Connect with us

Industry

FACEBOOK DENIES RANSOMWARE INFILTRATION

Published

on

facebook-locky-ransomware

Facebook on Monday denied that its network and Messenger app were being used to spread ransomware to its users, contradicting the claims of Check Point researchers Roman Ziakin and Dikla Barda.

The two researchers last week reported they had discovered a new method for delivering malicious code to machines, which they dubbed “ImageGate.”

Threat actors had found a way to embed malicious code into an image, they said.

Due to a flaw in the social media infrastructure, infected images are downloaded to a user’s machine, Ziakin and Barda explained. Clicking on the file causes the user’s machine to become infected with a ransomware program known as “Locky,” which encrypts all the files on the infected machine. The user then must pay a ransom to the purveyor of the malicious software in order to decrypt the files.

“In the past week, the entire security industry is closely following the massive spread of the Locky ransomware via social media, particularly in its Facebook-based campaign” the researchers wrote in an online post. “Check Point researchers strongly believe the new ImageGate technique reveals how this campaign was made possible, a question which has been unanswered until now.”

Bad Chrome Extension

Facebook has disputed Check Point’s findings.

“There is no connection to Locky or any other ransomware, and this is not appearing on Messenger or Facebook,” the company maintained.

“We investigated these reports and discovered there were several bad Chrome extensions, which we have been blocking for nearly a week,” Facebook noted. “We also reported the bad browser extensions to the appropriate parties.”

Most social media sites, including Facebook, have protections in place to block spam and dangerous file types, said Marc Laliberte, an information security threat analyst with WatchGuard Technologies.

“This most recent attack bypassed Facebook’s protections by using a specific type of image file that supports interactivity via embedded scripts, like JavaScript”Facebook has since added the image file type — SVG — used in this attack to their filter.”

Cloak of Legitimacy

What makes this attack so devious is that it’s cloaked in legitimacy.

“The JavaScript embedded in the image is not malicious,” explained Alexander Vukcevic, virus labs director at Avira. “It leads you to a website that looks like YouTube.”

At the website, you’re told you need to download a browser extension to watch video at the site.

“The browser extension then downloads the ransomware,” Vukcevic told TechNewsWorld.

Ransomware like Locky has become a big threat to consumers, observed Javvad Malik, a security advocate for Alien Vault.

“Most are not technically savvy to spot or defend against ransomware,” he told TechNewsWorld. “While a lot of effort is put into educating consumers around the dangers of clicking on links in emails or opening attachments, there is an inherent level of trust that people put in social media platforms, which is being abused by this current threat.”

Consumer Protection

While Ransomware is always a serious threat to consumers, this new twist on its distribution raises the bar even higher, WatchGuard’s Laliberte noted.

“Consumers simply do not expect malware to be delivered via a Facebook message,” he said. “Most people probably consider social media sites to be a safe space, so the lack of concern and vigilance makes it powerful as a potential infection channel for malware.”

For consumers concerned about an ImagteGate attack, Check Point recommended not opening any files downloaded to a device after clicking any image. The same is true for image files with unusual extensions, such as SVG, JS or HTA.

Users also should keep their operating system and antivirus software up to date, Avira’s Vukcevic added, “and make backups. Even if you’re never infected with ransomware, you never know when something might go wrong with your machine.”

Continue Reading
Click to comment

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Advertising

GOOGLE MAKES $550M STRATEGIC INVESTMENT IN CHINESE E-COMMERCE FIRM JD.COM

Published

on

Google has been increasing its presence in China in recent times, and today it has continued that push by agreeing to a strategic partnership with e-commerce firm JD.com, which will see Google purchase $550 million worth of shares in the Chinese firm.

Google has made investments in China, released products there and opened offices that include an AI hub, but now it is working with JD.com largely outside of China. In a joint release, the companies said they would “collaborate on a range of strategic initiatives, including joint development of retail solutions” in Europe, the U.S. and Southeast Asia.

The goal here is to merge JD.com’s experience and technology in supply chain and logistics — in China, it has opened warehouses that use robots rather than workers — with Google’s customer reach, data and marketing to produce new kinds of online retail.

Initially, that will see the duo team up to offer JD.com products for sale on the Google Shopping platform across the word, but it seems clear that the companies have other collaborations in mind for the future.

JD.com is valued at around $60 billion, based on its NASDAQ share price, and the company has partnerships with the likes of Walmart and it has invested heavily in automated warehouse technology, drones and other “next-generation” retail and logistics.

The move for a distribution platform like Google to back a service provider like JD.com is interesting since the company, through search and advertising, has relationships with a range of e-commerce firms, including JD.com’s arch rival Alibaba.

But it is a sign of the times for Google, which has already developed relationships with JD.com and its biggest backer Tencent, the $500 billion Chinese internet giant. All three companies have backed Go-Jek, the ride-hailing challenger in Southeast Asia, while Tencent and Google previously inked a patent-sharing partnership and have co-invested in startups such as Chinese AI startup XtalPi.

 

 

Source: Tech Crunch.

Continue Reading

Industry

GOOGLE LAUNCHES A PODCAST APP FOR ANDROID WITH PERSONALIZED RECOMMENDATIONS

Published

on

Google today is introducing a new standalone podcast app for Android. The app, called simply Google Podcasts, will use Google’s recommendation algorithms in an effort to connect people with shows they might enjoy based on their listening habits. While podcasts have previously been available on Android through Google Play Music and third-party apps, Google says the company expects Podcasts to bring the form to hundreds of millions of new listeners around the world. (Google Listen, an early effort to build what was then called a “podcatcher” for Android, was killed off in 2012.)

“There’s still tons of room for growth when it comes to podcast listening,” said Zack Reneau-Wedeen, product manager on the app. Creating a native first-party Android app for podcasts “could as much as double worldwide listenership of podcasts overall,” he said.

Google Podcasts will look familiar to anyone who has used a podcast app before. It lets you search for new podcasts, download them, and play them at your convenience. More than 2 million podcasts will be available on the app on launch day, Google says, including “all of the ones you’ve heard of.”

Open the app, and a section called “For you” shows you new episodes of shows you’ve subscribed to, episodes you’ve been listening to but haven’t finished, and a list of your downloaded episodes. Scroll down, and you’ll see top and trending podcasts, both in general and by category. The podcast player has fewer fine-grained controls than you might be used to from apps like Overcast. You can’t customize the skip buttons or create playlists of podcasts to listen to, for example.

The Podcasts app is integrated with Google Assistant, meaning you can search for and play podcasts wherever you have Assistant enabled. The company will sync your place in a podcast across all Google products, so if you listen to half a podcast on your way home from work, you can resume it on your Google Home once you’re back at the house.

In the coming months, Google plans to add a suite of features to Podcasts that are powered by artificial intelligence. One feature will add closed captions to your podcast, so you can read along as you listen. It’s a feature that could be useful to people who are hard of hearing or for anyone who is listening in a noisy environment. (I usually miss a few minutes of the podcasts I listen to every day, thanks to a noisy subway ride.)

Closed captions also mean that you’ll be able to skip ahead to see what’s coming up later in a show. Eventually, you’ll be able to read real-time live transcriptions in the language of your choice, letting you “listen” to a podcast even if you don’t speak the same tongue as the host.

Google also wants to expand the number of people making podcasts. The company’s research showed that only one-quarter of podcast hosts are female, and even fewer are people of color. In an effort to diversify the field, Google formed an independent advisory board that will consider ways to promote podcast production outside of the handful of major metropolitan areas in the United States that currently dominate the field.

Google will not pay any creators to make podcasts directly, the company said, but it will likely explore ways of giving podcasts from underrepresented creators extra promotion. It’s also examining ways to make recording equipment more accessible to people who can’t afford it.

If you already listen to podcasts on Google Play Music, nothing will change today. But the company made it clear that it plans to focus its future efforts around podcasting in the standalone app.

The Android app can be downloaded here. There are currently no plans for an iOS app.

Continue Reading

Industry

HUAWEI MATE 20 PRO TIPPED TO SPORT A 6.9-INCH SAMSUNG OLED DISPLAY

Published

on

arlier this month, Huawei introduced the Watch 2 smartwatch with an eSIM and voice call support. Now, a new development claims that the company is procuring OLED displays from Samsung. The South Korean giant is said to have already sent out samples to Huawei, and if all goes well, full scale production is expected to start by Q3 2018. The smartphone to sport these 6.9-inch OLED panels is said to release sometime in the fourth quarter or even early 2019, and we largely expect to see them on the Huawei Mate 20 Pro.

South Korean media The Bell reports that Samsung is in the process of finalising samples with Huawei for its order of 6.9-inch OLED displays. These large-sized displays are usually seen on Huawei’s P series or Mate series. While the P30 series is not expected to arrive before MWC 2019, the Mate series traditionally arrives sometime in Q4. Furthermore, with the screen size being so large, we expect the Pro version to sport the 6.9-inch display, while the Mate 20 could sport a 6.1-inch or some such.

If Huawei is indeed bringing a 6.9-inch display smartphone, it should easily win the screen size battle, as the iPhone X Plus is expected to sport a 6.5-inch display, while the Samsung Galaxy Note 9 is expected to sport a 6.4-incher. These large sized displays are very popular in the Chinese market, and Huawei wants to meet expectations in its home market. Bigger screens are popular also because of the large text area used by the Chinese language, the report adds. Huawei wouldn’t want to lose its momentum in its biggest market by not staying ahead of its game.

Of course, all of this is based on sheer speculation, and we expect you to take everything with a pinch of salt, till Huawei makes things official.

 

 

Source: Gadget360

Continue Reading

Subscribe to Blog via Email

Enter your email address to subscribe to this blog and receive notifications of new posts by email.

Join 683 other subscribers

Advertisement

Trending

%d bloggers like this: