Saturday, November 19, 2022

Best VPN for Windows - CNET

You don't have to compromise when looking for the best virtual private network.

from CNET https://ift.tt/p7UnCcB

Friday, November 18, 2022

Do You Need a Credit Card? - CNET

A credit card can benefit most people, but you need to be aware of the risks.

from CNET https://ift.tt/T902utJ

Dell Drops the Xbox Series S to All-Time Low of $235 With This Black Friday Deal - CNET

You can't beat this price on the all-digital, compact, next-gen console from Microsoft -- but it probably won't last long.

from CNET https://ift.tt/Z3nTqdc

Latest Tech News

The Hive ransomware group crossed a major milestone earlier this week, the Cybersecurity Infrastructure and Security Agency (CISA) said in a joint press release, published together with the Federal Bureau of Investigation (FBI) and the Department of Health and Human Services (HHS).

According to the statement, since June 2021 the group managed to infect more than 1,300 companies with its ransomware variant and raked in north of $100 million for its efforts. 

What’s more, the group doesn’t seem to take no for an answer. The three agencies discovered Hive reinfecting those victims that choose to restore their networks instead of paying the ransom demand. 

Reinfecting rebellious victims

"Hive actors have been known to reinfect—with either Hive ransomware or another ransomware variant—the networks of victim organizations who have restored their network without making a ransom payment," the press release reads.

Hive also casts a relatively wide net, when in search of new victims. While it is somewhat focused on Healthcare and Public Health (PHP) organizations, it does enjoy an occasional government entity, communications firm, or IT company. 

The three organizations are generally against paying the ransom demand, as that does not guarantee they’ll get the decryption key, or the stolen data back. On the flip side, it will most definitely motivate the group (and other, similar groups, too) to continue attacking, continue deploying ransomware, and continue asking for more money. 

Instead, they urge the victims to report the attack to their local FBI field office or reach out to CISA via email. 

These reports, it says in the release, will help law enforcement gather key data that’s needed to stay on Hive’s trail, disrupt potential future attacks, and ultimately - bring the threat actors to justice. 

Hive was first spotted in the early summer of last year. 

Via BleepingComputer



from TechRadar - All the latest technology news https://ift.tt/vCdzGRb

Latest Gadgets News

Elon Musk, in a tweet on Friday, announced his decision to reinstate some Twitter accounts, including those belonging to Kathy Griffin, Jordan Peterson & Babylon Bee. The Tesla CEO, however, mentioned that there has been no decision yet to bring back US former President Donald Trump to Twitter.

from Gadgets 360 https://ift.tt/7Hn0KDF

Latest Tech News

Cybersecurity researchers from Akamai have spotted a new phishing campaign that targets consumers in the United States with fake holiday offers. The goal of the campaign is to steal sensitive identity credentials like credit card information, and ultimately their money.

The threat actors are creating landing pages that impersonate some of the biggest brands in the US, including Dick’s, Tumi, Delta Airlines, Sam’s Club, Costco, and others.

The landing page, often hosted on reputable cloud services like Google, or Azure, directs users to complete a short survey, after which they’d be promised a prize. The survey would also be time-limited to five minutes, using urgency to draw people’s attention away from potential red flags. 

Unique phishing URLs

After completing the survey, the victims would be pronounced “winners”. The only thing they’d now need to do, in order to receive their prize, is to pay for the shipping. This is where they’d give away their sensitive payment information, to be later used by the attackers in different ways. 

However, what makes this campaign unique is its token-based system that allows it to fly under the radar and not get picked up by cybersecurity solutions. 

As the researchers explain, the system helps redirect each victim to a unique phishing page URL. The URLs differ based on the victim’s location, as crooks look to impersonate locally available brands. 

Explaining how the system works, the researchers said each phishing email contains a link to the landing page, that comes with an anchor (#). This is usually how visitors are navigated to specific parts of a landing page. In this scenario, the tag is a token, used by JavaSCript on the landing page, which reconstructs the URL. 

"The values being after the HTML anchor will not be considered as HTTP parameters and will not be sent to the server, yet this value will be accessible by JavaScript code running on the victim's browser," the researchers said. "In the context of a phishing scam, the value placed after the HTML anchor might be ignored or overlooked when scanned by security products that are verifying whether it is malicious or not."

"This value will also be missed if viewed by a traffic inspection tool."

Cybersecurity solutions overlook this token, helping threat actors keep a low profile. On the other hand, researchers, analysts, and other unwanted visitors, are kept away, as, without the proper token, the site won’t load. 

Via: BleepingComputer



from TechRadar - All the latest technology news https://ift.tt/wUzW5AC

Thursday, November 17, 2022

Latest Tech News

Amazon Web Services is upping the ante on the security front with new and important changes for AWS and Identity and Access Management (IAM) users. Announcing the changes in a blog post published earlier this week, the company’s Liam Wadman and Khaled Zaky announced that users can now add more than one multi-factor authentication (MFA) device to AWS account root users, and IAM users in their AWS accounts. 

Up until now, there could only have been one MFA endpoint associated with root users or IAM users, but now Amazon brought it up to eight, a change which “raises the security bar”, as the authors put it. 

To register multiple MFA devices, in any combination of the currently supported MFA types, these are the steps:

  • Sign in to the AWS Management Console
  • If setting up for a root user, choose My Security Credentials.
  • If setting up for an IAM user, choose Security credentials.
  • For Multi-factor authentication (MFA), choose Assign MFA device.
  • Select the type of MFA device that you want to use and then choose Next.

Available today

Having multiple MFA devices active doesn’t mean they all need to confirm someone’s login session, though. Only one MFA device is needed to sign in to the console, or to create a session through the AWS Command Line Interface (AWS CLI) as that principal, the authors explained.

Furthermore, this upgrade doesn’t warrant any changes in the permissions. Both root and IAM users in the accounts that manage MFA devices today can use their existing IAM permissions to enable extra devices. 

With the exception of customers operating in AWS GovCloud (US) Regions, or the AWS China Regions, the new feature is now available, with no additional cost to use. 

Multi-factor authentication is widely considered one of the most important features of a secure account for any online services. This technology complements password managers and has been rolled out across billions of accounts worldwide including the biggest service providers - Google, Facebook, Microsoft and more.



from TechRadar - All the latest technology news https://ift.tt/gVebOa2

WhatsApp Launches Business Directory Feature, Lays Groundwork for In-App Purchases - CNET

Meta says eventually it wants to enable people to find, message and buy from a business within WhatsApp chats.

from CNET https://ift.tt/bOAHxY2

Latest Tech News

NVIDIA and Microsoft are collaborating on a new cloud-based AI-focused supercomputer, which they claim will be "one of the most powerful in the world" when complete.

The new machine will leverage the supercomputing infrastructure of Microsoft Azure combined with NVIDIA GPUs, networking, and AI software. It's set to contain ND- and NC-series virtual machines specifically designed for AI distributed training and inference. 

The companies claim the project represents the first public cloud to incorporate NVIDIA’s full AI stack and will add tens of thousands of NVIDIA A100 and H100 GPUs, NVIDIA Quantum-2 400Gb/s InfiniBand networking, and the NVIDIA AI Enterprise software suite to its platform.

How will it be used?

The firms said the new machine will be used to help enterprises train, deploy and scale AI, including large models.

NVIDIA is also set to utilize Azure’s scalable virtual machine instances to research and further advances in generative AI. 

This is an emerging area of AI in which foundational models like Megatron Turing NLG 530B provide the basis for unsupervised, self-learning algorithms to create new text, code, digital images, video or audio.

The companies will also collaborate to optimize Microsoft’s DeepSpeed deep optimization software and NVIDIA’s full stack of AI workflows and software development kits, optimized for Azure, will be made available to Azure enterprise customers.

“AI technology advances as well as industry adoption are accelerating. The breakthrough of foundation models has triggered a tidal wave of research, fostered new startups and enabled new enterprise applications,” said Manuvir Das, vice president of enterprise computing at NVIDIA.

It's not just Microsoft that is looking towards Nvidia to power its latest AI innovations.

Oracle and Nvidia announced a collaboration at Oracle Cloud World 2022. It will see tens of thousands of Nvidia GPUs, such as the A100 and upcoming H100, supporting Oracle Cloud Infrastructure (OCI).



from TechRadar - All the latest technology news https://ift.tt/r8vkbG1

These Weird Wordle Starter Words Practically Guarantee a Winning Streak - CNET

They're like cheat codes.

from CNET https://ift.tt/HITFcK1

Latest Tech News

Cybersecurity researchers from Trend Micro have recently spotted a new infostealer campaign, leveraging open-source software and file-sharing services to distribute malware. 

According to the company’s blog post, an unknown threat actor took the source code of an app called ResignTool, and modified it to carry the infostealer.

ResignTool is a macOS application used to change the signing information on .IPA files - archive files for iOS and iPad devices. Since it is open-source, the threat actor had no issues changing the app to carry malicious code. In this particular instance, the researchers said, the malware was designed to steal Keychain data.

Distribution via file-sharing services

Keychain is Apple's password management system. It was first introduced in macOS 8.6, but according to the researchers, it is still in current versions of the operating system. In addition to passwords, it contains other types of sensitive data, such as private keys, certificates and secure notes. 

To deliver the malware, the attackers used file-sharing services. According to the report, it is not uncommon for people to look for cracked and otherwise activated versions of commercial software, in order to save a few dollars on software licenses. 

However, these sites and their visitors are low-hanging fruit for cybercriminals, who have no problem uploading malicious versions of these programs (or outright impersonating them) to distribute the malware.

To safeguard their endpoints from potential infections, Trend Micro advises users to double-check the legitimacy of a file-sharing website and make sure to avoid downloading anything that sounds even remotely suspicious. 

“We also advise users to protect their Apple devices with products and services that safeguard applications and files,” the researchers concluded, suggesting that a strong antivirus, a firewall, or similar cybersecurity solution, might help to minimize the potential risk.



from TechRadar - All the latest technology news https://ift.tt/OExMbBH

Wednesday, November 16, 2022

Latest Gadgets News

Amazon on Wednesday said it has laid off some employees in its devices group as a person familiar with the company said it still targeted around 10,000 job cuts, including in its retail division and human resources.

from Gadgets 360 https://ift.tt/u4qOTyr

Two Batches of Blood Pressure Medicine Were Recalled - CNET

It's important to talk to your doctor before stopping or switching any blood pressure medication.

from CNET https://ift.tt/9Ag8teI

Latest Tech News

Speaking to the United State Congress, FBI Director Christopher Wray expressed “extreme” concern over China's ability to “weaponize” data belonging to TikTok's American users, Cyberscoop reported earlier this week. 

TikTok is currently one of the most popular social media platforms in the world, allowing users to create short-form videos (roughly 15 seconds in length) on any topic. 

However, TikTok is built and owned by ByteDance, a Chinese company, and that’s a problem for U.S. authorities, especially given the Chinese government’s control over data generated by local companies. Per Chinese law, the government can compel any company to hand over any data they hold on their servers. 

Problematic APIs

The company tried to appease the US government by moving users’ data to Oracle servers stored in the country last June, but a BuzzFeed News report published soon after claimed all of that data was still visible in China. 

During a House Homeland Security Committee hearing, Wray said that APIs ByteDance embeds in TikTok are a national security concern. According to him, Beijing could use them to “control data collection of millions of users or control the recommendation algorithm, which can be used for influence operations.”

In other words, China could be seeking to sow division by influencing how US TikTok users view certain events and issues.

Social media companies are no stranger to influencer operations. Back in 2014, Facebook began tweaking its algorithm to only show specific types of posts to its users. Consequently, it was accused of manipulating its users on an emotional basis.

Wray went on to address that Chinese companies could pose stark security risks, as they “do whatever the Chinese government wants to do in terms of sharing information or serving as a tool of the Chinese government [...] that’s plenty of reason by itself to be extremely concerned."

While American legislators have so far stopped short of a ban, TikTok remains unbelievably popular, superseding Facebook, Instagram and Twitter amongst younger users, and it's unlikely they'll move away from the platform without being forced to find an alternative.

  • Protect your browsing with the best VPNs on the market


from TechRadar - All the latest technology news https://ift.tt/ldGWofq

Latest Gadgets News

US crypto investors sued FTX founder Sam Bankman-Fried and several celebrities who promoted his exchange including NFL quarterback Tom Brady and comedian Larry David, claiming they engaged in deceptive practices to sell FTX yield-bearing digital currency accounts. The proposed class action filed on Tuesday night in Miami alleges that FTX yield-bearing accounts were u...

from Gadgets 360 https://ift.tt/8onvR0E

Made by Google Event Invites Show an Aug. 12 Launch for the Pixel 11 Series

Google's next Pixel phones and watch are right around the corner. from CNET https://ift.tt/zSx8gHG