Connect with us

TECHNOLOGY

Andariel, a Lazarus subgroup, expands its attacks with new ransomware 

August 10, 2022 7:57 p.m.

Kaspersky experts have uncovered new attacks by Andariel, an advanced persistent threat (APT) subgroup of Lazarus, known for its campaigns in South Korea.

The attacks involved modifications of the well-known malware, DTrack, as well as the use of a brand-new Maui ransomware. They targeted high-profile organizations in the USA, Japan, India, Vietnam, and Russia.

Andariel has operated for over a decade within the infamous Lazarus group, and Kaspersky researchers identified an interesting incident in Japan involving a never-before-seen Maui ransomware. However, in 2022, the group continued expanding its malware arsenal and the geography of its attacks. As CISA reported in July 2022, Andariel affected public and healthcare organizations with the Maui ransomware. Following their research, Kaspersky experts have revealed a thorough analysis of the APT group. 

It shows that Andariel deploys a well-known DTrack malware, which executes an embedded shellcode, loading a final Windows in-memory payload. According to Kaspersky Threat Attribution Engine, this spyware was reportedly created by the Lazarus Group and is being used to upload and download files to victims’ systems, record keystrokes and conduct other actions typical of a malicious remote administration tool (RAT). DTrack collects system information and browser history via Windows commands. Interestingly, dwell time within target networks can last for months prior to activity. 

The novel malware used by Andariel in 2021 and 2022 has been dubbed Maui ransomware. Kaspersky experts identified its launch after DTrack was deployed within an organization. Maui has been employed for attacks on multiple occasions, primarily targeting companies in the USA and Japan. Kaspersky researchers have assessed that the actor is opportunistic and may compromise any company around the world regardless of their category of business, instead focusing on their good financial standing. 

“We’ve been tracking the Andariel APT group for years and see that their attacks are constantly evolving. What requires special attention is that the group has started deploying ransomware on a global scale, demonstrating ongoing financial motivations and interest,”’ comments Kurt Baumgartner, a security expert at Kaspersky.

To learn more about Maui ransomware and other malware used by Andariel, read the report on Securelist.com 

To protect yourself and your business from ransomware attacks, consider following these Kaspersky recommendations: 

  • Do not expose remote desktop services (such as RDP) to public networks unless absolutely necessary and always use strong passwords for them.
  • Promptly install available patches for commercial VPN solutions, providing access for remote employees and acting as gateways in your network.
  • Always keep software updated on all the devices you use to prevent ransomware from exploiting vulnerabilities.
  • Focus your defense strategy on detecting lateral movements and data exfiltration to the Internet. Pay special attention to outgoing traffic to detect cybercriminals’ connections.
  • Back up data regularly. Make sure you can quickly access it in an emergency when needed. 
  • Use solutions like Kaspersky Endpoint Detection and Response Expert and Kaspersky Managed Detection and Response service, which help identify and stop attacks during the early stages, before attackers reach their final goals.
  • Educate your employees to protect the corporate environment. Dedicated training courses can help, such as the ones provided in the Kaspersky Automated Security Awareness Platform.
  • Use a reliable endpoint security solution, such as Kaspersky Endpoint Security for Business, that is powered by exploit prevention, behavior detection and a remediation engine that is able to roll back malicious actions. KESB also has self-defense mechanisms, which can prevent its removal by cybercriminals.
  • Use the latest Threat Intelligence information to stay aware of actual TTPs used by threat actors. The Kaspersky Threat Intelligence Portal is a single point of access for Kaspersky’s TI, providing cyberattack data and insights gathered by our team for almost 25 years. To help businesses enable effective defenses in these turbulent times, Kaspersky has announced access to independent, continuously updated and globally sourced information on ongoing cyberattacks and threats, at no charge. Request access to this offer here.

TECHNOLOGY

Go beyond galaxy to witness real Magic on June 8

May 23, 2023, 5:42 p.m.

Launched at the Mobile World Congress 2023 earlier this year, the leading technology brand HONOR Philippines today dropped the release date of HONOR Magic5 Pro in the country.

As the latest iteration of the HONOR Magic Series line-up, the all-new HONOR Magic5 Pro boasts significant breakthroughs in design, display, photography and performance, beating several industry benchmarks to deliver the superb flagship smartphone on the market today.

Continuing the strong legacy of its flagship predecessors, the HONOR Magic5 Pro adopts enhanced hardware with discrete chipsets, and advanced technologies, combining the best software solutions to deliver a superior flagship that is a class apart.

To make a mark of its superb specs, HONOR linked up with the official Guinness World Records to snap a successful attempt at doing the highest between-the-legs slam dunk.  Poland’s Piotr Grabowski achieved the feat at a facility in London in January 2023, and HONOR was there with the upcoming HONOR Magic5 Pro flagship to capture it.

Right after its global release, the HONOR Magic5 Pro has seized the #1 position in the DXOMARK Smartphone Display ranking for the first quarter of 2023.  It is also highly recognized during MWC 2023, receiving awards from various tech authorities.

HONOR Magic5 Pro will be officially launched on June 8, 2023 and you can catch it live on HONOR Philippines’ Facebook Page (https://fb.me/e/T11UD2VR).

For more updates and announcements, you may visit HONOR’s website www.hihonor.com or social media platforms: Facebook (Facebook.com/HonorPhilippines), Instagram (Instagram.com/honorphilippines/) and TikTok: (Tiktok.com/@honorphilippines). To check out HONOR’s complete list of retail stores, go to https://www.hihonor.com/ph/retailers/.

Continue Reading

TECHNOLOGY

Selling your verified digital wallet? Think again

May 19, 2023 9:29 p.m.

THE recent spate of selling and even rental of verified digital wallets in the country should not be taken lightly. It is, in fact, alarming because its owners or account holders risk losing their identities with far-reaching consequences, according to cybersecurity and digital privacy company Kaspersky. 

Since 2022, the local media have been reporting various apprehensions by police authorities of individuals allegedly involved in buying and selling of verified digital wallet accounts. Registered SIM accounts with verified digital wallet accounts are currently being bought for P350 each. On social media, the rates even go as low as P150 per account. These are then sold for an average of P600-P800 each. 

This kind of transaction is a cybercrime offense under Philippine laws. If proven guilty, both seller and buyer are up for some jail time and penalties from P100,000 to P500,000. 

But what’s stored in a digital wallet? 

A digital wallet is usually loaded with personal details of its owner such as full name, date of birth, nationality, phone number, email address, and mailing address. Once verified by the digital wallet company as a legitimate account, all financial transactions can be performed within the digital wallet app. 

The transaction limit varies but the maximum amount that can be received or sent per account is as high as P500,000, bypassing the use of credit and debit cards that are regulated and normally require security checks. 

Mobile digital wallets are a popular alternative financial service among Filipinos. Unfortunately, some digital wallet users think that selling their account isn’t really a big issue. They believe their accounts are not tied to any bank accounts with a lot of funds so there is nothing to extort from them. And getting a new SIM is cheap and easy and verifying their digital wallet accounts is hassle-free. 

“We’ve witnessed how the Filipinos embraced the cashless lifestyle during the pandemic, out of necessity. The ease of access and convenience of digital wallets made everyone quite comfortable, with some now selling, renting out or even loaning their verified accounts. By doing so, cybercriminals do not need to put much effort into phishing anymore as Filipinos are practically giving away their personal data for a song, which is really dangerous,” says Yeo Siang Tiong, General Manager for Southeast Asia at Kaspersky.

“As sellers or lenders of their own digital wallet accounts, not only would they get into trouble with the law. Losing their identities is also very likely especially when their data gets into the hands of scammers. With enough information from you, scammers can already set up other financial accounts using your name and use your identity to benefit them. Possible scenarios would be getting harassed by a collection agent for a debt you’ve never owed. It could also mean losing out on job or education opportunities just because your name appeared with an unpleasant digital profile when searched,” adds Yeo. 

What other damage can data thieves do? 

By selling your verified digital wallet, you are essentially handing out your data to cybercriminals and helping them carry out their evil activities.

With your confidential information in their hands, data thieves can:

  1. Make purchases on your behalf
  2. Use your personal details in online gaming. Cybercriminals use stolen identities for doxing (publishing your home address and phone number online for profit, fun, or humiliation) and swatting (reporting a fake emergency to law enforcement agencies to come to your place to intimidate you) 
  3. Use your personal information in online gambling. Fraudsters create networks of thousands of synthetic accounts, normally using stolen personal data and credit card information to accumulate bonus points and redeem their “winnings”. This particular type of fraud is extremely common in online poker and blackjack, where the result can be manipulated through game strategy.  
  4. Add themselves or an alias they can control as an authorized user so it’s easier to use your credit. 
  5. Use and abuse your Social Security number. Scammers may be able to take out loans and claim benefits under your name. 
  6. You may be banned from using the services of your favorite digital wallet company if your name appears to have availed of its loan services and that you cannot pay. 
  7. Sell your information to others who will use it for malicious purposes. Buying and selling of stolen personal information is big business on the dark web, the non-visible Web that can be accessed only by a specialized browser where cybercriminals provide illegal services to one another. Back in 2018, data from Kaspersky showed that criminals can sell someone’s complete digital life in the dark web for less than $50 (or P2,761, today’s forex). In 2020, the cybersecurity company shared that personal identity details such as full name, date of birth, email and mobile can fetch from $0.5 to $10 each (or P27.62 to P552.33).

Is there still a way to save your stolen identity? 

Once you have handed over your SIM account with your personal data in it, it is not easy to undo it. Experts suggest replacing your email address and telephone address as well as changing all affected passwords in all of your social media and financial accounts. If you believe you have been victimized by identity fraud, you can lodge a complaint through the Cybercrime Investigation and Coordinating Center (CICC) here. 

How else to protect yourself from identity theft?

  1. Keep data to a “need-to-know” basis. If someone is asking for your personal information, ask why they need it and how they will use it. 
  2. Bank safely. Make sure that you log into financial websites using a secure connection all the time.
  3. Know who you’re dealing with. If you are requested for your personal or financial information, find out who they are, what company they represent, and the reason for the request. Contact the company to confirm before disclosing any of your personal data. 
  4. Secure the data in your device. Use a security software to maximize your online safety, whether you transact using your personal details on your laptop, PC or mobile phone. 

Continue Reading

TECHNOLOGY

Infinix incorporates Sound by JBL to bring high-quality audio to next level of smartphones

May 18, 2023 2:09 p.m.

Shanghai  – Infinix today announces its new collaboration with HARMAN’s legendary audio and technology brand, JBL, to bring Sound by JBL audio excellence to the next generation of their highly-regarded NOTE Series. At Infinix, the user experience is a top priority, and sound quality plays a fundamental role in that experience. Together with the 75-year legacy of acoustic quality and expertise that the brand is renowned for, the upcoming release of the NOTE Series will be enhanced by the Sound by JBL tuning along with the latest innovations from Infinix.

Users can look forward to an upgraded audio experience in the next generation of Infinix’s NOTE Series, thanks to this exciting new collaboration with JBL. Stay tuned for more information on the release date and features of the new series.

SoundbyJBL.jpg

“We’re incredibly excited about our collaboration with the JBL brand here at Infinix. Our hardware expertise combined with JBL’s acoustic technology means we can provide an enhanced audio experience to customers worldwide. With a device that delivers upgraded sound quality, we’re confident we’re in exceeding users’ expectations.” – Liang Zhang, Deputy General Manager at Infinix.

Integrated with JBL Tech

When building the NOTE Series, Infinix collaborated closely with JBL engineers to optimize the software system of their new generation NOTE Series. The software processing within the Note series was tuned to deliver JBL’s signature sound that ensures well-balanced mid-tones as well as rich bass, along with  high-quality and faithful sound reproduction.

Incorporating advanced audio processing engineered and perfected by JBL, the new Note Series with Sound by JBL will deliver enhanced audio with distortion-free volume, deeper bass and JBL’s signature sound that users will enjoy, especially when listening to music or watching videos. This technological breakthrough demonstrates Infinix and JBL’s commitment to providing innovative products with superior sound quality.

“The JBL brand is all about delivering the fullest sound experience, and we are therefore extremely proud to collaborate with the Infinix team to deliver superior audio through Sound by JBL. Rooted in a shared passion for sound, we know the Infinix team is committed to audio excellence in their mobile devices, and we will continue to work together bringing upgraded sound quality to more consumers as we look forward to deepening our cooperation with Infinix for more product development.” –  Roumu Hu, Vice President and General Manager, HARMAN Embedded Audio.

Comingsoon.jpg

Availability

Infinix intends to introduce this new technology in their upcoming phone models, starting with the next release of the NOTE series. The launch is scheduled for May, so customers can look forward to experiencing the enhanced sound quality of this innovative technology very soon.


Infinix Incorporates Sound by JBL to Bring
High-Quality Audio to the Next Level of Smartphones

Shanghai, May 17, 2023 – Infinix today announces its new collaboration with HARMAN’s legendary audio and technology brand, JBL, to bring Sound by JBL audio excellence to the next generation of their highly-regarded NOTE Series. At Infinix, the user experience is a top priority, and sound quality plays a fundamental role in that experience. Together with the 75-year legacy of acoustic quality and expertise that the brand is renowned for, the upcoming release of the NOTE Series will be enhanced by the Sound by JBL tuning along with the latest innovations from Infinix.

Users can look forward to an upgraded audio experience in the next generation of Infinix’s NOTE Series, thanks to this exciting new collaboration with JBL. Stay tuned for more information on the release date and features of the new series.

SoundbyJBL.jpg

“We’re incredibly excited about our collaboration with the JBL brand here at Infinix. Our hardware expertise combined with JBL’s acoustic technology means we can provide an enhanced audio experience to customers worldwide. With a device that delivers upgraded sound quality, we’re confident we’re in exceeding users’ expectations.” – Liang Zhang, Deputy General Manager at Infinix.

Integrated with JBL Tech

When building the NOTE Series, Infinix collaborated closely with JBL engineers to optimize the software system of their new generation NOTE Series. The software processing within the Note series was tuned to deliver JBL’s signature sound that ensures well-balanced mid-tones as well as rich bass, along with  high-quality and faithful sound reproduction.

Incorporating advanced audio processing engineered and perfected by JBL, the new Note Series with Sound by JBL will deliver enhanced audio with distortion-free volume, deeper bass and JBL’s signature sound that users will enjoy, especially when listening to music or watching videos. This technological breakthrough demonstrates Infinix and JBL’s commitment to providing innovative products with superior sound quality.

“The JBL brand is all about delivering the fullest sound experience, and we are therefore extremely proud to collaborate with the Infinix team to deliver superior audio through Sound by JBL. Rooted in a shared passion for sound, we know the Infinix team is committed to audio excellence in their mobile devices, and we will continue to work together bringing upgraded sound quality to more consumers as we look forward to deepening our cooperation with Infinix for more product development.” –  Roumu Hu, Vice President and General Manager, HARMAN Embedded Audio.

Comingsoon.jpg

Availability

Infinix intends to introduce this new technology in their upcoming phone models, starting with the next release of the NOTE series. The launch is scheduled for May, so customers can look forward to experiencing the enhanced sound quality of this innovative technology very soon.

Continue Reading