Criminals disguise software as harmless Android apps in order to steal confidential information.
Information security specialists from Zimperium discovered an ongoing malware campaign in which cybercriminals use PhoneSpy spyware to track South Koreans. PhoneSpy disguises itself as Android apps in order to steal confidential information, spy and gain remote access to devices.
Zimperium has not associated spyware with any particular cybercriminal group.
“The evidence associated with PhoneSpy shows a familiar structure that was passed down over the years, updated by individuals, and disseminated to private communities and back channels until it was compiled into what we see in this version today,” the experts explained.
Fraudulent applications disguise themselves as harmless utilities for learning yoga and viewing photos. In addition, malware is independent of the Google Play Store or unofficial app marketplaces, implying that hackers use social engineering or web traffic redirection.
Once installed, the app asks for a wide range of permissions and then opens a phishing site disguised as a login page for popular apps such as Facebook, Instagram, Google, and Kakao Talk. Users who try to log in see an HTTP 404 Not Found message, but in reality their credentials are being sent to a remote C&C server.
PhoneSpy allows attackers to access the device’s camera, take pictures, record video and audio, obtain accurate GPS location, view images, and also steal SMS messages, contacts, call logs, and even send SMS messages to the attackers’ phone.
Nvidia lost. LHR mining protection is also hacked under Linux. This was done by NBMiner developers
Two days have passed since the NiceHash developers cracked the Nvidia LHR protection, as the NBMiner team also pleased their users with the same news. Only this time we are talking about software for Linux.
Thus, Nvidia’s protection completely fell for both Windows and Linux. Unfortunately, both programs are closed source, so it’s not clear what mechanisms the developers used to hack.
Whether the loss of Nvidia will affect the availability and prices of video cards is still difficult to say. At the moment, the cryptocurrency market continues to fall, but sooner or later it will turn around, and gamers may again face shortages and overpriced graphics cards.
Xiaomi has released a profitable set of security camera and smart door locksmart door lock
Xiaomi has introduced a new kit with an outdoor video surveillance camera and a smart door lock, which includes Mi Outdoor camera and Mi Smart Door Lock 1S.
The bundle is priced at around $237, which is a great deal as these devices cost $20 more individually.
Mi Smart Door Lock 1S supports 7 unlocking methods, including fingerprint, password, temporary password, Bluetooth, HomeKit, NFC or regular key unlock. Compared to the first generation, the new lock supports both the Mijia app and Apple HomeKit.
As for the rechargeable version of Xiaomi Outdoor Camera, this is Xiaomi’s first outdoor wireless camera. It has an independent design and can be installed without connecting the mains cable or power cable. It has a wide viewing angle of 130°, 1080p resolution and supports WDR technology.
In addition, the battery version of the Xiaomi Outdoor Camera offers night vision up to 7 meters and people detection function. It is IP65 rated and has a long battery life of up to 90 days.
“These are machines for sucking out personal data.” Prayer and mental health apps have poor security
Mental health apps have worse privacy protection than most other types of apps, according to a new analysis by Mozilla. We are talking about the entire category as a whole. In addition, things are also bad for prayer applications.
The vast majority of mental health and prayer apps are exceptionally creepy. They track a variety of data, share and capitalize on users’ most intimate personal thoughts and feelings, such as mood, mental state, and biometric data.
The team analyzed 32 mental health and prayer apps. Of these apps, 29 received a Privacy not included warning, indicating that the team is concerned about how the app manages user data.
These applications collect large amounts of personal data in accordance with vague privacy policies. Most applications have also been found to have poor security practices that allow users to create accounts with weak passwords. Considering how much personal information such programs can contain, this is a bad feature.
The list of the worst programs according to the specified criteria included Better Help, Youper, Woebot, Better Stop Suicide, Pray.com and Talkspace. In particular, the Woebot chatbot claims to collect information about users and shares this data for advertising purposes, and Talkspace collects transcripts of user chats.
They work like data-sucking machines with the look and feel of a mental health app. In other words: wolves in sheep’s clothing
Budget video cards will become useless. Ryzen 7000 Mobile Processors May Get Ultra-Performing iGPU, 3D V-Cache Boosted
Phoenix generation Ryzen 7000 mobile processors are credited with incredibly powerful iGPUs. But these APUs may turn out to be...
Another port of Intel. XeSS technology will not appear in Dolmen on May 20
Only yesterday we learned that Intel XeSS technology will become available in the first game on May 20, as the...
Elon Musk knocks down the price? He does not want to complete the deal to buy Twitter without an audit, which is impossible
Elon Musk’s purchase of the social network Twitter is getting more and more interesting. The other day, the billionaire said...
A $250 smartphone with 10x optical zoom? In China, such a device will allegedly be released under the NZone brand.
In China, an inexpensive smartphone with a 10x optical zoom can. NZone S7 ProThe operator China Mobile under the NZone...
Electric Cars6 days ago
Geely competes with Tesla and Rivian: the company will produce Radar electric pickups
Gaming7 days ago
Few people need PlayStaiton 5 without exclusives or is it just a shortage? Console sales plummeted
Electric Cars6 days ago
Europe is completely switching to electricity. European Union plans to register only electric vehicles from 2035
Components7 days ago
This is what photorealistic games can look like on Unreal Engine 5. Train station demo can run on GeForce RTX 2080