Technology

Your kitchen does not have to be boring.

• QNAP addresses 17 vulnerabilities with a variety of patches
• Among the affected products are Notes Station 3, QuRouter, and others
• Some of the bugs are deemed critical and highly dangerous

QNAP has released fixes for a number of security vulnerabilities, including several flaws deemed “critical”.

In total, QNAP addressed 17 different vulnerabilities, and the full detailed list can be found on this link. Since many of the flaws are critical and can be used to take over endpoints, steal sensitive data, and deploy malware, users are advised to apply the patches as soon as possible.

In its security advisory, QNAP said the vulnerabilities affected Notes Station 3, QuRouter, AI Core, QuLog Center, QTS, and QuTS Hero.

Patches and fixes

The most severe of the bugs is an OS command injection flaw that allows threat actors to run arbitrary commands on the target system. It impacts QNAP’s high-speed, secure routers QuRouter 2.4.x. It is tracked as CVE-2024-48860 and has a severity score of 9.5 (critical).

The second-highest, critical vulnerability, is tracked as CVE-2024-38645, and has a score of 9.4. It was found in QNAP’s note-taking and collaboration application Notes Station 3, and is tracked as CVE-2024-38645. This one is described as a server-side request forgery (SSRF) bug that enables threat actors with authentication credentials to send custom-built requests and ultimately expose sensitive app data.

Another Notes Station 3 flaw made the top three, CVE-2024-38643, with a severity score of 9.3. This missing authentication for critical functions bug allows crooks to gain unauthorized access and run different system functions, which can lead to credential theft and system compromise.

QNAP devices are extremely popular targets for cybercriminals, and as such should be handled with care. Security experts advise these advices never be connected directly to the internet, but rather be protected behind a VPN.

Via BleepingComputer

You might also like

• QNAP patches worrying NAS security flaw, so update now
• Here's a list of the best firewalls today
• These are the best endpoint protection tools right now

Insta360’s Ace Pro 2 brings a Leica lens, flip-up screen, and (limited) 8K video to the action camera.

Great build, deeply integrated tech and unrivalled connectivity—with its very first EV, Xiaomi is already showing the likes of Ford and Volvo where they're going wrong, and what Apple could have done.

After months of testing on a wide variety of down (and down alternative) pillows, we've found the best ones to help you get the best rest.

Get the midnight-colored Apple Watch before it runs out.

• Google Developer Program is now available with free or $299/year subscriptions
• “Benefits” include $500 in Google Cloud credits, 1:1 time with experts, and more
• Available now to personal users, except for customers in Europe/UK/Switzerland

Google has launched a new premium membership for its Google Developer Program in an effort to monetize the initiative, and has introduced a host of new features to justify those extra dollars.

The program was introduced earlier in 2024 as a free resource hub for developers, but hot on the heels of the free tier is a premium subscription set to cost developers $299 per year.

Paying customers will now get access to one-to-one consultations with Google Cloud experts, unlimited access to the Google Cloud Skills Boost training library and $500 in annual Google Cloud credits to sweeten the deal.

Google Developer Program paid tier

Jeanine Banks, VP and GM for Developer X at Google, and two of her colleagues described the new subscription as a “tailored suite of services to help developers throughout the learning, building and deployment phases of their journey.”

The company already counts “millions” of developers as users of the free tier that launched during Google’s I/O conference.

Banks and her colleagues wrote: “Building on the success of Cloud Innovators Plus program, this new offering is the next evolution of our commitment to streamlining the developer experience and presents the continued investment in the Google Developer Program as the hub of benefits and resources across Google’s many developer products and services.”

The additional features included in the $299 Premium subscription are being branded as ‘benefits,’ which are available to browse from a dedicated section of the Developer Dashboard. Subscribers also get access to the free resources already available in the standard Google Developer Program, like AI-powered documentation tools and enhanced workspaces in Google’s IDX app development platform.

Although the subscription is positioned as an option for individual developers, the small print indicates that the Premium membership is “restricted to business or professional use” only in Europe, the UK, and Switzerland, which raises questions about its accessibility in the region.

You might also like

• Check out the best IDEs for Python
• Equip yourself with the right tools by considering the best laptops for programming
• Google Cloud and Stack Overflow team up to bring generative AI to millions of developers

DJI has unveiled its tiniest wireless mic, the Mic Mini, which weighs just 0.35oz / 10g and pairs easily with smartphones and cameras for better quality audio on-the-fly.

Rivaling the recently announced Rode Wireless Micro, which is just for smartphones, DJI has taken a different approach in creating a Bluetooth mic that'll work with cameras too, even if its receiver is chunkier (see the picture below showing it attached to a smartphone).

The mics, also known as transmitters, attach easily using a clip or magnetic mount, and are like a shrunk-down version of DJI's Mic 2, which we crowned the best camera accessory in the TechRadar Choice Awards 2024.

@techradar

♬ Storytelling - Adriel

DJI sells the components individually and also as kits, with the transmitters (mics) available in Infinity Black or Arctic White. One transmitter costs $59 / £49 / AU$69, a transmitter with receiver costs $89 / £79 / $AU125, and a kit which includes two transmitters, a receiver and a charging case, costs $169 / £145 / AU$245. The complete kit is probably your best bet if you're starting from scratch.

The receiver includes a USB-C connector, but if you're using an iPhone with Lightning port you'll need to purchase the adapter separately ($19 / £19 / AU$39). The list price for the kit is similar to the Rode Wireless Micro despite the Mic Mini's greater versatility, while it's around half the price of DJI's Mic 2.

(Image credit: DJI) DJI Mic Mini vs DJI Mic 2: which is right for you?

Both the Mic Mini and Mic 2 work with smartphones and cameras. They connect to your phone via Bluetooth, or to a phone or camera via a wireless receiver which connects directly through USB-C.

Where DJI's wireless mics differ is that the pricier Mic 2 features 32-bit float audio that can more ably avoid clipping when your audio suddenly gets loud, and internal storage for direct recording so you can use it independently of a camera or as a backup, while its receiver features a display to monitor audio levels.

The Mic Mini is a much simpler device, with its receiver offering ±12db audio level control, but otherwise it's a simple experience and, crucially, a reliable mic system. We've already been testing the Mic Mini for several weeks, and we'll publish our review very soon. Spoiler alert: DJI has knocked it out of the park again with a slick, glitch-free, and well-built mic.

Here you see the Mic Mini receiver attached to the underside of the phone and the mic attached magnetically to the person's clothing. (Image credit: DJI)

So which model is best for you? I'd recommend the Mic Mini to those who need a simple experience and mostly use their phone for creating content. It's half the price, and twice as simple to use.

The Mic 2 on the other hand offers seriously powerful audio features, and would hands-down be the better option for serious creators who care about audio quality. Both are excellent options for use with the best mirrorless cameras, and will make a perfect pairing with the DJI Osmo Pocket 3, a top-rated vlogging camera.

It's a tougher call between the Rode Wireless Micro and Mic Mini. If you're only creating video with a smartphone, then Rode's offering makes more sense, because its receiver is much smaller and fits snuggly into your USB-C charging port, whereas the Mic Mini's receiver sticks out and can get in the way. However, you don't have the option to use the Rode Wireless Micro with a camera should you ever step up.

You might also like

• DJI Mic 2 review: simply smart first-rate audio
• Rode’s new Wireless Micro is its smallest wireless mic kit yet, made just for smartphones
• Calling all content creators - Shure has unveiled the world’s smallest dual-channel clip-on microphone

There hasn't been a tech advancement that's caused such a boom since the internet and, later, the iPhone.

Commentary: Samsung is rumored to be cutting the standard Galaxy phone from its lineup in 2026, further signaling a shift away from smaller phones.

Don't overlook Point Broadband's fiber offerings. It offers competitive pricing and fast speeds. CNET has all the details you need.

Itinerant online workers needn’t suffer a single day of lonesomeness with these digital-first friend-finders.

Honey, DJI shrunk the mics.

If you've been a Netflix subscriber for a while, you'll be all too familiar with the name Harlan Coben. Many of his previous series can be found on one of the best streaming services, including Fool Me Once, Stay Close, and The Stranger.

There's always hype whenever another one of his shows drops, and it's easy to see why thanks to his gripping plots, great cast, and often very picturesque locations too. Getting sucked into a Harlan Coben world is always a wild ride and a welcome one too.

His latest series is called Missing You and arrives on Netflix on January 1. So, if you're stuck for things to watch over the holiday season, this is the perfect choice for New Year's Day. It's only five parts too, so you can easily binge watch that while you're relaxing. But will it make it onto our best Netflix shows list? Only time will tell.

Take a look at the trailer below.

What is Missing You about?

Coben's latest thriller series follows Detective Kat Donovan as she struggles to move on from the sudden disappearance of her fiancé Josh. But when she sees his face on a dating app 11-years later, his sudden reappearance forces her to dive back into the mystery surrounding her father’s murder and uncover long-buried secrets from her past.

The plot is, of course, quite vague but I'm very intrigued by the idea of someone disappearing for that long and going completely off the grid. I'm expecting plenty of twists and turns here, and I can't wait to see if my personal theories are correct (yes, I've already started speculating!).

The cast is led by Slow Horses star Rosalind Eleazar and she's joined by some great names including Top Boy's Ashley Walters, Fool Me Once's Richard Armitage, The Rings of Power's Sir Lenny Henry, and Inside No 9 co-creator Steve Pemberton. That's quite the line-up, right?

You might also like

• Netflix removes AI art poster for Arcane after an outcry from creators
• 7 shows canceled by Netflix in 2024 so far that you should still watch
• 3 new action-packed Netflix trailers have landed, and I for one can’t wait to see Cameron Diaz back on my screen

Whether you plan to enjoy the nightlife in Tokyo, eat everything in Osaka, or explore the rural countryside, these apps will help you travel more easily in Japan.

• UK government has announced an AI research lab
• The lab is tasked with improving the UK's cyber resilience
• The lab will collaborate with academic and industry experts to counter AI threats

The UK has announced the establishment of a laboratory dedicated to security research in order to keep NATO and its allies ahead in the “new AI arms race.”

The Laboratory for AI Security Research (LASR) was announced at the recent NATO Cyber Defence Conference, and is set to receive £8 million of initial government funding.

The lab will collaborate with experts from UK universities, allied intelligence agencies, and private industry to improve cybersecurity at home and abroad.

Assessing national security

“NATO needs to continue to adapt to the world of AI, because as the tech evolves, the threat evolves,” the Chancellor of the Duchy of Lancaster Pat McFadden said to NATO allies at the Cyber Defense conference.

“The lab will pull together world-class industry, academic and government experts to assess the impact of AI on our national security. While AI can amplify existing cyber threats, it can also create better cyber defence tools and presents opportunities for intelligence agencies to collect, analyse, and produce more useful intelligence,” he added.

The new research lab is born amidst other new initiatives aimed at improving the UK’s cyber resilience, such as the incoming Cyber Security and Resilience Bill, and a £1 million cyber incident response project that was also announced at the NATO conference. The lab will seek additional investment and collaboration from industry alongside its initial £8.22 million in funding.

The Chancellor of the Duchy of Lancaster also said one of the aims of the laboratory is to counter Russian aggression in the cyber world, warning that the Kremlin is ready to launch a cyber war against the UK at any moment earlier in the conference.

“We know from history that appeasing dictators engaged in aggression against their neighbours only encourages them. Britain learned long ago the importance of standing strong in the face of such actions,” he said, referring to Neville Chamberlain's appeasement plan in the 1930s, which allowed fascist Germany and Italy to expand unchecked.

“That’s why we support Ukraine in its fight to decide its own destiny. Putin is a man who wants destruction, not peace. He is trying to deter our support for Ukraine with his threats. He will not be successful,” the Chancellor of the Duchy of Lancaster concluded.

You might also like

• Take a look at our roundup of Black Friday antivirus deals
• Microsoft report says UK is not prepared for the age of AI
• These are the best Black Friday cloud storage deals

• Actor Troy Baker will star in Naughty Dog's next game
• The Last of Us director Neil Druckmann has confirmed Baker's involvement
• Naughty Dog has yet to officially announce its next game

The Last of Us star Troy Baker has confirmed he will be involved in Naughty Dog's next game.

The news comes from a recent GQ interview, where the actor best known for his role as Joel Miller in The Last of Us and Sam Drake in Uncharted: A Thief's End discussed his life's work and his upcoming projects.

In terms of what next, in 2025, Baker will star in Judas, the next game from BioShock creator Ken Levine, but the actor was also able to confirm that he will be reuniting with The Last of Us director and Naughty Dog co-president Neil Druckmann and be featured in the studio's next game.

GQ was also able to verify Baker's return with Druckmann, who said, "In a heartbeat I would always work with Troy."

At this time, we have no idea what role Baker will star in as Naughty Dog has yet to officially announce its new game.

Last month, new insider information about the secret project was reported by MinnMax founder Ben Hanson, who claimed a source "very in the know, who worked on the game" shared that fans "aren't ready" for the studio's next project and that it will feature "a lot of player freedom".

Neil Druckmann also confirmed earlier this year that there are "multiple single-player" projects are in development at Naughty Dog, saying, "I promise you, we will not be The Last of Us studio forever".

In December 2023, Naughty Dog canceled its The Last of Us Online game after concerns that it would impact the studio’s future single-player games, a project that was reportedly in development for four years.

You might also like...

• Sony is reportedly getting ready to release black versions of several PlayStation accessories, including the DualSense Edge controller, Pulse Elite, and Pulse Explore
• Black Friday PS5 Pro deals: my favorite discounts and deals on all things PlayStation ahead of the big sales period
• The Game Awards 2024 nominees have been announced with Shadow of the Erdtree being the first DLC to be up for a Game of the Year award

Black Ops 6 Season 1 Reloaded is likely right around the corner, adding new maps, a new Zombies main mission, and more.

Even without extra Season One Reloaded content, we're having a blast with Black Ops 6, landing it a place on our list of the best FPS games to play in 2024. This upcoming midseason update will freshen things up somewhat, giving players a new shotgun, and sniper rifle to work towards.

While we don't yet have a confirmed date, there has been a tease of sorts which likely places Season One Reloaded in early December.

Here's what we know about Black Ops Season 1 Reloaded so far, including a look at the rumored release date, as well as what might be added. As we hear more from Activision, this page will be updated.

Black Ops 6 Season 1 Reloaded release date prediction

(Image credit: Activision)

The Black Ops 6 Season 1 Reloaded release date is rumored to be December 12, according to a tweet by Treyarch announcing the arrival of the new Citadelle Des Morts Zombies map.

Generally, all of the midseason content arrives at once in Call of Duty, meaning it's likely that Citadelle Des Morts will be a part of Reloaded.

#CitadelleDesMorts ⚔️ 2024.12.05 ⚔️ pic.twitter.com/XiCQqmUtk2November 22, 2024

Activision is yet to fully announce Black Ops 6 Season 1 Reloaded or its release date. Until then, we'll be keeping an eye out for a full blog post and will update this page once it goes live.

Black Ops 6 Season One Reloaded - what's being added?

(Image credit: Activision)

Activision has now announced the highlights for what'll be added to Black Ops 6 as part of Season 1 Reloaded. This includes new maps, a new Zombies mission, and new weapons. Here's a brief summary of what's being added:

• Maps: Racket, Hacienda, Nuketown Holiday, Citadelle Des Mortes
• Wildcard: High Roller
• Weapons: AMR MOD 4, MAELSTROM, Cleaver
• Modes: Prop Hunt
• Bundle: Brightmare
• Warzone: BR Ranked Play

For a full breakdown of Black Ops 6 Season 1, head on over to the Call of Duty blog. This includes some content marked as in-season, which is likely to arrive as part of Season One Reloaded.

You Might Also Like...

• Black Ops 6 review
• Here's when to expect the next season of Fortnite
• Upcoming games 2024

From politicians to VC firms, everyone is falling out of love with the massive, money-oriented, global technology titans. In their place, we have the chance to build something open and trustworthy.

Game Pass Ultimate subscribers also get some Genshin Impact rewards.