All the News that Matters

• Fedora 42: mingw-libsoup Critical Out-of-Bounds Read CVE-2025-11021
  Backport fix for CVE-2025-11021.

• Fedora 42: mingw-python3 Critical Denial Service Fix CVE-2025-12084
  Backport fix for CVE-2025-12084.

• Fedora 42: Fix for Important Integer Overflow Vulnerability in mingw-glib2
  Update to glib-2.84.4 and backport fixes for CVE-2025-13601, CVE-2025-14087 and CVE-2025-14512.

• Mageia 9: Roundcube Critical XSS and Info Disclosure MGASA-2025-0332
  MGASA-2025-0332 - Updated roundcubemail packages fix security vulnerabilities

• Fedora 43: mingw-libsoup Security Update for CVE-2025-11021 Advisory
  Backport fix for CVE-2025-11021.

• Fedora 43 mingw-python3 Addresses Critical DoS Vulnerability CVE-2025-12084
  Backport fix for CVE-2025-12084.

• Raspberry Pi Imager 2.0.3 Improves Drive Filtering and AppImage Bundle on Linux
  Raspberry Pi’s Tom Dewey released Raspberry Pi Imager 2.0.3 today as the second update to the major Raspberry Pi Imager 2.0 series of this cross-platform utility for installing Raspberry Pi OS and other operating systems to a microSD card.

• AAEON Introduces 3.5-inch SubCompact System with Multi-M.2 and RAID Support
  AAEON has announced the GENESYSM-MTH6, a slim 3.5-inch SubCompact industrial system designed for edge deployments that require a compact footprint, flexible expansion, and support for industrial and surveillance workloads. The GENESYSM-MTH6 is built around Intel Core Ultra processors (Series 1, formerly Meteor Lake), with options ranging from 15 W U-series to 28 W H-series SKUs. […]

• Clapper 0.10 Media Player Released With Enhancer Plugin System Improvements
  Clapper 0.10, an open-source media player, strengthens its enhancer plugin system, adding configurability, new plugins, and more.

• Elementary OS 8.1 Is Out With Secure Session — and We Have Screenshots
  elementary OS 8.1 is a point release that brings a default Secure Session, better tools for managing background apps and workspaces, and a more informative AppCenter experience.

• Lua 5.5 Released With Incremental Garbage Collection and Compact Arrays
  Lua 5.5 programming language is out with incremental major garbage collection, a new generational GC mode, and significantly more compact arrays.

• Beginners Guide for Pinky Command in Linux
  In this article, you will learn how to use the finger alternative pinky command to list the logged-in users on the target machine and view their information.

• Linux 6.19's Significant ~30% Performance Boost For Old AMD Radeon GPUs
  For those still using old AMD GCN 1.0 "Southern Islands" or GCN 1.1 "Sea Islands" graphics cards, the upcoming Linux 6.19 kernel is a wonderful holiday gift. With Linux 6.19, the GCN 1.0/1.1 GPUs are now defaulting to the modern AMDGPU kernel driver in place of the legacy "Radeon" DRM driver that has been the default for GCN 1.1/1.0 and other ATI/AMD graphics processors of the past 2+ decades. In this article is a look at the performance benefit of now AMDGPU being the default as well as now enabling RADV Vulkan support out-of-the-box.

• elementary OS 8.1 Released with Wayland Session by Default, ARM64 Support
  The elementary OS team released today elementary OS 8.1 as the latest stable version of their Ubuntu-based distribution using the modern Pantheon desktop environment.

• Linux 7.0 To Remove Support For AMD's Never-Released Ryzen AI NPU2
  The upcoming Linux 7.0 kernel (unless it ends up being called Linux 6.20) will drop support for the AMD NPU2 as their second-generation neural processing unit that never ended up being released into any retail products...

• What the Linux desktop really needs to challenge Windows
  Wasn't 2025 the year it happened? Yes. No. Answers on a Christmas cardOpinion I've run Linux desktops since the big interface question was whether to use Korn or Bash for your shell. Before that, I'd used Unix desktops such as Visix Looking Glass, Sun OpenWindows, and SCO's infamous Open Deathtrap Desktop.…

• Safety Panel Says NASA Should Have Taken Starliner Incident More Seriously
  joshuark shares a report from Ars Technica: For the better part of two months last year, most of us had no idea how serious the problems were with Boeing's Starliner spacecraft docked at the International Space Station. A safety advisory panel found this uncertainty also filtered through NASA's workforce. [...] The Starliner capsule was beset by problems with its maneuvering thrusters and pernicious helium leaks on its 27-hour trip from the launch pad to the ISS. For a short time, Starliner commander Wilmore lost his ability to control the movements of his spacecraft as it moved in for docking at the station in June 2024. Engineers determined that some of the thrusters were overheating and eventually recovered most of their function, allowing Starliner to dock with the ISS. [...] Throughout that summer, managers from NASA and Boeing repeatedly stated that the spacecraft was safe to bring Wilmore and Williams home if the station needed to be evacuated in an emergency. But officials on the ground ordered extensive testing to understand the root of the problems. Buried behind the headlines, there was a real chance NASA managers would decide -- as they ultimately did -- not to put astronauts on Boeing's crew capsule when it was time to depart the ISS. [...] It would have been better, [Charlie Precourt, a former space shuttle commander and now a member of NASA's Aerospace Safety Advisory Panel (ASAP)] and other panel members said Friday, if NASA made a formal declaration of an in-flight "mishap" or "high visibility close call" soon after the Starliner spacecraft's troubled rendezvous with the ISS. Such a declaration would have elevated responsibility for the investigation to NASA's safety office. [...] After months of testing and analysis, NASA officials were unsure if the thruster problems would recur on Starliner's flight home. They decided in August 2024 to return the spacecraft to the ground without the astronauts, and the capsule safely landed in New Mexico the following month. The next Starliner flight will carry only cargo to the ISS. The safety panel recommended that NASA review its criteria and processes to ensure the language is "unambiguous" in requiring the agency to declare an in-flight mishap or a high-visibility close call for any event involving NASA personnel "that leads to an impact on crew or spacecraft safety."
  
  
  Read more of this story at Slashdot.
  

• How a Power Outage In Colorado Caused US Official Time To Be 4.8 Microseconds
  Tony Isaac shares a report from NPR: The U.S. government calculates the country's official time using more than a dozen atomic clocks at a federal facility northwest of Denver. But when a destructive windstorm knocked out power to the National Institute of Standards and Technology (NIST) laboratory in Boulder on Wednesday and a backup generator subsequently failed, time ever so slightly slowed down. The lapse "resulted in NIST UTC [universal coordinated time] being 4.8 microseconds slower than it should have been," NIST spokesperson Rebecca Jacobson said in an email. [...] Since 2007, the official time of the U.S. has been determined by the commerce secretary, who oversees NIST, along with the U.S. Navy. The national time standard is known as NIST UTC. (Somewhat confusingly, UTC itself is a separate, global time standard to which the U.S. and other countries contribute measurements.) NIST currently calculates the standard using a weighted average of the readings of 16 atomic clocks situated across the Boulder campus. Atomic clocks, including hydrogen masers and cesium beam clocks, rely on the natural resonant frequencies of atoms to tell time with extremely high accuracy. All of the atomic clocks continued ticking through the power outage last week thanks to their battery backup systems, according to NIST supervisory research physicist Jeff Sherman. What failed was the connection between some of the clocks and NIST's measurement and distribution systems, he said. Some critical operations staff who were still on site following the severe weather were able to restore backup power by activating a diesel generator the team had kept in reserve, Sherman said.
  
  
  Read more of this story at Slashdot.
  

• Garmin Emergency Autoland Has First Save
  "Garmin's Collier Trophy award-winning Autonomi emergency Autoland, a system designed to safely land an aircraft in the event of pilot incapacitation, made its first real-world use and save on Saturday," writes Slashdot reader slipped_bit. AvBrief.com reports: Social media posts from flight tracking hobbyists reported a King Air 200 squawked 7700 about 2 p.m. local time today. The Autoland system was initiated and landed the aircraft at Rocky Mountain Metropolitan Airport near Denver. A recording from LiveATC's feed of the airport's tower frequency includes a robotic female voice declaring a pilot incapacitation and the intention to land on Runway 30. The aircraft landed successfully and there have been no reports of injuries. The nature of the incapacitation and the condition of the pilot have not been released. VASAviation put together this nice animation of the event [here]. The aircraft, N479BR, was being operated by Buffalo River Outfitters from Aspen to Rocky Mountain Metropolitan. It's not clear how many people were on board. The system appeared to work flawlessly, and the controller at Rocky Mountain Metropolitan seemed to take it in stride, accommodating as many requests as he could before shutting down the airport for the landing.
  
  
  Read more of this story at Slashdot.
  

• FCC Bans Foreign-Made Drones Over National Security, Spying Concerns
  The FCC has banned approval of new foreign-made drones and components, citing "an unacceptable risk" to national security. The move will most heavily impact DJI but it "does not affect drones or drone components that are currently sold in the United States." Reuters reports: The tech was placed on the commission's "Covered List," barring DJI and other foreign drone manufacturers from receiving the FCC's approval to sell new drone models for import or sale in the U.S. In Monday's announcement, the agency said that the move "will reduce the risk of direct [drone] attacks and disruptions, unauthorized surveillance, sensitive data exfiltration and other [drone] threats to the homeland." FCC Chair Brendan Carr said in a statement that while drones offer the potential to boost public safety and the U.S.' posture on global innovation, "criminals, terrorists and hostile foreign actors have intensified their weaponization of these technologies, creating new and serious threats to our homeland." The ruling comes as China hawks in Congress amplify warnings about the security risks of drones made by DJI, which accounts for more than 90% of the global market share. But efforts to crack down on Capitol Hill have been met with some pushback due to the potential impacts of curbing the drone usage on U.S. businesses and law enforcement. A wide variety of sectors, including construction, energy, agriculture and mining companies, as well as local police and fire departments across the country, deploy DJI-made drones.
  
  
  Read more of this story at Slashdot.
  

• Microsoft To Replace All C/C++ Code With Rust By 2030
  Microsoft plans to eliminate all C and C++ code across its major codebases by 2030, replacing it with Rust using AI-assisted, large-scale refactoring. "My goal is to eliminate every line of C and C++ from Microsoft by 2030," Microsoft Distinguished Engineer Galen Hunt writes in a post on LinkedIn. "Our strategy is to combine AI and Algorithms to rewrite Microsoft's largest codebases. Our North Star is '1 engineer, 1 month, 1 million lines of code.' To accomplish this previously unimaginable task, we've built a powerful code processing infrastructure. Our algorithmic infrastructure creates a scalable graph over source code at scale. Our AI processing infrastructure then enables us to apply AI agents, guided by algorithms, to make code modifications at scale. The core of this infrastructure is already operating at scale on problems such as code understanding." Hunt says he's looking to hire a Principal Software Engineer to help with this effort. "The purpose of this Principal Software Engineer role is to help us evolve and augment our infrastructure to enable translating Microsoft's largest C and C++ systems to Rust," writes Hunt. "A critical requirement for this role is experience building production quality systems-level code in Rust -- preferably at least 3 years of experience writing systems-level code in Rust. Compiler, database, or OS implementation experience is highly desired. While compiler implementation experience is not required to apply, the willingness to acquire that experience in our team is required."
  
  
  Read more of this story at Slashdot.
  

• Alphabet Acquires Data Center and Energy Infrastructure Company Intersect For $4.75 Billion
  Alphabet is acquiring Intersect for $4.75 billion to accelerate data center and power-generation capacity as AI infrastructure demand surges. CNBC reports: Alphabet said Intersect's operations will remain independent, but that the acquisition will help bring more data center and generation capacity online faster. "Intersect will help us expand capacity, operate more nimbly in building new power generation in lockstep with new data center load, and reimagine energy solutions to drive U.S. innovation and leadership," Sundar Pichai, CEO of Google and Alphabet, said in a statement. Google already had a minority stake in Intersect from a funding round that was announced last December. In a release at the time, Intersect said its strategic partnership with Google and TPG Rise Climate aimed to develop gigawatts of data center capacity across the U.S., including a $20 billion investment in renewable power infrastructure by the end of the decade. Alphabet said Monday that Intersect will work closely with Google's technical infrastructure team, including on the companies' co-located power site and data center in Haskell County, Texas. Google previously announced a $40 billion investment in Texas through 2027, which includes new data center campuses in the state's Haskell and Armstrong counties.
  
  
  Read more of this story at Slashdot.
  

• Cyberattack Disrupts France's Postal Service, Banking During Christmas Rush
  An anonymous reader quotes a report from the Associated Press: With just three days to go before Christmas, a cyberattack knocked France's national postal service offline Monday, blocking and delaying package deliveries and online payments. The timing was miserable for millions of people at the height of the Christmas season, as frazzled postal workers fended off frustrated customers. No one immediately claimed responsibility, but suspicions abounded. What the postal service La Poste called a major network incident remained unresolved by Monday evening, more than eight hours after it was first reported. For a company that delivered 2.6 billion packages last year and employs more than 200,000 people, that's a big hit. La Poste said in a statement that a distributed denial of service incident, or DDoS, "rendered its online services inaccessible." It said the incident had no impact on customer data, but disrupted package delivery. Letters, including holiday greeting cards, could still be mailed and delivered. But transactions requiring tracking or access to the postal service internal computer systems were impossible. The cyberattack also hurt online banking. Customers of the company's banking arm, La Banque Postale, were blocked from using the application to approve payments or conduct other banking services. The bank redirected approvals to text messages instead. "Our teams are mobilized to resolve the situation quickly," the bank said in messages posted on social networks. The disruption came a week after France's government was targeted by a cyberattack that targeted the Interior Ministry, in charge of national security.
  
  
  Read more of this story at Slashdot.
  

• Larry Ellison Pledges $40-Billion Personal Guarantee For Paramount's Warner Bros Bid
  Oracle co-founder Larry Ellison has personally guaranteed $40.4 billion to shore up Paramount's bid for Warner Bros. Discovery, trying to ease financing doubts as Warner Bros weighs a rival offer from Netflix. Reuters reports: Paramount said the amended terms do not change the $30-per-share all-cash offer even as the fight for Hollywood's sought-after assets heats up, with control of Warner Bros' vast library offering a decisive edge in the streaming wars. "I doubt many Warner Bros shareholders that are on the fence or planning to vote no "were holding out due to issues the "revised bid addresses such as a guarantee from Larry Ellison on the funding front," said Seth Shafer, principal analyst at S&P Global. As part of the revised terms, Ellison also agreed not to revoke the family trust or transfer its assets during the pendency of the transaction, the filing showed. Paramount said it has raised its regulatory reverse termination fee to $5.8 billion from $5 billion to match the competing transaction and extended the expiration date of its tender offer to January 21, 2026. The "bid follows Warner Bros asking its shareholders to reject the $108.4 billion offer from Paramount for the whole company, including cable TV assets, on doubts over its financing and the lack of a full guarantee from the Ellison family. But Warner Bros investors, including the fifth largest shareholder Harris Associates, have said they would be open to revised offers from Paramount if it presents a superior bid and addresses issues with deal terms. Under the Netflix agreement, Warner Bros would owe Netflix $2.8 billion as breakup fee if it walks away from that deal.
  
  
  Read more of this story at Slashdot.
  

• Call of Duty Co-Creator, Respawn Co-Founder, and EA Exec Vince Zampella Killed In Car Accident
  Vince Zampella, the co-creator of Call of Duty and co-founder of Infinity Ward and Respawn Entertainment, died at 55 in a single-car accident in Los Angeles. According to NBC Los Angeles, "The single-car crash was reported at about 12:45 p.m. on the scenic road north of Los Angeles in the San Gabriel Mountains. The southbound car veered off the road, hit a concrete barrier and a passenger was ejected, the California Highway Patrol said. The driver was trapped in the ensuing car fire, the CHP said. The driver died at the scene and the passenger died at a hospital, authorities told NBC4 Investigates." IGN reports: Zampella was an incredibly talented game developer who changed the industry with Call of Duty, a franchise he co-created with Jason West in 2003 at Infinity Ward, the studio he co-founded with West, after previously serving as the lead designer for EA's Medal of Honor: Allied Assault. Zampella was at the center of a high-profile lawsuit against Activision that alleged that the publisher owed Zampella and the Infinity Ward team millions of dollars in unpaid Call of Duty royalties. The bitter professional divorce led to Zampella and West taking a substantial number of the Infinity Ward team with them to EA, where they co-founded Respawn Entertainment, a studio that has produced nothing but critically acclaimed hits: Titanfall, Titanfall 2, Apex Legends, Star Wars Jedi: Fallen Order, and Star Wars Jedi: Survivor. Respawn's success under Zampella led to him getting promoted twice, eventually overseeing the Battlefield franchise within his role as Group General Manager at EA.
  
  
  Read more of this story at Slashdot.
  

• US Blocks All Offshore Wind Construction, Says Reason Is Classified
  An anonymous reader quotes a report from Ars Technica: On Monday, the US Department of the Interior announced that it was pausing the leases on all five offshore wind sites currently under construction in the US. The move comes despite the fact that these projects already have installed significant hardware in the water and on land; one of them is nearly complete. In what appears to be an attempt to avoid legal scrutiny, the Interior is blaming the decisions on a classified report from the Department of Defense. The second Trump administration announced its animosity toward offshore wind power literally on day one, issuing an executive order on inauguration day that called for a temporary halt to issuing permits for new projects pending a re-evaluation. Earlier this month, however, a judge vacated that executive order, noting that the government has shown no indication that it was even attempting to start the re-evaluation it said was needed. But a number of projects have gone through the entire permitting process, and construction has started. Before today, the administration had attempted to stop these in an erratic, halting manner. Empire Wind, an 800 MW farm being built off New York, was stopped by the Department of the Interior, which alleged that it had been rushed through permitting. That hold was lifted following lobbying and negotiations by New York and the project developer Orsted, and the Department of the Interior never revealed why it changed its mind. When the Interior Department blocked a second Orsted project, Revolution Wind offshore of southern New England, the company took the government to court and won a ruling that let it continue construction. Today's announcement targets those and three other projects. Interior says it is pausing the permits for all five, which are the only projects currently under construction. It claims that offshore wind creates "national security risks" that were revealed in a recent analysis performed by the Department of Defense, which apparently neglected to identify these issues during the evaluations it did while the projects were first permitted. What are these risks? The Interior Department is being extremely coy. It notes that offshore wind turbines can interfere with radar sensing, but that's been known for a while. In announcing the decision, Interior Secretary Doug Burgum also noted "the rapid evolution of the relevant adversary technologies." But the announcement says that the Defense Department analysis is classified, meaning nobody is likely to know what the actual reason is -- presuming one exists. The classification will also make it far more challenging to contest this decision in court.
  
  
  Read more of this story at Slashdot.
  

• Disaggregated Routing with SONiC and VPP: Lab Demo and Performance Insights  Part Two
  In Part One of this series, we examined how the SONiC control plane and the VPP data plane form a cohesive, software-defined routing stack through the Switch Abstraction Interface.` We outlined how SONiC’s Redis-based orchestration and VPP’s user-space packet engine come together to create a high-performance, open router architecture. In this second part, we’ll turn [0]
  
  The post Disaggregated Routing with SONiC and VPP: Lab Demo and Performance Insights  Part Two appeared first on Linux.com.
  

• Disaggregated Routing with SONiC and VPP: Architecture and Integration  Part One
  The networking industry is undergoing a fundamental architectural transformation, driven by the relentless demands of cloud-scale data centers and the rise of software-defined infrastructure. At the heart of this evolution is the principle of disaggregation: the systematic unbundling of components that were once tightly integrated within proprietary, monolithic systems.` This movement began with the separation [0]
  
  The post Disaggregated Routing with SONiC and VPP: Architecture and Integration  Part One appeared first on Linux.com.
  

• Kubernetes on Bare Metal for Maximum Performance
  When teams consider deploying Kubernetes, one of the first questions that arises is: where should it run? The default answer is often the public cloud, thanks to its flexibility and ease of use. However, a growing number of organizations are revisiting the advantages of running Kubernetes directly on bare metal servers. For workloads that demand [0]
  
  The post Kubernetes on Bare Metal for Maximum Performance appeared first on Linux.com.
  

• How to Deploy Lightweight Language Models on Embedded Linux with LiteLLM
  This article was contributed by Vedrana Vidulin, Head of Responsible AI Unit at Intellias (LinkedIn). As AI becomes central to smart devices, embedded systems, and edge computing, the ability to run language models locally — without relying on the cloud — is essential. Whether its for reducing latency, improving data privacy, or enabling offline functionality, local AI [0]
  
  The post How to Deploy Lightweight Language Models on Embedded Linux with LiteLLM appeared first on Linux.com.
  

• Automating Compliance Management with UTMStacks Open Source SIEM 8 XDR
  Achieving and maintaining compliance with regulatory frameworks can be challenging for many organizations. Managing security controls manually often leads to excessive use of time and resources, leaving less available for strategic initiatives and business growth. Standards such as CMMC, HIPAA, PCI DSS, SOC2 and GDPR demand ongoing monitoring, detailed documentation, and rigorous evidence collection. Solutions [0]
  
  The post Automating Compliance Management with UTMStacks Open Source SIEM & XDR appeared first on Linux.com.
  

• A Simple Way to Install Talos Linux on Any Machine, with Any Provider
  Talos Linux is a specialized operating system designed for running Kubernetes. First and foremost it handles full lifecycle management for Kubernetes control-plane components. On the other hand, Talos Linux focuses on security, minimizing the user’s ability to influence the system. A distinctive feature of this OS is the near-complete absence of executables, including the absence [0]
  
  The post A Simple Way to Install Talos Linux on Any Machine, with Any Provider appeared first on Linux.com.
  

• Using OpenTelemetry and the OTel Collector for Logs, Metrics, and Traces
  OpenTelemetry (fondly known as OTel) is an open-source project that provides a unified set of APIs, libraries, agents, and instrumentation to capture and export logs, metrics, and traces from applications. The project’s goal is to standardize observability across various services and applications, enabling better monitoring and troubleshooting. Read More at Causely
  
  The post Using OpenTelemetry and the OTel Collector for Logs, Metrics, and Traces appeared first on Linux.com.
  

• Project Tazama, A Project Hosted by LF Charities With Support From the Gates Foundation, Receives Digital Public Good Designation.
  Exciting news! The Tazama project is officially a Digital Public Good having met the criteria to be accepted to the Digital Public Goods Alliance ! Tazama is a groundbreaking open source software solution for real-time fraud prevention, and offers the first-ever open source platform dedicated to enhancing fraud management in digital payments. Historically, the financial [0]
  
  The post Project Tazama, A Project Hosted by LF Charities With Support From the Gates Foundation, Receives Digital Public Good Designation. appeared first on Linux.com.
  

• Xen 4.19 is released
  Xen Project 4.19 has been officially out since July 31st, 2024, and it brings significant updates. With enhancements in performance, security, and versatility across various architectures like Arm, PPC, RISC-V, and x86, this release is an important milestone for the Xen community. Read more at XCP-ng Blog
  
  The post Xen 4.19 is released appeared first on Linux.com.
  

• Advancing Xen on RISC-V: key updates
  At Vates, we are heavily invested in the advancement of Xen and the RISC-V architecture. RISC-V, a rapidly emerging open-source hardware architecture, is gaining traction due to its flexibility, scalability and openness, which align perfectly with our ethos of fostering open development ecosystems. Although the upstream version of Xen for RISC-V is not yet fully [0]
  
  The post Advancing Xen on RISC-V: key updates appeared first on Linux.com.
  

Engadget"Engadget is a web magazine with obsessive daily coverage of everything new in gadgets and consumer electronics"

• The best gifts cards to give this holiday season including Best Buy, Apple, Amazon and others
  The shipping deadlines have passed and time has (almost) run out for us procrastinators to get gifts for our friends and family. But fear not: it’s never been easier to send a gift to someone, including an e-gift card to a store or for a service you know they use. If you’re looking for more creative digital gift ideas, we’ve got you covered. But for those hard-to-shop-for folks in your life, a gift card could do the trick. These are the gift cards that are the most helpful to send as last-minute gifts this year.
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  Check out the rest of our gift ideas here.
  This article originally appeared on Engadget at https://www.engadget.com/the-best-gifts-cards-to-give-this-holiday-season-including-best-buy-apple-amazon-and-others-110032725.html?src=rss

• 2025 was the year Xbox died
  Want to see a dead body? I present to you the Xbox. After a subdued launch at the height of the COVID pandemic in 2020, the Xbox Series X quickly lost the fight against the PlayStation 5. Microsoft simply couldn9t deliver enough compelling games, despite some huge acquisitions, while Sony leaned on its goodwill from the PS4 era and a handful of desirable exclusives. As prices rose due to supply chain issues and the Trump administration9s volatile tariff scheme, there was even less of a reason to get an Xbox (even the cheaper Series S). When I re-reviewed the Series X last year, it was clear that it never lived up to its potential. Anyone in their right mind would be better off buying a PlayStation 5.
  
  Xbox didn9t enter 2025 in a great state, and it9s leaving the year grasping for help, like an Arc Raider player desperate for a revival after being knocked out. Microsoft brought titles like Forza Horizon 5 over to the PlayStation 5, which prompted Engadget Deputy Editor Nathan Ingraham to declare he no longer needed an Xbox. 
  Xbox Series X controllerEngadget
  Making things worse this year, Microsoft raised prices across the board, with the Xbox Series S starting at $400 and the cheapest Series X going for a whopping $600. And slow sales prompted Costco to stop selling Xbox consoles entirely. Microsoft didn9t even try to push systems during Black Friday — why go through the trouble of having sales if nobody is buying the hardware in the first place? 
  
  Even Game Pass, which was once renowned as one of the best deals in gaming, almost doubled in price over the last year, reaching up to $30 a month (or $360 a year) for the Ultimate tier. Sure, Microsoft tried to add more value to its cheaper Game Pass tiers, and finally upgraded its cloud streaming platform, but the lack of consistent must-play exclusive titles has devalued the service (and Xbox as a whole). will hit PS5 and Switch 2 next year. There9s no word on Avowed reaching other consoles yet, but given Microsoft9s current trajectory (and the fact that it9s a genuinely great game), I wouldn9t be surprised if it becomes available elsewhere.
  
  There was a chance for Microsoft to reinvigorate the Xbox brand with the ASUS ROG Xbox Ally and Ally X gaming handhelds, but the $600 and $1,000 launch prices placed them out of reach for most gamers. It also doesn9t help that Windows still isn9t well-optimized for portable devices with touchscreens, and those systems also aren9t compatible with older Xbox titles like the consoles. At the very least, Microsoft now has a handheld foothold. But a future portable Xbox console would need to be significantly cheaper to compete with the likes of the Steam Deck, which starts at $400 (and is often on sale for much less).
  
  And speaking of Valve, the company9s recently announced Steam Machine has also stolen a lot of potential thunder from Xbox. The Steam Machine is basically a tiny gaming desktop for your TV, running the Steam Deck9s SteamOS. That platform is a Linux distribution optimized for emulating Windows titles. But unlike an Xbox console, it9s not closed off in any way. You9re free to install whatever you9d like on a Steam Machine — even Windows!
  
  While we still haven9t seen the Steam Machine in action, the Steam Deck9s excellent performance and game compatibility makes me think its desktop sibling could be genuinely compelling to console players looking for something new. And it will likely directly compete with the next Xbox, which is rumored to arrive in 2027 as a PC in a TV-friendly case (according to Microsoft9s recent partnership deal with AMD also hints at a more PC-like experience — Xbox President Sarah Bond noted that the Xbox team is "working closely with the Windows team to ensure that Windows is the number one platform for gaming."
  
  It9s worth remembering that only a single generation of the Xbox — the Xbox 360 — was successful enough to truly compete with Sony9s PlayStation. The original Xbox reportedly cost Microsoft $4 billion over the course of four years, leading the company to quickly jump ship and move to its successor. The Xbox 360 was genuinely innovative, thanks to Xbox Live and smarter online integration, and it had a healthy amount of third-party support. In comparison, Sony9s PlayStation 3 was $100 to $200 more expensive than the Xbox 360 at launch, it had far worse online support and developers found it hard to program for.
  Xbox Series XDevindra Hardawar for Engadget
  Unfortunately, Microsoft squandered most of its good will with the Xbox One. That console was first announced as an "always online" device with restrictive DRM features that limited how you could share and sell games; it was bundled with a Kinect camera that could potentially surveil you; and at $499, it was $100 more than the PlayStation 4. Microsoft quickly reversed many of its DRM-heavy plans for the Xbox One, but by that point the damage was done. Sony ultimately sold more than twice as many PS4 units as the entirety of the Xbox One family (which included the cheaper One S and more powerful One X), according to data from Ampere Research. 
  
  Things are looking worse this generation: The Xbox Series S and X reportedly only sold around 33 million units as of July, according to Statista estimates, while Sony confirmed it sold 84.2 million PS5s as of November. If this trend continues (and it doesn’t appear as if Xbox sales will be increasing any time soon), Sony could end up selling three times as many consoles this generation, compared to Microsoft. Xbox sales have been so slow that the family-focused Nex Playground managed to outsell it in November, according to data from Circana.  
  
  Given Xbox9s inability to compete with the PlayStation 5, it9s no wonder Microsoft could be changing things up entirely for its next system. Its partnership with AMD could easily lead to new handhelds, and it also gives Microsoft a leg up in producing a compact and powerful Xbox PC. After all, why should the company keep trying to go toe-to-toe with Sony9s closed PlayStation platform? Why shouldn9t Microsoft embrace its PC roots to give us a gaming desktop under our TVs? The company has already committed to bringing new Xbox games to PCs immediately, so the line between the two is already blurring. 
  
  It may be a risk, but evolving into a PC proves there’s still life in the Xbox brand. And crucially, it’s also something Sony can’t easily replicate.
  
  
  
  
  
  
  This article originally appeared on Engadget at https://www.engadget.com/gaming/xbox/2025-was-the-year-xbox-died-130000467.html?src=rss

• CES 2026: Everything we're expecting from tech's biggest conference in January
  As we hurtle towards the end of the year, the shadow of CES hovers on the horizon. Tech’s biggest annual conference is starting in just under two weeks, and we already know some of the products and announcements that could be in store. The CES 2026 show floor is officially open from January 6 through 9, but the fun kicks off with events on Sunday January 4 and a host of press conferences on Monday. As always, product demos, announcements and networking will be happening at the Las Vegas Convention Center and other hotels all over the city. As usual, Engadget will be covering the event in-person and remotely, bringing you news and hands-ons straight from the show floor.
  
  More specific details and pre-announcements are already trickling out as CES approaches, and thanks to the CTA’s schedule we also do know what companies will be hosting press conferences. We’re also using our experience and expertise to predict what tech trends could rear their heads at the show.
  What we already know about
  Press conferences and show floor booths are the bread and butter of CES. The Consumer Technology Association has already published a searchable directory of who will have a presence at the show, along with a schedule of every official panel and presentation.
  
  On Sunday, January 4, Samsung will kick-off CES with "The First Look," a presentation hosted by TM Roh, the CEO of Samsung's DX Division, on the company's "vision for the DX (Device eXperience) Division in 2026, along with new AI-driven customer experiences." 
  
  That'll be followed by multiple press conferences throughout Monday, January 5. LG is hosting its "Innovation in Tune with You" presentation to share "its vision for elevating daily life through Affectionate Intelligence" at the start of the day, Intel is launching its new Core Ultra Series 3 processors in the afternoon, Sony Honda Mobility is holding a press conference on its first car and AMD CEO Lisa Su will cover AMD's upcoming chip announcements at a keynote address that closes out the day.
  
  On the week of December 15, the CTA added a keynote by NVIDIA CEO Jensen Huang to its schedule. The event will take place on January 5 at 1PM PT and, according to the website, will last about 90 minutes. Based on the description on the listing, the presentation will “showcase the latest NVIDIA solutions driving innovation and productivity across industries.”
  
  Finally, on Tuesday, January 6, Lenovo CEO Yuanqing Yang will host Lenovo's Tech World Conference at Sphere, using the large and decidedly curved screen to share the company's "commitment to delivering smarter AI for all by constantly redefining how technology can engage, inspire, and empower." It’s worth noting that Lenovo is the parent company of Motorola, which still makes phones and foldables that feature AI tools, so it’s possible those devices feature in the presentation as well.
  
  As they typically do, some companies have already gotten a headstart on the CES news by publicly sharing their announcements in the weeks leading up to January. LG, for example, has said it will debut its first Micro RGB television at CES. While details are scarce, the company’s press release for the LG Micro RGB evo did confirm it has received certifications by Intertek for 100 percent color gamut coverage in DCI-P3 an Adobe RGB, and that it has more than a thousand dimming zones for brightness control.
  
  Not to be forgotten, Samsung also announced it will be launching a whole lineup of Micro RGB TVs at CES. The company already introduced its first Micro RGB TV at CES 2025, which was a 115-inch model available for a cool $30,000. Next year, Samsung is expanding the range with 55-, 65-, 75-, 85-, 100- and 115-inch models that use the next evolution of the company’s Micro RGB technology.
  
  Outside of the formal introduction of new products and initiatives, reading the tea leaves of what was announced last year and what companies are reportedly working on, we can make some educated guesses at what we could see at CES 2026.
  New chips from AMD, Intel and Qualcomm
  CES is frequently the start of a cascade of new chip announcements for a given year, and one of the first places new silicon appears in real consumer products. AMD will likely use its keynote to introduce new versions of its Ryzen chips, including the recently spotted Ryzen 7 9850X3D, which is expected to offer better single-threaded performance, and the Ryzen 9000G series, which could be built with AMD's Zen 5 architecture. The company might also use its CES stage to go over its new FSR Redstone AI upscaling tech.
  
  Intel has already publicly announced that it'll launch its Panther Lake chips at CES 2026. The officially titled Intel Core Ultra Series 3 chips fit into Intel's overall "AI PC" push, but are specifically meant for premium laptops. Based on a preview from October 2025, Intel says the first chip made with its 2-nanometer 18A process will offer 50 percent more processing performance than previous generations and for the chip's Arc GPU, a 50 percent performance bump from last generation.
  
  Qualcomm is also rumored to be targeting laptops at the show, building on the work it's done moving its Snapdragon chips out of phones and tablets and into other types of computers. The company's Snapdragon X2 Elite and X2 Elite Premium chips should start appearing in laptops at CES 2026, offering a look at the improved speed and AI performance the company promised in 2025.
  Brighter, "truer" screens
  Sony announced a collection of new Bravia TVs in April 2025, replacing the company's flagship, filling in its midrange options and adding a new budget model to the mix. The star of this updated Bravia lineup is the Bravia 9, which features a QD-OLED panel, but Sony appears to be prepping entirely new display tech for 2026. In March 2025, Sony introduced a new RGB LED panel that uses individual Mini LED backlights colored in red, green and blue to produce even brighter, more accurate colors. In contrast to a QD-OLED, which filters a layer of blue organic light emitting diodes through quantum dots that change color, Sony's "General RGB LED Backlight Technology" can get as bright as a Mini LED panel without needing an extra filter layer or worrying about OLED's problems with burn-in. 
  
  The company has already trademarked the name "True RGB," which could end up being what Sony calls this new flavor of display if it decides to show them off at CES. It seems entirely likely, because CES is nothing if not a TV show — it’s a sure bet that we’ll see new TVs from the likes of LG and Samsung in addition to Sony. If the company doesn't introduce new display tech for its TVs, it does have a new 240Hz PlayStation monitor coming in 2026 that it could show off at CES instead.
  
  Sony isn't the only company hyped on bright screens. Samsung is reportedly pushing an updated version of the HDR10 and HDR10+ standards that could be ready to demo at CES 2026. The new HDR10+ Advanced standard would be Samsung's answer to Dolby Vision 2, which includes support for things bi-directional tone mapping and intelligent features that automatically adapt sports and gaming content. Samsung's take will reportedly offer improved brightness, genre-based tone mapping and intelligent motion smoothing options, among other improvements.
  Ballie Watch 2026
  The ball-shaped yellow robot lovingly known as "Ballie" has been announced twice, first in 2020 and then again in 2024 with a projector in tow. Samsung said Ballie would go on sale in 2025 at CES last year and then shared in April 2025 that Ballie would ship this summer with Google's Gemini onboard. But it's nearly 2026, and Ballie is nowhere to be seen. It's possible Samsung could make a third attempt at announcing its robot at CES 2026, but whether or not it does, robotics will still be a big part of the show.
  
  Robot vacuums and mops were a major highlight of CES 2025, and it's safe to expect notable improvements from the new models that are announced at CES 2026. Not every company will adopt the retractable arm of the Roborock Saros Z70, but robot vacuums with legs for rising over small ledges like the Dreame X50 seem like they could become the norm. Roborock could also show off its new Roborock Qrevo Curv 2 Flow, the first of its robot vacuums to feature a retractable roller mop.
  
  Beyond just traversing spaces more efficiently, improving robots' navigation could also be a major concern at the show. Prominent members of the AI industry are turning their attention from large language models to world models, which aim to give AI a deep understanding of physical space. Those world models could be the key to making robots, bipedal or otherwise, competent at navigating homes and workplaces, and will likely be a significant talking point at CES 2026.
  
  We’ll be updating this article throughout the month as more rumors surface and new products are confirmed — stay tuned for future updates!
  
  Update, December 11 2025, 11:03AM ET: This story has been updated to include detail on Lenovo being Motorola’s parent company and how the latter might have a part in the Tuesday presentation.
  
  Update, December 16 2025, 1:33PM ET: This story has been updated to include the NVIDIA press conference, which was added to the CTA schedule within the last two days.
  
  Update, December 23 2025, 7:28AM ET: This story has been updated to include LG and Samsung’s Micro RGB TV announcements, which were made public in the past seven days. The intro was also tweaked to reflect how soon CES is at this point.
  
  
  
  
  
  
  This article originally appeared on Engadget at https://www.engadget.com/big-tech/ces-2026-everything-were-expecting-from-techs-biggest-conference-in-january-120000106.html?src=rss

• The Morning After: The best games of 2025
  As many of us hunker down for the holidays, you might want to tackle some of the best games we’ve seen this year: the long-time-coming Silksong, the critically acclaimed (and sumptuous) Expedition 33 and the bizarre world of Baby Steps.
  US bans new foreign-made drones and componentsPreviously sold drones will not be affected.Engadget
  The Federal Communications Commission has assigned foreign-made drones and their critical components as prohibited to import into the US. The FCC said several national security agencies have determined that unmanned aircraft systems (UAS) and their critical components produced in foreign countries pose an unacceptable risk to the United States’ national security.
  
  FCC Chair Brendan Carr clarified on X the ban does not affect old drones. People can continue using the devices they’ve already purchased, and retailers can keep selling models already approved by the agency. One of the most well-known brands affected by the ban is Chinese company DJI, which told Engadget it was disappointed by the agency’s decision. “While DJI was not singled out, no information has been released regarding what information was used by the Executive Branch in reaching its determination,” a spokesperson said.
  
  Pirate group Anna’s Archive says it has scraped Spotify in its entiretyThe group says it has over 86 million tracks.
  Anna’s Archive, the open-source search engine for shadow libraries, claims to have scraped Spotify’s entire music library. The group acquired metadata for approximately 256 million tracks, including 86 million songs, and the total size is just under 300 TB.
  
  “A while ago, we discovered a way to scrape Spotify at scale. We saw a role for us here to build a music archive primarily aimed at preservation,” the group said in a blog post. In response, the streamer said: “Spotify has identified and disabled the nefarious user accounts that engaged in unlawful scraping. We’ve implemented new safeguards for these types of anti-copyright attacks and are actively monitoring for suspicious behavior.”
  
  Foldable phone makers have solved every issue except oneThe only issue is price.Everything you need to know about Amazon’s newest Echo feature: Alexa Home TheaterSpatial surround is here.
  Amazon’s Alexa Home Theater feature has gradually become a legitimate surround sound option. You can link up to five Echo speakers and a subwoofer for a wireless cinematic experience. While the automatic room calibration and easy setup are great, the high price tag of a full Echo Studio array and limited EQ controls mean it’s best for people already juggling multiple Amazon speakers.
  
  Continue reading.
  This article originally appeared on Engadget at https://www.engadget.com/general/the-morning-after-engadget-newsletter-121545111.html?src=rss

• How to set up an Apple Watch for a child
  Giving a child an Apple Watch can offer extra peace of mind and tools that promote independence in a controlled way. Apple’s Family Setup feature makes it possible for a kid to use an Apple Watch without owning an iPhone, and the feature set has expanded thanks to recent watchOS updates. It supports communication controls, location tools, Schooltime limits and privacy protections that allow a parent or guardian to manage how the device is used throughout the day.
  
  The setup process begins with creating or signing in with a child’s Apple ID. It continues with adding them to your Family Sharing group on an iPhone and pairing a compatible Apple Watch through the Apple Watch app. Once the watch is linked, you can adjust a range of parental controls that shape how the watch works at home, at school and when the child is out and about.
  Confirm device compatibility
  Family Setup requires a cellular-capable Apple Watch such as the Apple Watch SE or Series 6 or later. A cellular connection allows the watch to operate independently without an iPhone nearby. The watch must be running a recent version of watchOS and the iPhone used for setup must be running the latest iOS version.
  
  If the watch is not new, it needs to be erased before it can pair with a new user. This can be done directly on the watch through the Settings menu by choosing the general reset option. Once the device is reset it can be paired again from the Apple Watch app.
  Create or prepare your child9s Apple ID
  Family Setup relies on each child having their own Apple ID. This allows their data, messages, activity goals and device settings to remain separate from other people in the household. If your kid already has an Apple ID, it can be used during setup. If they do not have one, the Apple Watch app will prompt you to create one as you go through the pairing process.
  
  A child’s Apple ID is linked to Family Sharing, which lets the organizer manage permissions from a single iPhone. A parent or guardian can approve contacts, handle screen time requests and view location updates without needing to touch the watch itself. Setting this up first ensures that the watch can be paired smoothly later.
  Add the child to Family Sharing
  Family Sharing is the foundation for managing the watch, and it’s all controlled through the Settings app on your iPhone. Once Family Sharing is open you can tap the option to add a family member then follow the prompts to link the child’s Apple ID to the group. This also makes you the family organizer, which gives you control of purchase approvals, communication limits and other shared features.
  
  Once the child is added to Family Sharing their information becomes available when you begin pairing the Apple Watch. This makes the process faster since the watch can immediately associate itself with the correct Apple ID.
  Pair the watch using Family Setup
  Turn on the Apple Watch and place it near your iPhone. A prompt should appear directing you to use your iPhone for setup. If the prompt does not appear, you can open the Apple Watch app, go to All Watches and choose Add Watch. The app will then ask if the device is being set up for you or for a family member. Choose the family member option and continue.
  
  The camera on your iPhone is used to pair the devices. Align the Apple Watch face inside the frame on your screen until the pairing animation is recognized. Once the connection is made the app will ask which family member the watch is for. Select the child’s profile to continue through the remaining steps.
  
  The app will guide you through choosing which wrist the watch will be worn on, setting a passcode, signing in with the child’s Apple ID and enabling services such as Siri and location tracking. You can also set up activity goals tailored to the child’s age and fitness level.
  Manage the watch from your iPhone
  Once the Apple Watch is paired, the Watch app becomes the main place to manage how it works. The Family Setup interface is designed to give parents and guardians control without needing to handle the watch directly. Most adjustments can be made at any time from the iPhone used for setup.
  
  Screen Time controls allow you to set limits for communication and app use. You can restrict access to certain features during specific times of day, create downtime schedules and manage content restrictions for websites and apps. These settings mirror the Screen Time system used on other Apple devices which makes it easier to keep rules consistent across the household.
  
  Approved contacts can be managed through the communication limits menu. This ensures that the child can send messages and make calls only with approved people. If you add or remove contacts, they are updated instantly on the watch.
  
  Location sharing is handled through the Find My app. You can view the child’s location and set notifications that alert you when they arrive at or leave a particular place. This is useful for school pickups or after-school activities. The watch uses on-device processing for location and messages which helps maintain privacy.
  Configure Schooltime and Focus modes
  School time is one of the most important parental controls for younger users. It limits interaction with the watch during school hours by locking access to most apps and features. Only the time and a simple yellow icon appear on the screen while Schooltime is active. You can schedule Schooltime from the Apple Watch app so that it automatically turns on and off at the right times each day.
  
  Focus modes offer another layer of control. These modes can reduce distractions during homework, bedtime or other family routines. Each Focus mode can limit notifications and activity alerts so the child is not interrupted when they need to concentrate.
  Set up safety features
  Emergency SOS is enabled during setup and can be managed afterward in the Apple Watch app. It allows the child to contact emergency services by holding the side button. You can also assign an emergency contact who will receive a notification if SOS is triggered.
  
  The Medical ID should include relevant details such as allergies or medical conditions. This information can be accessed by emergency responders if needed.
  Adjust privacy and communication settings
  The watch uses on-device processing for messages, location and Siri requests which helps protect your child’s data. Location sharing can be turned on or off at any time and you can manage which apps are allowed to use location services. Communication permissions can also be updated as the child’s needs change.
  
  Apps installed on the watch can be controlled from the Apple Watch app. You can remove apps, restrict access or hide notifications at any time to maintain a balanced experience.
  This article originally appeared on Engadget at https://www.engadget.com/wearables/how-to-set-up-an-apple-watch-for-a-child-120051230.html?src=rss

• The best SSDs in 2026
  Upgrading to a good SSD can make your computer feel brand new again. Apps open faster, files move in a blink and even older machines start to feel a lot more responsive. It is one of the easiest ways to breathe life into a laptop or desktop without replacing the whole system, and the performance boost is something you notice right away.
  
  There are plenty of SSDs to choose from, though, and the naming alone can be confusing if you are not already familiar with the specs. Some drives are built for simple upgrades, while others offer speeds that benefit creators or gamers. To help you sort through it, we tested a wide mix of options and pulled together the best SSDs you can buy right now.
  Table of contents
  Best SSDs in 2026?
  
  How we test SSDs?
  
  What to look for in a PC SSD?
  
  What to look for in portable and USB flash drives?
  
  A note on console storage?
  
  SSD FAQs?
  Best SSDs in 2026
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  How we test SSDs
  I’ve either tested or personally use daily every storage drive recommended on this list. Out of our top picks, I bought four with my own money after doing about a dozen hours of research. Separately, Engadget Senior Reporter Jeff Dunn has also tested a handful of our recommendations, including the Crucial X9 Pro listed above.
  What to look for in a PC SSD
  The most affordable way to add fast storage space to a computer is with a 2.5-inch SATA drive. It’s also one of the easiest if you don’t want to worry about compatibility since almost every computer made in the last two decades will include a motherboard with Serial ATA connections. For that reason, the best SATA SSDs are an excellent choice if you want to extend the life of an older PC build. Installation is straightforward, too. Once you’ve secured the internal SSD in a drive cage, all you need to do is to connect it to your motherboard and power supply.
  
  The one downside of SATA drives is that, in terms of responsiveness, they’re slower than their high-performance NVMe counterparts, with SATA III limiting data transfers to 600MB/s. But even the slowest SSD will be significantly faster than the best mechanical drives. And with high-capacity, 1TB SATA SSDs costing about $100, they’re a good bulk-storage option.
  
  If your PC is newer, there’s a good chance it includes space for one or more M.2 SSDs. The form factor represents your ticket to the fastest SSDs on the market, but the tricky part is navigating all the different standards and specs involved.
  
  M.2 drives can feature either a SATA or PCIe connection. SSDs with the latter are known as Non-Volatile Memory or NVMe drives and are significantly faster than their SATA counterparts, with Gen3 models offering sequential write speeds of up to 3,000MB/s. These drives rely on NVMe NAND technology for their superior performance and durability. You can get twice the performance with a Gen4 SSD, but you’ll need a motherboard and processor that supports the standard.
  
  If you’re running an AMD system, that means at least a Ryzen 3000 or 5000 CPU and an X570 or B550 motherboard. With Intel, meanwhile, you’ll need at least an 11th or 12th Gen processor and a Z490, Z590 or Z690 motherboard. Keep in mind that Gen4 SSDs typically cost more than their Gen3 counterparts as well.
  
  More expensive still are the latest Gen5 models, which offer sequential read speeds of up to 16,000MB/s. However, even if your computer supports the standard, you’re better off buying a more affordable Gen4 or Gen3 drive. At the moment, very few games and applications can take advantage of Gen3 NVMe speeds, let alone Gen4 and Gen5 speeds. What’s more, Gen5 NVMe drives can run hot, which can lead to performance and longevity issues. Your money is better spent on other components, like upgrading your GPU, for now.
  
  As for why you would buy an M.2 SATA drive over a similarly specced 2.5-inch drive, it comes down to ease of installation. You add M.2 storage to your computer by installing the SSD directly onto the motherboard. That may sound intimidating, but in practice the process involves a single screw that you first remove to connect the drive to your computer and then retighten to secure the SSD in place. As an added bonus, there aren’t any wires involved, making cable management easier.
  
  Note that you can install a SATA M.2 SSD into an M.2 slot with a PCIe connection, but you can’t insert an NVMe M.2 SSD into a M.2 slot with a SATA connection. Unless you want to continue using an old M.2 drive, there’s little reason to take advantage of that feature. Speaking of backward compatibility, it’s also possible to use a Gen4 drive through a PCIe 3 connection, but you won’t get any of the speed benefits of the faster NVMe.
  
  One last thing to consider is that M.2 drives come in different physical sizes. From shortest to longest, the common options are 2230, 2242, 2260, 2280 and 22110. (The first two numbers represent width in millimeters and the latter denote the length.) For the most part, you don’t have to worry about that since 2280 is the default for many motherboards and manufacturers. Some boards can accommodate more than one size of NVMe SSD thanks to multiple standoffs. That said, check your computer’s documentation or firmware before buying a drive to ensure you’re picking up a compatible size.
  
  If you’re buying a replacement SSD for the Steam Deck or Steam Deck OLED, things are less complicated. For Valve’s handheld, you will need a 2230 size NVMe. Simple. If you don’t want to open your Steam Deck, it’s also possible to expand its storage by installing a microSD card. Engadget has a separate guide dedicated to SD card storage, so check that out for additional buying advice.
  
  I alluded to this earlier, but the best buying advice I can offer is don’t get too caught up about being on the bleeding edge of storage tech. The sequential read and write speeds you see manufacturers list on their drives are theoretical and real-world performance benchmark tests vary less than you think.
  
  If your budget forces you to choose between a 1TB Gen3 NVMe and a 512GB Gen4 model, go for the higher-capacity one. From a practical standpoint, the worst thing you can do is buy a type of SSD that’s too small for needs. Drives can slow dramatically as they approach capacity, and you will probably end up purchasing one with a higher gigabyte capacity in the future.
  What to look for in portable and USB flash drives
  Portable SSDs are a somewhat different beast to their internal siblings. While read and write speeds are important, they are almost secondary to how an external drive connects to your PC. You won’t get the most out of a model like the SanDisk Extreme Pro V2 without a USB 3.2 Gen 2 x 2 connection. Even among newer PCs, that’s something of a premium feature. For that reason, most people are best off buying a portable drive with a USB 3.2 Gen 2 or Thunderbolt connection. The former offers transfer speeds of up to 10Gbps. The best external hard drives also allow you to transfer data from your Windows PC to a Mac, or other device, if compatible. Be sure to consider this beforehand if you plan to use your portable drive across multiple devices.
  
  Additionally, if you plan to take your drive on trips and commutes, it’s worthwhile to buy a model with IP-certified water and dust proofing. Some companies like Samsung offer rugged versions of their most popular drives, including the Samsung SSD T7 Shield, with a high endurance rating. For additional peace of mind, 256-bit AES hardware encryption will help prevent someone from accessing your data if you ever lose or misplace your external SSD.
  
  Some of the same features contribute to a great thumbstick drive. Our favorite picks for best budget external SSD models feature USB 3.0 connections and some form of hardware encryption.
  A note on console storage Seagate
  If PC gaming isn’t your thing and you own an Xbox Series X|S or PS5, outfitting your fancy new console with the fastest possible storage is far more straightforward than doing the same on PC. With a Series X or Series S, your options are limited to options from Seagate and Western Digital. The former offers 512GB, 1TB and 2TB models, with the most affordable starting at a not-so-trivial $90. Western Digital’s Expansion Cards are less expensive, with pricing starting at $80 for the 512GB model. The good news is that both options are frequently on sale. Your best bet is to set an alert for the model you want by using a price tracker like CamelCamelCamel.
  
  With Sony’s PlayStation 5, upgrading the console’s internal storage is slightly more involved. Instead of employing a proprietary solution, the PS5 uses NVMe storage. Thankfully, there aren’t as many potential configurations as you would find on a PC. Engadget maintains a comprehensive guide to the best SSDs for PS5; in short, your best bet is a high-capacity Gen4 drive with a built-in heatsink. Check out that guide for a full list of gaming SSD recommendations, but for a quick go-to, consider the Corsair MP600 Pro LPX I recommend above. It meets all the memory specifications for Sony’s latest console and you won’t run into any clearance issues with the heatsink. Corsair offers 500GB, 1TB, 2TB, 4TB and 8TB versions of the drive. Expect to pay about $110 for the 1TB variant and about $200 for 2TB.
  
  For those still playing on a previous generation console, you can get slightly faster game load times from a PlayStation 4 by swapping the included hard drive to a 2.5-inch SSD, but going out of your way to do so probably isn’t worth it at this point and you’re better off saving your money for one of the new consoles and updating your operating system instead.
  SSD FAQs What size SSD is best?
  There is no one size fits all rule for SSDs, but we generally recommend getting at least a 1TB SSD if you’re looking to upgrade PC or game console storage, or looking to add an external drive to your toolkit. A 1TB drive will be plenty for most people who need extra storage space for photos, documents and programs. If you’re a hardcore gamer, you may want to invest in even more storage considering many high-profile titles today can take up a ton of space.
  Is a 256GB SSD better than a 1TB hard drive?
  The short answer is that it depends on what you need your drive for. In general, SSDs are faster and more efficient than HDDs, but HDDs are usually cheaper. We recommend springing for an SSD for most use cases today — upgrading a PC, saving important photos and documents, storing games long term, etc. But if you’re focused on getting the most amount of extra space possible (and sticking to a budget), an HDD could be a good option for you.
  Does bigger SSD mean faster?
  Getting a bigger SSD doesn’t always translate into a faster drive overall. A bigger SSD will provide a higher storage capacity, which means more space for storing digital files and programs. To understand how fast an SSD will be, you’ll want to look at its read/write speeds: read speeds measure how fast a drive can access information, while write speeds measure how fast the drive can save information. Most SSDs list their approximate read/write speeds in their specs, so be sure to check out those numbers before you make a purchase.
  This article originally appeared on Engadget at https://www.engadget.com/computing/accessories/best-ssds-140014262.html?src=rss

• The best Nintendo Switch 2 accessories for 2026
  Whether you just got a Switch 2 or you9ve had yours for a while, you may want to grab some key accessories to make it fit your gaming style even more than it already does. Not only can the right accessories make it easier and more fun to play all of the games you love, but they can also make your gaming experience better in different environments, be it on the couch, in an airplane or in the car. We9ve got to try out some of the latest Switch 2 accessories, and some of our old favorites are also compatible with the new console. These are our current favorite Nintendo Switch 2 accessories, and we9ll add to this list over time as we test out new gear.
  Best Nintendo Switch 2 accessories
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  More Nintendo Switch 2 accessories
  Nintendo announced a bunch of new accessories when it revealed the Switch 2 earlier this year. Key among them are a new Switch 2 Pro controller, Switch 2 camera, an all-in-one carrying case and more. Our staff will be testing out a bunch of these accessories, and we9ll keep our favorites list up to date as we do so. If you9re interested in picking any of those new Switch 2 accessories up, you can find them at a variety of retailers:
  
  Joy-Con 2 bundle
  
  Nintendo
  
  Walmart
  
  GameStop
  
  Best Buy
  
  Target
  
  Amazon
  
  Hori Nintendo Switch 2 Piranha Plant Camera
  
  Best Buy
  
  Target
  
  Amazon
  
  Joy-Con 2 Charging Grip
  
  Nintendo
  
  Walmart
  
  GameStop
  
  Best Buy
  
  Target
  
  Amazon
  
  Joy-Con 2 Wheels (set of 2)
  
  Nintendo
  
  Walmart
  
  GameStop
  
  Best Buy
  
  Target
  
  Amazon
  
  Switch 2 All-in-One Carrying Case
  
  Nintendo
  
  Walmart
  
  GameStop
  
  Best Buy
  
  Target
  
  Amazon
  
  Switch 2 Carrying Case and Screen Protector
  
  Nintendo
  
  Walmart
  
  GameStop
  
  Best Buy
  
  Target
  
  Amazon
  This article originally appeared on Engadget at https://www.engadget.com/gaming/nintendo/best-nintendo-switch-2-accessories-070011952.html?src=rss

• US bans new foreign-made drones and components
  The Federal Communications Commission has added foreign-made drones and their critical components to the agency’s “Covered List,” making them prohibited to import into the US. In a public notice published by the FCC, it said several national security agencies have determined that umanned aircraft systems (UAS) and their critical components produced in foreign countries pose an unacceptable risk to the national security of the United States. 
  
  “UAS and UAS critical components must be produced in the United States,” the agency said. “UAS are inherently dual-use: they are both commercial platforms and potentially military or paramilitary sensors and weapons. UAS and UAS critical components, including data transmission devices, communications systems, flight controllers, ground control stations, controllers, navigation systems, batteries, smart batteries, and motors produced in a foreign country could enable persistent surveillance, data exfiltration, and destructive operations over U.S. territory, including over World Cup and Olympic venues and other mass gathering events.”
  
  FCC Chair Brendan Carr clarified on X that the ban does not affect old drones. People can continue using the devices they’ve already purchased, and retailers can keep selling models that have already been approved by the agency. The new rule only applies to upcoming models. He also said that the Department of War or the Department of Homeland Security can allow specific new models, a certain class of drones or particular components to be sold in the US. 
  Today, based on an Executive Branch national security determination, the FCC has added foreign-produced UAS (drones) and foreign-produced UAS critical component parts to the FCC’s Covered List on a going forward basis.
   
  President Trump has been clear that his Administration will… pic.twitter.com/tVLlsBeOfw
  — Brendan Carr (@BrendanCarrFCC) December 22, 2025
  The FCC didn’t name any manufacturers in particular, but one of the most well-known brands that will be affected by the ban is Chinese company DJI, which told Engadget that it was disappointed by the agency’s decision. “While DJI was not singled out, no information has been released regarding what information was used by the Executive Branch in reaching its determination,” a spokesperson said. DJI has long been in the US government’s crosshairs and has been trying to prove that its products aren’t a national security threat.
  
  “DJI products are among the safest and most secure on the market, supported by years of reviews conducted by US government agencies and independent third parties,” they added. “Concerns about DJI’s data security have not been grounded in evidence and instead reflect protectionism, contrary to the principles of an open market.”
  
  
  This article originally appeared on Engadget at https://www.engadget.com/big-tech/us-bans-new-foreign-made-drones-and-components-053201854.html?src=rss

• Pirate group Anna's Archive says it has scraped Spotify in its entirety
  Anna9s Archive, the open-source search engine for shadow libraries, says it scraped Spotify9s entire library of music. The group acquired metadata for around 256 million tracks, with 86 million actual songs, and is just under 300TB in total size.
  
  "A while ago, we discovered a way to scrape Spotify at scale. We saw a role for us here to build a music archive primarily aimed at preservation," the group said in a blog post. The pirated treasure trove of music represents over 15 million artists with over 58 million albums.
  
  The group intends to make all files available for download for anyone with the available disk space. "This Spotify scrape is our humble attempt to start such a “preservation archive” for music. Of course Spotify doesn’t have all the music in the world, but it’s a great start," the group wrote. The 86 million songs that the group has archived so far represent about 99.6 percent of listens on the platform. This only represents about 37 percent of the total and the group still has millions left to be archived.
  
  The open-source site is normally focused on text like books and papers, which it says offers the highest information density. The group says its goal of "preserving humanity9s knowledge and culture" doesn9t distinguish between media types. Of course none of this is exactly legal, and the sharing or downloading of all these files is flagrantly in violation of IP protection laws.
  
  Anna9s Archive contends that current collections of music, both physical and digital, are over-indexed to the most popular artists or composed of unnecessarily large file sizes due to collectors9 focus on fidelity. The group says that what it9s amassed is by far the largest music metadata database publicly available. The music files will be released in order of popularity in stages.
  
  “Spotify has identified and disabled the nefarious user accounts that engaged in unlawful scraping,” a spokesperson told Engadget in a statement. “We9ve implemented new safeguards for these types of anti-copyright attacks and are actively monitoring for suspicious behavior. Since day one, we have stood with the artist community against piracy, and we are actively working with our industry partners to protect creators and defend their rights.”
  
  Update, December 22, 2025, 10:45PM ET: This story has been updated to add Spotify’s statement.
  This article originally appeared on Engadget at https://www.engadget.com/entertainment/streaming/pirate-group-annas-archive-says-it-has-scraped-spotify-in-its-entirety-211914755.html?src=rss

• Nintendo has huge discounts on Switch 2 games in its holiday sale
  Nintendo is in a giving state of mind this season, offering some holiday deals on games in the eShop, including a few recent Switch 2 titles. For instance, the Switch 2 version of Ball x Pit, which was one of our staff9s favorite games of 2025, is 20 percent off at $12. Final Fantasy Tactics: The Ivalice Chronicles is $40, down from the usual $50 on Switch 2, which is about as good a deal as you’ll get for a current-year game release.
  
  There are also a few older games that have gotten even steeper discounts. Cyberpunk 2077: Ultimate Edition for the Nintendo Switch 2 is a whopping 75 percent off, so load it onto your new console for less than $18. At about $33, Cult of the Lamb: Unholy Edition is half off for the original Switch. No Man9s Sky is also 50 percent off, so you can grab it for either Switch console for just $24. Star Wars: Outlaws is down to $40, which is $20 off, and Nier: Automata is $16, compared with its usual $40 price tag.
  
  Those are just a few that caught our eye. The discounts will run until January 4, so you can make purchases as a last-minute gift or load up your own Switch in case nobody gifts you with a game you9ve been eyeing.
  This article originally appeared on Engadget at https://www.engadget.com/gaming/nintendo/nintendo-has-huge-discounts-on-switch-2-games-in-its-holiday-sale-220058951.html?src=rss

• EU OS: A Bold Step Toward Digital Sovereignty for Europe
  Image
  A new initiative, called "EU OS," has been launched to develop a Linux-based operating system tailored specifically for the public sector organizations of the European Union (EU). This community-driven project aims to address the EU's unique needs and challenges, focusing on fostering digital sovereignty, reducing dependency on external vendors, and building a secure, self-sufficient digital ecosystem.
  What Is EU OS?
  EU OS is not an entirely novel operating system. Instead, it builds upon a Linux foundation derived from Fedora, with the KDE Plasma desktop environment. It draws inspiration from previous efforts such as France's GendBuntu and Munich's LiMux, which aimed to provide Linux-based systems for public sector use. The goal remains the same: to create a standardized Linux distribution that can be adapted to different regional, national, and sector-specific needs within the EU.
  
  Rather than reinventing the wheel, EU OS focuses on standardization, offering a solid Linux foundation that can be customized according to the unique requirements of various organizations. This approach makes EU OS a practical choice for the public sector, ensuring broad compatibility and ease of implementation across diverse environments.
  The Vision Behind EU OS
  The guiding principle of EU OS is the concept of "public money – public code," ensuring that taxpayer money is used transparently and effectively. By adopting an open-source model, EU OS eliminates licensing fees, which not only lowers costs but also reduces the dependency on a select group of software vendors. This provides the EU’s public sector organizations with greater flexibility and control over their IT infrastructure, free from the constraints of vendor lock-in.
  
  Additionally, EU OS offers flexibility in terms of software migration and hardware upgrades. Organizations can adapt to new technologies and manage their IT evolution at a manageable cost, both in terms of finances and time.
  
  However, there are some concerns about the choice of Fedora as the base for EU OS. While Fedora is a solid and reliable distribution, it is backed by the United States-based Red Hat. Some argue that using European-backed projects such as openSUSE or KDE's upcoming distribution might have aligned better with the EU's goal of strengthening digital sovereignty.
  Conclusion
  EU OS marks a significant step towards Europe's digital independence by providing a robust, standardized Linux distribution for the public sector. By reducing reliance on proprietary software and vendors, it paves the way for a more flexible, cost-effective, and secure digital ecosystem. While the choice of Fedora as the base for the project has raised some questions, the overall vision of EU OS offers a promising future for Europe's public sector in the digital age.
  
  Source: It's FOSS
  European Union

• Linus Torvalds Acknowledges Missed Release of Linux 6.14 Due to Oversight
  
  Linus Torvalds Acknowledges Missed Release of Linux 6.14 Due to Oversight
  
  Linux kernel lead developer Linus Torvalds has admitted to forgetting to release version 6.14, attributing the oversight to his own lapse in memory. Torvalds is known for releasing new Linux kernel candidates and final versions on Sunday afternoons, typically accompanied by a post detailing the release. If he is unavailable due to travel or other commitments, he usually informs the community ahead of time, so users don’t worry if there’s a delay.
  
  In his post on March 16, Torvalds gave no indication that the release might be delayed, instead stating, “I expect to release the final 6.14 next weekend unless something very surprising happens.” However, Sunday, March 23rd passed without any announcement.
  
  On March 24th, Torvalds wrote in a follow-up message, “I’d love to have some good excuse for why I didn’t do the 6.14 release yesterday on my regular Sunday afternoon schedule,” adding, “But no. It’s just pure incompetence.” He further explained that while he had been clearing up unrelated tasks, he simply forgot to finalize the release. “D'oh,” he joked.
  
  Despite this minor delay, Torvalds’ track record of successfully managing the Linux kernel’s development process over the years remains strong. A single day’s delay is not critical, especially since most Linux users don't urgently need the very latest version.
  
  The new 6.14 release introduces several important features, including enhanced support for writing drivers in Rust—an ongoing topic of discussion among developers—support for Qualcomm’s Snapdragon 8 Elite mobile chip, a fix for the GhostWrite vulnerability in certain RISC-V processors from Alibaba’s T-Head Semiconductor, and a completed NTSYNC driver update that improves the WINE emulator’s ability to run Windows applications, particularly games, on Linux.
  
  Although the 6.14 release went smoothly aside from the delay, Torvalds expressed that version 6.15 may present more challenges due to the volume of pending pull requests. “Judging by my pending pile of pull requests, 6.15 will be much busier,” he noted.
  
  You can download the latest kernel here.
  Linus Torvalds kernel

• AerynOS 2025.03 Alpha Released with GNOME 48, Mesa 25, and Linux Kernel 6.13.8
  Image
  AerynOS 2025.03 has officially been released, introducing a variety of exciting features for Linux users. The release includes the highly anticipated GNOME 48 desktop environment, which comes with significant improvements like HDR support, dynamic triple buffering, and a Wayland color management protocol. Other updates include a battery charge limiting feature and a Wellbeing option aimed at improving user experience.
  
  This release, while still in alpha, incorporates Linux kernel 6.13.8 and the updated Mesa 25.0.2 graphics stack, alongside tools like LLVM 19.1.7 and Vulkan SDK 1.4.309.0. Additionally, the Moss package manager now integrates os-info to generate more detailed OS metadata via a JSON file.
  
  Future plans for AerynOS include automated package updates, easier rollback management, improved disk handling with Rust, and fractional scaling enabled by default. The installer has also been revamped to support full disk wipes and dynamic partitioning.
  
  Although still considered an alpha release, AerynOS 2025.03 can be downloaded and tested right now from its official website.
  
  Source: 9to5Linux
  AerynOS

• Xojo 2025r1: Big Updates for Developers with Linux ARM Support, Web Drag and Drop, and Direct App Store Publishing
  Image
  Xojo has just rolled out its latest release, Xojo 2025 Release 1, and it’s packed with features that developers have been eagerly waiting for. This major update introduces support for running Xojo on Linux ARM, including Raspberry Pi, brings drag-and-drop functionality to the Web framework, and simplifies app deployment with the ability to directly submit apps to the macOS and iOS App Stores.
  
  Here’s a quick overview of what’s new in Xojo 2025r1:
  1. Linux ARM IDE Support
  Xojo 2025r1 now allows developers to run the Xojo IDE on Linux ARM devices, including popular platforms like Raspberry Pi. This opens up a whole new world of possibilities for developers who want to create apps for ARM-based devices without the usual complexity. Whether you’re building for a Raspberry Pi or other ARM devices, this update makes it easier than ever to get started.
  2. Web Drag and Drop
  One of the standout features in this release is the addition of drag-and-drop support for web applications. Now, developers can easily drag and drop visual controls in their web projects, making it simpler to create interactive, user-friendly web applications. Plus, the WebListBox has been enhanced with support for editable cells, checkboxes, and row reordering via dragging. No JavaScript required!
  3. Direct App Store Publishing
  Xojo has also streamlined the process of publishing apps. With this update, developers can now directly submit macOS and iOS apps to App Store Connect right from the Xojo IDE. This eliminates the need for multiple steps and makes it much easier to get apps into the App Store, saving valuable time during the development process.
  4. New Desktop and Mobile Features
  This release isn’t just about web and Linux updates. Xojo 2025r1 brings some great improvements for desktop and mobile apps as well. On the desktop side, all projects now include a default window menu for macOS apps. On the mobile side, Xojo has introduced new features for Android and iOS, including support for ColorGroup and Dark Mode on Android, and a new MobileColorPicker for iOS to simplify color selection.
  5. Performance and IDE Enhancements
  Xojo’s IDE has also been improved in several key areas. There’s now an option to hide toolbar captions, and the toolbar has been made smaller on Windows. The IDE on Windows and Linux now features modern Bootstrap icons, and the Documentation window toolbar is more compact. In the code editor, developers can now quickly navigate to variable declarations with a simple Cmd/Ctrl + Double-click. Plus, performance for complex container layouts in the Layout Editor has been enhanced.
  What Does This Mean for Developers?
  Xojo 2025r1 brings significant improvements across all the platforms that Xojo supports, from desktop and mobile to web and Linux. The added Linux ARM support opens up new opportunities for Raspberry Pi and ARM-based device development, while the drag-and-drop functionality for web projects will make it easier to create modern, interactive web apps. The ability to publish directly to the App Store is a game-changer for macOS and iOS developers, reducing the friction of app distribution.
  How to Get Started
  Xojo is free for learning and development, as well as for building apps for Linux and Raspberry Pi. If you’re ready to dive into cross-platform development, paid licenses start at $99 for a single-platform desktop license, and $399 for cross-platform desktop, mobile, or web development. For professional developers who need additional resources and support, Xojo Pro and Pro Plus licenses start at $799. You can also find special pricing for educators and students.
  
  Download Xojo 2025r1 today at xojo.com.
  Final Thoughts
  With each new release, Xojo continues to make cross-platform development more accessible and efficient. The 2025r1 release is no exception, delivering key updates that simplify the development process and open up new possibilities for developers working on a variety of platforms. Whether you’re a Raspberry Pi enthusiast or a mobile app developer, Xojo 2025r1 has something for you.
  Xojo ARM

• New 'Mirrored' Network Mode Introduced in Windows Subsystem for Linux
  
  Microsoft's Windows Subsystem for Linux (WSL) continues to evolve with the release of WSL 2 version 0.0.2. This update introduces a set of opt-in preview features designed to enhance performance and compatibility.
  
  Key additions include "Automatic memory reclaim" which dynamically optimizes WSL's memory footprint, and "Sparse VHD" to shrink the size of the virtual hard disk file. These improvements aim to streamline resource usage.
  
  Additionally, a new "mirrored networking mode" brings expanded networking capabilities like IPv6 and multicast support. Microsoft claims this will improve VPN and LAN connectivity from both the Windows host and Linux guest. 
  
  Complementing this is a new "DNS Tunneling" feature that changes how DNS queries are resolved to avoid compatibility issues with certain network setups. According to Microsoft, this should reduce problems connecting to the internet or local network resources within WSL.
  
  Advanced firewall configuration options are also now available through Hyper-V integration. The new "autoProxy" feature ensures WSL seamlessly utilizes the Windows system proxy configuration.
  
  Microsoft states these features are currently rolling out to Windows Insiders running Windows 11 22H2 Build 22621.2359 or later. They remain opt-in previews to allow testing before final integration into WSL.
  
  By expanding WSL 2 with compelling new capabilities in areas like resource efficiency, networking, and security, Microsoft aims to make Linux on Windows more performant and compatible. This evolutionary approach based on user feedback highlights Microsoft's commitment to WSL as a key part of the Windows ecosystem.
  Windows

• Linux Threat Report: Earth Lusca Deploys Novel SprySOCKS Backdoor in Attacks on Government Entities
  
  The threat actor Earth Lusca, linked to Chinese state-sponsored hacking groups, has been observed utilizing a new Linux backdoor dubbed SprySOCKS to target government organizations globally. 
  
  As initially reported in January 2022 by Trend Micro, Earth Lusca has been active since at least 2021 conducting cyber espionage campaigns against public and private sector targets in Asia, Australia, Europe, and North America. Their tactics include spear-phishing and watering hole attacks to gain initial access. Some of Earth Lusca's activities overlap with another Chinese threat cluster known as RedHotel.
  
  In new research, Trend Micro reveals Earth Lusca remains highly active, even expanding operations in the first half of 2023. Primary victims are government departments focused on foreign affairs, technology, and telecommunications. Attacks concentrate in Southeast Asia, Central Asia, and the Balkans regions. 
  
  After breaching internet-facing systems by exploiting flaws in Fortinet, GitLab, Microsoft Exchange, Telerik UI, and Zimbra software, Earth Lusca uses web shells and Cobalt Strike to move laterally. Their goal is exfiltrating documents and credentials, while also installing additional backdoors like ShadowPad and Winnti for long-term spying.
  
  The Command and Control server delivering Cobalt Strike was also found hosting SprySOCKS - an advanced backdoor not previously publicly reported. With roots in the Windows malware Trochilus, SprySOCKS contains reconnaissance, remote shell, proxy, and file operation capabilities. It communicates over TCP mimicking patterns used by a Windows trojan called RedLeaves, itself built on Trochilus.
  
  At least two SprySOCKS versions have been identified, indicating ongoing development. This novel Linux backdoor deployed by Earth Lusca highlights the increasing sophistication of Chinese state-sponsored threats. Robust patching, access controls, monitoring for unusual activities, and other proactive defenses remain essential to counter this advanced malware.
  
  The Trend Micro researchers emphasize that organizations must minimize attack surfaces, regularly update systems, and ensure robust security hygiene to interrupt the tactics, techniques, and procedures of relentless threat groups like Earth Lusca.
  Security

• Linux Kernel Faces Reduction in Long-Term Support Due to Maintenance Challenges
  
  The Linux kernel is undergoing major changes that will shape its future development and adoption, according to Jonathan Corbet, Linux kernel developer and executive editor of Linux Weekly News. Speaking at the Open Source Summit Europe, Corbet provided an update on the latest Linux kernel developments and a glimpse of what's to come.
  
  A major change on the horizon is a reduction in long-term support (LTS) for kernel versions from six years to just two years. Corbet explained that maintaining old kernel branches indefinitely is unsustainable and most users have migrated to newer versions, so there's little point in continuing six years of support. While some may grumble about shortened support lifecycles, the reality is that constantly backporting fixes to ancient kernels strains maintainers.
  
  This maintainer burnout poses a serious threat, as Corbet highlighted. Maintaining Linux is largely a volunteer effort, with only about 200 of the 2,000+ developers paid for their contributions. The endless demands on maintainers' time from fuzz testing, fixing minor bugs, and reviewing contributions takes a toll. Prominent maintainers have warned they need help to avoid collapse. Companies relying on Linux must realize giving back financially is in their interest to sustain this vital ecosystem. 
  
  The Linux kernel is also wading into waters new with the introduction of Rust code. While Rust solves many problems, it also introduces new complexities around language integration, evolving standards, and maintainer expertise. Corbet believes Rust will pass the point of no return when core features depend on it, which may occur soon with additions like Apple M1 GPU drivers. Despite skepticism in some corners, Rust's benefits likely outweigh any transition costs.
  
  On the distro front, Red Hat's decision to restrict RHEL cloning sparked community backlash. While business considerations were at play, Corbet noted technical factors too. Using older kernels with backported fixes, as RHEL does, risks creating divergent, vendor-specific branches. The Android model of tracking mainline kernel dev more closely has shown security benefits. Ultimately, Linux works best when aligned with the broader community.
  
  In closing, Corbet recalled the saying "Linux is free like a puppy is free." Using open source seems easy at first, but sustaining it long-term requires significant care and feeding. As Linux is incorporated into more critical systems, that maintenance becomes ever more crucial. The kernel changes ahead are aimed at keeping Linux healthy and vibrant for the next generation of users, businesses, and developers.
  kernel

• Linux Celebrates 32 Years with the Release of 6.6-rc2 Version
  
  Today marks the 32nd anniversary of Linus Torvalds introducing the inaugural Linux 0.01 kernel version, and celebrating this milestone, Torvalds has launched the Linux 6.6-rc2. Among the noteworthy updates are the inclusion of a feature catering to the ASUS ROG Flow X16 tablet's mode handling and the renaming of the new GenPD subsystem to pmdomain.
  
  The Linux 6.6 edition is progressing well, brimming with exciting new features that promise to enhance user experience. Early benchmarks are indicating promising results, especially on high-core-count servers, pointing to a potentially robust and efficient update in the Linux series.
  
  Here is what Linus Torvalds had to say in today's announcement:
  Another week, another -rc.I think the most notable thing about 6.6-rc2 is simply that it'sexactly 32 years to the day since the 0.01 release. And that's a roundnumber if you are a computer person.Because other than the random date, I don't see anything that reallystands out here. We've got random fixes all over, and none of it looksparticularly strange. The genpd -> pmdomain rename shows up in thediffstat, but there's no actual code changes involved (make sure touse "git diff -M" to see them as zero-line renames).And other than that, things look very normal. Sure, the architecturefixes happen to be mostly parisc this week, which isn't exactly theusual pattern, but it's also not exactly a huge amount of changes.Most of the (small) changes here are in drivers, with some tracingfixes and just random things. The shortlog below is short enough toscroll through and get a taste of what's been going on. Linus Torvalds

• Introducing Bavarder: A User-Friendly Linux Desktop App for Quick ChatGPT Interaction
  
  Want to interact with ChatGPT from your Linux desktop without using a web browser?
  
  Bavarder, a new app, allows you to do just that.
  
  Developed with Python and GTK4/libadwaita, Bavarder offers a simple concept: pose a question to ChatGPT, receive a response, and promptly copy the answer (or your inquiry) to the clipboard for pasting elsewhere.
  
  With an incredibly user-friendly interface, you won't require AI expertise (or a novice blogger) to comprehend it. Type your question in the top box, click the blue send button, and wait for a generated response to appear at the bottom. You can edit or modify your message and repeat the process as needed.
  
  During our evaluation, Bavarder employed BAI Chat, a GPT-3.5/ChatGPT API-based chatbot that's free and doesn't require signups or API keys. Future app versions will incorporate support for alternative backends, such as ChatGPT 4 and Hugging Chat, and allow users to input an API key to utilize ChatGPT3.
  
  At present, there's no option to regenerate a response (though you can resend the same question for a potentially different answer). Due to the lack of a "conversation" view, tracking a dialogue or following up on answers can be challenging — but Bavarder excels for rapid-fire questions.
  
  As with any AI, standard disclaimers apply. Responses might seem plausible but could contain inaccurate or false information. Additionally, it's relatively easy to lead these models into irrational loops, like convincing them that 2 + 2 equals 106 — so stay alert!
  
  Overall, Bavarder is an attractive app with a well-defined purpose. If you enjoy ChatGPT and similar technologies, it's worth exploring.
  ChatGPT AI

• LibreOffice 7.5.3 Released: Third Maintenance Update Brings 119 Bug Fixes to Popular Open-Source Office Suite
  
  Today, The Document Foundation unveiled the release and widespread availability of LibreOffice 7.5.3, which serves as the third maintenance update to the current LibreOffice 7.5 open-source and complimentary office suite series.
  
  Approximately five weeks after the launch of LibreOffice 7.5.2, LibreOffice 7.5.3 arrives with a new set of bug fixes for those who have successfully updated their GNU/Linux system to the LibreOffice 7.5 series.
  
  LibreOffice 7.5.3 addresses a total of 119 bugs identified by users or uncovered by LibreOffice developers. For a more comprehensive understanding of these bug fixes, consult the RC1 and RC2 changelogs.
  
  You can download LibreOffice 7.5.3 directly from the LibreOffice website��or from SourceForge as binary installers for DEB or RPM-based GNU/Linux distributions. A source tarball is also accessible for individuals who prefer to compile the software from sources or for system integrators.
  
  All users operating the LibreOffice 7.5 office suite series should promptly update their installations to the new point release, which will soon appear in the stable software repositories of your GNU/Linux distributions.
  
  In early February 2023, LibreOffice 7.5 debuted as a substantial upgrade to the widely-used open-source office suite, introducing numerous features and improvements. These enhancements encompass major upgrades to dark mode support, new application and MIME-type icons, a refined Single Toolbar UI, enhanced PDF Export, and more.
  
  Seven maintenance updates will support LibreOffice 7.5 until November 30th, 2023. The next point release, LibreOffice 7.5.4, is scheduled for early June and will include additional bug fixes.
  
  The Document Foundation once again emphasizes that the LibreOffice office suite's "Community" edition is maintained by volunteers and members of the Open Source community. For enterprise implementations, they suggest using the LibreOffice Enterprise family of applications from ecosystem partners.
  LibreOffice