Major iPhone 16 Pro improvements may convince you to skip the iPhone 15 Pro

0
[ad_1]

The iPhone 15 series is right around the corner, and the iPhone 15 Pro series is set to deliver some notable improvements. Still, based on a new report, the iPhone 16 Pro will be a true jump forward, so you may want to skip the iPhone 15 Pro, and wait for next year’s model.

The iPhone 16 Pro may bring notable improvements, which may push you to skip the iPhone 15 Pro

Well, according to Jeff Pu (via MacRumors), a tech analyst, we’re looking at some notable improvements with the iPhone 16 Pro series. The phones will allegedly come with a new 48-megapixel ultrawide camera. On top of that, Wi-Fi 7 is said to be supported by both.

That’s basically all the info he shared. Is that enough for you to wait? Well, that’s a question only you can answer. It’s also worth noting that other improvements will be included, but we still don’t know the details.

What we do know, however, is what the iPhone 15 Pro series is bringing. It will have noticeably thinner bezels than the iPhone 14 Pro models, and also a frame made out of titanium. On top of that, a Type-C USB port will be included, as will an Action Button. The iPhone 15 Pro Max model will also offer a periscope telephoto camera.

The regular iPhone 15 Pro won’t offer a periscope telephoto camera

So, one might argue that the iPhone 15 Pro series is bringing more than enough improvements. Well, once again, that’s something only you can answer. Another thing to note is that the iPhone 16 Pro (smaller model) will feature a periscope telephoto camera too, allegedly, but the iPhone 15 Pro won’t, unlike the Pro Max model.

The entire iPhone 15 series is expected to arrive next month. Apple will allegedly announce the phones on September 12 or 13, while they’re expected to go on pre-order on September 15. You’ll be able to buy them in stores on September 22. Those are just rumored dates, for now, so keep that in mind.


[ad_2]
Source link

HPE Aruba Networking Product Vulnerabilities Allow File Overwrite

0
[ad_1]

The vulnerabilities, CVE-2023-38401 and CVE-2023-38402, affect the HPE Aruba Networking Virtual Intranet Access (VIA) client for the Microsoft Windows operating system. If the exploit is successful, the attacker can overwrite arbitrary files.

HPE Aruba Networking has issued an upgrade to address these multiple high-severity vulnerabilities. There is no workaround for these vulnerabilities. 

The company said that versions of the Networking Virtual Intranet Access (VIA) that have reached the End of Maintenance (EoM) milestone are not patched.

Details of the Vulnerabilities

  • CVE-2023-38401 – Local Privilege Escalation

The flaw tracked as CVE-2023-38401 with a CVSS score of  7.8 with high severity range found in the HPE Aruba Networking Virtual Intranet Access (VIA) client might allow local users to elevate privileges.

Will Dormann (@wdormann) found and reported this vulnerability through Networking’s Bug Bounty Program.

“The Successful exploitation could allow execution of arbitrary code with NT AUTHORITY\SYSTEM privileges on the operating system”, Aruba Networks said in its advisory.

  • CVE-2023-38402 – Arbitrary File Overwrite

The Arbitrary File Overwrite flaw is tracked as CVE-2023-38402 with a CVSS score of  7.1 with high severity range. 

The Networking Virtual Intranet Access (VIA) client has a flaw that might let malicious users overwrite arbitrary files as the NT AUTHORITY SYSTEM.

Through the HPE Aruba Networking Bug Bounty Program, Gee-netics found and reported this vulnerability.

“A successful exploit could allow these malicious users to create a Denial-of-Service (DoS) condition affecting the Microsoft Windows Operating System boot process,” reads the advisory.

Affected Products

These flaws impact Networking Virtual Intranet Access (VIA) customers running the following versions:

– HPE Aruba Networking Virtual Intranet Access (VIA) client for Microsoft Windows:

    – 4.5.0 and below.

These flaws do not impact HPE Aruba Networking Virtual Intranet Access (VIA) customers running other operating systems.

Fix Available

The HPE Aruba Networking Virtual Intranet Access (VIA) for Microsoft Windows should be updated to version 4.6.0 or higher to fix the vulnerabilities present.

Keep informed about the latest Cyber Security News by following us on GoogleNewsLinkedinTwitter, and Facebook.


[ad_2]
Source link

London police says every six minutes a smartphone is stolen in this city

0
[ad_1]

The London mayor and Met Police say in the course of every six minutes, a smartphone is stolen in this city. So If you are traveling to London, it’s better to look after your smartphone.

According to the BBC, nearly 250 smartphones a day, or 90,864 phones a year, are stolen in London. City officials are now asking the manufacturers to make their devices less appealing to thieves. London Mayor Sadiq Khan and Met Chief Sir Mark Rowley urged smartphone manufacturers to “design out” incentives in their products. Additionally, software designers are required to “develop solutions to make this crime less rewarding.”

London is becoming the capital of smartphone theft in the world

The officials asked manufacturers to collaborate with the City Hall and police department to reduce crimes. The high crime rate in London has become a problem for the city authorities. Statistics show that 38% of all personal robberies in London last year involved a smartphone being stolen. Likewise, mobile phones accounted for nearly 70% of all thefts in London last year.

“The current practice of allowing stolen mobiles to be re-registered by new users within the phone industry inadvertently enables a criminal market which drives robbery, thefts, and violent offending in London.” The Met Police chief said. As per police data, young smartphone owners between the age of 14-20 are more likely to be targeted by thieves. On the other hand, most criminals involved in smartphone robberies also belong to a younger demographic.

Asking smartphone makers to “design out” their devices to prevent robberies might seem odd. Every company wants to sell more smartphones in a year. And no company would ever sacrifice its device’s features and beauty to stop criminals from stealing it. Tech expert Jake Moore also believes what the London mayor and Met Police chief proposed won’t work because companies are reluctant to enforce these policies. “It would cause a potential nightmare, and you could find people accused of owning a stolen phone when it’s actually theirs,” he added.

In previous years, car manufacturers could reduce the theft of car radios and satellite navigation gear by integrating them into vehicle dashboards. It remains to be seen if a similar plan works for the stolen smartphones in London.


[ad_2]
Source link

Enhancing e-commerce security with web application firewalls

0
[ad_1]

Web Application Firewalls (WAFs) defend applications against cyber threats that aim to exploit vulnerabilities in web applications. These attacks mainly aim to steal sensitive data or bring down the website. According to statistical data, by 2027, WAFs size is expected to reach USD 13.8 Billion.

Many e-commerce companies are implementing WAF (Web Application Firewall) into their IT infrastructure since it is a barrier between website and internet traffic, which monitors and filters HTTP requests.

Understanding the Basics: What is a Web Application Firewall (WAF)

WAF or web application firewall safeguards web applications by monitoring and filtering HTTP traffic that flows between the application and the internet. WAFs block all malicious requests, present a challenge to suspicious requests, and allow visitors to access your website securely.

One of the most common attacks that WAF protects against is DDoS (denial of service) attack. These attacks are performed by sending excessive traffic to the web application, which causes the server to become overloaded and unable to process legitimate requests.

The Increasing Importance of Security in E-Commerce

The increasing significance of security in e-commerce is driven by the growing incidence of regulatory requirements, data security concerns, expanding reach of e-commerce, and cyber security issues. To protect customers’ data, e-commerce should implement robust cyber security protocols.

Specific Security Threats Faced by E-Commerce Websites

E-commerce websites have to face several security threats because of the valuable data they handle. Below are the key security threats faced by e-commerce websites.

Payment-Card theft

Cybercriminals target e-commerce websites to steal payment card data, including expiration dates and credit card numbers, through several methods like web skimming.

SQL Injection (SQLi) and Cross-Site Scripting (XSS)

These web application vulnerabilities allow hackers to implement malicious codes, steal sensitive information, and manipulate data from the user’s web browsers or website’s database.

Distributed Denial of Service (DDoS)

E-commerce websites are vulnerable to DDoS attacks that overpower their server with huge amounts of traffic, causing prolonged or temporary downtime.

How WAFs Enhance E-Commerce Security: The Technical Perspective

Let’s look at how WAFs enhance e-commerce security from a technical perspective.

Web traffic filtering

The WAF is configured to intercept incoming and outgoing traffic between the client and the web application server. In incoming traffic, the WAF checks suspicious activity and identifies malicious traffic patterns that specify intrusion attempts, e.g. SQL injection and cross-site scripting (XSS), etc.

Geo-location filtering

WAF can be configured to block traffic from specific countries or regions, helping to reduce the number of attacks reaching applications.

Application Programming Interface (API) security

For e-commerce businesses that use APIs for several integrations, WAF can protect API endpoints from cyber attacks and enforce API-specific privacy policies.

SSL/TLS termination

Some advanced WAFs offer SSL/TLS termination capabilities. They help in decrypting incoming encrypted traffic, re-encrypt traffic, and inspect for threats before sending it to the application server. These allow the WAF to examine the traffic in clear text, enhancing its capability to block and detect attacks hidden in encrypted data.

Real-World Examples: E-Commerce Businesses Benefiting from WAFs

Let’s look at some of the real-world examples where e-commerce businesses benefit from WAFs.

SHOPPY

SHOPPY, an e-commerce business based in Xiamen, China uses CloudFlare WAF for its websites. It is now more protected from application vulnerabilities, brute-force login attempts, and malicious attacks. WAF has created a dedicated security defense system for them, making SHOPPY more secure for its online customers.

Alibaba

Alibaba Group is a Chinese Multinational e-commerce conglomerate operating multiple online services and marketplaces. It deploys WAFs across its several platforms to secure customer data, protect against web-based threats and prevent unauthorized access.

Choosing the Right WAF for Your E-Commerce Business: Key Factors to Consider

Choosing the right WAF is a challenging task, but there are several criteria that can help you in your analysis:

Functionalities

Assess the functionalities offered by the WAF, e.g. prevention of SQL injection attacks, defense against DDoS attacks, alleviation of malicious bots, and other features that meet the needs of the organization.

Scalability

Ensure the WAF is scalable and capable of meeting your organization’s growing needs and requirements.

Usability

Evaluate the ease of use of the WAF, verifying that the management interface is intuitive and that the automation features help simplify security management.

Technical Support

Ensure the WAF vendor offers good technical support, including business hours or 24/7 support, complete documentation, and training resources.

Implementing a WAF in an E-Commerce Environment: Step-by-Step Guide

Implementing a WAF in an e-commerce environment is a vital step to improve privacy and protect against diverse online threats. Below are step-by-step guides to help you implement a WAF efficiently:

Step 1: Assessment and Planning

Identify the e-commerce application’s architecture, including the application server, database server, and web server. Also, verify the types of safety threats the WAF should protect against based on the e-commerce platform’s possible risks and vulnerabilities.

Step 2: Preparation

Inform your operation and development team about the upcoming WAF execution to guarantee the least disruption and coordination. Also, back up your e-commerce databases and websites to guarantee you can restore the environment in case of any problem during the implementation process.

Step 3: Configuration

Configure SSL/TLS termination settings; configure the WAF settings based on your privacy requirements. This will contain specifying rules for common threats like XXS or SQL injections. Enable geo-location filtering to block traffic from malicious websites or high-risk regions.

Step 4: Testing

You should perform systematic testing of WAF before putting it into production. Test dissimilar scenarios, including virtual attacks and valid traffic. Perform vulnerability scanning to guarantee WAF efficiently blocks common web application vulnerabilities.

Step 5: Monitoring

Do continuous monitoring to capture possible threats. Regularly review WAF performance metrics to guarantee its efficiency and recognize any anomalies. Also, keep WAF rules and software updated to defend against new threats.

Step 6: Incident Response

Implement an incident response plan, particularly for WAF-related privacy incidents, to handle detected attacks and threats efficiently.

Step 7: Educate Employees and Users

It is important to train employees about the significance of WAF and how to respond to possible security incidents. Also, inform your users about best practices for online security, including how to avoid phishing attacks.

Maintaining and Updating Your WAF: Best Practices for Continued Security

Maintaining and updating WAF is important to guarantee privacy in e-commerce. Implement these best practices to keep WAF updated and effective:

Threat intelligence integration

It is important to integrate threat intelligence feeds in WAF to guarantee its ability to block and detect possible threats.

Logging and monitoring

Maintain a check on detailed logs of WAF activity, monitor them regularly, and respond quickly to any suspicious activity.

Incident response planning

Develop an incident response plan, particularly for WAF-related privacy incidents, to handle possible threats effectively.

Final Words

A WAF protects your website against known cyber attacks such as cross-site scripting (XSS), SQL injection, and malicious activities. Usually, these threats use an authorized protocol, such as HTTP, and attack applications and systems via that protocol.


[ad_2]
Source link

Banned: NY city employees have 30 days to delete (and not download again) TikTok

0
[ad_1]

The state of Montana should be really proud of New York City: it has banned TikTok on city-owned devices. City employees and agencies have 30 days to remove the app and not use it again. All of that is over security concerns.

A nationwide TikTok ban is something you’ve been hearing for years now. While it’s not clear when (or if) such a harsh measure could be imposed on private citizens, it’s definitely being implemented wider and wider on the government front by the day.

The Verge has the story about the Wednesday-issued directive, that’s starting immediately and is banning TikTok for city employees not only on mobile devices but also forbidding them to access the short video-sharing app’s website from any city-owned devices. That’s because TikTok “posed a security threat to the city’s technical networks”, a city official said and added:Members of the New York City agencies have 30 days to remove the application from Chinese tech giant ByteDance, which was repeatedly painted by both FBI Director Christopher Wray and CIA Director William Burns as a threat and as a negative influence by China’s government to US citizens.

Even before those comments by high-level security officials, many US states had already banned TikTok on government-owned devices. Montana went a tad further and in May, Governor Greg Gianforte signed a bill banning the app within the entire state – the first state to do so.

TikTok is used by more than 150 million Americans (close to half of the population). Controversy over security concerns and a Chinese government influence arose more than three years ago. Even people who dislike TikTok’s lifestyle influence on the younger generation and – to put it mildly – are not fans of the app, are in a dilemma, when matters come to a nationwide ban, citing First Amendment infringes.


[ad_2]
Source link

Beware malware posing as beta versions of legitimate apps, warns FBI

0
[ad_1]

The FBI has issued a warning about two related types of fraud, malicious beta-testing apps and crypto recovery schemes.

The FBI has issued a warning that cybercriminals are embedding malicious code in mobile beta-testing apps in attempts to defraud potential victims. The victims are typically contacted on dating sites and social media, and in some cases they are promised incentives such as large financial payouts.

Beta-testing apps are new versions of software that are undergoing their final tests and aren’t quite ready to be officially released. In the legitimate software ecosystem, beta testing gives users a chance to improve their favorite apps and get early access to new features. For criminals, “beta-testing” apps offer a plausible reason for vicitms to donwload software from unsafe places, away from the usual app stores, without raising their suspicions.

To make the apps look legitimate the criminals use familiar looking names, images, or descriptions that are similar to popular apps. Embedded in the apps  is malicious code used to defraud the victim or compromise the device. According to the FBI:

“The malicious apps enable theft of personally identifiable information (PII), financial account access, or device takeover.”

The agency says it’s aware of fraud schemes where the victims are contacted and directed to download mobile beta-testing apps, such as cryptocurrency exchanges, that steal money instead of investing it.

In an earlier warning the FBI focused on scammers that haunt forums and comments sections, looking for victims who have lost cryptocurrency to fraud, scams, and theft. The scammers claim to provide cryptocurrency tracing and promise to recover lost funds.

Glad I was able to recover my funds from these fake brokers. I would have had to file for bankruptcy, thanks to [redacted] I was able to get a hold of these scam brokers and take back my money. I would gladly refer anyone.

Example of an (intercepted) attempt to post recovery a advertisement in our blog comments

These recovery scheme fraudsters will charge an up-front fee and either cease communication after receiving the initial deposit, or they will produce an incomplete or inaccurate tracing report and claim they need additional fees to recover the funds.

The fraudsters will even go as far as to claim they are affiliated with law enforcement or legal services to appear legitimate. It is important to realize that private sector recovery companies cannot issue seizure orders to recover cryptocurrency.

Stay safe

Beta-testing can be fun and rewarding, but check that you are testing the app from a legitimate source and trusted developer. For example, Malwarebytes offers their beta downloads on their own forums.

Do not send payment to someone you have only spoken to online, even if you believe you have established a relationship with them. Scammers specialize in making you think that.

Do not provide personal or financial information in email or messages, and do not respond to email or message solicitations, including links.

Do not download or use suspicious looking apps as a tool for investing unless you can verify the legitimacy of the app.

Shy away from advertisements for cryptocurrency recovery services. Research the advertised company and beware if the company uses vague language, has a minimal online presence, and makes promises regarding an ability to recover funds. Do not make things even worse.

Law enforcement does not charge victims a fee for investigating crimes. If someone claims an affiliation with the FBI, contact your local FBI field office to confirm.

As the FBI pointed out:

“Cryptocurrency exchanges only freeze accounts based on internal processes or in response to legal process.”

We don’t just report on Android security—we provide it

Cybersecurity risks should never spread beyond a headline. Keep threats off your Android devices by downloading Malwarebytes for Android today.


[ad_2]
Source link

Check out the new Pixel Watch sport band in live photos

0
[ad_1]

Late last month Google teased a new sport band coming for the Pixel Watch, and it looks like some of the Team Pixel influencers are getting their hands on it. Interestingly, the band isn’t yet available to buy. When the band first showed up in Google’s ad spot, it was for a commercial featuring Women’s Soccer star Megan Rapinoe.

And as 9To5Google points out, these bands were sent out to the Team Pixel influencers to celebrate the Women’s World Cup that’s currently going on. Which lines up with the band showing up on the wrist of a women’s soccer player in the ad back in July. The new Pixel Watch sport band is a coral colored band that Google says will be available in the Fall of 2023. That’s only really a little over a month away. So consumers should be able to buy it in the near future.

New Pixel Watch coral sport band closeups

The new sport band isn’t too different from the already available Active Band that Google sells. One key difference is the clasp. For the most part it secures to your wrist the same way. But the clasp pin itself and the holes it fits into are a different shape. On the Active Band they’re more of a pill shape.

But on this new band the clasp pin and the holes are round. And as mentioned in the article from July this band also has more air ventilation. The extra ventilation in fact is likely to draw in more users. Because it wouldn’t be surprising if it was more comfortable to wear during exercise. More than a few of the Team Pixel influencers have taken to X to share closeup photos of the band. Providing a better look at it than what was seen in the commercial.

Of course you can get a better look at it for yourself when it launches later this year.

 

 

 


[ad_2]
Source link

OpenAI thinks GPT-4 can solve content moderation

0
[ad_1]

In this day and age of social media, it’s no secret that content moderation for tech giants like Meta has become one of the most pressing issues. However, as part of the ongoing AI revolution, it looks like OpenAI might have a solution, as the company recently announced that they are working on building a new content moderation system with GPT-4.

How does the system work?

In a recent blog post, OpenAI highlighted its new development and stated that the process first begins by inputting the moderation guidelines into GPT-4, which subsequently undergoes rigorous testing using a small corpus of problematic content. Once the initial results are in, human contributors step in to analyze both the successes and shortcomings of AI, thus enhancing its learning curve. In cases where the system encounters difficulties, evaluators have the privilege of delving into GPT-4 for explanations regarding its decisions.

Lilian Weng, OpenAI’s director of security system, highlighted the transformative potential of the new technology and stated, “We believe this offers a more positive vision of the future of digital platforms, where AI can help moderate online traffic according to platform-specific policy and relieve the mental burden of a large number of human moderators.”

Furthermore, OpenAI emphasized that this new AI-driven content moderation tool will encompass more than just textual content, as it plans to extend its capabilities to encompass images and videos.

Need for the new technology

While some may argue that AIs will never be able to match the consistency of human moderators, it is important to recognize the toll that manual review of distressing and graphic content exacts on the mental well-being of human moderators. Therefore, such a system which takes the burden off of human moderators could mark a significant turning point in content moderation.

Furthermore, for corporations like Meta, such a system could yield substantial financial savings. According to a study conducted by the University of Zurich, utilizing AI for content regulation proved to be up to 20 times more cost-effective than traditional human moderation.

Although the advantages of an AI system are evident, it’s important to note that human involvement will remain crucial. This is because human moderators, for the time being, would still retain control over the final outcome, as AI systems are not yet completely foolproof. “We can’t build a system that is 100% bulletproof from the ground up… But I’m pretty sure it will be good,” said Weng.


[ad_2]
Source link

Malvertisers up their game against researchers

0
[ad_1]

Malicious ads via search engine results page are getting harder to identify thanks to advanced fingerprinting techniques

Threat actors constantly take notice of the work and takedown efforts initiated by security researchers. In this constant game of cat and mouse chasing, tactics and techniques keep evolving from simple to more complex, and more covert.

This is a trend we have observed time and time again, no matter the playing field, from exploit kits to credit card skimmers. As defenders, we may have mixed reactions: on the one hand, as technical people we naturally appreciate a well-written exploit or piece of code and the challenge it creates. There is something about it that sparks our interest and curiosity. On the other hand, we know that the people behind it have bad intentions and intend on doing harm.

In today’s blog post, we look at a recent malvertising chain that started using a more advanced cloaking technique to remain under the radar. Based on our tracking, it is a new trend for these malvertising campaigns dropping infostealers and other malware used by initial access brokers in ransomware operations.

Malicious ad and cloaking

Threat actors continue to target certain IT programs such as remote access programs and scanners by creating ads that are displayed on popular search engines such as Google. The ad below is for the Advanced IP scanner tool and was found when performing a Google search from a US IP address.

Figure 1: Malicious ad on Google for Advanced IP Scanner

The domain name advnced-lp-scanner[.]com may look legitimate but it is not. It was registered on Jul 30 2023 and is hosted on a server in Russia at 185.11.61[.]65.

If you were to investigate this ad, you would likely open it up in a virtual machine and see what it leads to. One of the most common checks that is done by threat actors is a simple server-side IP check to determine whether you are running a VPN or proxy or have visited the site before. That means that as researchers we need to constantly find new IP addresses that look legitimate and then revisit the page again.

Interestingly, even with a fresh IP address the landing page looked innocent. This can happen for different reasons, for example if the threat actor is in the process of setting up the site and hasn’t finished swapping it to the malicious version. Or it could also be that the time of day is not in line with when the attacker is making the switch.

Figure 2: Decoy page without any malware to download

Advanced fingerprinting

Looking closer at the network requests from the ad to the web server we saw new code that looked suspicious. This is Base64 encoded JavaScript that is loaded before anything else on the page.

In fact, this client-side request was performed after a server-side IP check to determine if your IP address was clean. In other words, this is another layer that needs to be processed before we get to see what we are looking for.

Figure 3: Suspicious Base64-encoded code

We can deobfuscate this code using CyberChef and further beautify it to see what it does. Here are some of those checks:

  • browser properties such as window and screen size
  • time zone (difference between UTC and local time)
  • browser rendering capabilities related to video card driver
  • MIME type for MP4 file format 

Figure 4: Decoded fingerprinting script

Many tools used by researchers are scripted in Python and will fail the test. Same goes for virtual machines, the WEBGL_debug_renderer_info API can help to detect if you are using virtualization such as VMware or VirtualBox.

The data that is collected from visitors is then sent back to the attacker’s website via a POST request for further parsing and to determine what action to take next.

Figure 5: POST request sending victim’s details to attacker

Below is the web traffic view of a successful redirection to the malicious page where the victim can download the malware payload.

Figure 6: Web traffic from malicious ad to payload page

And this is the malware landing page:

Figure 7: Malware landing page after successfully passing the fingerprinting checks

We can now collect the payload and make sure that it is detected.

Conclusion

By using better filtering before redirecting potential victims to malware, threat actors ensure that their malicious ads and infrastructure remain online longer. Not only does it make it more difficult for defenders to identify and report such events, it also likely has an impact on takedown actions. In the majority of cases where we have reported malvertising incidents, the abused platform needs to validate the information before taking action against the advertiser.

This makes sense as reports could be erroneous and lead to advertising accounts being suspended unjustly. However, it also means that while an incident is being investigated and reproduced (which could take hours), people will click on those ads and download malware.

As we continue to report malvertising campaigns, we improve our understanding of the threat actors’ TTPs and adjust our toolsets accordingly. Any intelligence gathered is shared within our products and ultimately delivered to Malwarebytes customers via web and malware protection updates to ensure they remain protected.


[ad_2]
Source link

The YouTube Music Sample tab is now rolling out to users globally

0
[ad_1]

The long-awaited YouTube Music Sample feature is now available for usage in certain parts of the world. This new feature is a TikTok rival entry that will specifically serve users of Google’s streaming platform. With the help of this feature, streamers will be able to discover new and trending music that might suit their taste.

You might be already wondering why this feature exists if streamers can already find new music with the Discover feature. Well, unlike the already available Discover feature this new entry helps users find new music differently. Instead of just showing streamers what songs are new, the Sample feature will add some style by showing off these new entries as short-form videos.

After watching the videos that will be present on a new tab dedicated to the Sample feature, streamers can then proceed to stream the song. YouTube promises users that this feature will always bring something new to their doorstep, so they don’t run out of vibes. This is a new approach to music streaming, and a ton of YouTube Music users will find it interesting.

YouTube Music Sample tab is bringing short-form video streaming to your doorstep

Streamers on the YouTube Music platform will soon benefit from a very important feature. This feature is known as Sample, and it gives streamers a video sample of the music before they get to stream it. YouTube is advertising this new feature as a more convenient way to find songs before they stream.

The video on display with this feature will be a part of the official music video of the song. Artists on YouTube Music will be able to select the part of the video they wish to display in short-form via the Sample tab. To access these videos, YouTube provides a Sample button which sits at the bottom of the screen.

This button is in between the Home and Explore buttons on the navigation tab. Tapping on this Sample button will pull up an interface similar to YouTube Shorts, where users can scroll through videos. The video-playing interface also gives streamers a ton of options that they can take.

There is the option to like the video, add the song to your playing list, and create a remix using the sound on Shorts (which is very handy for curators). Streamers can also share the video across various platforms for others to access the Sample video. By tapping on the sound name on the bottom left-hand side of the screen, streamers can access the album the song is from.

With this new feature, users of the YouTube Music app will be able to find new songs via short-form videos. The Sample feature is already rolling out globally and will be available to all users of Google’s streaming service. Will you put this new feature to use while searching for new songs on the YouTube Music app?


[ad_2]
Source link