Monday 2 November 2020

Zerologon Bug – Know the Unknown | Mono-Live

Zerologon Bug

We have recently got warnings from Microsoft about a critical vulnerability about which they told in August. We know it as the "Zerologon bug,'' CVE-2020-1472. Now, it has spread in a wide range. Due to which the attackers can hack the database of a company. And they can also remotely control a company's domain.

The bug has affected Windows 2008 and other new updated versions of windows. According to Microsoft, the attackers take the help of the Netlogon Remote Protocol for setting up a secure channel connection with a domain of a company. CISA, known as Cybersecurity and Infrastructure Security Agency, assumes that it can help the attackers to access a network with a domain controller. Zerologon flaw enables hackers to know about the whole network and all Active Directory identity services connected with them.

Recently, CISA has issued an emergency directive in which they have ordered all federal civilian agencies. The identifier of the bug is CVE-2020-1472. Researchers have found a nasty bug in Windows Server which they gave the name 'Zerologon'.

The Active Directory domain controller code has earned a complete ten rating on the CVSS scale. It stands for Common Vulnerability Scoring System. But the details of the controller can never be revealed. It means that users and I.T. administrators are unable to know how dangerous the problem is.

Importance of the Zerologon Bug for the attackers:

The attackers always have a foothold inside the network using which they can target the specific domain with ease. Now, the attackers get help from the post-compromise exploits also. The exploits have become very valuable to the attackers in recent times. 

When they have got some of the previous data, they can easily hack the domains of any company. As soon as the employees click on any links or attachments in the email, the attackers will hack their domains and steal important data.

Using the Zerologon bug, the hackers can quickly get control of the Active Directory. Moreover, you can get free rein to control it.

How Zerologon Bug works:

The Zerologon exploits uses a string of zeros. The attackers send it via the email of any targeted company. When any employee of that company clicks on it, the attackers using the Netlogon protocol to hack the servers of the company's domain. 

But it depends on various tasks like they allow the users to log in. That's why the Administrators need to be concerned about their installing updates. The network components are susceptible. So, you need to be concerned about the updates always.

It is reported that this bug is the most hazardous one comparing to the previous ones. The worth value of it is a 10/10 CVSSv3 severity score. For Microsoft, patching the bug is not so easy a job. It is scheduled in such a way so that it can be run over in two phases. For the first one, Microsoft will help you to let you know about how to fix the first phase. 

 

Microsoft has done this and made the Netlogon security features mandatory. However, if you want to get a more effective patch, then you need to wait till February. The attack made by the hackers was so quick that it only took nearly three seconds or less than that for hacking the domain of the targeted company.

Take over a domain controller with a number of zeros:

People can get in-depth knowledge about the bug from the team at Secura B.V. that is a Dutch security firm. They have published a technical report from where you can know about the CVE-2020-1472. According to this report, we come to know that the bug is precious for its 10/10 CVSSv3 severity score.

It was the Secura experts who named this bug as Zerologon. According to these professionals, it has taken the benefit of a cryptographic algorithm. The attackers used this algorithm in the Netlogon authentication process. 

They use the bug to follow the Netlogon authentication method. It can hide the identity of any computer with ease on a network. Therefore, it will become easier for them to hide their real identity against the domain controller.

By following the Netlogon authentication process, they can disable security features with ease. With the help of the Netlogon authentication process, one can change the password of a computer on the domain controller's Active Directory. Usually, a database of a computer is connected with a domain and their passwords.

The reason why it is named Zerologon is that the hackers attack the database only by adding zero characters in specific Netlogon authentication parameters.

Take over a corporate network within three seconds:

For the beginners, they must need a foothold inside a network to hack the domain. They can't hack the Windows Servers that are not included in the arena of that specific company's network Or belong to the outside of the company's network. It just takes a few seconds to hack all the databases.

The bug can quickly attack anyone's computer of the targeted company and then spread the malware to all computers.

Patches available; more to come

Nowadays, big companies like Microsoft, need to modify their devices that are connected to corporate networks. Now the Netlogon security features become mandatory for this temporary patch in which process the Zerologon got disabled. It is also vital for all Netlogon authentications.

Recently, it has been decided to reschedule the bug for February 2021. People use this name Zerologon for its broad impact, severity, and benefits for attackers. Secura did not release any proof-of-concept code for a weaponized Zerologon attack. In addition to this, the company has also released a Python script instead of the previous script that you have got earlier.

Protecting devices against Zerologon Bug

Microsoft is trying to fix this bug problem in two-phase. During this time, Microsoft has updated the FAQs in its original documentation. This documentation can help you to identify further clarity. It is because a few users are there who found the documentation very confusing.

That's why Microsoft told its users to find out those devices that make vulnerable connections. For this, they said to their employees to monitor event logs, address non-compliant devices, etc. They also said to enable enforcement mode for managing CVE-2020-1472 in their environment.

Companies use Microsoft Defender for Identity, or Microsoft 365 Defender to detect the attackers who try to use the bug against their domain controllers. Microsoft Defender for Identity was known as Azure Advanced Threat Protection. Whereas Microsoft 365 Defender was known earlier as Microsoft Threat Protection. 

Moreover, the Microsoft company is the one that has taken the help of the Cybersecurity and Infrastructure Agency (CISA). They issued some local agencies to look into this matter step by step. Any company that has the Windows Server device needs to patch it for running the server smoothly. This process helps to avoid potential attacks that can steal your database also.

Conclusion:

Microsoft has recently informed its employees to update the domain controllers. And they also told them to find out those devices that are making vulnerable connections. The main focus of the attackers was to get a connection to the domain controller so that they become the domain admin with only one click.

Thursday 15 October 2020

HomePod mini: A powerful smart speaker with amazing sound

HomePod mini

HomePod mini is the new version of Apple's full-size HomePod. It is smaller and cheaper than the previous one. It is a high-quality speaker system. You can get this HomePod in White and Space Grey colour. It allows you to use it on the iPhone as a speakerphone to get more clear audio quality. But it has a drawback that you can't use it as a Bluetooth speaker. And it also doesn't allow you to work with iTunes home-sharing.

HomePod mini Features:

360-degree audio: HomePod mini offers a clear sound for a speaker of its size. The height of the hompor is more than eight cm, which is enough to make the room noisy from every angle. It can even hear your command while the speaker is at its massive sound. The wonderful design of the homepod allows it to be easily fitted anywhere in your room. It has an elegant shape covered in a seamless mesh fabric. When you use the HomePod mini, you can get a backlit touch surface on the top of the device. The easy user manual allows you to operate and control the device easily.

A connected sound system:

As soon as you place multiple HomePod mini speakers around your room, you can get an interconnected sound system. You need to ask Siri to play music. Or thou can also ask it to play different songs in each room. For the multi-room audio purposes, you can use the HomePod mini.

Stereo pair:

Want to experience the high density sound quality of Homepod mini? If Yes, then the Stereo pair can be helpful in this case. When you have paired two HomePod mini speakers in the same room, it will create the left and right channels. It is compatible with your Apple devices. You can use the HomePod mini with any Apple devices easily. Using this device, you can easily pick up an incoming call on the iPhone, hear any song on your Mac or upgrade your TV experience. It can take the sound quality of Apple TV to the next level.

Now, thou don't need to worry too much as Siri can work as a Homepod Mini. If you want a device that can make your daily job done easily or control your smart home accessories, then Siri can be a good option for you. You only need to ask Siri to do it. As soon as you ask Siri, it will make your job done. You can hear Bollywood music and track songs, playlists, or lyrics with the help of it.

Intercom is the one that can help you to communicate with your friends by voice. But you can use it when more than two Homepod exist in the room. It also allows you to use it with other Apple devices. As a result, you can send and receive messages via it while driving. It is easy to control. Homepod Mini will add the Homepod app automatically when you set-up it. Using your voice, you can control the HomeKit items easily.

Conclusion:

In this article, you can get brief details of HomePod Mini. We hope that it will help you to boost your knowledge about HomePod Mini.

Frequently Asked Questions

  • Is there any other feature of the Homepod mini other than Audio or Music?

Yes, Homepod mini uses Siri to give answers to all sorts of questions. And it doesn't involve any audio or music. It allows the users to use it as a HomeKit hub. By using it, you can control multiple HomeKit smart home accessories. You can also get here a new "Intercom" feature. It helps you to communicate with friends and family members by voice. And you can again hear other's responses with the help of their HomePod or other Apple devices.

  • Does the HomePod Mini support messaging or third party apps?

The HomePod mini supports messaging and third-party apps. For this, you need to use Siri. With the help of this, you can message anyone, friends, colleagues, and so on. WhatsApp is an app that can help you to do so. A few apps, such as Things and Evernote, are examples of Reminders note-taking and to-do list apps. Using Siri, you can set reminders, make a new list, make new notes, and modify those.

  • What are the things that you require to use a HomePod mini?

802.11n Wi-Fi Internet access is the one you need to use a HomePod mini. Besides, the iOS or iPadOS 14 users should have any one of these following:


  • iPod touch (7th generation) ● 
  • iPad Pro, iPad (5th generation) or later
  • iPhone 6s / SE (1st generation) or later iPad Air 2 or later, 
  • iPad mini four or later 
  • What is the European launch date of the HomePod mini?

The date of the announcement of the Homepod mini is 13th October 2020. People living in United Kingdom can order it from 6th November. And they can get it on 16th November.

  • Does the HomePod mini need an Apple Music subscription?

Usually, HomePod mini doesn't need an Apple Music subscription. But according to Apple, you need to subscribe to it to get full music functionality.

Monday 5 October 2020

How to Leave a Group Text on Android

How to Leave a Group Text on Android

Do you want to communicate with all of your friends at a time? Then, you can choose the group texts. It is because this is an excellent way to communicate with friends and family at the same time. With the help of this, you can easily decide any event or party with your friends. But the main issue is that you can't keep it under your control as there exist many people. The more people present in a group, the more you receive messages from the group participants in your Smartphone. Therefore, it may seem to you irritating. So, if you want to know how to remove a group text from Android, go through this article appropriately. With the help of this process, you can easily remove yourself from the group chat to prevent that annoyance from happening.

If you are an android user, you can only mute or delete a group chat. But you can't leave it. In case you have an iPhone, you can quickly leave any group chat as this facility is only available for iPhone users. However, if thou want, you can use the mute option for stopping the annoyance. Besides, you can also delete the message thread.

We know that group text is beneficial for us. But it cannot be enjoyable for you when people of that group use it excessively. Unfortunately, the android users can't leave a group text in the same way that iPhone users do. But you can mute the notifications of a group text. 


 

 How to Leave a Group Text on Android

Don't know how to remove a group text from Android? Let's have a look at these steps to know how to remove a group text from Android.

The process of removing yourself from a group text

Compared to the iOS users, one cannot remove himself from group text if they have Android phones. So, what will you do now? In that case, you need to ask to be removed from the group text. This is the only choice thou have. Therefore, the creator needs to begin a new group text. In this new group chat, you will be unavailable. However, you can mute the notifications also. It is a less complicated way compared to other methods.

So, let's look at the steps to know how to remove a group text from Android.

Step 1:

First of all, you need to go to the default stock messaging app.

Step 2:

After opening the stock Android messaging application, you have to navigate the group text. Then, what you need to do is to click on it to see all the messages.

Step 3:

Now, your job is to click on the three vertical dot menu. You will be able to see it at the top right of the screen.

Step 4:

After tapping on the three vertical dot menu, you can see an overlay. Then, you need to scroll it.

Step 5:

When you will scroll it, you can see a bell icon that is available at the bottom of the overlay.

Step 6:

As soon as you will see the bottom at the end of the overlay, you need to click on the mute option. And then thou are required to unmute the conversation.

Step 7:

When you have tapped the bell icon, you can make sure that you will be free from receiving all the annoying messages from the group conversation. If you want to unmute the notification and get all the messages, you can repeat it. Step 8:

You will receive text messages when you mute the conversation. Then, a tiny bubble will arise in front of your screen. You get to see it because it is attached to the messaging application that you are using. Besides, you can also get to see all the notifications that you won't get. And, you can see whether you have read the messages or not. You can only prevent unwanted messages from the group, and the notification sounds.

Thus, you get to know how to leave a group text from Android.

How to Leave a Group Text on Android Frequently Asked Questions:

Q. How you can make a contact list on your Android device?

When you make a list that contains many contacts, it is known as a group. But for this, you need to go to the Contacts application first. After going to the app, you have to choose the contacts that you want to send. It becomes more advantageous when you want to make a text message to the same group of people. The group may be a group of business colleagues or friends. When you use the Android contact groups, you can make sure that you send messages to the right people.

Q. How can you name group chats on iOS?

You can name only the group iMessages. You are unable to name any MMS messages. It implies that people who are in the group must have an iPhone. Or they have to log in to the group iMessages on an Apple device like a Mac or iPad.

Q. What is the process of sharing a mass chat except allowing everyone to see anyone's responses?

If you want to share a mass chat except allowing everyone to see anyone's responses, you need to follow these steps. At first, you need to toggle off iMessage, then toggle off "Group Messaging." You can get these in the settings of the message icon.

Conclusion:

In this article, you can see that it is impossible to remove yourself from a group chat. What you can only do is to mute the group text. And thus you can get relief from the annoying messages. However, if you block someone, then you also get this benefit. If thou are using a messaging app like an instant Facebook Messenger, then you can easily remove yourself. So, it is our entire elaborated details that we have given here to let you know how to leave a group text from Android. We hope our article will be beneficial to you.

Thursday 20 August 2020

Apple Music Radio: Apple Launches New Radio Stations

Apple Music Radio

Apple Music fans just want to hear great music, and the Apple Music radio is all about. Apple announced two live global radio offerings on Apple Music Radio. Now it is available to music fans in 165 countries across the world. Now the global radio station Beats one is rechristened as Apple Music one. Apple Music Hits delivers your favorite from the 80s, to till date. The Apple Music Country spotlights all the country music.

Apple Music Country provides exclusive shows from famous artists like Luke Bryan, Carrie Underwood, and Jimmie Allen. The listeners can easily access all the stations, where ever they listened to Apple Music previously. Your voice assistant Siri can help you to access the Apple Music radio automatically with the following commands "Apple Music 1," "Apple Music Hits," or "Apple Music Country,"

Apple Music Radio 1


Apple Music 1 will function as a center for pop culture conversation, and artists let programming. It works as a global radio station exclusively for artists to release their live programs, release new music, and break the news to connect with their music lovers. Besides, Apple Music 1 delivers some shows dedicated to celebrating Latin music's vibrancy around the world. J Balvin is going to show his all-time listener favorites "¡Dale Play! with Sandra Peña" and "La Fórmula Radio with El Guru." Apple Music 1 is also going to showcase very best local African music and artists with the show named Africa Now Radio with Cuppy.

Apple Music Country: 


Apple Music Country Radio is part of the fabric of country music culture, and it amplifies the music experience of contemporary fans. Apple Music Country broadcasts a mix of the unsurpassed music of today and introduces the stars of the future to today's music lovers. And it also helps the music fans remind the legendary artists and tracks that have created and updated the country music along the way.

Thursday 30 July 2020

Google One App Offer Free Phone Backup and Storage Manager

Google One App
Google One was launched two years before. Now they have expended the storage plans with more freebies, including the ability to share the storage with more members. Offer live support with more benefits like Google play credits and Google store member rewards.

Previous year, Google launched automatic backup for the android devices with Google one. Yes, Google One automatic backup saves your important stuffs like your messages, images, apps, and contacts list.

These phone backup and storage manager tool for free to the all Google one users. With the help of this feature you can clean up your data across Google Drive, Calendar, Gmail and Google photos in the new Google One App. Now this new features are extended from Android to iOS.

Back up your Android or iOS phone with Google One Apps: 


Now Google one Apps is now extended to iPhone also. It is now available as new iOS app in App Store.

Google one App helps the Apple users to store the videos, photos and contacts. You can backup all your phone data with Google one app’s 15GB free storage comes with your Google account for free. Even if you lost your phone your data is safe in the Google Drive.

The new storage manage helps to free up space by easily clean and manage your files easily across the Google Drive, others. If you need more storage, you can upgrade to Google membership starting from 1.99$ per month, straight from the app. In addition, you can share the plan with 5 more family members and avail the premium support from Google.

Try Google One App now.