Connect with us

News

Serious flaw in macOS could allow the theft of all your private data

Published

on

Following Microsoft’s discovery of the Shrootless vulnerability in October last year, the company claims to have discovered a new vulnerability in macOS that it claims could be exploited to gain unauthorized access to users’ private data.

Although by some user there is the belief that viruses or vulnerabilities cannot enter the Apple operating system, the news tells us otherwise. Malware is usually a constant concern, as they are capable of steal our most confidential data, accounts and hijack all kinds of information.

TCC technology

Tracked as CVE-2021-30970 the new vulnerability known as “Powerdir”, found by the Microsoft 365 Defender research team could allow an attacker to circumvent Transparency, Consent and Control (TCC) technology in Apple’s desktop operating system, the company writes in its official blog.

After first introduced in 2012 in macOS Mountain Lion, TCC (Transparency, Consent and Control) was created in order to help Mac users configure privacy settings for their applications. These settings include which applications have access to the camera, the microphone or the location of a device, in addition to the calendar or the iCloud account of each user. To protect TCC, Apple introduced a feature to prevent unauthorized code execution enforcing a policy that restricted access to TCC only to applications with full disk access.

“There are two types of TCC databases. The user-specific database stores permission types that only apply to a specific user profile, while the system-wide database contains stored permission types that are applied at the system level and can be accessed. . by users with root or full access to the disk ”.

Powerdir vulnerability

The Microsoft 365 Defender research team has found that it is possible to programmatically change the home directory of a target user alreadyassociate a fake TCC database capable of storing the consent history of application requests.

If the Powedir vulnerability is exploited on unpatched systems it could allow entry of a malicious actor based on a user’s protected personal data. For example, it would be possible that the attacker managed to access an application installed on our device, and even install his own malicious application by accessing the microphone of a MacBook. This could achieve record private conversations or take screenshots of confidential information.

It is not the first time that a vulnerability of this type has been detected and later repaired, but it was when examining some last corrections that Microsoft found Powedir. The team had to update your exploit Proof of Concept (POC) because the initial version no longer worked on the latest version of macOS Monterey.

Following the discovery, Microsoft shared this finding with Apple through Coordinated Vulnerability Disclosure (CVD), to which Apple responded by releasing a fix as part of a series of security updates the company released in December last year. If you are a macOS user, the most convenient is download and apply latest security updates possible.

Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Security

Can Microsoft Defender antivirus be disabled in Windows 11?

Published

on

microsoft defender has reached a spectacular level of maturing with windows 10. What started as a basic malware protection more serious, it has become one of the best antiviruses on the market, with the advantage that it is free, lightweight, and is already included and activated with the operating system. However, there are times that we may be interested in deactivating it, but is it possible to do it with Windows 11?

When we install a third-party antivirus, Microsoft Defender is disabled. However, there may be times when it is not deactivated properly, or there may be times when we simply want to temporarily disable the antivirus to install something that is detected as a false positive. It is also possible that, on a weak computer, Microsoft Defender consumes a lot of resources; especially when booting the system. There are lighter options, or if we don’t have the internet connected device, we may not even need the antivirus.

Windows 11 allows you to disable antivirus

In the Security section of Windows 11, luckily, we can disable many antivirus functions, including Real-time Protection, which is the one that usually causes problems when it comes to detecting false positives in files that we know are safe. This protection can only temporarily deactivate, but the rest of the protection modules can be permanently disabled.

So, effectively, we can temporarily disable the protection in Windows. To do this, we go to Settings in Windows 11, and there we enter the Privacy security tab. In there, let’s windows security. Once there, click on the option that says Antivirus and threat protection. In there, we just have to go to the part of managing the configuration of Real-time protection, and disable it.

It can also be permanently disabled

This deactivation is temporary, so if we want to deactivate it completely, we will have to go to the Local Group Policy Editor. To go to this section, it is necessary to disable the function of Tamper Protection within the same section where real-time protection is temporarily disabled.

To do this, we look for theLocal Group Policy Editor«, or gpedit.msc. In there, let’s Computer Configuration > Administrative Templates > Windows Components > Microsoft Defender Antivirus. Once we get there, we look for the option «Disable Microsoft Defender Antivirus«. We double click, and we give Enabled. Now we just have to restart, and we will have the Windows 10 antivirus permanently disabled.

These are the best options we have for disable Microsoft Defender in Windows 11. Another option is to use programs like Defender Control or Configure Defender. This type of program allows you to manage a multitude of settings directly from the program and with a couple of clicks without having to navigate through the system settings.

Continue Reading

News

6000 mAh, big screen and lots of storage for $175. Presented by Tecno Pova Neo

Published

on

The range of Tecno smartphones has been replenished with a new inexpensive model – Pova Neo. The novelty is presented in the markets of India and Nigeria, where it costs about the same – about $ 175. Early buyers in India are promised $20 wireless headphones as a bonus.

6000 mAh, big screen and lots of storage for $175.  Presented by Tecno Pova Neo

Tecno Pova Neo – from the category of “a lot of smartphone for little money.” It is equipped with a large 6.8-inch screen with a frame rate of 120 Hz, but the resolution is small – 1640 x 720 pixels. The main camera is represented by two sensors, the resolution of the main one is 13 megapixels. The front camera uses an 8MP sensor and an F/1.8 lens.

6000 mAh, big screen and lots of storage for $175.  Presented by Tecno Pova Neo

At the heart of the hardware platform is a MediaTek Helio G25 SoC paired with 6GB of LPDDR4X memory and 128GB of eMMC 5.1 memory. The device supports RAM expansion technology by creating a 5 GB virtual partition in flash memory. The device also includes an LTE modem, 802.11ac Wi-Fi and Bluetooth 5.1 adapters, a standard headphone jack, and a USB-C port. The battery capacity was 6000 mAh, it supports 18 W charging. The operating system is Android 11 with HiOS 7.6 interface.

.

Continue Reading

News

These are the most realistic artificial voices of the moment

Published

on

We are used to hearing computer generated voices on different devices. In smart assistants, in gadgets, in ebook readers, on websites…. these voices are more and more present, but they continue to feel artificial, something that will cease to be so in a few years.

The fact is that there are already artificial intelligence engines capable of creating voice systems that are extremely natural, and today I will show you where to listen to them.

Is about vocalora.com, a web project that uses one of the world’s most sophisticated speech engines to simulate the voice of 5 different English accents, using 18 different voices in the process.

We can paste a text (in English) and select the desired voice from all the available ones. Once done, we will click on the Read Text button that appears on the right. If during the reading process we put a different voice, both will be heard at the same time.

Both male and female voices and children’s voices are available, and the result is so impressive that it is difficult to understand how our vacuum cleaner continues to speak with an 80’s movie voice.

We can try vocalora for free, but if we need readings of several hours, we will have to go through the premium subscription (about 20 dollars per month).

At the moment there are no projects with the same quality in Spanish, at least not on a website of these characteristics, available to the general public, although it is a sector that is advancing a lot, so it will not be long before we have something like this soon in our language.

.

Continue Reading

Most Popular