Technology

Dec 26, 2022Ravie LakshmananReverse Engineering Cybersecurity researchers have exposed a wide variety of techniques adopted by an advanced malware downloader called GuLoader to evade security software. “New shellcode anti-analysis technique attempts to thwart researchers and hostile environments by scanning entire process memory for any virtual machine (VM)-related strings,” CrowdStrike researchers Sarang Sonawane and Donato Onofri

OnePlus Ace 2 is believed to be in the works and could launch soon. This mid-range smartphone is expected to be rebranded as the OnePlus 11R for the global market. The Shenzhen-based company has already announced that the OnePlus 11 will be unveiled in China on January 4. A notable tipster has now shared the

Dec 23, 2022Ravie LakshmananPassword Management / Data Breach The August 2022 security breach of LastPass may have been more severe than previously disclosed by the company. The popular password management service on Thursday revealed that malicious actors obtained a trove of personal information belonging to its customers that include their encrypted password vaults by using

Redmi Note 12 5G is confirmed to make its India debut on January 5. Ahead of the launch, a dedicated microsite on Amazon has started teasing the specifications of the new Redmi Note 12 series smartphone. The Indian variant of Redmi Note 12 5G will have a Snapdragon 4 Gen 1 SoC, as per the

Dec 23, 2022Ravie LakshmananPrivacy / Data Security France’s privacy watchdog has imposed a €60 million ($63.88 million) fine against Microsoft’s Ireland subsidiary for dropping advertising cookies in users’ computers without their explicit consent in violation of data protection laws in the European Union. The Commission nationale de l’informatique et des libertés (CNIL) noted that users

Google has challenged a CCI order on the tech giant abusing its dominant position in multiple markets in the Android mobile device ecosystem, saying the verdict is a setback for Indian users and will make such devices more expensive in the country. The Competition Commission had slapped a penalty of Rs 1,337.76 crore on Google

Dec 23, 2022The Hacker NewsIncident Response / XDR Platform Tis the season for security and IT teams to send out that company-wide email: “No, our CEO does NOT want you to buy gift cards.” As much of the workforce signs off for the holidays, hackers are stepping up their game. We’ll no doubt see an

Moto E13 smartphone from Motorola has reportedly been subjected to a render leak that seems to suggest the upcoming entry-level smartphone’s basic design and camera details. The smartphone, which was earlier tipped to be powered by an Unisoc T606 SoC while running on Android 13 out-of-the-box, has now reportedly been spotted in a beige colour

Dec 24, 2022Ravie LakshmananSoftware Security / Supply Chain Threat actors have published yet another round of malicious packages to Python Package Index (PyPI) with the goal of delivering information-stealing malware on compromised developer machines. Interestingly, while the malware goes by a variety of names like ANGEL Stealer, Celestial Stealer, Fade Stealer, Leaf $tealer, PURE Stealer,

Google Calendar users have reportedly experienced a bug that is causing the application to create random events based on emails received in the user’s Gmail inbox. Several users seem to have reported the issue on the Google Calendar app for Android and iOS mobile devices. The bug has been reported by various users on Twitter

Dec 23, 2022Ravie LakshmananCyber Espionage / Pakistani Hackers A new targeted phishing campaign has zoomed in on a two-factor authentication solution called Kavach that’s used by Indian government officials. Cybersecurity firm Securonix dubbed the activity STEPPY#KAVACH, attributing it to a threat actor known as SideCopy based on tactical overlaps with prior attacks. “.LNK files are

Google is reportedly working on making Android’s root store updatable via Google Play Store on Android 14. The search giant’s current mechanism updates root certificates only as part of full system updates, which could potentially render devices running on older Android versions unable to connect to the internet when the expired root certificates not being

Dec 23, 2022Ravie LakshmananEncryption / Privacy / Browser The developers behind the Brave open-source web browser have revealed a new privacy-preserving data querying and retrieval system called FrodoPIR. The idea, the company said, is to use the technology to build out a wide range of use cases such as safe browsing, checking passwords against breached

Samsung Galaxy S23 series has leaked multiple times in the past. The upcoming flagship smartphone lineup from the South Korean tech brand is believed to include the vanilla Samsung Galaxy S23, Galaxy S23+, and Galaxy S23 Ultra. Now, a new report has surfaced suggesting signature shades of the upcoming Samsung Galaxy S23 series phones. The vanilla

Dec 23, 2022Ravie LakshmananRansomware / Endpoint Security The Vice Society ransomware actors have switched to yet another custom ransomware payload in their recent attacks aimed at a variety of sectors. “This ransomware variant, dubbed ‘PolyVice,’ implements a robust encryption scheme, using NTRUEncrypt and ChaCha20-Poly1305 algorithms,” SentinelOne researcher Antonio Cocomazzi said in an analysis. Vice Society,

The Tecno Phantom X2 5G is all set to launch in India in January and the design and specifications of the handset have already been confirmed ahead of release. The phone was launched in Saudi Arabia earlier this month. A tipster has now provided the expected launch price for the upcoming Tecno device in India.

An exhaustive analysis of FIN7 has unmasked the cybercrime syndicate’s organizational hierarchy, alongside unraveling its role as an affiliate for mounting ransomware attacks. It has also exposed deeper associations between the group and the larger threat ecosystem comprising the now-defunct ransomware DarkSide, REvil, and LockBit families. The highly active threat group, also known as Carbanak,

iQoo 11 5G is scheduled to launch in India on January 10. Days ahead of the launch, the company has unveiled several new specifications about the smartphone, including its RAM variants, price range and colour models for the India launch. The iQoo 11 series, including the vanilla model and the iQoo 11 Pro, were launched

Dec 22, 2022Ravie LakshmananInternet of Things / Patch Management The Zerobot DDoS botnet has received substantial updates that expand on its ability to target more internet-connected devices and scale its network. Microsoft Threat Intelligence Center (MSTIC) is tracking the ongoing threat under the moniker DEV-1061, its designation for unknown, emerging, or developing activity clusters. Zerobot,

Redmi K60 series will launch soon in China, Lu Weibing, Redmi’s General Manager, confirmed on Thursday after some initial speculations. The Xiaomi executive did not announce the exact launch date and specifications of the models, but a fresh leak suggests that the latest Redmi K-series phones will go official in China on December 27. The