‘Stegano’ Malvertising Exposes Millions To Hacking
December 13, 2016 by admin
Filed under Around The Net
Comments Off on ‘Stegano’ Malvertising Exposes Millions To Hacking
Since October, millions of internet users have been exposed to malicious code embedded in the pixels from tainted banner ads designed to install Trojans and spyware, according to security firm ESET.
The attack campaign, called Stegano, has been spreading from malicious ads in a “number of reputable news websites,” ESET said in a Tuesday blog post. It’s been preying on Internet Explorer users by scanning for vulnerabilities in Adobe Flash and then exploiting them.
The attack is designed to infect victims with malware that can steal email password credentials through its keylogging and screenshot grabbing features, among others.
The attack is also hard to detect. To infect their victims, the hackers were essentially poisoning the pixels used in the tainted banner ads, ESET said in a separate post.
The hackers concealed their malicious coding in the parameters controlling the pixels’ transparency on the banner ad. This allowed their attack to go unnoticed by the legitimate advertising networks.
Victims will typically see a banner ad for a product called “Browser Defense” or “Broxu.” But in reality, the ad is also designed to run Javascript that will secretly open a new browser window to a malicious website designed to exploit vulnerabilities in Flash that will help carry out the rest of the attack.
Hackers have used similar so-called malvertising tactics to secretly serve malicious coding over legitimate online advertising networks. It’s an attack method that has proven to be a successful at quickly spreading malware to potentially millions.
The makers behind the Stegano attack were also careful to create safeguards to prevent detection, ESET said. For instance, the banner ads will alternate between serving a malicious version or a clean version, depending on the settings run on the victim’s computer. It will also check for any security products or virtualization software on the machine before proceeding with the attack.
ESET declined to name the news websites that were found unknowingly displaying the malicious ads, but cautioned that the attack was widespread, and could have been hosted through other popular sites as well.
Source-http://www.thegurureview.net/aroundnet-category/stegano-malvertising-ads-expose-millions-of-online-users-to-hacking.html
Helio Finally Launches X27
MediaTek has announced two more Helio X20 series products – a Helio X27 and an X23 and as you can figure out from the names; Helio X27 is faster than the X25 while X23 is a bit slower.
Helio X25 was the fastest deca-core 20nm SoC from MediaTek with three cluster designs and this SoC ended up in quite a few prominent China higher end phones including a few Meizu devices. But it looks like customers wanted a bit faster camera, SoC and GPU performance for its late 2016 early 2017 phones, the ones that will launch before the Helio X30 comes to market.
Jeffrey Ju, Executive Vice President and Co-Chief Operating Officer at MediaTek said: “The MediaTek Helio platform fulfills the diverse needs of device makers. Based on the success of MediaTek Helio X20 and X25, we are introducing the upgraded MediaTek Helio X23 and X27. The new SoCs support premium dual camera photography and provide best in-class performance and power consumption,”
The Helio X25 has two Cortex A73 cores clocked at 2.5 GHz, four Cortex A53 clocked at 2.00 GHz and last four Cortex A53 clocked at 1.55GHz. The Mali GT880 graphics is clocked at 850 MHz.
The Helio X20 has two Cortex A73 cores clocked at 2.1 GHz, four Cortex A53 clocked at 1.85 GHz and last four Cortex A53 clocked at 1.4GHz. The Mali GT880 graphics is clocked at 780 MHz.
The newcomer, Helio X27, has two Cortex A73 cores clocked at 2.6 GHz, four Cortex A53 clocked at 2.00 GHz and the last four Cortex A53 clocked at 1.6 GHz. The Mali GT880 graphics is clocked at 875 MHz. The rest of the specification is identical to the Helio X25.
The Helio X23 has two Cortex A73 cores clocked at 2.3 GHz, four Cortex A53 clocked at 1.85 GHz and the last four Cortex A53 clocked at 1.4GHz. The Mali GT880 graphics is clocked at 780 MHz. As you can see, this is just a slightly faster version of Helio X20 and it sits just below Helio X25 with its specs.
Thanks to MediaTek-engineered advancements in the CPU/GPU heterogeneous computing scheduling algorithm, both products deliver more than a 20 percent overall processing improvement and significant increases in web browsing and application launching speeds. This definitely sounds promising but you should bear in mind that MediaTek had enough time to optimize these designs of the new and updated SoCs.
Phones based on the Helio X27 and X23 will be available soon.
Courtesy-Fud
Can iOS Activation Lock Be Bypassed?
December 7, 2016 by admin
Filed under Around The Net
Comments Off on Can iOS Activation Lock Be Bypassed?
Two researchers report that they have discovered a way to bypass the activation lock feature in iOS that’s supposed to prevent anyone from using an iPhone or iPad marked as lost by its owner.
The first report came Sunday from an Indian security researcher named Hemanth Joseph, who started investigating possible bypasses after being confronted with a locked iPad he acquired from eBay.
The activation lock gets enabled automatically when users turn on the Find My iPhone feature via iCloud. It links the device to their Apple IDs and prevents anyone else from accessing the device without entering the associated password.
One of the few things allowed from the activation lock screen is connecting the device to a Wi-Fi network, including manually configuring one. Hemanth had the idea of trying to crash the service that enforces the lock screen by entering very long strings of characters in the WPA2-Enterprise username and password fields.
The researcher claims that, after awhile, the screen froze, and he used the iPad smart cover sold by Apple to put the tablet to sleep and then reopen it. This is supposed to restore the state of the tablet from where it was left off, in this case, loading the WPA2 screen again with the long strings of characters filled in.
“After 20-25 seconds the Add Wifi Connection screen crashed to the iPad home screen, thereby bypassing the so-called Find My iPhone Activation Lock,” he said in a blog post.
Hemanth said he reported the issue to Apple on Nov. 4, and the company is investigating it. He tested the bypass on iOS 10.1, which was released on Oct. 24.
Last week, a researcher named Benjamin Kunz Mejri, from German outfit Vulnerability Lab, posted a video showing the same bypass, but on the newer iOS 10.1.1 version.
Kunz Mejri’s method is similar and also involves overflowing the Add Wi-Fi form fields with long strings of characters but also requires rotating the tablet’s screen in order to trigger the crash after the smart cover trick.
Apple has not yet confirmed that issue and did not immediately respond to a request for comment.
Source- http://www.thegurureview.net/mobile-category/researcher-prove-ios-activation-lock-can-be-bypassed.html
Is Facebook Moving Into A.I.?
December 6, 2016 by admin
Filed under Around The Net
Comments Off on Is Facebook Moving Into A.I.?
Facebook Inc is developing a way to automatically flag offensive material in live video streams, building on a growing effort to use artificial intelligence to monitor content, said Joaquin Candela, the company’s director of applied machine learning.
The social media company has been embroiled in a number of content moderation controversies this year, from facing international outcry after removing an iconic Vietnam War photo due to nudity, to allowing the spread of fake news on its site.
Facebook has historically relied mostly on users to report offensive posts, which are then checked by Facebook employees against company “community standards.” Decisions on especially thorny content issues that might require policy changes are made by top executives at the company.
Candela told reporters that Facebook increasingly was using artificial intelligence to find offensive material. It is “an algorithm that detects nudity, violence, or any of the things that are not according to our policies,” he said.
The company already had been working on using automation to flag extremist video content, as Reuters reported in June.
Now the automated system also is being tested on Facebook Live, the streaming video service for users to broadcast live video.
Using artificial intelligence to flag live video is still at the research stage, and has two challenges, Candela said. “One, your computer vision algorithm has to be fast, and I think we can push there, and the other one is you need to prioritize things in the right way so that a human looks at it, an expert who understands our policies, and takes it down.”
Facebook said it also uses automation to process the tens of millions of reports it gets each week, to recognize duplicate reports and route the flagged content to reviewers with the appropriate subject matter expertise.
Chief Executive Officer Mark Zuckerberg in November said Facebook would turn to automation as part of a plan to identify fake news. Ahead of the Nov. 8 U.S. election, Facebook users saw fake news reports erroneously alleging that Pope Francis endorsed Donald Trump and that a federal agent who had been investigating Democratic candidate Hillary Clinton was found dead.
However, determining whether a particular comment is hateful or bullying, for example, requires context, the company said.
Source-http://www.thegurureview.net/aroundnet-category/facebook-developing-artificial-intelligence-to-patrol-live-videos.html
PC Market Showing Signs Of Life
The PC market is showing some signs of growth, with Intel boosting its revenue guidance based on improved chip shipments.
The chip maker has raised its revenue guidance for the third quarter to $15.6 billion, plus or minus $300 million, an improvement from $14.9 million, plus or minus $500 million.
That’s due to PC makers replenishing laptop and desktop inventory, which means Intel is shipping out more chips. It’s likely in anticipation of the holiday season, when PC shipments rocket.
“The company is also seeing some signs of improving PC demand,” Intel said in a statement.
In the second quarter of the year, PC makers slowed down chip orders and were clearing out existing stock of laptops and desktops. PC shipments declined by 4.5 percent during that period, according to IDC.
Shipments of gaming PCs, 2-in-1s and Chromebooks are driving PC shipments. Microsoft’s free upgrade offer to Windows 10 has also ended, which means users are more likely to buy new PCs to get Windows 10.
Meanwhile, new laptops with Intel’s Kaby Lake chips are now available. All the top PC makers have announced new 2-in-1s and laptops with Intel’s new chips. New Kaby Lake chips for gaming PCs will be announced in January.
Intel also has started shipping Pentium and Celeron chips, both aimed at low-cost laptops, based on the same architecture and code-named Apollo Lake. Many Chromebooks are based on Apollo Lake chips.
Courtesy- http://www.thegurureview.net/computing-category/pc-market-showing-signs-of-life.html
Will Intel’s Kaby Lake Outshine AMD’s ZEN?
Comments Off on Will Intel’s Kaby Lake Outshine AMD’s ZEN?
A Wall Street analyst, with no thought to his personal safety, has dared to question what AMD fans have been telling us for ages – Zen will bring about peace on earth, cure cancer and above all give Intel a good kicking.
However, Christopher Danely with Citigroup has bravely claimed that with its “Kaby Lake” family of processors, Intel remains a “step-function ahead of AMD Zen when Zen chips are released in Q416.”
He also doubts the benchmark stats that AMD presented to promote Zen’s capabilities relative to Intel’s microprocessors claiming that the AMD controlled benchmark compared an engineering sample of a Zen processor that has not been released yet against a three-month old Intel processor, with both chips clocked at 3.0 Ghz.
“We note the maximum speed for the Intel chip is 3.2 GHz. The result showed AMD completing the benchmark 2 per cent faster than Intel, implying higher CPU efficiency on a “clock for clock” basis. AMD kept both 8 core chips at the same clock speed of 3.0 Ghz, below the native clock speed of the Intel chip. The benchmark result showed the Zen Summit Ridge processor completing the Blender rendering benchmark in 48.07 seconds, 2 per cent ahead of Intel Broadwell-E chip’s time of 49.06 seconds. We note this is only one benchmark using a custom workload performed at an AMD event under controlled conditions, and therefore cannot be verified by third parties and does not represent expected results under all workloads, Danely said.
Instead he thinks that Chipzilla will benefit from its process technology lead while AMD’s manufacturing partner, Global Foundries, which has a “spotty track record.”
“After several of delays and eventually failing to develop 20nm and 14nm on its own, GlobalFoundries entered into a partnership agreement with Samsung in April 2014 to adopt Samsung’s 14nm FinFET process. Despite using the same tools, recipes, and materials as Samsung’s 14nm process, products built on GlobalFoundries’ 14nm did not appear until earlier this year, roughly a year after Samsung released its Exynos 7420 SoC built on its 14nm process,” Danely pointed out.
Since the partnership agreement with Samsung does not include 10nm or lower nodes, we think the technology gap between AMD and Intel will widen again once Intel migrates to 10nm next year.
Meanwhile Intel released its new Kaby Lake chips on an improved 14+nm process this month, featuring a 15 per cent performance improvement over its Skylake chips. Kaby Lake chips deliver up to 12 per cent faster productivity performance and 19 per cent faster web performance over comparable Skylake chips
“We expect independent benchmarks to show Intel’ performance is a step function ahead of AMD Zen when Zen chips are released in 4Q16,” he said.
Below you will find lots of rantings from Intel and AMD fanboys and we expect the language to be colourful. Those of a sensitive disposition might want to look away now.
Courtesy-Fud
Is TSMC Experiencing Unusual Growth?
Comments Off on Is TSMC Experiencing Unusual Growth?
TSMC s expected to see a 10 percent revenue increase in 2016.
Company co-CEO Mark Liu said that while the fourth quarter could be a bit rough as customers start their inventory adjustments, TSMC’s sales for the quarter will still outperform those for the third quarter.
Talking to Digitimes Lui said that smartphone demand was affected negatively by macroeconomic factors in the first half of 2016. But apparently smartphone chip clients are ordering again in the second half of the year.
TSMC previously estimated its 2016 revenues would grow 5-10 per cent. The foundry expects to meet the high end of the growth guidance, Liu said. In his speech at the CEO Forum of SEMICON Taiwan 2016. Liu claimed that the foundry industry growth is being driven by the markets for smartphones, HPC, automotive and IoT.
Apps like Pokemon G will require more silicon chips used in mobile devices that will be another growth driver in the future, Liu said.
Courtesy-Fud
Intel Sheds McAfee
Intel has sold the Intel Security business for $3.5bn less than it paid for it six years ago.
Intel Security, previously and better known as McAfee, has been sold to private equity firm TPG for $4.2bn, despite Intel paying $7.7bn for it in 2010.
The chip firm will receive $3.1bn in cash as part of the transaction and retain a 49 per cent minority stake. TPG will take control with a 51 per cent stake, and will invest $1.1bn in the company.
Intel Security is based on the McAfee business and was renamed two years ago. The company will revert to the better known McAfee brand, despite John McAfee reportedly suing Intel over the use of his name.
The transaction is expected to close in the second quarter of 2017, and Chris Young, general manager of Intel Security Group, will become CEO of McAfee.
Young described TPG in an open letter to stakeholders as a “seasoned technology investor” that was “attracted to our current momentum and long-term potential”.
He claimed that McAfee currently protects “more than a quarter of a billion endpoints” and more than 200 million consumers, and is present in two thirds of the world’s 2,000 largest companies.
Intel CEO Brian Krzanich claimed that, despite the sale, security “remains important in everything we do at Intel”.
“We will continue to integrate industry-leading security and privacy capabilities in our products from the cloud to billions of smart, connected computing devices,” he added.
Bryan Taylor, a partner at TPG, said that the company had “long identified the cyber security sector, which has experienced strong growth due to the increasing volume and severity of cyber attacks, as one of the most important areas in technology”.
Intel’s acquisition of McAfee Security in 2010 was intended to enable the company to beef up security around PCs and sell McAfee antivirus and other security software around its core business.
However, the combination never worked as the money to be made in the security business became increasingly focused on the data center and cloud computing.
Courtesy-TheInq
nVidia Updates Its Grid Platform
Nvidia has updated its Grid software platform with deeper performance profiling and analytics tools for planning, deployment, and support of virtual GPU users.
According to the company the improved management tools address both host (server) managment and virtual client monitoring. Nvidia says that with the new Grid software, admins will be able to get information about the number of virtual graphics instances in use and the number they can potentially create.
They can also see usage information for the stream processors on board each card, the percentage of the card’s frame buffer that’s in use, and the load on each card’s dedicated video encode and decode hardware.
Each guest vGPU instance will tell admins information on encoder and decoder usage, frame buffer occupancy, and the vGPU use. Nvidia adds that it all takes the guess work out of vGPU provisioning and the data it’s exposing about vGPU usage will let system administrators tailor their virtual user profiles better.
All this means that it might stop the admins giving too much processing power to accounts when it is needed for the graphics team. Nvidia thinks those operational improvements will also help lower costs. The August 2016 Grid software update should be available immediately.
Courtesy-Fud
CVS Debuts CVS Pay
August 24, 2016 by admin
Filed under Around The Net
Comments Off on CVS Debuts CVS Pay
CVS has rolled out its CVS Pay program that exists inside its mobile app. It allows customers to pay in store for prescriptions by scanning a barcode at the register.
Payments will be backed by a customer’s credit or debit card, the company said.
CVS Pay is currently available in New York, New Jersey, Pennsylvania and Delaware; a nationwide rollout at all 9,600 stores is expected to kick off later this year.
CVS doesn’t support Apple Pay or other NFC-based payment technologies, and its use of barcodes for payments is reminiscent of the way Starbucks customers pay for coffee. Working with the barcode technology was a faster way for CVS to bring forward technology for more convenient in-store payments, analysts said.
Other retailers have created in-store payments through their own apps. Walmart created Walmart Pay in December to allow payments through mobile device QR codes that can be read at checkout registers.
“There’s nothing really innovative here with CVS Pay,” said Gartner analyst Avivah Litan on Friday. “They are pretty much following the trend. It’s just mobile commerce with a credit card attached. It’s no big deal to put a credit card in a wallet.”
At one point, CVS was working with Walmart and dozens of other major retailers in the Merchant Customer Exchange, which was designed to process mobile payments electronically through bank accounts and not credit cards to cut out the card processing cost that merchants paid to banks. But MCX ended its pilot of its mobile app, CurrentC, in June. Analysts have predicted the concept will not continue.
Source-http://www.thegurureview.net/mobile-category/cvs-debuts-cvs-pay.html