ASUS ZenFone 10 is up to pre-order in the US, with free earbuds

0
[ad_1]

The ASUS ZenFone 10 was announced at the end of June, and became available in early July in several regions. That was not the case with the US, though. Well, now, the ASUS ZenFone 10 is finally available to pre-order in the US.

The ASUS ZenFone 10 is not up for pre-order in the US

The ZenFone 10 can be pre-ordered in the US for $699, which is the price of ASUS’ new flagship. Needless to say, that’s a great price tag considering the state of the market at the moment.

The ZenFone 10 is highly regarded by many people who used it, including us. It’s likely the very best compact Android smartphone, and one of the better flagship handsets introduced this year. You can read our review to find out more.

Now, if you decide to buy this phone in the US before September 30, you’ll also get a free pair of earbuds. ASUS will include the ROG Cetra true wireless earbuds, in either black or Moonlight White colors.

The device comes in five color options

The ASUS ZenFone 10 itself comes in five interesting colors. You can get the phone in Aurora Green, Eclipse Red, Comet White, Starry Blue, and Midnight Black colors. The frame is black on all of them, except the Comet White color variant.

Where can you pre-order the phone? Well, you can grab it from the ASUS eShop, Amazon, and Mobile Advance. The price ranges from $699 to $799, depending on the model. As a reminder, the phone comes in 8GB and 16GB RAM models.

The ZenFone 10 is fueled by the Snapdragon 8 Gen 2 SoC, while it offers LPDDR5X RAM and UFS 4.0 flash storage. It also features a 5.92-inch fullHD+ Super AMOLED display with a 144Hz refresh rate.

It supports wireless charging this time around

ASUS included a 4,300mAh battery here, which is more than enough for this device. It actually offers excellent battery life. 30W wired charging is supported, as is 15W wireless charging. Do note that you’ll get a charger in the box.

Android 13 comes pre-installed, with ZenUI on top of it. The phone even has an audio jack, in case you need it, while it is IP68 certified.

Pre-order the ASUS ZenFone 10 (Amazon)


[ad_2]
Source link

Amazon & Meta targeted for allowing listings of recalled products

0
[ad_1]

The House and Commerce Committee addressed letters to Amazon, eBay, Meta, Walmart, and other online shopping portals, raising queries about their approaches to recalled products and seeking information regarding their efforts to prevent these platforms from selling banned and recalled goods.

The committee specifically expressed concern about Meta, alleging that it had not stopped sales of two recalled child products—the Fisher-Price Rock ‘n Play sleeper and Boppy Newborn Lounger—on Facebook Marketplace.

The Consumer Product Safety Commission (CPSC) had recalled the Rock ‘n Play in 2019 and the Newborn Lounger in 2021. However, the CPSC reports that the rate of takedown requests (averaging 1,000 per month) has not decreased, and the companies have not taken “proactive measures” to prohibit sales.

Notably, the Rock ‘n Play has links to nearly 100 infant deaths. Committee members, including Chair Cathy McMorris Rodgers, expressed concern that inadequate prevention of such sales on online marketplaces might endanger the safety of children and users.

House of representatives plans

House representatives asked all companies for comprehensive reports detailing their current actions to block the sale of recalled products, with a focus on designated staff. They also sought information about the companies’ future plans and any legal uncertainties they encounter when addressing the issue. Furthermore, the letters inquired whether the companies are willing to collaborate with the committee to find solutions. The companies must respond by August 31st.

In response to these inquiries, a spokesperson from Meta stated that the sale of recalled items is not unique to Facebook Marketplace. The company asserted its serious approach and its removal of listings that violate its rules. Similarly, eBay emphasized its seriousness in dealing with recalls, using a combination of AI and investigators to identify potentially hazardous listings. The company expressed interest in cooperating with the House committee on these matters.

This scrutiny emerges as Amazon potentially faces an antitrust lawsuit over its sales practices, and as efforts increase to scrutinize the behavior of tech giants. Additionally, Meta is scaling back some shopping features, including shutting down live shopping on Facebook and Instagram. These actions aim to reduce costs but also leave the company’s remaining commerce initiatives in a fragile position.


[ad_2]
Source link

Apache XML Graphics Batik Flaw Exposes Sensitive Information

0
[ad_1]

Two Server-Side Request Forgery (SSRF) vulnerabilities were found in Apache Batik, which could allow a threat actor to access sensitive information in Apache Batik.

These vulnerabilities exist in the Apache XML Graphics Batik and are given CVE IDs CVE-2022-44729 and CVE-2022-44730.

It is a Java-based application toolkit that is used for rendering, generating, and manipulating of SVG (Scalable Vector Graphics) format.

This tool contains multiple modules like SVG Parser, SVG Generator, and SVG DOM.

CVE-2022-44729, One of the SSRF vulnerabilities exists as Apache can be triggered to load external resources by using a malicious SVG, which could result in more resource consumption or information disclosure.

CVE-2022-44730, this vulnerability can be exploited by a threat actor by using a malicious SVG to probe user profile/data and send it directly as an URL parameter resulting in information disclosure.

In response to these vulnerabilities, Apache has patched these vulnerabilities by blocking external resources by default and creating a whitelist in the Rhino JS engine.

Batik prior to version 1.16, is affected by these vulnerabilities. Revisions have been made to the source code of Batik to fix these vulnerabilities. 

Users of Apache Batik are recommended to upgrade to the latest version 1.17, to prevent this vulnerability from getting exploited. 

Keep yourself informed about the latest Cyber Security News by following us on GoogleNewsLinkedinTwitter, and Facebook.


[ad_2]
Source link

Xiaomi MIX Fold 3 seems to be heavier than Xiaomi claims

0
[ad_1]

A rather interesting report has surfaced online. Someone ended up measuring the Xiaomi MIX Fold 3 thickness and weight in China, and the phone seems to be heavier than Xiaomi claims. This report has been relayed by Gagadget.

The Xiaomi MIX Fold 3 could be heavier than what Xiaomi claims

The Xiaomi MIX Fold 3 got announced earlier this month, in case you missed that. The phone comes in glass and carbon fiber variants. Xiaomi announced that the glass model weighs 259 grams, while the carbon fiber variant weighs 255 grams.

Well, based on the weight measurements made by a third party (gallery below), the glass model weighs 267.4 grams, while the carbon fiber model weighs 264.3 grams. This is not a small difference. Also, these new numbers make the MIX Fold 3 heavier than its predecessor (262 grams).

That’s not all, though. The phone also seems to be a bit thicker than what Xiaomi reported. The difference there is negligible, though. It has been measured to be 0.04mm thicker in unfolded form, and 0.28mm in folded form. As already mentioned, that difference is pretty much negligible.

That’s almost a 10-gram difference for both models

The difference in weight, however, is rather odd. We’re not really sure what happened here. That’s almost a 10-gram difference between measurements, which is… mind-boggling.

In any case, the Xiaomi MIX Fold 3 is the company’s brand new foldable smartphone. The device launched in China earlier this month, and unfortunately, it won’t be making its way to global markets.

The Xiaomi MIX Fold 3 has a truly compelling set of cameras on the back, with Leica lenses. It actually includes four cameras, all of which look promising. It is also quite thin, and also not too heavy for its size.

The Snapdragon 8 Gen 2 fuels this handset while Xiaomi included plenty of high-end specs on the inside. It also supports very fast wired and wireless charging, two 120Hz AMOLED displays, and much more.


[ad_2]
Source link

TikTok’s latest move integrates ads into search results

0
[ad_1]

TikTok is introducing a new way for advertisers to utilize the platform and reach more users. The Search Ads Toggle is a new feature on TikTok Ads Manager that enables brands to display ads in TikTok search results, resulting in more ads for users to see.

The Search Ads Toggle lets brands expand their in-feed ads to the TikTok search results page. It aims to offer brands the choice to connect with users looking for specific terms related to their product or service. The search ads will appear in various spots on the search results page.

So, the next time you use the search bar on TikTok, you may spot sponsored ads tied to the topic within the search results. While some users might find this bothersome, the announcement assures that the ads will match the search query and be distinctly marked as sponsored posts. Clicking on a sponsored post won’t disrupt your search, which is a positive aspect.

Just recently, TikTok introduced an option for its EU users to turn off personalization in their For You feed. Additionally, EU users between 13 and 17 years old won’t receive tailored ads tied to their activities on or off TikTok. With the arrival of the new Search Ads Toggle feature, these regulations might lose some significance, given that encountering an ad based on your query might be considered a form of personalization.TikTok stepped into the advertising scene in 2019, even though the social media platform was launched in 2016. Despite this, it has been generating groundbreaking ad revenue consistently. In 2022, TikTok’s ad revenues surged past $9.9 billion, marking a remarkable 155% jump from the previous year. This upward trajectory is set to persist, with forecasts projecting TikTok’s annual ad revenue to hit $13.79 billion by 2026.

Thanks to the fresh Search Ads Toggle, TikTok could potentially expedite this process, considering that millions of potential customers will be engaged through this new feature. TikTok is one of the most widely used apps worldwide, boasting over 1.4 billion monthly active users.


[ad_2]
Source link

Researchers Demonstrate Apple Device Spoofing At Defcon

0
[ad_1]

Using a meager $70 setup makes spoofing any Apple device possible. That’s what the researchers demonstrated at the latest Def Con. The simplest way to avoid such threats is to turn off the devices’ Bluetooth when not in use.

Apple Device Spoofing possible Via $70 Equipment

At the latest Def Con 2023, security researchers demonstrated hilariously spoofing any Apple device. While executing the activity as a prank, the researchers emphasized the need to secure devices from potential spoofing threats by adequately turning off the devices’ Bluetooth.

Initially, the attendees at the event started getting weird popups on their devices, asking them to connect to an Apple TV or share a password with a nearby device. Some popups even looked like more of a prank, asking users to update their devices or adjust the color balance.

Yet, it also seemingly bewildered some Def Con attendees, making them share warning alerts via social media.

Ultimately, the researcher Jae Bochs disclosed the matter via Mastodon, explaining that the popups were part of a project demonstrating a security issue with Apple devices.

According to his response on Mastodon, the activity demonstrated an inherent Apple glitch that an adversary could abuse maliciously. However, this activity never aimed to collect data from the attendees but to convince users to disable Bluetooth when not in use via the Settings app.

As reported, Bochs used simple $70 equipment comprising a Raspberry Pi Zero 2 W, two antennas, a Linux-compatible Bluetooth adapter, and a portable battery. Bochs could easily generate popups on nearby Bluetooth-enabled Apple devices using this hardware.

The attack could execute due to Apple’s Bluetooth Low Energy (BLE), which allows communication between nearby devices. Hence, this interaction generated popups on nearby devices.

With Bochs’ attack kit, it became possible to generate fake alerts on the devices. Though Bochs’ project didn’t aim at collecting data, an adversary could do it if the victim devices’ users interacted with the popups.

The researchers have demonstrated the attack in the following video.

Preventing BLE-Related Attacks

While Apple devices allow turning off Bluetooth via the quick-access Control Center, this method doesn’t seemingly work in the demonstrated attack scenario. Even after toggling off Bluetooth, the researcher could still trigger popups on nearby devices due to proximity.

Hence, as explained, the best way to avoid such risks is to always disable Bluetooth via the device’s Settings app when not in use.

Let us know your thoughts in the comments.

source: https://securityaffairs.com/149711/hacking/spoofing-apple-device.html


[ad_2]
Source link

‘Important Notification’ Phishing Scam Targeting American Express Customers

0
[ad_1]

Armorblox security researchers have uncovered a new phishing campaign in which attackers are targeting American Express customers.

As per researchers, in this phishing scam, scammers lure American Express cardholders into opening an attachment and try to steal confidential data to access their accounts.

In this financially motivated campaign, attackers first send a spoofed email of the much-recognized card brand and ask the customers to click on the link included in the email attachment. 

Using social engineering and brand impersonation, the attackers lure their targets onto fake and malicious landing pages.

When the victim clicks on this link, they are redirected to a fake American Express landing page. This page is also crafted smartly to resemble the original American Express login page, including the company’s genuine logo, navigational links, and a link to download the American Express app.

In reality, scammers are using a customised domain for this attack. Once there, victims are prompted to sign in to verify their accounts. They enter their user ID and password.

The Legit-looking Phishing Email

In this phishing scam, the email is designed to appear as an authentic American Express notification. The email subject, according to Armorblox’s blog post, reads: “Important Notification About Your Account.”

It informs the recipient to verify their account. Otherwise, the company will suspend it.   The phrase “This is your last chance to confirm it before we suspend it” is included to create a sense of urgency. Victims are requested to complete a one-time verification process to update their credentials and prevent suspension of their accounts.

The email content is created wisely so that a sense of trust is evoked in the recipient.   For instance, it includes the American Express logo on the top left, and a signature is featured at the end to deceive the users into believing that the company’s customer service team sent the email.

‘Important Notification’ Phishing Scam Targeting American Express Customers
Phishing email and the phishing page (Screenshots via Armorblox)

Prime Targets

Armorblox co-founder and CEO DJ Sampath stated that financial firms are more frequently targeted with credential phishing scams. The main targets of this scam are holders of American Express charge cards.

What’s noteworthy is that the phishing scam has bypassed Google Workspace Security successfully, and so far, the email has been sent to around 16,000 email addresses of American Express employees.

How to Identify a Phishing Scam?

Most people are familiar with the term “phishing” but may not know how to identify a phishing scam. Phishing is a type of online fraud that involves tricking someone into giving personal information such as passwords, credit card numbers, or banking information. Scammers do this by sending fake emails or setting up fake websites that look like the real thing.

Here are some tips to help you spot a phishing scam:

  • Be suspicious of any email or website that asks for personal information such as your password, Social Security number, or credit card number. Legitimate companies will never ask for this information via email or an online form.
  • Phishing attempts almost always contain a link, downloadable attachment, or directive telling people to do something ASAP.
  • There are often a lot of spelling mistakes, but not always.
  • The email or message can instill a sense of urgency to get people to act quickly without thinking.
  • It may be a threat or even blackmail, as is the case with sextortion phishing scams.
  • The email signature will usually look strange or different from normal.
  • Phishing emails or messages aren’t always from strangers. Sometimes they’re sent from the compromised accounts of friends, coworkers, or other contacts.
  • Inspect the URL of any website you’re directed to from an email before entering any information on it.

[ad_2]
Source link

Premium build of special Xiaomi 14 Pro model detailed early

0
[ad_1]

Xiaomi is seemingly planning to launch a special edition variant of the Xiaomi 13 Pro, which will offer a truly premium build. This information comes from Digital Chat Station, a well-known Chinese tipster.

A special Xiaomi 14 Pro model is coming with premium build

That special edition model will seemingly include a titanium frame, and a nano-ceramic glass cover on top of its display. On the back, you’ll be able to find a ceramic backplate.

On top of that, the phone is tipped to offer satellite communication tech, which seems to be rising in popularity on smartphones. The Snapdragon 8 Gen 3 chip is said to fuel this phone, as expected.

Now, based on previous rumors, the Xiaomi 14 Pro will include a 5,000mAh battery. 120W charging is also rumored, and the same goes for 50W wireless charging. And yes, a charger will be included in the box.

This handset could offer up to 24GB of RAM in China, though globally, it’ll likely go up to 12GB or 16GB of RAM. Xiaomi will almost certainly use LPDDR5X RAM and UFS 4.0 flash storage in this smartphone.

The phone will include truly compelling camera hardware

A 50-megapixel main camera is said to be included on the back. That camera will utilize Sony’s IMX989 sensor, which is a 1-inch camera sensor used by quite a few flagship smartphones this year.

A 50-megapixel ultrawide camera is also rumored, along with a 50-megapixel periscope zoom camera. Android 14 is said to come pre-installed on Xiaomi 14 Pro, along with MIUI 15.

The Xiaomi 13 series is expected to arrive towards the end of the year to China. Global models will likely launch next year. Also, the ‘Ultra’ model is expected alongside the vanilla and ‘Pro’ models, but that variant could launch later on. That is actually what happened with this year’s model.


[ad_2]
Source link

Best QLED Smart TV Deals for August 2023

0
[ad_1]

If you’re looking for a new TV, then look no further than the best QLED smart TV deals. That’s because QLED is highly regarded as one of the best technologies currently available for TVs. It’s a better than OLED in a few ways. Mostly the fact that it doesn’t result in burn-in on your TV set. But you still get those true-to-life colors and actual deep blacks instead of gray.

QLED is often times cheaper than OLED as well. Which is one major reason why a lot of companies are gravitating towards it for their high-end TVs right now. However, Samsung still makes the majority of QLED TVs right now. But other TV makers like TCL and VIZIO are also making them these days.

Expect to pay at least a grand for most QLED TVs right now. TCL will sell you one for a bit less, but it is using an older QLED panel. So do keep that in mind.

Best QLED Smart TV Deals

For the most part, QLED TVs are mostly 50-inches or larger. You won’t find to many that are below that size. So if you’re looking for a good TV to add to your bedroom, you may have to get a larger one.

When it comes to QLED TVs though, there are some really cool options around. Like the Frame TV from Samsung. Which can turn into a picture frame on your wall when you’re not watching TV. It’s a really cool concept, and it is also one of the cheaper QLED TVs out there right now.

In this list below, you’ll find the cheapest QLED TVs that are available right now. These are the best QLED Smart TV deals that are currently available. So you can purchase one and rest assured that it is the best price.


[ad_2]
Source link

Galaxy Tab A9, Tab A9+ spotted online with live photos

0
[ad_1]

The Galaxy Tab A9 doesn’t seem to be the only new A-series tablet Samsung has in the works. The company also appears to be readying the Galaxy Tab A9+. The Plus model recently surfaced on a few certification websites. Meanwhile, we have one more live photo of the former.

The Galaxy Tab A9 gains more certifications

A couple of weeks back, the FCC certified the Galaxy Tab A9 with the model number SM-X115. The FCC documents contained several live photos of the device, along with some of its key specs, including the battery capacity, charging speed, dimensions, and more. A few days later, the device picked up the Wi-Fi Alliance certification.

The same tablet has now received the Safety Korea certification as well. The Korean regulatory body mentioned model numbers SM-X110 and SM-X115N, which should be the Wi-Fi (global) and LTE/4G (Korean) versions of the device. The SM-X115 should be the global LTE version. There’s also an SM-X117 in the works, which is probably the global 5G version.

This Safety Korea website contains a live photo of the Galaxy Tab A9 but doesn’t give us any other information. The FCC has already revealed that it will pack a 5,100mAh battery with support for 15W charging via a USB Type-C port. It will feature a MicroSD card slot, a 3.5mm headphone jack, and a single rear camera.

We now have evidence of a Plus model as well

As the Galaxy Tab A9 continues to pick up regulatory approvals, we now have evidence of a Plus model as well. Over the past few days, the Galaxy Tab A9+ has received the Bluetooth SIG certification and the BIS certification (Indian regulatory agency). It has also popped up on the popular benchmarking platform Geekbench.

The BIS and Geekbench listings of the tablet mention the model number SM-X216B, which should be the global 5G version. However, the Bluetooth listing contains five more model numbers: SM-X210, SM-X216N, SM-X216C, SM-X218, and SM-X218B. As usual, the former should be the global Wi-Fi version, while the latter four should be regional variants of the cellular version.

Based on the available evidence, the Galaxy Tab A9+ will be powered by Qualcomm’s Snapdragon 695 chipset paired with the Adreno 619 GPU. The tablet will be available with at least 4GB of RAM, though Samsung could offer more RAM variants. It will run Android 13 out of the box, likely with the Korean firm’s One UI 5.1 custom software on top. The device will feature Bluetooth 5.1.

That’s all we know about the Galaxy Tab A9+ at the moment. Considering all the recent developments, Samsung may not keep the new A-series tablets under wraps for much longer now. It also has the Galaxy Tab S9 FE and Galaxy Tab S9 FE+ in the works, as well as the Galaxy S23 FE. All of these devices may launch shortly.

Samsung Galaxy Tab A9 live photo Safety Korea


[ad_2]
Source link