Latest Tech News

Stay updated with the latest in technology, AI, cybersecurity, and more

Filtered by: xp Clear Filter

The best microSD cards for the Nintendo Switch 2

engadget.com Unknown 2026-01-03 11:00:37

Engadget has been testing and reviewing consumer tech since 2004. Our stories may include affiliate links; if you buy something through a link, we may earn a commission. Read more about how we evaluate products . If you're lucky enough to have a new Nintendo Switch 2 in hand right now, you're probably filling it up with old and new games alike. The console comes with 256GB of storage built in; that's eight times more than the original Switch and four times more than the Switch OLED. But the new

Topics: card cards express microsd switch
Read More
Shop Amazon

Apache HTTP Server: 'RewriteCond expr' always evaluates to true

news.ycombinator.com Unknown 2026-01-03 05:20:52

*) SECURITY: CVE-2025-54090 : Apache HTTP Server: 'RewriteCond expr' always evaluates to true in 2.4.64 (cve.mitre.org) A bug in Apache HTTP Server 2.4.64 results in all "RewriteCond expr ..." tests evaluating as "true". Users are recommended to upgrade to version 2.4.65, which fixes the issue. Reviewed By: covener, ylavic, gbechis, jorton git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1927361 13f79535-47bb-0310-9956-ffa450edef68

Topics: 64 apache cve expr org
Read More
Shop Amazon

Shattering the Rotation Illusion: The Attacker View & AWSKeyLockdown

news.ycombinator.com Unknown 2026-01-03 14:07:17

PDF Report Shattering the Rotation Illusion: How Quickly Leaked AWS Keys are Exploited Download Now -> Through the Attacker’s Eyes: A New Era of NHI Security This final installment in our blog series brings together everything we’ve uncovered about leaked AWS Access Keys—how attackers exploit them, why traditional security measures fall short, and what organizations can do to protect themselves. Over the series, we explored real-world scenarios across various platforms: GitHub and GitLab, Pac

Topics: access attackers aws exposed keys
Read More
Shop Amazon

CVE-2025-54090: Apache HTTP Server: 'RewriteCond expr' always evaluates to true

news.ycombinator.com Unknown 2026-01-03 11:20:52

*) SECURITY: CVE-2025-54090 : Apache HTTP Server: 'RewriteCond expr' always evaluates to true in 2.4.64 (cve.mitre.org) A bug in Apache HTTP Server 2.4.64 results in all "RewriteCond expr ..." tests evaluating as "true". Users are recommended to upgrade to version 2.4.65, which fixes the issue. Reviewed By: covener, ylavic, gbechis, jorton git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1927361 13f79535-47bb-0310-9956-ffa450edef68

Topics: 64 apache cve expr org
Read More
Shop Amazon

ServiceNow lifts guidance on AI growth

cnbc.com Samantha Subin 2026-01-04 08:29:02

Bill McDermott, Chairman, President & CEO ServiceNow, speaking on CNBC's Squawk Box at the World Economic Forum Annual Meeting in Davos, Switzerland on Jan. 17th, 2024. ServiceNow posted strong second-quarter results and lifted its guidance Wednesday. Shares climbed 7% following the report. Here's how the company performed compared to LSEG estimates: Earnings per share: $4.09 adjusted vs. $3.57 expected $4.09 adjusted vs. $3.57 expected Revenue: $3.22 billion vs. 3.12 billion expected Subsc

Topics: 12 billion company expected vs
Read More
Shop Amazon

What to know about ToolShell, the SharePoint threat under mass exploitation

arstechnica.com Unknown 2026-01-04 08:14:40

Government agencies and private industry have been under siege over the past four days following the discovery that a critical vulnerability in SharePoint, the widely used document-sharing app made by Microsoft, is under mass exploitation. Since that revelation, the fallout and the ever-increasing scope of the attacks have been hard to keep track of. What follows are answers to some of the most common questions about the vulnerability and the ongoing exploitation of it, which collectively is be

Topics: exploitation microsoft security sharepoint vulnerability
Read More
Shop Amazon

Trump’s AI Action Plan aims to block chip exports to China but lacks key details

techcrunch.com Rebecca Szkutak 2026-01-04 17:39:36

The Trump administration wants its AI technology to be considered an industry leader both on home soil and abroad. But it also doesn’t want the U.S.’s AI prowess to empower or embolden a foreign adversary. That’s quite the balance to strike. If President Trump’s AI Action Plan, which was released on Wednesday, is any indicator, the administration seems to still be figuring out the right course of action to achieve those goals. “​​America currently is the global leader on data center construct

Topics: administration ai chip export plan
Read More
Shop Amazon

ExpressVPN patches Windows bug that exposed remote desktop traffic

engadget.com Unknown 2026-01-04 22:15:07

The vulnerability would have been hard to exploit, but might have leaked the real IP addresses of RDP users. ExpressVPN has released a new patch for its Windows app to close a vulnerability that can leave remote desktop traffic unprotected. If you use ExpressVPN on Windows, download version 12.101.0.45 as soon as possible, especially if you use Remote Desktop Protocol (RDP) or any other traffic through TCP port 3389. ExpressVPN announced both the vulnerability and the fix in a blog post earlie

Topics: 3389 expressvpn patch traffic vulnerability
Read More
Shop Amazon

CISA warns of hackers exploiting SysAid vulnerabilities in attacks

bleepingcomputer.com Unknown 2026-01-05 17:30:15

CISA has warned that attackers are actively exploiting two security vulnerabilities in the SysAid IT service management (ITSM) software to hijack administrator accounts. The two unauthenticated XML External Entity (XXE) flaws, tracked as CVE-2025-2775 and CVE-2025-2776, were reported by watchTowr Labs security researchers in December 2024 and patched in March with the release of SysAid On-Prem version 24.4.60. One month later, watchTowr Labs also published proof-of-concept code, showing that t

Topics: cisa exploited federal sysaid vulnerabilities
Read More
Shop Amazon

Hundreds of organizations breached by SharePoint mass-hacks

techcrunch.com Zack Whittaker 2026-01-05 17:32:09

Security researchers say hackers have breached at least 400 organizations by exploiting a zero-day vulnerability in Microsoft SharePoint, signalling a sharp rise in the number of detected compromises since the bug was discovered last week. Eye Security, a Dutch cybersecurity firm that first identified the vulnerability in SharePoint, a popular server software that companies use to store and share internal documents, said it had identified hundreds of affected SharePoint servers by scanning the

Topics: affected bug exploiting sharepoint vulnerability
Read More
Shop Amazon

QuestDB (YC S20) Is Hiring a Technical Content Lead

news.ycombinator.com Unknown 2026-01-05 22:00:36

About QuestDB As a specialized database, QuestDB stores, processes and analyzes time series data in real-time, with a focus on reliability, extreme performance and simplicity. It provides best-in-class hardware efficiency and robust features, saving costs and accelerating time-to-value. Our open source repository has gathered 16k stars and QuestDB is the fastest growing database in the time-series category, according to DB-Engines . We are a product-first company with a large community of

Topics: content experience questdb team technical
Read More
Shop Amazon

You Can Track Your Sun Exposure With This New App. Here's How to Do It

cnet.com See Full Bio 2026-01-06 08:03:03

If you're facing down the heat wave this summer, there's a new beta app for iPhones from the founder of Twitter, Jack Dorsey, for tracking your exposure to the sun. The Sun Day app is free to testers and so far contains information like sunrise, sunset and UV index in order to assess your potential burn-limit time and, as the app description says, "track your Vitamin D from the sun." Dorsey is currently testing UI updates and a solar noon notification, according to the app notes. In the app, yo

Topics: app day exposure sun uv
Read More
Shop Amazon

US nuclear weapons agency reportedly breached in Microsoft SharePoint attacks

theverge.com Tom Warren 2026-01-06 05:24:26

is a senior editor and author of Notepad , who has been covering all things Microsoft, PC, and tech for over 20 years. Hours after Microsoft revealed hacking groups affiliated with the Chinese government have been exploiting a flaw in its SharePoint software, Bloomberg News reports that the National Nuclear Security Administration has also been breached in the attacks. A single source tells Bloomberg that the department, which provides the Navy with nuclear reactors for submarines, was caught

Topics: bloomberg exploit impacted microsoft sharepoint
Read More
Shop Amazon

YouTube’s latest experiment makes comments feel more like Reddit, if that sounds like an improvement

androidauthority.com Unknown 2026-01-07 03:09:31

Joe Maring / Android Authority TL;DR YouTube is rolling out Reddit-style comment threading to Premium subscribers on Android and iOS. The experiment has been updated so the main comment is threaded to subsequent replies. Threaded comments will remain available until August 14. YouTube’s comments section is going to look a little different for Premium subscribers. The company is rolling out an experiment inspired by Reddit. Earlier this year, YouTube began testing a new threaded comment UI f

Topics: comment experiment replies threaded youtube
Read More
Shop Amazon

Microsoft links Sharepoint ToolShell attacks to Chinese hackers

bleepingcomputer.com Unknown 2026-01-06 16:26:06

Several hacking groups with ties to the Chinese government have been linked to a recent wave of widespread attacks targeting a Microsoft SharePoint zero-day vulnerability chain. They used this exploit chain (dubbed "ToolShell") to breach dozens of organizations worldwide after hacking into their on-premise SharePoint servers. "Microsoft has observed two named Chinese nation-state actors, Linen Typhoon and Violet Typhoon exploiting these vulnerabilities targeting internet-facing SharePoint serv

Topics: actors exploiting microsoft sharepoint vulnerabilities
Read More
Shop Amazon

Better Auth (YC X25) Is Hiring

news.ycombinator.com Unknown 2026-01-07 17:00:10

About us We’re a tiny group of engineers on a mission to democratize high‑quality authentication and to make auth something every developer can truly own. Our open‑source framework is already one of the fastest‑growing auth solutions in the world. It’s trusted by thousands of developers and rapidly adopted by startups and YC companies alike. We’ve grown our community and impact faster than our team and now we’re looking to align the two quickly. What you’ll work on here Collaborating across

Topics: auth developers experience features ll
Read More
Shop Amazon

Dell's XPS 13 is one of the best laptops I've tested this year - here's why

zdnet.com Kyle Kucharski 2026-01-08 03:43:03

Dell XPS 13 Copilot+ PC Laptop ZDNET's key takeaways Dell's XPS 13 Copilot+ PC is available for $1,499. It remains a favorite from Dell's lineup for its sleek build, gorgeous display, and impressive battery life. The two USB-C ports are limiting, and the bold design choices aren't for everyone. View now at Best Buy Dell continues to round out its popular XPS line of laptops with machines that attempt to check the boxes for every use case. The latest addition: the XPS 13 (9345): an ultraportab

Topics: 13 dell laptop snapdragon xps
Read More
Shop Amazon

Yes, You Can Still Get Games for Less Than $50. These Are the Best I've Played

cnet.com See Full Bio 2026-01-09 10:45:00

It's hard to express just how good this game is. Sandfall Interactive's Claire Obscur: Expedition 33 feels as impactful and genre-defining as ground-breaking Japanese-style roleplaying games before it, like Final Fantasy. It mixes classic turn-based combat with real-time action gameplay, giving the combat a new yet familiar feel. The story pulls you in right from the start with its melancholy tone and gorgeous French setting, and the cast of characters will no doubt be forever etched into video

Topics: 33 combat don expedition game
Read More
Shop Amazon

ExpressVPN bug leaked user IPs in Remote Desktop sessions

bleepingcomputer.com Unknown 2026-01-10 17:06:08

ExpressVPN has fixed a flaw in its Windows client that caused Remote Desktop Protocol (RDP) traffic to bypass the virtual private network (VPN) tunnel, exposing the users' real IP addresses. One of the key premises of a VPN is masking a user's IP address, allowing users to stay anonymous online, and in some cases, bypass censorship. Failing to do so is a severe technical failure for a VPN product. ExpressVPN is a leading VPN service provider, consistently rated among the top VPN services, and

Topics: expressvpn rdp user users vpn
Read More
Shop Amazon

Microsoft SharePoint servers are under attack because of a major security flaw

theverge.com Jess Weatherbed 2026-01-11 21:01:03

Hackers have exploited vulnerabilities in Microsoft’s SharePoint software, placing tens of thousands of on-premises servers used by global businesses and agencies at risk. Microsoft issued an alert on Saturday disclosing that it was aware of “active attacks,” and that it was working to patch the zero-day exploit. Researchers at Eye Security first identified the vulnerability on July 18th, which allows hackers to access certain on-premises versions of SharePoint and steal keys that can let them

Topics: exploit hackers microsoft servers sharepoint
Read More
Shop Amazon

Phishers have found a way to downgrade—not bypass—FIDO MFA

arstechnica.com Unknown 2026-01-12 00:07:21

Researchers recently reported encountering a phishing attack in the wild that bypasses a multifactor authentication scheme based on FIDO (Fast Identity Online), the industry-wide standard being adopted by thousands of sites and enterprises. If true, the attack, reported in a blog post Thursday by security firm Expel, would be huge news, since FIDO is widely regarded as being immune to credential phishing attacks. After analyzing the Expel write-up, I’m confident that the attack doesn’t bypass F

Topics: attack device expel fido security
Read More
Shop Amazon

How I keep up with AI progress

news.ycombinator.com Unknown 2026-01-12 05:36:39

Last Updated: 30th June 2025 Generative AI has been the fastest moving technology I have seen in my lifetime. Its also happens to be terribly misunderstood. We have already seen large companies and even governments ship dysfunctional or even dangerous AI products. Sufficiently uninformed people misunderstand how to apply AI with concretely negative consequences. The most common errors of misunderstanding are either underestimation (“it’s all hype that will blow over”) or overestimation (“I do

Topics: ai expect link sample twitter
Read More
Shop Amazon

How I keep up with AI progress (and why you must too)

news.ycombinator.com Unknown 2026-01-12 11:36:39

Last Updated: 30th June 2025 Generative AI has been the fastest moving technology I have seen in my lifetime. Its also happens to be terribly misunderstood. We have already seen large companies and even governments ship dysfunctional or even dangerous AI products. Sufficiently uninformed people misunderstand how to apply AI with concretely negative consequences. The most common errors of misunderstanding are either underestimation (“it’s all hype that will blow over”) or overestimation (“I do

Topics: ai expect link sample twitter
Read More
Shop Amazon

Exposed MCP servers across the internet

news.ycombinator.com Knostic Team 2026-01-12 17:29:50

Knostic’s research team conducted a systematic study to locate exposed MCP servers on the internet. Leveraging Shodan and custom Python tools, we fingerprinted and mapped production MCP servers. All servers we discovered were insecure and revealed their capabilities to anyone asking. In this series of posts, we are sharing our findings, along with a guide detailing how we fingerprinted MCP servers. We identified a total of 1,862 MCP servers exposed to the internet. From this set, we manually v

Topics: exposed mcp server servers tools
Read More
Shop Amazon

Exposing the Unseen: Mapping MCP Servers Across the Internet

news.ycombinator.com Knostic Team 2026-01-13 11:29:50

Knostic’s research team conducted a systematic study to locate exposed MCP servers on the internet. Leveraging Shodan and custom Python tools, we fingerprinted and mapped production MCP servers. All servers we discovered were insecure and revealed their capabilities to anyone asking. In this series of posts, we are sharing our findings, along with a guide detailing how we fingerprinted MCP servers. We identified a total of 1,862 MCP servers exposed to the internet. From this set, we manually v

Topics: exposed mcp server servers tools
Read More
Shop Amazon

Modular Interpreters and Visitors in Rust with Extensible Variants and CGP

news.ycombinator.com Unknown 2026-01-11 14:16:51

Programming Extensible Data Types in Rust with CGP - Part 2: Modular Interpreters and Extensible Visitors Posted on 2025-07-09 Authored by Soares Chen Discuss on Reddit, GitHub or Discord. This is the second part of the blog series on Programming Extensible Data Types in Rust with CGP. You can read the first part here. As a recap, we have covered the new release of CGP v0.4.2 which now supports the use of extensible records and variants, allowing developers to write code that operates on an

Topics: code context mathexpr output type
Read More
Shop Amazon
Trending Topics
Hot Now
ai 3666 apple 3044 new 2419 google 2036 content 1735
Popular
like 1506 company 1433 pro 1339 iphone 1180 app 1133 zdnet 1116 said 1071 data 1054 does 910 reviews 895
Emerging
editorial 874 amazon 863 game 811 samsung 780 phone 768 pixel 761 android 743 just 724 users 689 available 686
About GoKawiil

GoKawiil is a project by nerdhub.co that curates technology news from trusted sources. We built this site to provide a cleaner, more mobile-friendly experience without intrusive ads or heavy JavaScript.

Privacy

Your privacy matters. GoKawiil doesn't use Google Analytics or Facebook Pixel. The only tracking occurs through affiliate links to Amazon.

Advertising

Interested in advertising? Contact us at [email protected]