Latest news with #AMOS
Arabian Post
14-07-2025
- Business
- Arabian Post
Crypto‑Looting Malware Masquerades as AI and Gaming Start‑ups
Cybersecurity firm Darktrace has revealed a sophisticated social engineering campaign targeting cryptocurrency users on Windows and macOS. The scheme employs fake start‑up companies themed around AI, gaming, Web3, video conferencing, and social media to trick individuals into downloading malware disguised as legitimate software. Darktrace's analysis shows threat actors are establishing plausible digital identities using compromised or spoofed X accounts—sometimes verified—for both companies and employees, hosted on platforms like Medium, Notion, GitHub and X to lend credibility. Notably, the group evolved from a December 2024 Web3 'Meeten' video‑call scam identified by Cado Security Labs into a broader and more enduring operation. Attackers initiate contact via Telegram, Discord or X, offering test access to new software in exchange for cryptocurrency payments. Victims receive a registration code to download tailored Windows Electron apps or macOS DMG files. Upon installation, the malware surreptitiously profiles the device, displays a fake Cloudflare verification, and initiates the payload: a stealer or drainer aimed at crypto wallets. ADVERTISEMENT On Windows, the malware utilizes stolen code‑signing certificates, installing an MSI payload that harvests credentials and wallet data. On macOS, variants include the Atomic macOS Stealer, capable of extracting browser cookies, documents, wallet credentials and maintaining persistence via Launch Agents. Darktrace's report highlights the extensive list of fake companies involved: BeeSync, Buzzu, Cloudsign, Dexis, KlastAI, Lunelior, NexLoop, NexoraCore, NexVoo, Pollens AI, Slax, Solune, Swox, Wasper, YondaAI, among others. Victims cross‑checked these brands against polished websites, whitepapers and employee profiles on Notion and GitHub that imitate authentic early‑stage tech companies. Darktrace notes the campaign bears hallmarks similar to that of the traffer group CrazyEvil, known for deploying StealC, AMOS and Angel Drainer malware. While attribution remains unconfirmed, shared evasion techniques and targeting broadly align. Experts have raised concerns about this tactic of 'legitimacy laundering'. The use of compromised X accounts—especially verified ones—with stolen certificates and AI‑generated content underscores a refinement in social engineering methods. Darktrace threat researcher Tara Gould emphasises that this illustrates 'the efforts that threat actors will go to make these fake companies look legitimate'. Emerging trends in the campaign include multi‑platform targeting and increasingly authentic deception. Windows versions show paranoia‑level evasion: they bundle obfuscation, sandbox‑avoidance checks and stolen signing certificates to bypass defences. On the macOS side, apart from AMOS, the infection employs staged shell or bash scripts to install launch‑agents and maintain persistence post‑reboot. This campaign also marks a shift from opportunistic blast‑campaigns to more tailored, lure‑based attacks. Actors undertake reconnaissance—observing target roles in Web3 and crypto—before approaching them via trusted‑looking channels. In some cases, attackers impersonated actual contacts and shared internal presentations to build trust. Security experts stress that safeguarding against such threats requires cautious validation of unsolicited software offers, robust code‑signing certificate vetting, and network segmentation. Users are urged to verify company legitimacy externally—checking domain registrations, team credentials and cross‑referencing claims. Defensive strategies recommended by Darktrace include enhanced telemetry on installation attempts, stricter code‑signing policies, and behavioural detection tuned to recognise post‑installation profiling and exfiltration patterns. For macOS, entry‑point monitoring and examination of Launch Agent activity provide early alerts.
India.com
04-07-2025
- Business
- India.com
Air India Express Admits Engine Maintenance Lapse After DGCA Rap, Says Issue Resolved
New Delhi: Following a sharp reprimand from India's aviation regulator, DGCA, Air India Express on Friday admitted to an error in replacing engine parts on one of its Airbus A320 aircraft and said it has now fixed the issue, along with implementing corrective and preventive measures. In a statement, the airline said that an Airworthiness Directive (AD) issued in May 2023 by the European Union Aviation Safety Agency (EASA) was applicable to two engines in its inventory. While the required change was carried out on one engine within the stipulated timeframe, the directive for the other was missed due to a record migration issue in the airline's monitoring software. "Primarily on account of the migration of records on the monitoring software platform, the technical team missed the trigger for one engine," the airline said. It added that the necessary changes were made "as soon as this was identified" and that compliance for the second engine was also completed within the deadline. "We acknowledged the error to the DGCA and undertook remedial action and preventive measures with immediate effect. Necessary administrative actions were also taken against the persons held responsible," the statement said. This response comes against the backdrop of a confidential DGCA memo, which accused Air India Express of failing to replace engine parts within the mandatory timeframe and allegedly altering maintenance records to show false compliance. The violations were discovered during a routine DGCA audit in October 2024 and formally communicated to the airline in March this year. The DGCA memo had flagged that the part modification "was not complied (with)" on one engine of an Airbus A320, within the required limits. It also raised concerns over possible tampering of records in the airline's Aircraft Maintenance and Engineering Operating System (AMOS). The safety lapse predates the tragic June crash of an Air India Dreamliner in Ahmedabad that killed 241 of the 242 people on board, the deadliest aviation disaster in a decade. Air India Express, which is currently undergoing fleet expansion and integration with AIX Connect (formerly AirAsia India), has reiterated its commitment to "the highest standards of safety and regulatory compliance".
India Today
04-07-2025
- Business
- India Today
Air India Express delayed Airbus engine fix, forged records: Report
Aviation regulator Director General of Civil Aviation (DGCA) reprimanded Air India Express, Air India's low-cost carrier, in March for failing to promptly replace engine components on an Airbus A320, as mandated by the European Union's aviation safety authority, and for falsifying records to appear compliant, according to a confidential government memo reviewed by news agency a statement, the airline told Reuters that it had acknowledged the lapse and implemented "remedial action and preventive measures."advertisementThe confidential memo, sent to the airline in March and accessed by Reuters, said that surveillance by the DGCA revealed the parts modification "was not complied" on an engine of an Airbus A320 "within the prescribed time limit". "In order to show that the work has been carried out within the prescribed limits, the AMOS records have apparently been altered/forged," the memo added, referring to the Aircraft Maintenance and Engineering Operating System software used by airlines to manage maintenance and India Express said that its technical team missed the scheduled implementation date for parts replacement due to the migration of records on its monitoring software, and fixed the problem soon after it was did not give dates of compliance or directly address DGCA's comment about records being altered, but said that after the March memo it took "necessary administrative actions", which included removing the quality manager from the person's position and suspending the deputy continuing airworthiness serious breach comes as the Tata-owned airline group faces intense scrutiny in the wake of June's fatal crash of an Air India Dreamliner in Ahmedabad — the worst aviation disaster in a decade — which killed 241 of the 242 people onboard. Though unrelated, the crash has spotlighted broader safety oversight and procedural adherence within the airline March safety lapse preceded the crash by several months but is part of a string of violations flagged by the regulator this year. In addition to the Air India Express engine issue, the DGCA warned Air India for flying three Airbus aircraft with overdue escape slide checks and separately cited 'serious violations' of pilot duty timing rules in VT-ATD aircraft typically serves domestic routes and short international sectors, including Dubai and Muscat. The engine component changes were mandated due to 'manufacturing deficiencies' that posed potential safety risks, according to the EU's aviation safety agency.A former Aircraft Accident Investigation Bureau official, Vibhuti Singh, called the lapse 'a grave mistake,' emphasising that delayed engine fixes — especially when operating near restricted airspace or over water — dramatically increase operational data shows that in 2023, authorities issued safety warnings or fines in 23 cases, with 11 involving either Air India or Air India acquiring Air India in 2022, the Tata Group has aimed to turn it into a global carrier of high repute. However, the airline continues to battle recurring customer complaints about aircraft conditions and onboard services, further complicated now by a deepening safety crisis.- EndsWith input from ReutersTune InMust Watch
Biz Bahrain
26-06-2025
- Science
- Biz Bahrain
AGU Researcher Explores Impact of Sustainable Leadership Practices on Sustainable Performance Through Social Innovation Capabilities in Saudi Arabia
Ms. Ghuzail Maqbool Al Buqmi, a researcher in the Department of Innovation and Technology Management at the College of Education, Administrative and Technical Sciences at the Arabian Gulf University (AGU), conducted a study to examine the impact of sustainable leadership practices on sustainable performance through social innovation capabilities in the Kingdom of Saudi Arabia. The findings confirmed that sustainable leadership acts as a key driver of organisational sustainable performance through the channel of social innovation. The study, recently discussed as part of the requirements for obtaining a Doctorate in Innovation and Technology Management, aimed to identify the influence of sustainable leadership practices on sustainable social performance via social innovation capabilities in Saudi Arabia. Ms. Al Buqmi adopted a mixed-method scientific approach, employing the SPSS software for survey analysis, for interviews, and AMOS to validate the structural model. The research sample included a total population of 5,000 individuals, with 494 respondents participating in the study. Among them, 481 responded to the survey, and 13 participated in in-depth interviews. Hypotheses were tested and results confirmed using both linear and multiple regression methods, which revealed a positive impact of sustainable leadership practices on social performance via social innovation capabilities. Further analysis highlighted a positive influence of social innovation capabilities on sustainable performance, as well as a direct positive relationship between sustainable leadership practices and engagement in social innovation. Two out of five variables—knowledge sharing and trust—were found to have a statistically significant effect. The study was supervised by Prof, Fairouz Mosleh Al Dhmour, Professor of Management Information Systems in the Department of Innovation and Technology Management, and Dr Wid Hussain Daghustani, Associate Professor of Special Education. It recommended further research into the factors shaping social innovation capabilities and urged decision-makers to prioritise the appointment of sustainable leaders to stimulate innovation within their organisations.
News18
26-06-2025
- Business
- News18
Air India Partners With Flydocs To Boost Aircraft Maintenance, Know More
Supporting a Growing Fleet With over 300 aircraft flying across India's largest international network, Air India is gearing up to improve operational efficiency and streamline maintenance workflows. The flydocs system will play a vital role in managing aircraft records, especially during end-of-lease processes, ensuring quality and regulatory compliance while reducing risks during lease returns. Andy Smith, Chief Commercial Officer at flydocs, shared his excitement:"We are thrilled to partner with Air India, as this collaboration seamlessly aligns with our strategic vision for global expansion and the addition of more prestigious brands to the flydocs family. With a significant portion of the flydocs team based in India, this partnership holds special meaning for us and represents a key milestone in our journey." He further added, 'Through our market-leading services and innovative digital-led DRM platform, we are proud to support Air India's digital transformation, delivering a seamless experience that maximises asset value, enhances efficiency, and drives operational excellence. This collaboration within our Digital Tech Ops Ecosystem reflects our commitment to quality, excellence and customer-centric solutions. It is an honour to be chosen as Air India's partner of choice and I look forward to many shared successes in the future." Sisirakanta Dash, Chief Technical Officer at Air India, added:"By integrating flydocs with our existing solutions, such as AMOS and soon-to-be-introduced eTLB, we are creating a connected, data-driven infrastructure that enhances compliance, efficiency, and operational excellence. This ecosystem will enable us to digitise and streamline aircraft maintenance records, reinforce technological capabilities, and ultimately deliver superior customer service through innovative and modernised processes."
