Latest Tech News

Stay updated with the latest in technology, AI, cybersecurity, and more

Filtered by: cat Clear Filter

New downgrade attack can bypass FIDO auth in Microsoft Entra ID

news.ycombinator.com Unknown 2025-11-20 17:26:02

Security researchers have created a new FIDO downgrade attack against Microsoft Entra ID that tricks users into authenticating with weaker login methods, making them susceptible to phishing and session hijacking. These weaker login channels are vulnerable to adversary-in-the-middle phishing attacks that employ tools like Evilginx, enabling attackers to snatch valid session cookies and hijack the accounts. Although the attack doesn't prove a vulnerability in FIDO itself, it shows that the syste

Topics: authentication fido login phishing user
Read More
Shop Amazon

Nginx introduces native support for ACME protocol

news.ycombinator.com Prabhat Dixit 2025-11-20 12:41:55

We are very excited to announce the preview release of ACME support in NGINX. The implementation introduces a new module ngx_http_acme_module that provides built-in directives for requesting, installing, and renewing certificates directly from NGINX configuration. The ACME support leverages our NGINX-Rust SDK and is available as a Rust-based dynamic module for both NGINX Open Source users as well as enterprise NGINX One customers using NGINX Plus. NGINX’s native support for ACME brings a variet

Topics: acme certificate certificates challenges nginx
Read More
Shop Amazon

Google will help you pester your friends into turning location sharing on (APK teardown)

androidauthority.com Unknown 2025-11-20 21:52:53

TL;DR Google’s Find Hub combines resources for tracking devices and sharing location with friends and family. Users need to positively consent first before their location is shared with anyone. The app is working to build an easy way for you to request your friends grant that access. Smartphones are picking up new features and abilities all the time, and while some of those are pushed out to us enabled by default, others are going to require us to make the intentional choice to opt in. And wh

Topics: google hub like location sharing
Read More
Shop Amazon

A case study in bad hiring practice and how to fix it

news.ycombinator.com Thomas Kranz 2025-11-21 02:42:13

None of this - none of it at all - is remotely relevant to the actual day-to-day job of a Head of Security Operations. Again, these are questions that cannot be answered appropriately in character-capped text fields. But beyond that, these are questions that should not - ever - be used to screen applicants. Applicants for a role where these requirements are not even remotely relevant. How Their Interview Process Works Having waded through this nonsense, your application finally gets sent. As w

Topics: application company hiring process reviews
Read More
Shop Amazon

The case for commuting by motorcycle

arstechnica.com Unknown 2025-11-21 03:36:32

America has a motorcycle problem. Whereas the rest of the world views two-wheeled motorized transportation as transportation, the US sees motorcycles and scooters as toys. They're not something you use to commute to work or run errands. Instead, they're for riding to the coffee shop on weekends. This is a flawed line of thinking, and I'll tell you why, using two motorcycles as examples. But first, hear me out. I live in Los Angeles, which is famous for its hellacious traffic. For motorcyclists,

Topics: ducati italian monster motorcycles ride
Read More
Shop Amazon

Nginx Introduces Native Support for Acme Protocol

news.ycombinator.com Prabhat Dixit 2025-11-21 06:41:55

We are very excited to announce the preview release of ACME support in NGINX. The implementation introduces a new module ngx_http_acme_module that provides built-in directives for requesting, installing, and renewing certificates directly from NGINX configuration. The ACME support leverages our NGINX-Rust SDK and is available as a Rust-based dynamic module for both NGINX Open Source users as well as enterprise NGINX One customers using NGINX Plus. NGINX’s native support for ACME brings a variet

Topics: acme certificate certificates challenges nginx
Read More
Shop Amazon

Here’s how Google Find Hub satellite location sharing is going to work (APK teardown)

androidauthority.com Unknown 2025-11-21 17:26:52

TL;DR Google announced back in May that the newly renamed Find Hub would be adding support for satellite-based location sharing. That’s still not here yet, but a recent app update reveals text strings that hint at how things will work. Users will be able to share their location once every 15 minutes, with a daily limit on maximum shares. Satellite support is changing the rules of the game when it comes to mobile connectivity, and we are still right now only in the early days of its evolution.

Topics: location satellite string support update
Read More
Shop Amazon

The end of perimeter defense: When your own AI tools become the threat actor

venturebeat.com Louis Columbus 2025-11-22 12:04:55

Want smarter insights in your inbox? Sign up for our weekly newsletters to get only what matters to enterprise AI, data, and security leaders. Subscribe Now Russia’s APT28 is actively deploying LLM-powered malware against Ukraine, while underground platforms are selling the same capabilities to anyone for $250 per month. Last month, Ukraine’s CERT-UA documented LAMEHUG, the first confirmed deployment of LLM-powered malware in the wild. The malware, attributed to APT28, utilizes stolen Hugging

Topics: ai cato malware security simonovich
Read More
Shop Amazon

Pebblebee’s AirTag alternative can now share your real-time location in an emergency

theverge.com Andrew Liszewski 2025-11-24 08:00:00

is a senior reporter who’s been covering and reviewing the latest gadgets and tech since 2006, but has loved all things electronic since he was a kid. Posts from this author will be added to your daily email digest and your homepage feed. In July, Pebblebee announced a new safety feature for its Clip location tracker. Called Alert, it turns the Apple AirTag alternative into a panic alarm. Rapidly pressing the Clip’s button activates a flashing light and loud 97-decibel siren while also trigger

Topics: alert alive clip location pebblebee
Read More
Shop Amazon

Why I ditched Google Authenticator for Proton's new 2FA app - and how to set it up

zdnet.com Jack Wallen 2025-11-24 12:23:00

Proton / Elyse Betters Picaro / ZDNET ZDNET's key takeaways The makers of Proton VPN have released a 2FA app. The app is available for all major platforms. Proton Authenticator is easy to use, elegant, and free. Unless you're using passkeys, two-factor authentication should be considered a must for security and privacy. If your primary access to the internet is your phone, you are probably using a tool like Authy or Google Authenticator. But what about when you're on the desktop? What do y

Topics: app authenticator desktop proton use
Read More
Shop Amazon

UI vs. API. vs. UAI

news.ycombinator.com Josh Beckman 2025-11-26 16:11:50

First we built a user interface (UI) when the application was just going to be operated by humans. There’s a whole branch of study around good and bad patterns in that design practice, focusing on how we make things easily operable by humans. Then we added an application programmable interface (API) when we wanted the application to be operated by other applications - integrated programs. Similarly, there are whole conferences and books about what good design looks like for these interfaces, ai

Topics: application available interface interfaces make
Read More
Shop Amazon

Wikipedia loses UK Safety Act challenge, worries it will have to verify user IDs

arstechnica.com Unknown 2025-11-26 17:48:43

Wikipedia's parent organization lost a challenge to the UK Online Safety Act but can bring another case if the government tries to force it to verify the identity of Wikipedia users. The High Court of Justice in London dismissed claims from the Wikimedia Foundation, which challenged the lawfulness of the categorization system used to determine which sites must comply with obligations. But Justice Jeremy Johnson stressed "that this does not give Ofcom and the Secretary of State a green light to

Topics: category foundation government users wikipedia
Read More
Shop Amazon

Apple Fitness Plus Targets Ozempic Users With New Weight-Loss Partnership

cnet.com See Full Bio 2025-11-27 02:18:00

If you're a FuturHealth member, you'll now have a free membership to Apple Fitness Plus as part of your program. It's Apple Fitness Plus’s first direct integration with a personalized GLP-1 weight loss program. FuturHealth offers personalized weight loss guidance and medications with the help of licensed dietitians and doctors. These include GLP-1 agonists such as semaglutide -- better known as Ozempic. It's partnered with Valisure, a tech company that provides independent quality assurance, to

Topics: fitness glp loss medications weight
Read More
Shop Amazon

Apple Fitness Plus Targets GLP-1 Users With New Weight-Loss Partnership

cnet.com See Full Bio 2025-11-27 08:18:00

If you're a FuturHealth member, you'll now have a free membership to Apple Fitness Plus as part of your program. It's Apple Fitness Plus’s first direct integration with a personalized GLP-1 weight loss program. FuturHealth offers personalized weight loss guidance and medications with the help of licensed dietitians and doctors. These include GLP-1 agonists such as semaglutide -- better known as Ozempic. It's partnered with Valisure, a tech company that provides independent quality assurance, to

Topics: fitness glp loss medications weight
Read More
Shop Amazon

Type (YC W23) is hiring a founding engineer to build an AI-native doc editor

news.ycombinator.com Unknown 2025-11-27 18:19:25

About Type and the Role Type is an AI-native document editor. Our mission is to help people communicate confidently. We believe that writing is and will always be the backbone of clear thinking and effective communication, especially in the AI era. Tools like Type free writers up to do more high-level thinking – exploring more ideas before coming to a conclusion, testing lots of approaches to expressing a message, and arguing with the AI about the oxford comma. We're backed by Y Combinator a

Topics: applications building editing experience product
Read More
Shop Amazon

After researchers unmasked a prolific SMS scammer, a new operation has emerged in its wake

techcrunch.com Zack Whittaker 2025-11-27 18:00:00

If you, like practically anyone else with a cell phone in the U.S. and beyond, have received a scam text message about an unpaid toll or undelivered mail item, there’s a good chance you have been targeted by a prolific scamming operation. The scam isn’t particularly complex, but it has been highly effective. By sending spam text messages that look like genuine notifications for popular services, from postal deliveries to local government programs, unsuspecting victims click a link that loads a

Topics: cat darcula magic mouse operation
Read More
Shop Amazon

What Actually Happens If You Sign Up for One of Those Scammy "Online Jobs" Is Pretty Fascinating

futurism.com Unknown 2025-11-27 17:18:51

Have you been getting unprompted text messages promising "high-paying jobs" or "easy money" for what sounds like suspiciously little work? If so, you're not alone. Job scam texts have proliferated over the past few years, thanks to increasingly sophisticated robotexting tech, lagging regulatory responses, and a cryptocurrency industry run amok. While the levelheaded among us tend to ignore or block these messages, one enterprising journalist decided to go down the rabbit hole and sign up with

Topics: cathy job messages sammon scam
Read More
Shop Amazon

LATAM adds support for AirTag luggage tracking via Apple’s Share Item Location

9to5mac.com Marcus Mendes 2025-11-28 17:51:18

Last month, we reported that, with Saudia now supporting the AirTag luggage tracking program, the official list of supported airlines had grown to 30 globally. Now, Latin America’s largest carrier is also joining in. As reported this week by Folha (via MacMagazine), LATAM, the largest airline group in Latin America, has started supporting AirTag location sharing for passengers on flights within Brazil and across South America. Starting now, customers whose bags are delayed or missing can gener

Topics: airlines airtag group location lufthansa
Read More
Shop Amazon

Instagram’s Map is here, and this is how you can turn your location off

theverge.com Richard Lawler 2025-11-29 02:27:48

is a senior editor following news across tech, culture, policy, and entertainment. He joined The Verge in 2021 after several years covering news at Engadget. Posts from this author will be added to your daily email digest and your homepage feed. It’s only been a couple of days since the Instagram Map launched, and from the looks of our social feeds, people are not happy about it. Responses have ranged from being mildly annoyed that Instagram is ripping off Snapchat’s Snap Maps instead of offe

Topics: feature instagram location map posts
Read More
Shop Amazon

Instagram’s Map is here, and this is how you can turn it off

theverge.com Richard Lawler 2025-11-29 08:27:48

is a senior editor following news across tech, culture, policy, and entertainment. He joined The Verge in 2021 after several years covering news at Engadget. Posts from this author will be added to your daily email digest and your homepage feed. It’s only been a couple of days since the Instagram Map launched, and from the looks of our social feeds, people are not happy about it. Responses have ranged from being mildly annoyed that Instagram is ripping off Snapchat’s Snap Maps instead of offe

Topics: feature instagram location map posts
Read More
Shop Amazon

How to use Instagram Map and protect your privacy

techcrunch.com Aisha Malik 2025-11-29 08:53:44

Following Wednesday’s launch of Instagram’s new Snap Map-like opt-in “Instagram Map” feature — which lets U.S. users share their most recent active location with others and discover location-based content — Instagram head Adam Mosseri is having to reassure people that their location is only visible to others if they decide to share it. Although Meta has made it clear that location sharing is off by default, there have been numerous posts on social media urging users to turn off location sharing,

Topics: feature instagram location map new
Read More
Shop Amazon

Window Activation

news.ycombinator.com Seth Richardson 2025-11-25 20:03:24

You click a link in your chat app, your browser with a hundred tabs comes to the front and opens that page. How hard can it be? Well, you probably know by now that Wayland, unlike X, doesn’t let one application force its idiot wishes on everyone else. In order for an application to bring its window to the front, it needs to make use of the XDG Activation protocol. A KWrite window that failed to activate and instead is weeping bitterly for attention in the task bar In essence, an application ca

Topics: activation application focus token window
Read More
Shop Amazon

I don't read your email threads

news.ycombinator.com Unknown 2025-11-30 14:15:11

I Don't Read Your Email Threads 08 Aug, 2025 Email threads have got to be one of the worst possible forms of communication. You've been here before. A perfectly respectable morning is passing by. You're working through your items at a chipper pace maybe humming a song you heard on Spotify that morning. Then, the dreaded email thread comes through. Innocently, you click into the top email. The only text is "[Your Name] see below." I hate this and I bet you do too. Suddenly, you're transporte

Topics: communication email long thread threads
Read More
Shop Amazon

Age Verification Is Sweeping Gaming. Is It Ready for the Age of AI Fakes?

wired.com Megan Farokhmanesh 2025-11-29 21:30:00

In July, Siyan, a UK-based Discord user, logged on one morning and found himself unable to access some of his text chats marked NSFW. The channel, a popup informed him, was now age-restricted. The United Kingdom had enacted its far reaching child safety laws, which includes an age requirement system to verify users are over 18. Discord’s updates required users to verify their age, either by government ID or a face scan. Siyan (who requested to only be referred to by his screen name for privacy

Topics: age discord face like verification
Read More
Shop Amazon

Instagram's map feature spurs user backlash over geolocation privacy concerns

cnbc.com Jonathan Vanian 2025-11-30 12:12:04

The launch of an Instagram feature that details users' geolocation data illicited backlash from social media users on Thursday. Meta debuted the Instagram Map tool on Wednesday, pitching the feature as way to "stay up-to-date with friends" by letting users share their "last active location." The tool is akin to Snapchat's Snap Map feature that lets people see where their friends are posting from. Although Meta said in a blog post that the feature's "location sharing is off unless you opt in,"

Topics: feature instagram location map said
Read More
Shop Amazon

How to use Instagram Map and set your location-sharing preferences

techcrunch.com Aisha Malik 2025-12-01 08:05:42

This week, Instagram introduced a new Snap Map-like feature called Instagram Map that lets U.S. users share their most recent active location with others and discover location-based content. If you decide to turn on your location on Instagram Map, your location only updates when you open the app or have it running in the background, meaning it doesn’t provide continuous, real-time location updates. This is different from Snap Map, which lets users choose whether their location is updated only w

Topics: feature instagram location map new
Read More
Shop Amazon

Zero-day flaws in authentication, identity, authorization in HashiCorp Vault

news.ycombinator.com Written By 2025-11-30 22:01:42

Introduction: when the trust model can’t be trusted Secrets vaults are the backbone of digital infrastructure. They store the credentials, tokens, and certificates that govern access to systems, services, APIs, and data. They’re not just a part of the trust model, they are the trust model. In other words, if your vault is compromised, your infrastructure is already lost. Driven by the understanding that vaults are high-value targets for attackers, our research team at Cyata set out to conduct

Topics: authentication code mfa root vault
Read More
Shop Amazon

Adam Mosseri says 'people are confused' about how the Instagram map works

engadget.com Unknown 2025-12-01 17:47:40

Yesterday, Meta introduced a new map feature that's almost identical to Snapchat's Snap Map. The feature has quickly sparked a backlash, though, and not just because it's yet another example of Instagram ripping off a Snapchat feature. While the map requires users to opt-in to share their location, many users were surprised and alarmed to see that their Instagram map was already populated with the locations of some accounts when it launched. That's because the map automatically pulls in locatio

Topics: advertisement instagram location map tagged
Read More
Shop Amazon
Trending Topics
Hot Now
ai 3636 apple 3006 new 2395 google 2022 content 1726
Popular
like 1493 company 1421 pro 1315 iphone 1153 app 1128 zdnet 1106 said 1062 data 1049 does 905 reviews 890
Emerging
editorial 869 amazon 857 game 808 samsung 777 phone 764 pixel 757 android 741 just 717 users 685 available 682
About GoKawiil

GoKawiil is a project by nerdhub.co that curates technology news from trusted sources. We built this site to provide a cleaner, more mobile-friendly experience without intrusive ads or heavy JavaScript.

Privacy

Your privacy matters. GoKawiil doesn't use Google Analytics or Facebook Pixel. The only tracking occurs through affiliate links to Amazon.

Advertising

Interested in advertising? Contact us at [email protected]