The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a recently disclosed high-severity vulnerability in the Zimbra email suite to its Known Exploited Vulnerabilities Catalog, citing evidence of active exploitation. The issue in question is CVE-2022-27924 (CVSS score: 7.5), a command injection flaw in the platform that could lead to the execution of
Technology
Samsung Galaxy S23 Ultra has been a part of the rumour mill for several weeks now. Various speculations have surfaced regarding its camera configuration. There have been reports that suggest the South Korean tech giant could feature only a Snapdragon chipset on the Galaxy S23 series. Notably, Samsung utilised Exynos chipsets in some markets for
Imagine this: a company-wide lockout to the company CRM, like Salesforce, because the organization’s external admin attempts to disable MFA for themselves. They don’t think to consult with the security team and don’t consider the security implications, only the ease which they need for their team to use their login. This CRM, however, defines MFA
Amazon Great Freedom Festival 2022 sale is now live for Amazon Prime subscribers. The sale brings offers and discounts for products across different categories with up to 40 percent off on mobiles and accessories, up to 75 percent off on laptops and wearables, up to 60 percent off on home and kitchen products and up
Phishing incidents are on the rise. A report from IBM shows that phishing was the most popular attack vector in 2021, resulting in one in five employees falling victim to phishing hacking techniques. The Need for Security Awareness Training Although technical solutions protect against phishing threats, no solution is 100% effective. Consequently, companies have no
Nothing Phone 1 first went on sale in India on July 21 followed by a second sale on July 30. Both times the smartphone went out of stock within a couple of hours of the sale going live. The company has now revealed that the Nothing Phone 1 will next go on sale in India
A late-stage candidate encryption algorithm that was meant to withstand decryption by powerful quantum computers in the future has been trivially cracked by using a computer running Intel Xeon CPU in an hour’s time. The algorithm in question is SIKE — short for Supersingular Isogeny Key Encapsulation — which made it to the fourth round
OxygenOS 13 was unveiled by OnePlus today at the New York City launch event. The OnePlus 10 Pro will be the first smartphone to feature the new Android 13-based skin. According to the company, OnePlus 10T will receive an update to OxygenOS 13 later this year. The next version of OnePlus’ skin for its smartphones
Virtualization services provider VMware on Tuesday shipped updates to address 10 security flaws affecting multiple products that could be abused by unauthenticated attackers to perform malicious actions. The issues tracked from CVE-2022-31656 through CVE-2022-31665 (CVSS scores: 4.7 – 9.8) affect the VMware Workspace ONE Access, Workspace ONE Access Connector, Identity Manager, Identity Manager Connector, vRealize
OnePlus Ace Pro was scheduled to launch in China on Wednesday at 7pm local time (4:30pm IST). However, the Shenzhen company has announced that today’s launch event has been postponed for an unspecified reason. OnePlus said that it will soon reveal the follow-up plans for the China launch of the OnePlus Ace Pro. This Qualcomm
Researchers have disclosed a new offensive framework called Manjusaka that they call a “Chinese sibling of Sliver and Cobalt Strike.” “A fully functional version of the command-and-control (C2), written in GoLang with a User Interface in Simplified Chinese, is freely available and can generate new implants with custom configurations with ease, increasing the likelihood of
The government is looking into cases of alleged tax evasion by three mobile companies from China — Oppo, Vivo India and Xiaomi — and notices have been issued to them, Union Finance Minister Nirmala Sitharaman said on Tuesday. “The Department of Revenue Intelligence (DRI) has issued notice to Oppo, the mobile company, for a total customs duty of
Now more than ever, organizations need to enable their development teams to build and grow their security skills. Today organizations face a threat landscape where individuals, well-financed syndicates, and state actors are actively trying to exploit errors in software. Yet, according to recent global research, 67% of developers that were interviewed said they were still
Vivo 25 Pro will come with a triple rear camera headlined by a 64-megapixel main sensor, as per a report. The smartphone is also tipped to come with support for 66W charging. The development comes a few days after the Vivo handset was tipped to feature a colour changing rear panel, with Flourite AG Glass,
Researchers have uncovered a list of 3,207 apps, some of which can be utilized to gain unauthorized access to Twitter accounts. The takeover is made possible, thanks to a leak of legitimate Consumer Key and Consumer Secret information, respectively, Singapore-based cybersecurity firm CloudSEK said in a report exclusively shared with The Hacker News. “Out of
Google showcased the rear design of the Pixel 7 and the Pixel 7 Pro back in May alongside the Pixel 6a at Google I/O. At the time of unveiling the design of the Pixel 7 series, Google had announced that the phones will be launched in the fall of 2022 without specifying a launch date
The operators of the Gootkit access-as-a-service (AaaS) malware have resurfaced with updated techniques to compromise unsuspecting victims. “In the past, Gootkit used freeware installers to mask malicious files; now it uses legal documents to trick users into downloading these files,” Trend Micro researchers Buddy Tancio and Jed Valderama said in a write-up last week. The
Oppo A77 5G was launched in Thailand in June. Now, it has been tipped that the Indian variant of the smartphone is going to make its way to the country in the first week of August. The Indian variant seems to be a 4G only model. The exact launch date has not been revealed yet.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added the recently disclosed Atlassian security flaw to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. The vulnerability, tracked as CVE-2022-26138, concerns the use of hard-coded credentials when the Questions For Confluence app is enabled in Confluence Server and Data Center instances.
Redmi 10A Sport was launched in India on Thursday. Now, it is being speculated that Xiaomi could be lining up another Redmi-branded smartphone in the country. A reliable tipster seemingly spotted the Redmi 10 2022 handset listed on the Xiaomi India site. The supposed listing does not reveal any specifications of this model. The Chinese