Jun 02, 2023Ravie LakshmananCyber Espionage / APT U.S. and South Korean intelligence agencies have issued a new alert warning of North Korean cyber actors’ use of social engineering tactics to strike think tanks, academia, and news media sectors. The “sustained information gathering efforts” have been attributed to a state-sponsored cluster dubbed Kimsuky, which is also
Technology
Some of the Wear OS-related announcements made at the recent Google I/O 2023 event now appear to be ready as the search giant just announced that it would be adding new features to its smartwatch platform, which will soon be upgraded to Wear OS 4. Google has announced that the Spotify and Keep apps on
Jun 01, 2023Ravie LakshmananCyber Threat / Network Security An analysis of the “evasive and tenacious” malware known as QBot has revealed that 25% of its command-and-control (C2) servers are merely active for a single day. What’s more, 50% of the servers don’t remain active for more than a week, indicating the use of an adaptable
OnePlus has long been known mainly for its smartphones in India. However, over the past three years or so, it has also introduced smart TVs, monitors, personal audio products, and smartwatches. The company also designs and sells its own smartphone accessories along with backpacks and other travel gear. At a recent event, the brand even
Jun 01, 2023Ravie LakshmananCyber Threat / Malware Cybersecurity researchers have offered a closer look at the RokRAT remote access trojan that’s employed by the North Korean state-sponsored actor known as ScarCruft. “RokRAT is a sophisticated remote access trojan (RAT) that has been observed as a critical component within the attack chain, enabling the threat actors
Realme C53 will launch in Malaysia on June 6. The upcoming C-series smartphone will join the Realme C55 that was released earlier this year in March with the Mini Capsule feature. The new handset will also sport the Mini Capsule, which has been compared to Apple’s Dynamic Island feature introduced with the iPhone 14 series last year.
May 31, 2023Ravie LakshmananServer Security / Cryptocurrency A financially motivated threat actor is actively scouring the internet for unprotected Apache NiFi instances to covertly install a cryptocurrency miner and facilitate lateral movement. The findings come from the SANS Internet Storm Center (ISC), which detected a spike in HTTP requests for “/nifi” on May 19, 2023.
Julian Hamood, President and founder of Trusted Tech Team, a leading provider of Microsoft licensing and cloud-based solutions launched in 2017, is celebrating the company’s ongoing meteoric growth by relocating to a 32,000+ sq. ft. office space to accommodate more in-house experts. Based in Orange County, CA, Trusted Tech Team recently announced that it surpassed
Nothing Phone 2 is confirmed to launch globally in July. It will launch as the successor to the Nothing Phone 1 that was released in July 2022. Nothing CEO and former OnePlus Co-Founder Car Pei had previously confirmed a few key specifications of the handset. The upcoming smartphone will be powered by a Qualcomm Snapdragon 8+
May 31, 2023Ravie LakshmananCyber Threat / Malware The threat actors behind RomCom RAT are leveraging a network of fake websites advertising rogue versions of popular software at least since July 2022 to infiltrate targets. Cybersecurity firm Trend Micro is tracking the activity cluster under the name Void Rabisu, which is also known as Tropical Scorpius
The Realme 11 Pro series is expected to offer up to 100W fast charging support. Realme 11 Pro and Realme 11 Pro+ will launch in India on June 8, the company has confirmed. Both smartphones were unveiled in China earlier this month alongside the vanilla Realme 11. The handsets come with MediaTek Dimensity SoCs and
May 30, 2023Ravie LakshmananZero Day / Vulnerability Multiple security flaws uncovered in Sonos One wireless speakers could be potentially exploited to achieve information disclosure and remote code execution, the Zero Day Initiative (ZDI) said in a report published last week. The vulnerabilities were demonstrated by three different teams from Qrious Secure, STAR Labs, and DEVCORE
Xiaomi is expected to unleash an upgrade over its current Xiaomi 13 Pro by the end of this year. The Chinese smartphone brand is yet to confirm any details regarding the Xiaomi 14 Pro, but ahead of it, a well-known tipster has shared some specifications of the handset on the Web. Xiaomi is tipped to
May 30, 2023Ravie LakshmananMobile Security / Android A new open source remote access trojan (RAT) called DogeRAT targets Android users primarily located in India as part of a sophisticated malware campaign. The malware is distributed via social media and messaging platforms under the guise of legitimate applications like Opera Mini, OpenAI ChatGOT, and Premium versions
Vivo Y78 5G has been launched in Singapore. The phone already debuted in China earlier this month. However, it carries different specifications from its Chinese variant, including a different display as well as chipset. The Vivo Y78 5G in China is powered by a Dimensity 930 SoC, whereas the global variant ships with a Snapdragon
May 29, 2023Ravie LakshmananAuthentication / Mobile Security Researchers have discovered an inexpensive attack technique that could be leveraged to brute-force fingerprints on smartphones to bypass user authentication and seize control of the devices. The approach, dubbed BrutePrint, bypasses limits put in place to counter failed biometric authentication attempts by weaponizing two zero-day vulnerabilities in the
Honor 90 and Honor 90 Pro were recently launched by the company in China. The handsets are equipped with 6.7-inch 120Hz OLED displays and are powered with Qualcomm’s Snapdragon processors. They are equipped with a 200-megapixel primary camera, a 12-megapixel ultra-wide angle camera, and a 50-megapixel selfie camera. Both phones run on Android 13-based MagicOS
A new phishing technique called “file archiver in the browser” can be leveraged to “emulate” a file archiver software in a web browser when a victim visits a .ZIP domain. “With this phishing attack, you simulate a file archiver software (e.g., WinRAR) in the browser and use a .zip domain to make it appear more
Redmi K50 Ultra with Qualcomm Snapdragon 8 Plus Gen 1 SoC was launched in China in August last year. The smartphone is yet to make its debut in other global markets including India, but rumours of a possible successor — Redmi K60 Ultra—have already started doing rounds on the Web. Most recently, the schematics of
5G is a game changer for mobile connectivity, including mobile connectivity to the cloud. The technology provides high speed and low latency when connecting smartphones and IoT devices to cloud infrastructure. 5G networks are a critical part of all infrastructure layers between the end user and the end service; these networks transmit sensitive data that