Home Blog Page 112

Iranian actor targets Mideast telecom and government sectors

Mohammed Fahad
-
0
Iranian actor targets Mideast telecom and government sectors
  • Collector of specialised tooling and passive backdoors for gaining initial access and remaining in critical networks for prolonged periods.
  • UNC1860 has crafted malware within the kernel of Windows, having very high-level access and control over the system.

The Iranian threat actor UNC1860, affiliated with the country’s Ministry of Intelligence (MOIS), is a collector of specialised tooling and passive backdoors for gaining initial access and remaining in critical networks for prolonged periods, Google’s Mandiant warns.

The Google-owned security firm has observed UNC1860 specialising in initial access provision. The actor uses specialised tools to compromise networks on behalf of other Iranian threat groups, targeting the telecommunications and government sectors in the Middle East.

Reportedly, UNC1860 was behind attacks in Israel in late October 2023, and Albania in 2022, providing initial access. UNC1860 collaborates with other MOIS-affiliated groups such as APT34.

Backdoor access

Previously, Check Point researchers shed light on another Iranian threat actor Void Manticore, that specialises in the destructive phase of the attacks, delivering payloads to erase critical information and corrupt systems.

Mandiant, in February this year, had said on a concerning trend of suspected espionage activities linked to Iranian actor UNC1549, which is believed to be associated with the threat group Tortoiseshell,  targeting the aerospace, aviation, and defense industries across several Middle Eastern nations, including Israel and the United Arab Emirates (UAE), with potential implications for Turkey, India, and Albania.

Tortoiseshell, which has established ties to Iran’s Islamic Revolutionary Guard Corps (IRGC), has previously engaged in efforts to compromise supply chains by focusing on defense contractors and information technology providers.

Mandiant identified the specialised tooling used by UNC1860. Malware controllers have a graphic user interface, suited to facilitate a hand-off to other threat groups.

Network detection solutions

Additionally, the threat actor maintains “an arsenal of utilities and collection of “main-stage” passive backdoors designed to gain strong footholds into victim networks and establish persistent, long-term access.

The collection reveals sophisticated reverse engineering capabilities. UNC1860 has crafted malware within the kernel of Windows, having very high-level access and control over the system.

It was repurposed from a legitimate Iranian anti-virus software filter driver. Two malware controllers for remote access to victim networks are tracked as TEMPLEPLAY and VIROGREEN.

“UNC1860 is a formidable threat actor that likely supports various objectives ranging from espionage to network attack operations,” Mandiant says.

“This actor’s adeptness in gaining initial access to target environments represents a valuable asset for the Iranian cyber ecosystem that can be exploited to answer evolving objectives as needs shift.”

Like many other threat actors specialising in initial access, UNC1860 was observed scanning IP addresses in an attempt to identify exposed vulnerabilities. Those were predominantly located in Saudi Arabia. UNC1860 relies on a command-line tool to validate credentials across multiple domains, they also target VPN servers.

The hackers are opportunistic and try to exploit vulnerable internet-facing servers. They deploy a suite of implants that are designed to be stealthier than common backdoors.

“These implants demonstrate the group’s keen understanding of the Windows operating system (OS) and network detection solutions, reverse engineering capabilities of Windows kernel components, and detection evasion capabilities.”

On compromised servers, UNC1860 selectively installs backdoors with GUI-operated controllers. These controllers can provide third-party actors, who have no prior knowledge about the target environment, with remote access to infected networks via Remote Desktop Protocol (RDP).

“These controllers additionally could provide third-party operators an interface that walks operators through how to deploy custom payloads and perform other operations such as conducting internal scanning and exploitation within the target network,” the report showed.

G42 and NVIDIA team up to set up Earth-2 Climate Tech Lab

Ana Mary Joseph
-
0
G42 and NVIDIA team up to set up Earth-2 Climate Tech Lab
  • By focusing on innovative weather forecasting solutions, the collaboration has potential to drive impactful change across various industries and ecosystems, ultimately contributing to a more sustainable future for the planet.

Microsoft-backed G42, an artificial intelligence company based in Abu Dhabi, has announced a strategic partnership with NVIDIA, a pioneer in accelerated computing.

The collaboration aims to enhance global weather forecasting through the application of advanced AI solutions, thereby addressing one of the most pressing challenges of our time: climate change.

At the core of this initiative is NVIDIA’s Earth-2 platform, which facilitates high-resolution simulations that augment climate and weather predictions.

Meteorological predictions

The partnership will initially concentrate on developing a weather forecasting model with a resolution of one square kilometre, significantly improving the accuracy of meteorological predictions.

This level of precision is crucial for various sectors, including agriculture, disaster management, and urban planning, where informed decision-making is essential.

A vital component of this collaboration is the establishment of the Earth-2 Climate Tech Lab in Abu Dhabi.

The state-of-the-art facility will serve as a research and development hub, reflecting both companies’ commitment to environmental sustainability.

By harnessing over 100 petabytes of geophysical data assets, the lab will create tailored climate and weather solutions, fostering innovation in the field.

Solving global challenges

Peng Xiao, Group CEO of G42, emphasises the importance of this initiative, stating, “This initiative with NVIDIA is a testament to our commitment to applying AI in ways that not only innovate but also solve critical global challenges.”

The Climate Tech Lab will not only advance technological solutions but also build a robust framework for integrating enhanced weather prediction capabilities with comprehensive data metrics and visualization tools.

The integration will empower organisations worldwide to achieve their sustainability goals through data-driven environmental strategies.

Jensen Huang, founder and CEO of NVIDIA, highlights the significance of the partnership, asserting that it represents a pivotal step toward utilizing AI to understand and predict climate phenomena with unprecedented accuracy. The collaboration aims to leverage the strengths of both companies to deliver transformative climate solutions that are scientifically accurate and applicable in real-world scenarios.

What are the benefits for customers and developers by opening up iOS?

Naushad K. Cherrayil
-
0
What are the benefits for customers and developers by opening up iOS?
  • While EU’s DMA is in effect, the actual changes Apple might have to make could take time as the EU works through specific implementations, challenges, and possible appeals from Apple.
  • EU could push Apple to allow more flexibility in choosing default apps.
  • Opening up iOS does introduce certain security risks, such as increased exposure to malware and less control over app permissions.

The European Union (EU) has taken steps that could potentially open up Apple’s iOS in significant ways through its regulatory frameworks, particularly via the Digital Markets Act (DMA).

The DMA, which came into force in November 2022, aims to prevent large tech companies—referred to as “gatekeepers”—from abusing their dominant positions in the market. Apple, with its iOS ecosystem, is considered one of these gatekeepers.

One of the most significant potential changes is forcing Apple to allow third-party app stores and sideloading (installing apps from sources other than the official App Store).

This would open iOS to more competition and reduce Apple’s control over app distribution, which could drastically change the way users’ access and install apps on iPhones and iPads.

The EU could push Apple to allow more flexibility in choosing default apps. Currently, iOS users are limited in selecting apps like browsers or email clients as defaults, with Apple favoring its own apps like Safari and Mail.

While the DMA is in effect, the actual changes Apple might have to make could take time as the EU works through specific implementations, challenges, and possible appeals from Apple.

EU’s Digital Markets Act (DMA) can bring significant benefits to both customers and developers and here are they?

Benefits for customers:

  1. More app choices: With the ability to sideload apps or use third-party app stores, customers would have access to apps that are not available or allowed in Apple’s App Store. This increases the variety and availability of apps, including those with niche functionalities that Apple might restrict for policy or business reasons.
  2. Lower costs: Developers who distribute their apps outside the App Store can avoid Apple’s 15 per cent-30 per cent commission on in-app purchases and subscriptions. These savings can be passed on to customers in the form of lower prices for apps and services.
    Competing app stores may offer more competitive pricing, discounts, or exclusive content, giving users more options.
  3. Greater Customisation: Customers could benefit from more flexibility in choosing default apps for functions like messaging, web browsing, and email. This would give users more control over their device’s software and functionality, much like what is available on Android.
  4. Improved app experience: By opening up more APIs and system integration options, developers could create more powerful, innovative, and seamless apps that better integrate with iOS features (e.g., deeper integration with Siri, more advanced widgets, or alternatives to Apple’s apps with greater functionality).
  5. Better interoperability: Cross-platform messaging and other services could become a reality if Apple is required to open its messaging systems (like iMessage) to work with other platforms, enhancing convenience for customers who communicate with users across different operating systems.
  6. Less vendor lock-in: By increasing flexibility and reducing restrictions, Apple users would no longer be as tightly locked into the Apple ecosystem. This would allow for easier switching between devices from different manufacturers without losing access to key apps or services.

Benefits for developers:

  1. More freedom in distribution: Developers could distribute their apps through third-party app stores or directly to customers without relying on Apple’s App Store. This would eliminate the need to comply with Apple’s stringent review guidelines, which often limit certain types of apps (like gaming, crypto, or adult content apps).
  2. Avoidance of commission fees: By bypassing the App Store, developers could avoid Apple’s 15 per cent-30 per cent commission on sales and in-app purchases. This allows developers to keep more of their revenue, which could help smaller developers or startups grow more quickly.
  3. Faster app updates and innovation: Without needing to go through Apple’s sometimes lengthy approval process, developers could release updates faster. This allows for quicker bug fixes, feature updates, and security patches, leading to a better overall user experience.
  4. Access to more iOS features: If iOS opens up more APIs and system features, developers could create apps with deeper system integration, allowing them to compete more effectively with Apple’s own apps. This could enable innovative features in areas like messaging, payments, or multimedia that are currently reserved for Apple’s apps.
  5. Level playing field: Apple’s App Store policies often give preferential treatment to its own apps (e.g., pre-installation, default app settings, etc.). Opening iOS levels the playing field, allowing third-party apps to compete more fairly in terms of visibility, functionality, and access to key features.
  6. Expanded market access: By allowing third-party app stores, developers might reach new audiences and market segments. Specialized or regional app stores could provide better access to certain geographic markets or communities with specific interests.

Both groups could benefit from a more open and diverse iOS ecosystem that fosters competition and innovation.

However, opening up iOS does introduce certain security risks, such as increased exposure to malware and less control over app permissions. Many of these risks can be mitigated through strong security policies, user education, and technical controls like sandboxing and app signing.

A well-balanced approach could give users and developers more freedom without compromising on the security and privacy that iOS is known for.

On Android, which allows sideloading and third-party app stores, Google Play Protect scans apps for malware, even those installed outside the Play Store.

Apple could implement a similar security framework for iOS, ensuring that sideloaded apps are scanned for malicious content before they are installed.

Apple could follow a controlled openness strategy, where users have more freedom to install apps from different sources, but with security safeguards in place.

EU wants Apple to open up its operating system

Naushad K. Cherrayil
-
0
EU wants Apple to open up its operating system
  • Says Apple must enhance interoperability with rival technologies, adhering to the stipulations outlined in the Digital Markets Act
  • The enforcement of the DMA aims not only to bolster competition but also to protect consumers’ rights in an increasingly interconnected technological ecosystem.

Apple has been put on notice by the European Union (EU) regarding its operating systems for the iPhone and iPad.

The EU has mandated that Apple must enhance interoperability with rival technologies, adhering to the stipulations outlined in the Digital Markets Act (DMA).

The directive serves as a clear indication of the EU’s commitment to fostering competition within the tech sector and ensuring that consumers benefit from a broader range of services.

The European Commission’s recent announcement grants Apple a six-month window to comply with these new requirements, aimed at enabling third-party developers greater access to essential Apple features, including Siri voice commands and payment systems.

Margrethe Vestager, the EU’s competition chief, emphasised the importance of effective interoperability, framing it as a critical component in the evolving digital landscape.

While the current action falls short of initiating a formal investigation, it highlights the EU’s readiness to enforce compliance through potential penalties, which could reach up to 10 per cent of Apple’s global annual sales if the company fails to align with the DMA’s obligations.

Apple’s response to the EU’s ultimatum reflects its longstanding dedication to user security. The company asserts that it has implemented measures for developers to seek increased interoperability while maintaining robust security protocols for its users.

Nonetheless, Apple underscores that any efforts to compromise its existing security architecture in pursuit of interoperability could jeopardize the safety of consumers across Europe.

The implications of this situation are noteworthy. Should Apple not adapt its practices, the EU may proceed with a formal investigation, further complicating the company’s already tumultuous relationship with regulatory authorities.

Apple is concurrently facing scrutiny regarding its App Store rules, which could lead to additional fines if found in violation of the DMA.

As Apple rolls out its latest iPhone model, the iPhone 16, the company is likely hoping that advancements in hardware and artificial intelligence will attract consumers despite the looming regulatory pressures.

However, the EU’s insistence on interoperability may reshape the competitive landscape, fostering an environment where consumer choice is prioritised over proprietary systems.

Sharjah and Microsoft to launch commercial AI licence

Ana Mary Joseph
-
0
Sharjah and Microsoft to launch commercial AI licence
  • FDI says the AI licence will play in accelerating investment processes into the emirate.
  • Strategy aligns with global trends where cities and regions are striving to establish themselves as leaders in technological innovation.

In a bold initiative to embrace the future of technology and business after Dubai and Abu Dhabi, Sharjah has announced the launch of the world’s first commercial artificial intelligence (AI) licence in partnership with Microsoft.

The groundbreaking step reflects Sharjah’s commitment to not only keeping pace with global economic trends but also positioning itself at the forefront of economies increasingly reliant on autonomous systems and digital data.

Under the auspices of the Sharjah Investment Forum, the initiative underscores the emirate’s vision to enhance its investment climate and serve as a hub for innovation.

Accelerating investment processes

Mohammed Juma Al Masharrkh, the CEO of the Sharjah Foreign Direct Investment (FDI) Office, emphasised the crucial role that this AI licence will play in accelerating investment processes into the emirate.

By facilitating the integration of AI technologies into various sectors, the initiative aims to streamline business operations and enhance efficiency, thereby attracting both local and international investors. In an era where digital transformation is rapidly altering the landscape of commerce, such measures are indispensable for fostering a competitive edge.

The announcement of the AI licence also resonates with Sharjah’s broader ambition to cultivate smart economies. The strategy aligns with global trends where cities and regions are striving to establish themselves as leaders in technological innovation.

Emirate’s proactive approach

By recognising the transformative potential of AI, Sharjah is not only prioritising its economic development but is also laying the groundwork for a sustainable and resilient economic future.

The partnership with a global technology leader like Microsoft further reinforces this commitment, providing the necessary expertise and resources to implement AI responsibly and effectively.

Moreover, it is noteworthy that Sharjah has been recognised as the fifth fastest-growing city for attracting foreign direct investment globally in 2023.

This accolade is a testament to the emirate’s proactive approach in creating a conducive environment for businesses to thrive. Sharjah’s strategic initiatives, including the launch of the AI licence, are pivotal in sustaining this growth trajectory.

The emirate is becoming increasingly attractive to international companies seeking a location that not only offers investment opportunities but also promotes innovation and technological advancement.

SK Hynix to dethrone Intel in sales for first time in third quarter

Mohammed Fahad
-
0
SK Hynix to dethrone Intel in sales for first time in third quarter
  • Nvidia forecast to maintain its dominant position with estimated quarterly sales of $28.1b, followed by Samsung with $21.7b and SK Hynix with $12.8b.

SK Hynix, a major South Korean chipmaker, is poised to dethrone Intel as the third-largest manufacturer by revenue for the first time in history.

According to market analysts at Omdia, SK hynix is projected to achieve remarkable revenue of $12.8 billion in the third quarter of 2024, surpassing Intel’s anticipated sales figures.

The shift represents a notable milestone, as it marks the first instance since Omdia began its revenue tracking in 2002 that SK hynix has outperformed Intel.

Intel, once a stalwart leader in the semiconductor sector, has faced numerous challenges in recent years. Despite its legacy and significant contributions to the technology industry, the company’s struggles to innovate and keep pace with competitors have led to a decline in its market position.

In contrast, SK hynix has capitalised on the surging demand for advanced technologies, particularly high-bandwidth memory chips, which have become crucial in an era increasingly dominated by artificial intelligence (AI) applications.

The AI boom has generated a robust appetite for high-performance computing resources, driving sales of high-value products. Analysts attribute SK hynix’s success primarily to its strategic positioning within this expanding market, highlighting its ability to respond swiftly to evolving industry demands.

The landscape of the semiconductor market is further illuminated by the performance of leading competitors such as Nvidia and Samsung Electronics. Nvidia, the US-based AI chip giant, is forecasted to maintain its dominant position with estimated quarterly sales of $28.1 billion.

Similarly,Samsung Electronics is expected to secure the second spot with record earnings of $21.7 billion in the same quarter, underscoring the competitive capabilities of South Korean firms in the semiconductor arena.

The market shares for Q3 2024 reflect a distinct hierarchy, with Nvidia, Samsung Electronics, and SK hynix projected to account for 16 per cent, 12.3 per cent, and 7.3 per cent of global chip sales, respectively.

The distribution indicates not only the aggressive growth of SK Hynix but also solidifies the presence of South Korean companies in a market traditionally dominated by American giants.

However, despite Nvidia’s impressive revenue growth of 15 per cent from the previous quarter and an astonishing 122 per cent year-on-year increase for the second quarter, the company faced a dip in share prices after the earnings announcement.

Analysts suggested that this decline was due to market expectations for even greater performance in the future rather than a reflection of Nvidia’s substantial achievements. This nuance highlights the challenges tech companies face in meeting increasingly lofty investor expectations, especially in a sector characterised by rapid innovation and competition.

1...111112113...273Page 112 of 273