Yesterday, Apple sent out invites for the iPhone 15 event on September 12. So now we’re starting to see more leaks and mockups ahead of the event. That includes a concept render from William Faix, who was able to transpose the marketing material from the iPhone 14 Pro models.
So this wallpaper here uses the same sort of style as the iPhone 14 Pro wallpapers, but it also uses the colors from the Apple logo in the invite that was sent out yesterday. The wallpapers look pretty subtle, and actually look really good. So there’s a good chance that these could be nearly identical to what actually ships on the iPhone 15 Pro models in a few weeks.
It also has a matte particle-like texture, which is coincides with the invites from Apple. And that’s supposed to be a nod to the texture of the new titanium chassis on the iPhone 15 Pro.
iPhone 15 Pro launches with USB-C on September 12
The iPhone 15 Pro is set to be announced, alongside the iPhone 15 and Apple Watch Series 9, on September 12. The event will be taking place at Apple Park in Cupertino and will start at 10AM PT, as it always does. This is set to be a big event, but not as big as previous ones.
There’s quite a few things that we are expecting to be announced at this event. That includes the iPhone 15 series, Apple Watch Series 9, Apple Watch Ultra 2, and we could see some updates to AirPods and HomePod – mostly adding USB-C.
However, don’t expect to see a new iPad at the event. Those usually come in October alongside new Macs. Apple typically does two fall events to refresh its lineup, and this year we’re expecting to see M3 Macs in October along with a new iPad Mini and maybe a new iPad Pro, though that’s rumored more for next year with a new redesign.
The latest Galaxy phones, Pixel phones, and iPhones are usually lauded as the most exciting phones of the year. That’s true; they’re exciting, but they’re not interesting. A lot of the time, it’s the underdogs who churn out the most interesting handsets; the obscure companies that produce phones that are worth much more than their price tag will indicate.
Infinix is one of those underdogs. This is a pretty obscure Chinese smartphone OEM, but that doesn’t mean that it doesn’t deserve the spotlight. We were given the opportunity to review the Infinix Note 30 Pro.
This is a more budget-friendly phone than the premium options out there, but as you’ll see, that doesn’t mean that it doesn’t deserve your attention. Sometimes, price is just a number, and the fine line between premium and mid-range can blur. Let’s dive into the review of the Infinix Note 30 Pro.
Infinix Note 30 Pro Review: Build and design
I repeat: Sometimes, price is just a number, and that became evident when I first picked up this phone. When making a budget-friendly handset, the premium feeling is usually the first thing to take a hit. The Infinix Note 30 Pro is an interesting case when it comes to the feel in the hand, and not for a bad reason.
As far as first impressions go, I had a hard time believing that this phone cost less than $500 let alone $300 when I first picked it up. The Infinix Note 30 Pro has a certain heft to it that you don’t get with most budget phones. While it’s hefty, it doesn’t feel bulky. Infinix was able to reach that balance between hefty and heavy.
That’s just my first impression, however. What makes this phone an interesting case is the fact that it feels pretty premium without really using premium materials. If you take a second and appraise the phone, you’ll start to notice some things. Firstly, the frame of the phone is made from plastic. That’s not something that you’d see in a more premium phone, not even a modern Pixel A series phone.
Also, the back is made from plastic. However, it doesn’t really feel like it. It has the cool sensation that you’d get from a metal unibody phone.
The solid metal camera island only adds to the feeling. While the materials are more budget-oriented, Infinix was able to fake it and deliver a decently premium-feeling phone using modest materials.
Design
As for the design, the Infinix Note 30 Pro is having a bit of an identity crisis. It’s pretty yet industrial at the same time; flamboyant yet fortified. The phone is heavy and sturdy, and the metal camera package gives it a very no-BS look to it. The camera package is just this hunk of square metal on the back. It makes the phone look like a tank…
But, at the same time, it’s very pretty. There’s this pleasant soft-touch material on the back that plays with the light in such a pleasant way. Depending on the angle of the light, the phone will reflect several colors. You get hints of blue, teal, green, and rose gold. It’s really a sight for sore eyes. Also, the metal camera package is a delightful rose gold.
Infinix Note 30 Pro Review: Display
It’s hard to put into words how beautiful this phone’s display is. I can say flat out that a display this amazing does not belong on a sub-$300 phone; yet, here we are. Again, price is just a number, and the delusions I had about what a $300 phone should cost were shattered the moment I laid eyes on this display.
It’s an OLED display, but it goes much deeper than that. Any company can slap an OLED display on a phone, but that doesn’t automatically make it good. The colors are punchy, the blacks are deep, the contrast is great, blah blah blah blah. We’ve heard that advertising copy before.
Colors
The beauty of this display goes beyond the hardware; Infinix did an amazing job calibrating this display. With the Bright-colored mode enabled, the colors are saturated, but that’s not what makes them beautiful. They’re punchy enough to dazzle the eye and make movies and videos pop, but they don’t go overboard. You can see where Infinix restrained itself. It struck the right balance to make the colors absolutely gorgeous.
While the colors have been tuned amazingly, some of the bolder shades of red will sizzle a bit. At full brightness, if you’re looking at photos of vibrant red roses, it might be a bit too much for the eyes. That’s the nature of the color red and digital displays, however.
Brightness
It’s summer here in Florida, so using a phone outdoors is just asking for a hard time. In the case of the Infinix Note 30 Pro, sunlight visibility is not a problem. It doesn’t get as bright as a Galaxy S23 Ultra, but it’s definitely up there at 900 nits. I have no trouble seeing the screen in the bright sun. I’d literally need to have the sun directly reflected on the phone’s screen to have a hard time.
All in all, there’s no reason for this phone’s display to be this good! I can honestly say that this phone’s display trumps the display on the $1,000 Motorola Edge+. I even found it more enjoyable than the display on the Pixel 6. It goes toe-to-toe with the displays on some of Samsung’s phones, and that’s saying a lot. I can honestly say that the display is my favorite aspect of this phone.
Infinix Note 30 Pro Review: Speakers
Watching your media on this phone is great, but what about listening to it? The audio experience with this phone is pretty good, which is a bit of a letdown because the build quality and display are so great.
Sound quality
Out of the box, the speakers are nothing to write home about. They’re not great, but they’re not particularly good. The speakers are rather tinny, and they lack any sort of depth. They’re speakers to get the job done, and that’s what they do.
One thing I’ll say about the speakers’ out-of-the-box quality is that the highs cut through pleasantly. Higher tones come through nicely, and they’re great if you’re a person who’s into ASMR.
But, these speakers have a trick up their sleeves
If the speakers don’t sound like they’ll suit your interests, you can fix that. This phone has some tools that you can use to customize the audio quality. Starting off, there’s a handful of audio profiles that you can change the sound based on the listening scenario.
The Smart option will choose the profile based on the audio that’s playing. There’s a Music option that gives you a warmer, bassier, and wider sound. The Video setting will boost the high tones more so that voices cut through better. The Game setting will give you a more neutral profile.
Next, you can make adjustments to each sound profile. In the settings, you can choose the stereo settings. You’ll be able to choose whether you want a wide stereo sound, a more frontward sound, or a traditional sound.
Under those settings, you can choose which aspect of the sound to boost. You can choose to boost the bass, the vocals, or the treble.
Last, but not least, there’s an EQ that you can use to further customize the sound. It’s a 5-band EQ that adjusts the 100Hz, 300Hz, 1KHz, 3KHz, and 10KHz bands. Each band can go between -5dB and +5dB. It’s pretty robust for a built-in EQ, and it can help you further fine-tune your sound.
After adjusting
After fine-tuning the sound, there was definitely a difference. The speakers definitely sounded better. However, the difference wasn’t like night and day. After making tweaks, I still felt that the speakers were lacking in depth. I’d say that the sound options do a good job, but they can’t make a pair of decent speakers sound great. That’s what the speakers are, decent. They’re not bad, but they’re definitely nothing to write home about.
Infinix Note 30 Pro Review: Battery
Back in the day, most mid-range phones were destined to have smaller batteries than flagships. However, things have changed; a ton of mid-rangers are rocking batteries as large as the latest Galaxy S phones. The Infinix Note 30 Pro is rocking a large 5,000mAh battery.
I was more than pleased with the battery life of this phone. I usually start off my day with a full battery. After that point, I’d typically have to charge it by the afternoon of the next day. It wasn’t uncommon for me to get a day and a half of moderate usage out of this phone. That consists of a ton of social media, a good amount of video-watching, and casual gaming.
On heavier days, days when I’d play games more religiously or be binge-watching content, I’d still have a hard time killing the battery before turning in for the night.
Charging
The Infinix Note 30 Pro comes with a charger in the box, and that’s a major plus for this phone. The charger is a 68W charging brick, and it can charge the phone very quickly. Charging from 0% to 100% doesn’t take much more than an hour. It also comes with 15W wireless charging.
Infinix Note 30 Pro Review: Performance
Yes, I’m going to say it again: Price is just a number. That statement is extremely true when talking about this phone’s performance. Honestly, if this was just a few years earlier, I’d be calling this phone a flagship killer (remember those things?).
The Infinix Note 30 Pro is using the MediaTek Helio G99 SoC. Now, we’ve all become accustomed to instantly associating MediaTek with poor performance. However, that’s not always the case, and the Infinix Note 30 Pro is proof of that. Infinix did a great job at optimizing the software for the chip.
Navigation
Starting off with navigating the software, this phone just glides. Jumping from app to app and using said apps, I didn’t really notice any stutters or dropped frames. That’s not to say that they’re non-existent, as there is the occasional hiccup. Maybe the phone lags when rotating the screen for a fraction of a second; maybe it drops a frame when opening the app. However, those instances are few and far apart.
Usage
Also, when it comes to using the apps themselves, the story is the same. I didn’t stumble across any apps that could slow this phone down. With a processor like the Helio G99, you’d expect typical mid-range performance, but I think that this phone goes beyond that. It’s definitely in premium mid-ranger territory.
The performance is also helped by the smoothness of the 120Hz display. Gliding through the interface and using this phone with the 120Hz display just makes it feel that much more fluid. It gives you the experience of just picking up a phone and using it without any performance issues- like you’d get from a flagship phone.
Temperature
When using this phone for extended periods of time, it doesn’t really heat up too much. It gets warm, but it was never hot to the point where it felt uncomfortable. One thing to note is that the camera island is made from metal, and that could get quite warm. However, it’s more than manageable. It manages to keep cool using a VC liquid cooling system.
Infinix Note 30 Pro Review: Gaming
Gaming on this phone isn’t too bad. It’s like getting a B+ on a report. It’s not bad by any means, but it’s right on the cusp of greatness. Right off the bat, your run-of-the-mill 2D games will run like butter. Games like Sweet Sins 2, Fishing Paradiso, Dream Hopper, Dragon Ball Z Dokkan Battle, and so on will run with no problems. That’s to be expected because of this phone’s baseline performance.
Moving from 2D to simple 3D games doesn’t yield any different results. They run smoothly with no stutters or lag. These include games like Crash of Cars, Pocket World, Sonic Rush, and so on. Even the decently graphically intensive 3D game Sky: Children of The Light runs smoothly. If you’re going to be doing more casual gaming, then you won’t have any problems using this phone.
Heavier gaming
Now, let’s crank up the graphics. There are games that tower above the rest in terms of graphics, and one of the best-looking games on the market is Genshin Impact. This game is pretty… and it’s pretty daunting. How does this phone perform against this title? Not bad, but not great.
When you load up Genshin Impact, which looks like it belongs on the PS3 or Xbox 360, you’ll see the phone struggle to keep up. However, this is if the graphical settings are turned to the maximum setting.
If you knock the graphical settings down to regular, then you’ll be able to get pretty smooth gameplay. Overall, if you knock the settings down to their lowest setting, you still won’t be able to get up to 60fps. So, with more graphically intensive games, you should expect the phone to chug just a bit.
The Infinix Note 30 Pro is definitely more for casual and light gaming. More graphically intensive games are definitely playable, but you should expect less-than-smooth gameplay.
Infinix Note 30 Pro Review: Camera
A big part of the smartphone experience is the camera, so let’s see if that large camera package on the back is just for show.
Details
Starting off with the details, the Infinix Note 30 Pro produced nicely detailed images. they come out reasonably sharp. They look great when they’re zoomed out. However, the phone does lean on the oversharpening a bit. It actually creates this weird spaghetti noodle effect when you zoom in closely.
Exposure/Dynamic range
Shots in the bright sun are well-exposed without being overexposed or underexposed. I’d say that the dynamic range is pleasing. I noticed a few times, however, when the exposure leaned on the bright side just a little. It’s not too bad, however. Just be prepared for a few extended highlights.
Colors
The colors produced by the Infinix Note 30 Pro are nice, but they have one minor flaw. They’re nicely saturated without going overboard. It has the classic issues with digital sensors in that properly exposing reds is difficult. However, the colors are nice overall.
The one minor drawback is that they tend to lean rather warm. The photos are noticeably warmer than the scene. They can almost change the whole feeling of the scene. I took a picture of some rocks on the ground. They’re grayish rocks in the midday sunlight. Instead of showing a bland and gray scene, it gave me this warm, almost desert-like scene. I’d prefer that the system focused more on color accuracy.
Low light
The low-light performance with this phone isn’t amazing for the price, but it’s not too bad. I’d say that it’s as good as a flagship phone’s low-light performance from around 2016-2017. The quality degrades rather quickly when you turn down the lights. However, it still manages to keep the scene well-lit and it still retains the colors nicely.
Infinix Note 30 Pro Review: Software
The thing that differentiates this phone from most other phones in the West is the software. The Infinix Note 30 Pro is running a heavily skinned version of Android called XOS. It’s version 13.0.00, so it’s based on Android 13.
For the most part, the software is really good. It’s different, but it still remains intuitive. Infinix didn’t change too many things about the software, so if you’re used to using Android phones, you’ll feel right at home.
There are a bunch of settings and features that you can dig through, so you’ll be able to tailor the software experience to your liking. This involves a bunch of gestures and home screen customizations.
There are a few complaints
The notification shade is split into two pages. You’ll swipe down from the top left of the screen to summon the notifications and the top right of the screen for the quick settings. You can swipe between them, but most Android users are used to having everything available on one screen.
Another issue has to do with compatibility. There are certain apps and services that will not work on this phone, and that might be because of the region this phone was made for. Just know that not every app from the Google Play Store will work on this phone.
The Infinix Note 30 Pro does come pre-loaded with a third-party app store called the Palm Store. you can use that, but it won’t have the same robust library of apps that the Play Store has.
Also, I could not set up Google Wallet, which was a major bummer.
Infinix Note 30 Pro Review: Additional and missing features
This phone has some features and additions that make the experience that much better. For starters, it comes with a 3.5mm headphone jack, so you won’t need to worry about charging it while listening to music. Also, there’s microSD card expansion.
On the side of the phone, there’s a fingerprint scanner on the power button. It’s super fast and accurate. Along with the fingerprint scanner, there’s also the option to use face unlock. The face-unlocking feature is very accurate and extremely fast. You can unlock your phone even if your face is at an angle. Using the lift-to-wake feature, you’ll simply have to lift your phone, and, within a second of you swiping your screen, the phone’s unlocked.
Here’s a feature that you don’t see on many phones. If you need to frame a selfie in the dark, there’s actually an LED flash on the front of the phone along with the one on the back.
Another nice feature of this phone is reverse wireless charging.
What it’s missing
This phone has IP water and dust resistance, but it’s only IP53. This means that it can only survive if caught in the rain. It can not be submerged fully under the water. If that happens, then you risk damaging the phone.
Final verdict
Being a reviewer, I’ve come across the full spectrum of devices from premium masterpieces to downright trash. There’s often a recurring theme among these devices: the more expensive the device, the better.
Notice how I used the word “often” and not “always”. This is because every so often, I stumble upon a device that gives me so much more value than I initially expected. This is exactly how I feel about the Infinix Note 30 Pro. We’re conditioned to think that once a phone falls below the $300 line, it ceases to be a worthy handset; it’s just a phone to get you through the day.
But, the Infinix Note 30 Pro completely smashes that notion. This phone is, in so many ways, much better than its price lets on. The display is drop-dead gorgeous, the design is pretty premium, the performance is snappy, the camera performance is strong, the software experience is great, and so on.
I can honestly say that the Infinix Note 30 Pro is one of the best phones I’ve reviewed, especially for this price. I highly recommend that you pick it up.
Email communication is essential for personal and professional contact in the modern digital environment.
Email is widely used, making it a perfect target for cybercriminals, leading to increased phishing attempts, spam, and email spoofing.
Strong email security measures are becoming essential as these threats become more sophisticated. Email authentication techniques like SPF, DKIM, and DMARC are crucial in situations like this.
By authenticating the sender’s identity and confirming the accuracy of the received messages, these procedures act as the first line of protection against email-based threats.
This article will thoroughly review these three important email authentication methods, including their roles, how they cooperate, and why they are crucial for upholding a reliable and secure email communication infrastructure.
What are Email Authentication Protocols?
Secure email communications can be achieved through Email Authentication Protocols, standards, or technologies that validate the sender’s identity and protect the message’s integrity.
These standards aim to protect users from spam, phishing, and other malicious email-based assaults.
As a bonus, they make it less likely that a good email will be incorrectly deleted as spam or malware.
Here are the primary email authentication protocols commonly in use:
Sender Policy Framework (SPF)
DomainKeys Identified Mail (DKIM)
Domain-based Message Authentication, Reporting, and Conformance (DMARC)
Sender Policy Framework (SPF)
The Sender Policy Framework (SPF) is an email authentication technology developed to prevent spam.
By letting domain owners choose which mail servers can send emails on their behalf, SPF assists receiving servers in authenticating the sender of incoming messages.
For this purpose, the DNS records of the domain are consulted to ensure that the emails come from the addresses they claim to represent.
The Sender Policy Framework (SPF) aims to improve email security by limiting the possibility that an unauthorized sender may use a specific domain in the “From” address.
This helps keep the sender’s and the recipient’s inboxes free of unwanted messages and strengthens the confidence each party has in email.
Domain owners create SPF records showing trusted IP addresses and domains from which emails can be sent.
Email servers do a Sender Policy Framework (SPF) record check whenever they receive an email.
When a message is received, the server checks the IP address to see if it is one of the approved senders mentioned in the SPF record.
The SPF check is successful if the sending IP address is known and accepted; otherwise, the email may be flagged as suspicious and deleted.
How Do Attackers Abuse SPF:
Sender Policy Framework (SPF) is an email authentication system that checks the sender’s name to stop email spoofing and phishing. But, like any other system, SPF isn’t completely safe from possible attack vectors. Here are some possible ways to attack SPF:
Manipulating SPF Records: Attackers could try to change or create SPF records by changing the DNS records of a domain. This would let them list unauthorized IP addresses or servers as valid senders. This can make it possible for tactics like spoofing or phishing to work.
Domain Hijacking: If an attacker takes control of a legal domain, they can change the SPF records to include their own malicious servers. This can cause bad emails that look like they came from a trusted source to be sent.
Subdomain Attacks: SPF records are often set up for an organization’s primary domain, but they might forget to set up SPF records for subdomains. Attackers who send emails from subdomains without the proper SPF records can use this against you.
Inadequate SPF Policies: Organizations may have weak SPF policies that let many IP addresses send emails on their behalf. This can give attackers a bigger pool of possible IP numbers to trick people.
DocumentFREE Demo
Implementing AI-Powered Email security solutions “Trustifi” can secure your business from today’s most dangerous email threats, such as Email Tracking, Blocking, Modifying, Phishing, Account Take Over, Business Email Compromise, Malware & Ransomware
DomainKeys Identified Mail (DKIM)
DomainKeys Identified Mail (DKIM) is an email authentication technology that uses encryption to confirm an email’s authenticity.
The sending server adds a distinctive DKIM signature using a private key to each email. The receiving server verifies the signature of the incoming email using a public key obtained from the sender’s DNS records.
If it matches, the email can be trusted as genuine and safe from tampering. DKIM is designed to prevent email spoofing and phishing attacks and guarantee the safe delivery of email communications by verifying the sender’s domain and the message’s encrypted signature.
Using a private key, the email’s computer makes a digital signature.
The email packaging has been changed to include this signature.
From the DNS records, the email server that receives the email gets the sender’s public key.
The digital signature is then decrypted and checked using the public key.
The genuine email has not been changed if the signature is correct.
How Do Attackers Abuse DKIM
Private Key Compromise: DKIM relies on a private key stored on the sending server to sign outgoing emails. If an attacker gains access to the private key, they can sign malicious emails that recipients might consider legitimate, as the DKIM signature would appear valid.
DNS Record Manipulation: DKIM public keys are stored in DNS records as text (TXT) records. If an attacker gains control over a domain’s DNS records, they could modify or replace the DKIM public key, allowing them to sign fraudulent emails that appear authentic.
Subdomain Spoofing: Organizations might configure DKIM for their main domain but overlook implementing it for subdomains. Attackers could then send emails from subdomains that lack proper DKIM signing, making it harder for recipients to verify the email’s authenticity.
Key Length and Algorithms: If an organization uses weak encryption algorithms or short key lengths for DKIM signing, it becomes easier for attackers to crack the encryption and forge DKIM signatures.
Solution: Organizations should adopt efficient incident response plans, regularly monitor email traffic for anomalies, and stay updated on emerging threats to stay ahead of the evolving email threat landscape with AI-powered solutions like Trustifi.
Domain-based Message Authentication, Reporting, and Conformance (DMARC)
To improve upon SPF and DKIM, a new email authentication protocol called Domain-based Message Authentication, Reporting, and Conformance (DMARC) was developed.
Domain administrators can instruct receiving mail servers on what to do with messages that do not pass authentication.
Domain owners can direct mail servers to stop accepting spam by adding a DMARC policy record to their DNS settings. Email traffic and any security risks can be better understood using DMARC’s reporting features.
DMARC is designed to strengthen email security by adding an extra layer of verification, decreasing phishing and spoofing, and increasing the credibility and delivery of legitimate communications.
How it Works
The receiving server references the DMARC policy if SPF or DKIM authentication fails.
The DMARC policy can direct the server to take various actions, such as classifying spam, placing it in quarantine, or outright rejecting it.
To improve their email protection measures, domain administrators can use forensic and aggregate data on authentication activity.
DMARC Attack Vector
Aggressive Enforcement: Some organizations may choose to use DMARC with a strategy of “quarantine” or “reject” right from the start. This can work, but if the policy isn’t carefully set, it can also cause valid emails to be blocked.
Reporting Address Spoofing: Attackers could try to change the DMARC reporting address to send reports of failed DMARC checks to sites they control. This could give them a chance to learn more about how the organization’s email system works.
Targeted Spoofing: Attackers could try to pose as people or parts of an organization that haven’t fully set up DMARC. This specific method makes it more likely that their emails will be read.
As with other email-related attacks, attackers could use social engineering to get receivers to ignore DMARC warnings or think a DMARC-failed email is real.
SPF records are TXT (text) records in the DNS. Emails from this domain must be sent from the IP addresses or parts specified in these records.
The recipient’s email server will check the SPF record for the sender’s field in the Domain Name System (DNS) to ensure the email is legitimate.
Example SPF record:
v=spf1 ip4:192.0.2.1 ip6:2001:db8::1 include:example.com all
DKIM Records:
DKIM records are similarly stored in DNS, although they are TXT entries. These entries store the public key to authenticate the domain’s digital signatures in outgoing emails.
The DKIM record is retrieved from the DNS by the receiving email server, which then uses the public key to verify the signature and ensure the email’s authenticity.
DNS also stores DMARC records in the TXT record format. The measures to take if an email fails SPF or DKIM checks are provided in the domain’s DMARC policy, defined by these records.
To keep the domain owner aware of authentication actions, DMARC additionally provides reporting tools.
Checking an Email for SPF, DKIM, and DMARC Compliance
It takes multiple procedures and the capacity to query DNS records to ensure an email complies with SPF, DKIM, and DMARC.
Here are the measures taken to ensure that an email adheres to these standards:
Check SPF Compliance:
Extract the IP address of the email server that sent the email from the email headers.
Retrieve the SPF record from the domain’s DNS that the email claims to be sent from. This is usually found in a TXT record in the domain’s DNS.
Check if the sending server’s IP address is listed in the SPF record. If it is, the email passes the SPF check; otherwise, it fails.
Check DKIM Compliance:
Check the email headers for a DKIM signature. This will usually be found in a header field called ‘DKIM-Signature’.
Extract the ‘d=’ parameter from the DKIM signature to find the signing domain and the ‘s=’ parameter to find the selector.
Retrieve the DKIM public key from the DNS of the signing domain. This will be found in a TXT record at selector>._domainkey.signing domain>’.
Use the public key to verify the DKIM signature in the email header. If the signature is valid, the email passes the DKIM check; otherwise, it fails.
Check DMARC Compliance:
Ensure that the email has passed both the SPF and DKIM checks. At least one of them must pass for the DMARC check to pass.
Retrieve the DMARC record from the domain’s DNS from which the email claims to be sent. This is usually found in a TXT record at ‘ _dmarc.domain>’.
Check if the ‘From’ address domain matches the SPF domain or the DKIM signing domain. If it does, then the email passes the DMARC alignment check.
Follow the policy specified in the DMARC record for handling emails that fail the DMARC check.
How to configure SPF, DKIM, and DMARC for a domain
Configure SPF:
Identify Authorized IP addresses or servers: Determine the IP addresses or servers authorized to send email on behalf of your domain.
Create an SPF Record: Create an SPF record by creating a TXT record in your domain’s DNS settings. The value of this TXT record will start with ‘v=spf1’ followed by the authorized IP addresses or servers.
Example SPF Record:'v=spf1 ip4:192.168.0.1 -all'
This example authorizes the IP address ‘192.168.0.1’ to send emails on behalf of your domain and denies all others.
Update DNS Settings: Add the SPF record to your domain’s DNS settings.
Configure DKIM:
Generate a DKIM Key Pair: Generate a public-private key pair for DKIM. Your email server will use the private key to sign outgoing emails, and your domain’s DNS settings will make the public key available.
Configure Email Server: Configure your email server to sign outgoing emails using the private DKIM key.
Create a DKIM Record: Create a DKIM record by creating a TXT record in your domain’s DNS settings.
The name of this TXT record will be in the format selector>._domainkey.yourdomain>’, and the value will contain your DKIM public key.
Example DKIM Record: 'v=DKIM1; k=rsa; p=MIGfMA0...'
This example specifies that the key type is RSA and includes the public key.
Update DNS Settings: Add the DKIM record to your domain’s DNS settings.
Configure DMARC:
Create a DMARC Record: Create a DMARC record by creating a TXT record in your domain’s DNS settings. The name of this TXT record will be ‘_dmarc.your domain>’, and the value will contain your DMARC policy.
Example DMARC Record: 'v=DMARC1; p=reject; rua=mailto:[email protected]'
This example specifies that emails that fail the DMARC check should be rejected and that reports should be sent to ‘[email protected]’.
Update DNS Settings: Add the DMARC record to your domain’s DNS settings.
Conclusion
The SPF, DKIM, and DMARC standards are essential components of a reliable email security architecture in an age when email is vulnerable to a wide range of attacks.
Though each has advantages and disadvantages, they provide an enormous defense against a significant fraction of email-based attacks.
By implementing these authentication processes, your email systems’ security will improve, and your emails’ deliverability will also be enhanced, reducing the possibility that your legitimate messages will be miscategorized as spam.
Applying these standards to your digital communication infrastructure can significantly improve the safety and dependability of your communications.
Implementing AI-powered email security solutions can secure your business from today’s most dangerous email threats, such as Email Tracking, Blocking, Modifying, Phishing, Account takeover, Business Email Compromise, Malware and ransomware – Request Free Demo.
Samsung pushed massive new software updates to the Galaxy S23 series and Galaxy S22 series in August. The updates brought new camera features and other improvements. As usual, the company began with a limited rollout in select markets. But the phones are now picking up the big releases widely.
According to SamMobile, the August feature updates for the Galaxy S22, Galaxy S22+, Galaxy S22 Ultra, Galaxy S23, Galaxy S23+, and Galaxy S23 Ultra are now available in Europe. The new firmware build number for the 2022 flagships is S90*BXXU6CWH5. That for the 2023 lineup is S91*BXXU3AWGJ.
The devices remain on the August 2023 Android security patch level following this update. They had separately picked up the latest security update before the big release a couple of weeks back. It brought more than 80 vulnerability fixes. However, since Samsung has yet to roll out the September SMR (Security Maintenance Release), there’s no new security patch available yet.
Nonetheless, there are plenty of other things to talk about here. The latest update for the Galaxy S23 brings an optimized 2x zoom option, optimized high-pixel modes (50MP and 200MP), improved focusing, improved digital zoom, improved Portrait videos (support for 30fps), improved Motion photos, better face shape correction for selfies, and more camera goodies.
The Galaxy S22 lineup also got a bunch of camera-related improvements with the August update, including improved low-light photos and videos. No wonder the OTA (over the air) file size of this update is 1.8GB. The OTA package for the Galaxy S23 series weighs 1.3GB. If you haven’t received these updates yet, you should soon. As usual, you can check for new updates from the Settings app.
The Galaxy S22 series may soon get One UI 6.0 beta
Samsung pushed these camera improvements to its 2022 and 2023 flagship smartphones just as it opened a public beta for One UI 6.0. The new One UI version, which brings Android 14 to the Galaxy family, is currently available to users through a beta program in Germany, South Korea, and the US.
The Korean firm is expected to launch beta programs in India, Poland, China, and the UK soon. It will likely come alongside the second beta build in a few days. Simultaneously, Samsung may open One UI 6.0 beta for the GalaxyS 22 series as well. The stable Android 14 update should start rolling out to eligible Galaxy devices in late October, with the Galaxy S23 series picking it up first. The Galaxy S22 series will also get it before the end of the year.
We’re all anticipating the next Pixel phones that will launch in October, but Google has more up its sleeve than new hardware. As you know, Google is really big on AI, and it just held its Google Next event. During the event, it unveiled some new improvements to Vertex AI and other AI products, according to Venture Beat.
With AI technology exploding nowadays- especially with the advent of generative AI- Google is looking to give AI developers and users useful tools.
Google brings improvements to Vertex AI
If you’re using Google’s Vertex AI platform, then you’ll love these changes coming to the platform. In case you don’t know what this is, Vertex AI is a suite of powerful tools that you use if you’re into ML (machine learning). If you’re an ML developer or if you want to get into it, you can check it out. Follow the link below.
The improvements revolve around the extensions that Google added to Vertex AI. June Yang, VP, cloud AI and industry solutions at Google, stated that “Vertex AI Extensions are a set of fully managed developer tools, which connect models via API to real-world data and enable models to perform real-world actions,”
If you’re looking to build your own generative AI application, these extensions can help make it more useful. When it comes to developing generative AI tools, it can be difficult to get your hands on the proper tools. It’s a daunting task, so these extensions will definitely help.
In other AI news: Major news outlets are blocking ChatGPT
Notable news outlets like Insider, CNN, The New York Times, etc. are at war against ChatGPT. They oppose the chatbot scraping information from them and using their articles to train. This is why these sites and many more are blocking ChatGPT’s crawlers from getting onto their sites.
The research revealed high malspam activity of DarkGate malware distributed via phishing emails to the users either through MSI files or VBs script payloads.
Darkgate malware has been active since 2018 and has the ability to download and execute files to memory, a Hidden Virtual Network Computing (HVNC) module, keylogging, information-stealing capabilities, and privilege escalation.
A user RastaFarEye has been advertising DarkGate Loader on the xss[.]is an exploit[.]in cybercrime forums since June 16, 2023, with different pricing models.
“The current spike in DarkGate malware activity is plausible given the fact that the developer of the malware has recently started to rent out the malware to a limited number of affiliates,” Telekom Security said.
Attack Execution
Initially, phishing emails distributed the payload with either the MSI variant or the VBScript variant.
The attack commences from clicking on the phishing URL which redirects the user to the phishing site via a Traffic distribution system(TDS).
Subsequently, the MSI file will be downloaded, which executes the AutoIt script to execute a shellcode that acts as a conduit to decrypt and launch DarkGate via a crypter (or loader).
Whereas Visual Basic Script payload uses cURL to retrieve the AutoIt executable and script file to execute the malware.
Infection Chain
On successful initialization of darkgate malware, the malware will write a copy of itself to disk and create a registry run key to persist execution between reboots.
It also can terminate the process when it gets detected by the AV and alters its behavior according to the well-known AV product.
The malware can query different data sources to obtain information about the operating system, the logged-on user, the currently running programs, and other things.
The malware uses multiple legitimate freeware tools published by Nirsoft to extract confidential data.
The malware periodically polls the C2 server for new instructions, executes the received commands, and finally sends back the results to the C2 server.
AI is really big in the tech industry nowadays, and it’s made its way into social media. According to The Verge, Snapchat just introduced its new AI selfie tool called Dreams. You’ll use this platform to make AI-generated selfies.
Snapchat is no stranger to artificial intelligence. Earlier this year, the company unveiled My AI. This is the ChatGPT-powered chatbot that lets you have a conversation with a fictitious chatter. This feature is available to all users, so you can use it today.
Snapchat Dreams will let you take an AI selfie
Right now, people are enjoying the whole AI selfie craze. People will take a selfie and have an image generator produce copies of that photo in different styles. There are other apps that can do this, but it was only a matter of time before Snapchat jumped on the train.
In order to access Dreams, you’ll need to go to the Memories section. There, you’ll upload a series of photos of yourself. The app wants you to upload pictures of your face from different angles.
When you do that, it will then give you the generated images. This sounds like an interesting to the app, but there’s one catch; using it won’t be entirely free.
Your first pack of Dreams (eight individual photos) will be free. However, if you want additional packs, you’ll need to pay for them. Each pack costs $1 each. That’s not too bad, but it will definitely turn some people away from it.
Right now, this feature is only available in Australia and New Zealand. It’s going to make its way over to other markets as time goes on. If you’re excited about this new feature, then you’ll want to keep your app updated.
Before you sign up for this feature, just know that you’re giving Snapchat permission to collect the images of you.
Lately, there’s been a few conflicting reports about the iPhone 15 Pro Max, or the iPhone 15 Ultra. Saying that the phone would be delayed a few weeks, then we saw that it was back to being on time. Now, according to analyst Ming-Chi Kuo, the iPhone 15 Pro Max is still behind schedule.
In a note to investors, Kuo mentioned that the iPhone 15 Pro Max was the “last project to kick off”. Which means that mass production for it started later than the other iPhone 15 models. Which does echo a report from another analyst last week, and that it could face delays of 3-4 weeks.
Kuo notes that Apple has faced some challenges with the new titanium frame material that they are using on the iPhone 15 PRo. This challenge includes the “high processing difficulty and significant design changes during development”. He points to the cancellation of the solid-state button project as the biggest factor here.
In case you forgot, Apple was rumored to be moving to solid-state buttons for the iPhone 15 Pro this year. But that was seemingly cancelled due to production issues.
That’s not all that caused delays for Apple
Kuo’s report also mentions that the main production issues for the iPhone 15 Pro Max included the stacked CIS, panels and batteries, on top of the titanium frames. The batteries were apparently expanding when exposed to heat. So that needed to be fixed, obviously.
The stacked CIS issue was resolved by increasing the production capacity, however it is still affecting about 10-15% of shipments of the regular iPhone 15 models. Kuo mentions that Apple changed the supplier shipment ratio helped resolve the panel issue. Remember that Apple does typically use multiple suppliers for the same parts. Because they need so many, compared to their competitors.
Finally, Kuo also mentioned that the titanium frame should contribute to a weight reduction on the iPhone 15 Pro and Pro Max. Something that we had heard earlier this week.
The FBI and the US DoJ dismantled the Qakbot botnet, which is one of the largest and most sophisticated botnets in the world.
The botnet was used to carry out financial fraud, ransomware attacks, and other cybercrimes, resulting in losses of hundreds of millions of dollars to businesses and individuals across the US and abroad.
The dismantling of the botnet was a multinational operation involving law enforcement agencies from France, Germany, Romania, the Netherlands, Latvia, the US, and the UK.
The FBI obtained lawful access to the botnet’s infrastructure and redirected its traffic to Bureau-controlled servers. This instructed the compromised computers to download an uninstaller file that removed the malware.
The department also confirmed seizing around $8.6 million in cryptocurrency in illegal profits (extorted funds).
The US Federal Bureau of Investigation (FBI) has confirmed the dismantling of notorious malware and botnet called Qakbot (QBot and Pinkslipbot). The FBI and the US DoJ (Department of Justice) announced in a joint press release on August 29 that the dismantling was possible through a multinational operation in which law enforcement agencies from France, Germany, Romania, the Netherlands, Latvia, the US, and the UK participated.
Per the DoJ’s press release, this is the largest ever botnet infrastructure’s financial and technical disruption facilitated by the USA. Qakbot botnet was developed in 2008 and used to carry out financial fraud, ransomware attacks, and other cybercrime.
The botnet was used in countless ransomware attacks and cybercrimes, resulting in losses of hundreds of millions of dollars to businesses and individuals across the US and abroad. Many ‘prolific ransomware groups’ such as REvil, Conti, Egregor, Black Basta, and MegaCortex used the Qakbot botnet for initial infection.
The malware was distributed through spam emails containing malicious links/attachments. When the victim clicked on the link and downloaded the malware, it fetched additional payload, including ransomware, on the device and made it a part of Qakbot’s ever-expanding botnet army.
This allowed the attackers to control the device remotely while the victim remained unaware of the intrusion and exploitation.
According to FBI director Christopher Wray, the bureau ‘neutralized’ this extensive ‘criminal supply chain,’ the victims of which were extremely diverse, including financial institutions on the East Coast, medical device manufacturers on the West Coast, and a critical government infrastructure contractor based in the Midwest.
“This botnet provided cybercriminals like these with a command-and-control infrastructure consisting of hundreds of thousands of computers used to carry out attacks against individuals and businesses all around the globe.”
Christopher Wray – FBI
During the operation, the FBI obtained lawful access to the botnet’s infrastructure and detected that it comprised more than 700,000 infected computers worldwide. Around 200,000 were located in the US.
The disruption process involved redirecting Qakbot botnet’s traffic to Bureau-controlled servers, which instructed the compromised computers to download the uninstaller file created to remove the malware.
The uninstaller untethered the computers from the botnet and prevented them from accepting additional malware. The department also confirmed seizing around $8.6 million in cryptocurrency in illegal profits (extorted funds).
Wray appreciated the efforts of FBI Los Angeles, the bureau’s Cyber Division, and participating agencies within and outside the USA.
“The cyber threat facing our nation is growing more dangerous and complex every day. But our success proves that our own network and our own capabilities are more powerful,” the FBI director said.
Google has updated the Stable and Extended Stable channels for Mac, Linux, and Windows to version 116.0.5845.140/.141 to address a security issue in Chrome.
One “high-severity” security patch is included in this version. This upgrade will roll out over the next days and weeks.
For the Stable channel, Google stated that it will begin distributing weekly security upgrades. This should also aid in resolving a patch gap in the Chrome release cycle.
Updates to address security and other high-impact vulnerabilities will be scheduled weekly instead of every four weeks to implement security fixes more quickly.
When a security flaw in Chrome is resolved, the updated source code for Chromium is made available to the general public. After testing and evaluation, the patch is released to the Stable Channel.
High- Severity Vulnerability Patched
A high severity flaw tracked as CVE-2023-4572, Use after free in MediaStream has been fixed. The issue was reported by fwnfwn(@_fwnfwn).
When dynamic memory is used improperly while a program is running, it can lead to a vulnerability known as Use After Free (UAF). An attacker might exploit the error to manipulate the program if a program doesn’t delete the pointer to a memory location after freeing it.
Chrome Security Update
Chrome for Linux and macOS: Chrome 116.0.5845.140
Chrome for Windows: Chrome 116.0.5845.140 or Chrome 116.0.5845.141
How to Update Google Chrome
On your computer, open Chrome.
At the top right, click More.
Click Help About Google Chrome.
Click Update Google Chrome. Important: If you can’t find this button, you’re on the latest version.
Click Relaunch.
To guard the system and browser against issues, it is advised that the update be applied as soon as possible.