TechRadar News

• Microsoft offers new European Security Program to governments
• The initiative is free of charge, and offers new investment and collaboration
• Microsoft hopes to increase response times against AI threats

Microsoft is expanding its security umbrella to cover European governments in a bid to reduce the threats posed by AI and state-sponsored attacks from the likes of Russia, China, Iran and North Korea.

Russian state-sponsored hackers have been targeting European governments using zero day vulnerabilities, China has been hiding its spying activities using open-source VPNs, and North Korea has been infiltrating Western organizations through job interviews - to name just a few recent campaigns.

The new European Security Program will provide additional threat intelligence sharing, especially for AI threats, alongside added cybersecurity investment and partnerships - provided to European governments free of charge.

Free cybersecurity for Europe

Microsoft says the program will provide rapid cutting edge AI insights and analysis into cyber threats, helping governments defend faster and more effectively against state-sponsored attacks.

Additional intelligence sharing and collaboration between governments and Microsoft will also help enhance response rates and coordination when responding to threats that target multiple nations at once.

Microsoft will also advise governments on the latest vulnerabilities and exploited zero-days through initiatives including the Threat Microsoft Security Update Guide, Vulnerability Reporting process, and Microsoft Defender Vulnerability Management.

The Microsoft Threat Analysis Center (MTAC) will also provide information on foreign-influence and disinformation campaigns, especially those that utilize AI, with added focus on the tactics used in each campaign and their methods of distribution.

The program will be available to all EU member states, as well as EU accession countries, European Free Trade Association (EFTA) members, plus the UK, Monaco, and the Vatican.

“This new program expands the geographic reach of our existing work and adds new elements that will become critical to Europe’s protection. It puts AI at the center of our work as a tool to protect traditional cybersecurity needs and strengthens our protection of digital and AI infrastructure,” Microsoft explained in a statement.

“Together, these efforts reflect Microsoft’s long-term commitment to defending Europe’s digital ecosystem—ensuring that, no matter how the threat landscape evolves, we will remain a trusted and steadfast partner to Europe in securing its digital future,” Microsoft said.

You might also like

• Microsoft and other security experts want a proper naming system for the worst hackers around
• Take a look at my guide to the best endpoint protection software
• I've rounded up all the best business VPNs

• FBI’s huge Qakbot bust only paused the malware’s reign; it returned stronger and stealthier
• Qakbot’s new spam bomb attacks trick employees into unleashing ransomware inside their own companies
• Despite billions seized, the Qakbot mastermind remains free in Russia, far from US law enforcement

In a major cybercrime crackdown, the FBI and international partners declared victory against Qakbot - also known as Qbot - back in August 2023.

The malware operation, which infected over 700,000 computers globally (including around 200,000 in the US), was linked to $58 million in ransomware-related losses.

Described by U.S. Attorney Martin Estrada as “the most significant technological and financial operation ever led by the Department of Justice against a botnet,” Operation Duck Hunt led to the seizure of 52 servers and the confiscation of $8.6 million in cryptocurrency - but, as with many supposed knockouts in cybercrime, the celebration was premature.

Qakbot re-emerges

Within just three months, Qakbot re-emerged, demonstrating that even coordinated, resource-intensive law enforcement actions can have disappointingly limited long-term impact.

Following the 2023 takedown, alleged ringleader Rustam Rafailevich Gallyamov and his crew didn’t retreat, they adapted - rather than relying on traditional phishing to distribute malware, they reportedly shifted to more deceptive tactics.

And according to The Register, newly unsealed indictments reveal a novel strategy involving “spam bomb attacks” - overwhelming employees’ inboxes with unwanted subscription emails.

The attackers would then pose as IT staff offering to help, tricking victims into running malicious code.

This tactic enabled the group to regain access to company systems, encrypt files, and exfiltrate sensitive data.

“Defendant Gallyamov and co-conspirators would launch targeted spam bomb attacks at employees of victim companies,” court documents state, “and then contact those employees, posing as information technology workers.”

Once access was granted, the consequences were swift and severe: data theft, encryption, and ransom demands.

Qakbot malware enables attackers to backdoor systems, install additional threats, and harvest credentials.

Operators behind ransomware strains such as REvil, Black Basta, and Conti allegedly paid Gallyamov and his associates for access, or even shared a portion of their extorted proceeds.

In April 2025, additional illicit funds, over 30 bitcoin and US $700,000 were seized from Gallyamov, but he remains in Russia, beyond the reach of US law enforcement.

As federal officials put it, “unless he foolishly decides to leave the protection of the motherland,” Gallyamov is likely to remain untouchable.

To stay protected from these kinds of threats, organizations need to invest in the best antivirus - additionally, using a leading endpoint protection platform can help detect and isolate suspicious activity before it escalates into a data breach or ransomware attack.

You might also like

• These are the best VPNs with antivirus you can use right now
• Take a look at our pick of the best internet security suites
• Cybercriminals deploying deepfake sentinels to test detection systems of businesses

• Google DeepMind is building an AI email assistant
• The AI will automatically respond to messages in a user's own voice and style
• The assistant will sort and organize inboxes to help reduce time spent on admin duties

There are few modern experiences more demoralizing than waking up, picking up your phone to turn off your alarm, and discovering an avalanche of emails burying your inbox in notifications. Forget writing back, just sorting through them all and determining which need responses and how quickly you need to answer can eat up a whole day. Google DeepMind CEO Demis Hassabis believes AI should handle all of that organizing and responding, and he and his team have a plan to embed a virtual robot secretary in your inbox so that you never need to crawl through irrelevant sales pitches and unnecessary LinkedIn notifications ever again.

Email is the quintessential magical treasure with a dark curse attached. Miraculous instant communication worldwide is burdened with spam, late-night demands for immediate action from a boss, and the dreaded accidental reply-all button. Hassabis thinks AI can restore the good parts of email by handling all the "mundane chores" and recommending responses instead of leaving you filled with despair at your triple-digit unread count.

Hassabis told the audience at the recent SXSW London event he'd happily pay quite a lot of money to end the current tyranny of the inbox. And not in some far-off future. DeepMind is working to make email inboxes self-managing, capable of sorting through incoming messages, deciding which ones matter, and drafting responses that sound like you. So the next annoying email not only won't find you well, it won't find you at all until the AI works up a response for your approval.

From a marketing perspective, it's a brilliant approach. Plenty of people rightly worried about some of the implications of AI might have a soft spot for the technology if it can clear up even a couple of hours a week for actual productive work (or even seeing your family).

AI email utopia

Hassabis described his vision of a “universal AI assistant” that can be proactive and smart enough to act on your behalf. Instead of regularly giving the AI orders and explaining your priorities, the AI will learn from observing how you deal with a variety of emails and perhaps a one-time broad description of your approach to different kinds of messages. It will know not only how you respond to emails, but also which you ignore on purpose and which you are just stumped at figuring out how to answer.

An AI assistant of that caliber, "gives you more time and maybe protects your attention from other algorithms trying to gain your attention," Hassabis said. "I think we can actually use AI in service of the individual.” “

That's the long-term big picture. For now, Hassabis said we can look forward to AI tools that know when to say, “Thanks for the follow-up. I’ll take a look and get back to you soon.” And when to immediately click delete. Everyone would appreciate an AI that gets us to inbox zero without losing our minds.

You might also like

• I tried Google's new AI mode powered by Gemini, and it might be the end of Search as we know it
• Google’s AI Mode can explain what you’re seeing even if you can’t
• Google Gemini could soon get a super-useful 'Power up' button – here's what it does

• Browser extensions can be silent threats, silently harvesting your data without obvious signs
• ExtensionPedia could become the go-to source for vetting browser add-ons before installation
• LayerX exposes a serious security gap that even major app stores consistently overlook

Browser extensions often make browsing easier by blocking ads, autofilling passwords, or providing productivity tools, but they also pose one of the most overlooked security risks in today’s digital ecosystem.

To address this, cybersecurity company LayerX has launched ExtensionPedia, a kind of “Wikipedia for extensions,” aimed at providing in-depth risk assessments for over 200,000 browser extensions across Chrome, Firefox, and Edge.

Internet users typically rely on app stores to vet these extensions and ensure they are safe. However, LayerX claims that these stores “only do a superficial job of vetting extensions.” While they scan for malware and obvious red flags, they do not investigate behavioral patterns or the ownership lineage of extension code.

Extra scrutiny for browser extensions

“When someone installs a browser extension - either for personal or work use - users and their organizations have no idea what permissions the extension has, how reputable the author is, or the extension’s overall risk profile,” said Or Eshed, co-founder and CEO of LayerX.

This has created a loophole through which malicious actors have repeatedly introduced spyware, adware, and data-harvesting tools.

In recent months, browser-based identity theft and data exfiltration via extensions have become so prevalent that they’ve prompted official warnings from agencies like the FBI.

“While browser extensions are often considered harmless, in practice they are frequently granted extensive access permissions to users’ identity information and data,” LayerX notes, “leading hackers to use them as an attack channel for credential theft, account takeover, and data theft.”

LayerX says its service pulls anonymous data from millions of browser sessions via its database, which includes unified risk scores, granular permission breakdowns, and detailed reputation analyses, all in one searchable, public-facing tool.

While antivirus and endpoint protection platforms can help guard against malicious extensions, the availability of a dedicated risk score could empower users to make more informed decisions.

However, users must actively search the ExtensionPedia database and understand the significance of permission scopes or publisher risk scores.

The concept is promising, but skepticism remains over whether users will truly comprehend the scores or simply dismiss them as technical jargon. Additionally, the effectiveness of such a database in addressing the broader cybersecurity threat landscape remains to be seen.

The concept also assumes users will research extensions before installing them, something that rarely happens in practice.

By making extension risk scores public, LayerX is undeniably increasing transparency, but visibility alone does not equate to protection.

ExtensionPedia is currently available for free, but its real impact will depend on how widely, and thoughtfully, it’s used.

You might also like

• These are the best VPNs with antivirus available now
• Here's a list of the best firewalls around today
• Criminals hijacking subdomains of popular websites such as Bose or Panasonic to infect victims with malware

• Sony has entered a multi-year global technology partnership with the NHL
• This could mean more real-time, animated simulcasts of the game are on the horizon
• Sony's Beyond Sports, Hawk-Eye setups, and cameras will still be used at the arenas

If you've ever dreamed of seeing your hockey heroes playing alongside the biggest animated stars then Sony's new deal with the NHL might get you excited.

Sony has already expanded into the professional sports world via its Beyond Sports brand, which is key to real-time data processing and the ability to take all that action and translate it into something else.

Its partnership with the NFL (National Football League) led to the airing of the The Simpsons Funday Football on Disney+ and ESPN last year, and now the NHL could be next for that kind of treatment.

The NHL already uses Sony's Hawk-Eye Technology system – a combination of cameras above the ice and wearable sensors on players – but this new deal will expand on that, while continuing the use of Sony cameras for both still photography and video.

Most excitingly, it promises to broaden the role that Beyond Sports could play in changing how fans of any age can experience a hockey game.

(Image credit: Sony)

If real-time animated simulcasts are on the horizon as part of this deal, it won't be the first time the NHL and Sony have collaborated on such a venture.

In 2023, the NHL Big City Greens Classic was produced using Beyond Sports technology and that system, along with the Hawk-Eye setup, is now installed in all 32 arenas.

As with other animated broadcasts, the goal is to expand the appeal and attract a wider audience – one that might be different from or adjacent to those attending the game in person.

Speaking to TechRadar, David Lehanski, Executive Vice President of Business Development and Innovation at the NHL, said that the talks began with a question about how the league can reach more fans.

Now, though, “We're going to eventually get to a point where we allow the fan to customize so they can have some role in determining what the environment looks like. And then another step after that might be to even give the fans an ability to interact with the content,” Lehanski continued.

A preview of the Simpsons Monday Night Football game (Image credit: Sony's Beyond Sports)

Those comments echo back to TechRadar’s conversation with Sander Schouten, Managing Director and Co-Founder at Beyond Sports last year.

Schouten then hinted that more environments could come depending on the partner, and that we could see more interactive streams. He also highlighted the sheer volume of data being generated and its rapid pace, suggesting that the runway is wide open for various implementations.

That could mean multiple streams or different ways of accessing the action – be it on a traditional TV, through streaming, or even in a virtual reality environment. The latter is something the NHL has already explored, both for analysts and for players.

For both Sony and the NHL, this is an exciting endeavor – a formalized partnership built on technology already being used in games. It should open the door to more robust interactions and increased investment, enhancing the game experience whether you’re in the stands or watching from home.

While neither Sony nor the NHL would comment on future partners for real-time animated moments, I am hopeful we might see a return of The Simpsons – not for football, but for hockey.

You Might Also Like

• Sony WH-1000XM6 review: excellent headphones that meld the best parts of Sony's previous cans
• Hold the phone! Samsung has just teased a Galaxy Z Fold 7 Ultra
• New The Fantastic Four: First Steps trailer confirms two of the worst-kept secrets about the Marvel Phase 6 movie

• Report finds users aren’t loyal to apps - they abandon brands fast when the user experience breaks down
• Bad popups aren’t harmless annoyances, they’re silent customer killers your analytics might be missing
• Half of users ignore popups completely, and older users are tuning them out the most

In the fast-paced world of digital products, expectations are high, patience is limited, and brands invest heavily in aesthetics, sleek interfaces, and gamified user journeys. Yet, what actually drives users away is often much simpler, and far more damaging.

Research from Amplitude has claimed intrusive popups, frequent crashes, tiny unreadable text, and unclear privacy settings are now major tipping points that prompt users to delete apps altogether.

Some developers argue that popups are a necessary evil for monetization, but as the report found, customer behavior tells a different story.

Popups are intrusive and mostly poorly executed

Over half of app users (54%) ignore popups entirely, and only 46% have ever responded to one. Engagement varies dramatically across generations, with 53% of Gen Z users saying they’ve acted on a popup, compared to just 17% of Boomers.

“This is a clear signal that people want popups that are better timed, less intrusive, and more relevant to their unique needs - and this is especially important for older generations,” said Lee Edwards, Vice President, EMEA at Amplitude.

The data suggests that popups are not inherently ineffective; rather, they’re often mistimed, disruptive, or irrelevant, as poorly placed promotions erode trust instead of driving conversions.

But it’s not just about popups. When apps glitch or freeze, the consequences are immediate. Over a third (35%) of users will abandon an app within minutes of it malfunctioning, while 10% won’t even give it that long.

User loyalty is rare: only 16% of users bother to report problems or contact support, while 58% simply leave, never to return.

Beyond bugs, poor design choices add to user frustration. Nearly half (45%) of users who’ve encountered flawed design say it made them feel “enraged,” with the number rising to 59% among Millennials and Gen Z.

Small text, forced account creation, and confusing navigation all contribute to the problem - notably, older users are especially frustrated by illegible text, an issue made worse when designers optimize exclusively for modern devices, without considering accessibility on older or smaller screens.

What users overwhelmingly want is reliability. An eye-catching app is meaningless if it can’t deliver a stable experience - and in fact, 85% of users prefer a plain-looking app which works consistently over a beautiful one that breaks.

To stay relevant, apps must earn their place on a user’s device, there is no room for mediocrity. Even promising concepts like “super apps,” which combine messaging, shopping, banking, and more, appeal to just 41% of users.

Ultimately, brands hoping to build loyalty must go beyond analytics dashboards and deeply examine how real users interact, where they struggle, and why they leave.

You might also like

• These are the best VPN with antivirus solutions available now
• Take a look at our pick of the best password managers
• ‘Mission: Impossible – The Final Reckoning’ gets surprise guest appearance: a revolutionary 360TB silica storage media

Money no object

We love to give practical buying advice on the latest gadgets here at TechRadar. But sometimes what we love even more is to indulge in the most high-end, cutting-edge, luxurious tech on the planet. That's what we bring you in these Money no Object columns – you can read the whole series here.

Struggling to sleep? Perhaps you need to invest in a new bed, friend. And if you've never thought of adding some sleep-specific (or at the very least, Sunday chill-specific) stereo speakers to set you up for the best shut-eye session of your life, well… maybe you should.

Look, it's not every day you see a very high-end bed with some very high-end speakers built in. But that's what you're looking at here.

I only need to glance at The Seventy Five, a collaboration between audio specialist KEF and Savoir, a British bedmaker since 1905, to feel a little more relaxed about life. That is, until I see the price…

Rest is the sweet sauce of labor

(Image credit: KEF)

Just imagine those 10 hand-upholstered panels, gently curving around your crown and discreetly housing two glorious Ci3160REFM, THX Ultra-certified KEF speakers. Don't worry, they're towed in just right, because they're nestled into the penultimate panels around the bed aren't they?

Why call this creation The Seventy Five? Because that has long been considered the ideal number of beats per minute a musical track should have, to help you relax.

Music is the answer

KEF's magnetic removable grilles will allow you to conceal or reveal the speakers within your aspirational bed, but I'm sure you want to know what you're getting in the first instance – because KEF makes some of the best stereo speakers we've had the pleasure of testing.

At the core of each speaker within The Seventy Five lies KEF’s 12th generation signature driver array, Uni-Q (proprietary tech found in all KEF stereo speakers, which you can read more on in our KEF LSX II LT review).

However, the sound system here is completed with six (yes, six) KEF Kube 8b subwoofers, discreetly installed in the base of the bed. These subwoofers feature KEF's iBX technology to extend the bass depth, but make no mistake, in-bed amplifiers, drivers and sealed cabinets are all on board here – a sound system selected and tuned by KEF’s team in Maidstone, UK.

(Image credit: KEF / Savoir)And so to bed

What about the bit you sleep on? Well, if you reckon you've read about Savoir within TechRadar's digital pages before today, you're not wrong; the brand featured in our 7 most expensive mattresses in the world article not too long ago.

But this is expensive with added expensive KEF speakers. Savoir tells me its London Bedworks invests over 150 hours of handcraft into The Seventy Five, to deliver "a masterpiece of sleeping comfort". And while you're getting music, there's no need for headphones or wires – Savoir's team has also put wireless charging ports into the bed's side tables, so your devices can power up as you drift off.

Ready for some pricing? OK. But maybe sit down. Remember, this is a piece of furniture designed for how people actually use their bedrooms today: reading, listening, watching, winding down… and it's an investment.

In the US, The Seventy Five will cost you from $68,605 for a King; in the UK, it's £51,385 for a Super King (because bed sizes are actually different across the pond). Perhaps one for the apartment in St. Barts…

You may also like

• Want speakers not baked into your bed? See our pick of the best Bluetooth speakers
• Need them to work over wi-fi? Check out the best wireless speakers
• Consider listening in bed with headphones with our best earbuds guide

• Meta signs 20-year deal to prop up Illinois nuclear energy facility
• Clinton Clean Energy Center was set to close in 2027
• Facility will provide 1,121 megawatts of "emissions-free nuclear energy"

Meta has revealed a deal to prop up a nuclear power plant over the next 20 years in what it says is a bid to power the continued demand for AI.

The Clinton Clean Energy Center in Illinois, owned by Constellation Energy, was due to be mothballed in 2027, but will now stay open thanks to Meta's support.

The 20-year deal will see the facility provide 1,121 megawatts of "emissions-free nuclear energy", with additional incremental capacity of 30MW if needed.

Nuclear power for Meta AI

The deal will mark only the second US site to host a nuclear reactor built entirely this century, following Plant Vogtle, built in 2023 near Waynesboro, Georgia.

"As we have embarked on understanding and helping to grow nuclear energy in the U.S., we have heard from across the ecosystem that existing nuclear power plants will not be able to stay online indefinitely without partners and investments that help extend existing operating licenses and increase generation capacity," Meta said in a statement.

"It’s clear that there are many nuclear power plants serving the U.S. that need long-term support to help our electricity grids remain reliable as energy needs grow."

"Keeping an existing plant operating will have the same positive effect as adding new clean energy to the grid, and avoid the disruption that has occurred when other nuclear units have retired prematurely."

(Image credit: Constellation Energy)

Built in 1987, Meta says the Clinton Clean Energy Center support will also preserve over 1,100 local jobs and contributes $13.5 million annually in tax revenue.

The plant had been facing closure as long ago as 2017 due to financial pressure, but Illinois passed its Future Energy Jobs Act in 2016, which extended its operations via a zero-emission credit (ZEC) program. This was due to expire in 2027, but Meta's support should now see it operate long past this.

“We are proud to partner with Meta because they asked that important question, and even better, they figured out that supporting the relicensing and expansion of existing plants is just as impactful as finding new sources of energy," noted said Joe Dominguez, president and CEO, Constellation.

"Sometimes the most important part of our journey forward is to stop taking steps backwards.”

A March 2025 report commissioned by the firm and carried out by The Brattle Group claimed shuttering the Clinton plant would have led to 34 million metric tons of additional carbon pollution over 20 years - the equivalent of an additional 7.4 million gas-powered cars coming onto the road for one year - as well causing as Illinois’ GDP to drop by $765 million annually.

You might also like

• Amazon, Meta, Google and others join consortium to triple nuclear energy output by 2050
• Microsoft goes nuclear for its energy-hungry data centers
• Why the future of AI is nuclear

Samsung may have quietly handed the smackdown to Apple and whatever super-slim phone the Cupertino crew might be cooking up.

That's because in a recent video interview with our sibling publication Tom’s Guide, Blake Gaiser, director of smartphone product management at Samsung Electronics America, touted the efforts and innovations the South Korean company made to bring the Samsung Galaxy S25 Edge to fruition.

Describing it as a “Goldilocks” of smartphones to Global Editor-in-Chief Mark Spoonauer, Gaiser championed how the Galaxy S25 Edge is a true high-end phone that could create a whole new category of smartphone.

“We do consider it to be a flagship. It is a new innovation piece that we're bringing forth where we're taking out so much weight, so much thickness of this device, while not compromising on the things that are really important to our customers, such as durability, the performance of the chipset, having that flagship 200MP camera,” explained Gaiser.

“And so we do believe that this is that kind of Goldilocks for so many of our customers that is going to give them everything they want and not give them the things that they're not looking for.”

Gaiser went on to discuss more aspects of the Galaxy S25 Edge, from its design to its cameras and AI.

But what resonated with me, as a tech journalist with copious amounts of experience writing about and handling some of the best phones, is that Samsung may have seriously thrown down the gauntlet at Apple and what it might do with the rumored iPhone 17 Air.

I feel Apple will need to bring something special to the table in order to somewhat clap back at Samsung, while also being seen as forging its own path.

As it stands, the iPhone 17 Air exists in the realms of rumor and speculation, but I’d place a favourable bet that Apple will look to slim down its next-generation iPhones; as much as I love the design of the iPhone 16 Pro Max, I’m not against it getting a nip and a tuck.

Check out the full interview in the video above and then let me know in the comments whether you think Samsung has created something special here or if it's more of a gimmick.

You might also like

• iOS 19: the 5 upgrades I'm really hoping for at WWDC 2025
• I spent two weeks with the Motorola Edge 60 Pro, and it's hands-down one of the best-looking phones of the year
• Samsung Galaxy Z Fold 7 price rumors: how much might this foldable cost?

• Snow White has a confirmed Disney+ streaming date of June 11
• The movie arrives on streaming following its unsuccessful theatrical run
• It only scored 40% on Rotten Tomatoes, meaning it's not considered to be one of the best Disney+ movies

Disney+ has set a streaming date for the studio's latest Snow White movie, and fans will be able to watch it at home from June 11, 2025.

Unfortunately, Snow White performed poorly amongst audiences and critics, scoring 40% on Rotten Tomatoes and only making back $205.5 million back from its reported $240–270 million budget.

Snow White doesn't rank highly enough to be given a spot on our best Disney+ movies round-up, unlike the original Oscar-winning animated movie.

Take a look at the movie's trailer below for what to expect.

Is Snow White (2025) different from the original movie?

Experience the magical, musical movie event on #DisneyPlus ✨Stream Disney’s #SnowWhite on June 11. pic.twitter.com/29h8rqNSSYJune 4, 2025

Yes, the newest Snow White adaptation does differ a lot from the original 1937 animated movie. So if you're expecting to see the same story, be aware it doesn't follow the original.

Snow White has a revised backstory, a new love interest, and a different ending. Instead of a prince, Snow White falls in love with a bandit named Jonathan, and her backstory sees her named after she was born on the night of a relentless blizzard.

If you're interested in some of the key differences, Variety has reported eleven of these that you can read about in more detail.

Fans and critics alike weren't too enamored with the many changes, or by the performances, and a harsh critics consensus on Rotten Tomatoes complains about "dopey stylistic choices".

But you can make your own mind up soon, as it will be streaming on one of the best streaming services. Snow White's release follows in the footsteps of new Disney+ movies, including Moana 2 and Mufasa: The Lion King.

You might also like

• Disney+ is rolling out subscriber perks including exclusive competitions, free trials, and shopping discounts
• Disney+ price: what plans can I sign up for, are there any bundle deals available, and more questions answered
• Disney+ free trial: is one available, streaming deals, and more explained

• Fake AI tools climb search rankings to spread ransomware and malware
• Cybercriminals are targeting tech marketing and B2B users with cloned installers
• Talos has uncovered threats that are using branding tricks and search manipulation tactics

Cybercriminals are already using AI to make phishing emails more convincing, and now they’re manipulating search engine results to spread malware disguised as AI tools.

New research from Cisco Talos claims these fake downloads appear to be legitimate software, often promoted through search engines and social platforms, and are predominantly targeting users in the tech, marketing, and B2B sales industries.

Talos recently uncovered several threats distributed this way, including ransomware families CyberLock and Lucky_Gh0$t, as well as a destructive new malware called Numero.

SEO manipulation

Talos says these threats use familiar branding, fake websites, and misleading metadata to trick users into downloading and running infected software.

In one case, attackers created a clone of a known AI service, “NovaLeads,” and used SEO manipulation to rank the fake site near the top of search results.

When victims downloaded what appeared to be the legitimate installer, it executed CyberLock ransomware, written in PowerShell, which encrypted targeted files and demanded a $50,000 ransom in Monero. The ransom note falsely claimed the payment would fund humanitarian aid.

Lucky_Gh0$t ransomware, another discovery, was bundled with real Microsoft AI tools inside a self-extracting archive named “ChatGPT 4.0 full version - Premium.exe.” Once executed, it encrypted files smaller than 1.2GB and deleted or corrupted larger ones.

The newly identified malware, Numero, is especially destructive. Disguised as an installer for a video AI tool, it repeatedly runs a loop that corrupts the Windows interface by overwriting GUI elements with numeric strings, rendering systems unusable.

These campaigns exploit rising demand for AI software and target sectors most likely to adopt these tools quickly. With data centers, businesses, and individuals increasingly reliant on AI platforms, the potential harm from such threats is growing.

Talos warns users to be cautious when searching for AI tools online and to only download software from trusted vendors.

You might also like

• Stay protected with the best endpoint protection tools around
• We've also rounded up the best malware removal tools
• AI is making phishing emails far more convincing with fewer typos and better formatting

Succession creator Jesse Armstrong continues to skewer the world of the awfully rich (and richly awful) with his new tech bro satire Mountainhead.

Skipping theaters, the new movie premiered on Max on Saturday, May 31, with a linear broadcast on HBO that evening. Since release, the film has shot up the Max charts and is currently enjoying the global top spot.

And while audiences can’t stream the Succession follow-up quick enough, critics are loving what is fast becoming one of the best Max movies around at the moment, with the film currently sitting at a very respectable 79% rating on Rotten Tomatoes.

Armstrong’s latest dark comedy follows a group of Musk/Bezos/Zuckerberg types as they meet at one of their number's secluded mountain retreat while the world faces AI-fueled turmoil that they may have played a not-insignificant part in creating.

Jason Schwartzman pops his head above the Wes Anderson parapet to play Hugo, the owner of the lodge looking to impress his billionaire buddies. Steve Carell, meanwhile, portrays Randall, the elder statesman of the group and an early tech mogul who has been raking it in since before the rest of the group were born.

Cory Michael Smith’s Venis is the wealthiest of the bunch and the owner of the social media platform at the center of the storm of disinformation engulfing the globe, while Ramy Youssef’s Jeff is an AI pioneer on the outs with some of the gang.

After four seasons of the critically acclaimed Succession, expectations were high for Armstrong and HBO’s next collaboration, and Francesca Orsi, EVP of Programming at the network is confident their continued partnership will deliver, saying: “We’re ecstatic to be back in business with the singular talent Jesse Armstrong [...].’ Jesse once again raises the bar with a bold examination of modern greed, power and male ambition. That this feature serves as his directorial debut will only elevate what is already thrilling on the page, and we couldn’t be more excited to share this timely film with the world.”

What are the critics saying about Mountainhead?

As you’d expect with a high Rotten Tomatoes score, critics have plenty of praise for the film, with Globe and Mail commenting on the quality of the "inventively profane” dialogue which is “as enjoyable as Succession’s at its most absurd,” while Empire called it a “darkly funny” film with a “chilling final note.”

Some responses weren’t as positive, however, as some critics found the film lacked subtlety. Boston Globe said the movie was “satire as a blunt force object,” and critic Christian Toto criticised the way the film “piles on the hate, not the laughs.”

(Image credit: Max)What's the subscriber's verdict?

Viewers have been even harsher on Armstrong’s latest, with the film sitting at just a 27% RT Audience Score. Many viewers compared the film unfavorably to Succession, with one saying it was like the show, but with characters that were "annoyingly fake and worse, unfunny.” Another called it “the most obnoxious movie I’ve ever seen” while a third said simply: “just terrible.”

Viewers over on Reddit were a little kinder though, with one poster calling the film “hilarious,” stating “Steve Carell was incredible in it.” Another praised the “fun dialogue and good laughs,” with other users saying “I really enjoyed this.”

Comment from r/movies

Either way, if you’re a subscriber to one of the best streaming services out there and intrigued by what sounds like Succession meets Glass Onion, the film is available to stream on Max right now.

And if that doesn’t quite hit the mark, you can always check out one of the other movies and shows arriving on Max in June.

You might also like

For more Max-based coverage, read our guides on The Last of Us season 2, House of the Dragon season 3, Euphoria season 3, and The White Lotus season 3.

• Google Chrome fixes out-of-bounds read and write vulnerability in V8
• It's being exploited in the wild, so be on your guard
• Chrome usually updates automatically, but it wouldn't hurt to check

Google has patched a zero-day vulnerability recently discovered in its Chrome desktop browser which it says is being actively exploited in the wild, so users should apply the fix as soon as possible.

The bug is described as an out-of-bounds read and write vulnerability present in V8, tracked as CVE-2025-5419, and has been given a severity score of 8.8 (high).

V8 is an open source JavaScript engine used primarily in Chrome and Node.js. It was developed by Google, and powers many of today’s key productivity apps, such as Google Docs, or Gmail.

Forcing the update

In theory, a threat actor could create a malicious website which would execute arbitrary code on the victim’s system while visiting. That could potentially lead to full system compromise, data theft, or additional malware deployment.

The bug is fixed in version 137.0.7151.68, and users are advised to upgrade immediately. Patches are out for Windows, macOS, and Linux.

Usually, Chrome updates automatically upon a new launch. However, users can do it manually by navigating to the Chrome menu > Help > About Google Chrome, checking for updates, and clicking the “Relaunch” button.

The company said the vulnerability is being abused in the wild, but did not want to share additional details before the majority of Chrome browsers are updated, adding it was, “aware that an exploit for CVE-2025-5419 exists in the wild.”

"Access to bug details and links may be kept restricted until a majority of users are updated with a fix," Google said. "We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven't yet fixed."

This is the third Chrome zero-day vulnerability fixed in 2025, as two more were patched in March and May. In 2024, the company fixed a total of 10 zero-day flaws.

Via BleepingComputer

You might also like

• New Chrome flaw leaks sensitive information across websites - your data could already be in the wrong hands
• Take a look at our guide to the best authenticator app
• We've rounded up the best password managers

• Details of the Philips Hue Smart Wall Washer have appeared on Amazon
• It will work like the Philips Hue Play Light Bar, flooding your wall with color
• It uses the same ColorCast system as the Philips Hue Twilight lamp

Amazon has published a listing for an unreleased Philips Hue lamp that promises to flood your walls with color. The Philips Hue Play Smart Wall Washer, spotted by Hueblog.com, is currently listed on Amazon's UK store, though there's no release date or price available yet.

The Smart Wall Washer combines the best features from two of our favorite smart lights: the Philips Hue Play Light Bar and the Philips Hue Twilight.

Like the Light Bar, it can be synchronized with an HDMI source to project colored light onto the walls behind your TV, or be used by itself to help set the mood. If you have other Philips Hue lights, you'll be able to group them together with the Smart Wall Washer and apply the same scene or automation to all of them.

The Philips Hue Play Smart Wall Washer (left) uses the same ColorCast gradient light system as the Philips Hue Twilight (right) (Image credit: Signify / Future)

Look at the back of the Smart Wall Washer and you'll notice a setup very similar to the LED panel on the back of the Philips Hue Twilight. Like the Twilight, the Wall Washer features a system called ColorCast that uses "precisely-arranged LEDs" to create a striking, smooth color gradient on the nearest wall.

When we tested the Twilight, ColorCast was one of our favorite features. "The LEDs point slightly upwards, which enables them to spray a wonderful cone of light up walls," said Josephine Watson, Managing Editor of Lifestyle. It looks like the Smart Wall Washer will deliver the same results, but over a larger area.

Twice as bright

The Smart Wall Washer measures 3.6 x 3 x 6.2 inches / 9.1 x 7.6 x 15.7 cm, which is even smaller than the Light Bar. However, with a maximum of 1035 lumens, the Wall Washer is twice as bright.

The UK listing is for a single lamp, but some of the lifestyle images show a pair of Smart Wall Washers linked to a TV via an HDMI Sync Play Box, so it's possible that they'll be sold in multi-packs as well.

The case of the Smart Wall Washer has a matte finish to help avoid unwanted light reflections, and judging by the images in the Amazon listing, it appears to be available in black and white.

Signify has yet to officially announce the Smart Wall Washer, but I'll keep you updated as soon as I have more details about pricing and availability.

You might also like

• Philips Hue's AI assistant is finally here – and if you have an iPhone, you can try it now
• Configuring your Philips Hue lights and sensors is now headache-free thanks to this free app update
• Nanoleaf's new indoor and outdoor smart lights are its funkiest designs to date

• Hello Games' No Man's Sky will launch on the Nintendo Switch 2 with the new Beacon content update and cross-save functionality
• Similar to previous updates, it will be free for existing owners without a paid upgrade path
• It's an example of why cross-save is important for other game developers to include in games

The Nintendo Switch 2's launch is now just hours away, alongside a handful of launch titles – and one of them will be coming with plenty of benefits for players at no extra cost.

Hello Games has announced a No Man's Sky Switch 2 edition launching with its new Beacon content update, featuring full multiplayer, improved frame rates including 4K texture support – and perhaps most importantly, cross-save and cross-play functionality. All will be free to existing Switch 1 No Man's Sky owners when it launches on June 5.

It's great for fans to see the improved frame rates and 4K resolution, especially based on the expectations set for a variety of the console's games. It's also worth noting that the Switch 1 port didn't have full multiplayer, which will now be possible thanks to the Switch 2's extra horsepower. However, another big highlight is the inclusion of cross-save and cross-play from day one.

Cross-save has been available in No Man's Sky for all platforms for some time, but with the Switch 2's launch, you'll be able to pick up exactly where you've left off. We don't often see cross-save inclusion in other triple A games at launch, or even at all (in both multiplayer and single-player titles), and fortunately, indie developer Hello Games has considered it.

It's a testament to how considerate the game developer has been over the past few years, especially with its Beacon update joining the huge list of free content released, and fans will undoubtedly be hoping the goodwill continues – and push other game developers to do the same.

Analysis: The Switch 2 is an example of why we need more cross-save games

(Image credit: Nintendo)

It's a massive feat for Hello Games to go full throttle with the Switch 2 port, especially with all the improvements that are coming without any need for a paid upgrade path. It's also another reason to stress that not enough games have cross-save support, from console to PC and vice versa.

I applaud developers such as Larian Studios with Baldur's Gate 3, CD Projekt Red with The Witcher 3: Wild Hunt, and Cyberpunk 2077, but I think there's more room for this to be a common occurrence. It's worth noting that I'm not just talking about cross-save on the same platform, like the Switch 1 to the Switch 2, but rather including all consoles and PC – you get the idea.

It's a dealbreaker for me when deciding whether I should buy a PC port of Sony's PlayStation titles, especially when I already own the title on the PS5 – and a prime example is Stellar Blade, launching on Steam on June 11, without cross-save functionality.

A decent portion of the games coming to the Switch 2 at launch are games that have already launched on other platforms, and that players buying the Switch 2 have already made progress in – for example, Capcom's Street Fighter 6 or IO Interactive's Hitman World of Assassination, both of which don't support cross progression. So simply, it's not just a PC problem, but also all platforms that need this support.

You may also like...

• Nintendo Switch 2 launch day stock live build-up: where to buy info and all the latest updates on stock ahead of release day
• Nintendo Switch 2’s launch titles are awesome, but this one free update means more to me than any new Mario Kart game
• Nintendo is sending 'Out of Stock' signs to retailers ahead of the Switch 2 release

WWDC 2025 is almost here, and we’re expecting to hear big news of Apple’s upcoming iOS 19, macOS 16, visionOS and iPadOS 19 operating systems updates.

While we’re expecting the best iPhones and best Macs to get some substantial updates, it could be an even bigger year for the iPad if the latest rumors are to be believed.

According to various rumors, iPadOS 19 could bring Apple’s tablet experience closer to a true computer feel than ever before, as well as getting a new look and perhaps even a new name.

So, with that all in mind, here are the six new features we'll be looking out for at the WWDC keynote on June 9 – check out our how-to-watch WWDC guide to tune in yourself.

Better multitasking

Stage Manager was introduced with iPadOS 16, but we think it needs an update (Image credit: TechRadar)

When Apple launched Stage Manager for iPad in 2022, reactions were mixed. The new UI mode gave users groups of kind-of free-floating windows, but was generally considered both too complicated in its usage and too simple in its capabilities.

With Samsung DeX giving Samsung users access to a proper laptop-style mode on their tablets, and Android 16 promising free-floating windows for multitasking, Apple needs to step up its game to keep up.

The simple answer is free-floating windows in Stage Manager. Apple’s multitasking solution actually has pretty good range when it comes to resizing windows, so this is the natural next step.

And as Reddit user albertserene suggests in a post to r/iPadOS, Apple could also offer the ability to save groups of windowed apps as presets, similar to the much-loved Desktops feature on Mac.

We recently reported on rumors from noted tipster Majin Bu that suggest Stage Manager could get a major update with iPadOS 19, but haven’t heard any further details.

Multiple accounts

(Image credit: Future)

Sticking with the iPad’s push towards computer-style use, it’d be great to see Apple allow users to set up multiple accounts on the same iPad.

This is an essential feature for families, entrepreneurs, and businesses, or indeed anyone who wants to use their iPad for two or more different purposes.

Apple does offer Profiles, but these are designed for use by one individual who wants to switch between different notification and app settings at different times.

Though there are no strong rumors for this feature, others like Mashable have also pointed out the lack of multiple user support on iPad, and it’s something we’ve had our eyes on here at TechRadar and TechRadar Pro for more than a decade.

A new look

VisionOS could serve as the base for the next iPadOS visual update (Image credit: Apple)

It’s been a little while since we reported on rumors of a visionOS inspired visual overhaul for iOS and iPadOS – but in the time since I’ve become more excited at the prospect of a new look for Apple’s mobile operating systems.

A focus on transparency and glass-like UI would work well with an updated Stage Manager – with more on screen, it could be useful to have a way to peek through certain UI elements.

And focusing in on the two current iPad Pro models – the thinnest tablets Apple has ever made – a sleek new software design would compliment the beautiful hardware of Apple’s most powerful tablets especially well.

iOS and iPadOS haven’t had a major UI redesign since iOS 7, all the way back in 2013.

A Mac-style Menu Bar

The Menu Bar is an icon of MacOS - rumors suggest it could make the jump to iPad (Image credit: Future)

Sticking with the themes of Mac-like productivity and new visuals, further rumors suggest that iPadOS could be getting a menu bar in the style of macOS.

Again going off of rumors from noted tipster Majin Bu, it seems the iPad could get a Mac-style Menu Bar, offering contextual options for the currently-engaged app as well as more general settings.

This could be a neat addition to the iPad, especially the 13-inch iPad Air and iPad Pro models. On smaller iPads – particularly the iPad mini – I’m a little more concerned about losing screen space.

Improved Siri

(Image credit: Future)

The long-awaited Siri update could be on the way with iPadOS 19, bringing the full power of Apple Intelligence to Cupertino's virtual assistant.

The new Siri should be able to answer more complex questions and perform a wider range of in-app functions. We’ve been looking forward to this update for quite a while now, considering that Siri has started to fall behind other digital assistants, like Google’s AI powered Gemini.

Furthermore, we had originally expected Siri to get an overhaul at some point during the lifespan of iPadOS 18, but this didn’t materialize due to the botched rollout of Apple Intelligence.

Split keyboard

(Image credit: Apple)

This is a smaller one, and more of a speculation, but I’d personally like to see Apple bring back split keyboard support for every iPad that runs iPadOS 19.

As pointed out by Reddit user AungmyintmyatHane, Apple doesn't support the split keyboard feature on modern iPads.

I’m an iPad user myself, and it’s never made sense to me that my 2013 iPad Air allowed me to split the keyboard in two for easier typing in landscape mode, while my newer, more powerful, and more expensive 2020 iPad Pro 11-inch lacks the same function.

I doubt Apple would make much noise about this feature returning, but it’d go a long way in making the iPad feel more flexible.

What are you looking forward to most at WWDC? Let us know in the comments below.

You might also like

• The best cheap tablets 2025: top budget models from Apple, Amazon, and more
• OnePlus says its new tablet will be the best Android tablet of 2025 – and I think it has a chance
• iOS 19 could bring new features to Messages, Music, and Notes

• The i2Coalition published a new report to map the collateral damage of DNS blocking and other internet restrictions across the world
• Some European governments and the US are actively debating infrastructure-level blocking as an anti-piracy solution
• Experts urge the global community to help them document these incidents

From halting online dissent and illegal content to copyright infringement and child safety, governments worldwide have been increasingly turning to blocking practices that target the core internet infrastructure to pursue their policy goals. Yet, even when deployed with the best intentions, these measures are not only thought to be ineffective, but also to lead to "unintended and profound" collateral damage.

This is the warning from a new report published by the i2Coalition (Internet Infrastructure Coalition). The group wants to shed light on what it describes as an "alarming trend" of governments across the world weaponizing DNS resolvers and even the best VPN services as enforcement tools.

"This report is a wake-up call," said Christian Dawson, Executive Director of the i2Coalition. "DNS resolvers are neutral infrastructure – not censorship tools. When governments use them to enforce content policies, the result is overreach, disruption, and long-term harm to the open Internet."

TechRadar needs you! We want to know what you think about the world of VPNs. Whether you're a novice or a VPN pro, we want to hear your thoughts. Don't worry, though, your responses are completely anonymous, and it takes less than a minute to complete!

To take part, click the link below: https://futurenet.questionpro.eu/tr-vpn

From DNS to VPN blocking – how authorities block the internet

As the report shows, internet blocking tactics span from DNS-based restrictions, IP-level enforcement, and even AI-driven filtering. Nonetheless, experts highlight DNS blocking as the most widely used mechanism.

Short for Domain Name System, we can think of a DNS as the Internet phone book. It translates user requests into strings of numbers – IP addresses – to connect them with the right websites.

DNS servers are at the core of the internet infrastructure as they enable users to navigate the internet. This is exactly why these services have become a target of censors like Russia, Iran, and China, first, and now, rights-holders or lawmakers behind children's safety policies.

Some European countries, including Italy, Spain, and France, have been increasingly using such infrastructure-level blocking against pirated or other harmful content. The US is also currently debating a bill to employ similar blocking methods against copyright infringement.

DNS blocking, however, isn't just according to experts ruining the internet, but also ineffective. This is because these network-level blocks only obscure rather than remove the content, which remains online and accessible through other means.

Do you know?

(Image credit: Future + Photo by MAGALI COHEN/Hans Lucas/AFP; Photo by Jaap Arriens/NurPhoto via Getty Images)

After a successful legal action against DNS services in 2024, on May 15, 2025, the Paris Judicial Court backed Canal+'s request and ordered five VPN providers – NordVPN, ExpressVPN, Surfshark, Proton VPN, and CyberGhost – to block access to 203 domains linked to illegal sports streaming sites.

Increasingly more internet users have learned to use virtual private network tools, which enable users to spoof their IP addresses and bypass these restrictions. Hence, VPNs are now becoming the next target of authorities.

Russian authorities have been particularly active in cracking down on the usage of VPN services. A law that was enforced in March 2024 to criminalize the spread of information about ways to circumvent internet restrictions, especially, led to an escalation of Russia's battle against VPNs, with many apps being removed from official App Stores.

In Europe, rights-holders in Italy and France have so far targeted both DNS and VPN providers within their fight against online piracy.

Again, while the motivations behind differ, the unintended consequences seem to be the same. As the i2Coalition notes in the report: "These measures are too often implemented without legal or technical precision, transparency, or accountability, resulting in overblocking, fragmentation, and collateral damage."

In Italy, for example, the country's Piracy Shield system caused widespread service outages on other platforms such as Google Drive. Then, following the decision to require VPN and DNS providers to block pirated content, a VPN provider (AirVPN) had already stopped accepting new Italian subscribers.

The report explores this and other examples of overblocking and internet fragmentation across Europe (France, Spain, Austria, and Portugal), alongside case studies from Russia, Malaysia, India, South Korea, Indonesia, Myanmar, Venezuela, and even the US.

"The global Internet depends on common protocols, trust, and neutrality at the infrastructure layer," said Dawson. "This initiative shines a spotlight on where that’s breaking – and what we can do about it."

Dawson is now urging the global community to "help push back with evidence and clarity" by documenting these incidents. You can do this by heading to the nsatrisk.org platform that the group has just created.

You might also like

• "A dangerous precedent" – The VPN industry reacts to France’s order to block illegal streaming sites
• Italy to require VPN and DNS providers to block pirated content
• "Network blocking is never going to be the solution" – Cloudflare slams anti-piracy tactics

• Nvidia has released yet another driver hotfix amid frequent updates in recent months
• The hotfix comes after Game Ready Driver 576.52
• Users are still reporting black screen issues, months after the bug's initial revelation

Nvidia has been at the center of controversy since its RTX 5000 series Blackwell GPU launch, with issues regarding missing specs and driver issues widespread – and unfortunately, the latter is still a trend after multiple updates.

As reported by VideoCardz, Nvidia released a new GeForce Hotfix 576.66 driver, which comes after the Game Ready Driver 576.52, to fix and address several game crashes and bugs. It's another addition to the frequent Nvidia Game Ready Drivers and hotfix updates in recent months, most of which have seemingly failed to address some of the long-lasting issues.

While it doesn't appear to affect all users, RTX 4000 and some RTX 5000 GPU series owners have voiced frustrations regarding the infamous black screen problem, which now mostly appears to occur on reboot (even without driver installation). It seems slightly different from prior complaints, which had a majority of users annoyed with black screens during new driver installations.

However, the Game Ready Driver 576.52 Reddit discussion suggests otherwise, as users highlight the same installation bug, either forcing a restart or wiping drivers completely using DDU (Display Driver Uninstaller). It's not exactly clear what is causing the issue, but some users state that disabling G-Sync is one of the solutions.

Installing any of Team Green's new GPU drivers is essential, as they often come with new game or GPU support, but running into game or system-breaking bugs is a big gamble. Fortunately, rolling back to previous drivers doesn't require too much effort, but the same can't be said for Blackwell GPU users who can't go back to stable and older drivers before the lineup's launch.

Comment from r/nvidiaComment from r/nvidiaComment from r/nvidiaAnalysis: Are new driver updates even worth installing at this point?

Luckily, my RTX 4080 Super doesn't require driver updates for functionality, unlike the new Blackwell GPUs. The problem is I'm missing out on important support updates for games; is it worth it to avoid any annoying bugs, though? The simple answer is yes.

I'm still using Game Ready Driver 572.47 from February, which has been the most stable for me. It came after I ran into the notorious black screen issue when installing a new GPU driver and attempting to reboot my system, ultimately pushing me to roll back to 572.47.

You could say I'm paranoid or overreacting, but I don't think I'm wrong in saying that caution is warranted with recent Team Green updates – and I know I'll have to take the risk eventually, but I don't think I'll do so until it's absolutely necessary...

You may also like...

• Nvidia's new Game Ready Drivers appear to be so bad that game developers are warning gamers to stay away
• AMD looks like it’s losing the GPU war based on new Steam survey, with Nvidia’s RTX 5060 Ti proving itself to be popular already
• Nvidia and MediaTek’s rumored gaming laptop chip could match the RTX 4070’s performance – and that’d be a potential game-changer for handhelds

The Fantastic Four: First Steps is less than two months from release – and, to celebrate, Marvel has released a new trailer for its final movie of 2025.

Unveiled today (June 4), the teaser contains plenty of footage we've seen in First Steps' other trailers. However, there are a couple of references – one visual and one audio – that confirm two of the worst-kept secrets about the Marvel Phase 6 film's plot. Potentially big spoilers immediately follow the embedded trailer below, so turn back now if you don't want to know anything!

The trailer's first big reveal occurs at the 0:17 mark and, as if further confirmation was needed, reveals that Franklin Richards will appear in The Fantastic Four's next big-screen outing.

The son (and first-born child!) of Reed Richards/Mister Fantastic and Sue Storm/The Invisible Woman, Franklin is one of the most powerful superhumans in Marvel comic book history. You can read more about him in a previous article of mine that covered a CinemaCon 2025 teaser that confirmed a big fan theory about Sue Storm. The fan theory in question? That Franklin would make his live-action debut in this film.

Meanwhile, the other big reference that the latest Marvel Cinematic Universe (MCU) movie's trailer contains concerns Ben Grimm/The Thing.

Jump to the 0:47 mark of said teaser, and you'll hear Johnny Storm/The Human Torch ask The Thing "Is it Clobberin' Time?", which The Thing replies "Hell yeah!".

Marvel devotees will immediately recognize this catchphrase but, for those who don't know, "It's Clobberin' Time!" is The Thing's most famous saying in Marvel literature. Until now, the cast and crew of one of 2025's most exciting new movies wouldn't confirm if Grimm – or anyone, for that matter – would say it in First Steps. Well, now we have our answer.

As a family, they're unstoppable. Tickets for #TheFantasticFour: First Steps in IMAX are on sale now! https://t.co/liJpJh2idi #FilmedForIMAX pic.twitter.com/QIASNW3mB7June 4, 2025

As Marvel ramps up its promotional campaign for the iconic quartet's arrival in the MCU, we've learned plenty more about what to expect from The Fantastic Four: First Steps.

Most recently, First Steps' runtime and a bunch of major story spoilers appeared online. Before then, Marvel confirmed a First Steps prequel comic would be released ahead of the movie's arrival. Oh, and a leaked Lego set gave us our first proper look at Galactus, aka the superhero flick's Big Bad.

Throw in The Fantastic Four: First Steps' official trailer revealing our first look at Julia Garner's Silver Surfer and Mister Fantastic's stretchy powers, the superteam being announced as part of the initial 27-strong cast for Avengers: Doomsday, and – spoiler – the group appearing in Thunderbolts' post-credits scene, and things have been looking pretty *ahem* fantastic for fans of Marvel's First Family. Roll on July 25, ie the date that The Fantastic Four: First Steps will be released in theaters worldwide.

You might also like

• Avengers: Doomsday could spell the end for another original Avenger as Marvel actor's thank you video sparks MCU exit rumors
• Spider-Man: Brand New Day reportedly set to feature one of the first Avengers in a big role, but I hope it's not true for two huge reasons
• The Marvel multiverse saga isn't over yet, but these X-Men movie casting rumors are already making me rage like Wolverine

• Security researchers Wiz find four major DevOps tools being abused
• The misconfigurations allow threat actors to deploy cryptocurrency miners
• A quarter of all instances are at risk, so users should be on their guard

Cybercriminals have been spotted abusing misconfigurations in popular public DevOps tools to deploy cryptocurrency miners - generating valuable tokens, while raking up huge electricity and computing bills for their victims.

Security researchers from Wiz Threat Research spotted the campaign and attributed it to a threat actor named JINX-0132.

Apparently, the crooks target many DevOps tools, but four stood out: Nomad, Consul, Docker Engine API, and Gitea.

Mitigation measures

The first two are built by HashiCorp: Nomad is a workload orchestrator that schedules and manages the deployment of containers, virtual machines, and standalone applications across clusters, while Consul is a service networking solution that provides service discovery, health checking, configuration, and segmentation for distributed applications.

Docker Engine API is a RESTful API that allows developers and automation tools to interact with the Docker daemon to manage containers, images, networks, and volumes, and Gitea is a self-hosted Git service that provides source code hosting, issue tracking, code review, and collaborative development tools through a web interface.

“Misconfiguration abuse by threat actors can often go under defenders’ radar, especially if the affected application isn’t well known as an attack vector,” the researchers explained.

“A key characteristic of JINX-0132's methodology is the seemingly deliberate avoidance of any unique, traditional identifiers that could be used by defenders as Indicators of Compromise. Instead of utilizing attacker-controlled servers for payload delivery, they download tools directly from public GitHub repositories.”

The problem seems to be quite widespread, too, as up to a quarter of all cloud users could be exposed. In the report, the researchers said that 25% of all cloud environments are running at least one of the four technologies listed above. What’s more, at least 20% are running HashiCorp Consul.

"Of those environments using these DevOps tools, five percent expose them directly to the Internet, and among those exposed deployments, 30 percent are misconfigured," the team concluded.

To mitigate the risks, companies should implement strict access controls, conduct regular security audits, and perform frequent vulnerability assessments. Furthermore, they should not stall on applying patches, and should monitor their systems for abnormal resource usage.

Finally, they should secure DevOps environments against misconfigurations, restrict unauthorized command execution, and strengthen their authentication measures.

Via The Register

You might also like

• Entire Brazilian population potentially put at risk by major data leak
• Take a look at our guide to the best authenticator app
• We've rounded up the best password managers