Feed aggregator

Shield your money from economic turmoil with these top accounts.

Nearly every team offers an in-market streaming service this season, making it easier for fans to watch their favorite team. Here's what you need to know.

At under $700, this phone has a premium feel, but you're occasionally reminded of its-less-than-premium price.

The news of the leak of life-and-death operational details to a reporter lands differently with veterans and active-duty troops, who can be prosecuted for much less significant "spillage" incidents.

(Image credit: Kayla Bartkowski)

Major League Baseball's 2025 season gets fully underway Thursday. The scary news for the league: the defending champion Los Angeles Dodgers, favorites to repeat, may be even better this season.

(Image credit: John McCoy)

What's the right age to take kids to a loud sporting event? A Johns Hopkins noise expert on protecting babies' ears and when game day noise might be too much for them.

(Image credit: Jaap Arriens)

• Proton and Vivaldi have announced a new partnership, integrating Proton VPN directly into Vivaldi's desktop browser
• The integration is available for use from March 27, 2025
• This partnership hopes to strengthen European tech independency from US Big Tech giants and provide users with a better online experience

Europe-based firms Proton and Vivaldi have announced they're joining forces. The partnership means Proton VPN will be integrated into Vivaldi's desktop browser starting today, March 27, 2025.

The integration allows users to enjoy the perks of one of the best VPN services when surfing the web and promises advanced customization and control over your data.

The partnership aims to strengthen European tech independency from US Big Tech giants while helping you break free from surveillance capitalism models, all with a better online experience.

A better alternative

"Consumers around the world are fed up with Big Tech’s data collection. The problem is they haven’t until recently had an alternative," said David Peterson, General Manager of Proton VPN.

"Together, Proton VPN and Vivaldi are setting a new standard that challenges the dominance of Tech giants, providing a viable European alternative that helps people retake control of their digital lives."

Web browsers are the primary source for online data collection on today's internet. While you can take some steps to minimize your data footprint by spoofing your IP address with a virtual private network (VPN), this generally involves the need to download an app or browser extension.

You can find Proton VPN directly on the sidebar of Vivaldi's desktop browser app for a seamless and secure browsing experience (Image credit: Proton)

Now, you can utilize Proton's tried and tested privacy, security, and anti-censorship features directly from the Vivaldi browser. All you need to do is create a Proton account and enjoy the protections of this no-log VPN.

On its side, Vivaldi is a secure and encrypted web browser known for its great customization features.

For example, unlike Google Chrome, it promises never to track your browsing history or collect your data in any other form. Everything is stored locally on your device in an encrypted folder, so not even the provider itself can access it.

Vivaldi also offers a built-in tracker and ad blocker, alongside the ability to disable all cookies from third-party sites.

"While innovation drives technology forward, we believe ethics must guide its path," said COO and Co-founder at Vivaldi, Tatsuki Tomita. "Our partnership represents a principled alternative to big tech, one where your data remains yours, not a commodity to be sold."

You might also like

• Profit over privacy? Google gives advertisers more personal info in major ‘fingerprinting’ U-turn
• We just reviewed Proton VPN – here are 5 ways it impressed us
• I spent 7 days on a data detox – here's what I learned

Utah's new law is part of a larger effort by Republicans to limit the window in which mail ballots can be counted during an election.

(Image credit: George Frey)

Cyber attackers like to target SAP systems because of their wide use—SAP platforms are used by 99 of the Fortune 100 companies and have over 280 million cloud subscribers worldwide. Attackers know this and take advantage of SAP’s vulnerabilities.

These vulnerabilities include configuration errors, access control problems, and software bugs. There are many types of weaknesses in SAP systems and different ways to deal with them. This article will look at some common vulnerabilities you must know and, importantly, how to mitigate these SAP risks.

Mitigating Risks

The risks of not dealing with potential SAP vulnerabilities are financial loss, data loss, reputational damage, and even legal liability. Reducing these risks requires minimizing the attack surface. SAP users must continuously assess and inventory the exposed services (SOAP, WebService, APIs). Any service that is not used or does not serve a current business function should be deactivated to reduce the attack surface and, thus, minimize the risk of exploitation.

In addition, SAP administrators should identify services that do not require authentication. These services are favored touch points for bad actors to gather information. To further tighten the defense, keep up with the latest security advisories, SAP Security Notes, and vulnerabilities. It’s a good policy to limit the number of users with access to sensitive data by creating strong access controls. Regularly updating your systems and keeping up with the latest security patches are also required. Since native SAP security is limited, using third-party tools to boost vulnerability insights and gain insights into platform attack vectors is also helpful.

Common Vulnerabilities

SAP vulnerabilities come in many forms and can be daunting to identify and manage. However, constant attention to these common types of SAP vulnerabilities will strengthen the platform’s posture:

• Code Injection vulnerabilities allow attackers to inject malicious code into SAP Systems. This code can help steal data or mount an attack on business operations. Examples are SQL injection and Remote Function Call (RFC) injection.
• Denial-of-service vulnerabilities allow attackers to send multiple requests or data to SAP systems, which can overwhelm them and cause them to crash.
• Authentication vulnerabilities allow cyber attackers to access authentication protocols. Some examples are misconfigured authentication settings, shared credentials, or weak passwords. Organizations should implement multi-factor authentication (MFA) and routinely review and update authentication policies. Enforcing single sign-on dramatically reduces the attack surface and the team's effort to reset the password.
• Authorization vulnerabilities allow attackers access to critical information and system protocols. Some examples are misconfigured authorization protocols and poor role designs. Organizations must implement robust role-based access controls (RBAC) to ensure users have only the permissions necessary for their roles.

Unsecured Interfaces

Attention must be paid to all interfaces. SAP systems often have multiple communication interfaces, including RFC (Remote Function Call) and HTTP. Unsecured interfaces allow hackers to manipulate data or move between SAP systems, compromising the entire platform’s landscape. To make it more secure, avoid using passwords by configuring trust between systems or using SAP's UCON functionality to lower the attack surface. Another step is enabling data encryption for information at rest and in transit.

Security Logs

Be sure to activate the SAP Security Audit Log; this becomes essential for incident investigation. Proper logging and monitoring are crucial for detecting and responding to security incidents. Inadequate or misconfigured logging can make identifying suspicious activities or breaches difficult. Organizations must establish robust monitoring and alerting systems to stay vigilant against potential threats.

Outdated Systems

Running outdated or unsupported SAP systems, operating systems, and databases is a significant security risk. These systems are more likely to have known vulnerabilities that attackers exploit. If an SAP system is decommissioned, ensure all users are locked out, and the data is deleted to prevent unwanted access.

Conclusion

Due to the sensitive nature of the data managed within SAP systems and their business-critical nature, organizations must establish a comprehensive security strategy that includes regular patch management, robust access controls, secure custom code development, and ongoing user training.

Education and heightened security awareness can help prevent social engineering traps like phishing. And it can’t be stressed enough: not patching SAP regularly is one of the most significant security tasks. Patches, or SAP Security Notes, contain critical security fixes that address vulnerabilities. Failing to apply these patches will render the platform vulnerable.

In addition to all the mitigating actions mentioned, one of the best ways to protect the SAP system is to automate much of the hardening activities through third-party tools designed to complement native SAP security.

We feature the best Active directory documentation tool.

This article was produced as part of TechRadarPro's Expert Insights channel where we feature the best and brightest minds in the technology industry today. The views expressed here are those of the author and are not necessarily those of TechRadarPro or Future plc. If you are interested in contributing find out more here: https://www.techradar.com/news/submit-your-story-to-techradar-pro

Keep a ready supply of purified water and ditch the large jugs and single-use plastic. Here's how portable water dispensers work and why I switched.

Last year, Gen-Z uprising in Bangladesh helped bring down Prime Minister Sheikh Hasina. Student activists continue to be central figures in shaping the future of Bangladesh's political landscape.

(Image credit: Rajib Dhar)

Climate change and overfishing are making it harder to catch the anchovies essential to the condiment that underlies so much of Vietnam and southeast Asia's food.

(Image credit: Yannick Peterhans)

For the first time, a re-creation of the annex where Anne Frank and her family hid is available outside of Amsterdam. Visitors in New York said its themes reverberated in today's political climate.

(Image credit: John Halpern)

What if we're considering the Apple Intelligence problem backwards? Apple’s AI plans seem to be in shambles. It over-promised on upcoming iPhone features, partnered with questionable third party AI providers, and failed to deliver for so long that it's been forced to change plans entirely. There’s even a lawsuit threat.

We can blame Apple's leadership and question its commitment, but I think the problem isn't with Apple at all. The problem is with AI.

As long as I’ve covered Apple, I’ve believed it won't release a product that hasn't reached a certain level of ‘finish.’ The original iPhone launched without GPS for navigation or video recording on the Camera app.

However, it had the most complete and polished user interface ever on a smartphone, and Safari, a mobile web browser that was as advanced as a desktop browser, a feat that defied imagination.

(Image credit: Future/Jacob Krol)

Even Apple Vision Pro, a product that underwhelmed critics, offered a fully-baked experience. Maybe Vision Pro didn't have enough features at launch to satisfy potential buyers, but the features it offered worked perfectly.

And Vision Pro is the most highly-criticized Apple product in recent memory, well before Apple Intelligence imploded.

That time Apple launched a product that didn't exist... yet

Apple Intelligence made for a weird iPhone 16 launch in many ways. For longtime Apple users, it felt wildly out of character for the company.

First, there was the ChatGPT partnership, which saw Apple offloading important features to an upstart, untested partner – loudly. That move set off some warning bells.

Then, the iPhone launched, and billboards worldwide were plastered with marketing for Apple Intelligence. The new AI was the standard-bearer for the phone, the OS, and the whole company.

Craig Federighi at Apple's WWDC 2024, before the iPhone 16 launch (Image credit: Apple)

New features – who? Camera Control button? Never heard of it.

But the Apple Intelligence features weren't there! The features being advertised were mostly Coming Soon.

Even today, I can’t tell you how much of that Soon has actually arrived. It has always been unclear what is really coming soon and what will be coming in the distant future.

The last reason to use Apple Intelligence

Famously, an ad series featuring The Last of Us star Bella Ramsey seems to have disappeared from Apple’s YouTube account. The ads featured Ramsey as they made decisions about their career, seemingly with advice from Apple Intelligence and the iPhone’s ability to summarize emails and recall conversations. Ramsey relies on Apple Intelligence’s interpretation of a character to decide whether to accept a part.

Ask your friend for professional advice, not your iPhone (Image credit: HBO)

When I saw those commercials, I felt kind of bad for Ramsey. I wouldn’t make important job decisions based on an AI summary, and the Apple Intelligence commercials portrayed Ramsey as being kind of amateurish, far from the person I get when I see Ramsey in interviews.

So now that the advertisement is gone, does that mean Apple Intelligence won’t be reading my emails? Will it make suggestions for my next big Hollywood role? Will it help me make decisions about what job to take?

I hope not because those are terrible reasons to use AI.

The industry rallied around AI features that don't work

...stereotypical images of people, violent images of copyrighted characters, or convincing images of fraud

The reason it was such a surprise when Apple announced that OpenAI’s ChatGPT would provide answers for Apple Intelligence, and why it shouldn’t be such a surprise that Apple Intelligence is flailing right now, is that no product could be less finished right now than AI.

Apple launches polished products that are ready to impress. There has rarely been a less impressive product than artificial intelligence on smartphones. For two years, we have heard phone makers promise features that haven’t arrived or promote features that are offensively bad.

My smartphone AI still can't read my email and make a football team calendar based on the emails I get from my kid’s coach. That was a fundamental promise of AI. Instead, we get AI image generators that will offer bigoted and stereotypical images of people, violent images of copyrighted characters, or convincing images of fraud.

Even the most basic AI feature isn’t just bad; it’s horrifying. The Apple Intelligence headline summary tool created fake headlines that were the complete opposite of the truth. When AI is spreading lies, it isn’t just a bad feature we should ignore. It’s a harmful feature that we must combat.

I don't care if Apple wins or loses, I just want a good phone

So, Apple hasn’t achieved its goals with Apple Intelligence. So what? We may have literally dodged a bullet. It was a mistake for Apple to over-promise on AI, but it won’t be a mistake if Apple abandons a bad feature that offers no benefit and may instead cause harm.

Why is that not obvious? Forget about the rat race of cheering for Apple to succeed or fail. Forget about the market frustration over a lack of innovation.

We need to take a step back and ask whether these smartphone AI features are good or bad, and when a company like Apple puts its AI plans on hold, we should applaud its caution, not fault its lack of commitment.

You might also like

• 3 things Apple needs to do at WWDC 2025 to save Apple Intelligence
• How to turn off Mail categories on iPhone, or customize them to your needs
• Apple officially delays the AI-infused Siri

The only new 8K TVs are from Samsung, and they're not worth the money.

Here are the answers for The New York Times Mini Crossword for March 27.

Second lady Usha Vance has scrapped a plan to attend Greenland's national dog sled race this week. But American tax dollars will help support the race anyway.

(Image credit: Joe Raedle)

Disney’s having a pretty good week – Disney+ is finally letting you remove content from the ‘Continue Watching’ list, we get a look behind the curtain at how the robotic BDX Droids came to be, and Marvel announced the cast of Avengers: Doomsday.

Not to be overshadowed, though, and potentially timed to Toy Story’s 30th anniversary, Disney’s Imagineering has announced some big changes, which will result in a technological infusion to a mainstay attraction – Buzz Lightyear’s Space Ranger Spin – at Disney World’s Magic Kingdom.

The Space Ranger Spin attraction will be updated with a whole host of technology, all in the quest for a more immersive and fun experience while riding. While the changes won’t arrive until 2026 after a closure, there are several enhancements to be excited about.

Leading the pack are entirely new ride vehicles with displays, redesigned blasters that shoot targets boasting colorful lasers, and a new animatronic debuting in a new scene on the attraction. It’s an intricate balance, keeping what fans of the ride have come to know and infusing enhancements to level up.

In the attraction, two guests board a ride vehicle and help Buzz Lightyear and fellow space rangers shoot targets with the evil ‘Emperor Zurg’s’ Z on them. As someone who’s been on it, the current lasers can get pretty tiring, with what feels like a need for constant hold and release on the trigger and not exactly knowing the target you’ll be shooting at.

How Disney’s using technology to level up a ride

(Image credit: Disney)

That same story will be the case, but each new blaster has a unique laser color, which should help you more quickly identify which target you’re on. The upgraded targets will “react and light up when hit,” though Disney didn’t share exactly what technology enabled this. Still, it made it clear there was an evolution in technology powering this change.

Disney promises that the upgraded ride will arrive in 2026, which means that the current ride will need to close in August 2025 to allow the updates and enhancements to be made. Playtests have begun, allowing the design team working on the ride to try out the enchantments and a concept phase.

While Disney didn’t give an exact time frame for developing the updates to Space Ranger Spin, project creative director Justin DeTolla said in a statement, “We’ve been working on this project for quite some time now, so it was exciting to see it all come to life for the first time in the field.”

The shared photos from the test show off the new blasters, which boast a likely LED-filled flowing front circular bubble and a more compact design, though the target looks pretty similar. When the ride reopens, the onboard screen will provide real-time scoring updates, rather than a classic LED display that lists your score via red LEDs.

All-in-all, an exciting tease on the week of the 30th anniversary of Toy Story – which you can stream now on one of the best streaming services, Disney+ – and teeing up some more tech-infused attractions at Disney Parks, this time at Disney World. I am personally super excited and eager to see how this breathes new life into the attraction and the 'Tomorrowland' section of Magic Kingdom.

It’s an exciting period of changes for the company’s theme parks with more expansions already announced for Disney World, including a Villains Land at Magic Kingdom and a Cars land. Hollywood Studio is getting a Monsters Inc. Land, and Animal Kingdom will get the first-ever Encanto ride. There’s a lot on the horizon, but for now, we at least know one new update to a fan-favorite ride will arrive in 2026.

A post shared by Walt Disney Imagineering (@waltdisneyimagineering)

A photo posted by on

You might also like

• I've hand-picked the 31 best deals from the Amazon Spring Sale on TVs, Kindles, headphones, appliances, and more
• The adorable BDX Droids are coming to more Disney Parks around the world, including Disney World
• Apple just announced WWDC 2025 starts on June 9, and we'll all be watching the opening event

Enjoy an immersive gaming experience with this ultrawide monitor. Get it on sale now for 35% off before this deal expires.

Lawyers for a conservative non-profit called the program a “bureaucrat's dream.”