reporter

A showcase for its full-frame 60.2-megapixel sensor, the compact RX1R III is an impressive camera with a price to match.View the full article

The company aims to reach customers with its "all-in pricing" model.View the full article

Sharing your phone's camera footage can give first responders a better sense of what's happening and how to help.View the full article

Luis Enrique's men head to Bilbao looking to make it five wins from six in the UCL.View the full article

The Gunners look to bounce back from their weekend defeat with a trip to Belgium.View the full article

Under pressure, Madrid boss Xabi Alonso needs a win against a City team on a roll.View the full article

Google is testing AI-powered article overviews on participating publications’ Google News pages as part of a new pilot program, the search giant announced on Wednesday. News publishers participating in the pilot program include Der Spiegel, El País, Folha, Infobae, Kompas, The Guardian, The Times of India, The Washington Examiner, and The Washington Post, among others. […]View the full article

The names of two partial owners of firms linked to the Salt Typhoon hacker group also appeared in records for a Cisco training program—years before the group targeted Cisco’s devices in a spy campaign.View the full article

If your sleep is interrupted by frequent bathroom breaks, here are some tips that can help.View the full article

Apple today unveiled its fifth retail store in India, at the DLF Mall in Noida. The store opens to customers this Thursday, December 11, at 1 p.m. local time. Apple Noida The store features familiar amenities, including an Apple Pickup station for in-store pickup of online orders, and a Genius Bar for tech support and repairs. Apple operates four other stores in India: Apple Saket in New Delhi Apple BKC in Mumbai Apple Koregaon Park in Pune Apple Hebbal in Bengaluru In addition, the Apple Store app launched in India earlier this year. Earlier this month, Apple opened a new store in China, at the Livat Centre in Beijing. This store also has an Apple Pickup station and a Genius Bar, plus a dedicated seating area where customers can demo the Apple Vision Pro. Apple Livat Beijing Apple remains committed to expanding its retail presence in international markets, such as China, India, Saudi Arabia, and the United Arab Emirates.Tag: Apple Store This article, "Apple Unveils New Stores in India and China" first appeared on MacRumors.com Discuss this article in our forums View the full article

Unveiled back in September, Amazon's new E Ink tablet-style Scribe e-readers with a front light are now available.View the full article

Amazon this week has the Apple Watch SE 3 on sale at all-time low prices, starting at $199.00 for the 40mm GPS model. These prices are matching the Black Friday discounts we tracked last month, and they are some of the few sales that have consistently stuck around since that event ended. Note: MacRumors is an affiliate partner with Amazon. When you click a link and make a purchase, we may receive a small payment, which helps us keep the site running. You can also get the 44mm GPS Apple Watch SE 3 on sale for $229.00, down from $279.00. Both models are available in Midnight and Starlight Aluminum options, with multiple sizes on sale as well. As of writing, all models can be delivered in time for the Christmas holiday. $50 OFF40mm GPS Apple Watch SE 3 for $199.00 $50 OFF44mm GPS Apple Watch SE 3 for $229.00 In addition to the Apple Watch SE 3 discounts, Amazon has $100 off the Apple Watch Series 11 right now, which are new record low prices on the wearables. If you're on the hunt for more discounts, be sure to visit our Apple Deals roundup where we recap the best Apple-related bargains of the past week. Deals Newsletter Interested in hearing more about the best deals you can find this holiday season? Sign up for our Deals Newsletter and we'll keep you updated so you don't miss the biggest deals of the season! Related Roundup: Apple Deals This article, "Amazon Takes $50 Off Apple Watch SE 3, Starting at $199" first appeared on MacRumors.com Discuss this article in our forums View the full article

Staff+ engineers play a critical role in designing, scaling and influencing the security posture of an organization. Their key areas of expertise include developing security strategy and governance, incident response leadership, automation, compliance/risk management and cross-org collaboration to shape security culture. Together, these capabilities are essential to enhance application security and the effectiveness of their organizations. However, in our experience, we have seen that many staff+ security engineers face scaling challenges. Instead of leveraging their expertise to drive broad, cross-stack impact, they tend to concentrate on specific incidents or focus areas, which limits their ability to extend their influence and strategic reach. Such a scaling problem has consequences on the organization and its personal goals. Also, leadership considers staff+ engineers as trusted advisors, helping them make high-judgment decisions. However, when engineers tend to get stuck on specific tactical incidents or solutions, leaders are left without their strategic insights. Conversely, staff+ engineers who are too busy in the weeds, miss to proactively look out for their “leaders’ problems.” Leaders perceive these engineers as too busy and hesitate to increase their scope and loop them in broader discussions, which ultimately leads to missed opportunities for the staff+ security engineers. There are plenty of practices that staff+ engineers can adopt to enable them to scale and force-multiply their impact across their organization. Remember, you, as a staff+ security engineer, are ultimately an enabler, not a bottleneck! Practical ideas to help you scale One of the most common ideas in people management, “scaling through others,” is well-applicable to staff+ security engineers. It basically means amplifying your impact not by doing more work yourself, but by enabling many others to work more effectively and productively with your influence. In other words, you’ll not do best by being a hero, but by creating “mini you’s” across the organization. When applied with discipline, scaling through others’ work well in practical settings. Here are some ideas you can consider: Create mechanisms that allow you to scale Mechanisms enforce or reinforce a behavior automatically. Also, they are not one-size-fits-all, but with some trial and error, we have observed that strong mechanisms consistently support desired behavior. For example, a policy-as-code framework integrated into CI/CD pipelines automatically enforces security and compliance policies, reducing manual checks and human error. While this is an example of a technical mechanism (which we will talk more about in the next section), mechanisms can also be people-oriented, say, mentorship programs or mentorship trees. Determine where to dive deeper and where to delegate Being an expert in the area, staff+ engineers can pretty much dive in anywhere from critical incidents to strategic initiatives. They may be drawn in by urgent team needs, their own curiosity or something else. But it is crucial for them to carefully evaluate where to make and avoid costly commitments. Asking a set of targeted questions can provide valuable insight: “What is the potential impact on security posture or risk to the organization?”; “Is there an established process or tooling (‘paved path’) to address this?”; and “Is this a one-time incident or a recurring security challenge that requires a scalable, strategic solution?” Often, true learning comes from failure. If the risk is manageable, allow others to step up and learn from their own failures. Create a trusted group To scale through others, you will need a group to rely on. Some organizations solve this problem via job levels, where staff+ engineer roles are defined to scale through other roles like senior security engineers. In other cases, you might need to define your selection criteria and training path. Just creating this group is not enough; an action plan and thorough execution are critical. In practice, such working groups run brown-bag sessions, create mentorship and recognition programs and discuss/review solutions that help lift the organization’s security KPIs. Additionally, mentorship sessions and office hours from staff+ engineers help build working relationships that last. Employ non-security engineers to the cause Involving application engineers in the security cause is an often-overlooked “hack” that works well in industrial settings. This “shift-left” approach involves embedding security practices directly into the software development pipeline, enabling development teams to take ownership of security controls and assessments early in the lifecycle. Programs such as security champions or security reviewers empower application engineers to integrate standard security and compliance practices as part of their regular workflows, reducing bottlenecks and fostering a security-first mindset. Staff+ security engineers should look for opportunities to drive the creation of these programs, enable cross-functional collaboration and scale through application engineers to increase their impact. Eliminate anti-patterns Lastly, we would recommend staff+ security engineers to inspect and eliminate anti-patterns in their (and peer) organizations. These anti-patterns work against scaling and make them and their organizations bottlenecks, instead of enablers. One example we have commonly seen is when security engineers act as permanent gatekeepers. This “block by default” approach is expensive and needs significant time investment for staff+ engineers and slows down business. Similarly, policies without exceptions are a time drain for both security and application teams. We highly recommend staff+ security engineers to proactively identify such patterns and replace them with mechanisms. Technical mechanisms to consider To effectively scale their impact, staff+ security engineers should champion a comprehensive technical approach that integrates secure practices into every layer of the organization, technology and culture. This ultimately acts as a mechanism or guardrails for their organizations, ensuring their guidance is automatically enforced and allowing them time for strategic influence. Key elements include: Incorporate focused action areas in the organization-wide security strategy: While staff+ security engineers are responsible for developing a clear, actionable security strategy, we recommend they encompass policy-as-code enforcement, risk gates and continuous monitoring. Leverage the trusted group to assign ownership by appointing area leaders who drive accountability and progress within their domains. Review their findings and tune the strategy periodically. This helps staff+ engineers avoid the need to inspect every aspect of a large organization’s security strategy. Adopt reference architectures and secure-by-default reusable modules: We recommend staff+ security engineers to build and provide trusted, opinionated blueprints, golden images, baseline policies and reusable components that make secure design the path of least resistance for development teams. Building such “paved paths” enables seamless and secure development for teams without developer whiplash. Finally, using trusted groups to drive adoption, they can effectively influence teams’ technical direction. Shift-left security practices: Briefly discussed before, integrating security early in the development lifecycle is the central theme of modern-day DevSecOps practices. Embedding automated controls, threat modeling and validation tools into pull requests, CI/CD pipelines and infrastructure-as-code (IaC) plans enables developers to catch and fix issues before deployment without workflow disruption. Consequently, this allows staff+ engineers (and their organizations) to reduce security bugs that reach production. Leverage AI-driven scanning tools and automation cautiously: The rapid development of GenAI has unlocked significant capabilities in security tooling. AI tools are now available that strengthen security practices through adaptive learning, risk prioritization and context-aware detection. Staff+ security engineers should champion the adoption of these tools to enhance vulnerability detection and streamline workflows. Supplementing these tools with expert reviews helps mitigate false positives and assess the impact of security vulnerabilities effectively. Guardrails over Gates: We recommend staff+ security engineers to build checks that enforce blocking only on high confidence and high impact security signals, while warning or logging lower risk issues to maintain velocity. Using compensating controls like monitoring, automated remediation and risk scoring to manage risks without blocking progress. The overall guiding principle we recommend for all staff+ security engineers is to make the secure way the easiest and most intuitive path for all engineers; this helps security to scale sustainably alongside business growth. We believe this guiding principle, along with the above technical framework, enables staff+ security engineers to force-multiply their impact by embedding robust security foundations, fostering a culture of shared ownership and automating enforcement. The result is a resilient, scalable and developer-friendly security posture. Incident influence So, how can staff+ security engineers force-multiply their impact during active security incidents? The most critical tool that the engineer has in such a scenario is their mindset: “You’re the stabilizer, not the savior.” Take the role of an orchestrator: If you get too deep into the logs, other areas that need support will suffer. Look to assign tactical work to different individual contributors and focus on leading the incident, coordinating across roles and managing leadership communications. Next, it is critical to identify inflection points. You will be expected to make high-velocity, high-judgement decisions that decide the course of incident management. Determine thresholds beyond which upper leadership involvement or additional support is essential. Utilize the inflection points to guide you when to move from containment to recovery to retrospective. Once the situation is in control, switch to an influencer role and scale through others, in line with your standard engagement mechanisms. Act as a bridge between leadership and teams Lastly, note that you are a link between management/leadership and engineers on the ground. Managers may not fully understand the details of execution or delays in identifying/remediating vulnerabilities in the software. Teams will rely on you to identify and bridge process gaps or represent them to leadership for decision-making. For example, in our case, our team was hesitating to adopt a powerful static analysis tool. While the team identified it as a critical need, it had high licensing costs, leading to multiple back-and-forth discussions. When our principal staff engineer learned about it, she promptly created a one-page document with the pros and cons and aligned leaders on funding it due to the high return-on-investment. She resolved a two-week team debate and analysis in just one afternoon. Conversely, you are also the leadership’s representative on the ground, shepherding the team along the leadership’s direction. Consider influencing the teams in building and reviewing deep visibility dashboards that accurately capture key security insights. This provides leaders with a strong feedback loop and real-time visibility on the consequences of their decisions. Final thoughts The journey of a staff+ security engineer is about transitioning from individual contributions to a force multiplier. This is especially important as AI and automation redefine scale; the leaders who design for empowerment will define the next era of cybersecurity engineering. This article is published as part of the Foundry Expert Contributor Network. Want to join? View the full article

Amazon says its Kindle Direct DRM-free titles will be available as PDFs and EPUB files going forward. View the full article

Apple today updated its Apple Cash feature to introduce a set of stickers that can be used in the Messages app. The stickers are Apple Cash themed, featuring emoji that you might want to use when sending or receiving a payment. Each sticker is animated, and has an iridescent texture that gives a glinting effect as the sticker moves. The Apple Cash stickers are rolling out to users starting today. You can find them by opening up the Messages app and selecting a conversation, then tapping on the "+" button next to the text bar. From there, tap on the "Stickers" option and swipe over to Apple Cash. Apple Cash stickers will show up in the Messages Sticker list automatically, and there is no option to download them from the Sticker App Store. The stickers also aren't able to be removed, because Apple Cash is not an app that can be uninstalled. Tags: Apple Cash, Messages This article, "Check Out These Fun New Apple Cash Stickers in the Messages App" first appeared on MacRumors.com Discuss this article in our forums View the full article

As the US government rapidly merges data from across agencies in service of draconian immigration policies, citizens increasingly risk being caught up as well.View the full article

From high-tech skin care to cool accessories, these are our favorite picks for the WIRED mom in your life.View the full article

Ivanti has patched a critical vulnerability in Endpoint Manager that enables attackers to hijack administrator sessions without authentication and potentially control thousands of enterprise devices. The company released EPM version 2024 SU4 SR1 to address four vulnerabilities, including the critical flaw tracked as CVE-2025-10573, which carries a CVSS score of 9.6. Three additional high-severity flaws could also enable code execution but require user interaction, Ivanti said in its December security advisory on Tuesday. Ivanti said the vulnerabilities were reported through its responsible disclosure program, adding that it was not aware of any customer systems being exploited at the time of disclosure. EPM has been targeted before. In March, CISA added three EPM vulnerabilities to its Known Exploited Vulnerabilities catalog after confirming exploitation in the wild. The flaws had been patched in January after being reported privately to Ivanti. Given EPM’s history of being targeted by attackers and the severity of the flaw, security teams should treat this as a patch-immediately situation rather than a routine update. The December update also fixed CVE-2025-13659 and CVE-2025-13662, which allow attackers to execute arbitrary code when users connect to an untrusted core server or import untrusted configuration files. Another enables unauthorized file writes on the server. Unauthenticated attack vector The most severe vulnerability is a stored cross-site scripting flaw discovered by Ryan Emmons, staff security researcher at Rapid7, who reported it to Ivanti in August. According to Rapid7’s technical disclosure, also published Tuesday, attackers can submit malicious device scan data to EPM’s incoming data API without authentication, The malicious data gets processed and embedded in the EPM web dashboard, where it executes when administrators view affected pages. “An attacker with unauthenticated access to the primary EPM web service can join fake managed endpoints to the EPM server in order to poison the administrator web dashboard with malicious JavaScript,” Emmons wrote in the report. Once the malicious JavaScript executes, attackers gain control of the admin session with full privileges to remotely control endpoints and install software on devices. Nick Tausek, lead security automation architect at Swimlane, warned, “Exploitation of this flaw would grant threat actors access to many managed devices at once, allowing for the execution of malicious code, deployment of ransomware, or exfiltration of sensitive data.” The patching challenge Despite the severity of such threats, organizations frequently struggle to address critical vulnerabilities quickly: Tausek said Swimlane research found 68% of organizations leave critical flaws unpatched for over 24 hours and 55% don’t have a comprehensive system for prioritizing vulnerabilities. The delay is particularly risky for endpoint management systems, which run with elevated privileges and control thousands of devices. Successful exploitation could bypass security controls and allow attackers to push malware to managed endpoints, modify security configurations, or establish persistent backdoors across the enterprise. “The potential for a serious exploitation campaign should not be overlooked,” Tausek said. Pattern of exploitation That concern is not theoretical. EPM’s history makes rapid patching more urgent. CISA added three EPM vulnerabilities (CVE-2024-13159, CVE-2024-13160, and CVE-2024-13161) to its Known Exploited Vulnerabilities catalog in March after confirming active exploitation. The agency flagged another exploited EPM flaw (CVE-2024-29824) in October. The repeated targeting demonstrates EPM’s value to attackers seeking persistent network access and lateral movement capabilities. Once attackers compromise endpoint management infrastructure, they can spread across the enterprise rapidly. Deployment guidance The patch is available through the Ivanti License System and applies to EPM versions 2024 SU4 and earlier. Organizations running the 2022 branch should note that it reaches end of life in October 2025 and will no longer receive security updates after that date, the Ivanti advisory added. Security teams should prioritize updating EPM instances to version 2024 SU4 SR1 immediately, particularly any installations accessible from untrusted networks. Organizations with internet-facing EPM instances face the highest risk and should patch within 24 hours. For organizations that can’t patch immediately, the advisory recommended ensuring EPM management interfaces aren’t exposed to the public internet and implementing strict network segmentation to isolate management servers from untrusted networks. Tausek also recommended training administrators to recognize social engineering attacks, since the critical XSS vulnerability requires viewing a poisoned dashboard page to trigger. “Since EPMs often run with high privileges, any misuse of it risks bypassing security controls and rapidly escalating the impact of a breach,” Tausek added. View the full article

Our favorite carpet cleaners have dealt with chocolate syrup, ketchup, red wine and pet urine. Bring one home this holiday season to make sure your home stays neat and smells good.View the full article

New records about the infamous sex offender are released seemingly every week. Here's a quick rundown of who's releasing the Epstein documents, what they contain—and what they're releasing next.View the full article

In today’s threat landscape, it’s no longer enough to focus solely on malware signatures and IP addresses. Defenders must understand how adversaries think, organize and operate, because attacker intent and methodology are now just as critical as technical artifacts. Recent developments have provided rare visibility into the internal processes of modern threat groups, how they coordinate, communicate, exploit vulnerabilities and adapt their tooling in real time. This kind of behind-the-scenes insight is becoming indispensable as cyber threats grow more sophisticated, more specialized and more tightly aligned with financial or strategic objectives. We’ve analyzed a series of recent real-world incidents to better understand evolving threat actor behavior. Let’s take a closer look at what these cases reveal. The BlackBasta chat leak BlackBasta is often viewed as a tightly run ransomware operation, but internal leaks tell a very different story. The BlackBasta chat leak exposes the group’s behind-the-scenes reality, revealing not a polished, corporate-style criminal enterprise but a fragmented ecosystem marked by hierarchy issues, operational stress, shifting loyalties and deep-seated mistrust among members. At the top of the structure sits Oleg (aka Tramp), acting as the de facto operations director. The chats depict him as the ultimate decision-maker on campaigns, revenue distribution and targeting rules, including strategic exclusions such as avoiding Russian financial institutions. His leadership, however, is portrayed as opaque and self-interested, with several members openly questioning whether their earnings and workloads reflect fair compensation. Bio functions as the operation’s central technical architect, managing everything from infrastructure stability to access orchestration. His background under the alias “Pumba” in the Conti collective reinforces the well-known pattern of talent migrating across ransomware-as-a-service ecosystems. Despite his skill set, the chats show Bio repeatedly expressing paranoia about state surveillance, especially following his release from detention, underscoring the constant psychological pressure faced by operators. Lara handles administrative tasks under heavy workload and stress, reportedly receiving less compensation than others despite being central to operations. The presence of actors like Cortes, with ties to Qakbot, demonstrates how ransomware crews frequently outsource expertise, rely on external access brokers or pull in operators with malware-specific experience as needed. This kind of crossover, visible only when internal dialogues spill out, shows how interconnected the cybercriminal ecosystem truly is. The chats further reveal operational inefficiencies that contradict the polished image these groups try to project. Members complain about slow decision-making, unclear leadership directives and disorganized workflows. Disputes over profit sharing, workload assignment and campaign prioritization point toward a group struggling to maintain cohesion. Even discussions around infrastructure updates, task delegation and encryption deployments show signs of technical debt and inconsistent coordination. Ultimately, the BlackBasta chat leak demystifies the myth of ransomware groups as disciplined, unified machines. Instead, it exposes a loose federation of operators bound together by profit but pulled apart by mistrust, emotional strain, resource imbalance and competing for personal agendas. For defenders, these insights offer not only a rare psychological snapshot of threat actor behavior but also a reminder that even the most feared cybercriminal groups are vulnerable to the same organizational weaknesses that plague legitimate enterprises. The dual life of EncryptHub What if the same threat actor breaching networks turned around and got a “Thank-you” note for reporting the flaws they once exploited? In a curious twist, Microsoft credited “EncryptHub“, a persona long tied to malware campaigns, credential theft and access brokering, for responsibly disclosing two Windows vulnerabilities in March 2025. Better known by aliases like SkorikARI and LARVA-208, this actor demonstrates a striking contradiction: simultaneously engaging in cybercrime while positioning themselves as a security researcher. When adversaries start submitting bug reports, the boundary between black-hat activity and legitimate vulnerability disclosure becomes increasingly blurred. Both vulnerabilities patched in Microsoft’s March Patch Tuesday were attributed to an individual with a documented history of malicious operations, including distributing malware through spoofed WinRAR websites and compromising hundreds of high-value targets across Europe and Asia. Unlike hierarchical ransomware groups, EncryptHub functions as a solo operator, shifting fluidly between freelance development, ad-hoc bug bounty submissions and illicit intrusion campaigns. Reports also indicate the use of ChatGPT to automate code generation, reconnaissance scripting and communication, reducing workload while enabling faster operational tempo. This case highlights a growing trend in the threat landscape: actors who no longer fit into fixed categories. Instead of being exclusively criminal or exclusively “researcher,” many now oscillate between both based on financial incentives, operational pressure and perceived risk. The acknowledgment from Microsoft underscores the uncomfortable reality that modern threat actors are increasingly hybrid strategic, opportunistic and adaptive. Understanding this duality is essential for evaluating their psychology, long-term intent and the evolving gray zone where legitimate security research and cybercrime increasingly intersect. BlackLock’s open recruitment tactics What happens when ransomware operators start posting job ads? BlackLock’s recent recruitment campaigns reveal an increasingly brazen and industrialized cybercrime ecosystem, one where threat actors no longer rely solely on stealth but openly solicit personnel to scale their operations. The group has been aggressively searching for “traffers,” a role dedicated to funneling compromised traffic and delivering ready-to-exploit victims. These recruitment efforts, found across Russian-language underground forums such as RAMP as well as gated Telegram channels, highlight a maturing supply-chain model in ransomware operations. This traffer-driven workflow is designed to offload the riskiest phase of the attack chain – initial access to external contractors. By outsourcing victim acquisition, BlackLock minimizes its operational exposure while ensuring a consistent inflow of compromised endpoints, credentials and exploitable network footholds. The model mirrors legitimate gig-economy structures but operates with criminal specialization, where traffers focus exclusively on harvesting access through phishing, malware loaders or traffic distribution systems, while the core BlackLock operators handle encryption, negotiation mechanics and monetization. This level of open recruitment signals growing confidence within the ransomware underground. It further reflects the shift toward modular cybercrime-as-a-service ecosystems, where roles are distributed, attack components are interchangeable and entry barriers for aspiring threat actors continue to fall. Understanding this recruitment strategy is crucial, as the traffer economy significantly accelerates ransomware proliferation and underscores how deeply commoditized initial access has become. Understanding, foresight, anticipation Through this analysis, we’ve explored not just isolated incidents, but the broader behavioral patterns, operational workflows and strategic decision-making that define modern threat actors. By understanding how these adversaries adapt, coordinate and exploit emerging opportunities, we gain the foresight needed to anticipate their next moves and continuously refine our defense strategies. As threat actor behaviors evolve, we’ll continue to publish deeper insights and actionable intelligence to help the cybersecurity community stay informed, resilient and one step ahead. This article is published as part of the Foundry Expert Contributor Network. Want to join? View the full article

This is ChatGPT's first year as the No. 1 app on the U.S. App Store by downloads.View the full article

Twelve South today is kicking off a 20 percent sitewide discount that's exclusive to MacRumors readers, allowing you a chance to save on the company's most popular accessories just in time for the holidays. To get this deal, enter the code MacRumors2025 at checkout to take 20 percent off your cart. Note: MacRumors is an affiliate partner with Twelve South. When you click a link and make a purchase, we may receive a small payment, which helps us keep the site running. Our code works sitewide on Twelve South, and takes 20 percent off your entire cart, so you can purchase multiple accessories at once for more savings. Once you enter the code MacRumors2025 at checkout, you should start seeing it automatically applied as you browse Twelve South's website. Note: Use code MacRumors2025 at checkout. 20% OFFMacRumors Exclusive Sale at Twelve South This deal will run through Friday, December 19, so you have a little over a week to take advantage of the sale. As of today, Twelve South is still guaranteeing holiday delivery with its economy shipping option, and the cutoff for choosing the ground economy option is December 15. Twelve South offers a large variety of accessories built for Apple products. Some of its newest accessories include the MagSafe Wallet Stand for iPhone 17, Curve Nano for iPhone, ButterFly SE 2-in-1 Qi2 Charger, and PowerBug Wall Charger. You can get 20 percent off these accessories and many more with our exclusive code. If you're on the hunt for more discounts, be sure to visit our Apple Deals roundup where we recap the best Apple-related bargains of the past week. Deals Newsletter Interested in hearing more about the best deals you can find this holiday season? Sign up for our Deals Newsletter and we'll keep you updated so you don't miss the biggest deals of the season! Related Roundup: Apple Deals This article, "Twelve South Introduces 20% Sitewide Discount Exclusive to MacRumors Readers" first appeared on MacRumors.com Discuss this article in our forums View the full article

The e-commerce giant says it will expand the service to additional cities in 2026. View the full article

Starting today, many Adobe Photoshop, Adobe Acrobat, and Adobe Express features are available to use directly in ChatGPT, allowing you to edit photos, transform PDF documents, design event invitations, and more with conversational prompts. After connecting the apps, you can use prompts such as "add creative effects to the background" or "create an invitation for my dance party." Here is what you can do, according to Adobe: Easily edit and uplevel images with Adobe Photoshop: Adjust a specific part of an image, fine-tune image settings like brightness, contrast and exposure, and apply creative effects like Glitch and Glow — all while preserving the quality of the image.Create and personalize designs with Adobe Express: Browse Adobe Express' extensive library of professional designs to find the best one for any moment, fill in the text, replace images, animate designs and iterate on edits — all directly inside the chat and without needing to switch to another app — to create standout content for any occasion.Transform and organize documents with Adobe Acrobat: Edit PDFs directly in the chat, extract text or tables, organize and merge multiple files, compress files and convert them to PDF while keeping formatting and quality intact. Acrobat for ChatGPT also enables people to easily redact sensitive details.After connecting the apps to ChatGPT in Settings → Apps & Connectors, you can find them by clicking on the plus sign next to the chat field and selecting "More." ChatGPT can also automatically surface the apps if you use a prompt such as "Adobe Photoshop, help me blur the background of this image" or "Adobe Acrobat, help me edit this PDF." Adobe's app integrations are available to all ChatGPT users worldwide, for free, across ChatGPT.com and the ChatGPT app for the iPhone, iPad, and Mac. Adobe Express for ChatGPT is also available on Android, with support for Photoshop and Acrobat for ChatGPT on Android coming soon, according to the announcement. If you want to use more advanced features, you an seamlessly move from ChatGPT to Adobe's standalone apps and pick up right where you left off.Tags: Adobe, ChatGPT This article, "Adobe Photoshop and Adobe Acrobat Features Now Available in ChatGPT" first appeared on MacRumors.com Discuss this article in our forums View the full article