All the News that Matters

• Ubuntu 25.10 OpenJDK 17 Critical Risk RCE DoS USN-7998-1
  Several security issues were fixed in OpenJDK 17.

• Ubuntu 25.10 OpenJDK 17 Important RMI Info Disclosure 7997-1 CVE-2026-21925
  Several security issues were fixed in CRaC JDK 17.

• Ubuntu 25.10 OpenJDK 25 Critical RCE Information Disclosure 7996-1
  Several security issues were fixed in CRaC JDK 25.

• Ubuntu 25 OpenJDK 25 Important Security Threats USN-7995-1
  Several security issues were fixed in OpenJDK 25.

• Debian 11 ClamAV Important Upgrade Notification DLA-4465-1 Released
  

• Debian 11 xrdp Critical Buffer Overflow DoS Vuln DLA-4464-1 CVE-2025-68670
  xrdp is an open source RDP server. It was found that xrdp contains an unauthenticated stack-based buffer overflow vulnerability. The issue stems from improper bounds checking when processing user domain information during the connection sequence. If exploited, the vulnerability could allow remote attackers to execute arbitrary code

• System76 Releases COSMIC 1.0.5 with New Option to Show Battery Percentage
  Linux hardware vendor System76 released COSMIC 1.0.5 today as the latest stable update to this Rust-based desktop environment for Pop!_OS Linux and other GNU/Linux distributions.

• Libreboot 26.01 Open-Source Boot Firmware Released With New Board Support
  Libreboot 26.01, an open-source boot firmware, is now available, adding support for several new boards and stability fixes.

• Git 2.53 Released with New Features and Performance Improvements
  Git 2.53 has been released today as the latest stable update to this free and open-source distributed version control system designed to handle everything from small to very large projects with speed and efficiency.

• Linux From Scratch Drops System V Init, Calls Decision Regrettable
  Linux From Scratch reluctantly confirms a systemd-only future, ending System V init development due to mounting maintenance pressure and upstream changes.

• Loongson 3B6000 Benchmarks: How China's LoongArch CPU Compares To AMD Zen 5, Intel Arrow Lake & Raspberry Pi 5
  Recently I finally got my hands on a LoongArch processor, the ISA developed by China's Loongson Technology as an evolution from their earlier use of the MIPS64 ISA and inspired by RISC-V and other modern ISAs. The Loongson-3B6000 features 12 cores / 24 threads with dual channel DDR4 ECC memory support. Here is a look at how that latest-generation LoongArch desktop processor compares to the current generation AMD Zen 5 and Intel Arrow Lake desktop processors under Linux. Plus also tossing in the Raspberry Pi 5 (Raspberry Pi 500+) for an ARM reference point.

• The Wild-West Napster Is Gone. What’s Left Is an AI Mall
  Remember when Napster meant free music and trouble with the labels? Now it means glossy AI therapists, fake experts, and generative “content” on tap.

• The State of Memory Leaks in GNU/Linux
  A little memory leak each day is the road to Hell

• cTGP Graphics Power Setting Coming For Uniwill / TUXEDO Laptops With Linux 7.0
  Upstreamed for the Linux 6.19 kernel is the Uniwill laptop platform driver for exposing more features/settings for laptops made by this Taiwanese OEM/ODM, including the laptops from TUXEDO Computers. Coming for the next kernel cycle is further extending the Uniwill platform driver for now having support for adjusting the custom total graphics power "cTGP" for those laptops with a dedicated GPU...

• Origami Linux Introduces an Immutable OS Built Around COSMIC
  Origami Linux is a new experimental Fedora Atomic–based distribution using rpm-ostree and the COSMIC desktop.

• 9to5Linux Weekly Roundup: February 1st, 2026
  The 277th installment of the 9to5Linux Weekly Roundup is here for the week ending February 1st, 2026, keeping you updated on the most important developments in the Linux world.

• NASA Delays Artemis II To March
  ClickOnThis writes: NASA has delayed the Artemis II launch to March of this year, after a wet dress-rehearsal uncovered a hydrogen leak. From the NASA article: During tanking, engineers spent several hours troubleshooting a liquid hydrogen leak in an interface used to route the cryogenic propellant into the rocket's core stage, putting them behind in the countdown. Attempts to resolve the issue involved stopping the flow of liquid hydrogen into the core stage, allowing the interface to warm up for the seals to reseat, and adjusting the flow of the propellant. Teams successfully filled all tanks in both the core stage and interim cryogenic propulsion stage before a team of five was sent to the launch pad to finish Orion closeout operations. Engineers conducted a first run at terminal countdown operations during the test, counting down to approximately 5 minutes left in the countdown, before the ground launch sequencer automatically stopped the countdown due to a spike in the liquid hydrogen leak rate.
  
  
  Read more of this story at Slashdot.
  

• Google Plots Big Expansion in India as US Restricts Visas
  Alphabet is plotting to dramatically expand its presence in India [non-paywalled source], with the possibility of taking millions of square feet in new office space in Bangalore, India's tech hub. From a report: Google's parent company has leased one office tower and purchased options on two others in Alembic City, a development in the Whitefield tech corridor, totaling 2.4 million square feet, according to people familiar with the deal. The first tower is expected to open to employees in the coming months, while construction on the remaining two is set to conclude next year. Options in the real estate industry give would-be tenants the exclusive right to rent, or in some cases buy, a property at a predetermined price within a specific time frame. It's also possible Alphabet will not exercise the option to use the additional towers. If it does take all of the space, the complex could accommodate as many as 20,000 additional staff, which could more than double the company's footprint in India, said the people, asking not to be identified because the plans aren't public. Alphabet currently employs around 14,000 in the country, out of a global workforce of roughly 190,000. [...] US President Donald Trump's visa restrictions have made it harder to bring foreign talent to America, prompting some companies to recruit more staff overseas. India has become an increasingly important place for US companies to hire, particularly in the race to dominate artificial intelligence.
  
  
  Read more of this story at Slashdot.
  

• 'Vibe Coding Kills Open Source'
  Four economists across Central European University, Bielefeld University and the Kiel Institute have built a general equilibrium model of the open-source software ecosystem and concluded that vibe coding -- the increasingly common practice of letting AI agents select, assemble and modify packages on a developer's behalf -- erodes the very funding mechanism that keeps open-source projects alive. The core problem is a decoupling of usage from engagement. Tailwind CSS's npm downloads have climbed steadily, but its creator says documentation traffic is down about 40% since early 2023 and revenue has dropped close to 80%. Stack Overflow activity fell roughly 25% within six months of ChatGPT's launch. Open-source maintainers monetize through documentation visits, bug reports, and community interaction. AI agents skip all of that. The model finds that feedback loops once responsible for open source's explosive growth now run in reverse. Fewer maintainers can justify sharing code, variety shrinks, and average quality falls -- even as total usage rises. One proposed fix is a "Spotify for open source" model where AI platforms redistribute subscription revenue to maintainers based on package usage. Vibe-coded users need to contribute at least 84% of what direct users generate, or roughly 84% of all revenue must come from sources independent of how users access the software.
  
  
  Read more of this story at Slashdot.
  

• YouTube Kills Background Playback on Third-Party Mobile Browsers
  YouTube has confirmed that it is blocking background playback -- the ability to keep a video's audio running after minimizing the browser or locking the screen -- for non-Premium users across third-party mobile browsers including Samsung Internet, Brave, Vivaldi and Microsoft Edge. Users began reporting the issue last week, noting that audio would cut out the moment they left the browser, sometimes after a brief "MediaOngoingActivity" notification flashed before media controls disappeared. A Google spokesperson told Android Authority that the platform "updated the experience to ensure consistency," calling background play a Premium-exclusive feature.
  
  
  Read more of this story at Slashdot.
  

• PayPal's CEO Change Blindsided HP's Board
  An anonymous reader shares a report: PayPal said on Tuesday it was booting its CEO and replacing him with its board chair Enrique Lores, sparing no ambiguity as to why: "The pace of change and execution was not in line with the Board's expectations," it said in a statement. One group that was blindsided was HP, where Lores was until Tuesday serving as CEO, according to people familiar with the matter. Lores' switchup sent them rushing to launch a search process, those people said. HP's board does have internal candidates which it's considering for the top job, according to a person familiar with the board's thinking. As chair of PayPal's board, Lores played a role in a process evaluating internal and external candidates. It was unclear when or if he recused himself from the final decision to name him as CEO. But HP's board was only made aware that Lores was taking the CEO role at PayPal in recent weeks, the people said.
  
  
  Read more of this story at Slashdot.
  

• Adobe Is Killing A Popular Animation And Game Development Program
  Adobe has emailed users of Adobe Animate to let them know the popular animation and game development program will be discontinued on March 1, an abrupt decision that has angered animators and game developers who say the tool remains an industry standard in television and game production. Animate, the successor to the once-popular Flash, is widely used for graphic creation, animation and building games in HTML5. The company has not offered a reason for the shutdown. On BlueSky, artist and animator Julia Glassman wrote that many television productions, games, and animated media still rely on Animate and Flash pipelines and cannot simply pivot to entirely new software.
  
  
  Read more of this story at Slashdot.
  

• Fintech CEO and Forbes 30 Under 30 Alum Charged for Alleged Fraud
  An anonymous reader shares a report: By now, the Forbes 30 Under 30 list has become more than a little notorious for the amount of entrants who go on to be charged with fraud.[...] Gokce Guven, a 26-year-old Turkish national and the founder and CEO of fintech startup Kalder, was charged last week with alleged securities fraud, wire fraud, visa fraud, and aggravated identity theft. The New York-based fintech startup -- which uses the "Turn Your Rewards into [a] Revenue Engine" tagline -- says it can help companies create and monetize individual rewards programs. The company was founded in 2022, and offers participating firms the opportunity to earn ongoing revenue streams via partner affiliate sales, Axios previously reported. Guven was featured in last year's Forbes 30 Under 30 list. The magazine notes in the writeup that Guven's clients included major chocolatier Godiva and the International Air Transport Association, the trade organization that represents a majority of the world's airlines. Kalder also claims to have enjoyed the backing of a number of prominent VC firms. The U.S. Department of Justice alleges that, during Kalder's seed round in April of 2024, Guven managed to raise $7 million from more than a dozen investors after presenting a pitch deck that was rife with false information. According to the government, Kalder's pitch deck claimed that there were 26 brands "using Kalder" and another 53 brands in "live freemium." However, officials say that, in reality, Kalder had, in many cases, only been offering heavily discounted pilot programs to many of those companies. Other brands "had no agreement with Kalder whatsoever -- not even for free services," officials said in a press release announcing the indictment. The pitch deck also "falsely reported that Kalder's recurring revenue had steadily grown month over month since February 2023 and that by March 2024, Kalder had reached $1.2 million in annual recurring revenue." The government also accuses Guven of having kept two separate sets of financial books.
  
  
  Read more of this story at Slashdot.
  

• The Switch is Now Nintendo's Best-Selling Console of All Time
  The original Switch is officially Nintendo's best-selling console of all time after surpassing the DS handheld in lifetime sales. From a report: In its latest earnings release, Nintendo reports that the Nintendo Switch has, as of December 31, 2025, sold 155.37 million units since its launch in 2017, compared to 154.02 million units for the 2004 Nintendo DS. In November, Nintendo reported that the Switch and DS were neck and neck. We expected the holiday sales period would see the Switch surpass the DS, even with Nintendo announcing that primary development would focus on the Switch 2. Nintendo previously said that it would continue to sell the original Switch "while taking consumer demand and the business environment into consideration." Nintendo has to keep selling the Switch if it wants to dethrone Sony's PlayStation 2 as the best-selling video game console of all time. The PlayStation 2, discontinued in January 2013, sold more than 160 million units over its 13-year lifespan.
  
  
  Read more of this story at Slashdot.
  

• Hidden Car Door Handles Are Officially Being Banned In China
  sinij writes: Automakers have increasingly implemented door handles that retract into the bodywork for aerodynamic reasons, but they are now off limits in China.My issue is with electronic-only door latch mechanism. It should be possible to open the door from both inside and outside the car in case of complete power loss.
  
  
  Read more of this story at Slashdot.
  

• SpaceX Acquires xAI in $1.25 Trillion All-Stock Deal
  Elon Musk's SpaceX has acquired his AI startup xAI in an all-stock deal that values the combined entity at $1.25 trillion, ahead of what would be the largest initial public offering in history. SpaceX pegged its own valuation at $1 trillion -- a markup from the $800 billion it commanded in a December secondary stock sale -- and priced xAI at $250 billion based on a recent $20 billion funding round that valued the two-year-old AI company at $230 billion. SpaceX CFO Bret Johnsen told investors on a call Monday that shares in the combined company would be priced at $527 and that xAI shares would convert into SpaceX stock at a roughly seven-to-one exchange rate. The company is still targeting a June IPO expected to raise as much as $50 billion, surpassing Saudi Aramco's $29 billion listing in 2019. Musk said the least expensive way to do AI computation within two to three years will be in space. "Global electricity demand for AI simply cannot be met with terrestrial solutions, even in the near term, without imposing hardship on communities and the environment," he wrote. SpaceX filed last Friday for permission to launch up to a million satellites into Earth's orbit. xAI merged with Musk's social media platform X last March in a $113 billion deal, and Tesla announced a $2 billion investment in xAI last week.
  
  
  Read more of this story at Slashdot.
  

• Celebrating the Second Year of Linux Man-Pages Maintenance Sponsorship
  Sustaining a Core Part of the Linux Ecosystem The Linux Foundation has announced a second year of sponsorship for the ongoing maintenance of the Linux manual pages (man-pages) project, led by Alejandro (Alex) Colomar. This critical initiative is made possible through the continued support of Google, Hudson River Trading, and Meta, who have renewed their [0]
  
  The post Celebrating the Second Year of Linux Man-Pages Maintenance Sponsorship appeared first on Linux.com.
  

• Disaggregated Routing with SONiC and VPP: Lab Demo and Performance Insights  Part Two
  In Part One of this series, we examined how the SONiC control plane and the VPP data plane form a cohesive, software-defined routing stack through the Switch Abstraction Interface.` We outlined how SONiC’s Redis-based orchestration and VPP’s user-space packet engine come together to create a high-performance, open router architecture. In this second part, we’ll turn [0]
  
  The post Disaggregated Routing with SONiC and VPP: Lab Demo and Performance Insights  Part Two appeared first on Linux.com.
  

• Disaggregated Routing with SONiC and VPP: Architecture and Integration  Part One
  The networking industry is undergoing a fundamental architectural transformation, driven by the relentless demands of cloud-scale data centers and the rise of software-defined infrastructure. At the heart of this evolution is the principle of disaggregation: the systematic unbundling of components that were once tightly integrated within proprietary, monolithic systems.` This movement began with the separation [0]
  
  The post Disaggregated Routing with SONiC and VPP: Architecture and Integration  Part One appeared first on Linux.com.
  

• Kubernetes on Bare Metal for Maximum Performance
  When teams consider deploying Kubernetes, one of the first questions that arises is: where should it run? The default answer is often the public cloud, thanks to its flexibility and ease of use. However, a growing number of organizations are revisiting the advantages of running Kubernetes directly on bare metal servers. For workloads that demand [0]
  
  The post Kubernetes on Bare Metal for Maximum Performance appeared first on Linux.com.
  

• How to Deploy Lightweight Language Models on Embedded Linux with LiteLLM
  This article was contributed by Vedrana Vidulin, Head of Responsible AI Unit at Intellias (LinkedIn). As AI becomes central to smart devices, embedded systems, and edge computing, the ability to run language models locally — without relying on the cloud — is essential. Whether its for reducing latency, improving data privacy, or enabling offline functionality, local AI [0]
  
  The post How to Deploy Lightweight Language Models on Embedded Linux with LiteLLM appeared first on Linux.com.
  

• Automating Compliance Management with UTMStacks Open Source SIEM 8 XDR
  Achieving and maintaining compliance with regulatory frameworks can be challenging for many organizations. Managing security controls manually often leads to excessive use of time and resources, leaving less available for strategic initiatives and business growth. Standards such as CMMC, HIPAA, PCI DSS, SOC2 and GDPR demand ongoing monitoring, detailed documentation, and rigorous evidence collection. Solutions [0]
  
  The post Automating Compliance Management with UTMStacks Open Source SIEM & XDR appeared first on Linux.com.
  

• A Simple Way to Install Talos Linux on Any Machine, with Any Provider
  Talos Linux is a specialized operating system designed for running Kubernetes. First and foremost it handles full lifecycle management for Kubernetes control-plane components. On the other hand, Talos Linux focuses on security, minimizing the user’s ability to influence the system. A distinctive feature of this OS is the near-complete absence of executables, including the absence [0]
  
  The post A Simple Way to Install Talos Linux on Any Machine, with Any Provider appeared first on Linux.com.
  

• Using OpenTelemetry and the OTel Collector for Logs, Metrics, and Traces
  OpenTelemetry (fondly known as OTel) is an open-source project that provides a unified set of APIs, libraries, agents, and instrumentation to capture and export logs, metrics, and traces from applications. The project’s goal is to standardize observability across various services and applications, enabling better monitoring and troubleshooting. Read More at Causely
  
  The post Using OpenTelemetry and the OTel Collector for Logs, Metrics, and Traces appeared first on Linux.com.
  

• Project Tazama, A Project Hosted by LF Charities With Support From the Gates Foundation, Receives Digital Public Good Designation.
  Exciting news! The Tazama project is officially a Digital Public Good having met the criteria to be accepted to the Digital Public Goods Alliance ! Tazama is a groundbreaking open source software solution for real-time fraud prevention, and offers the first-ever open source platform dedicated to enhancing fraud management in digital payments. Historically, the financial [0]
  
  The post Project Tazama, A Project Hosted by LF Charities With Support From the Gates Foundation, Receives Digital Public Good Designation. appeared first on Linux.com.
  

• Xen 4.19 is released
  Xen Project 4.19 has been officially out since July 31st, 2024, and it brings significant updates. With enhancements in performance, security, and versatility across various architectures like Arm, PPC, RISC-V, and x86, this release is an important milestone for the Xen community. Read more at XCP-ng Blog
  
  The post Xen 4.19 is released appeared first on Linux.com.
  

Engadget"Engadget is a web magazine with obsessive daily coverage of everything new in gadgets and consumer electronics"

• Apple just made Xcode better for vibe coding
  Apple has just released Xcode 26.3, and it9s a big step forward in terms of the company9s support of coding agents. The new release expands on the AI features the company introduced with Xcode 26 at WWDC 2025 to give systems like Claude and ChatGPT more robust access to its in-house IDE. 
  
  With the update, Apple says Claude and OpenAI9s Codex "can search documentation, explore file structures, update project settings, and verify their work visually by capturing Xcode Previews and iterating through builds and fixes." This is in contrast to earlier releases of Xcode 26 where those same agents were limited in what they could see of a developer9s Xcode environment, restricting their utility. According to Apple, the change will give users tools they can use to streamline their processes and work more efficiently than before.
  
  Developers can add Claude and Codex to their Xcode terminal from the Intelligence section of the app9s setting menu. Once a provider is selected, the interface allows users to also pick their preferred model. So if you like the outputs of say GPT 5.1 over GPT 5.2, you can use the older system. 
  
  The tighter integration with Claude and Codex was made possible by Model Context Protocol (MCP) servers Apple has deployed. MCP is a technology Anthropic debuted in fall 2024 to make it easier for large language models like Claude to share data with third-party tools and systems. Since its introduction, MCP has become an industry standard — with OpenAI, for instance, adopting the protocol last year to facilitate its own set of connections. 
  
  Apple says it worked directly with Anthropic and OpenAI to optimize token usage through Xcode, but the company’s adoption of MCP means developers will be able to add any coding agent that supports the protocol to their terminal in the future. Xcode 26.3 is available to download for all members of the Apple Developer Program starting today, with the Mac Store availability “coming soon.”
  This article originally appeared on Engadget at https://www.engadget.com/ai/apple-just-made-xcode-better-for-vibe-coding-195653049.html?src=rss

• Obsidian has no plans to make The Outer Worlds 3, likely due to poor sales
  Developer Obsidian recently announced that it currently has no plans to make The Outer Worlds 3, according to a report by Bloomberg. Company head Fergus Urquhart didn9t give a reason as to why Obsidian won9t be working on a sequel, but he did note that the performance of The Outer Worlds 2 was "disappointing" and that it needs to "think a lot about how much we put into the games, how much we spend on them and how long they take."
  
  Urquhart also said that Avowed was something of a miss for the company, but that it remains committed to the franchise. Obsidian plans to "keep making games in the Avowed universe," but that doesn9t necessarily mean a legitimate sequel. Avowed is, after all, set in the same world as Pillars of Eternity.
  
  Obsidian is still working on DLC for The Outer Worlds 2, so fans have that to look forward to. Urquhart also confirmed the company is making some DLC for Grounded 2, which was actually a hit. It released three games last year, which Urquhart said was a bad move for support teams.
  
  “Spacing those releases helps the company manage its resources and not burn everybody out. It’s not good to release three games in the same year. It’s the result of things going wrong," he said.
  
  The developer is also making some entirely new games, of which we know nothing about. As for Avowed, it9s coming to PS5 on February 17. All versions are getting an anniversary update that includes a New Game Plus mode, new races, new weapon types and more. It9s a good game and well worth the time of PlayStation fans, especially those who have dabbled with The Elder Scrolls franchise.
  This article originally appeared on Engadget at https://www.engadget.com/gaming/obsidian-has-no-plans-to-make-the-outer-worlds-3-likely-due-to-poor-sales-192756351.html?src=rss

• Fitbit founders launch Luffu, a way to integrate your family's health data
  Fitbit9s founders have a new startup. Two years after leaving Google, James Park and Eric Friedman announced a new platform that shifts the focus from the individual to the family. They say the Luffu mobile app "uses AI quietly in the background" to collect and organize family health information.
  
  "At Fitbit, we focused on personal health — but after Fitbit, health for me became bigger than just thinking about myself," Park said in a press release. The app is particularly focused on the "CEO of the family" — the person who manages appointments, prescriptions and other health-related tasks.
  
  But the definition of family isn9t limited to parents raising children. The company sees its tool as especially valuable for caregivers in their 40s and 50s who may be managing the needs of both aging parents and kids. It even tracks pets9 health habits.
  
  "We9re managing care across three generations — kids at home, busy parents in the middle, and my dad in his 80s who9s living with diabetes and still wants to stay fiercely independent," Friedman wrote. "And the moments that matter most are often the most chaotic: a late-night fever, a sudden urgent care visit, a doctor asking questions you can9t answer quickly because the details are scattered."
  The app9s AI includes a Morning Brief that recaps everyone9s health.Luffu
  The company claims the app9s AI "isn9t a chatbot layer." Rather, it serves as a "guardian" — proactively monitoring for changes silently in the background. The AI then provides insights and triggers alerts when something is out of whack. You can also ask the app health data questions using plain language (so, there is some kind of chatbot) and share data with family members.
  
  The company clearly wants to make entering data as easy as possible. Luffu allows family members to log info using voice, text or photos. It integrates with health platforms such as Apple Health and Fitbit. And the company eventually wants to expand into a hardware ecosystem — presumably, devices that make health data collection even easier.
  
  Speaking of data collection, Luffu says, "Users are always in control of exactly what is shared, with whom, and privacy and security are paramount for all family data." In addition, the company company website.
  
  Update, February 3, 2026, 1:14PM ET: This story has been updated to note that the Luffu public beta hasn’t started yet, but you can sign up for a waitlist to eventually get access when it starts.
  
  
  This article originally appeared on Engadget at https://www.engadget.com/mobile/fitbit-founders-launch-luffu-a-way-to-integrate-your-familys-health-data-173251994.html?src=rss

• Sony's WH-1000XM6 headphones are down to a record-low price
  Sony9s wireless WH-1000XM6 headphones are on sale for $398 via Amazon. This is a record-low price, as it drops $62 from the price tag. The sale applies to all three colorways.
  
  These easily topped our list of the best wireless headphones. They are, in a word, fantastic. The headphones are packed with premium features, like advanced ANC. There are a whopping 12 ANC microphones throughout and a brand-new chip to power the feature. The end result? It successfully blocks background noise at medium and high frequencies, including the human voice.
  
  
  
  The sound quality is extremely pleasing to the ears, thanks to new audio drivers and a team of mastering engineers that assisted with tuning. There are perforations in the driver9s voice coil, which extends high frequency reproduction.
  
  The design has been upgraded from the previous iteration and we found them extremely comfortable to wear for long periods of time, which is important with headphones. The battery gets around 30 hours, which is a fairly standard metric for this type of thing. 
  
  The only real major nitpick here is the original asking price. It9s tough to recommend any pair of headphones for $460, but a bit easier at under $400.
  
  Follow @EngadgetDeals on X for the latest tech deals and buying advice.
  This article originally appeared on Engadget at https://www.engadget.com/deals/sonys-wh-1000xm6-headphones-are-down-to-a-record-low-price-175038776.html?src=rss

• The best gifts for coffee lovers in 2026
  When it comes to making a great cup at home, us coffee nerds are constantly learning and love to try new things. Whether the person you’re shopping for is a newly indoctrinated pour over lover or obsessive over every brewing parameter, we’ve compiled a list of the best gear for coffee geeks that you can get. Spanning brewing, grinding and, of course, drinking, we’ve got a range of options that can help the java geek in your life expand their at-home setup or just try something new. And for the person that already has it all, we’ve got something for them too.
  Best gifts for coffee lovers
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  Check out the rest of our gift ideas here.
  This article originally appeared on Engadget at https://www.engadget.com/home/kitchen-tech/the-best-gifts-for-coffee-lovers-in-2026-184515579.html?src=rss

• How much do VPNs cost?
  So you9ve decided you need a virtual private network to hide your browsing activity from your ISP, change your virtual location, stay safe on public Wi-Fi and enjoy all the other benefits. The inevitable next question is: "Should I pay for one? If so, how much?"
  
  All the best VPNs cost money, but it can be hard to tell an overpriced service apart from one that9s priced according to its value. On this page, I9ll share the costs for top VPN services, calculate the industry average and explain what makes VPNs cost as much as they do. At the end, I9ll share a few tips for making a VPN fit your budget.
  How much is a VPN?
  I9d like to start by introducing the complexity of the problem. If you just want the numbers, you’ll find those in the sections below.
  
  The main thing that makes VPNs so hard to budget for is that providers aren9t always honest about how much they9re charging. They rarely lie outright, but they often overcomplicate their pricing structures and hide increases in the fine print.
  
  Let9s take CyberGhost as an example, since I just reviewed it. A one-month subscription to CyberGhost costs $12.99 — simple enough. However, you can also get a six-month subscription by paying $41.94 upfront, though the website more prominently calls this "$6.99 per month." Finally, you can pay $56.94 for a 28-month subscription, but only once; after that, it9ll be $56.94 for a year.
  These prices are subject to change.Sam Chapman for Engadget
  As you can see in the image, the website heavily emphasizes the average monthly price, in text that dwarfs the actual price you9ll pay at checkout. This gets even worse with services like NordVPN that have multiple tiers of subscription as well as multiple durations. It9s not uncommon to see 10 or more prices quoted for the exact same VPN.
  
  The best way to cut through the confusion and shop on your own terms is to compare different VPNs at the same duration and subscription tier. For example, you could find the cost of one year of the most basic available plan, since most basic subscriptions still include full VPN service. In the next two sections, I9ll compare and average the basic tiers of my top seven VPNs at the monthly and yearly levels.
  Average monthly cost of a VPN
  Here9s what the best VPNs cost per month. The numbers below are for subscribing to one month at a time, excluding any discounts and special deals.
  
  Proton VPN: $9.99
  
  ExpressVPN: $12.99
  
  Surfshark: $15.45
  
  NordVPN: $12.99
  
  CyberGhost: $12.99
  
  Mullvad: $5.98 (depends on dollar/euro exchange rate)
  
  Windscribe.
  
  Proton VPN: $47.88
  
  ExpressVPN: $52.39 for the first subscription, $99.95 afterwards
  
  Surfshark: $47.85
  
  NordVPN: $59.88 for the first subscription, $139.08 afterwards
  
  Windscribe: $69.00
  
  Mullvad: $71.82 (depends on dollar/euro exchange rate)
  
  hide.me: $54.99
  
  Average: $57.69
  
  For one year of a VPN service, you can expect to pay somewhere between $45 and $70. Note that at least two services, ExpressVPN and NordVPN, raise prices after the first year, so account for that in your budget if you really like them.
  Why do VPNs cost so much?
  The length of the subscription is the biggest factor in determining how much you9ll pay. Beyond that, it9s all a bit fuzzy. Commercial VPNs are still a relatively new industry, so there9s not a lot of standardization in the pricing.
  
  Most of the variation in cost comes from competition: VPNs value themselves lower to offer a better deal than their rivals, or higher if they think they9ve got a unique differentiator. Astrill gets away with charging $30 a month because of a widespread belief that it9s the best VPN for China (in truth, no VPN can be sure of working in China 100 percent of the time).
  
  Another factor that might influence a VPN9s price is the cost of maintaining its infrastructure. For each new server location, the provider has to either rent space in an existing data center, build its own physical server farm or set up a virtual server with an IP address from a particular location.
  On Proton VPN, for example, you can switch locations by clicking the name of any country in the list on the left.Sam Chapman for Engadget
  Once the locations exist, they have to be maintained, including regular changes to their IP address so firewalls don9t identify and block them. Loads at locations need to be balanced between servers and technology has to be upgraded as faster solutions become available. 
  
  Since VPNs can have hundreds of server locations, all that upkeep doesn9t come cheap, and customers often eat the cost. Factor in the price of extra features outside core VPN functionality and you9ll understand why these companies are so desperate for liquidity that they9ll offer discounts over 80 percent — as long as you hand over a lump sum right now.
  What about free VPNs?
  VPNs can get pricey, especially if you want high quality. But some VPNs charge nothing at all. Is there any reason not to go with free VPNs every time?
  
  The answer is a pretty clear yes; paying for a VPN is almost always a better idea. When we rounded up the best free VPNs, only three got our unqualified recommendation. All three were paid services with free plans, and all come with strict limitations on server locations, data usage and other privileges.
  
  The unfortunate reality is that free VPNs come with downsides no matter which one you use. Plenty of them are hacked-together apps with little value, thrown together to make a quick buck. Others turn you into the product by selling your data to advertisers or renting out your home IP address. Some drop any pretense and plant malware directly on your device.
  
  These risks, which are often invisible to the end user, are the reason I almost always advise going with a free VPN funded by a paid plan, like Proton VPN, hide.me or Windscribe. Those plans may be restricted, but at least the provider9s motives are out in the open: they make money off the paid plan and they want you to switch to it.
  How to save money on a VPN
  If you9ve decided to pay for a VPN but want to stretch your budget as much as possible, the tips below can push your cybersecurity dollar a bit farther. To begin with, the general advice on choosing a VPN always applies: read expert opinions, check the reviews and use the free trial to test its speed and security.
  
  Get a long-term plan. If you9re confident that you9ll actually use the VPN for the whole duration, there9s no reason not to go with a 12-month or 24-month subscription. These are win-win deals that genuinely do save you a lot of money overall.
  
  Cancel auto-renewal. VPN accounts are set to automatically renew by default. In some cases, this can inadvertently lock you into a higher-priced long-term plan. I recommend cancelling auto-renew right after subscribing even if you9re sure you want to continue. From there, you can create a new account to get the introductory rate again — or go with a different VPN to get a better deal.
  
  Look for resubscription deals. Another perk of cancelling immediately is that the VPN will often try to woo you back with exclusive discounts. Stay strong until your subscription is a month or two from expiring, then look for emails offering better rates.
  
  Wait for seasonal discounts. If you can hold off until November, most VPNs offer steep discounts from Black Friday season all the way through New Year9s. Check around other holidays too, as VPNs will take any excuse for marketing; CyberGhost is offering a Valentine9s Day deal as I type this. We also keep track of the best VPN deals you can get at any time of the year.
  
  Use the VPN to save money on streaming. Most streaming services are more expensive than VPNs. If you use a VPN to access more content without adding a new streaming subscription, you9ll come out ahead. For example, if you only have Netflix but want to watch Schitt’s Creek, you can pay $16.99 per month for Peacock without ads — or $9.99 per month for Proton VPN to unblock Netflix Canada, which features that show.
  
  Shop for regional discounts. Like the previous point, this won9t save you money on the VPN itself, but might save you enough money on other expenses that you turn a profit. Changing your virtual location can get you discounts on purchases where prices vary by region, especially travel costs.
  
  
  This article originally appeared on Engadget at https://www.engadget.com/cybersecurity/vpn/how-much-do-vpns-cost-170000567.html?src=rss

• Disney announces Josh D’Amaro will be its new CEO after Iger departs
  Stop me if you9ve heard this one before. Disney has announced a successor to outgoing CEO Bob Iger, effective in March. Josh D’Amaro, current chairman of Disney Experiences, was tapped for the role in a unanimous vote by the company9s board of directors.
  
  D’Amaro has been at Disney for 28 years, where he oversaw theme parks, cruises and consumer products including video games. The company had previously appointed Bob Chapek, the Disney Parks chairman at the time, as successor to Bob Iger in 2020. At the time, Iger had served as CEO since 2005. But Chapek only lasted until 2022, when Bob Iger returned to take the helm once again amid company struggles. Disney formed a committee to find an appropriate successor in 2023, with Iger mentoring potential candidates along the way.
  
  Iger9s time at the helm saw the media giant make a number of significant moves such as launching the Disney+ streaming service, buying Hulu and acquiring 20th Century Fox9s film and television studios. Iger will continue to serve as a board member and senior advisor until his retirement at the end of the year.
  This article originally appeared on Engadget at https://www.engadget.com/entertainment/disney-announces-josh-damaro-will-be-its-new-ceo-after-iger-departs-161616420.html?src=rss

• February’s Xbox Game Pass additions include High on Life 2, Madden NFL 26 and Avatar: Frontiers of Pandora
  Microsoft has revealed the first wave of Xbox Game Pass additions for February, and it feels like there9s a bit of something for everyone this time around. Two of the titles land on the service today across the Game Pass Ultimate, Premium and PC Game Pass tiers: Final Fantasy II (cloud, Xbox Series X/S and PC) and Like A Dragon: Pirate Yakuza in Hawaii (cloud, console, handheld and PC). Final Fantasy II is a "remodeled 2D take" on the classic 1988 RPG, while Pirate Yakuza in Hawaii is a wild-looking spin-off of the main Like a Dragon series with pirates and naval combat.
  
  Madden NFL 26 is hitting Game Pass Ultimate and PC Game Pass across cloud, console and PC on February 5, so subscribers will be able to get in a few virtual downs before the Super Bowl on Sunday at no extra cost. Paw Patrol Rescue Wheels: Championship will join the Game Pass Ultimate, Premium and PC Game Pass lineups on the same day across cloud, console, handheld and PC.
  
  On February 10, a game I9ve been looking forward to, my initial hands-on with the game, but I haven9t jumped into the full version as yet. 
  
  Last, but not least, hits PlayStation 5 and a major update goes live. Avowed was one of our favorite games of 2025.
  This article originally appeared on Engadget at https://www.engadget.com/gaming/xbox/februarys-xbox-game-pass-additions-include-high-on-life-2-madden-nfl-26-and-avatar-frontiers-of-pandora-160656985.html?src=rss

• Samsung Galaxy Unpacked 2026: Everything we're expecting from the S26 launch
  Samsung’s 2025 was filled with new foldables, an ultra-thin new form factor and the launch of Google9s XR platform. After making some announcements at CES 2026, the company is expected to host its first Galaxy Unpacked of the year in February to introduce the Galaxy S26 lineup. Official invites have yet to be shared, but the date is widely expected to be near the end of the month.
  
  Whenever it does happen, Engadget will be covering Galaxy Unpacked live, and we9ll most likely have hands-on coverage of Samsung9s new smartphones soon after they9re announced. While we wait for an official invite, here9s everything we expect Samsung will introduce at the first Galaxy Unpacked event of 2026.
  What is Unpacked 2026 taking place?
  But first, when is Unpacked going to happen? A recent image shared by leakster Evan Blass indicated Unpacked should be taking place on “February 25 2026.” Blass has a long history of credible leaks, which means this date is all but confirmed, and the main questions remaining would be — what time and in what timezone? We’re still waiting on Samsung for the official details, which should include answers to those questions.
  Galaxy S26, S26+ and S26 UltraSamsung Galaxy S25 Ultra hands-on photoPhoto by Sam Rutherford/Engadget
  Samsung9s restrained approach to updating its phones will likely continue with the Galaxy S26. Based on leaked images of the new lineup, the company is not expected to radically reinvent the look of the Galaxy S26, Galaxy S26+ or Galaxy S26 Ultra, and instead will stick with a similar design to what it used on the Galaxy S25. The phones will have a flat front screen and frame, with rounded corners and cameras housed in a vertical pill-shaped plateau on the back. Unlike Apple9s move from the iPhone 16 Pro to the iPhone 17 Pro, the biggest difference here will likely be internal components like the screens, chips and camera sensors Samsung uses.
  
  Qualcomm9s new Snapdragon 8 Elite Gen 5 chip is expected to be in all Samsung Galaxy S26 phones, though Korean news site Exynos 2600 chip could be used in some phones in the lineup depending on the region, a strategy Samsung has deployed in the past. Either way the new phones should be more performant than the previous generation, and in the case of the models with the Snapdragon 8 Elite Gen 5, particularly good at on-device AI processing.
  I have compiled the most accurate comprehensive parameter comparison of Galaxy S25, S25+ and Galaxy S26、 S26+. Which one do you want to buy? pic.twitter.com/aQpoSvYjOz
  — Ice Universe (@UniverseIce) November 29, 2025
  One notable difference between the Galaxy S26 and the Galaxy S25 could be the phone9s screen. The new phone will reportedly feature a 6.3-inch FHD+ display according to specs shared by leaker Ice Universe, which makes it ever so slightly larger than the 6.2-inch display used on the Galaxy S25. The S26 will also allegedly come with 12GB of RAM, either 256GB or 512GB of storage and a slightly larger 4,300mAh battery. Samsung isn9t changing the cameras on the entry-level phone, though: leaks suggest it9ll feature the same 50-megapixel main camera, 12-megapixel ultrawide, 10-megapixel 3x telephoto and 12-megapixel selfie camera as the previous generation. Changes appear to be even more minor on the Galaxy S26+. Other than the new Snapdragon chip, the phone will reportedly feature the same 6.7-inch FHD+ screen, 4,900mAh battery, 12GB of RAM and the same camera array used on the base Galaxy S26.
  
  The difference between the Galaxy S26 Ultra and Galaxy S25 Ultra is reportedly a bit clearer. only technically work with the standard when a case is attached, rumors suggest Samsung will remove the S Pen digitizer layer in the phone and adopt a new method for accepting stylus input. It9s not clear what that new method will actually be, but it could let the Galaxy S26 Ultra more easily work with Qi2 accessories without losing its stylus.
  
  Android Headlines also recently shared what appear to be full image renders of the S26 series, and they generally line up with what has already been rumored, leaked and reported so far. If these pictures are accurate, they give us a clearer look at the camera bump and two color variants of the S26 Ultra.
  
  Fans of magnets may continue to be disappointed by Samsung if the latest rumors are accurate. Despite the launch of the Qi 2 wireless charging standard adding support for convenient magnetic alignment years ago, Samsung has yet to bring that feature to its phones. Though the S-series have the higher speed charging rates that the spec enables, Galaxy Buds 3 and 3 Pro in 2024, with a major redesign that brought them much more in line with Apple9s AirPods. The Galaxy Buds 4 and Buds 4 Pro Samsung is rumored to be announcing soon won9t necessarily change that, though they will feature a more compact case and less angular stems, according to leaked images from the Samsung Tips app.
  
  Support for head gestures to accept and decline calls, a feature Apple includes on the AirPods Pro 3 and AirPods 4, is also rumored to work on both versions of the new Galaxy Buds. Google9s Find Hub network.
  Galaxy Z TrifoldYes, the TriFold has a crease, two in fact. But they still don9t ruin the experience. Sam Rutherford for Engadget
  Samsung announced the Galaxy Z TriFold in late 2025 without firm details of when the new smartphone-that-folds-into-a-tablet would be available in North America. That info came on January 27, when the company announced the TriFold would be available in the US on January 30, for a whopping $2,900. Considering we’ve already seen the device in person at CES 2026 and people are most likely to have had a chance to look at, if not buy the foldable for themselves by the time Unpacked rolls around, we don’t expect Samsung to spend too much time dwelling on it, if at all.
  Galaxy S26 EdgeAt just 5.8mm thick, the Samsung Galaxy S25 Edge is one of the thinnest smartphones ever made. Sam Rutherford for Engadget
  When the Galaxy S25 Edge was announced in 2025, it seemed possible that Samsung could replace its "Plus" smartphone with a unique form factor, just like Apple has opted to do with the iPhone Air. There have been conflicting reports on the matter, but it seems like Samsung will not be doing that with the Galaxy S26 Edge.
  
  Instead, the smartphone will reportedly remain another option, much like foldables are for customers not swayed by Samsung9s traditional smartphones. The Galaxy S26 Edge is rumored to feature a slightly different design than last year9s model, a deal with Motorola on its Razr phones, so the only thing that would make a deal with Samsung unusual is the close relationship the company already has with Google.
  
  The company also accidentally announced a new version of its Bixby AI assistant, which will likely also be integrated with Perplexity and could serve as an alternative to Google Gemini. Both a new Bixby and a deeper integration with Perplexity seem like natural new software features to show off at Galaxy Unpacked.
  
  Update, January 27 2026, 11:55AM ET: This story has been updated to reflect the latest news around the Galaxy Z TriFold’s price and availability in the US.
  
  Update, January 30 2026, 12:45PM ET: This story has been updated to include the latest leaks on the possible dates for Unpacked 2026.
  
  Update, February 02 2026, 11:30AM ET: This story has been updated to include the latest leaks with full image renders of the S26 trio of devices.
  
  Update, February 03 2026, 11:00AM ET: This story has been updated to include the latest leaks about the possible lack of magnetic support on the S26 series.
  This article originally appeared on Engadget at https://www.engadget.com/mobile/smartphones/samsung-galaxy-unpacked-2026-everything-were-expecting-from-the-s26-launch-130000556.html?src=rss

• The Dyson PencilVac is finally available and costs $600
  The Dyson PencilVac stick vacuum is finally available for purchase in the US after being revealed
  
  . It costs $600. The company says this is the "world's slimmest vacuum cleaner." We haven't broken out any rulers to confirm that statement, but it's certainly a ridiculously thin stick vac.
  
  It achieves this thinness by using a motor inspired by the company's
  
  . This is a small motor that can actually rest in the shaft, so there's not a noticeable bulge where the components have been placed. This stick vacuum is actually, well, a stick. Just take a look at it.
  A vacuum being emptied. Dyson
  It does come with attachments that increase the size a bit. For instance, the conical brush bar cleaner head makes it resemble a traditional stick vacuum. However, everything else is in the long cylinder. This includes the bin, filter and motor.
  
  Other attachments include something called the "Fluffycones" cleaner head. This has four cones in two brush bars that rotate in opposite directions to "strip and eject even long hair, preventing hair tangling around the brush bar." There are also lights at both ends to help illuminate any lingering dust particles.
  A cleaning head. Dyson
  It weighs nearly four pounds and features the same diameter throughout. This makes it easy to grip anywhere along the body, which can help with overhead cleaning. It ships with a swappable battery pack that lasts for around an hour and there's a magnetic charging dock to get things juiced up.
  
  The vacuum works with the MyDyson app, which lets users check on battery life and adjust settings. Some of this information is also displayed on the LCD screen at the top of the handle.
  
  We got a chance to try it out last year and came away impressed. The motor is plenty powerful, despite the diminished size, and the device was easy to maneuver. If you have $600 to spare and a dirty home, this could be a good purchase.
  
  
  
  
  This article originally appeared on Engadget at https://www.engadget.com/home/the-dyson-pencilvac-is-finally-available-and-costs-600-160059016.html?src=rss

• EU OS: A Bold Step Toward Digital Sovereignty for Europe
  Image
  A new initiative, called "EU OS," has been launched to develop a Linux-based operating system tailored specifically for the public sector organizations of the European Union (EU). This community-driven project aims to address the EU's unique needs and challenges, focusing on fostering digital sovereignty, reducing dependency on external vendors, and building a secure, self-sufficient digital ecosystem.
  What Is EU OS?
  EU OS is not an entirely novel operating system. Instead, it builds upon a Linux foundation derived from Fedora, with the KDE Plasma desktop environment. It draws inspiration from previous efforts such as France's GendBuntu and Munich's LiMux, which aimed to provide Linux-based systems for public sector use. The goal remains the same: to create a standardized Linux distribution that can be adapted to different regional, national, and sector-specific needs within the EU.
  
  Rather than reinventing the wheel, EU OS focuses on standardization, offering a solid Linux foundation that can be customized according to the unique requirements of various organizations. This approach makes EU OS a practical choice for the public sector, ensuring broad compatibility and ease of implementation across diverse environments.
  The Vision Behind EU OS
  The guiding principle of EU OS is the concept of "public money – public code," ensuring that taxpayer money is used transparently and effectively. By adopting an open-source model, EU OS eliminates licensing fees, which not only lowers costs but also reduces the dependency on a select group of software vendors. This provides the EU’s public sector organizations with greater flexibility and control over their IT infrastructure, free from the constraints of vendor lock-in.
  
  Additionally, EU OS offers flexibility in terms of software migration and hardware upgrades. Organizations can adapt to new technologies and manage their IT evolution at a manageable cost, both in terms of finances and time.
  
  However, there are some concerns about the choice of Fedora as the base for EU OS. While Fedora is a solid and reliable distribution, it is backed by the United States-based Red Hat. Some argue that using European-backed projects such as openSUSE or KDE's upcoming distribution might have aligned better with the EU's goal of strengthening digital sovereignty.
  Conclusion
  EU OS marks a significant step towards Europe's digital independence by providing a robust, standardized Linux distribution for the public sector. By reducing reliance on proprietary software and vendors, it paves the way for a more flexible, cost-effective, and secure digital ecosystem. While the choice of Fedora as the base for the project has raised some questions, the overall vision of EU OS offers a promising future for Europe's public sector in the digital age.
  
  Source: It's FOSS
  European Union

• Linus Torvalds Acknowledges Missed Release of Linux 6.14 Due to Oversight
  
  Linus Torvalds Acknowledges Missed Release of Linux 6.14 Due to Oversight
  
  Linux kernel lead developer Linus Torvalds has admitted to forgetting to release version 6.14, attributing the oversight to his own lapse in memory. Torvalds is known for releasing new Linux kernel candidates and final versions on Sunday afternoons, typically accompanied by a post detailing the release. If he is unavailable due to travel or other commitments, he usually informs the community ahead of time, so users don’t worry if there’s a delay.
  
  In his post on March 16, Torvalds gave no indication that the release might be delayed, instead stating, “I expect to release the final 6.14 next weekend unless something very surprising happens.” However, Sunday, March 23rd passed without any announcement.
  
  On March 24th, Torvalds wrote in a follow-up message, “I’d love to have some good excuse for why I didn’t do the 6.14 release yesterday on my regular Sunday afternoon schedule,” adding, “But no. It’s just pure incompetence.” He further explained that while he had been clearing up unrelated tasks, he simply forgot to finalize the release. “D'oh,” he joked.
  
  Despite this minor delay, Torvalds’ track record of successfully managing the Linux kernel’s development process over the years remains strong. A single day’s delay is not critical, especially since most Linux users don't urgently need the very latest version.
  
  The new 6.14 release introduces several important features, including enhanced support for writing drivers in Rust—an ongoing topic of discussion among developers—support for Qualcomm’s Snapdragon 8 Elite mobile chip, a fix for the GhostWrite vulnerability in certain RISC-V processors from Alibaba’s T-Head Semiconductor, and a completed NTSYNC driver update that improves the WINE emulator’s ability to run Windows applications, particularly games, on Linux.
  
  Although the 6.14 release went smoothly aside from the delay, Torvalds expressed that version 6.15 may present more challenges due to the volume of pending pull requests. “Judging by my pending pile of pull requests, 6.15 will be much busier,” he noted.
  
  You can download the latest kernel here.
  Linus Torvalds kernel

• AerynOS 2025.03 Alpha Released with GNOME 48, Mesa 25, and Linux Kernel 6.13.8
  Image
  AerynOS 2025.03 has officially been released, introducing a variety of exciting features for Linux users. The release includes the highly anticipated GNOME 48 desktop environment, which comes with significant improvements like HDR support, dynamic triple buffering, and a Wayland color management protocol. Other updates include a battery charge limiting feature and a Wellbeing option aimed at improving user experience.
  
  This release, while still in alpha, incorporates Linux kernel 6.13.8 and the updated Mesa 25.0.2 graphics stack, alongside tools like LLVM 19.1.7 and Vulkan SDK 1.4.309.0. Additionally, the Moss package manager now integrates os-info to generate more detailed OS metadata via a JSON file.
  
  Future plans for AerynOS include automated package updates, easier rollback management, improved disk handling with Rust, and fractional scaling enabled by default. The installer has also been revamped to support full disk wipes and dynamic partitioning.
  
  Although still considered an alpha release, AerynOS 2025.03 can be downloaded and tested right now from its official website.
  
  Source: 9to5Linux
  AerynOS

• Xojo 2025r1: Big Updates for Developers with Linux ARM Support, Web Drag and Drop, and Direct App Store Publishing
  Image
  Xojo has just rolled out its latest release, Xojo 2025 Release 1, and it’s packed with features that developers have been eagerly waiting for. This major update introduces support for running Xojo on Linux ARM, including Raspberry Pi, brings drag-and-drop functionality to the Web framework, and simplifies app deployment with the ability to directly submit apps to the macOS and iOS App Stores.
  
  Here’s a quick overview of what’s new in Xojo 2025r1:
  1. Linux ARM IDE Support
  Xojo 2025r1 now allows developers to run the Xojo IDE on Linux ARM devices, including popular platforms like Raspberry Pi. This opens up a whole new world of possibilities for developers who want to create apps for ARM-based devices without the usual complexity. Whether you’re building for a Raspberry Pi or other ARM devices, this update makes it easier than ever to get started.
  2. Web Drag and Drop
  One of the standout features in this release is the addition of drag-and-drop support for web applications. Now, developers can easily drag and drop visual controls in their web projects, making it simpler to create interactive, user-friendly web applications. Plus, the WebListBox has been enhanced with support for editable cells, checkboxes, and row reordering via dragging. No JavaScript required!
  3. Direct App Store Publishing
  Xojo has also streamlined the process of publishing apps. With this update, developers can now directly submit macOS and iOS apps to App Store Connect right from the Xojo IDE. This eliminates the need for multiple steps and makes it much easier to get apps into the App Store, saving valuable time during the development process.
  4. New Desktop and Mobile Features
  This release isn’t just about web and Linux updates. Xojo 2025r1 brings some great improvements for desktop and mobile apps as well. On the desktop side, all projects now include a default window menu for macOS apps. On the mobile side, Xojo has introduced new features for Android and iOS, including support for ColorGroup and Dark Mode on Android, and a new MobileColorPicker for iOS to simplify color selection.
  5. Performance and IDE Enhancements
  Xojo’s IDE has also been improved in several key areas. There’s now an option to hide toolbar captions, and the toolbar has been made smaller on Windows. The IDE on Windows and Linux now features modern Bootstrap icons, and the Documentation window toolbar is more compact. In the code editor, developers can now quickly navigate to variable declarations with a simple Cmd/Ctrl + Double-click. Plus, performance for complex container layouts in the Layout Editor has been enhanced.
  What Does This Mean for Developers?
  Xojo 2025r1 brings significant improvements across all the platforms that Xojo supports, from desktop and mobile to web and Linux. The added Linux ARM support opens up new opportunities for Raspberry Pi and ARM-based device development, while the drag-and-drop functionality for web projects will make it easier to create modern, interactive web apps. The ability to publish directly to the App Store is a game-changer for macOS and iOS developers, reducing the friction of app distribution.
  How to Get Started
  Xojo is free for learning and development, as well as for building apps for Linux and Raspberry Pi. If you’re ready to dive into cross-platform development, paid licenses start at $99 for a single-platform desktop license, and $399 for cross-platform desktop, mobile, or web development. For professional developers who need additional resources and support, Xojo Pro and Pro Plus licenses start at $799. You can also find special pricing for educators and students.
  
  Download Xojo 2025r1 today at xojo.com.
  Final Thoughts
  With each new release, Xojo continues to make cross-platform development more accessible and efficient. The 2025r1 release is no exception, delivering key updates that simplify the development process and open up new possibilities for developers working on a variety of platforms. Whether you’re a Raspberry Pi enthusiast or a mobile app developer, Xojo 2025r1 has something for you.
  Xojo ARM

• New 'Mirrored' Network Mode Introduced in Windows Subsystem for Linux
  
  Microsoft's Windows Subsystem for Linux (WSL) continues to evolve with the release of WSL 2 version 0.0.2. This update introduces a set of opt-in preview features designed to enhance performance and compatibility.
  
  Key additions include "Automatic memory reclaim" which dynamically optimizes WSL's memory footprint, and "Sparse VHD" to shrink the size of the virtual hard disk file. These improvements aim to streamline resource usage.
  
  Additionally, a new "mirrored networking mode" brings expanded networking capabilities like IPv6 and multicast support. Microsoft claims this will improve VPN and LAN connectivity from both the Windows host and Linux guest. 
  
  Complementing this is a new "DNS Tunneling" feature that changes how DNS queries are resolved to avoid compatibility issues with certain network setups. According to Microsoft, this should reduce problems connecting to the internet or local network resources within WSL.
  
  Advanced firewall configuration options are also now available through Hyper-V integration. The new "autoProxy" feature ensures WSL seamlessly utilizes the Windows system proxy configuration.
  
  Microsoft states these features are currently rolling out to Windows Insiders running Windows 11 22H2 Build 22621.2359 or later. They remain opt-in previews to allow testing before final integration into WSL.
  
  By expanding WSL 2 with compelling new capabilities in areas like resource efficiency, networking, and security, Microsoft aims to make Linux on Windows more performant and compatible. This evolutionary approach based on user feedback highlights Microsoft's commitment to WSL as a key part of the Windows ecosystem.
  Windows

• Linux Threat Report: Earth Lusca Deploys Novel SprySOCKS Backdoor in Attacks on Government Entities
  
  The threat actor Earth Lusca, linked to Chinese state-sponsored hacking groups, has been observed utilizing a new Linux backdoor dubbed SprySOCKS to target government organizations globally. 
  
  As initially reported in January 2022 by Trend Micro, Earth Lusca has been active since at least 2021 conducting cyber espionage campaigns against public and private sector targets in Asia, Australia, Europe, and North America. Their tactics include spear-phishing and watering hole attacks to gain initial access. Some of Earth Lusca's activities overlap with another Chinese threat cluster known as RedHotel.
  
  In new research, Trend Micro reveals Earth Lusca remains highly active, even expanding operations in the first half of 2023. Primary victims are government departments focused on foreign affairs, technology, and telecommunications. Attacks concentrate in Southeast Asia, Central Asia, and the Balkans regions. 
  
  After breaching internet-facing systems by exploiting flaws in Fortinet, GitLab, Microsoft Exchange, Telerik UI, and Zimbra software, Earth Lusca uses web shells and Cobalt Strike to move laterally. Their goal is exfiltrating documents and credentials, while also installing additional backdoors like ShadowPad and Winnti for long-term spying.
  
  The Command and Control server delivering Cobalt Strike was also found hosting SprySOCKS - an advanced backdoor not previously publicly reported. With roots in the Windows malware Trochilus, SprySOCKS contains reconnaissance, remote shell, proxy, and file operation capabilities. It communicates over TCP mimicking patterns used by a Windows trojan called RedLeaves, itself built on Trochilus.
  
  At least two SprySOCKS versions have been identified, indicating ongoing development. This novel Linux backdoor deployed by Earth Lusca highlights the increasing sophistication of Chinese state-sponsored threats. Robust patching, access controls, monitoring for unusual activities, and other proactive defenses remain essential to counter this advanced malware.
  
  The Trend Micro researchers emphasize that organizations must minimize attack surfaces, regularly update systems, and ensure robust security hygiene to interrupt the tactics, techniques, and procedures of relentless threat groups like Earth Lusca.
  Security

• Linux Kernel Faces Reduction in Long-Term Support Due to Maintenance Challenges
  
  The Linux kernel is undergoing major changes that will shape its future development and adoption, according to Jonathan Corbet, Linux kernel developer and executive editor of Linux Weekly News. Speaking at the Open Source Summit Europe, Corbet provided an update on the latest Linux kernel developments and a glimpse of what's to come.
  
  A major change on the horizon is a reduction in long-term support (LTS) for kernel versions from six years to just two years. Corbet explained that maintaining old kernel branches indefinitely is unsustainable and most users have migrated to newer versions, so there's little point in continuing six years of support. While some may grumble about shortened support lifecycles, the reality is that constantly backporting fixes to ancient kernels strains maintainers.
  
  This maintainer burnout poses a serious threat, as Corbet highlighted. Maintaining Linux is largely a volunteer effort, with only about 200 of the 2,000+ developers paid for their contributions. The endless demands on maintainers' time from fuzz testing, fixing minor bugs, and reviewing contributions takes a toll. Prominent maintainers have warned they need help to avoid collapse. Companies relying on Linux must realize giving back financially is in their interest to sustain this vital ecosystem. 
  
  The Linux kernel is also wading into waters new with the introduction of Rust code. While Rust solves many problems, it also introduces new complexities around language integration, evolving standards, and maintainer expertise. Corbet believes Rust will pass the point of no return when core features depend on it, which may occur soon with additions like Apple M1 GPU drivers. Despite skepticism in some corners, Rust's benefits likely outweigh any transition costs.
  
  On the distro front, Red Hat's decision to restrict RHEL cloning sparked community backlash. While business considerations were at play, Corbet noted technical factors too. Using older kernels with backported fixes, as RHEL does, risks creating divergent, vendor-specific branches. The Android model of tracking mainline kernel dev more closely has shown security benefits. Ultimately, Linux works best when aligned with the broader community.
  
  In closing, Corbet recalled the saying "Linux is free like a puppy is free." Using open source seems easy at first, but sustaining it long-term requires significant care and feeding. As Linux is incorporated into more critical systems, that maintenance becomes ever more crucial. The kernel changes ahead are aimed at keeping Linux healthy and vibrant for the next generation of users, businesses, and developers.
  kernel

• Linux Celebrates 32 Years with the Release of 6.6-rc2 Version
  
  Today marks the 32nd anniversary of Linus Torvalds introducing the inaugural Linux 0.01 kernel version, and celebrating this milestone, Torvalds has launched the Linux 6.6-rc2. Among the noteworthy updates are the inclusion of a feature catering to the ASUS ROG Flow X16 tablet's mode handling and the renaming of the new GenPD subsystem to pmdomain.
  
  The Linux 6.6 edition is progressing well, brimming with exciting new features that promise to enhance user experience. Early benchmarks are indicating promising results, especially on high-core-count servers, pointing to a potentially robust and efficient update in the Linux series.
  
  Here is what Linus Torvalds had to say in today's announcement:
  Another week, another -rc.I think the most notable thing about 6.6-rc2 is simply that it'sexactly 32 years to the day since the 0.01 release. And that's a roundnumber if you are a computer person.Because other than the random date, I don't see anything that reallystands out here. We've got random fixes all over, and none of it looksparticularly strange. The genpd -> pmdomain rename shows up in thediffstat, but there's no actual code changes involved (make sure touse "git diff -M" to see them as zero-line renames).And other than that, things look very normal. Sure, the architecturefixes happen to be mostly parisc this week, which isn't exactly theusual pattern, but it's also not exactly a huge amount of changes.Most of the (small) changes here are in drivers, with some tracingfixes and just random things. The shortlog below is short enough toscroll through and get a taste of what's been going on. Linus Torvalds

• Introducing Bavarder: A User-Friendly Linux Desktop App for Quick ChatGPT Interaction
  
  Want to interact with ChatGPT from your Linux desktop without using a web browser?
  
  Bavarder, a new app, allows you to do just that.
  
  Developed with Python and GTK4/libadwaita, Bavarder offers a simple concept: pose a question to ChatGPT, receive a response, and promptly copy the answer (or your inquiry) to the clipboard for pasting elsewhere.
  
  With an incredibly user-friendly interface, you won't require AI expertise (or a novice blogger) to comprehend it. Type your question in the top box, click the blue send button, and wait for a generated response to appear at the bottom. You can edit or modify your message and repeat the process as needed.
  
  During our evaluation, Bavarder employed BAI Chat, a GPT-3.5/ChatGPT API-based chatbot that's free and doesn't require signups or API keys. Future app versions will incorporate support for alternative backends, such as ChatGPT 4 and Hugging Chat, and allow users to input an API key to utilize ChatGPT3.
  
  At present, there's no option to regenerate a response (though you can resend the same question for a potentially different answer). Due to the lack of a "conversation" view, tracking a dialogue or following up on answers can be challenging — but Bavarder excels for rapid-fire questions.
  
  As with any AI, standard disclaimers apply. Responses might seem plausible but could contain inaccurate or false information. Additionally, it's relatively easy to lead these models into irrational loops, like convincing them that 2 + 2 equals 106 — so stay alert!
  
  Overall, Bavarder is an attractive app with a well-defined purpose. If you enjoy ChatGPT and similar technologies, it's worth exploring.
  ChatGPT AI

• LibreOffice 7.5.3 Released: Third Maintenance Update Brings 119 Bug Fixes to Popular Open-Source Office Suite
  
  Today, The Document Foundation unveiled the release and widespread availability of LibreOffice 7.5.3, which serves as the third maintenance update to the current LibreOffice 7.5 open-source and complimentary office suite series.
  
  Approximately five weeks after the launch of LibreOffice 7.5.2, LibreOffice 7.5.3 arrives with a new set of bug fixes for those who have successfully updated their GNU/Linux system to the LibreOffice 7.5 series.
  
  LibreOffice 7.5.3 addresses a total of 119 bugs identified by users or uncovered by LibreOffice developers. For a more comprehensive understanding of these bug fixes, consult the RC1 and RC2 changelogs.
  
  You can download LibreOffice 7.5.3 directly from the LibreOffice website��or from SourceForge as binary installers for DEB or RPM-based GNU/Linux distributions. A source tarball is also accessible for individuals who prefer to compile the software from sources or for system integrators.
  
  All users operating the LibreOffice 7.5 office suite series should promptly update their installations to the new point release, which will soon appear in the stable software repositories of your GNU/Linux distributions.
  
  In early February 2023, LibreOffice 7.5 debuted as a substantial upgrade to the widely-used open-source office suite, introducing numerous features and improvements. These enhancements encompass major upgrades to dark mode support, new application and MIME-type icons, a refined Single Toolbar UI, enhanced PDF Export, and more.
  
  Seven maintenance updates will support LibreOffice 7.5 until November 30th, 2023. The next point release, LibreOffice 7.5.4, is scheduled for early June and will include additional bug fixes.
  
  The Document Foundation once again emphasizes that the LibreOffice office suite's "Community" edition is maintained by volunteers and members of the Open Source community. For enterprise implementations, they suggest using the LibreOffice Enterprise family of applications from ecosystem partners.
  LibreOffice