Feed aggregator

Commentary: Artificial intelligence is shaping the future. But we need to start preparing now to ensure it's a better one.

President Trump is facing questions about the death of sex offender Jeffrey Epstein. On Tuesday, he deflected by pivoting to long-held accusations about his Democratic opponents.

(Image credit: Chip Somodevilla)

• Powerful Ryzen AI Max+ 395 APU could debut in new Minisforum mini-PC
• Up to 128GB RAM expected in Strix Halo-based Minisforum X1 series device
• Unannounced mini-PC surfaces in Geekbench with familiar naming conventions

Minisforum appears to be working on a new high-end mini PC powered by AMD's latest Strix Halo chip.

The device, which has yet to be officially named, is expected to launch as part of the company’s AI X1 series.

It reportedly features the Ryzen AI Max+ 395, a powerful APU which builds on the Zen 5 architecture. The chip combines strong CPU performance with a potent iGPU and may be paired with up to 128GB of RAM.

Geekbench scores

As spotted by ITHome, several entries referring to “Micro Computer (HK) Tech Limited AI Series” have surfaced on Geekbench, suggesting a Minisforum link.

Benchmark results from Geekbench show multi-core scores above 21,000 and single-core results around 2,900. These place the device ahead of Minisforum’s existing AI 9 HX 370-based models, which typically score closer to 19,000 and 2,300 respectively.

There are already a number of mini-PCs powered by the Ryzen AI Max+ 395, including the Colorful Smart 900, Beelink AI Mini, and AOOSTAR NEX395. So far, most of the mini PCs have come from lesser known or regional brands, rather than big names like Dell, Asus, and MSI.

Minisforum’s current AI X1 and N5 Pro lines already offer strong CPU performance. But the iGPU in the 395 delivers a more noticeable jump in graphics tasks.

That gap is especially clear when compared with models like the Ryzen AI Max+ 395 powered GMKtec EVO-X2, which is already on sale.

Although Minisforum has not confirmed anything officially, the leaked device names closely match those used across the AI X1 Pro series.

We’re excited to see what Minisforum comes up with, as its devices are consistently among the best mini PCs you can buy. We've previously seen hints of a 2U rackmount server powered by AMD’s Ryzen AI Max+ 395 processor from Minisforum, but the MS-S1 Max is an entirely different beast.

Via Notebookcheck

You might also like

• These are the best business laptops around right now
• And these are the best workstations available today
• There are 14 AMD Ryzen AI MAX+ 395 mini PCs in the world right now, this is where to buy them

Here's how to get started in Pokemon Friends.

The second Pokemon Legends game is bringing back a lot of features from X and Y.

The display can be folded more than double the number of times as the previous iteration before it will break.

Sonya Sotinsky recorded herself talking and reading books to preserve a critical element of her personality: her voice. After surgery for oral cancer, AI used those recordings to re-create her voice.

(Image credit: Beth LaBerge)

• Microsoft reveals new Surface Laptop 5G
• Business customers targeted with reliable connectivity on the move
• Three editions are available, with orders open now

Microsoft has unveiled a new edition of its Surface Laptop designed specifically with business users in mind as it looks for a stronger foothold in the enterprise hardware market.

The new Surface Laptop 5G features AI-powered processing with a 40+ TOPS Neural Processing Unit (NPU) and Intel Core Ultra (Series 2) processors, day-long battery life, and an integrated 5G modem to stay connected to collaboration tools such as Microsoft 365.

There will be three distinct business laptop models available, with a flagship 5G-enabled edition sporting a 13.8in display available from August 26, joined by 13in and 12in editions, which are available now.

Surface Laptop 5G

Microsoft says the releases come as adding 5G to the Surface Laptop has become "one of the most requested features from our business customers".

The addition should mean greater support and more reliable connections for video conferencing calls when out and about, or for workers out in the field needing to contact the rest of their team.

To ensure consistent connectivity, Microsoft says the new Surface Laptop 5G features a "dynamic antenna system" which continuously adjusts to its environment, using six antennas to automatically adjust signal paths and power based on how the device is being held or used.

The company says these antennas are placed higher than usually situated in other laptop devices, reducing interference and allowing for a stronger connection through an entirely newly-designed, multi-layered laminate for the device.

(Image credit: Microsoft)

It can also switch between Wi-Fi and 5G networks depending on location, making sure the user stays connected, and can act as a mobile hotspot wherever Wi-Fi is unavailable, with NanoSIM and eSIM options also available.

Microsoft says it tested the devices with over 100 mobile operators across 50 countries, along with real-world enterprise environments, meaning IT admins can deploy and deliver updates and enforce company policies - wherever their users are.

This is also aided by the Surface Management Portal within the Intune Admin Center, which can provide visibility into device health, compliance, and usage - and thanks to Security Copilot, admins can use AI-powered tools to act fast to detect issues, assess risk, and respond accurately.

"Surface Laptop 5G represents Microsoft’s end-to-end innovation in action," Microsoft's Nancie Gaskill wrote in a blog post announcing the release.

"Hardware, software, and cloud services come together to deliver intelligent, secure, and connected experiences for today’s mobile workforce. The Surface for Business portfolio offers a complete solution for every user scenario, from tablet-first flexibility to high-performance laptops, all supported by Microsoft’s modern management and industry-leading security.

You may also like

• We've also rounded up the best mini PC options around
• And these are the best mobile workstations on offer right now
• Microsoft's new Surface for Business PCs have AI firmly at the core

These affordable accessories will help take your cooking experience to a whole new level.

• Predator: Badlands now has a full length trailer
• It reveals that Elle Fanning's protagonist character is a Weyland-Yutani synth
• This is exciting news for those wanting more Alien vs Predator in their life

Predator: Badlands just dropped a new trailer that has delighted fans, including myself, as it incorporates elements of both the Alien and Predator franchises.

Since the original Alien vs Predator movie was released in 2004, we've seen a lot of spinoffs that solely focus on one of the two creatures but now it seems the two universes are properly merging once again.

Xenomorphs are set to reappear in Hulu's upcoming Alien: Earth. Meanwhile, Predator was last seen in Predator: Killer of Killers (check our ranking of every chapter in the animated anthology movie) and before that Prey, which senior entertainment reporter Tom Power called "the best Predator movie since the 1987 original" in his Prey review.

Prey's director Dan Trachtenberg is also directing Predator: Badlands, so many are expecting it to be another very strong entry into the series. Take a look at the trailer for one of this year's new movies below.

What is Predator: Badlands about?

The official plot reads: "In the future on a remote planet, a young Predator, outcast from his clan, finds an unlikely ally in Thia and embarks on a treacherous journey in search of the ultimate adversary."

So, this confirms that a Predator and a Weyland-Yutani synth are indeed teaming up in Predator: Badlands, and it's very exciting to see these two worlds colliding again.

Predator: Badlands does have some serious sci-fi vibes in its first trailer, which I'm a huge fan of, and I'm sure there'll be plenty of action and thrills to enjoy whether or not you're team Alien or Predator.

Confirmed cast so far include Elle Fanning as Thia and Dimitrius Schuster-Koloamatangi as Dek (the Predator), and they are definitely shaping up to be one very cool duo.

You might also like

• Everything new on Hulu in August 2025 – stream 104 new movies and 68 new TV shows, including Alien: Earth
• I watched Brick on Netflix so you don’t have to – here’s a far superior sci-fi thriller I recommend streaming instead
• Shudder’s new indie sci-fi shocker is one of the most unsettling horror movies I’ve seen in years

Marvel does Jack Kirby right with this one.

• A signing key that many Linux distributions use to support Secure Boot is about to expire
• Sytems that fail to recognize the new key might fail to boot Linux securely
• Users might need to disable Secure Boot to install or run Linux

A signing key used to support Secure Boot on many Linux distros is about to expire, which could open up devices to all sorts of cybersecurity risks.

Secure Boot is a security feature built into modern computers. It is part of the Unified Extensible Firmware Interface (UEFI), which makes sure that only trusted software can run when the system starts up. This helps block malware such as bootkits, and it relies on digital signatures and keys stored in the computer’s firmware.

In short - UEFI boots up, checks the right software is in place, and hands things over to the operating system.

Locking the database down

Now, Microsoft has a signing key that many Linux distributions use to support Secure Boot, and that key is set to expire on September 11, 2025.

A replacement key has existed since 2023, but apparently - many systems don’t support it yet, and for those that don’t recognize the new key, it could mean Linux will not boot securely.

Fixing this problem requires firmware updates from original equipment manufacturers (OEM) but there is a risk that not all OEMs will issue updates - especially those for older, or less popular devices.

There is also a tool called “shim”, which some Linux distros use to work with Microsoft’s Secure Boot infrastructure. It is signed with Microsoft’s (soon-to-expire) key, and if it doesn’t get replaced on time, Secure Boot may break those distros entirely.

As a result, some users might need to disable Secure Boot to install or run Linux, while others may need to manually update firmware, or generate their own keys (which is rather complex and could be risky for those without extensive technical knowledge).

All of this could push people to either stick with Windows, or avoid Secure Boot entirely, which opens up an entirely new can of worms.

Via Tom's Hardware

You might also like

• Dior fashion brand hit by cyberattack and customer data leaked - here's what we know
• Take a look at our guide to the best authenticator app
• We've rounded up the best password managers

• Researchers found a new spyware campaign mainly targeting Iranian Android VPN users
• DCHSpy is leveraged by the Iranian cyber espionage group MuddyWater, which is thought to have links with Iran's Ministry of Intelligence and Security
• The campaign started one week after the Israel-Iran conflict began, while VPN demand skyrocketed across the country

Researchers have discovered a new Iran-linked spyware campaign that mostly targets Android VPN users.

The team at security software provider, Lookout, found a new version of DCHSpy, an Android spyware that masquerades as legitimate VPN apps or other applications. This includes Starlink, a satellite internet connection service offered by SpaceX.

The malware campaign, according to experts' findings, was deployed by the hacking group MuddyWater only a week after the Israel-Iran conflict began – exactly when VPN demand skyrocketed in Iran as citizens looked for ways to bypass new internet restrictions.

DCHSpy 2025 – what are the risk?

A virtual private network (VPN) is security software that encrypts all internet connections while spoofing a user's real IP address location. The latter skill is exactly what's needed to bypass geo-restrictions like those in place in Iran right now. (Image credit: Shutterstock / HTGanzo)

As experts explain, DCHSpy is an intrusive piece of software that can collect users' sensitive information like WhatsApp data, contacts, SMS, files, location, and call logs, while even recording audio and taking photos.

First detected in July 2024, DCHSpy is maintained by MuddyWater hackers, a group thought to have links with Iran's Ministry of Intelligence and Security.

Experts have now discovered four new samples of DCHSpy.

"These new samples show that MuddyWater has continued to develop the surveillanceware with new capabilities – this time exhibiting the ability to identify and exfiltrate data from files of interest on the device as well as WhatsApp data," explains Lookout.

Specifically, hackers appear to be using two malicious VPN services, called EarthVPN and ComodoVPN, as a way to spread the malware.

HideVPN was another fake VPN app previously used to deploy DCHSpy.

These are the malicious VPN apps used by MuddyWater hackers to inject DCHSpy spyware (Image credit: Lookout)

According to Iranian Information Security Analyst, Azam Jangrevi, the latest findings are a stark reminder of how sophisticated and targeted mobile surveillance has become.

"What’s especially concerning is its use of trusted platforms like Telegram to distribute malicious APKs, often under the guise of tools meant to protect privacy," Jangrevi told TechRadar.

The risk for Iranians is especially high, considering that, as mentioned earlier, citizens have been increasingly turning to the best VPN apps as the internet becomes increasingly restricted.

How to stay safe

Jangrevi recommends anyone looking to download a new VPN service, or any other application for that matter, to be vigilant.

"Avoid downloading apps from unofficial sources, even if they appear to offer enhanced privacy. Stick to verified app stores, scrutinize app permissions, and use mobile security solutions that can detect threats like DCHSpy," said Jangrevi.

If you’re in a high-risk region or profession such as journalism or activism, Jangrevi also suggests using hardware-based security keys and encrypted messaging apps vetted by independent researchers.

She said: "This incident underscores the need for greater awareness around mobile threat vectors and the importance of digital hygiene in an increasingly hostile cyber landscape."

You might also like

• Iran encourages citizens to use a messaging app previously flagged as a state surveillance tool
• Iran is discouraging its people from using free VPNs
• Criminals are using a dangerous fake free VPN to spread malware via GitHub

The creators of the animated series signed a deal to bring their show to Paramount Plus.

For many, much of our day-to-day life is now handled online, including financial management, shopping, family connections, work collaboration, and more. While digital technology offers numerous advantages, it also poses multiple security risks that threaten users both financially and personally.

Today's cybercriminals are constantly refining their tactics, deploying increasingly sophisticated attacks, including phishing scams, data breaches, and ransomware threats. These menacing strategies aim not only at financial theft but also often target our most sensitive data, leading to a cascade of complications that can significantly disrupt our lives.

This is where a dedicated identity theft protection service, like NordProtect, becomes invaluable. Acting as a real-time shield against potential threats, it provides proactive monitoring that continually watches over your personal information around the clock.

Picture receiving rapid alerts at the first hint of suspicious activity; this timely response can make all the difference in mitigating damage before it spirals out of control.

But it doesn't end there. Comprehensive recovery assistance provided by these services ensures that if the worst does happen, you're not navigating the aftermath alone. Specialists work with you to recover compromised accounts, restore your credit, and rebuild your digital identity, guiding you through each step with expertise and support.

NordProtect: Something new

Nord Security, the company behind the popular NordVPN, first introduced NordProtect in late 2023. At the time, it was only offered as part of NordVPN’s Prime plan in the U.S. In early 2025, however, the company expanded its availability, and NordProtect became available as a standalone product.

NordProtect: Plans and pricing

NordProtect offers three primary subscription levels: Silver, Gold, and Platinum. The first is the basic plan and includes features like dark web monitoring, credit monitoring (TransUnion), VantageScore 3.0 credit score, credit freeze assistance, identity theft recovery ($1M), cyber extortion protection ($50K), online fraud coverage ($10K), cyber attack coverage ($10K), malware breach alerts, and criminal records monitoring.

The mid-priced Gold plan includes all the features of the Silver plan, plus the NordVPN service and Threat Protection Pro. The premium Platinum plan is the most comprehensive, offering all the features of Silver and Gold, along with NordVPN, Threat Protection Pro, and a personal data removal service (Incogni).

You can purchase a subscription on a monthly, yearly, or two-year basis. There are discounts available on annual and two-year plans for the first year, and all plans come with a 30-day unconditional guarantee.

(Image credit: Future)

At the time of this writing, two-year subscriptions will save 63% off the regular price, with Silver costing $132 for the first 24 months, Gold at $204, and Platinum at $288. One-year packages are available with a 50% discount, priced at $90 for Silver, $126 for Gold, and $168 for Platinum. There’s no discount when paying for the NordProtect service on a monthly basis. For this, you’ll pay $15.49 for Silver, $21.49 for Gold, and $28.49 for Platinum.

Please note that prices for the year- and two-year plans revert to the regular price after the completion of the first term.

For this review, I opened a Platinum subscription.

NordProtect: Key features and offerings

NordProtect delivers a complete  suite of security  features that protect  personal information and enable  recovery from security  breaches with exact precision. The service delivers three core security components that monitor activity continuously and provide immediate alerts, together with financial protection, which form an integrated defense system for total identity security.

The NordProtect dark web monitoring service operates 24/7 to provide you with exceptional protection. The service  scans continuously through illegal online  marketplaces as well  as forums and  underground communities to detect  any leaked personal  data, such as email addresses, phone numbers, and  Social Security numbers.  You would receive immediate notifications when your information is compromised through this service, allowing you to react promptly and reduce potential security threats.

(Image credit: Future)

The credit monitoring service of NordProtect works in conjunction with TransUnion to provide you with financial protection features. This feature detects financial identity threats, including unauthorized account inquiries and new accounts opened using your personal information. The system provides detailed monthly reports on VantageScore 3.0 credit scores, as well as immediate alerts about potential fraudulent activities, helping you maintain continuous awareness of your financial situation.

The core strength of NordProtect is its outstanding identity theft recovery support system. When identity theft occurs, you are protected by up to $1 million in insurance coverage for such incidents. This coverage extends to eligible expenses, including legal fees, lost wages due to identity theft, and mental health counseling costs. The identity restoration process is supported by dedicated case managers who provide personalized assistance throughout your recovery journey. The service guides you in freezing your credit and helps you navigate the complex task of restoring your credit score.

The identity protection service NordProtect stands out because it includes both cyber extortion protection and online fraud coverage as exclusive features. The cyber extortion protection provides up to  $50,000 for expert assistance  and possible ransom  payments that occur when  cybercriminals threaten to reveal or erase  personal data.

NordProtect: Interface and in use

After extensive testing and hands-on experience with NordProtect, I found it to be remarkably user-friendly and intuitive. The primary access point is through a web-based dashboard within your Nord Account, which I appreciated for its centralized design. It allows for easy management and monitoring of various identity protection features, viewing alerts, and customizing settings—all without the need to download a separate application.

Being able to access NordProtect directly from a web browser significantly enhances its convenience. Additionally, I discovered that if you’re already a NordVPN Prime subscriber, you can seamlessly integrate these features into your existing Nord Account, which is a bonus.

During my testing across different devices and operating systems, including Windows, macOS, Android, and iOS, I was impressed by the broad compatibility. This flexibility ensures that I can manage my identity protection effortlessly, regardless of whether I'm using my desktop or mobile device. Overall, my thorough evaluation confirms that NordProtect offers a solid solution for identity management.

The main drawback of NordProtect’s interface design stems from the separate methods users need to access NordVPN and Incogni. The NordVPN service is available with both Gold and Platinum subscriptions, whereas Incogni is only accessible through the Platinum plan. These software  solutions operate independently and use different  access methods. For example, users need to download the NordVPN app on their devices to access the service. The back-and-forth process between these services might create confusion for some users.

(Image credit: Future)

For some,  using Incogni could complicate things further. Nord Threat Protection Pro, which is part of NordVPN, and Incogni operate as separate services from Nord Security. They provide distinct yet supportive solutions for online privacy and security. Nord Threat Protection Pro provides real-time  protection against immediate online  threats. The digital  shield protects your browsing experience  by blocking malware , phishing sites  , ads, and trackers  regardless of VPN  status. The system exists to prevent dangerous content from ever reaching your system.

Incogni specializes in proactive data removal from data broker databases. Through automated  contact with brokers,  Incogni removes your personal  data, including names  , addresses, phone numbers, and financial records. Incogni operates  as a system that  tracks your data while sending periodic  deletion requests to minimize  your digital presence and protect you  from spam, scams , and identity theft. 

The bottom line: Nord Threat Protection Pro stops new threats from entering, but Incogni removes existing data exposure, creating a comprehensive protection system when used together.

NordProtect: Support

Nord offers comprehensive customer support primarily through its robust online Help Center, which features extensive FAQs, tutorials, and troubleshooting guides covering various topics, including account management, billing, connectivity, and app usage. For more personalized assistance, customers can readily access 24/7 live chat support, which is recommended for urgent issues due to its typically quick response times.

Alternatively, for more complex inquiries or when immediate assistance isn't critical, customers can opt for email support, with responses usually provided within a few hours. These support channels are often accessible directly through Nord's websites and even within their applications, ensuring convenient access for users. While traditional phone support or call centers are not typically offered, Nord's combination of self-help resources and direct messaging options aims to provide thorough and accessible support for its diverse customer base.

NordProtect: The competition

In the competitive landscape of identity theft protection, NordProtect faces several established rivals.

Aura stands out as a strong competitor, often lauded for its comprehensive catch-all service, which provides extensive identity monitoring, including home and auto titles, financial accounts, and criminal records. Aura also frequently bundles additional cybersecurity perks, such as a VPN, password manager, and antivirus.

LifeLock by Norton is another major player, known for its strong identity theft insurance, often offering up to $3 million in coverage across personal expense reimbursements, stolen funds, and legal fees. While NordProtect focuses on TransUnion for credit monitoring, LifeLock offers three-bureau credit monitoring in its higher-tier plans, providing a broader view of credit activity.

Identity Guard is a direct competitor that offers in-depth monitoring and credit tracking, with its top-tier plans including three-bureau credit monitoring.

IDShield distinguishes itself by providing up to $3 million in identity theft insurance and assigning licensed private investigators to identity theft cases, as well as monitoring court and public records.

Lastly, IdentityForce offers a good balance of features, including a personal identity safety score and a customized action plan, and provides up to $2 million in identity theft insurance.

While NordProtect is a newer entrant backed by a strong cybersecurity reputation and often bundled with other Nord Security products, its competitors frequently offer more extensive multi-bureau credit monitoring and, in some cases, broader family plan options. credit monitoring and, in some cases, broader family plan options.

NordProtect: Final verdict

NordProtect, launched by Nord Security in late 2023, has evolved from being part of NordVPN’s Prime plan to a standalone identity theft protection service available since early 2025. It offers Silver, Gold, and Platinum subscription tiers, with monthly, yearly, and two-year payment options, as well as discounts for annual and biennial plans during the initial term. All plans are backed by a 30-day unconditional guarantee.

The service provides a comprehensive suite of security features, including 24/7 dark web monitoring, credit monitoring in partnership with TransUnion, and identity theft recovery support, which includes up to $1 million in insurance coverage. Notably, NordProtect also provides cyber extortion protection (up to $50,000) and online fraud coverage.

Users primarily access NordProtect through a web-based dashboard within their Nord Account, which is user-friendly and compatible across various devices and operating systems. While centralized access is convenient, a minor point of friction arises from the separate access methods required for bundled services, such as NordVPN (included in Gold and Platinum plans) and Incogni (exclusive to Platinum). Nord Threat Protection Pro, available with Gold and Platinum, complements Incogni (Platinum only) by preventing new threats and addressing existing data exposure.

NordProtect provides comprehensive customer support through an online Help Center, 24/7 live chat, and email. However, traditional phone support or call centers are not typically provided.

In the competitive identity theft protection market, NordProtect competes with established players, including Aura, LifeLock by Norton, Identity Guard, IDShield, and IdentityForce. While NordProtect leverages Nord Security's strong cybersecurity reputation, some competitors offer more extensive multi-bureau credit monitoring and a wider range of family plan options. Overall, NordProtect stands as a robust solution for identity management, offering strong protective and recovery capabilities.

• ExpressVPN issued an update to patch an RDP leak bug discovered by an independent researcher
• The leak in the Windows ExpressVPN client was found in April, in code rolled out in March, so its recent audit could not have spotted the bug
• ExpressVPN considers that "the likelihood of real-world exploitation was extremely low"

The ExpressVPN Windows client app has been updated to patch a leak vulnerability, discovered in April by an independent security researcher.

In a detailed blog post dated July 18, 2025, ExpressVPN – considered one of the best VPNs – confirmed the RDP bug that could have leaked users' real IP addresses, despite stating that "the likelihood of real-world exploitation was extremely low."

Nonetheless, a fix was issued in an update a few days later, meaning the bug should no longer exist, and cannot now be exploited.

What is an RDP leak?

(Image credit: sarayut Thaneerat/ via Getty Images)

RDP (Remote Desktop Protocol) allows a remote connection from one device to another (typically PC to PC, or PC to server). When an RDP connection is established with a virtual private network (VPN) enabled, the expectation is that the data travels through the encrypted VPN tunnel.

When the data is not encrypted and bypasses the tunnel, it is referred to as a leak. Besides RDP, other encryption-dodging leaks can occur with VPNs, such as DNS leaks.

With this bug, the RDP connection could have been observed by an ISP (Internet service provider), or anyone with network access. Not only was the target IP address not encrypted – enabling an observer to see that a connection to ExpressVPN was running – but it would have been clear that remote servers were being accessed over RDP.

The attack, as demonstrated by researcher Adam-X, would result in the user’s actual IP address being revealed, but not their browsing activity.

The value of a VPN is that all data should be encrypted between the user’s device and the VPN server. While it is possible to manually exclude some apps from the VPN connection, that didn’t happen here. Note, however, that this was a bug in the Windows version of the ExpressVPN desktop client, and did not affect other versions.

Should ExpressVPN's no-log audit have found the leak?

This news was announced soon after ExpressVPN published the details of its latest successful no-log audit by KPGM. Should the bug have been detected in the audit, and should users have been informed sooner?

ExpressVPN has stated: “The problem was traced to a piece of debug code (originally intended for internal testing) that mistakenly made it into production builds (versions 12.97 to 12.101.0.2-beta).” They also confirm that Adam-X reported the bug on April 25.

ExpressVPN was audited in February 2025, and solely to ensure that its TrustedServer infrastructure never collects users’ logs as claimed.

Meanwhile, according to Uptodown’s repository of version updates, ExpressVPN production builds 12.97 to 12.101.0.2-beta were issued between March and May.

In short, KPMG’s audit of ExpressVPN’s servers could not have found the bug – even if it was tested for – as this did not exist at the time.

How many users were affected?

Most users typically won’t connect to a VPN before establishing an RDP session, so it is unlikely that this affected many users.

ExpressVPN is used mostly by individuals, rather than organizations, so the attack surface of this vulnerability should be minimal. Exploiting the bug also required an attacker to know about it, and to find a way to direct the victim to a malicious website.

The VPN provider has, however, stated that it is introducing more checks to find issues like this before builds are released, and improving automated testing.

ExpressVPN’s response to the bug report – just five days between filing by Adam-X and the first patch – is impressive. But why take so long to share the information publicly? Well, it’s a security matter.

You might also like

• Themes land on ExpressVPN mobile apps – with full Dark Mode now available for iOS
• ExpressVPN faces a class action in the US over alleged "illegal" auto-renewal fees
• “Once you have the data, you have to cooperate” – Windscribe CEO speak out against global threats to no-log VPNs

• Ghost of Yōtei will take around the same time to beat as Ghost of Tsushima
• The game's creative director, Jason Connell, has said both games are "a similar experience" and expects both to be the same "in terms of the time commitment"
• Ghost of Tsushima's main story takes 25 hours to beat, suggesting Ghost of Yōtei will be roughly the same length

Sucker Punch has confirmed that Ghost of Yōtei will take around the same time to beat as Ghost of Tsushima.

That's according to Ghost of Yōtei's creative director, Jason Connell, who told VGC (thanks, GamesRadar) that both games are comparable in length, depending on one's playstyle, because the studio decided to stick with a similar scope to the first game.

"We designed the game with some of the similar numbers, in terms of scale and scope of the last experience, in mind," Connell said. "In that way, we actually found it to be quite satisfying, and there were some good numbers to jump off of."

He continued, saying, "We feel that the experience of playing through Ghost of Yōtei, whether you're just ripping through the story, or you're somebody that likes to just go through the whole world and explore, or you're that hardcore platinum chaser – that it is a similar experience [to that of Ghost of Tsushima], we expect, in terms of the time commitment."

According to How Long to Beat, on average, it takes around 25 hours to beat Ghost of Tsushima's main story, while it takes 62 hours to 100% complete the game, including all side quests and exploration.

Jason Connell's latest comments suggest that Ghost of Yōtei will take around the same time to beat.

Ghost of Yōtei launches on October 2, 2025, exclusively for PS5 and PS5 Pro.

Ghost of Yōtei pre-orders are now live, along with Ghost of Yōtei PS5 bundle pre-orders. If you're looking to get your hands on the exclusive PS5 controller, here's where you can buy the Ghost of Yōtei DualSense.

You might also like...

• Best PS5 games 2025 - the top 26 PlayStation 5 titles to play right now
• The Nintendo Switch 2 is the company’s least ambitious console to date, but its improvements are astronomical
• I’ve spent 150 hours with The Legend of Zelda: Breath of the Wild, and the Switch 2 Edition is an incredible upgrade

• Launched on July 27, 2025, a new VPN service seeks to fix issues with providers' trust
• VP.net uses Intel SGX hardware to supposedly deliver "cryptographically verifiable privacy"
• Researchers uncovered some vulnerabilities with Intel SGX systems in the past

A new VPN service has just landed in the market, promising to take a completely different technical approach to users' privacy.

Short for Verified Privacy, VP.net claims to be built in a way that physically separates users' identities from their browsing activity at the hardware level. By doing so, the provider seeks to fix issues linked to virtual private network (VPN) providers' trust. So, forget no-log VPN policies and welcome "cryptographically verifiable privacy."

The provider launched the app on June 27, 2025, across all major platforms, namely Windows, macOS, Linux, Android, and iOS, and now strives to become the VPN of the future. Yet, not without some controversy.

The problem with no-log policies

(Image credit: VP.NET LLC)

All the best VPN services currently offer strict no-log policies. These guarantee that the provider never stores any of your identifiable data and are regularly checked with independent no-log audits.

The problem is that even third-party VPN audits require a dose of trust.

"An audit only proves that something was true at that moment in time. This is why we're bringing math and verifiable cryptography back into the mix so that when we say you're private, you're actually private," one of VP.net's founders, Andrew Lee, told TechRadar.

The founder of Private Internet Access (PIA), a popular no-log VPN provider, Lee later realized that many users now need a level of privacy that's not based on trust. He then teamed up with other privacy-committed developers to build a new type of VPN service.

That said, it's worth noting that PIA is among the companies that have proved their no-log claims in real life over the years, doing so not once but twice in court. Another example is Mullvad, which left a police raid empty-handed in Sweden back in 2023.

What VP.net does differently

The big novelty with VP.net lies in its tech. The company uses Intel SGX hardware, which promises to deliver "cryptographically verifiable privacy."

For the less techie out there, all you need to know is that all the sensitive operations, those that could somehow reveal your identity, occur in some so-called encrypted enclaves. These are secure and isolated spaces within the software infrastructure that physically prevent the VPN provider from accessing the activities happening inside.

Put it simply, this mechanism should make it "technically impossible to associate your identity with what you do online," explains the provider.

Not only encryption, though; the system also claims to use SGX attestation. This is a security mechanism that assures the encrypted enclaves work as they should, preventing the provider or any other third party from accessing the activities occurring inside. This is "verifiable by clients using Intel's attestation services," said the provider. You can see all VP.net's technical details here.

Crucially, VP.net also offers some protection against the tracking of metadata, meaning all the details that aren't the content. Echoing what NymVPN's innovative mixnet network and Mullvad's DAITA tool do, VP.net also employs some techniques to prevent traffic analysis and obscure actual usage patterns.

(Image credit: VP.NET LLC.)

Beyond the novel infrastructure, VP.net also includes all the classic features you'd expect from a VPN.

These include support for the secure and speedy WireGuard protocol, alongside security features like a kill switch and DNS leak protection. Adding post-quantum encryption support is also in the pipeline.

All the apps are fully open-source as well, so that anyone with the technical knowledge can check the code to see if the software behaves as it should. You can take a look at the provider's public repositories by heading to the VP.net GiftHub page.

Is it really bullet-proof?

Despite the good premises on paper, Intel SGX tech is certainly not without flaws.

In 2019, for example, a team of researchers discovered a way to run and hide malware on Intel systems. Worse still, this malicious software was undetectable by antivirus tools at the time.

This may be among the reasons why Intel patched multiple security holes in 2023, addressing many existing flaws and vulnerabilities.

Such a security fix certainly doesn't fully convince everyone in the industry, including the CEO of NymVPN, which is another VPN provider seeking to challenge issues with VPN providers' trust. "I prefer decentralization and advanced cryptography rather than believing Intel has produced a silver bullet," NymVPN's CEO, Harry Halpin, told TechRadar.

Another contentious point lies behind the VP.net team. Well-known names from the Bitcoin world, both Roger Ver and Mark Karpelès have had some legal issues in the past.

Commenting on the latter point, Karpelès told TechRadar: "For the way we build the system, there is no need to trust the team behind VP.net. We provide independent systems that verified by itself, as a connection if everything is safe. So, even if I wanted to connect or do anything like that, there's no way I could do anything."

You might also like

• “Once you have the data, you have to cooperate” – Windscribe CEO speaks out against global threats to no-log VPNs
• Europol doesn't only want an encryption backdoor, but also your metadata
• These free VPNs may have ties to China’s military – and they are still hidden in Apple and Google app stores

The Lionesses look to make it back-to back appearances in the final as they take on Le Azzurre in Geneva.

Denon AH-C500W: Two-minute review

It’s something of a cliche among tech writers and audio fans to refer to any stem earbuds as a ‘cheap AirPods alternative’, before heaping upon it praise for being just as passable a pair of headphones as Apple’s are, or superior in some arbitrary way. I was almost ready to trot out that same, somewhat tired comparison with the new Denon AH-C500W to be perfectly honest. That was until I realised it was actually incorrect.

Not the part about them being AirPods rivals – you’ve seen the picture at the top of this review, even AirPods’ mom wouldn’t be able to tell the difference between her child and the Denon. And not about them being cheaper either; the AH-C500W do undercut Apple’s options.

No, I’m talking about the new Denon earbuds being superior. The Denon don’t have any unique selling point to beat the AirPods, no untouchable audio quality to keep them competitive, and a price that isn’t actually that cheap, in the grand scheme of things. If you’ve got an Android phone and so can’t use AirPods to anywhere near their full potential, here’s Denon, but if not they’re harder to recommend – and that's coming from me, an AirPods naysayer.

If you’ve not heard of Denon (not to be confused with Danone of yogurt fame), it's a celebrated Japanese audio company mainly focused on larger speakers, soundbars and AV set-ups, but also selling choice premium headphones and earbuds too. In this gilded array the AH-C500W are the odd duck, coming at a much more affordable price point than basically everything else on Denon’s website.

A blast from the past, the C500W use an open-fit ear design. No, not the fully open earbuds that’ve been launching left, right and center throughout 2025, but like AirPods: they sit in your ear but without any tip to wedge it in there. Instead, you cross your fingers and pray to whomever you believe in that they don’t fall out. In my testing the Denon never actually did, but they’d often move around in my outer ear slightly, which would affect music quality – and when I tried to fix it, the oversensitive touch controls would think I’d pressed ‘pause’ and stop my music. Not very handy.

Audio quality is actually fair, at least when you’re at home, but step outdoors into the noisy world and the lack of any kind of noise cancellation will have an audible effect on your listening. Active Noise Cancellation (ANC) isn’t mandatory in earbuds, but open designs block virtually no noise, and I found myself wishing for ear tips to offer some relief from background noise.

Something else missing from the Denon AH-C500W is an app… that does anything truly meaningful. That is to say there is an app, but its only functions are to turn off touch controls or adjust your listening using the most barebones EQ I’ve ever seen.

If there’s anything resoundingly positive to be said for the Denon, it’s the design. AirPods comparisons aside these are sleek-looking, lightweight when in your ear and easy to tote around thanks to the tiny carry case. The latter in particular was a source of joy when going out with the earbuds – sometimes I test buds with huge containers that are a pain to put in my pocket, but not the Denons.

Denon AH-C500W review: Price and release date

(Image credit: Future)

• Unveiled and released in April 2025
• Costs $99 / £99 (roughly AU$209)
• Already available cheaper

The Denon AH-C500W earbuds were announced in April 2025 and went on sale shortly afterwards. They were joined in this release by the AH-C840NCW, a slightly more expensive alternative which comes with ear tips and noise cancellation.

When announced, the buds were given the price of $99 / £99 (roughly AU$209) but three months later at the time of writing this review, the UK price is already down by £10 on Denon’s official website (and not via a sale, but as the default price) so you can pick them up for below RRP very easily.

I’ll save you clicking over to its review; the also-devoid-of-ANC Apple AirPods 4 cost $129 / £129 / AU$219 so they’re only slightly more expensive. That’s not the only competitor at this price point though and the splendid Nothing Ear (a), the Skullcandy Method 360 and Sony WF-C710N all match the Denon (in at least one country each, although in some others they're a hair pricier).

While the Denon AH-C500W are cheaper than the AirPods 4, it wouldn’t be right to refer to them as ‘cheap’ earbuds, and they’d need to cost at least 30% less to be considered budget alternatives.

Denon AH-C500W review: Specs

Drivers

12mm

Active noise cancellation

No

Battery life (ANC off)

7 hours (buds) 25 hours (case)

Weight

4.5g (buds) 50g (case)

Connectivity

Bluetooth 5.3

Waterproofing

IPX4

Denon AH-C500W review: Features

(Image credit: Future)

• 7-hour battery life, 25 with case
• No noise cancellation of any kind
• App has few features

Pick up the Denon AH-C500W if you think the AirPods 4’s 5-hour battery life is awful – the Denon doesn’t do an awful lot better, but at least it’s not so noticeably below the class-leaders.

According to Denon’s stats – which I’d back, from my experience – the earbuds will last for 7 hours on a full battery. That’s roughly in line with industry standards, but remember that anything that’s average is worse than literally half of all other options. The charging case brings the full figure up to 24 hours which isn’t amazing either, and actually falls short of Apple, possibly because Denon opted to add wireless charging support instead of a bigger battery.

In the ‘Features’ section of our reviews, we generally talk about earbuds’ noise cancellation. The C500W doesn’t have any, something I bring up just in case anyone skipped the introduction to this review (no judgement, I sometimes do the same thing). If you use these, expect to hear what’s going on around you.

For the vast majority of my testing time, I used the Denon without a tie-in app, finding that searching ‘Denon’ in the Play Store brought up an AVR remote, and the buds work just fine without an app. Towards the end of the review period I realised that had I simply scrolled down I would have discovered that there actually is an app, called Denon Headphones, which I missed below myriad other apps from the company.

(Image credit: Future)

Downloading the app didn’t actually make much of a difference to my user experience though, and that’s because it doesn’t really add too many perks and features.

Nowhere is that exemplified more than in the equalizer, a feature which many would argue is all but necessary in earbuds these days. It’s the most barebones music customizer I’ve seen, offering a 5-band EQ and no presents, and I needed to slide each band to its extreme to hear even a noticeable difference.

Beyond that you’ve got a way to turn off and on touch controls, and to change some of the triggers (but not all of them), monitor which devices are connected to the buds and turn on LE Audio. Regarding the middle point, the buds offer Multi-point connection so you can use the Denon alongside two phones, tablets or computers at once, which is useful and becoming an industry standard now. Also, they're Auracast ready, another (hopefully) soon-to-be industry standard perk.

The AH-C500W do have one feature I really liked though. There’s wearer detection which you can customize by bud, so you can set up music to pause if you remove, say, the left earbud but not the right one, or only if you remove both buds. As someone who likes the idea of auto-pausing music but finds it annoying that songs stop if I remove one bud just to readjust it or as a polite gesture, this was a wonderful fix.

• Features score: 3.5/5

Denon AH-C500W review: Design

(Image credit: Future)

• Light, compact case and buds
• Unreliable fit due to lack of tip
• Black or white color options

I loved how small the Denon AH-C500W case is, definitely one of the teeniest carry cases I’ve seen in the wireless earbuds realm. It measures 58 x 48 x 28mm, and weighs 50g.

In a rare diversion from the AirPods playbook it’s a short and wide pebble-style case that opens to reveal the whole bud, not just the top, and I find this kind of design makes it easier to remove the bud. The only feature of note is a USB-C charging port on the back.

You can pick up the Denon in either white or black, and both the buds and case come in your chosen hue.

The earbuds weigh 4.5g and they’re dead ringers for AirPods, from their open design which means they hang (relatively) loose in your ear, to the stem which dangles down from your ear, and even down to the fact that the bud is angled slightly along your cheek.

(Image credit: Future)

Copying is largely accepted in the tech world, but I wish Denon had copied from another design playbook than the AirPods’, because the AH-C500W carries over all of the design's shortcomings. With that comment I’m largely looking at the open design, which means the body of the bud is wedged in your ear without a silicon tip or sports loop to keep it in place. A replaceable ear tip can offer some insulation from outside sound and keep an earbud from jostling around in your ear. The lack of it also means that the Denon is susceptible to sound leakage (both from outside to the listener, and from the buds to people nearby) and doesn’t sit particularly still in your ear.

The latter point isn’t horrible, and I’ve tested earbuds (even tip-bearing ones) that are worse, but almost every time I took the C500W for a walk I’d find myself fiddling with them to ensure they were sitting in my ear right – and after 10 minutes of walking they’d have shifted, and I’d have to repeat this process all over again.

The Denon have a touch control that you can press several times or hold for different controls, and the lack of a visual or touch indicator as to where this haptic button is means that you have to get used to the design yourself. And do you remember me saying I had to constantly fiddle with the earbuds in the last paragraph? Yeah – good luck doing so without accidentally pressing the enigmatic ‘pause’ button.

The buds have an IPX4 resistance to water, which makes them sweat-proof but not ready to survive jets of water.

• Design score: 3.5/5

Denon AH-C500W review: Sound quality

• Sole 12mm driver
• Detailed sound, if you can even hear it
• Lots of distortion in certain genres

(Image credit: Future)

The Denon pack 12mm drivers and 2 microphones each. A more intriguing feature present is called Masimo Adaptive Acoustic Technology or Masimo AAT, which Denon previously used in some other of its wireless earbuds. This is mentioned only on Denon’s website right at the bottom, and not in its app or marketing materials, so it’s hard to know what it actually does. Masimo’s own website suggests that it’s a listening test to create a personal listening profile, but no such feature is present in the app.

The audio quality of the AH-C500W is mixed, but that’s a mix of highs and lows. There’s a lot of quality and detail in music – you can hear the timbre and individual strings of a guitar strum, the bowing of a violin – but then there’s also quite a bit of peaking on instruments like hi-hats, acoustic guitars and percussions.

Your mileage with the buds will vary dramatically based on what kind of music you listen to. Certain genres will feed you a cacophony of hisses and hums, with instruments that the Denon distorts too easily, but when listening to other genres I could go for multiple songs without hearing an issue, and while enjoying top-quality music.

The sound profile of the buds is largely neutral, though there’s a more emphatic and pronounced bass than I was expecting given the form factor. That form factor is, at the end of the day, the biggest issue with the AH-C500W’s music quality. However songs sound in a vacuum (or at home), they sound a lot worse when outside noise is leaking in, or when your buds are constantly slipping in your ear to change position.

• Sound quality: 3.5/5

Denon AH-C500W review: Value

(Image credit: Future)

• Not amazing value by default
• Wait for sales to pick up

When I first saw the Denon AH-C500W – and indeed, for the fortnight of testing before I started writing this review – I thought the buds cost about half as much as they actually do.

That’s because I made an assumption based on the feature set, sound quality and design, comparing it to similar traits in other buds on the market, and I presumed that these would cost about £50 / $70 / AU$100. The fact that they actually cost a lot more probably tells you all you need to about their value as a proposition in a hugely congested market.

If you can find them discounted further, the AH-C500W might be worth buying – you don’t have to wait for them to get as low as my presumed price – but at the original retail price, my verdict is that they don’t offer great value for money.

• Value: 3/5

Should I buy the Denon AH-C500W?

(Image credit: Future)Denon AH-C500W score card

Attributes

Notes

Rating

Features

Passable battery life but not many other features to talk about.

3/5

Design

The buds are lovely and lightweight, though they're just not secure in your ear.

3.5/5

Sound quality

Sound is textured and detailed but it peaks often, and that's only when you can hear it in the first place.

3.5/5

Value

You're not getting amazing bang for your buck when you consider other budget options.

3/5

Buy them if…

You have an Android phone
Apple users can buy AirPods which are better for you, but Android owners need alternatives like the Denon.

You only listen in one spot
Bobbing up and down while you walk risks dislodging the Denons, but if you're only ever going to listen while seated at your desk, you'll appreciate the music quality.

You want a slender carry case
I've seen some monster charging cases in my time, ones that'll weigh your trouser pockets like rocks. Not here though.View Deal

Don’t buy them if…

You're not sold on the open design
I found the lack of ear tips infuriating, both for allowing in sound and for letting the buds wobble and move so much..

You need noise cancellation
Very few earbuds nowadays outside of true budget options lack active noise cancellation – just AirPods 4 (and even they have an ANC version nowadays).

Denon AH-C500W review: Also consider

Denon AH-C500W

Nothing Ear (a)

Sony WF-C710N

Denon AH-C840NCW

Drivers

12mm

11mm

5mm

12mm

Active noise cancellation

No

Yes

Yes

Yes

Battery life

7 hours (buds) 25 hours (case)

5.5 hours (buds); 24.5 hours (case)

12 hours (buds) 30 hours total (with case)

10 hours (buds) 35 hours (case)

Weight

4.5g (buds) 50g (case)

4.8g (buds); 40g (case)

5.2g (buds); 38g (case)

5.1g (buds) 54g (case)

Connectivity

Bluetooth 5.3

Bluetooth 5.3

Bluetooth 5.3

Bluetooth 5.3

Waterproofing

IPX4

IP54

IPX4

IPX4

Nothing Ear (a)
Released at the same price as the Denons, these buds may have a worse battery life but they have a solid feature set, energetic sound and reliable design. There's a reason we gave them a five-star review.

See our full Nothing Ear (a) review

Denon AH-C840NCW
The AH-C500W's contemporary may cost a little more, but it fixes all of the problems of the cheaper buds. The battery life is better, there's noise cancellation and the buds have tips to stick into your ear well. Our review is incoming – watch this space!

How I tested the Denon AH-C500W

• Tested for at least three weeks
• Tested at home, in the office and on walks

I used the Denon AH-C500W for at least three weeks before writing this review, and possibly for a month (I didn't keep track religiously). I tested them alongside their contemporary siblings, the AH-C840NCW.

The buds were paired with my Android smartphone for testing and I used them on apps like Spotify, YouTube, Netflix and certain games during the testing period. Spotify was the main one though. Testing was done at home, around my neighborhood and at the gym.

I've been reviewing audio products for TechRadar for years now, including products made by many of Denon's rivals.

• First reviewed in July 2025

• Read TechRadar's reviews guarantee