Technology

The Soundcore Space One headphones have dropped to just $70.

You can transform existing photos into mashups in the form of stickers, pins or plush toys.

Clear dust and debris from your keyboard and other tech with Hoto's 4-in-1 compressed air capsule while it's discounted by a whopping $72.

• The Tech University Health Sciences Center in Texas and El Paso confirmed suffering a cyberattack
• Data on 1.4 million people were exfiltrated in the attack
• A threat actor named Interlock claimed responsibility for the attack

Another major US hospital has suffered a cyberattack recently, and as a result, lost sensitive data on more than a million patients.

In an announcement published on its website, the Texas Tech University Health Sciences Center, and Texas Tech University Health Sciences Center El Paso (HSCs), confirmed suffering a “temporary disruption to some computer systems and applications.”

Subsequent investigation confirmed that the disruption was the result of a ransomware attack, in which “certain files and folders” were removed from the HSCs’ network. The attack allegedly happened on September 17, and was discovered more than a week later, on September 29.

Another hospital attacked

In the notice, it did not say how many people were affected, or who the attackers were, but in a separate filing with the U.S. Department of Health and Human Services Office for Civil Rights, it said the number was 1,465,000.

HSCs concluded that crooks stole sensitive data such as people’s names, date of birth, address, Social Security number, driver’s license number, government-issued identification number, financial account information, health insurance information and medical information, including medical records numbers, billing/claims data and diagnosis and treatment information.

The threat actor behind this attack is called Interlock, and appears to be a relatively new ransomware operation, which targets high-profile organizations and demands hundreds of thousands of dollars in ransom. The group recently added HSCs’ data to its leak website, where it showcased 2.1 million files, totaling 2.6 terabytes.

To combat the attack, HSCs are currently reviewing existing security policies and procedures, and are implementing additional safeguards to enhance system protection and monitoring, it was said in the announcement. Out of an abundance of caution, HSCs added, affected individuals are offered complimentary credit monitoring services, free of charge.

Via BleepingComputer

You might also like

• Healthcare organizations are having to pay millions to solve ransomware attacks
• Here's a list of the best antivirus
• These are the best endpoint protection tools right now

If you’ve been following the news from 12 Days of OpenAI, you’ll know that OpenAI has released ChatGPT search to the world as part of its Christmas-themed launch extravaganza.

This means that everybody with a ChatGPT account (you need to be logged in to use it) now gets access to ChatGPT search. OpenAI has also added ChatGPT search to Advanced Voice mode, and made it faster and better on mobile.

Previously, ChatGPT search was only available to ChatGPT Plus subscribers and people who had signed up to the waiting list. Now it’s available to everyone. All you need to do to use it is go to ChatGPT.com or open the ChatGPT app on your phone, tap or click on the little world icon in the ChatGPT prompt window and a blue 'Search' label appears, to indicate that whatever you type in next will become a web search, not a typical chatbot interaction.

Just what is an AI search engine anyway?

An AI search engine differs from a conventional search engine, like Google, in a few key ways. First, you can use natural, conversational language instead of search terms. We’re all so conditioned to using Google these days that we default to a search term-based language when we use it, and not doing that can take a bit of getting used to.

So, for example, you could start off by asking “what are the best laptops around right now?”, in the same way you would in a conversation, and then when you get the results you can follow up with “I want one for gaming” and ChatGPT will know what you’re talking about, and give you some more results.

Second, there are no adverts. Some people enjoy sponsored content links in searches, since it quite often gives you a link to exactly what you’re looking for, but you won’t find any in ChatGPT search. It very much reminds me of the early, simpler days of Google.

Perplexity vs ChatGPT

The concept of an AI search engine isn’t that new, in fact there’s another contender in the field that has been doing it for longer than ChatGPT has, and that’s Perplexity. Perplexity is perhaps the original AI search engine. From the start it was designed to search the web and find results, then give you an accessible, and conversational answer.

Now we have two AI search engines going head to head, so it’s natural to want to compare them. I picked a range of subjects to ask both about, and I was quite shocked by the results.

I started with: “I love pizza, are there any good pizza restaurants near me?”

I was a bit surprised when both search engines initially recommended restaurants that were in my nearest city, rather than local to me; however, after I told them exactly where I lived I got better results – and very similar results – from both. In fact they recommended exactly the same restaurants. What really surprised me was the amount of detail I got from Perplexity – a lot more than I got with ChatGPT search.

ChatGPT search results: Uncluttered, plain and simple, but unexciting? (Image credit: OpenAI)

Perplexity: Nicely organized results, lots of information, and colorful pictures! (Image credit: Perplexity)

On web or mobile, ChatGPT’s search results appear as quite a boring text-based list. You get a simple description of each restaurant and a link to its website; that's it. In contrast Perplexity gives you a lot more information, and it's a lot more interesting to look, at since each result is broken down into subheadings – in this case Address, Highlights, Features and Rating. There are links to the websites, plus to the reviews online. You can choose to show all the sources in a list on the right-hand side of the page, where you also get a selection of images of the subject you're searching for.

It was the same when I tried other searches like, “Who will be the next James Bond?”, or “What laptop should I buy for Christmas?”. The ChatGPT search results were sparse and lacking in detail, while the Perplexity results had many more links to sources, and just felt more fleshed out and informed.

My overall recommendation? Perplexity is better. Both search engines produced similar results in terms of the sources found, but Perplexity presents the information in a better way, and with more detail that makes it easy to progress your search to the next thing you’re likely to be looking for, like a review.

Sorry, ChatGPT search – you’re good, but you’re still new to this game, and Perplexity has the edge right now.

You might also like...

• Between Perplexity’s new macOS app and ChatGPT’s search launch, conversational search just got a lot more fun
• Perplexity’s new Buy with Pro is the perfect AI-powered shopping assistant for Black Friday
• I tried ChatGPT Search and now I might never Google again

In a previously unreported August memo, the Department of Homeland Security urged state and local police to conduct exercises to test their ability to respond to weaponized drones.

• Many home devices harvest and share more data than is necessary
• US and UK watchdogs are setting out rules to protect device owners
• Researching appliances and using them offline can help keep data secure

Last month, consumer body Which? revealed that many popular smart home devices, including air fryers, may be capturing unnecessary data and sharing it with third parties - facts that you could easily miss when choosing and setting up a new appliance. Now, consumer rights watchdogs in the US and the UK have outlined plans to force companies to be more transparent about what information they keep, and how it's used.

As Gizmodo explains, the Information Commissioner’s Office (ICO) in the UK is planning to issue new guidance to companies early next year specifically related to smart home tech and user privacy. According to the ICO, this "will outline clear expectations for what they need to do to comply with data protection laws and, in turn, protect people using smart products."

Meanwhile, in the US, the Consumer Financial Protection Bureau (CFPB) has proposed a new rule that would limit brokers' ability to sell personal information that might been acquired in data breaches. Under the proposed rule, these brokers would be treated like credit bureaus and background check companies, and held to the same standards.

How to keep yourself (and your data) safe

This is promising news, but how can you determine whether a smart home device is safe to use right now? Reading the privacy policy thoroughly is the obvious first step, but some can be prohibitively lengthy.

Home tech companion apps come with their own privacy policies too, but remember that just because a device has a companion app, or can be connected to Wi-Fi or Bluetooth, it's often not necessary to use its key functions. For example, my electric toothbrush has an app that awards you badges for brushing your teeth for two minutes twice a day, but it works perfectly fine without that. Similarly some of the best air fryers have an app that lets you adjust the temperature remotely and provides recipe ideas, but isn't mandatory for cooking your fries.

Your appliance may have Wi-Fi or Bluetooth connectivity, but you don't necessarily have to use it (Image credit: Getty Images)

If your device does need to be online, The Mozilla Foundation's Privacy Not Included report is a good starting point. The foundation's researchers have pored over the privacy policies for dozens of products, including home security cameras, smart thermostats, and robot vacuum cleaners, to find out exactly how much data they gather, what their default privacy settings are, who your data may be shared with, and what could happen if the company suffers a data leak.

For example, the Garmin Index S2 smart scale collects a lot of personal information (gathering biometrics is its job, after all), but the company's privacy policy is transparent, neither shares nor sells your data, and has acted on previous advice from Mozilla to make it clearer that all users have the right to delete their data, regardless of where they live.

Ecobee (maker of one of the Ecobee SmartThermostat) also earned praise for its SmartCamera home security device, which sends encrypted video footage directly to your phone without being recorded. If you do choose to save any photos or clips, the company says they will be deleted from its servers automatically when you uninstall the app.

Make sure that any connected devices are set to receive automatic security updates so any vulnerabilities discovered are patched as soon as possible.

What's the worst that could happen?

If your data isn't properly protected, the results can be devastating. Just last week, personal data from matchmaking site Senior Dating was discovered on data leak site Have I Been Pwned, exposing sensitive data relating to over 700,000 people, including photos, email addresses, and physical locations.

In October, a Brazilian driving school was found to have exposed the sensitive data of 400,000 people by leaving a database unsecured. Photos, full names, addresses, and government ID numbers were all left unsecured, putting people at serious risk of identity theft and harassment.

When we review a product here at TechRadar, we'll always let you know whether a mobile app is available, and what it actually does so you can make an informed choice about what data you're sharing.

You might also like

• How does a data breach affect you and why should you care?
• How to keep your smart home secure
• 10 tricks to protect your home from hackers

• Microsoft's CEO Satya Nadella has doubled down on the company's multiplatform plan
• The CEO said he is "feeling, very, very good about where we are in gaming"
• Nadella explained that Microsoft is "redefining what it means to be an Xbox fan"

Microsoft's CEO Satya Nadella has said the company wants to redefine what it means to be an Xbox fan as he doubles down on its multiplatform plan.

This comes from Microsoft's annual shareholder meeting last week, via GameFile, where Nadella and Microsoft’s vice president of investor relations, Brett Iverson, discussed the company's gaming strategy while also reflecting on its acquisition of Activision Blizzard.

When Iverson asked Nadella how he feels about the early return on that investment and current progress of Microsoft's gaming strategy, the CEO said he is "feeling, very, very good about where we are in gaming."

"In fact, right now, this is, like, the peak season in gaming, obviously with Black Ops and the new Call of Duty," said Nadella, referring to Black Ops 6' launch and day one release on Xbox Game Pass.

"It’s just been fantastic to see the launch and the marketing around it, the buzz around it and the love for gaming... If I think about it right, we chose the secular growth category in entertainment, which we think is gaming and said, ‘Let’s double down on it’."

The CEO pointed to the company's recent 'This is an Xbox' marketing campaign, which showcased the range of devices players can use to access Xbox games, explaining that it's a way Microsoft is "redefining what it means to be an Xbox fan: it’s about being able to enjoy Xbox on all your devices."

"And, more importantly, I think in [the] long-term, as a company, we can bring the best of the AI innovation, cloud innovation, console innovation, PC innovation to build the best games that can be enjoyed by gamers everywhere," Nadella added.

You might also like...

• Marvel Rivals' new Winter Celebration game mode will bring Splatoon-like chaos starring Jeff the Land Shark
• Microsoft announces that Xbox Insiders with Game Pass Ultimate can now stream select games on console
• Sony confirms its intention to acquire FromSoftware parent company Kadokawa, but one analyst says the publisher could 'lose its independence' if the deal goes through

• Microsoft wants to sell you a subscription to use Skype
• You can no longer buy Skype Credit to make phone calls
• Custom phone numbers have been discontinued, no replacement

You’d be forgiven for thinking that Microsoft Teams fully replaced Skype when it launched in 2017, but its video conferencing predecessor is still going strong, and has jumped on the subscription train.

In a major change for the platform, Microsoft has quietly removed two of its key premium features – Skype Credit and custom phone numbers.

Instead, Microsoft is pushing Skype customers towards subscriptions for calling plans, ending the flexibility that one-time credits previously offered and potentially proving more costly for irregular users.

Skype goes subscription-based

The change was first noticed by a moderator on Microsoft’s Skype forums, who stated: “Skype has stopped purchase of Skype Credit for all users. The only option available now are monthly calling subscriptions.”

Microsoft later confirmed the changes in an email to TechCrunch, adding it, “continuously evaluate(s) product strategy based on customer usage and needs.”

Anybody with credit already applied to their account can continue to use it, so long as they use it once every six months to keep it active, however new purchases for credit are no longer possible.

Calling landlines and mobile numbers now requires a subscription, and Skype-to-Skype calls remain free and unaffected. However, users of Skype’s virtual phone numbers for international calls or outbound SMS messaging have been most affected, because Microsoft has not confirmed a direct replacement.

In the years following its $8.5 billion acquisition of Skype in 2011, Microsoft has slowly deprioritized the platform and largely replaced it with Teams. The company no longer shares its user base in earnings reports, however increased competition from the likes of Zoom and Cisco have put pressure on Skype in a post-pandemic world where video conferencing remains a staple of hybrid working.

In the meantime, Skype’s interface still suggests that users can buy credits, leading to failed payments. Microsoft acknowledged inconsistency in its messaging, and promised to update it accordingly.

You might also like

• We’ve rounded up a list of the best online collaboration tools
• Check out the best hybrid working tech you should consider
• Remember Skype? Well now it’s ad-free again, which will be a refreshing change for Windows 11 users

The Christmas season is all about being with family and having fun. Yet, while classic board games get replaced by their online counterparts, your online privacy is increasingly at risk – not the best way to start the new year!

For instance, five of the most popular holiday-themed gaming apps are specifically Christmas-related. Worse still, free festive apps are especially data-hungry, reportedly sharing five times more data with third parties than their paid version.

These are some of the worrying findings from new research conducted by Surfshark, one of the best VPN providers on the market. Keep reading as I explain everything you need to know to stay safe.

Christmas online gaming: how much data collect?

To determine the real price we pay to enjoy festive apps, the Surfshark team analyzed the 21 most popular mobile game applications on the UK App Store across the Board Games, Family Games, and Christmas lists.

These included games, but also countdowns (Santa Tracker, Christmas Countdown!), photo editing (ElfYourself), festive music (Christmas Radio+), and gift-shopping aids (Gifster).

The App Store provides a list of 35 unique data points categorized into 16 unique data point categories. The experts analyzed the data set according to the number, type, and handling of the data points collected by each app. Needless to say, the team found most of these apps to be pretty data-hungry.

Make sure to delete all the festive apps you've downloaded after the holidays are up

While the average number of unique data points collected by the most popular festive apps is seven, some gather as many as 13 out of 35.

The digital adaptation of the famous board game, Monopoli Go! tops the list of data-hungry apps with 13 unique data points collected. All of them are data linked to you, while 10 are actively used for online tracking. This means the app shares your details, including your location, with data brokers or other third parties to build your profile across different websites for targeted advertising.

The third most popular free board game app, Hexa Sort, shows a similar behavior, collecting 13 unique data points, 10 of which are tracked, including location and purchase history. Bubble Pop!, and ElfYourself are also among the most data-hungry apps.

As expected, free apps collect and share the most data, and experts found that Christmas freebies share five times more data with third parties than paid apps.

As Tomas Stamulis, Chief Security Officer at Surfshark, explains, mobile app developers are increasingly taking regulations and data protection requirements into account.

In the past, gaming apps often requested broad access to your data, while today's developers are more likely to focus on information that is truly necessary for the software to function properly.

Yet, Surfshark's research nonetheless shows how free applications consistently put your privacy at risk by sharing significantly more data with third parties compared to paid apps. This, according to Stamulis, highlights the importance of evaluating privacy implications.

He said: "A responsible approach to data protection might encourage users to opt for paid versions of apps, look for alternative apps, or consider whether the app can function without granting permissions that may not be truly necessary. If such options aren’t provided, it raises important questions about the intent behind the data collection."

Another crucial thing to keep in mind is the aftermath of the Christmas season. The likes of Christmas Countdown!, Santa Tracker, and Christmas Radio+ could track and share your location data with third parties, for example, even when you're not using the app anymore. As a rule of thumb, you should delete all the festive apps you've downloaded after the holidays are over.

While security software like virtual private network (VPN) and ad-blocker services can only boost your privacy a little – by, for instance, masking your real IP address location and protecting your device from malware – they cannot prevent the applications from tracking you. However, you could use a data removal service like Incogni afterward to ask data brokers to delete all the details they have on you.

As businesses embrace multi-cloud environments for their flexibility, scalability, and agility, they encounter new challenges in managing these complex systems. Gartner predicts that by 2028, cloud environments will become a “business necessity” and over 70% of enterprises have already embraced some form of hybrid or multi-cloud solution. The ability to distribute workloads across multiple platforms, the reduced exposure to vendor lock-in, and the potential gains in cost and performance are simply too good to pass up.

The challenge of operational silos

Despite the benefits, multi-cloud environments can create operational silos among network (NetOps), security (SecOps), and cloud operations (CloudOps) teams. This fragmentation in managing critical services like DNS, DHCP, and IP address management (collectively known as DDI) exposes businesses to downtime, increased costs, and security risks caused by a lack of control and visibility across the network. The more businesses distribute their workloads, the greater the risk of silos emerging, making a strong case for unified, automated, 360-degree management of DDI (DNS, DHCP, and IP Address Management) services.

Without a unified approach to managing these network services, there is an increased risk of misconfigurations, undetected issues, and downtime. For example, if one team doesn’t have visibility into changes made by another team, the impact of those changes might not be noticed until it causes a disruption. Cost is also a factor: fragmented management often leads to inefficiencies, such as duplicated efforts or the use of multiple tools that don’t integrate well. These inefficiencies drive up operational costs as businesses spend more time and resources managing their network manually or purchasing additional solutions to bridge gaps. Silos can also weaken security: SecOps teams might not have full visibility into what the cloud or IoT networks teams are doing, leading to potential security blind spots. This fragmented view makes it harder to detect and respond to security threats across the network, leaving vulnerabilities unaddressed.

The fragmentation trap

Deploying different DDI solutions across multiple cloud platforms leads to a disconnected ecosystem, with teams juggling disparate tools and workflows. The disjointed management creates bottlenecks, slows response times, and increases the risk of errors as teams often fall back on manual workarounds. When DNS solutions from different vendors are used across a hybrid or multi-cloud setup, achieving full visibility and control over the network becomes nearly impossible, because each platform typically has its own tools, interfaces, and configurations. As mentioned above, teams are then forced into workaround solutions that stifle productivity and heighten the risk of human error.

Especially manual or duplicated work can delay application deployment by weeks, affecting a company's ability to innovate and compete. Competitors with more agile processes capitalize on opportunities faster, while businesses stuck in manual workflows are left behind, facing higher operational costs and possibly damaged reputations. Consider a tech company that manually provisions critical network services for new applications. This process can take anywhere from a month to six weeks, significantly delaying product launches. We saw one customer, for instance, manage to reduce their provisioning time from six weeks to just 15 minutes by adopting the automation capabilities of our DDI solution, dramatically accelerating their time-to-market. However, the true cost of manual provisioning isn’t just about delays; it’s about lost sales and missed opportunities.

Unified DDI management

To overcome the challenge of fragmentation and gain control and visibility over their network, organizations need a unified approach to managing DNS, DHCP, and IP Address Management across all of their cloud environments. Consolidating the management of these services into a single platform eliminates silos, enhances collaboration, and improves operational efficiency. A Universal DDI solution provides full visibility across multi-cloud environments, ensuring that all network assets, regardless of their location, are visible and manageable from a single interface, reducing the risk of oversight and enhancing operational efficiency. In addition, scalability and flexibility allows such solutions to scale seamlessly with the business’s growth and adapt to changing needs, ensuring it can handle increasing workloads and evolving technological landscapes. But it goes further than this: Automation and orchestration capabilities minimize manual intervention, reduces errors, and accelerates response times further.

Security and compliance are also critical considerations, particularly when it comes to multi-cloud environments. A unified DDI solution can offer full visibility across the entire network, allowing organizations to detect and respond to security threats more quickly, while also ensuring that all data handling and processes meet regulatory standards. Fragmented management of DNS, DHCP, and IPAM, as noted above, only increases the risk of non-compliance, particularly with regulations like GDPR or CCPA, where even minor oversights can lead to costly fines and reputational damage. A centralized approach not only reduces these risks but also bakes essential security measures – such as DNS protection – directly into critical network services management, enhancing an organization’s overall security posture.

It's time to rethink how critical network services and security are managed in the multi-cloud environment. By adopting universal management of DNS, DHCP, and IP Address Management, businesses can eliminate silos, improve efficiency, and avoid the fragmentation trap, allowing them to fully capitalize on the benefits of multi-cloud environments.

We've featured the best cloud storage.

This article was produced as part of TechRadarPro's Expert Insights channel where we feature the best and brightest minds in the technology industry today. The views expressed here are those of the author and are not necessarily those of TechRadarPro or Future plc. If you are interested in contributing find out more here: https://www.techradar.com/news/submit-your-story-to-techradar-pro

Generative AI (GenAI) is leading a widescale evolution of business processes across industries. The rapid development of use cases for the technology makes it critical that organizations invest now or risk falling behind. A recent report showed that 82% of organizations plan to introduce AI agents across their business in the next three years. It’s easy to see why. AI agents, particularly GenAI, have enormous potential to accelerate digital transformation journeys—from improving operational efficiencies to helping multi-channel contact center agents deliver experiences that delight and surprise customers.

The race to an AI-driven future

As technology develops, organizations are under increasing pressure to demonstrate to customers and investors that they are at the forefront of innovation. They are looking to embrace GenAI to create new value by augmenting traditional business processes with new efficiencies and to drive better customer experiences. However, there is a risk of investing in technology for its own sake if they don’t embark on their adoption strategies with a clear goal in sight. This is especially true when it comes to GenAI. Two years after the emergence of ChatGPT, we’ve seen countless use cases being explored and developed. The time for experimentation is over.

In 2025, organizations need to focus on proven, value-driven applications of GenAI aligned with clear business objectives. Without this more purposeful approach, they will only scratch the surface of the benefits the technology can unlock. With the clock ticking, organizations must quickly determine which use cases to focus on and how to integrate them into their operations to create value. Here are three of the most impactful GenAI use cases that are already proven to elevate business processes to a whole new level:

1. Enhanced central business functions

GenAI should not be about reinventing the wheel. As a first step, organizations should focus on improving central business functions they already perform well. Initial use cases should be aligned to streamlining key processes such as document handling and supply chain management. These use cases will be more effective with focused AI models trained on targeted data sets that provide the rich context needed to automate specific functions with precision.

As a result, organizations will increasingly embrace Small Language Models (SLMs) in 2025. These approaches are more cost-effective, easier to customize, and have fewer parameters than Large Language Models (LLMs), making them better suited to targeted business functions. In fact, 56% of organizations plan to use SLMs within the next three years, demonstrating the central role they will play in future GenAI strategies. As they continue to curate SLMs for new use cases, organizations will be able to power further AI solutions to streamline additional business functions.

2. Improved CX and quality of life

Customer experience (CX) is another function organizations can take one step further with GenAI. Most significantly, GenAI assistants can make life easier for service agents and help them deliver better outcomes for the business, especially those in CX roles. For example, contact center teams may have to search multiple systems for the information they need to handle customer complaints or reschedule an appointment during a support call. This process takes time, keeping the customer waiting longer and degrading their experience — especially if they are forced to recount previous conversations with other team members.

With a GenAI assistant, time-consuming tasks associated with document processing and information gathering can be automated. This helps agents deliver experiences far beyond what callers expect, allowing organizations to surprise and delight their customers. It also enables service agents to focus on higher-value tasks such as building relationships with customers, giving them greater job satisfaction, and alleviating burnout. As these capabilities mature, leveraging a blend of humans and GenAI agents will revolutionize customer experience through predictive analysis and process automation, helping organizations to remain agile and carve out a more decisive competitive advantage.

3. Advanced communication skills

Finally, GenAI has real potential to reduce language barriers and empower service agents to support customers from any location. A recent report found that AI can deliver a 90% reduction in document translation time, resulting in efficiency savings of up to 2.79 million euros. GenAI can use a similar capability to detect language and automate responses to frequent customer queries via webchat, email, social media, and even phone. In many cases, this removes the need for customers to speak with service agents. That not only improves customer satisfaction by accelerating resolution time but extends the organization's reach by moving beyond traditional communications channels.

Human agents can also leverage AI-powered voice assistants to translate conversations during live service interactions so that they can speak with customers without being fluent in their language. This means that in 2025, human empathy and experience in dealing with complex customer challenges are the skills that will matter most for service agents, not the number of languages they speak. As their use cases for GenAI mature in this area, organizations will propel customer experience to the next level by streamlining workflows and reducing case resolution times dramatically.

Generating value with AI

GenAI has huge potential to transform business processes, but organizations urgently need to move beyond the experimentation phase to tap into this opportunity. As tangible use cases continue to emerge, organizations must have clear, customer-focused objectives and a well-defined roadmap to ensure they integrate these technologies in a way that drives value. With this more considered approach, they will be much better poised to reap the rewards of GenAI and deliver market-leading innovation.

We've featured the best AI phone.

This article was produced as part of TechRadarPro's Expert Insights channel where we feature the best and brightest minds in the technology industry today. The views expressed here are those of the author and are not necessarily those of TechRadarPro or Future plc. If you are interested in contributing find out more here: https://www.techradar.com/news/submit-your-story-to-techradar-pro

• CISA added two new flaws to its KEV catalog
• One of the bugs affects the Windows kernel, the other one was found in an Adobe product
• US government agencies ordered to patch now or risk attack

The US Cybersecurity and Infrastructure Agency (CISA) has added a new Windows flaw to its Known Exploited Vulnerabilities (KEV) catalog, giving federal agencies a deadline to apply a patch, or stop using the software altogether.

The bug is a Microsoft Windows Kernel-Mode Driver Untrusted Pointer Dereference Vulnerability with a high severity score of 7.8, tracked as CVE-2024-35250.

The bug can be used to gain system privileges in low-complexity attacks that don’t even require any user interaction.

Adobe ColdFusion

"An attacker who successfully exploited this vulnerability could gain SYSTEM privileges," Microsoft said in its advisory.

Since Microsoft did not share any further details about this vulnerability, the publication cited the DEVCORE Research team, who demonstrated how the bug works during this year’s Pwn2Own Vancouver hackathon. The same team reported the bug to Microsoft, who patched it in June’s Patch Tuesday cumulative update, A proof-of-concept (PoC) was released to GitHub a few months later.

When a vulnerability is added to KEV, that means that there is evidence of in-the-wild abuse. Federal agencies have a three-week deadline to apply the patch, or stop using the flawed software.

At the same time, CISA also added an Adobe ColdFusion vulnerability, tracked as CVE-2024-20767. This one is described as an improper access control weakness that grants unauthenticated remote threat actors the ability to read sensitive files. It affects ColdFusion versions 2023.6, 2021.12 and earlier, and has a high severity score of 7.4 - and Adobe patched it in March 2024.

“An attacker could leverage this vulnerability to access or modify restricted files,” reads the flaw’s description on CVE.org. “Exploitation of this issue does not require user interaction. Exploitation of this issue requires the admin panel be exposed to the internet.”

CISA stressed that these types of vulnerabilities are “frequent attack vectors for malicious cyber actors” and as such pose a significant risk to the federal enterprise.

Agencies have until January 6, 2025 to apply the fixes.

Via BleepingComputer

You might also like

• Adobe releases emergency patch for ColdFusion vulnerability
• Here's a list of the best antivirus
• These are the best endpoint protection tools right now

These bird feeders come with cameras and connected apps to let you see and learn about the birds in your neighborhood.

• Nvidia RTX 5090 has 32GB based on leaked info from Zotac’s website
• Next-gen launch GPUs are supposedly the RTX 5090, 5080, 5070 Ti and 5070
• There is, however, no sign of the RTX 5060 in this spillage

Zotac just leaked details of what might be the initial line-up of next-gen desktop graphics cards from Nvidia.

VideoCardz did the sleuthing here, turning up details Zotac accidentally aired on its own website, showing us the Blackwell GPUs that the graphics card maker will initially debut (in theory, anyway). Furthermore, Zotac also dropped a tasty nugget of info on the VRAM configuration for what’s surely the next-gen flagship.

The models listed by Zotac – and all the spilled details have now been removed, we should clarify – were as follows:

• Nvidia GeForce RTX 5090
• Nvidia GeForce RTX 5090D
• Nvidia GeForce RTX 5080
• Nvidia GeForce RTX 5070 Ti
• Nvidia GeForce RTX 5070

The Nvidia RTX 5090D is the variant of the flagship for China, following in the footsteps of the RTX 4090D, as you’re likely aware.

As for the VRAM info, Zotac has filters for its GPUs to allow sorting by memory type and capacity, and mistakenly put a GDDR7 option in the former, as well as an allocation of 32GB in the latter.

This shows us that RTX 5000 graphics cards will carry GDDR7 VRAM as (heavily) rumored – all models will use this cutting-edge memory, supposedly – and that there’ll be a 32GB allocation of video RAM in the line-up, as there isn’t with the current-gen (which tops out at 24GB).

The GPU paired with 32GB must, of course, be the RTX 5090, and this is what’s already been rumored for the next-gen flagship.

(Image credit: Future / John Loeffler) Analysis: What about the RTX 5060, though?

With this kind of work going on with manufacturer websites, in the background – well, it should have been on the quiet, in the background, but was accidentally sent live by a Zotac employee, clearly – shows we are about to get new RTX 5000 GPUs at CES 2025. Although Nvidia has all but said that, anyway, at this point.

The really interesting bit here is the underlining of the RTX 5090 being a mighty GPU sporting 32GB of video RAM, and the range of models available initially, which are as expected, pretty much. Well, the RTX 5090 and 5080 are, anyway, the rumor mill just isn’t quite sure if we’ll also get the RTX 5070 or the 5070 Ti – and maybe this is a suggestion that Nvidia will push out both. Alternatively, perhaps one of those RTX 5070 variants may come slightly later.

Notably, there’s no mention of the RTX 5060, which has recently floated up on the rumor winds as a possible GPU launch for later in the first quarter of 2025. Zotac may not be prepping that because it’s a couple of months down the line from these initial launches – or perhaps this is a hint that this lower-tier Blackwell graphics card won’t turn up until later in 2025.

You might also like

• Nvidia’s RTX 5090 now rumored to have superfast clock speeds – as well as being super-slim – could this GPU be too good to be true?
• The best graphics card in 2024: our picks for all budgets
• Best PC games: must-play titles you don't want to miss

John Lewis is offering an AI-mazing Christmas present: an extra £300 off the super-powered Pixel 9 Series when you trade in an iPhone. With advanced cameras and AI photo editing, 7 years of free upgrades and Google's most powerful chip yet, the Pixel 9 Series raises the bar for, well, everything.

A phone full of firsts

Pixel gets the best of Google AI first. Its AI-enhanced camera enables you to take incredible pictures and to make them better than you can imagine, in ways you can't believe. With Add Me You can magically merge two photos together to add you into group shots, and with Best Take you can be sure you'll always see everybody's best side by combining multiple takes into one brilliant one. And with Photo Unblur in Google Photos you can sharpen even the fuzziest pics, old or new, with just a couple of taps.

Gemini AI gets things done, done and then some

It's tempting to spend all day just using the Pixel 9 Series' amazing camera and Google's cutting-edge AI tools. But the Pixel 9 Series with Gemini is also here to do all the things that you do every day – as well as some things you've never done before.

That's because Gemini is your AI sidekick. It'll summarise your Gmail messages and your Google Docs, tell you what's in your photo and help you find things online with the superb Circle To Search: when you see something you want to look at, just circle it on your screen and Pixel's AI will find it. Fast.

(Image credit: Google) Reimagine reality with Magic Editor

With Magic Editor you can use AI power to unleash your imagination. Want to turn the sky pink, or turn the grass into a beach? Just type what you want to see and Magic Editor will make it appear. And you can even move people or things around in your photos to get everything and everyone positioned perfectly.

One of our favourite features is Magic Eraser, which makes things disappear. Whether it's someone photobombing a group selfie or just unwanted items such as power lines or other distractions, Magic Eraser makes them history. Instantly.

The camera that's next-level amazing

In order to take great photos you need to start with a great camera. And the highly acclaimed Pixel Camera is exactly that. It enables you to take stunning photos and videos in any light, from super close-up to really far away. The combination of its 50MP wide camera and Night Sight means superbly sharp, vivid photos in low light, and Google hasn't forgotten about selfies either: the 10.5MP front camera with autofocus means super-sharp, share-worthy selfies every time.

If you're used to shooting with an iPhone you're probably familiar with one of its irritations: recent models are notorious for applying too much processing to some photos, and that's processing you can't then undo. But the Pixel Camera delivers true-to-you skin tones thanks to its Real Tone feature, which represents the nuance of skin tones beautifully, authentically and accurately. And if you have low vision, the Guided Frame feature helps your selfie game by using audio and haptics to guide you into the perfect framing for photos.

(Image credit: Google) Super powerful. Super-powered

The first thing you'll notice about the Pixel 9 Series is how good its display looks. The 6.3-inch Actua display in the Pixel 9 isn't just super bright. It's super smooth too, with a speedy 120Hz refresh rate for incredibly smooth gaming, scrolling and switching apps. And it's teamed up with the Google Tensor G4, the most powerful Google chip yet. The Tensor G4 was made for Google Pixel's advanced AI, and with a massive 12GB of RAM it's both silky-smooth and sensationally speedy.

The weak spot for some smartphones is their battery. Not here. The Pixel 9 comes with a battery that can last over 24 hours, and if you pop it into Extreme Battery Saver mode you can get up to 100 hours between charges – brilliant if you're travelling or going off-grid. And when you get back to civilisation you can recharge it from zero to 55% in about 30 minutes.

Pixel protects you and your info

As you'd expect from Google Pixel, the new Pixel 9 series delivers rock-solid security and protection against common mobile and online scams including online fraud and phishing scams. And that protection lasts. When you buy your Pixel 9 Series you're getting 7 years of operating system and security updates, plus free Pixel Drops to deliver new and upgraded features. That means you can be sure that you're getting the most advanced AI features first. When you buy your Pixel, you're buying a phone that gets even better over time.

The phone you'll want to hold

Redesigned with damage-resistant front and back glass, curved edges and a smooth, durable frame, Pixel 9 is built to last. And of course it works brilliantly with other Pixel devices including Pixel phones, Pixel buds and Pixel Watch. Together they use the power of Google Pixel AI to deliver even more personalised, powerful help.

With its AI-mazing camera and photography tools, its super-powered Tensor G4 chip and that beautifully smooth display, the Pixel 9 isn't just advanced. It's incredible. And with up to £300 off when you trade in an iPhone at John Lewis, it's amazingly affordable too. This deal is only available from John Lewis, where you’re not just getting exceptional value for money. You’re also getting John Lewis’s exceptional customer service too.

Click here to discover the Pixel 9, your new favourite phone.

A 53-year-old woman was the third to undergo the transplant procedure. Researchers are hoping to monitor the long-term effects.

• Apple’s macOS Sequoia 15.3 beta introduces Genmoji, letting Mac users create custom emojis
• Genmoji works offline, requires Apple silicon Macs, and expands emoji use with personalized designs from prompts or photos
• Available to developers now, Genmoji will roll out to public beta and future macOS updates soon

Apple has released its first beta for the upcoming macOS Sequoia 15.3 update for developers, and it reportedly brings a feature powered by Apple Intelligence that the company has been hyping up for some time now: Genmoji. This developer beta follows swiftly on the heels of the release of macOS Sequoia 15.2, which came out about a week ago.

Genmoji will allow Mac users to generate their own unique emojis based on a prompt and this is also the first time we’ll see it on a desktop (the feature was already available on iOS 18.2 for iPhones and iPadOS 18.2 for iPads and now Mac users get to join in on the party), as reported by MacRumors.

To access this developer beta version (and future developer beta releases), you have to register with Apple as a developer (which comes with a subscription fee).

Genmoji is meant to expand the way people can express themselves via custom emojis. On the support page for the feature on iPhone, Apple claims that you can give Genmoji a simple description of what you want your custom Genmoji to look like or create one based on a photo of a person, such as a friend or family member.

Once you generate a custom emoji, you’ll be able to use it like other emojis that are included in Apple software by default. These emojis will then work across devices running iOS 18.1, iPadOS 18.1, and macOS Sequoia 15.1 or later. For those using older versions or an Android device, custom-generated emojis will still show up, but as an image rather than an emoji (which are distinct as far as Apple OSs are concerned).

(Image credit: Shutterstock/DimaBerlin) How to use Genmoji on your Mac

You can create a Genmoji and use it via the emoji palette on Mac. Here are some ways you can access Genmoji on Mac:

Use a keyboard shortcut: Press Control + Command + Space in any app that supports text input, like Notes or Messages

Click the emoji icon: If you’re using an app like Messages, look for the smiley face emoji button in the text bar

When the emoji palette is opened, you’ll apparently be able to see options to create and use Genmoji alongside your standard emoji.

Keep in mind that Genmoji is part of Apple’s shiny new Apple Intelligence suite of AI-powered features, which means it will require your Mac being fitted with an Apple silicon chip (like the M1, M2, or newer).

All Genmoji generation happens on whatever device you’re using without needing an internet connection so you can use it offline.

If you are particularly expressive when it comes to using emojis, I can see this being fun to try, even just to see what Genmoji spits out and how fitting it is to your prompt. It can make messaging and note-taking more personal and expand the possibilities of how people can express themselves. I don’t know if I would use this every time I wanted to send a message or even use an emoji, so it’ll be interesting to watch if it catches on with users.

As Genmoji is currently in the macOS Sequoia developer beta, it has a little way to go before rolling out to the public. It'll have to go through a public beta, which you can enroll in for free, and then if Apple thinks it's ready to go, it'll be added to a future macOS Sequoia update in the next couple months.

YOU MIGHT ALSO LIKE...

• How to install macOS 15 Sequoia on your Mac or MacBook
• iOS 18.2 launch LIVE: The biggest Apple Intelligence upgrade yet for iPhone, iPad, and Mac is here
• Keynote, Pages, and Numbers just got way better with this free Apple Intelligence update – here's how

• A new limited-time game mode will be added to Marvel Rivals this week
• Jeff's Winter Splash Festival is a 4v4 Splatoon-like mode releasing on December 20
• The Winter Celebration event will also add brand new themed skins for several Marvel Rivals heroes

NetEase has announced that a brand new, limited-time game mode will be coming to Marvel Rivals this week.

Jeff's Winter Splash Festival is part of Marvel Rivals' Winter Celebration event, a 4v4 game mode featuring Jeff the Land Shark as the star character, and is scheduled to release on December 20 at 11 PM PST / 4 PM EST / 7 PM GMT.

From the latest announcement trailer, it seems the game mode is heavily inspired by Splatoon, and will require each team of four players to cover the surface area of the winter map in their designated color in order to win.

Alongside the main event, players can also expect brand new winter-themed skins for five heroes, including Jeff, Magik, Venom, Rocket Raccoon, and Groot.

The end of the trailer confirms that Jeff's adorable new costume can be obtained for free during the event, but it looks like the four other skins will be store-exclusive.

NetEase has also revealed there will be a "special winter greeting card with gifts from Jeff", as well as "a few surprises" when the update drops later this week.

Marvel Rivals launched earlier this month for PC and consoles and was quick to garner over 444,000 concurrent players on Steam on its first day of release (via GameRant).

If you're just getting started with the hero shooter, here are the Marvel Rivals codes you can redeem for the month of December 2024.

You might also like...

• The Witcher 4 officially revealed at The Game Awards 2024 with brutal trailer and confirms that Ciri will star as the titular Witcher
• Excited for The Witcher 4? CD Projekt Red has already announced pre-orders for Ciri's Lynx Medallion
• To the surprise of absolutely no one, another new look at the Nintendo Switch 2 has seemingly leaked

Donald Trump’s attack on clean vehicles is shaping up to be bigger than previously thought.