Feed aggregator

• Samsung and Xiaomi have removed the AdGuard VPN app from their official app stores in Russia at the government's request
• Apple already killed AdGuard VPN in 2024, alongside at least 60 VPN apps
• Over 100 VPNs are currently unavailable in the Apple App Store, with 50 also unavailable in the Google Play Store

UPDATE: AdGuard confirmed to TechRadar that Xiaomi also removed its VPN app from its Russian App Store at Roskomnadzor's request on May 16, 2025, after publication. We edit the article to reflect this.

Yet another VPN service has disappeared from official app stores in Russia.

This time, Samsung has removed the AdGuard VPN app from its Galaxy App Store in the country at the Roskomnadzor's demand.

A day after, on May 16, 2025, the tech giant Xiaomi also did the same, killing the provider's VPN application from its Russian app store after receiving a removal order from the country's censoring body.

This comes as part of the Kremlin's actions against VPNs that have seen over 100 apps disappear from the Russian Apple App Store, including some of the best VPN services on the market.

Despite Google seemingly resisting most of these demands so far, recent data shows that at least 53 VPNs are also currently unavailable in the Google Play Store in Russia. AdGuard VPN, however, hasn't been affected yet.

"A regrettable development"

"Our app has indeed been removed from the Samsung Store in Russia – a regrettable development, in our view," AdGuard CPO, Denis Vyazovoy, told TechRadar.

The VPN service has received a synthetic email from Samsung (see image below) to inform that its "application information has been modified."

The change? "Russia was excluded from the sales country lists according to Russian government's request. This app is banned by Russian government," reads the email.

Xiaomi has sent a similar communication to the provider (see image below), noting that "Distribution of VPN applications in Russia is not allowed. Therefore, we have to remove your application from Russia."

AdGuard VPN was already among the virtual private network (VPN) services affected by the big purge from Russia's Apple App Store last year. Unavailable apps also include some of TechRadar's favorites, such as NordVPN, ExpressVPN, and Proton VPN, but also the popular Russian service Amnezia VPN.

The provider confirmed to TechRadar, though, that its app is still available in Russia's Google Play Store at the time of writing.

It's also worth noting that these removals only affect Russia-based users. The AdGuard VPN app is still available across all official app stores outside Russia.

Image 1 of 2

(Image credit: AdGuard)Samsung's email to AdGuardImage 2 of 2

(Image credit: AdGuard)Xiaomi's email to AdGuard

"We see this as part of a broader trend of restricting access to tools that help people protect their privacy and maintain access to an open internet," Vyazovoy told TechRadar.

The Kremlin's actions against VPNs have intensified since a law enforced in March 2024 criminalized the spread of information about ways to circumvent internet restrictions. This is likely the legal basis upon which the Russian censor body is issuing these demands to Big Tech firms.

Yet, experts have long called on these companies to uphold Russian citizens' human rights by refraining from cooperating with these demands and restoring censored VPN apps.

Vyazovoy confirmed to TechRadar that the service continues to operate through other channels and the provider is actively looking for ways to remain accessible to all users.

If you are using a Galaxy or Xiaomi smartphone, I recommend downloading the AdGuard VPN app from the Google Play Store, where the service is still available at the time of writing.

The provider also suggests downloading it directly from their official website to be sure to get the latest and safest version.

TechRadar needs you! We want to know what you think about the world of VPNs. Whether you're a novice or a VPN pro, we want to hear your thoughts. Don't worry, though, your responses are completely anonymous, and it takes less than five minutes to complete!

To take part, click the link below: https://futurenet.questionpro.eu/tr-vpn

You might also like

• Russia demands over 200 VPNs are removed from the Play Store – but Google is resisting
• Russia to invest over half a billion US dollars in its battle against VPN usage
• Russia disconnects several regions to test its sovereign net

ISO 25000 defines "software security" as a key pillar of product quality, performance, maintainability, and reliability. But in practice, cybersecurity is often an afterthought, deprioritized in the name of speed and innovation, resulting in a growing disconnect between quality and security. The recent case of DeepSeek is a perfect example. Despite rapid product development and cost efficiency, the company failed most of its security tests, exposing major flaws in its risk posture.

This isn't an isolated incident. Across various stakeholders and industries, "quality" means different things depending on who you ask. Developers may view it as bug-free functionality, designers may point to user experience, and executives may care most about time to market, ROI, and customer satisfaction. Meanwhile, security often sits outside those priorities—treated as a compliance box or post-release concern.

The result? A widening divide. Organizations take an average of 55 days to fix just half of critical vulnerabilities. Attackers don't need nearly that long. Exploits from CISA's Known Exploited Vulnerabilities catalog often circulate within five days of discovery. That's a 50-day exposure window, and that's if you're among the faster teams. Most aren't.

To close this gap, teams must move beyond reactive security measures and adopt a proactive, integrated approach to quality—one that treats security as a core part of the development lifecycle, not something bolted on at the end.

Data Flow Vulnerabilities: The Hidden Security Risk

Modern quality assurance (QA) is built around fast, repeatable feedback. Fail a test, file a bug, and fix it before it hits production. Teams are fluent in this rhythm. But when it comes to security issues, the rhythm breaks. Often, the assumption is that vulnerabilities weren't detected in time. But the real problem isn’t just detection, it’s a breakdown in how security signals flow through the development lifecycle.

Security tools generate noisy and low-quality signals, leading to false positives and negatives. And, with the rise of proactive, left-sided practices—like threat modeling, IDE plugins, pre-commit hooks, and early scans—the volume of signals has only increased. Tools like SAST, DAST, and dependency scanners flood teams with thousands of alerts. Without a structured way to prioritize, sort, and assign these issues, developers fall back to what they know, and security becomes background noise, the divide deepens, and the path to resolution blurs.

To fix this, teams need to treat vulnerabilities like they treat bugs—because that's precisely what they are. Whether it's a flaky unit test or a known SQL injection risk, both represent a failure state and require prioritization. When security signals are pulled into the same systems developers already use—issue trackers, test automation, CI/CD pipelines—they get handled like any other failure, not ignored or delayed.

The Lag Is in the Handoff, Not the Discovery

Delayed security fixes put businesses, customers, and reputations at risk. It's tempting to think that catching vulnerabilities sooner will solve everything. But most teams already know where their weaknesses are. The current lag isn't about visibility. It's about propagation. Security alerts travel on a different track than everything else. QA teams test, triage, and file bugs as part of their day-to-day job. But AppSec alerts? They get forwarded. They live in separate tools. They sit on spreadsheets that no sprint team is ever going to open.

A single static scan can produce thousands of results; most go untouched without a structured way to sort through them. According to a Ponemon Institute survey, 61% of IT and security professionals struggle to remediate vulnerabilities effectively. Only 20% believe they can reliably detect vulnerabilities before an application is released.

Once a vulnerability is known to the public, the clock is ticking. Exploits circulate quickly. By the time a team triages the alert, assigns it, and discusses a fix, the damage may already be done. And the fallout can be painful.

Victims of data breaches underperform the NASDAQ by 8.6% after a year—and more than 11% after two years. Customers don't easily forget, either. More than half (66%) of U.S. consumers say they wouldn't trust a company again after a breach, and 44% believe cyber incidents directly result from poor security measures. That trust is hard to rebuild, and the "patch later" mindset won't cut it anymore. Businesses can't afford to wait until the next release cycle to address known issues. So, what's the better approach?

Everything changes if you reframe those alerts as just another signal source—equivalent to a failed unit test. Developers already know how to act on that kind of data. They know how to prioritize based on severity and reproducibility, when to flag issues for later, and when to fix them immediately. Security can fit that mold. It just hasn't been given a seat at the table.

Align Security with Agile and Continuous Deployment

Perfect software doesn't exist. Teams deploy with known bugs all the time because getting the product out the door matters more than perfecting every edge case. Security should be viewed similarly: not every vulnerability must be fixed before release, but every risk should be known, tracked, and managed. That's how mature teams work—not by pretending every build must be flawless but by making tradeoffs with their eyes open.

This doesn't mean every security issue needs to block deployment. Just like teams go to market with known minor bugs, they can also do it with low-priority vulnerabilities—so long as there's visibility and a plan.

Deploying with a known issue is one thing. Deploying with a critical vulnerability no one's aware of is something else entirely. When teams pull security data into the same locations they manage tests and bugs, those tradeoffs become more intentional. The product team knows what's at stake, the security team has visibility, and teams can jump on it fast if something changes.

Embed Security Testing Throughout the Development Lifecycle

Security is a lifecycle, not a checklist. It should be embedded into planning, implementation, testing, and monitoring. Address risks early in planning to prevent coding vulnerabilities, integrate testing findings into sprint cycles for timely remediation, and implement post-deployment scans to defend against new threats. This proactive, lifecycle-wide approach shifts security from a daunting challenge to a manageable process, prioritizing strategic risk mitigation over chasing perfection.

Additionally, all teams, regardless of size or resources, stand to gain from leveraging a comprehensive suite of tools that bring security, quality, and testing together under one roof. When signal sources are fragmented across disconnected systems, teams lose time chasing context and resolving conflicts between tools. But with a unified platform, organizations can centralize insights, reduce noise, and make faster, more informed decisions.

This integrated approach helps security shift from a bottleneck to a core enabler of speed and resilience. Instead of reacting to siloed alerts, teams can respond to prioritized, correlated findings within the workflows they already use—accelerating resolution without compromising risk management.

The Stakes Are Already Too High to Wait

The fastest, most effective teams don't just build quickly. They build securely by embedding security into the systems they already trust. They treat security bugs like any other failure and make tradeoffs based on visibility, not guesswork.

Teams that close the gap between security and quality will be better equipped to deliver resilient, high-performing software at speed. By integrating security throughout the development lifecycle—with structured prioritization, continuous feedback loops, and tools that unify signals across teams—organizations can reduce risk, protect their reputation, and earn lasting customer trust.

When done right, security becomes part of the rhythm of development, not a disruption.

We've made a list of the best patch management software.

This article was produced as part of TechRadarPro's Expert Insights channel where we feature the best and brightest minds in the technology industry today. The views expressed here are those of the author and are not necessarily those of TechRadarPro or Future plc. If you are interested in contributing find out more here: https://www.techradar.com/news/submit-your-story-to-techradar-pro

As a teenager, Joseph Bond fought in Vietnam. Later he started a family and worked for the city of Philadelphia for 35 years. After retiring, there was something he needed — to finish high school.

Ninety-two people were confirmed dead in the rubble of the building. The building was the only one in Thailand to collapse in the earthquake that was centered in neighboring Myanmar.

(Image credit: Sakchai Lalit)

• Android users now can't upload all files to Nextcloud, just because Google revoked a permission
• Nextcloud says Google is punishing smaller competitors while protecting its own apps from restrictions
• Nextcloud users now get a worse app experience, not because of failure, but gatekeeping

The ability to seamlessly upload all types of files from Android to the cloud has become a baseline expectation for modern users, especially those who rely on services like Nextcloud to manage their data.

In a move that has sparked a backlash, Google has blocked full file upload capabilities in the Nextcloud Files Android app, citing “security concerns.”

This single policy change has significantly affected how users interact with one of the leading cloud storage services available today, raising broader questions about fairness, power, and competition in the digital ecosystem.

Nextcloud claims unfair treatment under the guise of security

While users can still upload media files such as photos and videos, a core feature for anyone seeking the best cloud storage for photos, Nextcloud has been forced to disable uploads for all other file types on Android.

According to Nextcloud, the issue stems from Google’s refusal to grant an essential file permission that the app has used since 2011. This is the “All files access” permission, which allows an app to read and write all files on a device’s shared storage, not just media files.

“To make it crystal clear: All of you as users have a worse Nextcloud Files client because Google wanted that. We understand and share your frustration, but there is nothing we can do,” the company said in a press release.

Nextcloud argues that this is not merely a technical issue but a strategic one. The company claims it is being boxed out, not for security reasons, but because it poses a competitive threat to Google’s own cloud ecosystem.

“Google owning the platform means they can - and are - giving themselves preferential treatment,” the company states, noting that Google’s own apps, as well as those from other Big Tech players, continue to enjoy the same permissions that Nextcloud has now been denied.

Google’s recommendation to use alternative frameworks like the MediaStore API or SAF has not solved the issue. Nextcloud explains that these options don’t meet its requirements, and reviewers have misunderstood their functionality.

The situation echoes Microsoft’s past tactics in limiting WordPerfect’s access to Windows APIs, a historical parallel that Nextcloud readily invokes.

Under the guise of user safety, Nextcloud claims, Google is making it harder to compete, particularly for smaller developers offering privacy-focused cloud backup solutions.

While regulators are tasked with addressing such concerns, Nextcloud notes that progress is slow. A collective complaint filed in 2021 alongside 40 other organizations for a similar issue has yet to receive a response.

You might also like

• Take a look at our roundup of the best business VPNs available now
• These are the best cloud document storage solutions to choose from
• Nvidia CEO wants Saudi Arabia to become a global AI leader

• iFi UP Travel connects wireless headphones to in-flight entertainment
• Stream audio over Bluetooth to in-car audio systems, too
• $99 / £99 / €99 (about AU$205)

iFi's new UP Travel solves two common issues for travellers: using your wireless headphones with in-flight entertainment that was made for cabled connections, and streaming music to in-car entertainment and other audio systems that don't do Bluetooth audio.

The UP Travel is a two-way Bluetooth adapter that you can use to stream from in-flight systems to your headphones, or from your phone to a vehicle or audio product's aux-in port.

The device enables you to pair and listen on two sets of headphones at once, though its battery is good for 10 hours, so it might not make it through the longest of flights.

It's got a mic with noise and echo suppression for clear calls when you're back on the ground, because why not.

iFi the friendly skies

The UP Travel isn't just a wireless dongle. It's a proper DAC too. Instead of having the Bluetooth chipset handle the wireless and the audio too, the Bluetooth module focuses purely on transmission and reception while the audio conversion is handled by a Cirrus Logic MasterHIFI DAC and iFi's bespoke clocking circuitry, just like in iFi's larger portable DACs.

The supported codecs cover all the essentials (although availability depends on your device and what it supports) including aptX Adaptive, aptX HD, aptX Low Latency, LDAC, SBC, AAC and LHDC/HWA. And in a nice touch you can change codecs, so for example you might want the highest possible quality for listening to music but switch to something with lower latency to stay in sync with the in-flight movie.

The iFi UP Travel is $99 / £99 / €99 (about AU$205).

The iFi GO Pod Air add wireless streaming to your wired IEMs. (Image credit: iFi Audio)

iFi has also launched a second travel-focused product, the iFi GO Pod Air. It's designed for audiophiles who don't want to give up their wired IEMs but who do need the convenience of cable-free listening. It transmits at up to 24-bit/96kHz and supports all the key high quality codecs.

It has built-in mics too, for calls. The GO Pod Air costs $249 / £249 / €249 (about AU$515).

You might also like

• Best travel camera for 2025: top choices for your adventures
• The best travel headphones 2025, from Bose, Sony and more
• The best eSIM for international travel you can buy today

Technology is constantly changing the world and how we live in it. It’s become a critical part for every organization; most wouldn’t be able to operate without it. Some recent technology innovations are exciting — like AI. With all the buzz around AI, many organizations quickly jumped at the opportunity to implement it, while others were wary. Many feel like they “should” be using it and worry about losing their competitive edge without it.

While AI offers some great benefits, it's not necessary for every organization and use case. For some, it can be detrimental, causing a negative return on investment (ROI). If you’re considering adopting AI tools, there may be an alternative better suited to your needs: automation. Let’s discuss determining ROI and if AI is a worthwhile investment.

AI, automation, and weighing their value

Should you incorporate AI into your processes? Would AI bring good value or require too much work to set up? Does AI deliver a good ROI, or are there better options? These are likely all questions that arise as you consider whether or not you want to incorporate AI into your operational processes. Or maybe you’ve already started using AI and have realized it’s not all that you expected it to be.

AI and ROI potential

AI promises to improve efficiency, simplify manual tasks, and generally make our jobs (and lives) easier. However, about 75% of companies struggle to demonstrate a clear return on investment (ROI) for the AI tools they adopt.

ROI is a critical metric to measure; you want to ensure you have enough data to back the investment decision. In my opinion, it’s too early to tell AI’s ROI. We need more time to create a solid measurement framework. Despite this, you can get an idea of AI’s ROI potential for your business with specific indicators:

Leading indicators offer quick, apparent returns. For instance, AI can help put specific tasks, like troubleshooting customer issues, on autopilot. This can save time that your team can put toward revenue-generating tasks.

Lagging indicators take time to show their benefits. For example, customer satisfaction improves because AI enhances the self-service experience.

Consider the leading and lagging indicators specific to your organization and what success would look like for you in these terms.

Before investing in AI, the most important thing to consider is: does this use case need human-like intelligence, or does it fall into a more structured logic category? AI is complex, autonomous, and flexible. It excels in situations that require open-ended problem-solving. AI can adapt, reason, and evolve through interactions. It is great for tasks that require human reasoning, like helping a customer troubleshoot a problem in real time.

There are a few downsides to consider with AI. It comes with significant data and privacy risks and can be unpredictable. It may also require significant training to avoid undesirable outcomes and “hallucinations.”

Automation and ROI potential

Many use automation and AI interchangeably. While both can enhance productivity, efficiency, and ROI, they differ and offer distinct benefits.

Automation has been shown to improve ROI significantly. Automation differs from AI in that it executes pre-defined, rule-based tasks automatically. It’s ideal for situations where fast, reliable outcomes are necessary to achieve business goals. Automation is great for functions that don’t require human reasoning.

I like to call these "if this, then that" scenarios. For example, if a customer fills out a lead form on your website, you can have automation set to send a pre-written confirmation email automatically. Automation doesn’t require complex, human-like reasoning to execute a task. It saves time, maintains compliance, ensures data quality, and boosts employee productivity and satisfaction. It’s an excellent solution for repetitive tasks with clear, predefined outcomes.

Automation has a couple of downsides if you need help accomplishing more complicated tasks. Automation tools are limited — they can only achieve the tasks they are programmed to perform. They are not adaptable and can’t handle complex tasks. For example, automation can send a new lead a confirmation email, but it cannot interact with them independently. However, it can be argued that automation is still beneficial because it frees up valuable time that your team can use toward more complicated tasks.

Good ROI is critical — the right technology can help

Better productivity means better profit, no matter which way you slice it. Technology today can help you achieve both — but with so many options, it’s hard to know which tools are worthwhile. Before investing, you must carefully consider what use cases are better for AI versus automation and how these technologies will impact your organization and customers.

For many businesses, the need for technology is simply about increasing efficiency and saving time. Automation is an excellent solution for specific manual tasks that are a necessity to daily operations — such as document generation, contract management, or eSign software. If your team’s main bottleneck is administrative overhead, automation can provide immediate ROI, without the need for an AI solution.

We've compiled a list of the best document management software.

This article was produced as part of TechRadarPro's Expert Insights channel where we feature the best and brightest minds in the technology industry today. The views expressed here are those of the author and are not necessarily those of TechRadarPro or Future plc. If you are interested in contributing find out more here: https://www.techradar.com/news/submit-your-story-to-techradar-pro

The Apollo during the 2019 Tribeca Film Festival on April 24, 2019, in New York.'/>

Motown legend Smokey Robinson is being criminally investigated by the Los Angeles County Sheriff's Department following allegations accusing him of a series of sexual assaults.

(Image credit: Charles Sykes/Charles Sykes/Invision)

Georgia's law that restricts abortion once cardiac activity is detected doesn't allow relatives to have a say in whether a pregnant woman is kept on life support.

(Image credit: Brynn Anderson)

An attorney asked Ventura a series of questions about Ventura admittedly feeling jealous during her relationship with Combs and Ventura begrudgingly planning parts of their sex life.

(Image credit: Jordan Strauss)