News
Google Chrome Exploit Results In Attack On Lebanese Journalists
According to antivirus company Avast, there is evidence that an Israeli spyware firm called Candiru used a vulnerability in Google Chrome to spy on journalists in Lebanon.
In early July 2022, Google patched a previously unknown vulnerability in its Chrome browser, known as CVE-2022-2294. The zero-day Chrome exploit only came to light after it was apparently used to spy on journalists in Lebanon.
Antivirus company, Avast, collated a report, which it delivered to Google detailing the zero-day exploit. In this report, Avast claims that Israeli spyware firm, Candiru, used the exploit to install spyware on the journalist’s computers.
It equally believes that the firm has used similar exploits to target Avast users in Turkey, Lebanon, Palestine and Yemen beginning in March of this year.
A zero-day exploit is, in short, a vulnerability in a piece of software that is unknown to the developers. They are typically discovered in the wild for this reason, and are known as zero-day because the developers have zero days in which to address the issue. This is because the vulnerability has the potential to cause damage from the moment it is discovered.
Avast alleges that Candiru used the above-mentioned exploit to gain access to user’s computers. It is believed to have compromised a website, which it used to redirect users to a server that could collect their data. If the data – collected on 50 data points such as location, language, time zone, etc. – met their requirements, the server would establish an encrypted channel.
Despite not claiming responsibility, Candiru is the prime suspect in the attack because the CVE-2022-2294 exploit was used to install the DevilsTongue spyware. This is a piece of malware previously linked to the group by Microsoft in a separate string of attacks.
In its report, Avast claims that the zero-day exploit was used alongside another vulnerability capable of bypassing the sandbox security function in Chromium. However, Avast has (as yet) been unable to determine the second exploit used by the alleged attackers.
Also Read: DDoS Attacks Are A Growing Threat In Gaming
Luckily, Google released a patch for the exploit on July 4. As such, there is no need for Chrome users to be concerned, providing browsers are kept up to date. Microsoft and Apple have released patches for their Edge and Safari browsers, too, as they also use WebRTC.
Candiru has not yet been officially connected to the incident, so its involvement is currently (albeit well-informed) speculation. However, the tools used and computers targeted matches its previous spyware attempts dating from 2021 and early 2022. As the company has no public online presence, this fact is unlikely to change anytime soon.
News
Mamo Completes $3.4M Funding Round To Enhance Fintech Services
The startup will use the influx of cash to expand into Saudi Arabia and across the wider GCC while improving its product offering.
UAE-based fintech Mamo has announced the completion of a $3.4 million funding round that will help the startup extend its market presence and improve its product offering. Investors included 4DX Ventures, the Dubai Future District Fund and Cyfr Capital.
Mamo’s platform offers “payment collection, corporate cards and expense management” to help small and medium-sized businesses consolidate and streamline their operations. With the latest influx of capital, Mamo will further develop its comprehensive suite of services and begin testing its product lines in Saudi Arabia, further extending its footprint across the GCC.
Imad Gharazeddine, co-founder and CEO of Mamo, stated: “We’ve been in the market for a while now and are incredibly proud of what our team has achieved. The holistic and expansive nature of our product offering has helped us continue to grow sustainably. This additional funding will allow us to reach our medium-term goals even faster. The support from new and existing investors is a testament to our strong expertise and the ability to deliver on our customer promise”.
Daniel Marlo, General Partner of lead investor 4DX Ventures, added: “We have immense trust in Imad’s vision, leadership and Mamo’s innovative approach to provide a user-friendly and comprehensive financial solution for SMEs that makes financial management more accessible and efficient. We are proud to partner with them and support their mission”.
Also Read: A Guide To Digital Payment Methods In The Middle East
Amer Fatayer, Managing Director of Dubai Future District Fund’s investment team, also commented: “Mamo’s localized product lines serve as an infrastructure for SME payments and spend management in UAE, a segment that is underserved by the country’s current banking infrastructure. The team has taken a product-first approach to consolidating SMEs’ financial journeys and building a fintech solution deeply embedded in a business’s core operations”.
To date, Mamo has raised around $13 million in investment funding and now boasts a team of 30 people. The company’s intuitive financial services platform has allowed over 1,000 businesses to consolidate their financial operations and significantly reduce payment fees.
Mamo Completes $3.4M Funding Round To Enhance Fintech Services
Qatar Airways Unveils “Qsuite Next Gen” At Farnborough Airshow
WhatsApp Developing Offline File Sharing Similar To AirDrop
Initial Trials Of Dubai’s Driverless Evocargo Trucks Completed
Personalized Supplement Company Bioniq Raises $15M In Funds
Amazon Prime Day 2024: Get Ready For 6 Days Of Amazing Deals
Samsung Unpacked 2024: What To Expect From The July 10 Event
Coursera Report Shows Surge In UAE Interest In AI Upskilling
Meet Dubai’s Groundbreaking Smart Robot Delivery Assistant
Google Cloud Opens New Kuwait Office To Aid Digital Transformation
-
News4 weeks agoAmazon Prime Day 2024: Get Ready For 6 Days Of Amazing Deals
-
News4 weeks agoSamsung Unpacked 2024: What To Expect From The July 10 Event
-
News4 weeks agoCoursera Report Shows Surge In UAE Interest In AI Upskilling
-
News4 weeks agoMeet Dubai’s Groundbreaking Smart Robot Delivery Assistant