Tea

The BBC, Premier League, and Sky have submitted a joint response to the UK investigation into Google's search dominance, calling for tougher anti-piracy measures. The rightsholders argue that Google's current efforts to combat piracy are insufficient to prevent piracy. They propose a "Know Your Customer" (KYC) requirement for advertisers and a transparent repeat infringer policy to address the issue.

• Researchers found messages advertising guns across 234 publicly accessible WhatsApp groups in India, which violates Meta’s policies prohibiting firearm sales.
• The names and descriptions of some groups contain references to gun sales, which can easily be monitored by WhatsApp.
• The company has faced similar allegations globally. Earlier studies found instances of firearms-related advertisements on Meta’s platforms in the U.S. and the European Union.

We understand that the effort required to build and maintain widgets needs to be justified by user adoption, that’s why we’ve designed these key improvements, which are coming soon to Google Play on Android phones, tablets and foldables:

• Dedicated Widgets Search Filter: Users can now directly search for apps with widgets using a dedicated filter on Google Play. This means your apps/games with widgets will be easily identified, helping drive targeted downloads and engagement.
• New Widget Badges on App Detail Pages: We’ve introduced a visual badge on your app’s detail pages to clearly indicate the presence of widgets. This eliminates guesswork for users and highlights your widget offerings, encouraging them to explore and utilize this capability.
• Curated Widgets Editorial Page: We're actively educating users on the value of widgets through a new editorial page. This curated space showcases collections of excellent widgets and promotes the apps that leverage them. This provides an additional channel for your widgets to gain visibility and reach a wider audience.

Distressing news and traumatic stories can cause stress and anxiety – not only in humans, but also in AI language models, such as ChatGPT. Researchers from the University of Zurich and the University Hospital of Psychiatry Zurich have now shown that these models, like humans, respond to therapy: an elevated “anxiety level” in GPT-4 can be “calmed down” using mindfulness-based relaxation techniques.

A court in Murcia, Spain, has ordered Google to testify in a criminal case concerning IPTV app, NewPlay. Football league LaLiga, whose matches were allegedly offered illegally through the app, previously called for the directors of Google, Apple, and Huawei to face criminal charges. LaLiga criticized the companies for failing to disable copies of NewPlay already installed on users' devices. Google and Huawei must now testify as 'profit-making participants' in an alleged piracy scheme.

On Monday, Microsoft Corp. is unveiling Microsoft Dragon Copilot, the first AI assistant for clinical workflow that brings together the trusted natural language voice dictation capabilities of DMO with the ambient listening capabilities of DAX, fine-tuned generative AI and healthcare-adapted safeguards. Part of Microsoft Cloud for Healthcare, Dragon Copilot is built on a secure modern architecture that enables organizations to deliver enhanced experiences and outcomes across care settings for providers and patients alike.

On Monday, Microsoft Corp. is unveiling Microsoft Dragon Copilot, the first AI assistant for clinical workflow that brings together the trusted natural language voice dictation capabilities of DMO with the ambient listening capabilities of DAX, fine-tuned generative AI and healthcare-adapted safeguards. Part of Microsoft Cloud for Healthcare, Dragon Copilot is built on a secure modern architecture that enables organizations to deliver enhanced experiences and outcomes across care settings for providers and patients alike.

• Rosetta 2 is Apple's translation technology for running x86-64 binaries on Apple Silicon (ARM64) macOS systems.
• Rosetta 2 translation creates a cache of Ahead-Of-Time (AOT) files that can serve as valuable forensic artifacts.
• Mandiant has observed sophisticated threat actors leveraging x86-64 compiled macOS malware, likely due to broader compatibility and relaxed execution policies compared to ARM64 binaries.
• Analysis of AOT files, combined with FSEvents and Unified Logs (with a custom profile), can assist in investigating macOS intrusions.

This article examines obfuscation techniques used in popular malware families, and offers some insights into possible opportunities for automating unpacking of these malware samples.

We will examine these behaviors in samples we have observed, showing how to extract their configuration parameters through unpacking each stage. Performing this same process through automation would allow a sandbox performing static analysis to extract crucial malware configuration parameters from such samples.

Malware authors increasingly use advanced obfuscation techniques to evade sandbox detection, enabling widespread distribution. Static analysis is a process performed by sandboxes for examining samples, without directly executing them.

Adversaries use the following techniques to deliver popular malware families like Agent Tesla, XWorm and FormBook/XLoader:

• Code virtualization
• Staged payload delivery
• Dynamic code loading to introduce new code at runtime
• Advanced Encryption Standard (AES) encryption
• Creating multi-stage payloads that are self-contained within the original sample