Times Top News

Times Top News

Scathing federal report rips Microsoft for shoddy security, insincerity

Scathing federal report rips Microsoft for shoddy security, insincerity

by | Apr 3, 2024 | Technology


Microsoft noted in its statement that the hackers involved are well-resourced nation state threat actors who operate continuously and without meaningful deterrence | (Photo: Reuters)


In a scathing indictment of Microsoft corporate security and transparency, a Biden administration-appointed review board issued a report Tuesday saying a cascade of errors by the tech giant let state-backed Chinese cyber operators break into email accounts of senior US officials including Commerce Secretary Gina Raimondo.


The Cyber Safety Review Board, created in 2021 by executive order, describes shoddy cybersecurity practices, a lax corporate culture and a lack of sincerity about the company’s knowledge of the targeted breach, which affected multiple US agencies that deal with China.


It concluded that Microsoft’s security culture was inadequate and requires an overhaul given the company’s ubiquity and critical role in the global technology ecosystem. Microsoft products underpin essential services that support national security, the foundations of our economy, and public health and safety.


The panel said the intrusion, discovered in June by the State Department and dating to May was preventable and should never have occurred, blaming its success on a cascade of avoidable errors. What’s more, the board said, Microsoft still doesn’t know how the hackers got in.


The panel made sweeping recommendations, including urging Microsoft to put on hold adding features to its cloud computing environment until substantial security improvements have been made.


It said Microsoft’s CEO and board should institute rapid cultural change including publicly sharing a plan with specific timelines to make fundamental, security-focused reforms across the company and its full suite of products.


In a statement, Microsoft said it appreciated the board’s investigation and would continue to harden all our systems against attack and implement even more robust sensors and logs to help us detect and repel the cyber-armies of our adversaries.


In all, the state-backed Chinese hackers broke into the Microsoft Exchange Online email of 22 organisations and more than 500 individuals around the world including the US ambassador to China, Nicholas Burns accessing some cloud-based email boxes for at least six weeks and downloading some 60,000 emails from the State Department alone, the 34-page report said. Three think tanks and four foreign government entities, including Britain’s National Cyber Security Centre, were among those compromised, it said.


The board, convened by Homeland Security Secretary Alejandro Mayorkas in August, accused Microsoft of making inaccurate public statements about the incident including issuing a statement saying it believed it had determined the likely root cause of the intrusion when, in fact, it still has not. Microsoft did not update that misleading blog post, published in September, until mid-March after the board repeatedly asked if it planned to issue a correction, it said.


Separately, the board expressed concern about a separate hack disclosed by the Redmond, Washington, company in January this one of email accounts including those of an undisclosed number of senior Microsoft executives and an undisclosed number of Microsoft customers and attributed to state-backed Russian hackers.


The board lamented a corporate culture that deprioritised both enterprise security investments and rigorous risk management.


The Chinese hack was initially disclosed in July by Microsoft in a blog post and carried out by a group the company calls Storm-0558. That same group, the panel noted, has been engaged in similar intrusions compromising cloud providers or stealing authentication keys so it can break into accounts since at least 2009, targeting companies including Google, Yahoo, Adobe, Dow Chemical and Morgan Stanley.


Microsoft noted in its statement that the hackers involved are well-resourced nation state threat actors who operate continuously and without meaningful deterrence.


The company said it recognises that recent events have demonstrated a need to adopt a new culture of engineering security in our own networks, adding it has mobilised our engineering teams to identify and mitigate legacy infrastructure, improve processes, and enforce security benchmarks.

(Only the headline and picture of this report may have been reworked by the Business Standard staff; the rest of the content is auto-generated from a syndicated feed.)

First Published: Apr 03 2024 | 8:19 AM IST



Source link

Amazon offers free credits for startups to use AI models like Anthropic

Amazon offers free credits for startups to use AI models like Anthropic

by | Apr 2, 2024 | Technology


Howard Wright, vice president and global head of startups at AWS (Photo posted on Linkedin by @howard-wright-10b81584)


Amazon Web Service (AWS) has expanded its free credits program for startups to cover the costs of using major AI models, the company told Reuters in an interview, as it looks to boost the market share of its AI platform Bedrock.

 


In a move to attract startup customers, Amazon now allows its cloud credits to cover the use of models from other providers including Anthropic, Meta, Mistral AI, and Cohere.

 


“This is another gift that we’re making back to the startup ecosystem, in exchange for what we hope is startups continue to choose AWS as their first stop,” said Howard Wright, vice president and global head of startups at AWS.

 


The move followed Amazon’s now-completed $4 billion investment in Anthropic in convertible notes. As part of the deal, Anthropic will use AWS as its primary cloud provider, and Trainium and Inferentia chips to build and train its models.

 


Wright said Amazon’s free credit will contribute to revenue of Anthropic, one of the most popular models on Bedrock.

 


“That’s part of the ecosystem building. We are unapologetic about that,” he said, adding that AWS offers a wide range of choices and security to startups.

 


Amazon said it has offered over $6 billion in credits to startups in the past decade.

 


In a partnership with Y Combinator, it’s offering $500,000 in credits for the latest cohort launched in January, which can be used on AI models and Amazon’s chips. The cost of using AI, based on usage, could pile up for startups.

 


Amazon is not alone among major cloud providers in providing free credits to lure AI startups. Microsoft Azure gives out credits that can be used for OpenAI’s models, while Google’s cloud credit can be applied for over 130 models on Vertex AI.

 


Big tech’s investments in AI startups have drawn scrutiny from regulators, as the U.S. Federal Trade Commission (FTC)opened an inquiry on Microsoft’s backing of OpenAI, as well as Google and Amazon’s investment in Anthropic.

First Published: Apr 02 2024 | 11:38 PM IST



Source link

Google agrees to delete web browsing data as it settles 'incognito' lawsuit

Google agrees to delete web browsing data as it settles 'incognito' lawsuit

by | Apr 2, 2024 | Technology


While the plaintiffs asked for $5 billion in damages, the settlement includes no payment from Google. Photo: Bloomberg


By Davey Alba


Google said it would delete millions of records of users’ browsing activities as part of a settlement of a class-action lawsuit that alleged it tracked people without their knowledge. 

 


The case, filed in 2020, alleged the Alphabet Inc. unit surreptitiously collected data from people using its popular Chrome web browser in a private “incognito” browsing mode. While that function lets users turn off data collection when using the Chrome browser, other Google tools used by websites, such as advertising technology, scoop up their data anyway, according to the suit.


Google, which agreed to settle in December, will expunge “billions” of data records that reflect people’s private browsing, according to details that were made public Monday in a filing at San Francisco federal court. Google also said it made several changes to its disclosures to clarify how people’s data is collected as well as what activity is visible to websites when users browse in “incognito” mode. And the company agreed for the next five years to allow incognito mode users to block third-party cookies.


“We are pleased to settle this lawsuit, which we always believed was meritless,” Jose Castaneda, Google spokesperson, said in a statement. “We never associate data with users when they use incognito mode. We are happy to delete old technical data that was never associated with an individual and was never used for any form of personalization.”


While the plaintiffs asked for $5 billion in damages, the settlement includes no payment from Google. Instead, individuals will be able to pursue damages by filing their own complaints against Google in US state courts, according to court papers. About 50 people have already done so, plaintiffs’ lawyers said.


The plaintiffs’ lawyers, led by attorney David Boies, called the settlement “groundbreaking” and a “historic step” in requiring big tech companies to be transparent to users about how they collect and use their data. Google’s agreement to retroactively delete user information is a significant concession as it forms the backbone of the company’s lucrative advertising business, which depends on the quality of its search engine. It also comes as Google is in the throes of multiple regulatory challenges in the US and abroad, amid rising concerns about how the tech giants use the vast amounts of data they collect from users.


“There has been a steady drumbeat of complaints, lawsuits, and regulatory action centered on companies collecting or sharing customer data in unexpected ways,” said Stephanie Liu, a senior analyst at Forrester. “The rise of privacy-oriented class action lawsuits and complaints shows consumers are increasingly privacy savvy and taking action.”


The settlement provides “substantial relief” for plaintiffs, according to representatives of the consumers in the lawsuit, which include attorneys from the law firms Boies Schiller Flexner and Morgan & Morgan.


The settlement also forestalled a trial that was scheduled for February, in a year that’s expected to be one of Google’s busiest in the courts. A jury trial in a lawsuit from the US Justice Department and a coalition of state attorneys general accusing the company of violating antitrust regulations by illegally monopolizing digital advertising is slated for September, and a similar lawsuit from Texas and other states challenging its ad tech practices has been scheduled for March 2025. 


In a third case, a US judge in Washington is set to hear closing arguments in May for a landmark federal antitrust trial that alleges the company has illegally monopolized the online search market.  

First Published: Apr 02 2024 | 8:24 PM IST



Source link

Realme 12x budget 5G smartphone launched in India: Price, specs, and more

Realme 12x budget 5G smartphone launched in India: Price, specs, and more

by | Apr 2, 2024 | Technology


Chinese smartphone brand Realme launched the Realme 12x 5G smartphone in India on April 2. Powered by the MediaTek Dimensity 6100+ chipset, the smartphone boasts a 5,000mAh battery, 45W SUPERVOOC charging, and fullHD resolution display of 120Hz refresh rate. The smartphone is offered in Twilight Purple and Woodland Green colours. Below are the details:


Realme 12x: Variants and pricing


  • 4GB RAM + 128GB storage: Rs 11,999


  • 6GB RAM + 128GB storage: Rs 13,499


  • 8GB RAM + 128GB storage: Rs 14,999


Realme 12x: Availability and introductory offers


The Realme 12x will be available during the early bird sale on April 2 from 6PM to 8PM, and during special sale on April 5 from 12PM to 2PM on the company’s official website and e-commerce platform Flipkart.


Customers purchasing the 4GB + 128GB and 6GB + 128GB variants of the Realme 12x smartphone can avail discounts up to Rs 1,000 on ICICI, SBI and HDFC bank cards. For the 8GB + 128GB variant, customers can avail cashback of Rs 1,000 in the mainline stores during open sale.


Realme 12x: Specifications


  • Display: 6.72-inch FHD+ LCD display, 120Hz refresh rate, 800 nits peak brightness


  • Processor: MediaTek Dimensity 6100+ chipset


  • RAM: 4GB / 6GB / 8GB


  • Storage: 128GB


  • Rear camera: 50MP Primary + 2MP depth


  • Front camera: 8MP


  • Battery: 5,000 mAh


  • Charging: 45W SUPERVOOC wired


  • OS: realme UI 5.0 Based on Android 14


  • Support: Two years of OS update and three years of security update


  • Weight: 188g


  • Thickness: 7.69mm


  • Protection: Panda Glass


 


 


 

First Published: Apr 02 2024 | 5:20 PM IST





Source link

Samsung unveils Galaxy M55 and M15 5G phones, sets India launch for April 8

Samsung unveils Galaxy M55 and M15 5G phones, sets India launch for April 8

by | Apr 2, 2024 | Technology


Samsung Galaxy M55 and Galaxy M15

After Brazil, Samsung is bringing the Galaxy M55 and Galaxy M15 5G smartphones to India on April 8. In a press note announcing the India launch date, the Indian arm of the South Korean electronics maker confirmed a few details about both the upcoming 5G smartphones in its millennial-focused Galaxy M-series line.


Samsung said the Galaxy M55 5G smartphone will be powered by the Qualcomm Snapdragon 7 Gen 1 system-on-chip and will be offered in Light Green and Denim Black colours. The Galaxy M15 will be powered by the MediaTek Dimensity 6100+ SoC and will be offered in Celestine Blue, Stone Grey and Blue Topaz.


Samsung Galaxy M55 5G: Specifications


The Galaxy M55 5G smartphone will sport a 6.7-inch super AMOLED FHD+ display of 120Hz refresh rate with 1000 nits peak brightness level. The smartphone will sport a triple-camera setup at the back, featuring a 50-megapixel main camera sensor, an 8MP ultra-wide-angle camera sensor, and a 2MP macro camera sensor.


  • Display: 6.7-inch Super AMOLED display, FHD+ resolution, 120Hz refresh rate


  • Processor:  Qualcomm Snapdragon 7 Gen 1


  • RAM: 8GB


  • Storage: up to 256GB


  • Rear Camera: 50MP primary sensor, 8MP ultra-wide angle, 2MP macro


  • Front camera: 50MP


  • Battery: 5,000mAh battery


  • OS: OneUI 6.1 based on Android 14


  • Weight: 180g


  • Thickness: 7.8mm


Samsung Galaxy M15 5G: Specifications


The Galaxy M15 5G smartphone will sport a 6.5-inch super AMOLED display of FHD+ resolution. It will be a display panel of 90Hz refresh rate. Similar to the Galaxy M55 5G, the smartphone will sport a 50MP-based triple-camera setup on the back.


  • Display: 6.5-inch Super AMOLED display, FHD+ resolution, 90Hz refresh rate


  • Processor: MediaTek Dimensity 6100+


  • RAM: 4GB


  • Storage: 128GB


  • Rear Camera: 50MP primary sensor, 5MP ultra-wide-angle, 2MP macro


  • Front camera: 13MP


  • Battery: 6,000mAh battery


  • OS: OneUI 6.1 based on Android 14


  • Weight: 217g


  • Thickness: 9.3mm


 

First Published: Apr 02 2024 | 4:22 PM IST





Source link

About-us

Privacy Policy

Email: hansrajagrawalakola@gmail.com

YouTube
Instagram
WhatsApp