat Lock introduced a way to lock away private chats into a separate folder, which could only be accessed by authenticating via the same method you used to unlock your phone.
However, Meta is now working on a new feature for locked chats: the ability to set a secret code. This feature is still under development, but it is expected to be released in a future update of the app.

Image Cedit: WaBetaInfo

The secret code feature will allow users to add an extra layer of security to their locked chats. In addition to the phone’s PIN or biometric authentication, users will also need to enter the secret code to access their locked chats. This feature will be a welcome addition to WhatsApp’s privacy features, as it will give users more control over their locked chats and prevent unauthorized access. This could be very helpful in cases where someone, intentionally or inadvertently, gains wrongful access to the device password. The secret code can also be changed or removed at any time.

The new text formatting tools will also prove to be of use to WhatsApp users, as it will allow them to customize their messages with a variety of creative options. These formatting options will include code blocks, quote blocks, and lists.

The new text formatting tools and secret code for locked chats are just a few of the many ways that WhatsApp is working to improve the user experience. By adding new features and functionality, WhatsApp is making it easier for users to communicate and share information with each other.


[ad_2]
Source link

Hackers Abuse Teams To Gain Access & Deploy Ransomware

0
[ad_1]

Storm-0324, a financially driven threat actor group, was detected delivering phishing messages using Microsoft Teams.

In the past, it has been accused of disseminating phishing emails to employ remote code execution to acquire initial access to infected systems.

After establishing the access, Storm-0324 often gives access to TA543 and the well-known ransomware group Sangria Tempest (also known as FIN7, Carbon Spider), which regularly utilizes that access to carry out ransomware attacks.

Trellix stated that the most recent iteration of the delivery technique targets professionals who use Teams IM as their primary chat box, which has enabled EXTERNAL user communication with certain luring phishing messages along with attachments that result in a ransom attack on the associated devices in the network.

Document
FREE Demo

Implementing AI-Powered Email security solutions “Trustifi” can secure your business from today’s most dangerous email threats, such as Email Tracking, Blocking, Modifying, Phishing, Account Take Over, Business Email Compromise, Malware & Ransomware

The Infection Chain of JSSLoader – Storm-0324

During the phishing email period, Storm-0324 frequently sent phishing emails with invoicing themes like DocuSign, Quickbooks, and so on. 

The user would then be sent to the SharePoint site, where the compressed WSF (Windows Script File)/JS delivers a malicious .Net payload JSSLoader. The threat actor has thus far employed a variety of file formats, including Windows Script Files (WSF), Microsoft Office Documents, and VBS.

“The threat actors Sangria Tempest and Storm-0324 previously had been associated with the distribution of the Gozi InfoStealer, Nymaim downloader, and locker, and now Storm-0324 is distributing the JSSLoader before passing the buck to other ransomware groups”, researchers said.

The FIN7/Sagrid threat actor created JSSLoader, a very sophisticated backdoor that has the following features:

  • Anti-analysis
  • Exfiltration
  • Remote code execution
  • Persistence

The payload creates a unique ID of the target based on the serial number, domain name, and computer name to track down the victim or target.

As a RAT (remote access trojan), the malware gathers the victim data listed to prepare for the next stage of execution:

  • Logical drivers
  • Hostname
  • Username
  • Domain name
  • System Info (desktop file list, running process, installed application, PCinfo)
  • IP info
Victim Information Gathered
Victim Information Gathered

Since 2019, JSSLoader has constantly changed, and this threat’s distribution mode has evolved. Researchers say these features a new approach to Teams-based phishing attacks using GitHub scripts, which leads to script kiddies getting their hands dirty.

Hence, with the creation of JSSLoader in C++, it was possible to avoid detection and complicated analysis.

Protect yourself from vulnerabilities using Patch Manager Plus to patch over 850 third-party applications quickly. Take advantage of the free trial to ensure 100% security.


[ad_2]
Source link

Malwarebytes earns high marks for detection, blocks initial malware executions

0
[ad_1]

MITRE Engenuity released its 2023 ATT&CK Evaluation results, with Malwarebytes blocking initial malware execution and earning high marks for detection.

MITRE Engenuity released its 2023 ATT&CK Evaluation results, with Malwarebytes blocking initial malware executions and earning high marks for detection.

The evaluation tested 30 vendor solutions against Turla, a sophisticated Russia-based advanced persistent threat (APT) group with victims in over 45 countries.

MITRE Engenuity’s researchers recorded how well products could analyze and prevent techniques associated with the group, evaluating vendors’ ability to detect “step” of an attack, provide quality alerts with robust information to the end-user, and so on.

Let’s take a closer look at the results and how organizations should use them.

2023 MITRE ATT&CK® Evaluation Results

MITRE executed two attack scenarios throughout the course of the evaluation: Attack Scenario 1 (“Carbon”) and Attack Scenario 2 (“Snake”). With the “Carbon” attack scenario consisting of 10 steps and “Snake” consisting of 9, MITRE Engenuity executed a total of 19 steps during the evaluation.

Malwarebytes alerted on 19/19 steps with no configuration changes, meaning our EDR tool was able to convert telemetry into actionable threat detections “out of the box” for parts of each step.

The MITRE Engenuity red team also tested cybersecurity solution providers on their protection capabilities—what malicious actions can a solution prevent. For the Protections scenario, there were 129 substeps organized into 13 major steps.

Malwarebytes broke the Turla attack kill chain at the initial phase and 6 subsequent steps, including initial malware execution, subsequent malware execution on Domain Controller and other machines, lateral movement, and credential dumping.

Analyzing The MITRE ATT&CK® Evaluation Results

The MITRE ATT&CK® Evaluation is a valuable independent security test, though its relevance will likely vary on the size of your security team.

Larger organizations with more advanced security teams, for example, might find the test particularly useful given its focus on nation-state level actors. The opposite might be true for smaller security teams, who are less affected by threats like Turla.

As organizations go through the data available in MITRE Engenuity’s evaluation portal, keep in mind several other important questions such as: Who will be using the tool MITRE is evaluating? Is it easy to use? Does it have too many unnecessary features for my security goals?

Additional questions to consider asking include:

  • Would the attack have been stopped at step 1 in a real-world scenario?
  • Does the APT attack apply to my business?
  • Do I need to detect 100% of these substeps to be 100% protected?

In sum, while the MITRE ATT&CK Evaluation is undoubtedly important, its results are best considered alongside other independent tests such as MRG Effitas 360° Assessment & Certification, G2 peer-to-peer evaluations, AV-Test, and more.

Try Malwarebytes for Business Today

We invite organizations to check out the full 2023 ATT&CK Evaluation results on MITRE’s official website here: https://attackevals.mitre-engenuity.org/results/enterprise?evaluation=turla&scenario=1

Ready to try award-winning endpoint security today? Get a free trial of Malwarebytes EDR: https://www.malwarebytes.com/business/request_trial

Malwarebytes EDR free trial


[ad_2]
Source link

The new Google Pixel Watch 2 will need a different case from the old model

0
[ad_1]

If you own the original Pixel Watch and you are looking to purchase the new Google Pixel Watch 2 then you’d need new accessories. You’ll need to purchase a new case to fit on your new smartwatch, as the previous case isn’t compatible. The folks at 9to5 Google were able to spot certain differences in these watches that make their cases not fit each other.

The main issue here has to do with the new hardware design on the Pixel Watch 2. Particularly, the crown on the new smartwatch from Google is slightly different from that on the old entry. For this reason, the case that fits perfectly on the old Pixel Watch will not fit on the new one.

Most manufacturers of cases are now updating the information on the original Pixel Watch cases. This move on their part will help guide owners of the new smartwatch when out shopping for a new case. These manufacturers are now clearly stating that the already existing Pixel Watch cases won’t fit on the new smartwatches.

Owners of the new Google Pixel Watch 2 might need to wait a while before they can purchase a compatible case

The new Google Pixel Watch 2 launched alongside the Pixel 8 series a few days ago. This smartwatch from Google is the 2nd generation of the brand’s smartwatch entry that became official last year. In terms of its design language, this new smartwatch doesn’t drift far from its predecessor, the original Pixel Watch.

However, despite all the design similarities in these smartwatches, there are a few areas where Google made some changes. One such area is the crown, and with the new Google Pixel Watch 2, the crown is slightly bigger than that of its predecessor. Also, the microphone cutout gets a new home (location) on the new smartwatch entry from Google.

These changes made it impossible for the cases that were compatible with the original Pixel Watch to fit on the new entry. The cutout that houses the crown on these cases isn’t big enough to fit on the new smartwatch. Also, the old cases will cover the microphone cutout on the new smartwatch, making it impossible for users to access voice control functions.

For this reason, case manufacturers need to design a new case for Google’s new smartwatch. These cases might start becoming available once those who pre-ordered the new smartwatch from Google start getting it at their doorsteps. The new cases might also become ready before this time, so users can get protection for their new smartwatch early enough.

Most case manufacturers are already working to make these new cases available for users. Once the cases launch, users will be able to purchase them online or in physical stores across the world. In the coming weeks, those who placed a pre-order for the new Google Pixel Watch 2 will start getting their smartwatches at their doorsteps.


[ad_2]
Source link

Fitbit’s new AI chatbot will judge your workouts and provide insights

0
[ad_1]

Generative AI has found a lot of use cases in the past year, such as planning trips, redecorating interiors, or even assisting in shopping. However, Fitbit now wants AI to be your personal coach, evaluating every workout and offering insights.

Announced at the recent Made by Google event, the new AI chatbot will debut as part of “Fitbit Labs,” collecting data about your workouts and sleep while providing information in a conversational manner, thus creating an experience similar to talking with a personal trainer.

In a demonstration, Fitbit CEO James Park showcased the capabilities of Fitbit AI by asking why his recent run felt more challenging than usual. The AI then provided a comprehensive analysis, stating that the workout indeed had a higher average heart rate due to his recent decline in sleep quality. Moreover, the AI pointed out that the incline of the recent running path was steeper than usual.

“Climbing those hills may have made this run feel harder, but that’s okay, you put in a great effort,” said the chatbot.

Furthermore, Google also plans to add visualizations within the Fitbit app, including charts and graphs, offering users a more comprehensive overview of a user’s performance. However, it is important to note that the new Fitbit AI will initially launch to “trusted testers,” with priority given to Pixel users.

Competing with Garmin

While Fitbit’s new chatbot could be a welcomed addition, considering the company has faced widespread backlash due to the recent app redesign, the new feature appears to be a strategic response to industry leader Garmin. This is because Garmin’s Training Readiness and Health Snapshot Features are the current industry standard when it comes to providing workout suggestions using sensor data.

Therefore, if implemented successfully, Fitbit AI can prove to be a formidable contender to Garmin since it has the potential to bridge the divide between complex fitness data and the needs of everyday users.


[ad_2]
Source link

Want to know who the top-rated CEO in the tech world is? Tim Cook, Zuckerberg, or?

0
[ad_1]

We all probably know the power of anonymity when it comes to honesty. Whether it is online discussions or workplace dynamics, being incognito tends to bring out the truth. Anonymous surveys create a safe haven for people to spill their thoughts without worrying about repercussions. They are like the truth serum of corporate feedback.With that being said, Blind, a professional social network, recently conducted an anonymous survey, getting the lowdown on CEO approval ratings (via 9to5Mac). Blind asked 13,171 verified professionals in the US one simple question: “Do you approve or disapprove of the way your CEO is handling their job?” Let’s dive into the results.

Jensen Huang, the CEO of NVIDIA, a heavyweight in the tech scene known for its powerhouse graphics chips, emerged as the champion. An impressive 96% approval rating from the NVIDIA crew on Blind speaks volumes about Huang’s leadership.

Apple’s head honcho, Tim Cook, nabs the fourth spot but secures second place in the tech realm with an 83% approval rating. Translation: four out of five Apple employees give Cook the thumbs up. Mark Zuckerberg from Meta trails with a 45% approval.

Now, things take a dip. Satya Nadella of Microsoft clocks in at 30%, Sundar Pichai from Google follows with 26% approval, and Andy Jassy of Amazon trails at a mere 10%. But hold on, it gets rougher.

Linda Yaccarino of X takes the cake for the lowest approval, scraping by with just 4%. Yep, you read that right—only four out of a hundred X employees give a nod to her CEO skills.

Here is a not-so-surprising twist: the CEOs with the worst approval ratings happened to be the ones wielding the job-cutting ax in 2023. In a not-so-kind move, X (formerly Twitter), Amazon, Google, Microsoft, and Meta collectively sent over 50,000 people packing in 2023 alone.


[ad_2]
Source link

Some Meta Employees and Security Guards Hacked User Accounts

0
[ad_1]

Meta Platforms Inc. has fired over two dozen personnel and contractors within the past year for hijacking user accounts on Facebook and Instagram. Reportedly, some of them hijacked the accounts for bribes.

What Happened?

The Wall Street Journal reported that the fired individuals included on-contract security guards who worked for Meta and could access an internal tool that let employees allow users they knew to access their accounts when they forgot passwords/emails or hacked them.

This mechanism was called Oops (Online Operations). It has been a part of the Facebook infrastructure for years. This system couldn’t be accessed by most of the platform’s users. 

So, this led to the rise of a “cottage industry of intermediaries.” These people charged users thousands of dollars to reach out to insiders to reset their accounts. The Journal reported that this system is estimated to have processed at least 50,270 reports in 2020, which was much higher than 22,000 in 2017.

  1. Unencrypted drives with data of 29k Facebook employees stolen
  2. SpaceX employee admits security fraud, insider trading on dark web
  3. User claims Facebook employees scanned his file sent in private chat
  4. Facebook stored 600m passwords in plain text exposed to employees
  5. HackerOne Fires Employee for Stealing Reports, Collecting Bug Bounties

How Did the Hijacking Occur?

After people got their accounts locked, they tried automated methods to reset them or reached out to Meta’s representatives via phone or email, which wasn’t much help. As a last resort, these users contacted Meta employees and contractors to get the issue resolved via the Oops channel.

In one incident, according to WSJ’s report, an ex-security contractor assisted unidentified third parties in taking over Instagram accounts fraudulently, and the user was tricked into filling in Oops reports to reset the impacted account. In another instance, a former contractor, fired after an internal probe, reset multiple users’ accounts for hackers in exchange for Bitcoin payments.

Meta Launched Internal Probe

Meta was forced to take disciplinary action against the hijackers. But this is going to be a lengthy probe. Meta executives will lead the investigation.

The company’s spokesperson, Andy Stone, stated that online platforms like Meta are frequently targeted by people who sell fraudulent services. These individuals are continuously adapting their techniques to respond to the detection methods used across the industry. Stone added that Meta would take appropriate action against the wrongdoers.

Top/Featured Image via Unsplash/xITnxxlzGAE


[ad_2]
Source link