A high-severity vulnerability has been disclosed in the SQLite database library, which was introduced as part of a code change dating all the way back to October 2000 and could enable attackers to crash or control programs. Tracked as CVE-2022-35737 (CVSS score: 7.5), the 22-year-old issue affects SQLite versions 1.0.12 through 3.39.1, and has been
Technology
Alphabet’s Google was fined Rs. 936 crore on Tuesday in India as the Competition Commission of India (CCI) concluded yet another antitrust probe this month, finding the US tech giant guilty of abusing its market position to promote its payments app and in-app payment system. The CCI said Google forced app developers to use its in-app payment system,
Virtual Chief Information Security Officer (vCISO) services (also known as ‘Fractional CISO’ or ‘CISO-as-a-Service’) are growing in popularity, especially as growing cyber threats, tightening regulatory demands and strict cyber insurance requirements are driving small to medium-sized enterprises demand for strategic cybersecurity and compliance guidance and management. But vCISO services are labor intensive, require highly skilled
Xiaomi recently teased that its Redmi Note 12 series will be launching in October, and now a new leaked image showing a silhouette of five phones allegedly hints that the Redmi Note 12 Pro+ could have a curved AMOLED display. As far as we are aware, this should be Xiaomi’s first smartphone in the Redmi
“Every age has its storytelling form, and video gaming is a huge part of our culture. You can ignore or embrace video games and imbue them with the best artistic quality. People are enthralled with video games in the same way as other people love the cinema or theatre.” — Andy Serkis Humans love playing
SideWinder, a prolific nation-state actor mainly known for targeting Pakistan military entities, compromised the official website of the National Electric Power Regulatory Authority (NEPRA) to deliver a tailored malware called WarHawk. “The newly discovered WarHawk backdoor contains various malicious modules that deliver Cobalt Strike, incorporating new TTPs such as KernelCallBackTable injection and Pakistan Standard Time
Samsung Galaxy A14 5G is expected to launch soon. The company is expected to launch its new budget 5G smartphone in India and other markets later this year. Samsung has not confirmed the Galaxy A14 5G launch date yet. Meanwhile, a new leak of alleged Galaxy A14 5g cases has revealed the design of the
Microsoft this week confirmed that it inadvertently exposed information related to thousands of customers following a security lapse that left an endpoint publicly accessible over the internet sans any authentication. “This misconfiguration resulted in the potential for unauthenticated access to some business transaction data corresponding to interactions between Microsoft and prospective customers, such as the
Google has reportedly removed 16 apps from the Play Store that were causing faster battery drain and higher network usage on users’ devices. The applications, which were identified by a security firm, allegedly performed ad fraud by opening web pages in the background to click on advertisements while masquerading as a real user, according to a report.
Acknowledging that you have a problem is the first step to addressing the problem in a serious way. This seems to be the reasoning for the White House recently announcing its “Strengthening America’s Cybersecurity” initiative. The text of the announcement contains several statements that anyone who’s ever read about cybersecurity will have heard many times
Samsung Galaxy S23 Ultra has been spotted on a benchmarking website, giving smartphone enthisasts a hint of what to expect from the purported successor to the Galaxy S22 Ultra. The smartphone is tipped to launch with the yet-to-be-announced Snapdragon 8 Gen 2 chipset, and the listing for the handset on the benchmarking website suggests it
A now-patched vulnerability in VMware Workspace ONE Access has been observed being exploited to deliver both cryptocurrency miners and ransomware on affected machines. “The attacker intends to utilize a victim’s resources as much as possible, not only to install RAR1Ransom for extortion, but also to spread GuardMiner to collect cryptocurrency,” Fortinet FortiGuard Labs researcher Cara
Xiaomi 12 Lite 5G NE launch in global markets is could take place soon according to a report. While the details of the handset are yet to be officially announced by the Chinese smartphone manufacturer, the upcoming device has recently been spotted on the IMEI database with model number 2209129SC. The Xiaomi 12 Lite 5G
Researchers have disclosed details about a now-patched critical flaw in the Move virtual machine that powers the Aptos blockchain network. The vulnerability “can cause Aptos nodes to crash and cause denial of service,” Singapore-based Numen Cyber Labs said in a technical write-up published earlier this month. Aptos is a new entrant to the blockchain space,
Samsung W23 5G and Samsung W23 Flip 5G have been unveiled in China as custom variants of the Galaxy Z Fold 4 and Galaxy Z Flip 4, respectively. The design of the Chinese variants is quite similar to the models launched in India and global markets, though they come with a few hardware-level tweaks. The
The notorious Emotet botnet has been linked to a new wave of malspam campaigns that take advantage of password-protected archive files to drop CoinMiner and Quasar RAT on compromised systems. In an attack chain detected by Trustwave SpiderLabs researchers, an invoice-themed ZIP file lure was found to contain a nested self-extracting (SFX) archive, the first
The Competition Commission’s penalty amount of Rs. 1,337.68 crore imposed on Google is “provisional” as the regulator has asked the internet major to furnish requisite financial details since the data was not presented in a reliable manner. On Thursday, the watchdog penalised Google for abusing its dominant position in multiple markets in relation to Android
WordPress security company Wordfence on Thursday said it started detecting exploitation attempts targeting the newly disclosed flaw in Apache Commons Text on October 18, 2022. The vulnerability, tracked as CVE-2022-42889 aka Text4Shell, has been assigned a severity ranking of 9.8 out of a possible 10.0 on the CVSS scale and affects versions 1.5 through 1.9
Amazon Great Indian Festival sale 2022 is entering its final days. The sale that started in the last week of September during Dussera, will conclude on October 23 around Diwali. The e-commerce website is offering discounts on a wide range of products including mobile phones, smart devices, laptops, and other electronics in the ongoing Amazon
Google on Thursday announced that it’s seeking contributors to a new open source initiative called Graph for Understanding Artifact Composition, also known as GUAC, as part of its ongoing efforts to beef up the software supply chain. “GUAC addresses a need created by the burgeoning efforts across the ecosystem to generate software build, security, and