Skip to content
View in the app

A better way to browse. Learn more.

hosang I.T.

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

Tech

Tech Articles from a wide variety of topics and categories
Dozens of Apple engineers and designers with expertise in audio, watch design, robotics, and other core product areas have left the company for OpenAI in recent months, the Wall Street Journal reports.


According to the Wall Street Journal, a review of data from LinkedIn suggests a signifiant scale and concentration of talent now moving specifically to OpenAI as it builds a dedicated hardware division. The reviewed profiles show that former Apple staff joining OpenAI include contributors to multiple flagship categories, ranging from wearable-device industrial design to platform-level audio technologies used across the iPhone, AirPods, and Apple Watch. Several individuals also listed experience in robotics. OpenAI is expected to launch its first hardware device next year.

Earlier this week, it emerged that Meta had hired multiple Apple employees, including longtime Apple designer Alan Dye, while conducting its own recruiting blitz for AI and smartglasses development. Meanwhile, Apple announced the retirement of Senior Vice President and General Counsel Kate Adams, Lisa Jackson, Vice President of Environment, Policy and Social Initiatives, and AI chief John Giannandrea. Earlier this year, Apple lost Chief Operating Officer Jeff Williams, who is retiring, and Chief Financial Officer Luca Maestri. There have also been rumors about Apple CEO Tim Cook retiring, with rumors suggesting he is preparing to leave his role as soon as next year.

Tag: OpenAI
This article, "Report: Apple Bleeding Talent to OpenAI" first appeared on MacRumors.com

Discuss this article in our forums

View the full article
Amazon's Cyber Week discounts on the Apple Watch Series 11 GPS and cellular models are still available in a few colors and sizes today, with $70 off select devices. All of these deals are matches for the best prices we've ever tracked on Apple Watch Series 11.

Note: MacRumors is an affiliate partner with Amazon. When you click a link and make a purchase, we may receive a small payment, which helps us keep the site running.

You can get the 42mm GPS Apple Watch Series 11 for $329.00, down from $399.00, and the 46mm GPS model for $359.00, down from $429.00. You'll find three of the 42mm GPS models on sale at this all-time low price, and four of the 46mm GPS models discounted by $70 in this sale.

$70 OFFApple Watch Series 11 (42mm GPS) for $329.00
$70 OFFApple Watch Series 11 (46mm GPS) for $359.00

If you're shopping for cellular models, you can find record low prices on multiple models this week on Amazon. The 42mm cellular Apple Watch Series 11 has hit $429.99, down from $499.00, and the 46mm cellular model has hit $459.99, down from $529.00.

$69 OFFApple Watch Series 11 (42mm Cell) for $429.99
$69 OFFApple Watch Series 11 (46mm Cell) for $459.99

In addition to Series 11 deals, Amazon has $50 off Apple Watch SE 3 this week.

Apple Watch SE 3
Apple Watch SE 3 (40mm GPS) - $199.00 ($50 off)
Apple Watch SE 3 (44mm GPS) - $229.00 ($50 off)

Head to our full Deals Roundup to get caught up with all of the latest deals and discounts that we've been tracking over the past week.



Deals Newsletter

Interested in hearing more about the best deals you can find this holiday season? Sign up for our Deals Newsletter and we'll keep you updated so you don't miss the biggest deals of the season!




Related Roundup: Apple Deals
This article, "Amazon Takes $70 Off Apple Watch Series 11, Starting at $329" first appeared on MacRumors.com

Discuss this article in our forums

View the full article
The EC is taking issue with the fact that X, the social network formerly known as Twitter, has been allowing anyone to buy a "blue checkmark," the platform's long-standing symbol that a user has been verified to be who they are claiming to be. View the full article
Developers live in their editors. As agents become capable enough to write and refactor code, they should work natively inside those environments. 
That’s why JetBrains and Zed are co-developing ACP, the Agent Communication Protocol. ACP gives agents and editors a shared language, so any agent can read context, take actions, and respond intelligently without bespoke wiring for every tool.
Why it matters
Every protocol that’s reshaped development (LSP for language tools, MCP for AI context) works the same way: define the standard once, unlock the ecosystem. ACP does this for the editor itself. Write an agent that speaks ACP, and it works in JetBrains, Zed, or anywhere else that adopts the protocol. 
Docker’s contribution
Docker’s cagent, an open-source multi-agent runtime, already supports ACP, alongside Claude Code, Codex CLI, and Gemini CLI. Agents built with cagent can run in any ACP-compatible IDE, like JetBrains, immediately.
We’ve also shipped Dynamic MCPs, letting agents discover and compose tools at runtime, surfaced directly in the editor where developers work.
What’s next
ACP is early, but the direction is clear. As agents embed deeper into workflows, the winners will be tools that interoperate. Open standards let everyone build on shared foundations instead of custom glue.
Docker will continue investing in ACP and standards that make development faster, more open, and more secure. When code, context, and automation converge, shared protocols ensure we move forward together.
View the full article
A U.S. appeals court has upheld a temporary restraining order that prevents OpenAI and Jony Ive's new hardware venture from using the name "io" for products similar to those planned by AI audio startup iyO, Bloomberg Law reports.


iyO sued OpenAI earlier this year after the latter announced its partnership with Ive's new firm, arguing that OpenAI's planned "io" branding was too close to its own name and related to similar AI-driven hardware. Court filings later showed that Ive and Sam Altman chose the name io in mid-2023, and that iyO CEO Jason Rugolo had approached Altman in early 2025 seeking funding for a project about "the future of human-computer interface." Altman declined, saying he was already working on "something competitive."

OpenAI countered that io's first product would not be a wearable device, and that Rugolo had voluntarily disclosed details about iyO while suggesting OpenAI acquire his company for $200 million. Despite this, a district court issued a temporary restraining order blocking OpenAI, Altman, Ive, and IO Products, Inc. from using the io mark in connection with products deemed sufficiently similar to iyO's planned AI-audio computer. OpenAI removed its io branding shortly after.

The Ninth Circuit affirmed the order earlier this week. The court agreed there was a likelihood of confusion between "IO" and "iyO," that reverse confusion was a significant risk given OpenAI's size, and that iyO could face irreparable harm to its brand and fundraising. However, the ruling does not bar all uses of the io name, only marketing and selling hardware similar to iyO's.

The case now returns to the district court for a preliminary injunction hearing in April 2026, with the broader litigation expected to extend into 2027 and 2028. OpenAI's first hardware device is expected to launch next year.Tags: Jony Ive, OpenAI
This article, "Jony Ive's OpenAI Device Barred From Using 'io' Name" first appeared on MacRumors.com

Discuss this article in our forums

View the full article
The AI rush is repeating a familiar mistake. Early in my career, a risk executive I worked with used to say, “You didn’t invite me to drink the beer; now you want me to pay the bill?” whenever problems came up because a project moved ahead without enough oversight. If someone tried to avoid explaining the details, he’d add, “I don’t know if you’re showing me the monster’s head or just its toe.”
Since 2011, I’ve watched new products, business services and innovations launch without enough security or risk checks. Cloud computing, big data, BYOD, APIs, IoT, social media and low-code are just a few examples. We usually innovate first and worry about governance later.
AI is following the same pattern. Leaders in many industries are excited about AI, just like they were with earlier technologies. But many still don’t have a clear way to track where AI is used, who owns the risks or how automated decisions could affect the business.
Ten years of fail fast have shown us the risks: more incidents, data breaches and bigger exposure. If organizations don’t build risk and accountability into AI now, they’ll face the same problems we saw with earlier innovations.
The real risk isn’t AI itself, it’s how we use it
Even with detailed frameworks like the MIT AI Risk Repository, many organizations still struggle to connect AI risks to real business problems. Everyone wants new use cases, but few are tracking where risks begin — in the data, the models or the quick decisions machines make.
In fact, AI risks aren’t just about the future — they’re already part of daily operations. These risks arise when algorithms affect business results without clear accountability, when tools collect sensitive data and when automated systems make decisions that people no longer check.
These governance gaps aren’t new. We saw the same issues with cloud, APIs, IoT and big data. The solution is also familiar: keep track, assess, control and monitor. The first step is knowing where AI is used, what data it handles and which processes it touches. With this visibility, governance becomes about managing what’s already in the business, not just fearing the unknown.
The next step is protection. We don’t need to reinvent the wheel or develop advanced new methods. Instead, we should start with the basics: with simple governance steps and then you can evolve your journey.
Borrow what already works
The good news is companies don’t have to start from scratch with AI governance. Guidelines for secure and compliant technology already exist in cybersecurity, cloud and privacy programs.
What’s needed is to apply traditional controls to this new context:
Classification and ownership. Every model should have a clear owner, with limits on who can train, query or deploy it. Its relevance to the business should be clear by different criteria, such as regulatory, operational or revenue. Baseline security and non-negotiables. Access control, multifactor authentication, network segmentation and audit logging are just as important for AI environments as they are for servers or clouds. Continuous monitoring. Model behavior should be more than just accurate — it should be observable, traceable and accountable for any changes in purpose. Third-party due diligence. Contracts with AI providers should clearly define rights over training data, generated content and how to respond to incidents. Testing and validation. Red-teaming, AI-specific penetration testing and scenario simulations should be regular practices. These controls aren’t new, nor is the hope of avoiding another form of technical debt. Maybe this time we can apply the secure by design approach.
The same governance principles will be tested again soon; this time by a new wave of autonomous systems.
The rise of agent AI and the accountability vacuum
A new generation of agent AI systems can act on their own across different platforms, doing tasks, making purchases or retrieving data without direct human input. This move from simple chatbots to self-directed agents creates an accountability gap that most organizations aren’t ready for.
Without the right guardrails, an agent can access systems it shouldn’t, expose confidential data, create unreliable information, start unauthorized transactions, skip established workflows or even act against company policy or ethics. These risks are made worse by how fast and independently agent AI works, which can cause big problems before people notice.
In the rush to try new things, many companies launch these agents without basic access controls or oversight. The answer is to use proven controls like least privilege, segregation of duties, monitoring and accountability.
Executives should be able to answer fundamental questions, drawn from frameworks such as NIST AI RMF, about any autonomous AI operating in their environment:
What governance processes are in place (policies, roles and responsibilities, oversight)? Which use cases and business applicability are being leveraged? Who is accountable when it goes wrong? Which risks does it represent? And which controls are applied? Building governance into the business, not around it
Effective AI governance isn’t an IT function, any more than cybersecurity is. It’s a business function with shared accountability. Forward-looking organizations are now introducing three mechanisms that embed governance into operations:
AI self-assessment frameworks — simple checklists that help each business unit map their AI use cases, data sources and risks. Leverage governance committees — cross-functional bodies with representation from risk, compliance, cybersecurity and business leaders. Corporate AI use policies — defining approved tools, contractual standards and minimum safeguards for both internal and external AI usage. These aren’t bureaucratic layers but foundations of sustainable innovation. When the business owns the inventory, risk teams can focus on assurance rather than discovery. Modern governance should enable adoption, not inhibit or slow it down, but help scale it safely.
Don’t build another debt
The similarities to cloud adoption are clear. Ten years ago, not having early controls led to exposed data, unmonitored systems and expensive fixes. AI is showing the same pattern, but it’s happening faster and with bigger consequences.
Technical debt isn’t just about code anymore. It’s also about trusting your data, holding models accountable and protecting your brand’s reputation.
The organizations that succeed with AI will be the ones that see governance as part of the design process, not as something that causes delays. They’ll move forward with clear plans and measure value and risk together.
They’ll see that real innovation isn’t just about building smarter systems but about making them safe, accountable and trusted from the start. For technology and business leaders, this isn’t just a security imperative. It’s a strategy for sustainable innovation.
This article is published as part of the Foundry Expert Contributor Network.
Want to join?
View the full article
AI agents embedded in CI/CD pipelines can be tricked into executing high-privilege commands hidden in crafted GitHub issues or pull request texts.
Researchers at Aikido Security have traced the problem back to workflows that pair GitHub Actions or GitLab CI/CD with AI tools such as Gemini CLI, Claude Code Actions, OpenAI Codex Actions or GitHub AI Inference. They found that unsupervised user-supplied strings such as issue bodies, pull request descriptions, or commit messages, could be fed straight into prompts for AI agents in an attack they are calling PromptPwnd.
Depending on what the workflow lets the AI do, this can lead to unintended edits to repository content, disclosure of secrets, or other high-impact actions.
“AI agents connected to GitHub Actions/GitLAb CI/CD are processing untrusted user input, and executing shell commands with access to high-privilege tokens,” the researchers wrote in a blog post about PromptPwnd. They said they reproduced the problem in a test environment, and notified the affected vendors.
The researchers recommended running a set of open-source detection rules on suspected GitHub Action .yml files, or using their free code scanner on GitHub and GitLab repos.
Aikido Security said that Google had patched the issue in Gemini CLI upon being informed; Google did not immediately respond to a request for information about this.
Why PromptPwnd works
PromptPwnd exploits become possible when two flawed pipeline configurations occur together: when AI agents operating inside CI/CD workflows have access to powerful tokens (like GITHUB_TOKEN, cloud-access keys), and their prompts embed user-controlled fields.
Prompt injection becomes easier with such a setup, the researchers explained. An attacker can simply open an issue on a public repository and insert hidden instructions or seemingly innocent comments that double as commands for the model to pick. “Imagine you are sending a prompt to an LLM, and within that prompt, you are including the commit message,” the researchers said. “If that commit message is a malicious prompt, then you may be able to get the model to send back altered data.” The model’s response, if used directly inside commands to tools within CI/CD pipelines, can manipulate those tools to retrieve sensitive information.
Aikido Security demonstrated this in a controlled environment (without real tokens) to show that Gemini CLI could be manipulated into executing attacker-supplied commands and exposing sensitive credentials through a crafted GitHub issue. “Gemini CLI is not an isolated case. The same architecture pattern appears across many AI-powered GitHub Actions,” the researchers said, adding that the list included Claude Code, OpenAI Codex, and GitHub AI Inference.
All of these tools can be tricked (via issue, pull-request description, or other user-controlled text) into producing instructions that the workflow then executes with its privileged GitHub Actions token.
Mitigation plan
Aikido has open-sourced detection rules via their “Opengrep” tool that allows developers and security teams to scan their YAML workflows automatically, revealing whether they feed untrusted inputs into AI prompts.
The researchers said that only a subset of workflows have confirmed exploit paths so far, and that it is working with several other companies to address the underlying vulnerabilities. Some workflows can only be abused with collaborator-level access, while others can be triggered by anyone who files an issue or pull request.
Developer teams are advised to restrict what AI agents can do, avoid piping untrusted user content into prompts, treat AI output as untrusted code, and contain damage from compromised GitHub tokens.
Aikido Security said its code scanner can help flag these vulnerabilities by detecting unsafe GitHub Actions configurations (including risky AI prompt flows), identifying over-privileged tokens, and surfacing insecure CI/CD patterns via infrastructure-as-code scanning.
There are other best practices for securing CI/CD pipelines that enterprises can adopt, too.
This article first appeared on Infoworld.
View the full article
Two hacking groups with ties to China have been observed weaponizing the newly disclosed security flaw in React Server Components (RSC) within hours of it becoming public knowledge. The vulnerability in question is CVE-2025-55182 (CVSS score: 10.0), aka React2Shell, which allows unauthenticated remote code execution. It has been addressed in React versions 19.0.1, 19.1.2, and 19.2.1. AccordingView the full article
Andrey_Popov – shutterstock.com
Einer aktuellen Studie des Security-Anbieters Sophos zufolge schneidet die Fertigungsindustrie beim Schutz vor Ransomware besser ab. Im Vergleich zu früheren Studienergebnissen sind viele Produktionsunternehmen inzwischen in der Lage, Ransomware-Attacken zu stoppen, bevor Daten verschlüsselt werden.
Sinkende Verschlüsselungsraten
So führten laut der aktuellen Untersuchung lediglich 40 Prozent der Cyberangriffe zu einer Datenverschlüsselung. Laut Sophos ist dies der niedrigste Wert seit fünf Jahren und ein Rückgang gegenüber 74 Prozent im Vorjahr. Datendiebstahl bleibt jedoch ein zentrales Risiko: 39 Prozent der Produktionsunternehmen, bei denen Daten durch Ransomware verschlüsselt wurden, kamen zusätzlich auch Daten abhanden – einer der höchsten Werte aller untersuchten Branchen.
Eine der Folgen laut Studie: Mehr als die Hälfte der betroffenen Unternehmen hat das Lösegeld trotz verbesserter Abwehrmaßnahmen bezahlt. Der mediane Lösegeldbetrag lag bei rund 861.000 Euro, verglichen mit einer medianen Forderung von zirka einer Millionen Euro.
Fachkräftemangel und unzureichender Schutz begünstigen Angriffe
42,5 Prozent der Unternehmen aus der Fertigungsbranche nannten fehlende Expertise als Angriffsursache. Unbekannte Sicherheitslücken wurden von 41,6 Prozent als Grund genannt, fehlende Schutzmaßnahmen von 41 Prozent. Im Durchschnitt identifizierten die Befragten drei interne Faktoren, die zum Angriff beitrugen.
Darüber hinaus zeigen die Ergebnisse, dass Ransomware-Angriffe IT- und Sicherheitsteams nach wie vor stark belasten. 47 Prozent der Fertigungsunternehmen berichteten von erhöhtem Stress in den Teams nach einer Datenverschlüsselung. 44 Prozent erleben steigenden Druck von Führungskräften und 27 Prozent bestätigten einen Führungswechsel infolge des Angriffs.
Im Rahmen der Studie wurden weltweit 332 Fertigungsunternehmen befragt, die  im vergangenen Jahr von Ransomware betroffen waren.
View the full article
Andrey_Popov – shutterstock.com
Einer aktuellen Studie des Security-Anbieters Sophos zufolge schneidet die Fertigungsindustrie beim Schutz vor Ransomware besser ab. Im Vergleich zu früheren Studienergebnissen sind viele Produktionsunternehmen inzwischen in der Lage, Ransomware-Attacken zu stoppen, bevor Daten verschlüsselt werden.
Sinkende Verschlüsselungsraten
So führten laut der aktuellen Untersuchung lediglich 40 Prozent der Cyberangriffe zu einer Datenverschlüsselung. Laut Sophos ist dies der niedrigste Wert seit fünf Jahren und ein Rückgang gegenüber 74 Prozent im Vorjahr. Datendiebstahl bleibt jedoch ein zentrales Risiko: 39 Prozent der Produktionsunternehmen, bei denen Daten durch Ransomware verschlüsselt wurden, kamen zusätzlich auch Daten abhanden – einer der höchsten Werte aller untersuchten Branchen.
Eine der Folgen laut Studie: Mehr als die Hälfte der betroffenen Unternehmen hat das Lösegeld trotz verbesserter Abwehrmaßnahmen bezahlt. Der mediane Lösegeldbetrag lag bei rund 861.000 Euro, verglichen mit einer medianen Forderung von zirka einer Millionen Euro.
Fachkräftemangel und unzureichender Schutz begünstigen Angriffe
42,5 Prozent der Unternehmen aus der Fertigungsbranche nannten fehlende Expertise als Angriffsursache. Unbekannte Sicherheitslücken wurden von 41,6 Prozent als Grund genannt, fehlende Schutzmaßnahmen von 41 Prozent. Im Durchschnitt identifizierten die Befragten drei interne Faktoren, die zum Angriff beitrugen.
Darüber hinaus zeigen die Ergebnisse, dass Ransomware-Angriffe IT- und Sicherheitsteams nach wie vor stark belasten. 47 Prozent der Fertigungsunternehmen berichteten von erhöhtem Stress in den Teams nach einer Datenverschlüsselung. 44 Prozent erleben steigenden Druck von Führungskräften und 27 Prozent bestätigten einen Führungswechsel infolge des Angriffs.
Im Rahmen der Studie wurden weltweit 332 Fertigungsunternehmen befragt, die  im vergangenen Jahr von Ransomware betroffen waren.
View the full article
Netflix today announced that it will acquire Warner Bros. Discovery's vast studios and streaming operations for $82.7 billion.


The transaction will see Netflix acquire Warner Bros., HBO, and HBO Max in a cash-and-stock deal valued at $72 billion in equity and $82.7 billion, including debt (via Reuters). The acquisition gives it control of major franchises, including DC, Game of Thrones, Harry Potter, Looney Tunes, and the Warner Bros. film library, dramatically expanding the volume and diversity of content available under one streaming umbrella. The acquisition also gives Netflix the established HBO brand and its library of prestige television series such as The Sopranos, Succession, and The Wire.

Netflix said that it intends to maintain Warner Bros.' theatrical distribution, preserve HBO Max as a discrete service in the near term, and integrate HBO and Warner Bros. content into its own catalog.



Netflix confirmed that each Warner Bros. Discovery shareholder will receive $23.25 in cash and $4.50 in Netflix stock per share. The deal is contingent on Warner Bros. Discovery completing the previously announced separation of Discovery Global into a standalone company in the third quarter of 2026, as well as regulatory approval. The transaction is expected to take 12 to 18 months to complete.

Reports in October claimed that Apple was interested in acquiring Warner Bros. Discovery's extensive back catalog of content for Apple TV. With that prospect now firmly ruled out, ‌Apple TV‌ is highly likely to face heightened competition from Netflix in the years to come.

Tags: Discovery, Netflix, Warner Brothers
This article, "Netflix to Buy Warner Bros. Discovery in Major Streaming Deal" first appeared on MacRumors.com

Discuss this article in our forums

View the full article
At Docker, we are committed to making the AI development experience as seamless as possible. Today, we are thrilled to announce two major updates that bring state-of-the-art performance and frontier-class models directly to your fingertips: the immediate availability of Mistral AI’s Ministral 3 and DeepSeek-V3.2, alongside the release of vLLM v0.12.0 on Docker Model Runner.
Whether you are building high-throughput serving pipelines or experimenting with edge-optimized agents on your laptop, today’s updates are designed to accelerate your workflow.
Meet Ministral 3: Frontier Intelligence, Edge Optimized
While vLLM powers your production infrastructure, we know that development needs speed and efficiency right now. That’s why we are proud to add Mistral AI’s newest marvel, Ministral 3, to the Docker Model Runner library on Docker Hub.
Ministral 3 is Mistral AI’s premier edge model. It packs frontier-level reasoning and capabilities into a dense, efficient architecture designed specifically for local inference. It is perfect for:
Local RAG applications: Chat with your docs without data leaving your machine. Agentic Workflows: Fast reasoning steps for complex function-calling agents. Low-latency prototyping: Test ideas instantly without waiting for API calls. DeepSeek-V3.2: The Open Reasoning Powerhouse
We are equally excited to introduce support for DeepSeek-V3.2. Known for pushing the boundaries of what open-weights models can achieve, the DeepSeek-V3 series has quickly become a favorite for developers requiring high-level reasoning and coding proficiency.
DeepSeek-V3.2 brings Mixture-of-Experts (MoE) architecture efficiency to your local environment, delivering performance that rivals top-tier closed models. It is the ideal choice for:
Complex Code Generation: Build and debug software with a model specialized in programming tasks. Advanced Reasoning: Tackle complex logic puzzles, math problems, and multi-step instructions. Data Analysis: Process and interpret structured data with high precision. Run Them with One Command
With Docker Model Runner, you don’t need to worry about complex environment setups, python dependencies, or weight downloads. We’ve packaged both models so you can get started immediately.
To run Ministral 3:
docker model run ai/ministral3 To run DeepSeek-V3.2:
docker model run ai/deepseek-v3.2-vllm These commands automatically pull the model, set up the runtime, and drop you into an interactive chat session. You can also point your applications to them using our OpenAI-compatible local endpoint, making them drop-in replacements for your cloud API calls during development.
vLLM v0.12.0: Faster, Leaner, and Ready for What’s Next
We are excited to highlight the release of vLLM v0.12.0. vLLM has quickly become the gold standard for high-throughput and memory-efficient LLM serving, and this latest version raises the bar again.
Version 0.12.0 brings critical enhancements to the engine, including:
Expanded Model Support: Day-0 support for the latest architecture innovations, ensuring you can run the newest open-weights models (like DeepSeek V3.2 and Ministral 3) the moment they drop. Optimized Kernels: Significant latency reductions for inference on NVIDIA GPUs, making your containerized AI applications snappier than ever. Enhanced PagedAttention: Further optimizations to memory management, allowing you to batch more requests and utilize your hardware to its full potential. Why This Matters
The combination of Ministral 3, DeepSeek-V3.2, and vLLM v0.12.0 represents the maturity of the open AI ecosystem.
You now have access to a serving engine that maximizes data center performance, alongside a choice of models to fit your specific needs—whether you prioritize the edge-optimized speed of Ministral 3 or the deep reasoning power of DeepSeek-V3.2. All of this is easily accessible via Docker Model Runner.
How You Can Get Involved
The strength of Docker Model Runner lies in its community, and there’s always room to grow. We need your help to make this project the best it can be. To get involved, you can:
Star the repository: Show your support and help us gain visibility by starring the Docker Model Runner repo. Contribute your ideas: Have an idea for a new feature or a bug fix? Create an issue to discuss it. Or fork the repository, make your changes, and submit a pull request. We’re excited to see what ideas you have! Spread the word: Tell your friends, colleagues, and anyone else who might be interested in running AI models with Docker. We’re incredibly excited about this new chapter for Docker Model Runner, and we can’t wait to see what we can build together. Let’s get to work!
View the full article
Apple's first foldable iPhone will reportedly drop the physical SIM card slot in favor of eSIM technology, according to a well-known Chinese leaker posting on Weibo today.


Apple is expected to introduce the device late next year or in early 2027, based on multiple reports. The so-called "iPhone Fold" is rumored to feature a 5.5-inch outer display and a book-style design that opens to reveal a roughly 7.8-inch inner screen reminiscent of an iPad mini.

Bloomberg's Mark Gurman has described the foldable as "super thin and a design achievement," comparing it to "two titanium iPhone Airs side by side." Internal volume will therefore be tightly constrained.

"It's highly likely that the foldable iPhone will come without a SIM card slot, supporting eSIM only," said leaker Instant Digital, echoing earlier expectations from Gurman and analyst Ming-Chi Kuo.

Instant Digital also highlighted the current shortcomings of eSIM in mainland China, where users strongly prefer physical SIM activation and dual-SIM slots. China's fast-moving resale and device-trial culture makes quick SIM transfers essential, meaning an eSIM-only foldable would rely heavily on seamless carrier provisioning.

Apple is aware of the hurdles. The iPhone Air, which adopted an eSIM-only design for similar space-driven reasons, depends on dedicated support from China Mobile, China Telecom, and China Unicom. It allows up to two active eSIMs, but activation still requires an in-store visit.

Globally, iPhone Air sales have undershot expectations, to say the least. Many consumers have focused less on its thin profile and more on the trade-offs it introduced, such as reduced battery life and a single rear camera. In China, the eSIM limitation will have surely added another layer of hesitation.

The foldable iPhone is rumored to introduce several new technologies, including a 24-megapixel under-display camera and a crease-free inner panel. Apple will be banking on these advances to overcome concerns about usability, especially in markets where eSIM adoption lags.
iPhone Fold: Launch, Pricing, and What to Expect From Apple's Foldable
Reports suggest the device could cost between $2,000 and $2,500 in the United States, suggesting it could be the most expensive iPhone to date.Tags: Foldable iPhone, Instant Digital
This article, "iPhone Fold Will Be eSIM-Only, But Chinese Users May Have Other Ideas" first appeared on MacRumors.com

Discuss this article in our forums

View the full article
In the world of software development and DevOps, efficiency is paramount. One of the most powerful, yet often overlooked tools for achieving this efficiency is the humble Makefile. For developers, system administrators, and DevOps engineers, mastering Makefiles Training can transform chaotic build processes into streamlined, automated workflows. Whether you’re compiling complex applications, managing dependencies, or orchestrating multi-step deployment processes, understanding Makefiles is a game-changing skill. This comprehensive guide explores why Makefiles Training is essential for modern development practices and how proper education can elevate your technical capabilities.
Why Makefiles Remain Essential in Modern Development
Despite the proliferation of newer build tools and automation frameworks, Makefiles have stood the test of time for several compelling reasons. Understanding these fundamentals through Makefiles Training provides benefits that extend across your entire development career:
Universal Compatibility: Make works on virtually every platform—Linux, macOS, and Windows—making your build processes portable and consistent. Build Automation: Makefiles automate complex compilation processes, saving countless hours of manual work and reducing human error. Dependency Management: Make’s intelligent dependency tracking ensures only changed components are rebuilt, dramatically speeding up development cycles. Script Consolidation: Instead of scattered shell scripts, Makefiles centralize your build, test, and deployment commands in one maintainable location. CI/CD Integration: Makefiles provide a consistent interface that integrates seamlessly with continuous integration and deployment pipelines. What Comprehensive Makefiles Training Should Cover
Effective Makefiles Training goes beyond basic syntax to provide a deep understanding of how to create robust, maintainable automation systems. A quality program typically progresses through several key areas:
Foundational Concepts:
Makefile Structure: Understanding targets, prerequisites, and recipes Basic Rules: Creating simple compilation and cleanup rules Variables and Macros: Using variables to make Makefiles reusable and configurable Phony Targets: Managing non-file targets like clean, test, and install Intermediate Techniques:
Automatic Variables: Leveraging $@, $<, $^ for concise rule definitions Pattern Rules: Creating generic rules that apply to multiple file types Functions: Using built-in functions for text processing and file operations Conditionals: Implementing conditional logic based on variables or environment Advanced Applications:
Recursive Make: Managing large projects with multiple Makefiles Dynamic Dependency Generation: Automatically generating dependencies for source files Parallel Execution: Utilizing Make’s built-in parallel build capabilities Integration with Other Tools: Combining Make with Docker, Kubernetes, and cloud deployment tools The DevOpsSchool Advantage: Practical Makefiles Training
When seeking Makefiles Training, the quality of instruction and practical focus are crucial. DevOpsSchool has established itself as a premier platform for hands-on, industry-relevant technical education. Their approach to Makefiles Training emphasizes real-world application over theoretical knowledge, ensuring you gain skills that are immediately valuable in professional settings.
What makes DevOpsSchool’s approach effective:
Project-Based Learning: You’ll work on realistic projects that mirror actual development scenarios Expert Mentorship: Instruction from practitioners who use Makefiles in production environments Flexible Learning Formats: Options for both scheduled online sessions and self-paced study Community Support: Access to forums and peer collaboration for ongoing learning Career-Focused Curriculum: Content designed to address current industry needs and challenges Learning from an Industry Authority: Rajesh Kumar
The effectiveness of technical training often hinges on the instructor’s depth of experience. This is where the Makefiles Training program delivers exceptional value through guidance from Rajesh Kumar, a globally recognized expert with over 20 years of experience in DevOps, automation, and system architecture. His practical insights into how Makefiles integrate with modern DevOps practices provide context that transforms abstract concepts into practical skills. Learning from someone who has implemented these solutions at scale helps you avoid common pitfalls and adopt best practices from day one.
Comprehensive Makefiles Training Curriculum Overview
ModuleKey Topics CoveredPractical ApplicationsMakefile FundamentalsBasic syntax, rules, variables, simple automationCreating basic build systems for small projectsIntermediate TechniquesPattern rules, functions, conditionals, dependency managementBuilding maintainable Makefiles for medium-sized applicationsAdvanced Makefile ConceptsRecursive Make, dynamic dependencies, parallel buildsManaging complex projects with multiple componentsReal-World IntegrationDocker integration, cloud deployment, CI/CD pipeline integrationCreating complete automation systems for DevOps workflows Who Benefits from Professional Makefiles Training?
This comprehensive Makefiles Training serves diverse technical roles:
Software Developers seeking to automate their build and test processes DevOps Engineers building consistent deployment pipelines System Administrators automating maintenance and configuration tasks Build Engineers responsible for complex compilation systems Open Source Contributors working on projects that use Make-based build systems Technical Leads establishing standards for team development workflows Career Benefits of Makefiles Mastery
Investing in Makefiles Training delivers tangible professional advantages:
Increased Productivity: Automate repetitive tasks and focus on higher-value work Improved Code Quality: Consistent builds reduce environment-specific issues Enhanced Collaboration: Standardized build processes improve team efficiency Career Differentiation: Makefile expertise is a valuable, specialized skill Foundation for Advanced Tools: Understanding Make provides context for learning newer build systems Essential Makefile Best Practices
Through comprehensive Makefiles Training, you’ll learn industry-proven practices:
Modular Design: Organizing complex Makefiles into manageable components Documentation: Writing self-documenting Makefiles with clear targets and comments Portability: Creating Makefiles that work across different environments Error Handling: Implementing robust error detection and reporting Performance Optimization: Designing efficient dependency graphs and build processes Getting Started with Your Makefiles Journey
Beginning your Makefiles Training requires understanding both the immediate applications and long-term benefits. Whether you’re looking to streamline personal projects or implement enterprise-grade build systems, structured education provides the fastest path to proficiency.
The demand for automation expertise continues to grow across all technology sectors. Makefiles, with their simplicity and power, remain a fundamental tool in this landscape. By investing in proper Makefiles Training, you’re not just learning a specific tool—you’re developing a mindset for automation that applies across your entire technical career.
Ready to transform your approach to build automation and development workflows? Begin your journey toward Makefile mastery with comprehensive, practical education designed for real-world application.
Start automating smarter today. Explore the complete Makefiles Training program curriculum and enrollment details here: Makefiles Training
Contact DevOpsSchool for Program Information:
Email: [email protected] Phone & WhatsApp (India): +91 84094 92687 Phone & WhatsApp (USA): +1 (469) 756-6329 Website: https://www.devopsschool.com/

View the full article
A human rights lawyer from Pakistan's Balochistan province received a suspicious link on WhatsApp from an unknown number, marking the first time a civil society member in the country was targeted by Intellexa's Predator spyware, Amnesty International said in a report. The link, the non-profit organization said, is a "Predator attack attempt based on the technical behaviour of the infectionView the full article
In today’s rapidly evolving technology landscape, Linux Training has become more essential than ever. From cloud infrastructure and DevOps environments to cybersecurity and enterprise servers, Linux serves as the fundamental operating system powering the digital world. Whether you’re a beginner entering the IT field, a professional transitioning to cloud technologies, or an experienced engineer seeking to deepen your system administration skills, comprehensive Linux Training provides the critical foundation for success. This guide explores why structured Linux Training is indispensable for building modern technical competencies and how the right program can transform your career trajectory.
Why Linux Skills Are Essential in Today’s Tech Ecosystem
The technology industry’s shift toward cloud computing, containerization, and automation has made Linux knowledge non-negotiable. Consider these compelling reasons why Linux Training should be your priority:
Cloud Computing Foundation: All major cloud platforms—AWS, Azure, and Google Cloud—run predominantly on Linux servers. Understanding Linux system administration is fundamental to managing cloud resources effectively. DevOps and Automation: Modern DevOps practices rely heavily on Linux environments for continuous integration, container orchestration (like Kubernetes), and infrastructure automation. Career Versatility: Linux skills open doors to diverse roles including system administration, cloud engineering, DevOps engineering, cybersecurity, and site reliability engineering. Enterprise Adoption: Over 90% of the world’s supercomputers and the majority of web servers run on Linux, making it essential for enterprise IT infrastructure. Cost Efficiency: Linux’s open-source nature makes it the preferred choice for organizations seeking reliable, secure, and cost-effective solutions. Beyond Basic Commands: What Comprehensive Linux Training Should Cover
While many professionals have some exposure to basic Linux commands, comprehensive Linux Training should provide a structured path from fundamentals to advanced administration. A quality program typically includes:
Core Fundamentals:
Linux Installation and Configuration: Setting up different distributions and understanding system architecture Command Line Mastery: Essential commands, file system navigation, and text processing User and Permission Management: Understanding Linux users, groups, and file permissions Package Management: Installing, updating, and managing software across different distributions Intermediate Skills:
Process and Service Management: Controlling system processes and managing services Network Configuration: Setting up and troubleshooting network connections Shell Scripting: Automating tasks with Bash scripting fundamentals Disk Management: Partitioning, mounting, and managing storage Advanced Administration:
Security Implementation: Configuring firewalls, implementing security best practices System Monitoring and Performance: Using tools to monitor system health and optimize performance Backup and Recovery: Implementing reliable backup strategies and disaster recovery plans Virtualization Basics: Understanding containers and virtual machines in Linux environments The DevOpsSchool Advantage: Practical Linux Training for Real-World Applications
When choosing a Linux Training program, the methodology and practical application matter significantly. DevOpsSchool distinguishes itself through its hands-on, mentor-led approach that emphasizes real-world applicability. Their Linux Training program is designed to bridge the gap between theoretical knowledge and practical implementation, ensuring you gain skills that are immediately applicable in professional settings.
What sets DevOpsSchool apart:
Hands-On Learning Approach: Every theoretical concept is reinforced with practical exercises and real-world scenarios Industry-Relevant Curriculum: Content is continuously updated to reflect current industry requirements and best practices Flexible Learning Options: Both instructor-led online sessions and self-paced learning materials are available Certification Preparation: The program prepares you for recognized Linux certifications that validate your skills Expert-Led Instruction: Learn from practitioners who bring real-world experience to the classroom Learn from an Industry Leader: Rajesh Kumar’s Expertise
The quality of instruction often determines the effectiveness of technical training. The Linux Training program is enhanced by the guidance of Rajesh Kumar, a globally recognized expert with over two decades of experience in DevOps, cloud technologies, and system administration. His practical insights and deep understanding of how Linux fits into modern technology stacks provide valuable context that goes beyond textbook learning. Learning from his extensive experience helps students understand not just the “how” but the “why” behind Linux administration practices, preparing them for complex real-world challenges.
Comprehensive Linux Training Curriculum Overview
ModuleKey Topics CoveredSkills DevelopedLinux FundamentalsInstallation, file systems, basic commands, user managementSystem setup and basic administrationIntermediate AdministrationProcess control, networking, package management, shell scriptingSystem management and automationAdvanced OperationsSecurity configuration, performance monitoring, backup strategiesEnterprise-level administrationReal-World ApplicationsCloud integration, container basics, DevOps toolchainModern infrastructure management Who Benefits Most from Professional Linux Training?
This comprehensive Linux Training program serves multiple career paths:
IT Beginners: Individuals starting their technology careers who need foundational operating system knowledge Windows Administrators: Professionals transitioning from Windows to Linux environments Developers: Software engineers who need to understand their deployment environments better DevOps Professionals: Those implementing automation and infrastructure-as-code practices Cloud Engineers: Professionals working with cloud platforms that rely on Linux infrastructure Career Changers: Individuals transitioning into technology roles from other fields Career Outcomes and Professional Benefits
Investing in comprehensive Linux Training delivers significant career advantages:
Enhanced Employability: Linux skills are consistently among the most requested qualifications in IT job postings Higher Earning Potential: Professionals with certified Linux skills typically command higher salaries Career Flexibility: Linux knowledge opens opportunities across multiple technology domains Future-Proof Skills: As technology evolves, Linux remains a constant foundational element Professional Credibility: Recognized certifications validate your expertise to employers Choosing the Right Linux Training Path
When selecting a Linux Training program, consider these essential factors:
Curriculum Depth: Ensure the program covers both fundamentals and advanced topics Practical Components: Look for hands-on labs and real-world exercises Instructor Quality: Seek programs taught by experienced industry professionals Certification Alignment: Consider programs that prepare you for recognized certifications Learning Flexibility: Choose formats that fit your schedule and learning style Take the Next Step in Your Technology Career
In today’s technology-driven world, Linux Training is not just an option—it’s a necessity for anyone serious about building a successful technology career. The skills you develop through comprehensive Linux Training will serve as the foundation for learning advanced technologies and progressing in your professional journey.
Ready to build your Linux expertise and unlock new career opportunities? Explore the comprehensive Linux Training program designed to take you from fundamentals to advanced administration.
Begin your Linux mastery journey today. To learn more about the program curriculum, schedules, and enrollment details, visit: Linux Training
Contact DevOpsSchool for More Information:
Email: [email protected] Phone & WhatsApp (India): +91 84094 92687 Phone & WhatsApp (USA): +1 (469) 756-6329 Website: https://www.devopsschool.com/

View the full article
Most MSPs and MSSPs know how to deliver effective security. The challenge is helping prospects understand why it matters in business terms. Too often, sales conversations stall because prospects are overwhelmed, skeptical, or tired of fear-based messaging. That’s why we created ”Getting to Yes”: An Anti-Sales Guide for MSPs. This guide helps service providers transform resistance into trust andView the full article
Pune stands proudly as one of India’s leading technology epicenters, celebrated not only as the “Oxford of the East” for its academic excellence but also as a dynamic nucleus for IT innovation and digital transformation. With its bustling IT corridors spanning Hinjawadi, Kharadi, and Magarpatta—hosting a diverse mix of agile startups and established global enterprises—the city’s tech landscape is rapidly evolving. This evolution is marked by a decisive shift towards cloud-native architectures, microservices, and DevOps methodologies. At the core of this technological renaissance is Kubernetes, the industry-standard platform for container orchestration. For software engineers, DevOps specialists, system administrators, and IT leaders across Pune, developing comprehensive Kubernetes skills has transitioned from a professional advantage to an essential career requirement. This guide examines why enrolling in structured Kubernetes Training in Pune represents the most strategic and effective approach to converting conceptual knowledge into practical, production-grade expertise, thereby securing a pivotal role in the city’s flourishing tech ecosystem.
The Pune Kubernetes Revolution: Transforming IT Careers Through Container Orchestration
Pune’s information technology sector is uniquely energized by a constant influx of skilled graduates and an escalating corporate demand for innovative digital solutions. Organizations within the automotive, banking, software product, and e-commerce domains are actively modernizing their application infrastructures. The transition from rigid, monolithic systems to adaptable, resilient microservices is critical for achieving accelerated release cycles and superior system reliability. In this context, Kubernetes emerges as a fundamental enabler. It provides the essential framework to automate deployment workflows, manage intricate containerized applications, and ensure effortless scalability. For Pune’s tech professionals, this creates significant opportunity: a noticeable surge in roles specifically requiring container orchestration and cloud-native development competencies, which correlate with enhanced compensation, leadership opportunities in transformative projects, and a resilient career trajectory. Mastering this technology elevates your professional profile from a task-oriented technician to a strategic architect of business agility and innovation.
Bridging the Kubernetes Knowledge Gap: From Basic Commands to Production Mastery
While introductory online tutorials can teach basic kubectl commands and simple application deployment, a substantial chasm exists between this foundational knowledge and the ability to architect a secure, high-availability, production-ready Kubernetes environment. Critical questions often remain unanswered through self-study: How do you implement fine-grained network security policies? Configure reliable persistent storage for stateful services? Or establish an observability stack with proactive monitoring and logging? These gaps in knowledge can be costly. A professional Kubernetes course delivers a cohesive, end-to-end learning journey. It progresses logically from fundamental principles to advanced DevOps integrations, ensuring you grasp the architectural rationale—the “why”—behind every configuration and industry best practice. This comprehensive understanding is precisely what leading employers in Pune seek when hiring engineers capable of owning the complete application lifecycle.
DevOpsSchool: Your Gateway to Practical Kubernetes Education
In an educational market saturated with passive, video-based content, selecting a training partner with a proven, hands-on methodology is paramount. DevOpsSchool has established its reputation by prioritizing practical, mentor-led instruction. Their core educational tenet is that genuine proficiency in cloud-native technologies is cultivated through active doing. For Pune’s ambitious professionals, this principle shapes their Kubernetes Training in Pune into an immersive, interactive experience.
The tangible benefits of this applied learning model:
Scenario-Based, Hands-On Laboratories: Beyond passive observation, you will actively deploy multi-service applications, simulate and troubleshoot failures, enforce security controls, and construct CI/CD pipelines—directly replicating on-the-job responsibilities. Learning Flexibility for Pune’s Professionals: Catering to diverse schedules, DevOpsSchool provides both interactive live online sessions and in-person classroom training in Pune, allowing you to choose the format that best suits your lifestyle. Career Validation via Certification: The curriculum is strategically designed to prepare participants for globally respected credentials such as the Certified Kubernetes Administrator (CKA), offering a credible testament to your skills in a competitive job market. A Sustained Learning Community: Your development continues post-course through access to expert forums, recorded sessions, and peer networks, supporting ongoing professional growth. Learn Kubernetes from Industry Expert Rajesh Kumar
The defining factor of any advanced technical program is the caliber and experience of its instructor. This is where the program offers exceptional value. It is governed and mentored by Rajesh Kumar, an acclaimed expert with over 20 years of frontline experience in DevOps, Site Reliability Engineering (SRE), and cloud architecture. When Rajesh teaches complex topics—from Kubernetes networking models to robust security frameworks—he enriches the theory with real-world context drawn from architecting large-scale systems. He imparts the nuanced patterns, common pitfalls, and battle-tested practices absent from standard documentation. Learning under his guidance propels your progression from a tool operator to a systems designer, equipped with the strategic insight to address Pune’s sophisticated technological challenges.
Comprehensive Kubernetes Training Curriculum: Your Learning Roadmap
The program is architecturally designed to facilitate a complete learning journey, ensuring you attain the confidence to manage real-world Kubernetes environments.
Learning PhaseCore Skills & Competencies You Will GainKubernetes Foundation & Core ConceptsGrasp containerization with Docker, understand Kubernetes architecture (Pods, Deployments, Services), and execute initial application deployments.Kubernetes Networking, Storage & ConfigurationMaster Service types (ClusterIP, NodePort, LoadBalancer), Ingress controllers, Persistent Volumes, and application configuration using ConfigMaps & Secrets.Kubernetes Security, Observability & OperationsImplement Role-Based Access Control (RBAC), define Network Policies, configure monitoring with Prometheus & Grafana, establish logging, and perform cluster maintenance.Advanced Kubernetes Patterns & DevOps IntegrationAutomate deployments using Helm, manage stateful applications with StatefulSets, and integrate Kubernetes into complete CI/CD pipelines for modern GitOps practices. Ideal Candidates for Kubernetes Training in Pune
This training is meticulously crafted for a wide array of roles within Pune’s tech industry:
Software Developers seeking to build, containerize, deploy, and scale modern microservices applications. DevOps & Platform Engineers aiming to master infrastructure-as-code and sophisticated container management. System Administrators transitioning from traditional infrastructure to dynamic, cloud-native platforms. IT Managers & Technical Leads responsible for guiding their organization’s Kubernetes adoption and cloud strategy. Site Reliability Engineers (SREs) dedicated to building scalable, reliable, and observable systems. Career Benefits of Professional Kubernetes Training
Committing to this structured program yields significant, multifaceted career returns:
Accelerated Skill Development: Consolidate what could be years of fragmented learning into a concentrated, expert-guided program. Enhanced Professional Credibility: Combine demonstrable hands-on ability with certification preparedness to distinguish your profile for Pune’s top employers. Advanced Problem-Solving Capability: Develop the architectural mindset required to design solutions and confidently troubleshoot complex, production-level issues. Professional Network Expansion: Connect with a community of motivated Pune-based professionals and gain sustained access to industry mentorship. Begin Your Kubernetes Journey Today
Pune’s technology sector consistently rewards professionals who pioneer change. The demand for Kubernetes proficiency is unequivocal and expanding. The pivotal question is no longer about the necessity of learning Kubernetes but about identifying the most effective pathway to mastery. This Kubernetes Training in Pune is designed to be that definitive pathway—a structured, high-impact program that converts potential into recognized, high-value expertise.
Ready to become a leader in Pune’s cloud-native evolution? Your transformation starts now.
To explore the detailed syllabus, view upcoming batch schedules in Pune, and understand the full scope of this program, visit the official course page: Kubernetes Training in Pune.
Contact DevOpsSchool for More Information and Enrollment:
Email: [email protected] Phone & WhatsApp (India): +91 84094 92687 Phone & WhatsApp (USA): +1 (469) 756-6329 Website: https://www.devopsschool.com/
View the full article
Cloudflare’s network suffered a brief but widespread outage Friday, after an update to its Web Application Firewall to mitigate a vulnerability in React Server Components went wrong.
At 9:09 a.m. UTC, the company reported that it was investigating issues with the Cloudflare Dashboard and related APIs, warning that customers might see requests fail or errors displayed.
Just 10 minutes later, it had deployed a fix — but not before a flood of reports of problems with Cloudflare and its customers poured into uptime tracking sites such as Downdetector.com.
During the same window, Downdetector saw a spike in problem reports for enterprise services including Shopify, Zoom, Claude AI, and Amazon Web Services, and a host of consumer services from games to dating apps.
Cloudflare explained the outage on its service status page: “A change made to how Cloudflare’s Web Application Firewall parses requests caused Cloudflare’s network to be unavailable for several minutes this morning. This was not an attack; the change was deployed by our team to help mitigate the industry-wide vulnerability disclosed this week in React Server Components.”
That vulnerability, tracked as CVE-2025-55182, enables attackers to remotely execute code on web servers running the React 19 library. Cloudflare was no doubt attempting to protect those of its customers who have not yet had an opportunity to patch the vulnerability in the two days since it was revealed.
The wobble in Cloudflare’s services comes just two weeks after a much bigger one rendering its customers’ websites inaccessible or unreliable for hours on Nov. 18. That was caused by one Cloudflare application generating a configuration file that was too big for another application to parse, bringing systems to a halt.
This outsized impact of that small failure on websites around the world was reminiscent of a bug that hit AWS services the previous month. A coding error in its DNS systems led to a DynamoDB endpoint becoming inaccessible. That wouldn’t have been so bad, but many other services used by AWS internally and by its customers relied on it, so they too were affected.
There are some advantages in relying on single service providers such as Cloudflare or AWS for these tasks — including economies of scale and service consistency. But it also makes them single points of failure: when they go down, everything goes down with them. In such a monoculture, the alternatives that might be able to take up the slack have already been weeded out.
View the full article
Cloudflare’s network suffered a brief but widespread outage Friday, after an update to its Web Application Firewall to mitigate a vulnerability in React Server Components went wrong.
At 9:09 a.m. UTC, the company reported that it was investigating issues with the Cloudflare Dashboard and related APIs, warning that customers might see requests fail or errors displayed.
Just 10 minutes later, it had deployed a fix — but not before a flood of reports of problems with Cloudflare and its customers poured into uptime tracking sites such as Downdetector.com.
During the same window, Downdetector saw a spike in problem reports for enterprise services including Shopify, Zoom, Claude AI, and Amazon Web Services, and a host of consumer services from games to dating apps.
Cloudflare explained the outage on its service status page: “A change made to how Cloudflare’s Web Application Firewall parses requests caused Cloudflare’s network to be unavailable for several minutes this morning. This was not an attack; the change was deployed by our team to help mitigate the industry-wide vulnerability disclosed this week in React Server Components.”
That vulnerability, tracked as CVE-2025-55182, enables attackers to remotely execute code on web servers running the React 19 library. Cloudflare was no doubt attempting to protect those of its customers who have not yet had an opportunity to patch the vulnerability in the two days since it was revealed.
The wobble in Cloudflare’s services comes just two weeks after a much bigger one rendering its customers’ websites inaccessible or unreliable for hours on Nov. 18. That was caused by one Cloudflare application generating a configuration file that was too big for another application to parse, bringing systems to a halt.
This outsized impact of that small failure on websites around the world was reminiscent of a bug that hit AWS services the previous month. A coding error in its DNS systems led to a DynamoDB endpoint becoming inaccessible. That wouldn’t have been so bad, but many other services used by AWS internally and by its customers relied on it, so they too were affected.
There are some advantages in relying on single service providers such as Cloudflare or AWS for these tasks — including economies of scale and service consistency. But it also makes them single points of failure: when they go down, everything goes down with them. In such a monoculture, the alternatives that might be able to take up the slack have already been weeded out.
This article first appeared on Network World.
View the full article
The Netherlands stands at the forefront of Europe’s digital revolution, characterized by a vibrant ecosystem of technology hubs, forward-thinking enterprises, and robust digital infrastructure. From the smart, automated logistics of the Port of Rotterdam to the groundbreaking financial technologies emerging from Amsterdam, organizations across the nation are rapidly embracing cloud-native architectures. For IT professionals, software developers, and systems engineers throughout the country, this technological shift represents both a significant challenge and an extraordinary career opportunity. Mastering Kubernetes—the foundational platform that powers this transformation—has evolved from a valuable skill to a critical career imperative. This comprehensive guide explores why a structured, expertly-guided educational approach, specifically through comprehensive Kubernetes Training in the Netherlands, provides the most effective pathway to acquiring the sophisticated container orchestration expertise demanded by Dutch industry leaders.
The Innovation Engine: Kubernetes’ Central Role in Dutch Digital Transformation
Renowned for its advanced digital connectivity and cultural embrace of technological progress, the Netherlands provides ideal conditions for architectural evolution. Companies nationwide are decisively shifting from traditional, rigid monolithic systems toward agile, scalable microservices-based applications. This strategic pivot is driven by core Dutch business principles emphasizing operational resilience, efficiency, and rapid time-to-market. Kubernetes, as the established industry-standard container orchestration platform, serves as the indispensable enabler of this change. It empowers organizations to deploy, manage, and seamlessly scale applications across complex hybrid and multi-cloud environments. For technology professionals in Amsterdam, Rotterdam, Eindhoven, Utrecht, and beyond, developing Kubernetes skills is more than just learning a new tool—it is a strategic investment in career longevity within a competitive market that places a premium on cloud-native proficiency and DevOps excellence. The market evidence is clear: job postings emphasizing container management and orchestration expertise are multiplying, offering established routes for significant career advancement and professional recognition.
Bridging the Competency Gap: The Compelling Need for Structured Professional Education
While the internet is replete with introductory Kubernetes tutorials, a substantial gulf exists between following basic commands and possessing the architectural understanding required for production-grade systems. True mastery involves navigating intricate networking configurations, implementing robust security policies, managing persistent storage solutions, and establishing comprehensive monitoring—all within real-world constraints. Self-directed learning often leaves critical gaps in these essential areas. A professional Kubernetes course delivers a meticulously designed, comprehensive learning journey. It builds a solid foundation before progressing systematically to advanced topics, ensuring you develop not just isolated technical skills but a holistic understanding of how to design, secure, and troubleshoot enterprise-grade systems. This structured approach is invaluable for tackling the sophisticated infrastructure challenges faced by Dutch enterprises.
The DevOpsSchool Methodology: A Learning Platform Built for Practical Mastery
Choosing the right educational partner is crucial for achieving meaningful learning outcomes. DevOpsSchool has distinguished itself as a leading platform for practical, mentor-led training in next-generation technologies. Its educational philosophy is rooted in the conviction that genuine expertise is forged through application and hands-on practice. For professionals throughout the Netherlands, this means their Kubernetes Training in the Netherlands is crafted as an interactive, hands-on workshop, not a passive lecture series.
How this pedagogical approach enhances your learning experience:
Immersive, Scenario-Based Laboratory Work: You will engage in practical, hands-on exercises that simulate real-world deployment, scaling, and failure scenarios, building essential muscle memory and sharpening your problem-solving instincts. Flexibility for the Modern Professional: By offering both live online interactive sessions and, where possible, in-person workshops, DevOpsSchool accommodates the demanding schedules of Dutch technology practitioners. Career-Focused Program Outcomes: The curriculum is engineered to prepare you not only for the technology but also for prestigious industry-recognized certifications like the Certified Kubernetes Administrator (CKA), substantially boosting your professional credibility. A Continuous Learning Community: Enrollment grants access to ongoing resources, expert-led discussion forums, and professional networks, ensuring the value of your training extends far beyond the final session. Learning from a Global Authority: The Mentorship of Rajesh Kumar
The most significant differentiator of any advanced technical program is the caliber of its instruction. This is where the DevOpsSchool program delivers exceptional value. The course is governed and mentored by Rajesh Kumar, a globally recognized expert with over 20 years of pioneering work in DevOps, Site Reliability Engineering (SRE), and cloud-native ecosystems. When Rajesh teaches, he draws from a vast reservoir of experience architecting solutions for global organizations. He provides the critical context—the strategic “why” behind the tactical “how”—imparting industry best practices, architectural patterns, and troubleshooting mindsets refined through decades of real-world application. Learning under his guidance accelerates your journey from a technician executing commands to a strategic architect capable of designing resilient, efficient, and scalable systems.
A Comprehensive Learning Roadmap: Your Path to Proficiency
The training is intelligently structured to guide you from foundational principles to advanced operational fluency, ensuring you are fully prepared to meet the demands of the Dutch tech market.
Your Curriculum Journey:
PhaseCore Focus & Skills DevelopedFoundation & Core ConceptsUnderstand containers, Kubernetes architecture (Pods, Nodes, Control Plane), and perform basic deployments and service exposure.Networking, Storage & ConfigurationMaster Services, Ingress, Network Policies, Persistent Volumes, and manage application configuration with ConfigMaps and Secrets.Security, Observability & Day-2 OperationsImplement RBAC, Pod Security, set up monitoring with Prometheus/Grafana, establish logging, and learn cluster maintenance.Advanced Patterns & Ecosystem IntegrationAutomate with Helm, manage stateful apps with StatefulSets, and integrate Kubernetes into CI/CD pipelines for GitOps workflows. Who Should Embark on This Learning Journey?
This program is meticulously designed for a wide range of professionals shaping the Netherlands’ digital future:
Software Developers who want to build, containerize, and deploy scalable microservices applications. DevOps Engineers & Platform Engineers responsible for building automated, resilient infrastructure. System Administrators & IT Managers leading their organization’s transition to cloud-native and containerized environments. Site Reliability Engineers (SREs) focused on creating scalable, reliable, and observable systems. Technical Consultants & Architects designing cloud-native solutions for clients across industries. The Tangible Return on Your Professional Investment
Investing in this structured training delivers clear and significant career benefits:
Accelerated Expertise: Compress years of fragmented learning into a focused, mentor-guided program. Validated Credibility: Gain the hands-on skills and certification readiness that demonstrate proven competency to employers. Enhanced Problem-Solving Ability: Develop the architectural mindset to design solutions and debug complex, cross-platform issues confidently. Strategic Professional Network: Connect with a cohort of like-minded professionals in the Netherlands and gain access to ongoing expert mentorship. Taking the Definitive Step in Your Professional Evolution
The Netherlands’ commitment to technological leadership is unwavering. In this dynamic environment, possessing in-demand Kubernetes skills positions you at the center of innovation. The most efficient way to acquire this mastery is through a program that combines expert instruction with intensive practical application.
If you are ready to move from theoretical knowledge to production-ready expertise and become a key driver in the cloud-native transformation, the path is clear. To explore the complete syllabus, schedules, and the unique value of this comprehensive program tailored for professionals in the Netherlands, visit the official course page for Kubernetes Training in the Netherlands.
Begin your transformation today. Reach out to DevOpsSchool to learn more.
Contact DevOpsSchool:
Email: [email protected] Phone & WhatsApp (India): +91 84094 92687 Phone & WhatsApp (USA): +1 (469) 756-6329 Website: https://www.devopsschool.com/

View the full article
Mastering Container Orchestration: Your Strategic Path Forward in Mumbai
In the vibrant tech landscape of Mumbai, where innovation meets execution, professionals face both immense opportunities and increasing expectations. The city’s digital transformation journey has entered an accelerated phase, with organizations across financial services, e-commerce, media, and healthcare embracing cloud-native architectures at scale. At the center of this paradigm shift is Kubernetes, the de facto standard for container orchestration. For ambitious engineers and tech leaders, gaining deep, practical expertise in this platform is no longer optional—it’s the definitive career differentiator. Let’s explore how structured, expert-led learning can bridge the gap between aspiration and execution.
The Mumbai Imperative: Why Kubernetes Proficiency Equals Career Capital
Mumbai’s unique economic ecosystem creates a perfect storm of demand for Kubernetes skills. The city’s enterprises are not merely adopting new technology; they are fundamentally re-architecting how they deliver value. This move towards microservices, DevOps, and scalable cloud infrastructure makes the ability to deploy, manage, and secure containerized applications a core competency. Professionals who can demonstrate this ability find themselves at the forefront of high-impact projects and leadership roles. The local job market clearly signals this shift, with roles demanding container orchestration, cloud-native development, and site reliability engineering principles offering premium compensation and growth trajectories.
Beyond the Documentation: The Gap Between Knowing and Doing
A common challenge for many professionals is the chasm between theoretical knowledge and production-ready skill. You might successfully follow a tutorial to deploy a simple application, but could you design a multi-tier, secure, and highly available service mesh? Could you implement granular network policies, configure persistent storage for stateful workloads, or establish a comprehensive observability stack? This holistic, architectural understanding is where self-guided learning often falls short. It requires a curriculum built not just on commands, but on concepts, patterns, and real-world problem-solving—exactly what a professional Kubernetes course is designed to provide.
A Platform Engineered for Practical Mastery: The DevOpsSchool Difference
When selecting a training partner, the platform’s philosophy is as important as its syllabus. DevOpsSchool distinguishes itself by focusing relentlessly on applied learning. They operate on the principle that true expertise is forged through practice, not passive consumption. Their programs are structured as immersive workshops where theory is immediately pressure-tested in lab environments that mirror real-world complexities. For the Mumbai professional, this means graduating with more than a certificate; you gain the confidence to tackle actual challenges, from optimizing resource allocation to troubleshooting a failing ingress controller in a live cluster.
Learning from a Visionary Practitioner: The Rajesh Kumar Mentorship
The single greatest accelerant in any technical education is the quality of mentorship. This is the cornerstone of the program’s value proposition. The training is governed and delivered under the guidance of Rajesh Kumar, a preeminent authority whose career maps directly onto the evolution of modern IT practices. With over two decades of hands-on experience in DevOps, SRE, and cloud architecture, Rajesh brings a depth of context that transforms learning. He doesn’t just teach you how Kubernetes works; he explains why certain design patterns prevail in enterprise environments, how to anticipate scaling bottlenecks, and the security trade-offs every architect must consider. This mentorship provides the strategic layer that elevates technical skill into professional wisdom.
A Curriculum Designed for the Full Development Lifecycle
The training is architected to take you from foundational principles to advanced operational fluency. It’s a journey through the entire Kubernetes ecosystem.
Your Learning Journey Unpacked:
PhaseCore Focus & OutcomesFoundation & Core ConceptsMaster containers, Pods, Deployments, Services, and the Kubernetes control plane. Build and manage your first application.Networking, Storage & ConfigurationImplement internal and external networking, manage persistent data, and externalize configuration using ConfigMaps and Secrets.Security, Observability & Day-2 OpsHarden your cluster with RBAC and Network Policies. Implement monitoring with Prometheus/Grafana and establish logging strategies.Advanced Patterns & Ecosystem ToolsAutomate deployments with Helm, manage stateful applications with StatefulSets, and integrate Kubernetes into CI/CD pipelines. Who Stands to Gain the Most? Mapping the Program to Your Role
This immersive training is engineered for a spectrum of roles driving Mumbai’s tech future:
Software Developers wanting to own the full lifecycle of their cloud-native applications. DevOps & Platform Engineers building and maintaining automated, scalable infrastructure. System Administrators & IT Managers leading their organizations’ transition to containerized environments. Site Reliability Engineers (SREs) focused on creating scalable, reliable, and efficient systems. Technical Architects & Consultants designing solutions for clients embarking on cloud-native journeys. The Tangible Return on Your Educational Investment
Pursuing this training is a strategic career decision with measurable returns:
Accelerated Expertise: Condense years of fragmented learning into a coherent, mentor-guided program. Enhanced Credibility: Combine demonstrable hands-on skill with preparation for industry-recognized certifications like CKA/CKAD. Problem-Solving Confidence: Develop the architectural mindset to design robust systems and debug complex, cross-cutting issues. Professional Network: Join a community of driven Mumbai tech professionals and gain ongoing access to expert insights. Your Next Strategic Move in a Competitive Landscape
In a city that rewards initiative and expertise, waiting is a luxury you cannot afford. The demand for Kubernetes proficiency is real and growing. The critical question evolves from “Should I learn this?” to “What is the most effective and efficient path to mastery?”
For those ready to move from curiosity to capability, from following tutorials to leading implementations, the path is clear. To explore the detailed syllabus, schedule, and unique value of this comprehensive professional program designed for Mumbai’s tech community, visit the dedicated course page for Kubernetes Training in Mumbai.
Take the decisive step in your professional evolution. Connect with DevOpsSchool today.
Contact DevOpsSchool:
Email: [email protected] Phone & WhatsApp (India): +91 84094 92687 Phone & WhatsApp (USA): +1 (469) 756-6329 Website: https://www.devopsschool.com/

View the full article
Kolkata stands at the forefront of an exciting digital evolution. While celebrated for its rich cultural heritage, the City of Joy is rapidly establishing itself as a dynamic technology hub, with IT parks in Salt Lake and emerging innovation centers across the city driving forward-looking digital initiatives. At the core of this transformation is Kubernetes, the industry-standard container orchestration platform that is redefining how applications are deployed, scaled, and managed in modern cloud environments. For IT professionals, developers, and technology leaders across Kolkata, acquiring mastery through Kubernetes training in Kolkata represents more than skill development—it’s a strategic career investment that positions you to lead in an increasingly competitive technological landscape.
This comprehensive guide explores why Kubernetes proficiency has become essential in Kolkata’s evolving tech ecosystem, what distinguishes exceptional training from average programs, and how choosing the right educational partner can accelerate your professional growth and impact.
Why Kubernetes Skills Are Critical in Kolkata’s Tech Renaissance
Kolkata’s technology sector is transitioning from traditional service models to innovation-driven approaches that emphasize agility, scalability, and digital-first strategies. Organizations across industries—from established enterprises to ambitious startups—are embracing microservices architectures, DevOps methodologies, and cloud-native development. Kubernetes serves as the fundamental infrastructure layer enabling this shift, providing Kolkata businesses with:
Operational Efficiency: Automated management of containerized workloads across hybrid and multi-cloud environments Enhanced Resilience: Self-healing systems that maintain application availability with minimal manual intervention Accelerated Innovation: Streamlined development pipelines that reduce time-to-market for new features and services For professionals in Kolkata’s technology community, Kubernetes expertise delivers significant advantages:
Career Advancement: Access to high-demand roles in DevOps, Cloud Architecture, and Site Reliability Engineering Strategic Influence: Opportunity to contribute directly to organizational digital transformation initiatives Competitive Differentiation: Development of specialized skills that remain in high demand across Kolkata’s growing tech sector Selecting Transformative Kubernetes Training: Beyond Basic Certification
With numerous training options available throughout Kolkata, identifying genuinely valuable programs requires careful consideration. The most impactful learning experiences extend beyond theoretical instruction to deliver practical, applicable skills that translate directly to workplace challenges and real-world implementation scenarios.
Essential Components of Comprehensive Kubernetes Education
A robust Kubernetes training in Kolkata curriculum should provide thorough coverage of:
Fundamental Concepts: Containerization principles, Kubernetes architecture, and declarative configuration management Core Platform Operations: Pod lifecycle management, workload controllers, and service discovery mechanisms Advanced Orchestration: Stateful application management, Helm package management, and auto-scaling strategies Security and Governance: Role-Based Access Control (RBAC), network security policies, and compliance best practices Production Readiness: Monitoring, logging, troubleshooting methodologies, and high-availability configurations Real-World Application: Practical deployment scenarios that simulate actual workplace challenges The Critical Role of Mentor-Led Instruction
Training delivered by professionals with extensive production experience offers distinct advantages that fundamentally enhance learning outcomes:
Contextual Understanding: Insights into common operational challenges and proven solutions Industry Best Practices: Time-tested approaches to security, performance optimization, and reliability Problem-Solving Frameworks: Methodologies for diagnosing and resolving complex technical issues in production environments DevOpsSchool: A Premier Platform for Practical, Industry-Aligned Learning
When Kolkata professionals seek quality Kubernetes training in Kolkata, DevOpsSchool consistently emerges as a leading educational partner. Founded with a vision to bridge the industry’s skill gap, DevOpsSchool has established itself as more than just a training provider—it’s a career accelerator that prioritizes practical, job-ready skill development over theoretical knowledge alone.
DevOpsSchool’s approach is distinguished by several key principles:
Practice-First Methodology: The learning philosophy centers on “learning by doing,” with every theoretical concept reinforced through hands-on labs, real-world scenarios, and project-based assignments that simulate actual workplace challenges Comprehensive Curriculum Design: Beyond Kubernetes fundamentals, the curriculum encompasses the entire cloud-native ecosystem, including complementary technologies, integration patterns, and industry best practices Flexible Learning Pathways: Recognizing the diverse needs of working professionals, DevOpsSchool offers multiple engagement models including instructor-led online classes, in-person workshops in Kolkata, and customized corporate training programs Continuous Learning Support: The educational experience extends beyond scheduled sessions through access to recorded lectures, community forums, regular doubt-clearing sessions, and ongoing mentorship opportunities Industry Certification Alignment: The training structure is intentionally designed to prepare participants for globally recognized credentials like the Certified Kubernetes Administrator (CKA), Certified Kubernetes Application Developer (CKAD), and Certified Kubernetes Security Specialist (CKS) Learning Under Expert Guidance: Rajesh Kumar’s Leadership
The defining element of any educational program is the quality and experience of its instructors. At DevOpsSchool, the Kubernetes training in Kolkata is meticulously guided by Rajesh Kumar, a distinguished technology expert whose career spans over two decades of pioneering work across the DevOps and cloud-native landscape.
Rajesh Kumar’s professional journey and instructional approach bring unique value to the learning experience:
Extensive Industry Experience: With more than 20 years of hands-on implementation experience, Rajesh has directly contributed to digital transformation initiatives across various industries, providing him with deep, practical insights into real-world challenges and solutions Broad Technical Expertise: His knowledge extends well beyond Kubernetes to encompass the entire modern technology stack, including DevOps methodologies, DevSecOps practices, Site Reliability Engineering (SRE) principles, Cloud Architecture, DataOps, AIOps, and MLOps—enabling him to teach Kubernetes within its broader technological context Global Recognition: As an internationally sought-after trainer and consultant, Rajesh has shaped the careers of thousands of professionals worldwide, bringing global perspectives and best practices to the Kolkata learning community Mentorship-Focused Teaching: His instructional approach emphasizes not just technical knowledge transfer but the development of problem-solving capabilities, architectural thinking, and the professional judgment necessary for successful technology implementation Future-Oriented Perspective: Rajesh continuously integrates emerging trends, evolving best practices, and forward-looking insights into the curriculum, ensuring learners are prepared for both current challenges and future developments in the technology landscape Program Structure: Designed for Kolkata’s Diverse Technology Professionals
DevOpsSchool’s Kubernetes program is thoughtfully structured to meet the varied needs of Kolkata’s technology community, balancing comprehensive coverage with practical relevance and schedule flexibility.
Program Overview:
Delivery Formats: Blended learning options combining interactive online sessions with in-person workshops specifically scheduled for Kolkata participants Schedule Design: Intensive yet manageable modules structured to accommodate the commitments of working professionals Target Audience: Technology practitioners across experience levels, including DevOps Engineers, System Administrators, Software Developers, Cloud Architects, and IT Managers Comprehensive Learning Journey
ModuleKey Focus AreasCompetency DevelopmentFoundation BuildingContainer fundamentals, Kubernetes architecture, cluster setupUnderstanding of core platform components and basic operational proceduresApplication ManagementWorkload controllers, networking implementations, storage solutionsSkills for deploying, exposing, and managing containerized applicationsPlatform OperationsConfiguration management, security implementation, resource optimizationAbility to implement governance frameworks and security controls effectivelyAdvanced CapabilitiesStateful applications, ecosystem tools, monitoring strategiesProficiency with complex deployment scenarios and supporting toolingProduction ReadinessReal-world deployment patterns, troubleshooting methodologiesConfidence in managing Kubernetes in demanding production environments Program Benefits for Kolkata Participants
Immediate Professional Relevance: Acquisition of skills directly applicable to current workplace challenges faced by Kolkata-based organizations Expert-Led Learning: Access to instruction from an industry-recognized expert with extensive practical experience Applied Skill Development: Reinforcement of theoretical concepts through repeated practical application in controlled lab environments Professional Community Access: Opportunities to network with peers, industry practitioners, and potential collaborators within Kolkata’s growing tech ecosystem Ideal Candidates for Kubernetes Training in Kolkata
This program is particularly valuable for:
Technology Professionals seeking to expand their skill sets into high-growth cloud-native and DevOps domains Development and Operations Teams transitioning from traditional architectures to containerized application approaches Infrastructure Specialists modernizing their operational practices to align with contemporary technology standards Technology Leaders and Managers responsible for architectural decisions, team development, and organizational technology strategy Career Transition Candidates moving into technology roles from related or unrelated professional backgrounds Conclusion: Positioning Yourself at the Vanguard of Kolkata’s Digital Future
Kolkata’s emergence as a significant technology hub presents unprecedented opportunities for skilled professionals. By developing expertise in Kubernetes through a comprehensive, mentor-led training program, you equip yourself not just with technical knowledge but with the strategic capabilities to lead and contribute meaningfully to this transformation.
Investing in Kubernetes training in Kolkata through DevOpsSchool under Rajesh Kumar’s guidance represents a strategic commitment to your professional development—one that offers substantial returns in terms of career advancement, technical leadership, and organizational impact.
Take the decisive next step in your professional evolution today.
Connect with DevOpsSchool:
Email: [email protected] Phone & WhatsApp (India): +91 84094 92687 Phone & WhatsApp (USA): +1 (469) 756-6329 Website: https://www.devopsschool.com/

View the full article
MiniStocker – shutterstock.com
Die Werbung mit Promis für ein “geheimes Finanzprodukt” war gefälscht, Anleger verloren ihr Geld: Mutmaßliche Internet-Kriminelle sollen deutschlandweit mindestens 120 Menschen um einen Gesamtbetrag von mehr als 1,3 Millionen Euro gebracht haben. Die Ermittler gehen aber von einer hohen Dunkelziffer aus. Die international agierenden Tatverdächtigen könnten einen hohen dreistelligen Millionenbetrag erbeutet haben, wie Bayerns Spezialstaatsanwaltschaft für Cyberkriminalität in Bamberg mitteilte.
In der vergangenen Woche ließ die Zentralstelle Cybercrime Bayern (ZCB) in Deutschland und in Israel 14 Objekte durchsuchen. Schwerpunkte waren Tel Aviv und Düsseldorf, außerdem gab es Durchsuchungen auch in anderen Städten in Nordrhein-Westfalen, Berlin und Winnenden in Baden-Württemberg.
Am Ende ist das Kapital weg
Und darum geht es: Bei der Betrugsmasche im aktuellen Fall sollen hohe Gewinne durch KI-optimierte Anlagestrategien oder automatisierten Kryptohandel versprochen worden sein – Werbung mit großen Social-Media-Kampagnen und auf gefakten Nachrichtenseiten sollten die Opfer überzeugen: Dabei sollen die Verdächtigen behauptet haben, Promis und Politiker hätten durch dieses Investment viel Geld verdient.
In aller Regel stehe bei dieser Betrugsmasche am Ende der Totalverlust des investierten Kapitals, teilte Thomas Goger, Sprecher der Zentralstelle, mit: “Mit diesen Tricks erbeuten Betrüger allein in Deutschland mehr als eine Milliarde Euro pro Jahr.”
Im Zentrum der Durchsuchungs-Aktion stehe ein Netzwerk, das die persönlichen Daten möglicher Investoren gesammelt beziehungsweise an betrügerische Callcenter weitergegeben habe. 
Die Maßnahmen in Düsseldorf und Winnenden hätten sich gegen zwei sogenannte Publisher gerichtet: Ihnen werde zur Last gelegt, für irreführende Online-Kampagnen verantwortlich zu sein. Dabei hätten sie unter anderem behauptet, die Anlagemethode sei Gegenstand populärer TV-Formate. “Abbildungen, Logos und Lichtbilder wurden hierbei rechtswidrig verwendet”, um Seriosität vorzuspiegeln, hieß es weiter.
Nun werten die Ermittlerinnen und Ermittler das sichergestellte Beweismaterial aus. (dpa/jm)

View the full article
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday released details of a backdoor named BRICKSTORM that has been put to use by state-sponsored threat actors from the People's Republic of China (PRC) to maintain long-term persistence on compromised systems. "BRICKSTORM is a sophisticated backdoor for VMware vSphere and Windows environments," the agency said. "View the full article
The zero trust approach cybersecurity access control is more than 15 years old but organizations continue to struggle with its implementation due in large part to fragmented tooling and legacy infrastructure.
A recent report from Accenture paints a picture of widespread industry struggles in rolling out zero trust technologies, a perspective in line with the experiences of experts and security practitioners quizzed on the topic by CSO.
Zero trust networking involves applying a security framework where no user or device is trusted by default. Under zero trust, every access attempt is accompanied by authenticating identity and device compliance regardless of whether or not it originates within an organization.
The approach contrasts with traditional “castle and moat” models where devices within an enterprise network were trusted by default.
Many enterprises have progressed slowly on their zero trust journeys largely because implementation requires a fundamental shift in both mindset and infrastructure. Key roadblocks include:
Legacy systems that weren’t designed for zero trust principles, Fragmented identity and access tools that make unified enforcement difficult, and Cultural and organizational resistance to changing long-standing trust models. Kyle Wickert, field CTO at AlgoSec, says zero trust remains one of the most misunderstood transformations in cybersecurity.
“Many organizations still hesitate to pursue it because they associate zero trust with rigid architectures, operational complexity, and high implementation costs,” Wickert says. “That perception is rooted in the legacy days of reassigning IPs, redesigning routing, re-plumbing VLANs, or physically rewiring environments just to enforce segmentation policies.”
The industry-wide shift to software-defined and cloud-driven data centers has lifted legacy challenges while creating new issues in the shape of growing policy and application complexity.
“One of the biggest obstacles to zero trust at scale is no longer the infrastructure — it’s the challenge of defining, governing, and maintaining policies that adapt across hybrid networks, spanning on-prem firewalls, cloud-native controls, SDN, SD-WAN, and SASE technologies,” Wickert says. “The most effective way to overcome these challenges is to shift the focus of segmentation from ‘devices and subnets’ to applications and their connectivity.”
Richard Holland, field CISO at threat-led cybersecurity firm Quorum Cyber, argues that zero trust represents a method to mature an organization’s security health rather than a set of products and services.
“I would argue that the technology to achieve zero trust has been in existence for some time and CISOs and CIOs may have already found themselves on a roadmap without realizing it is zero trust,” Holland says. “By treating zero trust as a journey to improve cybersecurity health, and by taking small bite-size chunks, you can iterate through a series of improvements in relatively quick succession.”
Other cybersecurity experts contend that zero trust migrations offer an opportunity to support more ambitious IT transformation projects.
Stephen Fridakis, CISO in residence at Cyderes, says the shift from network-based rules to identity-based rules inherent in zero trust implementations offers a roadmap to “safer, simpler, and more durable” enterprise architectures.
“IP ranges, VLANs, and physical locations are brittle and age badly, especially with M&A churn and cloud adoption,” Fridakis explains. “Identity-based access follows the user and device, not the network.”
He adds: “It eliminates firewall sprawl, reduces engineering overhead, and enforces intent instead of infrastructure.”
Wise up
University of Texas CISO George Finney has discussed zero trust with hundreds of security leaders. Those conversations have uncovered several common denominators on why zero trust projects fail.
Firstly, internal politics has the potential to derail zero trust implementations. “Technology in a company is generally operated and supported in silos,” Finney says. “These different areas may not understand the big picture of how much risk a cybersecurity breach could represent and resist change.”
Conversely, in organizations that have successfully shifted to zero trust, “leadership in every area agree that security is a core part of the success of the organization as a whole,” Finney says.
Insufficient education can also act as a barrier preventing the successful rollout of zero trust technologies, according to Finney.
“Starting a zero trust project requires more than just changing the design of a network or modifying some settings in an application,” he says. “Everyone on the team needs to understand what zero trust is, why the organization is doing it, and what role they’ll play in supporting it.”
“This means that every zero trust project needs to begin with education to help change not just the technology, but the culture of the organization as well,” he adds.
Gary Brickhouse, CISO at GuidePoint Security, notes that an “overly-complex approach” to zero trust has driven up costs and timelines as organizations pursue overly strict alignment with zero trust principles.
“Most organizations would benefit from a simplified risk-based approach, identifying critical use cases that are achievable and deliver the desired outcome of risk reduction,” Brickhouse says. “Early wins improving the security of the organization and moving the ZT [zero trust] needle forward builds confidence across the organization.”
Rob Forbes, CISO at Stratascale, advises security leaders to develop a strategic roadmap before embarking on any zero trust project.
“[CISOs should] start with a comprehensive assessment of their current security posture and assets,” Forbes counsels. “Next, develop a roadmap for zero trust implementation, prioritizing critical assets and high-risk areas.”
These steps should be followed by investments in training and tools to support the transition to a zero trust model, which ought to be left open to further refinement as requirement evolve.
“[Companies should] regularly review and update their zero trust strategy to adapt to new threats and technologies,” Forbes adds.
AI ‘reinforces’ zero trust paradigm
As agentic AI becomes increasingly embedded in the business, standard zero trust principles must be extended to keep the enterprise secure.
By 2027, growth of AI agents will push 50% of CIOs to restructure and automate identity and data access and authorization management to reduce misuse and leakage as part of a zero trust architecture, according to industry analyst firm IDC.
Security experts call on organizations to implement a new wave of zero trust, extending beyond people and devices to include AI agents. In practice, this means enforcing strict context boundaries, trusted domain controls, and AI-specific security reviews.
John Kindervag, chief evangelist officer at Illumio, tells CSO that “AI doesn’t change the zero trust paradigm — it reinforces it.”
“AI operates within the constraints of cybersecurity’s foundational rules, and attacks only work if there’s an open door,” Kindervag argues.
The bigger risk is from AI models, according to Kindervag.
“AI models can become a liability if not governed by zero trust,” he says. “If an organization doesn’t treat its AI models as protect surfaces, they risk manipulation, poisoning, or theft.”
In most cases, AI supports zero trust implementation.
“Good AI highlights high-risk communication patterns, surfaces unusual behaviour, and accelerates processes like labeling and policy implementation,” Kindervag explains. “AI can help in every step of the zero trust five-step methodology, but it really helps organizations to push beyond resilience into anti-fragility.”
View the full article
The zero trust approach cybersecurity access control is more than 15 years old but organizations continue to struggle with its implementation due in large part to fragmented tooling and legacy infrastructure.
A recent report from Accenture paints a picture of widespread industry struggles in rolling out zero trust technologies, a perspective in line with the experiences of experts and security practitioners quizzed on the topic by CSO.
Zero trust networking involves applying a security framework where no user or device is trusted by default. Under zero trust, every access attempt is accompanied by authenticating identity and device compliance regardless of whether or not it originates within an organization.
The approach contrasts with traditional “castle and moat” models where devices within an enterprise network were trusted by default.
Many enterprises have progressed slowly on their zero trust journeys largely because implementation requires a fundamental shift in both mindset and infrastructure. Key roadblocks include:
Legacy systems that weren’t designed for zero trust principles, Fragmented identity and access tools that make unified enforcement difficult, and Cultural and organizational resistance to changing long-standing trust models. Kyle Wickert, field CTO at AlgoSec, says zero trust remains one of the most misunderstood transformations in cybersecurity.
“Many organizations still hesitate to pursue it because they associate zero trust with rigid architectures, operational complexity, and high implementation costs,” Wickert says. “That perception is rooted in the legacy days of reassigning IPs, redesigning routing, re-plumbing VLANs, or physically rewiring environments just to enforce segmentation policies.”
The industry-wide shift to software-defined and cloud-driven data centers has lifted legacy challenges while creating new issues in the shape of growing policy and application complexity.
“One of the biggest obstacles to zero trust at scale is no longer the infrastructure — it’s the challenge of defining, governing, and maintaining policies that adapt across hybrid networks, spanning on-prem firewalls, cloud-native controls, SDN, SD-WAN, and SASE technologies,” Wickert says. “The most effective way to overcome these challenges is to shift the focus of segmentation from ‘devices and subnets’ to applications and their connectivity.”
Richard Holland, field CISO at threat-led cybersecurity firm Quorum Cyber, argues that zero trust represents a method to mature an organization’s security health rather than a set of products and services.
“I would argue that the technology to achieve zero trust has been in existence for some time and CISOs and CIOs may have already found themselves on a roadmap without realizing it is zero trust,” Holland says. “By treating zero trust as a journey to improve cybersecurity health, and by taking small bite-size chunks, you can iterate through a series of improvements in relatively quick succession.”
Other cybersecurity experts contend that zero trust migrations offer an opportunity to support more ambitious IT transformation projects.
Stephen Fridakis, CISO in residence at Cyderes, says the shift from network-based rules to identity-based rules inherent in zero trust implementations offers a roadmap to “safer, simpler, and more durable” enterprise architectures.
“IP ranges, VLANs, and physical locations are brittle and age badly, especially with M&A churn and cloud adoption,” Fridakis explains. “Identity-based access follows the user and device, not the network.”
He adds: “It eliminates firewall sprawl, reduces engineering overhead, and enforces intent instead of infrastructure.”
Wise up
University of Texas CISO George Finney has discussed zero trust with hundreds of security leaders. Those conversations have uncovered several common denominators on why zero trust projects fail.
Firstly, internal politics has the potential to derail zero trust implementations. “Technology in a company is generally operated and supported in silos,” Finney says. “These different areas may not understand the big picture of how much risk a cybersecurity breach could represent and resist change.”
Conversely, in organizations that have successfully shifted to zero trust, “leadership in every area agree that security is a core part of the success of the organization as a whole,” Finney says.
Insufficient education can also act as a barrier preventing the successful rollout of zero trust technologies, according to Finney.
“Starting a zero trust project requires more than just changing the design of a network or modifying some settings in an application,” he says. “Everyone on the team needs to understand what zero trust is, why the organization is doing it, and what role they’ll play in supporting it.”
“This means that every zero trust project needs to begin with education to help change not just the technology, but the culture of the organization as well,” he adds.
Gary Brickhouse, CISO at GuidePoint Security, notes that an “overly-complex approach” to zero trust has driven up costs and timelines as organizations pursue overly strict alignment with zero trust principles.
“Most organizations would benefit from a simplified risk-based approach, identifying critical use cases that are achievable and deliver the desired outcome of risk reduction,” Brickhouse says. “Early wins improving the security of the organization and moving the ZT [zero trust] needle forward builds confidence across the organization.”
Rob Forbes, CISO at Stratascale, advises security leaders to develop a strategic roadmap before embarking on any zero trust project.
“[CISOs should] start with a comprehensive assessment of their current security posture and assets,” Forbes counsels. “Next, develop a roadmap for zero trust implementation, prioritizing critical assets and high-risk areas.”
These steps should be followed by investments in training and tools to support the transition to a zero trust model, which ought to be left open to further refinement as requirement evolve.
“[Companies should] regularly review and update their zero trust strategy to adapt to new threats and technologies,” Forbes adds.
AI ‘reinforces’ zero trust paradigm
As agentic AI becomes increasingly embedded in the business, standard zero trust principles must be extended to keep the enterprise secure.
By 2027, growth of AI agents will push 50% of CIOs to restructure and automate identity and data access and authorization management to reduce misuse and leakage as part of a zero trust architecture, according to industry analyst firm IDC.
Security experts call on organizations to implement a new wave of zero trust, extending beyond people and devices to include AI agents. In practice, this means enforcing strict context boundaries, trusted domain controls, and AI-specific security reviews.
John Kindervag, chief evangelist officer at Illumio, tells CSO that “AI doesn’t change the zero trust paradigm — it reinforces it.”
“AI operates within the constraints of cybersecurity’s foundational rules, and attacks only work if there’s an open door,” Kindervag argues.
The bigger risk is from AI models, according to Kindervag.
“AI models can become a liability if not governed by zero trust,” he says. “If an organization doesn’t treat its AI models as protect surfaces, they risk manipulation, poisoning, or theft.”
In most cases, AI supports zero trust implementation.
“Good AI highlights high-risk communication patterns, surfaces unusual behaviour, and accelerates processes like labeling and policy implementation,” Kindervag explains. “AI can help in every step of the zero trust five-step methodology, but it really helps organizations to push beyond resilience into anti-fragility.”
View the full article
Phishing has surged 400% year-over-year, highlighting need for real-time visibility into identity exposures.
SpyCloud, the leader in identity threat protection, today released new data showing a sharp rise in phishing attacks that disproportionately target corporate users. The company tracked a 400% year-over-year increase in successfully phished identities, with nearly 40% of the 28+ million recaptured phished records containing a business email address – compared to just 11.5% in recaptured malware data. The result is a warning to enterprises that their workforce is three times more likely to be targeted with phishing attacks than infostealer malware. 
The findings reinforce a growing shift in cybercriminals’ strategy: phishing is now the preferred gateway into enterprise environments, and SpyCloud sees this trend continuing in 2026. Threat actors are using this access as a launchpad for follow-on attacks, with SpyCloud reporting in its 2025 Identity Threat Report that phishing is now the leading entry point for ransomware, accounting for 35% of all ransomware infections. 
“Phishing is now one of the most scalable tools cybercriminals use to breach enterprise environments,” said Trevor Hilligoss, SpyCloud’s Head of Security Research. “Cybercrime enablement services, like phishing-as-a-service kits that automate convincing lures and adversary-in-the-middle tactics that capture MFA tokens and session cookies, put advanced tactics into the hands of low-skilled actors, making it easier than ever to compromise users at scale. SpyCloud’s visibility into these campaigns gives organizations a critical edge, helping them detect who’s been targeted and what data has been exposed, and remediate those credentials before they can be weaponized.”
SpyCloud is the only provider recapturing and automatically remediating successfully phished identity data and targeting lists at scale before follow-on attacks like ransomware, fraud, and account takeover can occur.
“Many organizations rely on traditional defenses like email filtering, endpoint protection, and employee education to stop phishing and malware attempts, but those tools only go so far,” said Damon Fleury, SpyCloud’s Chief Product Officer. “Attackers are still getting through – and when they do, it’s the exposed identity data that enables further harm. Security teams need to be vigilant about what’s already been compromised and circulating in the criminal underground. Prevention is important, but without real-time visibility and post-compromise remediation, it’s not enough.”
While phishing has become a dominant entry point, malware remains a critical threat vector. In the age of remote work and bring-your-own-device policies, personal exposures are increasingly used to compromise enterprise environments. A recent example is the 2025 Nikkei breach, where malware on a personal device led to the compromise of sensitive corporate data. Despite only 11.5% of recaptured malware infections exfiltrating business email addresses directly, SpyCloud data shows that nearly 1 in 2 corporate users have been the victim of an infostealer malware infection in their digital history, whether that be on a managed or unmanaged device – a strong indicator that threat actors are moving laterally from personal to corporate accounts.
“Protecting the enterprise means looking beyond corporate accounts,” Fleury added. “Due to the continuous reuse of passwords and shared identity data across work and personal accounts like mobile numbers, the line between a user’s personal digital history and their professional access effectively no longer exists. That’s why it’s essential to monitor and remediate exposures across the full spectrum of an individual’s digital identity – personal and professional.”
SpyCloud is the leader in holistic identity protection, detecting and protecting organizations from the phishing, malware, and breach exposures of employees, contractors, and vendors across personal and professional identities. Users can click here to learn more.
About SpyCloud:
SpyCloud transforms recaptured darknet data to disrupt cybercrime. Its automated identity threat protection solutions leverage advanced analytics and AI to proactively prevent ransomware and account takeover, detect insider threats, safeguard employee and consumer identities, and accelerate cybercrime investigations. SpyCloud’s data from breaches, malware-infected devices, and successful phishes also powers many popular dark web monitoring and identity theft protection offerings. Customers include seven of the Fortune 10, along with hundreds of global enterprises, mid-sized companies, and government agencies worldwide. Headquartered in Austin, TX, SpyCloud is home to more than 200 cybersecurity experts whose mission is to protect businesses and consumers from the stolen identity data criminals are using to target them now.
To learn more and see insights on their company’s exposed data, users can visit spycloud.com.
Contact
Sr. Account Director
Emily Brown
REQ on behalf of SpyCloud
[email protected]

View the full article
A command injection vulnerability in Array Networks AG Series secure access gateways has been exploited in the wild since August 2025, according to an alert issued by JPCERT/CC this week. The vulnerability, which does not have a CVE identifier, was addressed by the company on May 11, 2025. It's rooted in Array's DesktopDirect, a remote desktop access solution that allows users to securely accessView the full article
eamesBot – shutterstock.com
Eine der Hauptaufgaben von CISOs besteht darin, nicht mehr die „Abteilung des Neins“ zu sein. Sie müssen Wege finden, die schnelle Bereitstellung von Produkten und Dienstleistungen für das Unternehmen zu ermöglichen, ohne gleichzeitig neue Risiken einzuführen.
Das ist, kurz gesagt, das Paradoxon. In einem Umfeld, in dem Produktteams ständig neue Technologien testen und Updates in Rekordgeschwindigkeit bereitstellen müssen, können traditionelle Audits am Ende des Entwicklungszyklus nicht mithalten. Sicherheit muss vorgelagert werden. Sie muss in den täglichen Betrieb integriert werden, mit proaktiven, umsetzbaren Maßnahmen, die Innovationen fördern, anstatt sie zu bremsen.
CISOs müssen daher von Anfang an enger mit den Teams zusammenarbeiten, um klare und praktische Risikotoleranzen festzulegen und Sicherheit in die Entwicklungsabläufe zu integrieren.
Frühzeitig Partnerschaften eingehen, um Ergebnisse zu gestalten
CISOs gewinnen nicht an Einfluss, wenn sie erst am Ende auftauchen. Sie müssen ihre Gatekeeper-Mentalität ablegen und vom ersten Tag an echte Partner sein. In der Vergangenheit, als Sicherheitsmaßnahmen erst in der Endphase eingeführt wurden, standen Entscheidungsträger vor einer schwierigen Wahl: Projektverzögerungen akzeptieren oder unverminderte Risiken in Kauf nehmen. Als Produktzyklen noch quartalsweise waren und Geschwindigkeit nicht über die Wettbewerbsfähigkeit entschied, war dieser Ansatz sinnvoll. In der heutigen Realität mit KI-gesteuerter Produktentwicklung funktioniert ein solcher Prozess in einem Umfeld, das aus Wochensprints, kontinuierlicher Bereitstellung und Abhängigkeiten von Herstellern besteht, nicht mehr.
Wenn die Sicherheitsabteilung die Umsatzziele, Kundenversprechen und regulatorischen Risiken versteht, werden die Leitlinien konkret und hilfreich. Unternehmen sollten daher jedem Produktteam einen Sicherheitsbeauftragten zur Seite stellen. Dadurch gibt es immer eine vertraute Person, die sich mit Entscheidungen zu Identität, Datenflüssen, Protokollierung und Verschlüsselung befasst, sobald diese anstehen. Wir sollten nicht wollen, dass Entwickler für eine einfache Frage zweiwöchige Tickets eröffnen müssen. Es sollte offene „Sprechstunden”, Chat-Kanäle und kurze Telefonate geben, damit sie sofortiges Feedback zu Entscheidungen wie API-Design, Verschlüsselungsanforderungen und regionalen Datenbewegungen erhalten.
Bürokratie muss im Sicherheitsumfeld abgeschafft werden. Sicherheitsmanager sollten an Sprint-Planungen und frühen Design-Reviews teilnehmen, um wichtige Fragen zu klären – beispielsweise Authentifizierungspfade, Least-Privilege-Zugriffe, Logging-Abdeckungoder wie Änderungen in der Produktion durch SIEM und EDR überwacht werden. Wenn CISOs mit am Tisch sitzen, ändert sich die Frage von „Können wir das machen?“ zu „Wie machen wir das sicher?“ und schon vom ersten Tag an werden bessere Ergebnisse erzielt.
Risikotoleranzen und Leitplanken festlegen
Teams werden langsamer, wenn sie sich nicht sicher sind, wie sie vorgehen sollen. Deshalb sollten ihnen ein Teil der Entscheidungsfindung abgenommen und die Integration von Authentifizierung, Autorisierung und Abrechnung in den Entwicklungsprozess übernommen werden. Für die Authentifizierung sollten Sie Lösungen für das Identitätsmanagement im Unternehmen einrichten und nutzen, anstatt Accounts zu entwickeln, die fest in Datenbanken geschrieben werden und die leicht kompromittierbar sind.
Sicherheitschefs müssen außerdem standardisierte rollenbasierte Zugriffskontrollstufen definieren, die eine klare Aufgabentrennung im Lösungsdesign gewährleisten. Dazu sollte die Abrechnung nicht nur aus Protokollen bestehen, sondern Daten mit hoher Kardinalität zur Erkennung von Anomalien erfassen. Anschließen müssen diese in ein zentrales SOC (Security Operations Center) zur Erkennung und Reaktion auf Bedrohungen integriert werden. Produktentwicklungsteams sollten nicht mit Sicherheitsaufgaben betraut werden; stattdessen sollten andere Teams die Sichtbarkeit der Bedrohungen für die Lösungen in der Produktion im Auge behalten.
CISOs müssen die Risikobereitschaft des Unternehmens in einer Geschäftssprache definieren, die keine Interpretationsspielräume zulässt. Sie sollten festlegen, welche Profile von Drittanbietern einer eingehenden Bewertung bedürfen und welche als begrenzte Pilotprojekte mit kompensierenden Kontrollen durchgeführt werden können. Entscheiden Sie, welche Schwachstellen einen Merge blockieren müssen und welche mit einem zeitlich begrenzten Behebungsplan fortgesetzt werden können. Klären Sie, welche Datenklassifizierungen regionenübergreifend sein dürfen und welche Schutzmaßnahmen dafür erforderlich sind.
Anschließend müssen diese Entscheidungen in Automatisierung umgesetzt werden. Integrieren Sie Schutzmaßnahmen in CI/CD und Infrastructure-as-Code, damit die Durchsetzung konsistent und sichtbar ist. Scannen Sie jeden Code-Commit auf Schwachstellen, und wenn eine Änderung gegen eine kritische Richtlinie verstößt, schlägt der Build fehl – mit einer klaren Begründung und einem Lösungsweg. Liegt die Änderung innerhalb der Toleranzen, wird er ohne manuelles Eingreifen fortgesetzt. Das Ergebnis ist Governance als Beschleuniger: vorhersehbar, transparent und abgestimmt auf die Arbeitsweise der Entwicklungsteams.
Security-by-Design in schnelle Entwicklerzyklen integrieren
Wenn Entwickler mehrmals täglich Code bereitstellen, funktioniert eine „abschließende Sicherheitsüberprüfung” vor der Veröffentlichung einfach nicht. Dieses traditionelle Gatekeeping-Modell am Ende des Prozesses blockiert nicht nur Innovationen, sondern versäumt es auch, reale Risiken zu erkennen. Um effektiv zu sein, muss Sicherheit während der Entwicklung eingebettet werden und nicht erst nachträglich überprüft werden.
Wenn der sichere Weg schwieriger ist als der unsichere Weg, werden Entwickler jedes Mal den einfachen Weg wählen. Die Aufgabe des CISO besteht nicht darin, ein 50-seitiges PDF zu verteilen, sondern Sicherheit direkt in die Entwicklerumgebung zu integrieren und ihnen vorab geprüfte, gehärtete Templates mit bereits integrierter Authentifizierung und Autorisierung zur Verfügung zu stellen, die standardmäßig sicher sind. Wenn die sichere Komponente einfacher zu verwenden ist als die unsichere Alternative, können Entwickler sie problemlos und jederzeit einsetzen.
Automatisierung ist die Durchsetzungsebene für diese Strategie. Wenn Sicherheitstools direkt in die CI/CD-Pipeline integriert sind, ist Feedback fast in Echtzeit verfügbar. So kann das Team bei kritischen Risiken „schnell scheitern“ und gleichzeitig umsetzbare Korrekturen vornehmen.
Diese Disziplin muss sich bis in die Produktion hineinziehen. Selbst mit erstklassigen DevSecOps wissen wir, dass Zero-Day-Angriffe oder Konfigurationsabweichungen auftreten können. Deshalb sollten wir uns auf übergreifende Lösungen zum Schutz von Webanwendungen verlassen, die eine robuste Web-Application-Firewall mit Laufzeit-Angriffsabwehr und Selbstschutz integrieren. Diese Lösungen mindern Schwachstellen und Risiken in Echtzeit, während die Anwendung in der Produktion läuft. Sie verschaffen den Entwicklungsteams die entscheidende Zeit, die sie benötigen, um das zugrunde liegende Problem ohne Dienstunterbrechung oder Sicherheitsverletzung zu beheben. Zudem wird so sichergestellt, dass wir selbst dann eingreifen können, wenn alle anderen Kontrollen versagen.
Laufzeit-Telemetrie und risikobasierte Warnmeldungen sind die letzte Schutzschicht in diesem Konzept. Dies fördert einen kulturellen Wandel, der es Entwicklern ermöglicht, die volle Verantwortung für ihre Anwendungen zu übernehmen, von der ersten Codezeile bis hin zur Produktion. Die Sicherheit wiederum erreicht so eine umfassende und dauerhafte Abdeckung, ohne zum Engpass zu werden. (jm)
Lesetipp: Vaillant-CISO im Interview – “Starten statt Warten”
View the full article
eamesBot – shutterstock.com
Eine der Hauptaufgaben von CISOs besteht darin, nicht mehr die „Abteilung des Neins“ zu sein. Sie müssen Wege finden, die schnelle Bereitstellung von Produkten und Dienstleistungen für das Unternehmen zu ermöglichen, ohne gleichzeitig neue Risiken einzuführen.
Das ist, kurz gesagt, das Paradoxon. In einem Umfeld, in dem Produktteams ständig neue Technologien testen und Updates in Rekordgeschwindigkeit bereitstellen müssen, können traditionelle Audits am Ende des Entwicklungszyklus nicht mithalten. Sicherheit muss vorgelagert werden. Sie muss in den täglichen Betrieb integriert werden, mit proaktiven, umsetzbaren Maßnahmen, die Innovationen fördern, anstatt sie zu bremsen.
CISOs müssen daher von Anfang an enger mit den Teams zusammenarbeiten, um klare und praktische Risikotoleranzen festzulegen und Sicherheit in die Entwicklungsabläufe zu integrieren.
Frühzeitig Partnerschaften eingehen, um Ergebnisse zu gestalten
CISOs gewinnen nicht an Einfluss, wenn sie erst am Ende auftauchen. Sie müssen ihre Gatekeeper-Mentalität ablegen und vom ersten Tag an echte Partner sein. In der Vergangenheit, als Sicherheitsmaßnahmen erst in der Endphase eingeführt wurden, standen Entscheidungsträger vor einer schwierigen Wahl: Projektverzögerungen akzeptieren oder unverminderte Risiken in Kauf nehmen. Als Produktzyklen noch quartalsweise waren und Geschwindigkeit nicht über die Wettbewerbsfähigkeit entschied, war dieser Ansatz sinnvoll. In der heutigen Realität mit KI-gesteuerter Produktentwicklung funktioniert ein solcher Prozess in einem Umfeld, das aus Wochensprints, kontinuierlicher Bereitstellung und Abhängigkeiten von Herstellern besteht, nicht mehr.
Wenn die Sicherheitsabteilung die Umsatzziele, Kundenversprechen und regulatorischen Risiken versteht, werden die Leitlinien konkret und hilfreich. Unternehmen sollten daher jedem Produktteam einen Sicherheitsbeauftragten zur Seite stellen. Dadurch gibt es immer eine vertraute Person, die sich mit Entscheidungen zu Identität, Datenflüssen, Protokollierung und Verschlüsselung befasst, sobald diese anstehen. Wir sollten nicht wollen, dass Entwickler für eine einfache Frage zweiwöchige Tickets eröffnen müssen. Es sollte offene „Sprechstunden”, Chat-Kanäle und kurze Telefonate geben, damit sie sofortiges Feedback zu Entscheidungen wie API-Design, Verschlüsselungsanforderungen und regionalen Datenbewegungen erhalten.
Bürokratie muss im Sicherheitsumfeld abgeschafft werden. Sicherheitsmanager sollten an Sprint-Planungen und frühen Design-Reviews teilnehmen, um wichtige Fragen zu klären – beispielsweise Authentifizierungspfade, Least-Privilege-Zugriffe, Logging-Abdeckungoder wie Änderungen in der Produktion durch SIEM und EDR überwacht werden. Wenn CISOs mit am Tisch sitzen, ändert sich die Frage von „Können wir das machen?“ zu „Wie machen wir das sicher?“ und schon vom ersten Tag an werden bessere Ergebnisse erzielt.
Risikotoleranzen und Leitplanken festlegen
Teams werden langsamer, wenn sie sich nicht sicher sind, wie sie vorgehen sollen. Deshalb sollten ihnen ein Teil der Entscheidungsfindung abgenommen und die Integration von Authentifizierung, Autorisierung und Abrechnung in den Entwicklungsprozess übernommen werden. Für die Authentifizierung sollten Sie Lösungen für das Identitätsmanagement im Unternehmen einrichten und nutzen, anstatt Accounts zu entwickeln, die fest in Datenbanken geschrieben werden und die leicht kompromittierbar sind.
Sicherheitschefs müssen außerdem standardisierte rollenbasierte Zugriffskontrollstufen definieren, die eine klare Aufgabentrennung im Lösungsdesign gewährleisten. Dazu sollte die Abrechnung nicht nur aus Protokollen bestehen, sondern Daten mit hoher Kardinalität zur Erkennung von Anomalien erfassen. Anschließen müssen diese in ein zentrales SOC (Security Operations Center) zur Erkennung und Reaktion auf Bedrohungen integriert werden. Produktentwicklungsteams sollten nicht mit Sicherheitsaufgaben betraut werden; stattdessen sollten andere Teams die Sichtbarkeit der Bedrohungen für die Lösungen in der Produktion im Auge behalten.
CISOs müssen die Risikobereitschaft des Unternehmens in einer Geschäftssprache definieren, die keine Interpretationsspielräume zulässt. Sie sollten festlegen, welche Profile von Drittanbietern einer eingehenden Bewertung bedürfen und welche als begrenzte Pilotprojekte mit kompensierenden Kontrollen durchgeführt werden können. Entscheiden Sie, welche Schwachstellen einen Merge blockieren müssen und welche mit einem zeitlich begrenzten Behebungsplan fortgesetzt werden können. Klären Sie, welche Datenklassifizierungen regionenübergreifend sein dürfen und welche Schutzmaßnahmen dafür erforderlich sind.
Anschließend müssen diese Entscheidungen in Automatisierung umgesetzt werden. Integrieren Sie Schutzmaßnahmen in CI/CD und Infrastructure-as-Code, damit die Durchsetzung konsistent und sichtbar ist. Scannen Sie jeden Code-Commit auf Schwachstellen, und wenn eine Änderung gegen eine kritische Richtlinie verstößt, schlägt der Build fehl – mit einer klaren Begründung und einem Lösungsweg. Liegt die Änderung innerhalb der Toleranzen, wird er ohne manuelles Eingreifen fortgesetzt. Das Ergebnis ist Governance als Beschleuniger: vorhersehbar, transparent und abgestimmt auf die Arbeitsweise der Entwicklungsteams.
Security-by-Design in schnelle Entwicklerzyklen integrieren
Wenn Entwickler mehrmals täglich Code bereitstellen, funktioniert eine „abschließende Sicherheitsüberprüfung” vor der Veröffentlichung einfach nicht. Dieses traditionelle Gatekeeping-Modell am Ende des Prozesses blockiert nicht nur Innovationen, sondern versäumt es auch, reale Risiken zu erkennen. Um effektiv zu sein, muss Sicherheit während der Entwicklung eingebettet werden und nicht erst nachträglich überprüft werden.
Wenn der sichere Weg schwieriger ist als der unsichere Weg, werden Entwickler jedes Mal den einfachen Weg wählen. Die Aufgabe des CISO besteht nicht darin, ein 50-seitiges PDF zu verteilen, sondern Sicherheit direkt in die Entwicklerumgebung zu integrieren und ihnen vorab geprüfte, gehärtete Templates mit bereits integrierter Authentifizierung und Autorisierung zur Verfügung zu stellen, die standardmäßig sicher sind. Wenn die sichere Komponente einfacher zu verwenden ist als die unsichere Alternative, können Entwickler sie problemlos und jederzeit einsetzen.
Automatisierung ist die Durchsetzungsebene für diese Strategie. Wenn Sicherheitstools direkt in die CI/CD-Pipeline integriert sind, ist Feedback fast in Echtzeit verfügbar. So kann das Team bei kritischen Risiken „schnell scheitern“ und gleichzeitig umsetzbare Korrekturen vornehmen.
Diese Disziplin muss sich bis in die Produktion hineinziehen. Selbst mit erstklassigen DevSecOps wissen wir, dass Zero-Day-Angriffe oder Konfigurationsabweichungen auftreten können. Deshalb sollten wir uns auf übergreifende Lösungen zum Schutz von Webanwendungen verlassen, die eine robuste Web-Application-Firewall mit Laufzeit-Angriffsabwehr und Selbstschutz integrieren. Diese Lösungen mindern Schwachstellen und Risiken in Echtzeit, während die Anwendung in der Produktion läuft. Sie verschaffen den Entwicklungsteams die entscheidende Zeit, die sie benötigen, um das zugrunde liegende Problem ohne Dienstunterbrechung oder Sicherheitsverletzung zu beheben. Zudem wird so sichergestellt, dass wir selbst dann eingreifen können, wenn alle anderen Kontrollen versagen.
Laufzeit-Telemetrie und risikobasierte Warnmeldungen sind die letzte Schutzschicht in diesem Konzept. Dies fördert einen kulturellen Wandel, der es Entwicklern ermöglicht, die volle Verantwortung für ihre Anwendungen zu übernehmen, von der ersten Codezeile bis hin zur Produktion. Die Sicherheit wiederum erreicht so eine umfassende und dauerhafte Abdeckung, ohne zum Engpass zu werden. (jm)
Lesetipp: Vaillant-CISO im Interview – “Starten statt Warten”
View the full article
A prolonged lack of management of valid authentication keys for signed access tokens issued to authenticators is believed to be the root cause of over 30 million accounts being exposed externally by ecommerce giant Coupang. Ongoing analysis suggests that these keys could have been exploited even after the responsible employee left the company.
On Nov. 29, Coupang released a statement confirming the unauthorized exposure of personal information from approximately 4,500 accounts on Nov. 18. The company also noted that the breach had been reported to the National Police Agency, the Korea Internet & Security Agency, and the Personal Information Protection Commission. Subsequent investigations, however, revealed that the damage involved approximately 33.7 million accounts.
Leaked information included names, email addresses, shipping address lists, and some order information. Coupang stated that payment information, credit card numbers, and login information were not included. It is believed that unauthorized access occurred via overseas servers starting on June 24, 2025. The company also stated that it is currently cooperating with relevant authorities to investigate the cause of the breach.
The Ministry of Science and ICT, the Seoul Metropolitan Police Agency, and other relevant agencies conducted an on-site investigation after receiving a report of a breach on Nov. 19 and a report of a personal information leak on Nov. 20. The investigation confirmed that the attacker exploited an authentication vulnerability in Coupang’s servers, bypassing the normal login process and leaking customer information.
The government launched a joint public-private investigation team on Nov. 30, and the Personal Information Protection Commission is investigating whether Coupang violated its personal information protection safety measures — access control, access authority management, encryption, etc. As a service with such a high user base that it’s often called the “Amazon of Korea,” Coupang issued a public security notice on Nov. 29 to prevent secondary damage. Furthermore, a three-month period, starting Nov. 30, will be dedicated to strengthening the monitoring of personal information leaks and illegal distribution online.
Meanwhile, Choi Min-hee, Chairwoman of the National Assembly Science, ICT, Broadcasting and Communications Committee, released the results of an analysis of the specific causes of the incident in a press release on Nov. 30. According to information received from Coupang, the company reportedly responded that “the token signing key validity period is often set to 5 to 10 years,” adding that “the rotation period is long and varies greatly depending on the key type.”
Chairman Choi’s side explained this incident using an analogy to an access control system. If the “token” required for login is a single-use access card, the “signature key” is like the authentication stamp used to issue the access card. While access is impossible without the authentication stamp, even with the access card, if the signature key is left unattended for an extended period, it can be subject to continued exploitation.
According to Rep. Choi Min-hee’s office, Coupang’s login system is designed to immediately discard tokens after they are created, but the signature information required for token creation was deleted or not updated when the employee in charge left the company, and was thus exploited by internal employees.
In a press release, Chairman Choi Min-hee stated, “Coupang did not follow the most basic internal security procedure of renewing the signing key,” and “Abandoning a long-term valid authentication key was not simply a deviation by an internal employee, but the result of organizational and structural problems at Coupang that neglected the authentication system.”
Victims of this breach have been notified via email or text message. Related information can also be found on a separate information page.
Coupang CEO Park Dae-joon issued a separate statement on Nov. 30, saying, “We sincerely apologize for causing great inconvenience and concern to the public,” and “Coupang will do its best to prevent further damage by closely cooperating with the joint public-private investigation team including the Ministry of Science and ICT, the Personal Information Protection Commission, the Korea Internet & Security Agency, and the National Police Agency.”
South Korean President Lee Jae Myung this week referenced the data breach at Coupang in calling for increased penalties for corporate negligence in such scenarios. The breach is believed to be the worst in South Korea in over a decade. Bloomberg reports that the breach may be a landmark case for South Korea. It could result in a record fine, potentially up to 1.2 trillion won (US$814M).
The prime suspect is a former Coupang engineer who had worked on authentication systems. The police are investigating whether the former employee acted alone or collaborated with others on the breach.
View the full article
An individual or group is doing new probing of content delivery networks (CDNs), an effort that CSOs, CIOs and network administrators should worry about if they use CDNs instead of web application firewalls to protect websites.
That’s the conclusion of Johannes Ullrich, dean of research at the SANS Institute, who this week said  his organization’s honeypots last month detected a curious amount of traffic with server requests that include CDN-related headers.
Perhaps, he said, someone is testing a tactic to evade CDN defences for launching either a targeted attack or a widespread distributed denial of service (DDoS) attack on a site.
For example, the honeypots have seen headers on traffic that include:
“Cf-Warp-Tag-Id,” which is associated with Cloudflare’s Warp VPN service; “X-Fastly-Request-Id,”, which is associated with the Fastly CDN; “X-Akamai-Transformed,” a header added by Akamai; and a puzzler: “X-T0Ken-Inf0.” Ullrich thinks it might contain a form of authentication token, but isn’t sure. In an interview, he said one explanation is that a threat actor is trying to get around a CDN’s filters by creating page requests that include a CDN-related header.
Another possible explanation is that these requests are merely going through a CDN, but, Ullrich said, “the requests we’re seeing don’t quite look like that.”
Internet requests are messages sent from a client such as a web browser to a web server, requesting a web page. A wave of requests can be a DDoS attack, or mask a different kind of attack.
These days, many organizations use CDNs or cloud providers for basic DDoS protection and bot filtering in addition to load balancing. In a typical setup, Ullrich said, DNS is used to point clients to the CDN, which then forwards the request to a customer’s web server.
However, there’s a problem: If an attacker can identify the IP address of the actual web server, they are often able to bypass the CDN and reach the web server directly. There are a few ways for users to prevent this. For example, depending on the CDN selected, it may be possible to allow access only from the CDN’s IP address space. However, for some of the larger providers, this list of addresses may be large and very dynamic.
Another option is to add custom headers. Some CDNs offer special custom headers with randomized values to identify requests that have passed through the CDN. And a less secure option is to look for any header that identifies the CDN. However, Ullrich noted, merely looking for a header should be avoided, as attackers can easily include this header in their traffic. This appears to be the activity the SANS honeypot has been seeing since November.
A spokesperson for CDN Cloudflare’s PR agency said a comment couldn’t be arranged by deadline.
Related content: How a bot management file push crippled Cloudflare’s global network
Kellman Meghu, chief security architect at DeepCove Security, says the activity seen by the SANS Institute’s honeypots isn’t new. But, he added, it only becomes an issue when there is improper access control, or the controls fail.
“Origin web servers should be deployed with access controls, be it security groups or firewall rules, to only ever allow communication with the CDN service,” he said in an email. “Just deploying your web application as accessible to the world, and then overlaying a CDN to act as the front end seems like a terrible waste of money and effort. In today’s world of infrastructure-as-code, this can and should be easy to manage and mitigate as far as risk goes.”
Aditya Sood, VP of security engineering and AI strategy at Aryaka, said in an email that a surge in requests that include CDN-related headers “is clear experimentation from threat actors, and the impersonation isn’t just random noise, its reconnaissance. Attacks are probing to uncover the weak origin validation in organizations who are trusting the mere presence of a CDN-specific header instead of enforcing proper controls like IP allowlists, private network peering, or cryptographically validated tokens. When you see multiple CDN fingerprints being spoofed at roughly the same time, it usually means new tooling or automated scanners are being deployed in the wild.” 
Proper origin hardening that includes strict IP allowlists, validated tokens, or private connectivity is essential to protect websites, he said. “Relying only on the presence of CDN-specific headers is no longer viable, and organizations that have not fully locked down their backend infrastructure may already be exposed.”
Ullrich added that CDNs and other traffic filtering services will issue a unique value to each customer as proof that traffic has gone through its service, so web administrators should configure their web servers or next generation firewalls to only accept requests with that unique value.
The activity SANS has seen is “definitely something that should be seen as a warning that something that could become more than it is now,” he said. “Now it’s only a curiosity, but it could easily become more. You [admins] need to follow your content delivery network’s guidance to protect your web server from attacks like this.”
View the full article
The Ceramic Shield 2 material that Apple uses for the iPhone 17 display includes an anti-reflective coating that's designed to cut down on glare. It's a coating that prior-generation iPhone models didn't have, and it can make a difference in bright lighting conditions.


If you're someone who likes to use a screen protector with your ‌iPhone‌, you might be nullifying the anti-reflective property of the ‌iPhone 17‌ display, based on testing done by Astropad.

Compared to the ‌iPhone 17‌, Astropad found that the anti-reflective coating reduces reflections by approximately 50 percent when compared to the iPhone 16, but applying a screen protector without an anti-reflective coating of its own makes the anti-reflective Ceramic Shield 2 coating less effective. According to Astropad, this is because AR coatings are created for direct contact with air, and covering them with an extra layer of material cancels the effect.

Astropad did screen protector testing because it sells Fresh Coat, a screen protector with an anti-reflective coating, and it is promoting Fresh Coat through its testing and report. Astropad says that Fresh Coat and other screen protectors with an anti-reflective coating can replace or even outperform the anti-reflective properties of the ‌iPhone 17‌'s display.

Astropad did controlled testing with a light meter, and full testing results can be found on the Astropad website.
This article, "Screen Protectors Without AR Coating Cancel Out iPhone 17's Anti-Reflective Display" first appeared on MacRumors.com

Discuss this article in our forums

View the full article
China-based phishing groups blamed for non-stop scam SMS messages about a supposed wayward package or unpaid toll fee are promoting a new offering, just in time for the holiday shopping season: Phishing kits for mass-creating fake but convincing e-commerce websites that convert customer payment card data into mobile wallets from Apple and Google. Experts say these same phishing groups also are now using SMS lures that promise unclaimed tax refunds and mobile rewards points.
Over the past week, thousands of domain names were registered for scam websites that purport to offer T-Mobile customers the opportunity to claim a large number of rewards points. The phishing domains are being promoted by scam messages sent via Apple’s iMessage service or the functionally equivalent RCS messaging service built into Google phones.
An instant message spoofing T-Mobile says the recipient is eligible to claim thousands of rewards points.
The website scanning service urlscan.io shows thousands of these phishing domains have been deployed in just the past few days alone. The phishing websites will only load if the recipient visits with a mobile device, and they ask for the visitor’s name, address, phone number and payment card data to claim the points.
A phishing website registered this week that spoofs T-Mobile.
If card data is submitted, the site will then prompt the user to share a one-time code sent via SMS by their financial institution. In reality, the bank is sending the code because the fraudsters have just attempted to enroll the victim’s phished card details in a mobile wallet from Apple or Google. If the victim also provides that one-time code, the phishers can then link the victim’s card to a mobile device that they physically control.
Pivoting off these T-Mobile phishing domains in urlscan.io reveals a similar scam targeting AT&T customers:
An SMS phishing or “smishing” website targeting AT&T users.
Ford Merrill works in security research at SecAlliance, a CSIS Security Group company. Merrill said multiple China-based cybercriminal groups that sell phishing-as-a-service platforms have been using the mobile points lure for some time, but the scam has only recently been pointed at consumers in the United States.
“These points redemption schemes have not been very popular in the U.S., but have been in other geographies like EU and Asia for a while now,” Merrill said.
A review of other domains flagged by urlscan.io as tied to this Chinese SMS phishing syndicate shows they are also spoofing U.S. state tax authorities, telling recipients they have an unclaimed tax refund. Again, the goal is to phish the user’s payment card information and one-time code.
A text message that spoofs the District of Columbia’s Office of Tax and Revenue.
CAVEAT EMPTOR
Many SMS phishing or “smishing” domains are quickly flagged by browser makers as malicious. But Merrill said one burgeoning area of growth for these phishing kits — fake e-commerce shops — can be far harder to spot because they do not call attention to themselves by spamming the entire world.
Merrill said the same Chinese phishing kits used to blast out package redelivery message scams are equipped with modules that make it simple to quickly deploy a fleet of fake but convincing e-commerce storefronts. Those phony stores are typically advertised on Google and Facebook, and consumers usually end up at them by searching online for deals on specific products.
A machine-translated screenshot of an ad from a China-based phishing group promoting their fake e-commerce shop templates.
With these fake e-commerce stores, the customer is supplying their payment card and personal information as part of the normal check-out process, which is then punctuated by a request for a one-time code sent by your financial institution. The fake shopping site claims the code is required by the user’s bank to verify the transaction, but it is sent to the user because the scammers immediately attempt to enroll the supplied card data in a mobile wallet.
According to Merrill, it is only during the check-out process that these fake shops will fetch the malicious code that gives them away as fraudulent, which tends to make it difficult to locate these stores simply by mass-scanning the web. Also, most customers who pay for products through these sites don’t realize they’ve been snookered until weeks later when the purchased item fails to arrive.
“The fake e-commerce sites are tough because a lot of them can fly under the radar,” Merrill said. “They can go months without being shut down, they’re hard to discover, and they generally don’t get flagged by safe browsing tools.”
Happily, reporting these SMS phishing lures and websites is one of the fastest ways to get them properly identified and shut down. Raymond Dijkxhoorn is the CEO and a founding member of SURBL, a widely-used blocklist that flags domains and IP addresses known to be used in unsolicited messages, phishing and malware distribution. SURBL has created a website called smishreport.com that asks users to forward a screenshot of any smishing message(s) received.
“If [a domain is] unlisted, we can find and add the new pattern and kill the rest” of the matching domains, Dijkxhoorn said. “Just make a screenshot and upload. The tool does the rest.”
The SMS phishing reporting site smishreport.com.
Merrill said the last few weeks of the calendar year typically see a big uptick in smishing — particularly package redelivery schemes that spoof the U.S. Postal Service or commercial shipping companies.
“Every holiday season there is an explosion in smishing activity,” he said. “Everyone is in a bigger hurry, frantically shopping online, paying less attention than they should, and they’re just in a better mindset to get phished.”
SHOP ONLINE LIKE A SECURITY PRO
As we can see, adopting a shopping strategy of simply buying from the online merchant with the lowest advertised prices can be a bit like playing Russian Roulette with your wallet. Even people who shop mainly at big-name online stores can get scammed if they’re not wary of too-good-to-be-true offers (think third-party sellers on these platforms).
If you don’t know much about the online merchant that has the item you wish to buy, take a few minutes to investigate its reputation. If you’re buying from an online store that is brand new, the risk that you will get scammed increases significantly. How do you know the lifespan of a site selling that must-have gadget at the lowest price? One easy way to get a quick idea is to run a basic WHOIS search on the site’s domain name. The more recent the site’s “created” date, the more likely it is a phantom store.
If you receive a message warning about a problem with an order or shipment, visit the e-commerce or shipping site directly, and avoid clicking on links or attachments — particularly missives that warn of some dire consequences unless you act quickly. Phishers and malware purveyors typically seize upon some kind of emergency to create a false alarm that often causes recipients to temporarily let their guard down.
But it’s not just outright scammers who can trip up your holiday shopping: Often times, items that are advertised at steeper discounts than other online stores make up for it by charging way more than normal for shipping and handling.
So be careful what you agree to: Check to make sure you know how long the item will take to be shipped, and that you understand the store’s return policies. Also, keep an eye out for hidden surcharges, and be wary of blithely clicking “ok” during the checkout process.
Most importantly, keep a close eye on your monthly statements. If I were a fraudster, I’d most definitely wait until the holidays to cram through a bunch of unauthorized charges on stolen cards, so that the bogus purchases would get buried amid a flurry of other legitimate transactions. That’s why it’s key to closely review your credit card bill and to quickly dispute any charges you didn’t authorize.
View the full article
Two senior Apple executives are leaving the company, Apple announced today. Apple's Senior Vice President and General Counsel Kate Adams and Lisa Jackson, Vice President of Environment, Policy and Social Initiatives, are both retiring in 2026.


Adams will be replaced with Jennifer Newstead, who will join Apple as a senior vice president on January 1, and will become Apple's general counsel on March 1, 2026. Newstead is currently Meta's chief legal officer, and she was previously the Legal Adviser to the United States Department of State.

When Newstead takes over as general counsel, Adams will not immediately leave. She will instead oversee the Government Affairs organization after Jackson retires in late January 2026. Adams will remain at Apple until late 2026, at which point Newstead will take over. Newstead will ultimately oversee both Apple's Legal and Government Affairs organizations as Senior Vice President, General Counsel and Government Affairs.

In a statement, Apple CEO Tim Cook said that he is pleased to merge Legal and Government Affairs because of increasing overlap between the two teams.

Jackson's other responsibilities, which include Environment and Social Initiatives, will be taken over by Chief Operating Officer Sabih Khan. Cook said that Jackson played an important role in helping Apple achieve its environmental goals.

Adams has been with Apple since 2017, and before that, she worked for Honeywell. Jackson joined Apple in 2013 after serving as Administrator of the U.S. Environmental Protection Agency, and she has been the face of Apple's environmental messaging since then.

Apple's announcement comes shortly after lead interface designer Alan Dye left the company, and after AI chief John Giannandrea's retirement announcement. Earlier this year, Apple lost Chief Operating Officer Jeff Williams, who is retiring, and Chief Financial Officer Luca Maestri. There have also been rumors about Apple CEO ‌Tim Cook‌ retiring, with rumors suggesting he is preparing to leave his role as soon as 2026.
This article, "Apple General Counsel Kate Adams and Environment Chief Lisa Jackson Retiring in 2026" first appeared on MacRumors.com

Discuss this article in our forums

View the full article
Apple today provided developers and public beta testers with a second release candidate version of tvOS 26.2 and HomePod Software 26.2, which is based on tvOS. The second RC comes one day after the first RC and has a build number of 23K53, up from 23K51.


tvOS 26.2 can be downloaded through the Software Update section of the Apple TV settings app.

With tvOS 26.2, Apple is adding support for creating a profile without an Apple Account, and there is a dedicated ‌Apple TV‌ app kids mode that's available for children's profiles.

Apple doesn't provide beta release notes, so it's not clear what's changed between the first RC and the second RC. Typically, release candidates are updated if there is a major bug discovered during the testing period. RCs represent the final version of the software that will be released to the public.

We're expecting tvOS 26.2 and ‌HomePod‌ Software 26.2 to come out next week.
This article, "Apple Seeds Second tvOS 26.2 Release Candidate" first appeared on MacRumors.com

Discuss this article in our forums

View the full article
Bluetti's Elite 30 V2 that came out earlier this year is a portable power station that's ideal for short trips, plus it works well as a temporary backup for powering small electronics in a power outage.


The Elite 30 V2 is one of many power stations that Bluetti offers, and it is on the smaller, more compact side with a 288-watt-hour capacity. This is the first Bluetti power station that I've reviewed, but I have experience with larger power banks from Jackery, DJI, Anker, and other companies. The Elite 30 V2 has a LiFePO4 battery, which Bluetti says will last for over 3,000 charging cycles and 10 years. There's a five-year warranty, which is solid.


Most power stations are utilitarian, with a black or gray plastic design, but the Elite 30 V2 comes in several fun colors. There's nothing wrong with a simple design for battery equipment, but colors make Bluetti's little power station stand out. The model I tested is green, but it also comes in blue, purple, pink, light gray, and dark gray.

Appearance isn't going to matter to most, but if you're going to have a battery out for people to use at the beach, on a camping trip, at the park, or during some other activity, it might as well have some pizazz. The power station is just about 9.5 pounds, and it measures 9.8 inches long, 7 inches wide and 6.6 inches tall. There's a handle for carrying it, and an LCD display shows you input, output, charge level, and an estimate of how long the power will last based on what's plugged in.


The Elite 30 V2 supports 600W charging, though it can handle up to 1500W temporarily as part of a Power Lifting mode. The Elite 30 V2 has more ports than you might even need on a power station this size, and it can charge up multiple devices at a time. There's a 140W USB-C port, a 100W USB-C port, two 15W USB-A ports, and two AC outlets. There are also AC and DC inputs for charging, a cigarette lighter port, a grounding terminal, and a pair of 12V/8A barrel ports. Both USB-C ports can be used at full power at the same time.

There's a power button, a button to turn on DC power to the USB-C/USB-A ports, and an AC button to turn on power to the AC outlets. When you plug something in, you have to turn on power to the appropriate port before charging will begin. It's also a good idea to turn it off when you're done to ensure there's no power drain when you're not charging anything. The power stations that I've tested in the past haven't had separate buttons for DC power (just AC power), but that's the way Bluetti's power stations are designed.


I've been using the Elite 30 V2 to charge my Apple devices for the last several weeks to get an idea of what it's useful for. Charging my iPhone 17 Pro Max from 0 to 80 percent drains the power station from 100 percent to 90 percent, and it's about the same for an iPhone 16 Pro Max and an iPhone 15 Pro Max.

I can charge my ‌iPhone‌'s battery between 9 and 10 times, though I do limit my charging to 80 percent. The variation is because the power station's battery level can drop slightly with nothing plugged in unless it's turned off. Over a four-hour period, the battery dropped around 10 percent with DC power on.


It charges my MacBook Air three and a half times. It was able to run my MacBook Pro, Studio Display, and two lights (my desk setup) for half of my work day (12:51 p.m. to right around 5:00 p.m.). It ranged from 60W to 110W depending on workload. Charging takes around an hour and 20 minutes to get to full, though it can get to an 85 percent charge in around 50 minutes. It can charge through a cigarette lighter port in a car, or with solar panels for off-grid connectivity.

The Elite 30 V2 isn't the power station you want to get to run something that's power hungry like an electric heater, but it's good for smaller things like computers, lights, speakers, and consoles. You could run a mini refrigerator for a few hours, a hair dryer or flat iron long enough to do your hair, or a lower power electric kettle or coffee maker. It is able to run my entire computer setup, plus it can power my Wi-Fi for a full work day. Some people use power stations as backups for medical devices. The Elite 30 V2 may be able to run a CPAP machine for a night's sleep, but that will depend on the individual machine. I wouldn't recommend this one for other devices like an oxygen concentrator, which would draw too much power and require a much larger battery for an extended power outage.


You can use the Elite 30 V2 as a backup in case of a power outage, plugging a device into it and then plugging the power station into an outlet. In that situation, the power station will kick on automatically in a power outage with no interruption in function (Bluetti says there's a super fast 10ms response time). It actually supports up to 980W of passthrough power.

Since the Elite 30 V2 is a smaller power station, it runs and charges quietly. It is nearly silent when charging and when powering things like iPhones and Macs. The fan inside will kick on under higher loads, but it's still not unreasonably loud. I can hear it, but it's a noise I could sleep through.


There is a Bluetti app, and you can connect to the power station via Bluetooth or Wi-Fi to monitor it remotely. The app tells you what's drawing power and how much, how long the battery will last under the current load, and your energy usage statistics. You can also remotely turn the AC/DC power on or off, choose power modes, and enable the 1500W Power Lifting feature. You should also be able to upgrade the firmware, but it wasn't working properly for me in the app (the button to actually install firmware was blank).

Bottom Line

I'm a fan of the Elite 30 V2. It provides enough power to charge multiple phones, tablets, portable gaming systems, or computers, but it's not too heavy to carry around. For an active use power station that you're using for day or weekend trips where portability is an issue, this is one of the better power stations that you can get.


I am petite and can struggle to haul around some of the bigger power 20lb+ stations that I've tested, but this one is the perfect size. I'm more likely to use a power station that is convenient for me to carry and take places.

This would be ideal as a backup battery if you just wanted to power smaller devices like smartphones and your router in a power outage. For medical devices or appliances that draw a lot of power, a bigger battery would be better.

Some power stations can cost over $1,000, but the Elite 30 V2 is much more affordable. The MSRP is $304, but it's often on sale.

How to Buy

The Bluetti Elite 30 V2 Portable Power Station can be purchased from the Bluetti website for $209 at the current time.
This article, "Bluetti Elite 30 V2 Review: A Lightweight Portable Power Station for Camping and Backup Power" first appeared on MacRumors.com

Discuss this article in our forums

View the full article

Account

Navigation

Search

Search

Configure browser push notifications

Chrome (Android)
  1. Tap the lock icon next to the address bar.
  2. Tap Permissions → Notifications.
  3. Adjust your preference.
Chrome (Desktop)
  1. Click the padlock icon in the address bar.
  2. Select Site settings.
  3. Find Notifications and adjust your preference.