Technology

May 30, 2023Ravie LakshmananMobile Security / Android A new open source remote access trojan (RAT) called DogeRAT targets Android users primarily located in India as part of a sophisticated malware campaign. The malware is distributed via social media and messaging platforms under the guise of legitimate applications like Opera Mini, OpenAI ChatGOT, and Premium versions

Vivo Y78 5G has been launched in Singapore. The phone already debuted in China earlier this month. However, it carries different specifications from its Chinese variant, including a different display as well as chipset. The Vivo Y78 5G in China is powered by a Dimensity 930 SoC, whereas the global variant ships with a Snapdragon

May 29, 2023Ravie LakshmananAuthentication / Mobile Security Researchers have discovered an inexpensive attack technique that could be leveraged to brute-force fingerprints on smartphones to bypass user authentication and seize control of the devices. The approach, dubbed BrutePrint, bypasses limits put in place to counter failed biometric authentication attempts by weaponizing two zero-day vulnerabilities in the

Honor 90 and Honor 90 Pro were recently launched by the company in China. The handsets are equipped with 6.7-inch 120Hz OLED displays and are powered with Qualcomm’s Snapdragon processors. They are equipped with a 200-megapixel primary camera, a 12-megapixel ultra-wide angle camera, and a 50-megapixel selfie camera. Both phones run on Android 13-based MagicOS

A new phishing technique called “file archiver in the browser” can be leveraged to “emulate” a file archiver software in a web browser when a victim visits a .ZIP domain. “With this phishing attack, you simulate a file archiver software (e.g., WinRAR) in the browser and use a .zip domain to make it appear more

Redmi K50 Ultra with Qualcomm Snapdragon 8 Plus Gen 1 SoC was launched in China in August last year. The smartphone is yet to make its debut in other global markets including India, but rumours of a possible successor — Redmi K60 Ultra—have already started doing rounds on the Web. Most recently, the schematics of

5G is a game changer for mobile connectivity, including mobile connectivity to the cloud. The technology provides high speed and low latency when connecting smartphones and IoT devices to cloud infrastructure. 5G networks are a critical part of all infrastructure layers between the end user and the end service; these networks transmit sensitive data that

Motorola Razr 40 is tipped to launch on June 1 alongside the Motorola Razr 40 Ultra. Ahead of its debut, the Razr series smartphone has been spotted on the benchmarking platform Geekbench and China’s Compulsory Certification (3C) website, giving us a look at some of its key specifications. The Geekbench listing points to a Snapdragon

May 27, 2023Ravie LakshmananAPI Security / Vulnerability A critical security vulnerability has been disclosed in the Open Authorization (OAuth) implementation of the application development framework Expo.io. The shortcoming, assigned the CVE identifier CVE-2023-28131, has a severity rating of 9.6 on the CVSS scoring system. API security firm Salt Labs said the issue rendered services using

WhatsApp is rolling out a screen sharing feature to testers on the latest beta version of the app for Android. Users who are on a video call will be able to tap a button to show the contents of their screen to other participants on the call. Screen sharing is a feature that is also

A new stealthy information stealer malware called Bandit Stealer has caught the attention of cybersecurity researchers for its ability to target numerous web browsers and cryptocurrency wallets. “It has the potential to expand to other platforms as Bandit Stealer was developed using the Go programming language, possibly allowing cross-platform compatibility,” Trend Micro said in a

Xiaomi 13 Pro was announced during this year’s Mobile World Congress (MWC) in February. Details of the smartphone’s successor, expected to debut as the Xiaomi 14 Pro, have now surfaced online. A render of the unannounced smartphone has been leaked, and the image hints at the design of the purported handset. The Xiaomi 14 Pro

Security researchers have shared a deep dive into the commercial Android spyware called Predator, which is marketed by the Israeli company Intellexa (previously Cytrox). Predator was first documented by Google’s Threat Analysis Group (TAG) in May 2022 as part of attacks leveraging five different zero-day flaws in the Chrome web browser and Android. The spyware,

Lenovo Tab M9 has been launched in India on Friday. The new Android tablet by the Chinese company comes with a metal body with a dual-tone design and supports facial unlocking. The Lenovo Tab M9 runs on MediaTek Helio G80 SoC, coupled with up to 4GB of RAM and a maximum of 64GB of onboard

May 26, 2023Ravie LakshmananData Safety / Cloud Security A new security flaw has been disclosed in the Google Cloud Platform’s (GCP) Cloud SQL service that could be potentially exploited to obtain access to confidential data. “The vulnerability could have enabled a malicious actor to escalate from a basic Cloud SQL user to a full-fledged sysadmin

Realme 11 Pro 5G series is confirmed to debut in India in June. Realme is yet to confirm the exact launch date, but ahead of it, an Indian tipster claims that the Realme 11 Pro and Realme 11 Pro+ will go official in the second week of June alongside the Realme Buds Air 5 Pro

May 26, 2023Ravie LakshmananICS/SCADA Security A new strain of malicious software that’s engineered to penetrate and disrupt critical systems in industrial environments has been unearthed. Google-owned threat intelligence firm Mandiant dubbed the malware COSMICENERGY, adding it was uploaded to a public malware scanning utility in December 2021 by a submitter in Russia. There is no

Xiaomi 13 Ultra was released in China earlier in April this year. The phone is expected to launch in Europe soon. It is powered by Qualcomm’s latest and fastest Snapdragon 8 Gen 2 SoC and is backed by a 5,000mAh battery with 90W wired and 50W wireless fast charging support. The phone running MIUI 14 sports a

May 25, 2023Ravie LakshmananGaming / Server Security A new botnet called Dark Frost has been observed launching distributed denial-of-service (DDoS) attacks against the gaming industry. “The Dark Frost botnet, modeled after Gafgyt, QBot, Mirai, and other malware strains, has expanded to encompass hundreds of compromised devices,” Akamai security researcher Allen West said in a new

The Motorola Edge 40 is the first smartphone in the new Edge series to launch in India. It packs premium hardware while being priced very aggressively in the upper mid-range segment. Motorola calls the Edge 40 a ‘flagship killer’ and at Rs. 29,999, it offers many best-in-class features. Is the Edge 40 the real deal?

May 25, 2023Ravie LakshmananRansomware / Endpoint Security The Iranian threat actor known as Agrius is leveraging a new ransomware strain called Moneybird in its attacks targeting Israeli organizations. Agrius, also known as Pink Sandstorm (formerly Americium), has a track record of staging destructive data-wiping attacks aimed at Israel under the guise of ransomware infections. Microsoft