Technology

Sep 13, 2024Ravie LakshmananCyber Attack / Crime British authorities on Thursday announced the arrest of a 17-year-old male in connection with a cyber attack affecting Transport for London (TfL). “The 17-year-old male was detained on suspicion of Computer Misuse Act offenses in relation to the attack, which was launched on TfL on 1 September,” the

Vivo X200 and Vivo X200 Pro will reportedly be unveiled at a launch event scheduled on October 14, and the company’s purported handsets have now surfaced on a Chinese certification website. The Vivo X200 Pro has also been spotted in a listing on Geekbench, with evidence that it will be powered by a flagship-grade Dimensity

Sep 14, 2024Ravie LakshmananEnterprise Security / Threat Intelligence Ivanti has revealed that a newly patched security flaw in its Cloud Service Appliance (CSA) has come under active exploitation in the wild. The high-severity vulnerability in question is CVE-2024-8190 (CVSS score: 7.2), which allows remote code execution under certain circumstances. “An OS command injection vulnerability in

Adobe Express, the content creation platform, was expanded in eight Indian languages on Friday. The company said this move will empower more native language speakers in the content creation process. The platform also offers generative artificial intelligence (AI) features, which users can take advantage of. Notably, the language expansion is available across the desktop, Android,

Sep 13, 2024Ravie LakshmananVirtual Reality / Vulnerability Details have emerged about a now-patched security flaw impacting Apple’s Vision Pro mixed reality headset that, if successfully exploited, could allow malicious attackers to infer data entered on the device’s virtual keyboard. The attack, dubbed GAZEploit, has been assigned the CVE identifier CVE-2024-40865. “A novel attack that can

AirPods Pro (2nd Generation) users will soon be able to utilise the company’s truly wireless stereo (TWS) headset as a hearing aid. Apple has just been granted approval by the US Food and Drug Administration (FDA), clearing the path for the feature to be rolled out to customers in the future. The wireless headset will

Sep 12, 2024Ravie LakshmananMobile Security / Financial Fraud Bank customers in the Central Asia region have been targeted by a new strain of Android malware codenamed Ajina.Banker since at least November 2023 with the goal of harvesting financial information and intercepting two-factor authentication (2FA) messages. Singapore-headquartered Group-IB, which discovered the threat in May 2024, said

Apple has rolled out the iOS 18.1 Beta 3 update for its newest iPhone 16 lineup, according to a report. The update is said to bring artificial intelligence (AI) features such as writing tools and web page summarisation powered by the company’s Apple Intelligence platform which it first previewed at the Worldwide Developers Conference (WWDC)

Sep 12, 2024Ravie LakshmananMalware / IoT Security Nearly 1.3 million Android-based TV boxes running outdated versions of the operating system and belonging to users spanning 197 countries have been infected by a new malware dubbed Vo1d (aka Void). “It is a backdoor that puts its components in the system storage area and, when commanded by

Xiaomi 14T series will launch later this month, Xiaomi confirmed in a tweet on Thursday. While the company only mentioned the Xiaomi 14T series, we can expect it to include the vanilla Xiaomi 14T and Xiaomi 14T Pro, successors to last year’s Xiaomi 13T and Xiaomi 13T Pro, respectively. Additionally, hands-on videos of these phones have

Sep 11, 2024Ravie LakshmananNetwork Security / Hacking The operators of the mysterious Quad7 botnet are actively evolving by compromising several brands of SOHO routers and VPN appliances by leveraging a combination of both known and unknown security flaws. Targets include devices from TP-LINK, Zyxel, Asus, Axentra, D-Link, and NETGEAR, according to a new report by

Microsoft-backed G42, an Abu Dhabi-based artificial intelligence (AI) technology company, unveiled a Hindi large language model (LLM) for India on Tuesday. Dubbed Nanda, the AI model is said to be trained with large volumes of datasets in both Hindi, English, and Hinglish languages. The generative AI model was developed in collaboration with MBZUAI and Cerebras

A “simplified Chinese-speaking actor” has been linked to a new campaign that has targeted multiple countries in Asia and Europe with the end goal of performing search engine optimization (SEO) rank manipulation. The black hat SEO cluster has been codenamed DragonRank by Cisco Talos, with victimology footprint scattered across Thailand, India, Korea, Belgium, the Netherlands,

Samsung could be working on a wireless charging case for a pair of augmented reality (AR) glasses, according to a recently published patent application. While there’s not a lot of information about the AR headset, the patent application sheds some light on how the wireless charging case would function. If the company launches a device

The threat actor known as CosmicBeetle has debuted a new custom ransomware strain called ScRansom in attacks targeting small- and medium-sized businesses (SMBs) in Europe, Asia, Africa, and South America, while also likely working as an affiliate for RansomHub. “CosmicBeetle replaced its previously deployed ransomware, Scarab, with ScRansom, which is continually improved,” ESET researcher Jakub

iPhone 16 series was launched at Apple’s “It’s Glowtime” event with much fanfare on Monday. During the event, the company showcased several hardware and software upgrades the new generation of iPhone devices come with. However, it appears the company’s wordings of “faster USB 3 speeds” might have been taken out of context, and the tech

Sep 10, 2024Ravie LakshmananMalware / Cyber Espionage A trio of threat activity clusters linked to China has been observed compromising more government organizations in Southeast Asia as part of a renewed state-sponsored operation codenamed Crimson Palace, indicating an expansion in the scope of the espionage effort. Cybersecurity firm Sophos, which has been monitoring the cyber

Realme Pad 2 Lite will be launched in India later this week, the company confirmed on Tuesday. With only a few days to go until the tablet is introduced in the country, Realme has revealed some of its key specifications, giving us an idea of what to expect from the device. It will be launched

Sep 09, 2024Ravie LakshmananVulnerability / Hardware Security A novel side-channel attack has been found to leverage radio signals emanated by a device’s random access memory (RAM) as a data exfiltration mechanism, posing a threat to air-gapped networks. The technique has been codenamed RAMBO by Dr. Mordechai Guri, the head of the Offensive Cyber Research Lab

Alphabet’s Google will face US antitrust prosecutors on Monday in Alexandria, Virginia, where the Justice Department will seek to show the company stifled competition in online advertising technology, in the search giant’s second recent showdown with the Justice Department. Prosecutors say Google has largely dominated the technological infrastructure that funds the flow of news and information