Morrissey Technology

Loading

Archives Agustus 2024

Malware

There’s Dangerous Malware Hiding for Years on Google Play

Morrissey Technology – Security researchers at Kaspersky discovered malware, or rather spyware, called Mandrake hiding inside an application on Google Play. This spyware was found in crypto asset, astronomy and utility tools applications, which are available officially within Google Play. What’s worse, Mandrake has been available for two years and has been downloaded 32 thousand times.

The sample studied by Kaspersky featured advanced obfuscation and evasion techniques, allowing it to remain undetected by security vendors. Interestingly, Mandrake is not new spyware at all. Its action was first discovered in 2020 by BitDefender, which at that time discovered that this spyware infected in two large waves.

Applications compromised by Mandrake were first available on Google Play between 2016-2017, and then appeared again between 2018-2020. And, the ultimate ability of this spyware is that it can operate without being detected by Google, which can then infect large numbers of users, reaching hundreds of thousands of victims over four years. This espionage malware was then discovered again by Kaspersky researchers in April 2024 with more sophisticated capabilities.

“This new sample features advanced obfuscation and evasion techniques, including redirecting malicious functions to native obfuscated libraries using OLLVM, implementing certificate pinning for secure communication with command and control (C2) servers, and performing extensive checks to detect whether Mandrake is operating on rooted devices or in an emulated environment,” Kaspersky wrote.

The applications infiltrated by Mandrake this time were all published on Google Play in 2022. These applications are presented as file sharing applications via Wi-Fi, astronomy service applications, Amber for Genshin games, crypto asset applications, and applications with logic puzzles . As of July 2024, none of these apps had been detected as malware by any vendor, according to VirusTotal. Although it is no longer on Google Play, the app has been available for a long time, and was most downloaded in Canada, Germany, Italy, Mexico, Spain, Peru and the UK.

“After evading detection for four years in its initial version, the latest Mandrake campaign remained undetected on Google Play for another two years. This demonstrates the sophisticated skills of the threat actors involved. It also highlights a troubling trend: as restrictions and security checks tighten “As regulations become more stringent, the sophistication of threats that slip through official app stores increases, making them increasingly difficult to detect,” said Tatyana Shishkova, principal security researcher at Kaspersky’s GReaT (global research and analysis team).

https://hupack.com/-/for4d/

For4d

https://emservices.mx/

https://purenewsmag.com/

Situs Toto

https://sditalfirdausgedawang.sch.id/

Bandar Togel

https://cdn.org.br/

Microsoft

Microsoft Opens Up About the Real Cause of Azure and 365 Down

Morrissey Technology – Technology company Microsoft opened up about Microsoft 365 and Azure services being down for nine hours worldwide last Tuesday (30/7). It all turned out to be triggered by fake traffic or distributed denial-of-service (DDoS) cyber attacks.

The company based in Redmond, Washington DC, United States (US) said that it previously had a defense mechanism for DDoS attacks. However, from a temporary investigation into the DDoS defense that occurred this week, it actually strengthened the impact of the attack.

“Even though the initial trigger event was a Distributed Denial-of-Service (DDoS) attack, which activated our DDoS protection mechanisms,” said Microsoft’s official statement.

“Preliminary investigations indicate that errors in the implementation of our defenses amplified the impact of the attack rather than mitigating it.”

Microsoft’s security team is also working to understand DDoS, and mitigate its defenses.

“Once the nature of the usage spike was understood, we implemented network configuration changes to support our DDoS protection efforts, and failed over alternate network paths to provide relief,” the statement continued.

Previously the service outage due to the DDoS attack impacted Microsoft Entra, several Microsoft 365 and Microsoft Purview services (including Intune, Power BI, and Power Platform), as well as Azure App Services, Application Insights, Azure IoT Central, Azure Log Search Alerts, Azure Policy , and the Microsoft Azure Portal.

Microsoft said it plans to release a Initial Post-incident Review (PIR) within 72 hours and a Final Post-incident Review within the next two weeks, with additional details and learnings from this week’s outage. So far, Microsoft has stated that there have been no specific threats made by the perpetrators regarding this DDoS attack.

If we look back, in June 2023, Microsoft also confirmed that an actor known as Anonymous Sudan alias Storm-1359 carried out a DDoS attack which resulted in the outage of Azure, Outlook and the OneDrive web portal.

Additionally, early last July, tens of thousands of Microsoft 365 customers were impacted by another widespread outage. At that time, Microsoft said this was due to changes to the Azure configuration. Other major outages also affected Microsoft 365 services in July 2022 following an incorrect Enterprise Configuration Service (ECS) deployment and in January 2023 following a Wide Area Network IP change.

https://onlinecitycabs.com/

Meta

Meta Admits There is a Bug That Makes the IG Stories Archive Disappear

Morrissey Technology – On Wednesday (1/8) a number of Instagram users around the world said they were shocked because they received notifications that their uploads in the Stories feature archive had been permanently deleted and could not be restored. What is it?

“Certain photos have been permanently deleted from the app’s Stories archives, unable to be recovered,” the notification said.

Meta the digital company that oversees Instagram–admitted that there was a bug or error code that caused a number of users’ story archives to disappear. In an official statement, a Meta spokesperson last Wednesday said the bug could be anticipated.  Apart from that, he said that not all Instagram users experience this problem. Those who were found to be affected by the bug, he said, were the ones who then received notifications.

“We discovered and fixed a bug that was causing some people’s Story highlights and archives to be deleted. Unfortunately, we were unable to restore these Stories and we are notifying people in the app if they were impacted,” the Meta spokesperson said without explaining how many Instagram users who are affected.

Instagram Stories is a more relaxed and less binding form of posting on a user’s account. Users can upload photos, videos, or text posts that will disappear within 24 hours.

Additionally, more exclusive content can be included in a curated Close Friends list or can be permanently placed on your profile as a story highlight. Stories are different from regular posts, as they are often personalized with music, gifs, text, filters, and interactive features like polls or quizzes. Even though it can disappear within 24 hours, Instagram provides an archive feature that allows users to save one of their stories.

https://nourishingherbs.co.uk/

https://createxpro.com/

AMD

AMD Will Become an AI Chip Company, Similar to Nvidia

Morrissey Technology – Nvidia was originally known as a graphics chip manufacturing company, but now the majority of its revenue comes from AI chips. AMD seems to be following Nvidia’s steps. In AMD’s Q2 2024 financial report, it appears that half of AMD’s sales come from products for data centers, not chips for PCs, consoles, or for industry and motor vehicles. AMD’s data center business has doubled in a year, and this quarter its growth was driven by one chip, the AMD Instinct MI300 accelerator, which is a competitor to Nvidia’s H100 AI chip.

According to AMD CEO Lisa Su, from sales of this chip AMD earned more than UDS 1 billion in one quarter, as quoted by detikINET from The Verge, Wednesday (31/8/2024). From this it can be seen that AMD is following in the footsteps of Nvidia, which can reap huge profits from the H100 chip which is very popular for AI processing purposes. Now Nvidia even claims to release a new AI chip every year.

Likewise with AMD, which plans to release new AI chips every year. They have prepared the M1325X which will be available in Q4 2024, then the M1350 for 2025, and the MI400 for 2026. Lisa Su said the M1350 chip will be very competitive with the Nvidia Blackwell which was revealed to the public last March and is predicted to be the fastest AI chip in the world .

Even now, the M1300 chip is always sold out, meaning sales are in accordance with the chip’s production capacity. He also admitted that with the supply chain continuing to increase, chip supply will still be limited until 2025.

Despite following Nvidia’s steps, AMD’s data center business is still nothing compared to Nvidia. AMD’s revenue of “only” USD 2.8 billion is far less than Nvidia’s revenue which reached USD 22.6 billion in the same quarter. It should be noted, this income is also a new largest record for Nvidia.

AMD’s income from the PC business — CPU and GPU — also grew in Q2 2024. Ryzen CPU sales increased 49% year over year, as did Radeon 6000 GPUs which also rose. The decline actually came from chips for PlayStation and Xbox, which fell 59%.

https://ahada.org/

http://www.filmmakersnotebook.com/