Nvidia outsources production of over half of its AI hardware to one company

0
[ad_1]

The Chinese company Foxconn is now responsible for producing over half of Nvidia AI hardware, Techradar (via Economic Daily reports).

When it comes to producing tech gadgets in China, Foxconn is the first name that comes to mind. The company has close ties with global tech leaders like Apple and produces their devices in China. Much of Foxconn’s reputation is due to producing iPhones. However, Nvidia is also outsourcing its AI hardware production to Foxconn.

According to Liu Yangwei, the chairman of Foxconn, the company now produces over 70% of AI servers sold globally. That said, Nvidia’s compute GPU modules, such as the A100, A800, H100, and H800, are also manufactured by Foxconn.

Foxconn agrees to produce AI hardware for Nvidia

The company is also expanding its production to servers and server cabinets, which doesn’t include Nvidia orders only. Servers that use proprietary AI processors by Amazon Web Services and Google are made by Foxconn. Demand for AI servers is skyrocketing, and Foxconn is pegging itself as the most reliable producer of servers of this kind. Inventec, Quanta, and Supermicro are other AI server producers.

Yangwei added that cloud service providers (CSPs) are the biggest customers for AI servers. AI-based applications have exploded in popularity, and cloud service providers (CSPs) strive to offer a platform capable of running these apps. Likewise, Nvidia CEO Jensen Huang has recently said AI-powered chips can reinvent computers, and AI platforms are the future of computing.

Foxconn’s CEO also stated that the company has close ties with American CSPs like Google, Amazon, and Microsoft. It’s also capable of manufacturing parts in its firm in Wisconsin to prevent unprecedented conflicts with the US government.

The AI server market is expected to reach $150 billion by 2027. The market’s value in 2023 is also estimated at $30 billion. Foxconn’s dominance will allow it to acquire a major share of this segment. According to IDC data, the entire server market was valued at $123 billion in 2022. This number can grow to $186 billion by 2027.


[ad_2]
Source link

This is how eSIM transfer will work on Android

0
[ad_1]

In January this year, Google was spotted working on the ability to transfer eSIM profiles between two Android devices. While the feature has yet to roll out to the public, the company seems to have made significant progress with its development. We now have visuals of how the whole process will work.

Screenshots shared on X, formerly Twitter, by app researcher AssembleDebug show that supported Android devices will gain a new settings page for transferring eSIM profiles. You will initiate the process on your current device and then scan a QR code on the new device. Once the scanning is complete, your new phone will show some on-screen instructions. Follow them as instructed and your eSIM will be transferred to it shortly.

You will now have your eSIM profile active on your new Android phone. You don’t need to contact your carrier at any point during this process. Without this feature, which might roll out to users later this year, you first need to deactivate eSIM on your current phone and activate it on the new phone. Since some carriers require you to contact customer service for eSIM activation, that’s an added convenience.

It’s unclear if eSIM transfer will be part of Android 14

Codes associated with an eSIM transfer feature for Android devices first appeared within Android 13 QPR2 Beta 2, which was the second beta build for the second quarterly feature drop for Pixel devices (stable update rolled out in March). The feature didn’t make it to the stable build. Google has since rolled out one more feature drop, and eSIM transfer wasn’t part of that either.

In the meantime, we are now nearing the stable Android 14 rollout. It’s unclear if Google will push this feature with the latest Android version in a few weeks. Even if the initial release doesn’t bring it, we hope the company won’t take much longer to make eSIM transfer seamless for Android users. Apple already offers a built-in tool in iOS that allows iPhone users to seamlessly transfer eSIM profiles to another iPhone.

There also have been hints of Google working on the ability to convert a physical SIM card into an eSIM. Unfortunately, the latest discovery doesn’t mention anything about this feature. It’s unclear whether the company has dropped this development of this feature for the time being or if it’s still in the works. We will let you know when we have more information.


[ad_2]
Source link

New York Times could take legal action against OpenAI amidst copyright issues

0
[ad_1]

The use of copyright material in training AI models such as ChatGPT has always been a matter of hot debate. Now, in a recent development, OpenAI has found itself in hot water with The New York Times, which is reportedly contemplating legal action to safeguard its intellectual property rights pertaining to journalistic content.

As reported by NPR, the root of the issue lies in OpenAI’s use of web-scraping bots to extract information, a practice that extends beyond materials that are free of copyright. This prompted The New York Times to modify its terms of service, explicitly forbidding the application of its articles and visual content for AI language model training. However, this move has also set the stage for potential legal action, as the publication aims to secure a licensing agreement, which would require OpenAI to provide compensation to The New York Times for the integration of its news stories into AI tools.

Additionally, the publication also argues that the chatbot poses a direct threat to the newspaper itself, as it generates responses based on the original reporting from the editorial team. This not only undermines the team’s efforts in reporting on specific topics but also poses a significant threat to the newspaper’s survival, especially as companies like Google and Microsoft prominently feature these AI-generated chatbot responses ahead of conventional web pages.

Legal action likely

Based on insider sources, the talks have escalated to the point where the newspaper is seriously considering legal action, a prospect that could prove detrimental to OpenAI. This is because if the court rules in favour of The New York Times, OpenAI would be compelled to erase the entire ChatGPT dataset and reconstruct its AI model exclusively using content for which it holds valid rights. Moreover, experts argue that each instance of copyrighted material used in training the AI models could potentially result in a financial liability of up to $150,000.

“If you’re copying millions of works, you can see how that becomes a number that becomes potentially fatal for a company. Copyright law is a sword that’s going to hang over the heads of AI companies for several years unless they figure out how to negotiate a solution,” said Daniel Gervais, co-director of the intellectual property program at Vanderbilt University.


[ad_2]
Source link

ScrutisWeb ATM Software Vulnerabilities Risked ATMs’ Security

0
[ad_1]

Researchers found numerous security vulnerabilities in the ScrutisWeb ATM fleet monitoring software that threatened ATM security. Exploiting the vulnerabilities could allow an adversary to hack target ATMs.

Multiple Vulnerabilities Found In ScrutisWeb ATM Software

The US CISA has recently warned users of numerous serious vulnerabilities affecting the Iagona ScrutisWeb ATM fleet monitoring software.

ScrutisWeb is a dedicated ATM software from Iagona – an industrial software provider firm – that empowers banks and the retail sector in monitoring ATM fleets for security issues and other software/hardware glitches.

According to CISA’s advisory, three researchers, Neil Graves, Jorian van den Hout, and Malcolm Stagg, discovered numerous security vulnerabilities in ScrutisWeb ATM software, which directly risked the security of the respective ATMs.

Specifically, they found the following vulnerabilities affecting the Iagona ScrutisWeb versions 2.1.37 and earlier.

  • CVE-2023-33871 (CVSS 7.5): a directory traversal vulnerability allowing an unauthenticated adversary to access any file outside the webroot.
  • CVE-2023-38257 (CVSS 7.5): an Insecure Direct Object Reference (IDOR) vulnerability that an unauthenticated adversary may exploit to view profile data and login credentials (with encrypted passwords).
  • CVE-2023-35763 (CVSS 5.5): a vulnerability affecting the cryptographic functionality that would allow an unauthenticated attacker to decrypt encrypted passwords in plaintext.
  • CVE-2023-35189 (CVSS 10): a critical-severity remote code execution flaw letting an unauthenticated attacker upload and execute malicious payloads on the target systems.

Upon discovering the vulnerabilities, the researchers reported the flaws to CISA, recommending the following mitigations.

  • Minimizing network exposure for control devices/systems.
  • Isolating control system networks and devices from the business network and securing them with firewalls.
  • Deploying VPNs to secure remote access to the systems.

Besides, Iagona has also patched the vulnerabilities with ScrutisWeb v2.1.38. Hence, all ScrutisWeb customers must update their systems with the latest software updates to receive the patches. Moreover, CISA advises organizations to perform impact analysis, risk assessments and consider ATM penetration testing before deploying defensive measures.

Let us know your thoughts in the comments.

 


[ad_2]
Source link

X won’t allow you to block other users any longer

0
[ad_1]

X (formerly known as Twitter) is reportedly working on a new feature that makes it impossible to block users on the platform. According to BBC, the company chief Elon Musk said blocking users “makes no sense,” and the feature will be removed.

Blocking users is a common way on social platforms to prevent users from reaching your content or stopping them from abusing you. However, X is now going in the opposite direction and wants to remove the blocking feature. Of course, you will still be able to block users from directly messaging you. But you can no longer stop them from interactions.

Some users now complain that removing the blocking feature makes removing abusive posts and users from the timeline harder. When you now block a user on the platform, his posts no longer appear on your timeline, and he cannot send you direct messages.

You can no longer block users on X (Twitter)

Twitter former CEO Jack Dorsey also agrees with the change, saying, “100%. Mute only.” But the problem with a complete mute is it might not provide enough protection against abusive users. A muted user can still interact with the muter and comment on his posts.

Additionaly, Musk’s decision to remove blocking features contradicts App Store and Google Play Store policies. Both stores require social platforms to provide users with tools to protect themselves against harassment, including the ability to block. Insisting on implementing the change might lead to removing the X app from both app stores unless Musk can settle with Google and Apple.

Another question that X needs to answer is whether the accounts that were blocked before the implementation of this decision will be automatically unblocked. If the change takes effect, the only way to protect your tweets is to make your account private.

Protecting free speech was arguably one of Elon Musk’s main incentives to pay $44 billion for Twitter. After taking over the company, the billionaire reinstated some controversial accounts like Andrew Tate, Jordan Peterson, and Donald Trump. Removing the blocking feature might also align with Musk’s free speech incentives and the “digital town square” he wants to build.


[ad_2]
Source link

Google Messages is preparing to support satellite connectivity

0
[ad_1]

Satellite connectivity has quickly become one of the more necessary features on modern smartphones, thanks in part due to its ability to save crucial lives in dangerous times. Now, in line with its efforts to make the feature available to all users with Android 14, Google has started implementing a new interface within Google’s Messages app, specifically designed to facilitate emergency SOS conversations via satellite.

As first spotted by the tipster @neil_rahmouni, who also shared some photos, Google’s fresh new interface for emergency connectivity interface mirrors the familiar layout of a standard text message thread, complete with a text entry field labelled “Satellite messages.” This implies that users will have the ability to craft personalized messages when communicating with emergency services, thus giving Google a massive advantage over Apple’s implementation, which only allows for certain predefined messages.

Additionally, the text entry box will also feature a character counter, which suggests that satellite messages could potentially be subject to distinct character limitations, differing from the conventional SMS format. Furthermore, in instances where the signal strength isn’t sufficient for a satellite call, the Google dialer will proactively guide users to switch to satellite messages.

New hardware required

While the prospect of using satellite connectivity in emergency situations could help save a lot of precious lives, most of the existing phones do not have the required hardware in place to use satellite connectivity. However, it is important to note that Google’s Pixel 7 series already incorporates the required hardware, albeit necessitating substantial software updates.

Moreover, the geographical context also plays a pivotal role. In some countries, the use of satellite phones is strictly banned or heavily restricted, casting doubts on the universal applicability of this technology. As a result, users who require satellite connectivity in their daily lives can explore interim solutions like Motorola’s Defy satellite Bluetooth dongle.


[ad_2]
Source link

WhatsApp may soon get new text formatting tools

0
[ad_1]

WhatsApp is already one of the best messaging apps, but there’s always room for improvement. That’s why we’re getting new updates that bring important new features almost every month. Recently, the app added support for high-resolution photos and promised to bring support for HD videos very soon too.On top of that, we’ve just learned that WhatsApp is working on additional text formatting tools that will make communications easier and even more fun. The fine folks over at WabetaInfo spotted a brand-new feature in the latest beta version of WhatsApp, which indicated that Meta’s developers have started to implement new text formatting tools.

Currently, there’s proof about three new text formatting options, which will be added on top of the already available italics, bold, strikethrough, and monospace options.

The first one is called “Code Block” and is aimed at software developers and programmers who might want to send code snippets to their friends or colleagues. This particular text formatting tool will prevent the confusion created when code snippets were not being displayed accurately in the chat window.

Another interesting text formatting tool, Quote, will receive a small yet important improvement. WhatsApp plans to introduce a new option that will allow users to highlight portions of a text that they want to quote. Currently, you can only quote entire messages, not parts of them.

Last but not least, one of the latest beta versions of WhatsApp had a new formatting tool that allowed users to create lists of items. That will basically eliminate the need to manually add bullet points to every item that you want to be included in your list.

The report mentions that these features are now in development, so it may take some time until WhatsApp actually releases them for everyone to use. Still, it’s nice to know what we’ll be getting in future updates, even if these new features won’t be available for a long time.


[ad_2]
Source link

WinRAR Security Flaw Could Allow Command Execution

0
[ad_1]

Heads up, WinRAR users! It’s time to update your systems with the latest WinRAR version to avoid security risks. The developers have patched a severe security flaw in WinRAR that could allow remote code execution attacks.

Remote Code Execution Flaw Discovered In WinRAR

Researchers from Trend Micro Zero Day Initiative (ZDI) discovered a serious vulnerability affecting RARLAB’s WinRAR archiving tool.

WinRAR is a popular file archiving tool available as trialware, allowing enterprise or personal users to create .rar archives. The software’s support for various archive formats has won it a vast customer base, suggesting the massive impact of the tool’s malicious exploitation.

According to ZDI’s latest advisory, a high-severity security flaw existed in WinRAR that could allow remote code execution attacks.

The vulnerability CVE-2023-40477 (CVSS score 7.8) existed in the recovery volumes processing due to “lack of proper validation proper validation of user-supplied data, which can result in a memory access past the end of an allocated buffer.” An adversary could easily exploit this flaw by tricking the target user into opening a maliciously crafted archive file or visiting a malicious URL. Once done, the attacker could execute arbitrary codes in the current process’s context.

Following this discovery, the developers patched the flaw with WinRAR version 6.23, sharing all the changes via an advisory. Besides the out-of-bounds write vulnerability that ZDI researchers highlighted, the advisory also mentioned fixing other bugs, including opening the wrong file after double-clicking an item in a specially crafted archive, and others.

Since the patch has been released, users must download the latest WinRAR versions from the official website to avoid potential threats. Besides, users must always remain careful when interacting with attachments or URLs from unsolicited sources. In addition, users should ensure to equip their systems with robust anti-malware programs to prevent such threats.

Let us know your thoughts in the comments.


[ad_2]
Source link

Chrome Password Manager gets a new shortcut for easier access

0
[ad_1]

The Chrome Password Manager on both Windows and macOS is now getting a new shortcut. This is a long-awaited feature that will help improve the accessibility of user passwords. Some users are already getting acquainted with this new feature on their Chrome browser.

With this new feature, Chrome users can better find their passwords whenever they need to with ease. Asides from the autofill password benefit of having your password saved, there might be times you’d need to access it. For this reason, there is a need for a shortcut to the Google Password Manager page.

This shortcut is an extension Google provides for users to install on their Chrome browser. The extension is only available on Windows and macOS devices at the moment. Here is how you can access this new shortcut button or extension app on your browser.

How to access the new Google Chrome Password Manager shortcut extension

Accessing this new shortcut to the password manager is quite straightforward. Google did a great job by making this entire process simple for all to understand. So if you use Google Chrome on your Windows or macOS device, and you are finding a hard time accessing your saved passwords, this one’s for you.

To access this shortcut extension on the Chrome browser, users need to first tap on the three-dot menu button. This button sits on the top right-hand side of the screen, just under the close button. Tapping on this will pull up a drop-down menu from where users will be able to access this new feature.

On the drop-down menu, users are to find and select the Google Password Manager option. This will pull up the password manager interface, where you can find all your saved passwords. But to access this new shortcut, tap on the hamburger icon at the top left-hand corner of the screen.

From the list provided by the menu, find and select the settings option. Within the settings page is the “Add shortcut” option, tap on this as well. You’d get a prompt to install the Google Password Manager extension, which is a shortcut to accessing your saved passwords.

Installing this extension will make it a lot easier to access all your saved passwords for usage. If you don’t already have this feature, you can head over to your Chrome browser and install the extension now. It is now available on Windows, macOS, and lastly ChromeOS devices.


[ad_2]
Source link

Threat actors have started using QR codes in phishing attacks

0
[ad_1]

In this day and age, QR codes have become a popular way for users to access quick information about a product or service, eliminating the need for manual searches. However, taking advantage of this convenience and the relaxed security policies in email clients, threat actors have reportedly started using QR codes in widespread phishing campaigns and targeting major US institutions.

According to Cofense, among the 1,000 emails associated with the phishing campaign, a staggering 29% were directed to a single major US energy company, while the others targeted a diverse array of sectors, including manufacturing (15%), insurance (9%), technology (7%), and financial services (6%).

Why use QR codes?

While email platforms like Gmail and Outlook have implemented robust security protocols to shield users from common phishing attacks, QR codes, often presented as image files like .PNG or .JPG, provide threat actors with a means to bypass conventional security measures. Additionally, to further elude detection, these emails employ base64 encoding for phishing links, with QR codes utilizing redirects through platforms like Bing, Salesforce, and Cloudflare’s Web3 services.

“What is important to note is that aside from hiding in QR codes, threats are abusing a trusted domain to carry out attacks. Abusing trusted domains, using obfuscation tactics, coupled with hiding the URLs inside QR codes embedded into a PNG or PDF attachment, helps ensure that emails bypass security and make it into inboxes,” reads the report.

The campaign’s modus operandi involves sending a phishing email that urges recipients to swiftly update their Microsoft 365 account settings by scanning a QR code, purportedly for account verification. Furthermore, threat actors manipulate recipients by imposing a three-day deadline to update their account settings, capitalizing on a common psychological trigger.

What is the solution?

Given the efficacy of QR codes in evading security detection, companies like Google and Microsoft will need to develop new ways of scanning QR codes for phishing links. Additionally, Cofense recommends comprehensive employee training to recognize signs of phishing attempts, including emails that pressure immediate action and landing pages that diverge from official designs.


[ad_2]
Source link