One of the first major problems took place with Android 10, as it restricted navigation gestures to stock launchers.
Note in 2019 in the beta release of Android 10, Google took away swipe gesture navigation and forced third party launchers to use the older 3 button navigation.
Because she either a sadist, a psychopath, and/or a narcissist.
Send her this article: Who Wants a Loud Car? [Psychology Today]
Tell her to get help.
Interesting way to play Exploding Kittens.
I don't know how all states operate but they have access to police reports that have your contact info. If it doesn't have your number then background reports.
These calls might be from lawyers. Check your mail and see if you are getting mail from lawyers. They are all trying to beat each other to get you to sign with them.
I wanted a Dick Tracy watch so badly. Tech just decided to skip all of that and put a screen on a watch. Boo.
What makes this worse is Google insists Android phones' microphone indicator is accurate. Looks like they are lying about that too.
I saw someone have a Snorlax bed on IG. I think they got the inspiration from the Totoro bed.
Is piped or invidious working for you?
The popular servers are down. Google put some kind of limit on them. I'm going to guess bandwidth limit.
Yes. I think a huge issue is Linux doesn't handle other app activities like how Android's Intent or Broadcast does.
When I say Linux phones, I mean selling a phone with Linux already or Linux ready, not taking existing phones with Android and putting Linux on them.
Examples:
Purism Librem 5
PinePhone Pro
Pro1 X
Volla Phone X23
My guess is that we need something more appealing like the Steam Deck to make people take the step.
Hear me out! The Steam Phone®!
There are Linux phones available. I,m going to guess popularity of those devices to increase soon.
depends on what version of Android but it should be similar.
Also do not delete or modify anything.
Go to Settings -> Network & Internet -> Internet -> (You Network Name Here)
Then click the down arrow for Advanced and under Network Details you will find IP Address.
This Network Details information might be useful later. Remember how you got to it.
Google, Meta, Microsoft, or ByteDance don't have this?!
ping is terminal or command line command.
It works in Windows, MacOS, and Linux.
Go open a terminal and type ping then a space, then the IP address of your Android device. If it connects it will give you a latency number. If it doesn't, it will tell you it is not reachable.
Windows stops the command at 4 I believe. In Linux and MacOS use CTRL + C to stop the command.
This was my first thought was the port number.
OP, ping the IP address of your Android device from your server. If not, you have a networking issue. If you can ping it, probably a settings issue.
Also, my Android phone was able to find my server automatically.
The types of data that may have been accessed by the unauthorized part include:
- Full name
- Physical address
- Credit card number
- Payment card expiration date
>Transport for London, the city's public transportation agency, revealed today that its staff has limited access to systems and email due to measures implemented in response to a Sunday cyberattack.
North Korean hackers target developers via LinkedIn job scams, spreading malware to infiltrate Web3 and crypto firms.
>"After an initial chat conversation, the attacker sent a ZIP file that contained COVERTCATCH malware disguised as a Python coding challenge," researchers Robert Wallace, Blas Kojusner, and Joseph Dobson said.
>The malware functions as a launchpad to compromise the target's macOS system by downloading a second-stage payload that establishes persistence via Launch Agents and Launch Daemons.
>American car rental giant Avis disclosed a data breach after attackers breached one of its business applications last month and stole customer personal information.
Retail employees are being duped into divulging their credentials by typosquatting malvertisements.
Tracked as CVE-2024-45195 and discovered by Rapid7 security researchers, this remote code execution flaw is caused by a forced browsing weakness that exposes restricted paths to unauthenticated direct request attacks.
The company issued a patch for the high-severity bug that allows arbitrary code execution.
Hackers are spoofing GlobalProtect VPN software using SEO poisoning to deliver WikiLoader malware in a new cyberattack.
>The malvertising activity, observed in June 2024, is a departure from previously observed tactics wherein the malware has been propagated via traditional phishing emails, Unit 42 researchers Mark Lim and Tom Marsden said.
Definitions:
Malvertising - Internet advertising whose real intention is to deliver malware to the PC when the ad is clicked.
>The U.S. Federal Trade Commission (FTC) has reported a massive increase in losses to Bitcoin ATM scams, nearly ten times the amount from 2020 and reaching over $110 million in 2023.
>Bitcoin ATMs are typically located in convenience stores, gas stations, and other busy areas, but instead of dispensing cash like the traditional ATMs they resemble, they allow you to buy and sell cryptocurrency.
Eight vulnerabilities in Microsoft macOS apps allow attackers to bypass permissions, gaining unauthorized access to sensitive data.
Cicada3301 ransomware targets SMBs, shares code with BlackCat, exploits vulnerabilities in Windows, Linux, and ESXi systems.
> Written in Rust and capable of targeting both Windows and Linux/ESXi hosts, Cicada3301 first emerged in June 2024, inviting potential affiliates to join their ransomware-as-a-service (RaaS) platform via an advertisement on the RAMP underground forum.
>Though D-Link acknowledged the security problems and their severity, it noted that they fall under its standard end-of-life/end-of-support policies, meaning there will be no security updates to address them.
>The popular Docker-OSX project has been removed from Docker Hub after Apple filed a DMCA (Digital Millennium Copyright Act) takedown request, alleging that it violated its copyright.
>Researchers Ian Carroll and Sam Curry discovered the vulnerability in FlyCASS, a third-party web-based service that some airlines use to manage the Known Crewmember (KCM) program and the Cockpit Access Security System (CASS). KCM is a Transportation Security Administration (TSA) initiative that allows pilots and flight attendants to skip security screening, and CASS enables authorized pilots to use jumpseats in cockpits when traveling.
Definitions:
SQL injection is a code injection technique used to attack data-driven applications, in which malicious SQL statements are inserted into an entry field for execution.
>North Korean hackers have exploited a recently patched Google Chrome zero-day (CVE-2024-7971) to deploy the FudModule rootkit after gaining SYSTEM privileges using a Windows Kernel exploit.
>Citrine Sleet targets financial institutions, focusing on cryptocurrency organizations and associated individuals, and has been previously linked to Bureau 121 of North Korea's Reconnaissance General Bureau.
Russia's Midnight Blizzard infected Mongolian government websites to try to compromise the devices of visitors, using watering-hole tactics.
>In the watering-hole attacks, threat actors infected two websites, cabinet.gov[.]mn and mfa.gov[.]mn, which belong to Mongolia's Cabinet and Ministry of Foreign Affairs. They then injected code to exploit known flaws in iOS and Chrome on Android, with the ultimate goal of hijacking website visitors' devices.
Definitions:
Watering hole is a computer attack strategy in which an attacker guesses or observes which websites an organization often uses and infects one or more of them with malware. Eventually, some member of the targeted group will become infected.
Whereas zero-days are a class of vulnerability that is unknown to a software developer or hardware manufacturer, an N-day is a flaw that is already publicly known but may or may not have a security patch available.
cross-posted from: https://infosec.pub/post/16863645
> This relatively new ransomware-as-a-service (RaaS) operation extorts victims in exchange for not leaking stolen files and sells the documents to the highest bidder if negotiations fail. The ransomware group focuses on data-theft-based extortion rather than encrypting victims' files, although they were also identified as potential buyers of Knight ransomware source code. > > Since the start of the year, RansomHub has claimed responsibility for breaching American not-for-profit credit union Patelco, the Rite Aid drugstore chain, the Christie's auction house, and U.S. telecom provider Frontier Communications. Frontier Communications later warned over 750,000 customers their personal information was exposed in a data breach.
This relatively new ransomware-as-a-service (RaaS) operation extorts victims in exchange for not leaking stolen files and sells the documents to the highest bidder if negotiations fail. The ransomware group focuses on data-theft-based extortion rather than encrypting victims' files, although they were also identified as potential buyers of Knight ransomware source code.
Since the start of the year, RansomHub has claimed responsibility for breaching American not-for-profit credit union Patelco, the Rite Aid drugstore chain, the Christie's auction house, and U.S. telecom provider Frontier Communications. Frontier Communications later warned over 750,000 customers their personal information was exposed in a data breach.
Today, the Cybersecurity and Infrastructure Security Agency (CISA) announces its cyber incident reporting form moved to the new CISA Services Portal as part of its ongoing effort to improve cyber incident reporting.
