Technology

The US Federal Communications Commission (FCC) on Thursday adopted new rules that require all mobile phones introduced in the country to offer compatibility with hearing aids and meet volume control benchmarks. The move is aimed at expanding accessibility options for 48 million American consumers impacted by hearing loss, according to the US regulator. The FCC will also

Oct 18, 2024Ravie LakshmananInsider Threat / Cyber Espionage North Korean information technology (IT) workers who obtain employment under false identities in Western companies are not only stealing intellectual property, but are also stepping up by demanding ransoms in order to not leak it, marking a new twist to their financially motivated attacks. “In some instances,

Sales of Apple’s newest iPhones in China are up 20 percent in their first three weeks compared with 2023’s model, a positive sign for a device that struggled this year to gain traction in the world’s largest smartphone market. The iPhone 16 debuted in September and has outperformed its predecessor so far, according to Counterpoint

Oct 17, 2024Ravie LakshmananRansomware / Network Security Cybersecurity researchers have gleaned additional insights into a nascent ransomware-as-a-service (RaaS) called Cicada3301 after successfully gaining access to the group’s affiliate panel on the dark web. Singapore-headquartered Group-IB said it contacted the threat actor behind the Cicada3301 persona on the RAMP cybercrime forum via the Tox messaging service

OnePlus 13 is expected to launch in China this month as the successor to 2023’s OnePlus 12. Ahead of its debut, leaks about the purported handset have begun to intensify and the latest revelation is a big one. Official-looking renders of the OnePlus 13 have surfaced on social media, hinting at its design. The OnePlus

Oct 17, 2024Ravie LakshmananThreat Intelligence / Malware The Russian threat actor known as RomCom has been linked to a new wave of cyber attacks aimed at Ukrainian government agencies and unknown Polish entities since at least late 2023. The intrusions are characterized by the use of a variant of the RomCom RAT dubbed SingleCamper (aka

Apple Business Connect — the company’s service that allows individuals and companies to add or update their information across the company’s apps — has been updated with new features that allow these businesses to connect with customers, even if they do not have a physical presence. The latest features introduced by Apple will allow a

Oct 16, 2024Ravie LakshmananData Privacy / Passwordless The FIDO Alliance said it’s working to make passkeys and other credentials more easier to export across different providers and improve credential provider interoperability, as more than 12 billion online accounts become accessible with the passwordless sign-in method. To that end, the alliance said it has published a

Pixel device owners will definitely be busy discovering several new features thanks to the release of Android 15. However, Google’s latest October Pixel Drop brings even more features to new and recent devices. As usual, this quarterly update applies to several devices ranging from the Pixel 6 to latest Pixel 9 Pro Fold along with

Oct 16, 2024Ravie LakshmananEndpoint Security / Malware Threat actors are attempting to abuse the open-source EDRSilencer tool as part of efforts to tamper endpoint detection and response (EDR) solutions and hide malicious activity. Trend Micro said it detected “threat actors attempting to integrate EDRSilencer in their attacks, repurposing it as a means of evading detection.”

iPad Mini (2024) was launched in global markets including India on Tuesday. The latest version of the company’s most compact iPad is powered by an A17 Pro chip, the same processor that was introduced with last year’s iPhone 15 Pro. The seventh-generation iPad Mini model is the first update to the mini lineup since 2021, and

Oct 16, 2024Ravie LakshmananEnterprise Security / Vulnerability GitHub has released security updates for Enterprise Server (GHES) to address multiple issues, including a critical bug that could allow unauthorized access to an instance. The vulnerability, tracked as CVE-2024-9487, carries a CVS score of 9.5 out of a maximum of 10.0 “An attacker could bypass SAML single

Android 15 rollout has commenced for Pixel devices, Google announced on Tuesday. The latest operating system (OS) was globally released on September 3. Google has detailed the features of the update on Pixel devices, including security measures like Theft Detection Lock and privacy-centric additions such as Private Space. Furthermore, Android 15 also includes exclusive functionality

Oct 15, 2024Ravie LakshmananMobile Security / Financial Fraud New variants of an Android banking trojan called TrickMo have been found to harbor previously undocumented features to steal a device’s unlock pattern or PIN. “This new addition enables the threat actor to operate on the device even while it is locked,” Zimperium security researcher Aazim Yaswant

India Mobile Congress — or IMC 2024 — was inaugurated by Prime Minister Narendra Modi on Tuesday, alongside the World Telecommunication Standardisation Assembly (WTSA) 2024. At the annual digital technology forum, several milestones in the areas of mobile network connectivity, broadband adoption, and optical fibre network expansion were highlighted by the Prime Minister. Over the course

The maintainers of the Jetpack WordPress plugin have released a security update to remediate a critical vulnerability that could allow logged-in users to access forms submitted by others on a site. Jetpack, owned by WordPress maker Automattic, is an all-in-one plugin that offers a comprehensive suite of tools to improve site safety, performance, and traffic

⁤Xiaomi Smart Band 9 Pro may soon launch as a successor to the ⁤Xiaomi Smart Band 8 Pro, which was globally unveiled in February at the Mobile World Congress 2024. It will likely join the Xiaomi Smart Band 9, which was introduced in China in July this year. Although the company has yet to officially announce

Oct 14, 2024Ravie LakshmananNetwork Security / Vulnerability A suspected nation-state adversary has been observed weaponizing three security flaws in Ivanti Cloud Service Appliance (CSA) a zero-day to perform a series of malicious actions. That’s according to findings from Fortinet FortiGuard Labs, which said the vulnerabilities were abused to gain unauthenticated access to the CSA, enumerate

iPhone SE 4 is believed to launch in early 2025 with Face ID. The budget iPhone, which is expected to arrive as the successor to the iPhone SE (2022) was earlier speculated to feature the same design as the base iPhone 14. However, new leaked case renders of the iPhone SE 4 suggest that the

Oct 11, 2024Ravie LakshmananDevOps / Vulnerability GitLab has released security updates for Community Edition (CE) and Enterprise Edition (EE) to address eight security flaws, including a critical bug that could allow running Continuous Integration and Continuous Delivery (CI/CD) pipelines on arbitrary branches. Tracked as CVE-2024-9164, the vulnerability carries a CVSS score of 9.6 out of