If you have a certain nostalgia for the warmth and saturation of the sound of cassettes, the We Are Rewind WE-001 is a fine choice. It looks lovely in the bright orange colourway, plus modern conveniences such as a USB-C rechargeable battery and Bluetooth connectivity are welcome to bring it into the 21st century. Granted, it doesn’t sound as great as modern streaming does, but then again, that’s not the point, and if you’re considering the WE-001, you know that already.
Hefty aluminium chassis
Bluetooth pairing is easy, and works decently well
The warmth and saturated feel of a cassette has a strange appeal
Not the most portable of players
No auto-stop function is a shame
Key Features
It plays cassettes
A modern way of playing albums, or your old mixtapes
Bluetooth 5.1
Advertisement
You can wirelessly stream to a set of headphones or a speaker
Introduction
The We Are Rewind WE-001 seeks to provide a modern outlet for the resurgence of cassettes that’s currently happening.
In the UK, cassette sales soared to a 20-year high in 2025, with a total sales volume of 164,000 units, making now a good time to pick up a cassette player to play them on.
There are folks who have modernised the cassette player with features such as a built-in battery, USB-C charging and even Bluetooth connectivity. French firm We Are Rewind are one of the frontrunners with this fetching WE-001 model.
Advertisement
Advertisement
At £129 / $159, the WE-001 has a reasonable cost to it, and draws two immediate comparisons. For one, it sits close to what you’d pay for a second-hand Walkman; and secondly, it’s not too far off capable budget music players, including the five-star FiiO JM21 and HiBy R3 II.
Is this player from We Are Rewind a novelty item? I’ve dug out some cassettes and put it through its paces to find out.
Design
Hefty aluminium frame
Fetching orange colourway
Tactile controls
The WE-001 is a bit big in weight and size, tipping the scales at 404g, and significantly bigger than the last run of cassette players when the likes of Sony were manufacturing them.
Part of the reason this We Are Rewind player is so large is that there’s only one real cassette mechanism available these days from one supplier, and if you want to build a modern cassette player, it’s the only one to use.
Advertisement
Advertisement
Image Credit (Trusted Reviews)
Another reason it’s as big as it is because the design of this orange lad is based on Sony’s first-ever Walkman cassette player – the TPS-L2 – from 1979. Where Sony’s was plastic, the WE-001 is aluminium, contributing both to a quality feel in-hand and to its heavyweight nature.
There’s a pleasant We Are Rewind logo on the front, plus a small circular window in the door that you have to manually open from the top. The old Sony it’s based on had a rectangular window, for what it’s worth. On the top side are the cassette player’s controls, which are oddly the wrong way around as you look at the player, as indicated by the play button triangle facing to the right, so you have to turn the unit around.
Image Credit (Trusted Reviews)
The controls from left to right in the correct orientation are as follows – battery and Bluetooth pairing indicator LEDs, a Bluetooth pairing button, a yellow record button, play, rewind, fast forward and stop. The buttons aren’t soft-touch and have a pleasant tactile finish when pressed
The right side houses the WE-001’s ports, with a USB-C port for charging (charging only, and no power for an external USB-C DAC such as the iFi Go Link Max for listening to higher power wired headphones), two 3.5mm headphone jacks – one for recording and the other for listening, plus a volume wheel. The rear of the unit also has a small hole for motor speed adjustment.
Advertisement
Advertisement
Image Credit (Trusted Reviews)
It looks fetching in the ‘Serge’ orange colour (named for Serge Gainsbourg) I have, although is available in ‘Kurt’ (Cobain – light blue) and ‘Keith’ (Richards – black) colours if you prefer, plus special editions for Elvis and Duran Duran in more recent times.
Specification
Bluetooth 5.1 support with no specific codec mentioned
Headphone jack is suitable for easy-to-drive, low impedance cans
Reasonable battery life
The WE-001’s spec sheet is threadbare, but there are some things worth talking about. It works with all kinds of cassettes, with Type I through IV all supported. Any tapes you have should be okay, all being well.
The cassette player features a 30Hz to 12500Hz frequency range, and supports Bluetooth 5.1. No specific codec support is listed whether it’s SBC or AAC, or even something more advanced, such as aptX HD. Quite frankly, the fact that it supports Bluetooth in any guise seems like a bit of a novelty, but it paired okay with both my Focal Bathys and Audio Pro C10 MKII during testing.
Image Credit (Trusted Reviews)
Advertisement
The spec sheet is also very specific about this cassette player not being ‘compatible’ with earbuds, although I also used a pair of FiiO FH19 IEMs with the WE-001 and they worked fine. Maybe it goes against We Are Rewind’s advice, but I am a rebel at heart.
The output of the headphone jack isn’t powerful, with 2mW per channel into 32 ohms, making this We Are Rewind cassette player suitable for easy-to-drive headphones, rather than more difficult ones that would usually need their own amp or DAC.
That being said, I did try to use a set of Drop x Sennheiser HD6XXs for a reference point, and they worked – I just had to turn the volume up a lot to get to a listenable volume. You’re better off going for easier-to-drive ones for a more optimal experience, though.
Advertisement
Image Credit (Trusted Reviews)
As opposed to running on AA batteries as cassette players of old did, the WE-001 features its own built-in lithium ion battery that’s rechargeable. It has a 2000mAh capacity, and We Are Rewind quotes it for between ten and 12 hours on a charge. In my testing, that seems about right.
Performance
Warmer tones than streaming
Compression and saturation seem part of the experience
Auto-stop would have been nice
Advertisement
Normally, when reviewing audio gear and such, it can be very easy to be analytical and scientific as to how a product sounds, with lots of jargon thrown around. I’m as guilty of that as the next man.
With the WE-001, though, it felt right to take a different approach for a key reason. Cassettes weren’t the be-all-and-end-all of fidelity when they were new, and using them again in 2026 is more of an experiential undertaking than a scientific one. Therefore, it warrants a different kind of perspective.
For testing, I took an album I know like the back of my hand (and ironically one of the only cassettes I own), an Abbey Road real-time cassette copy of Marillion’s Afraid of Sunlight that I suspect hasn’t been played for thirty years since the album’s release, and listened to it all the way through on the WE-001 on my Focal Bathys via the 3.5mm jack. I then listened to the original 1995 mix using my Honor Magic V3 and an iFi Go Link Max I had lying around over Tidal for a ‘modern’ equivalent.
Image Credit (Trusted Reviews)
Naturally, listening to it in digital results in a cleaner, more expansive recording than the analogue form a cassette takes. The apparent benefit of listening to cassette are the very shortcomings that caused us to move to hi-res digital music when the option became available – the warmth and saturation of an analogue sound, complete with some very slight tape hiss in the background.
It’s a completely different listening experience with Afraid of Sunlight on cassette to even CD or a streaming version due to the warmth of the medium. Granted, the soundstage isn’t too wide, and things can sound quite congested against listening on digital means, but there is a strange appeal to it.
Advertisement
Advertisement
The WE-001 is quite a meaty player in itself, with its tuning prioritising some low end, even though it only goes down to 30Hz. The potent bass line on Cannibal Surf Babe and the gritty guitar lines are quite prominent throughout the track, suit the way this player sounds, and there was a strange satisfaction to listen to it in this compressed means. Maybe it’s the weird nostalgia for a medium I didn’t experience first time around talking, but it’s an interesting point.
Image Credit (Trusted Reviews)
It isn’t a fatiguing listen either, arguably due to some treble elements, such as cymbal hits and piano notes being smoothed over. This tape player doesn’t have any form of Dolby Noise Reduction built in, although I didn’t necessarily hear much in the way of tape hiss or speed variations with the Afraid of Sunlight tape, or another Abbey Road tape of Fish’s Vigil in a Wilderness of Mirrors.
What listening to cassettes in the way they were intended does is revive the linearity of music that I think has been lost with the age of instant access provided by streaming. If you went out and bought an album, that’s what you listened to, rather than getting bored with it halfway through and finding something else.
In addition, you purchased and owned an album for one price, and that’s what you had to listen to, rather than paying a monthly subscription fee for thousands of albums that you’re paying for the chance to listen to, as long as you keep payments rolling. Therefore, you were more inclined to listen to the full duration of what you’d spent hard-earned money on, which I think is slowly becoming a lost art. It’s nice to be reminded of that experience.
Advertisement
Image Credit (Trusted Reviews)
Advertisement
Maybe it’s because of my older-leaning tastes, but as much as I have a ridiculous playlist of several thousand songs on Spotify and Tidal that gets put on every so often, I do listen to music in album-sized chunks, which I know a lot of folks my age don’t. That workflow didn’t necessarily change when using this We Are Rewind player in my experience, but it just provided more of an analogue feel that I can partially see the appeal of.
One small nitpick I have with the WE-001 is the lack of an auto-stop for either fast-forwarding or rewinding when the cassette has reached either end of its tape, leading to a horrible motor whine from the internal mechanism. This would have been helpful for quality-of-life purposes and for safeguarding your tapes.
Should you buy it?
You want a feature-rich, portable cassette deck in 2026
Advertisement
The We Are Rewind WE-001 is one of a handful of cassette players designed for the modern age, and I’d argue it’s the most stylish and convenient.
Advertisement
You don’t necessarily have any reason to listen to cassettes
You obviously need some form of reason for going back and listening to cassettes, and even if you’re curious, I’d probably still stick to other means for absolute fidelity if it were me.
Advertisement
Final Thoughts
If you have a certain nostalgia for the warmth and saturation of the sound of cassettes, the We Are Rewind WE-001 is a fine choice. It looks lovely in the bright orange colourway, plus modern conveniences such as a USB-C rechargeable battery and Bluetooth connectivity are welcome to bring it into the 21st century.
Granted, it doesn’t sound as great as modern streaming does, but then again, that’s not the point, and if you’re considering the WE-001, you know that already.
Similar money can buy you some lovely digital audio players and potent headphone outputs, such as the FiiO JM21 and HiBy R3 II, both of which I own and use on a daily basis for having such a large local music library, and having a separate device for listening to music that won’t be interrupted by an onslaught of notifications.
But if you want the fun and nostalgia of a cassette above all and the freedom to connect it to modern equipment, this is a fun device above all. And we do need some more of that.
Advertisement
How We Test
I tested the We Are Rewind WE-001 for a week, listening to a selection of cassette albums and comparing to the modern equivalent. I used a range of headphones, over- and in-ear, and connected the player to a Bluetooth speaker to judge playback quality.
Tested for a week
Tested with real-world use
Advertisement
FAQs
What types of cassettes does the We Are Rewind WE-001 support?
The We Are Rewind WE-001 supports all types of cassette, with Type I through IV all supported.
People without coding backgrounds are discovering that they can build their own custom apps using vibe coding — solutions like Lovable that turn plain-language descriptions into working code.
While these prompt-to-code tools can help create nice prototypes, launching them into full-scale production (as this reporter recently discovered) can be tricky without figuring out how to connect the application with external tech services, such as those that can send text messages via SMS, email, and process Stripe payments.
Ilan Zerbib, who spent five years as Shopify’s director of engineering for payments, is building a solution that could eliminate these back-end infrastructure headaches for nontechnical creators.
Last summer, Zerbib launched Sapiom, a startup developing the financial layer that allows AI agents to securely purchase and access software, APIs, data, and compute — essentially creating a payment system that lets AI automatically buy the services it needs.
Advertisement
Every time an AI agent connects to an external tool like Twilio for SMS, it requires authentication and a micro-payment. Sapiom’s goal is to make this whole process seamless, letting the AI agent decide what to buy and when without human intervention.
“In the future, apps are going to consume services which require payments.Right now, there’s no easy way for agents to actually access all of that,” said Amit Kumar, a partner at Accel.
Kumar has met with dozens of startups in the AI payments space, but he believes Zerbib’s focus on the financial layer for enterprises, rather than consumers, is what’s truly needed to make AI agents work. That’s why Accel is leading Sapiom’s $15 million seed round, with participation from Okta Ventures, Gradient Ventures, Array Ventures, Menlo Ventures, Anthropic, and Coinbase Ventures.
Techcrunch event
Advertisement
Boston, MA | June 23, 2026
“If you really think about it, every API call is a payment. Every time you send a text message, it’s a payment. Every time you spin up a server for AWS, it’s a payment,” Kumar told TechCrunch.
Advertisement
While it’s still early days for Sapiom, the startup hopes that its infrastructure solution will be adopted by vibe-coding companies and other companies creating AI agents that will eventually be tasked with doing many things on their own.
For example, anyone who has vibe-coded an app with SMS capabilities won’t have to manually sign up for Twilio, add a credit card, and copy an API key into their code. Instead, Sapiom handles all of that in the background, and the person building the micro-app will be charged for Twilio’s services as a pass-through fee by Lovable, Bolt, or another vibe-coding platform.
While Sapiom is currently focused on B2B solutions, its technology could eventually empower personal AI agents to handle consumer transactions. The expectation is that individuals will one day trust agents to make independent financial decisions, such as ordering an Uber or shopping on Amazon. While that future is exciting, Zerbib believes that AI won’t magically make people buy more things, which is why he’s focusing on creating financial layers for businesses instead.
Editor’s note: GeekWire publishes guest opinions to foster informed discussion and highlight a diversity of perspectives on issues shaping the tech and startup community. If you’re interested in submitting a guest column, email us at tips@geekwire.com. Submissions are reviewed by our editorial team for relevance and editorial standards.
Ben Golden.
I’m an attorney and advisor to many Pacific Northwest startups, investors, and social entrepreneurs, having spent the past two decades in the Washington innovation ecosystem — including as a higher education policy advocate and former co-chair of the WTIA Policy Committee. I love helping transform great ideas into job-creating companies in my community.
Which is why I’m unmoved by the panic surrounding the proposed “millionaires tax.” Every time Olympia proposes that our wealthiest contribute more, we’re told that this is the final straw for our brightest risk-takers, an existential threat to our state’s economy. But the real threat to the startup community is losing focus on building up our strengths as this catastrophizing becomes a self-fulfilling prophecy.
America is at a crossroads. In this defining moment, when our duties as citizens are gravely needed, a growing chorus of local startup luminaries are speaking up. Which issue galvanizes them? Civil liberties, or climate, or gilded age cronyism, or divestment from public interest research, or immigration, or the dignity of work amidst AI disruption, or freedom of speech…?
Disappointingly, much of the startup community’s advocacy efforts have instead been singularly focused on preventing a few very wealthy folks from changing their primary residence to Las Vegas or Jackson Hole or Palm Beach.
Advertisement
My oh my, what an uninspired civic imagination in this moment of peril. We can do better.
So chill with the libertarian fever dream. Read the moment. And read the proposal’s fine print, including important small business tax cuts. And remember what’s made Seattle such a dynamic startup community in the first place.
The tax proposal is (probably) not going to take your money
This is a proposed tax on net income over $1 million in a single year. The first $1 million of income would be exempt. This point merits emphasis, as it’s often misunderstood: no one will pay a penny of tax on the first $0 to $999,999 of annual net income. There are additional carve outs and deductions to encourage charitable giving and avoid double taxation. The minimum threshold will be indexed upward with inflation. And the proposed tax would not begin collecting revenue until 2029, allowing plenty of time to work through rulemaking, legal challenges, and fine tuning.
If enacted as proposed, less than 0.5% of households would ever be impacted. Imagine 1,000 random Washingtonians in a room: you could count on one hand the number of people with enough luck, talent, and timing to ever pay this tax.
Advertisement
What about founders and investors? Many will already benefit tremendously from federal tax advantages like QSBS, which can eliminate up to $10 million in federal capital gains taxes on a successful exit. (An unrelated proposal would apply the state’s capital gains tax on profits that are otherwise exempted from federal taxation; with only a handful of sponsors across both chambers, that proposal appears to have far less traction.)
Further, the same tax avoidance strategies they already deploy, such as staggered sales, deferred compensation, trust and estate planning, and real estate tax shelter investments, will continue to reduce taxes for founders and investors. The idea that a modest state tax on seven-figure net income is going to make entrepreneurship suddenly “not pencil out” is fuzzy math.
Fixing Washington’s regressive tax structure is good for business
Washington consistently ranks among the most regressive tax systems in the country. Relative to other states, lower- and middle-income families pay a disproportionate share of their income in state and local taxes due to our heavy reliance on sales, excise, and business taxes. Addressing this problem is essential to building a resilient state, which matters more than ever in this moment of increasingly reckless and unstable federal governance.
In announcing his initial support for this proposal, Gov. Bob Ferguson tied the tax explicitly to strengthening the Working Families Tax Credit, removing sales taxes on essential personal hygiene products, investing in K-12 education, and greatly reducing B&O taxes for early-stage businesses. In other words, this is a pro-entrepreneurship policy that argues that we’re all better off when we’re all better off.
Advertisement
Of particular importance for startups, the proposal to provide B&O tax relief for small businesses would be a boon for early-stage companies in their earliest cash constrained years, i.e., when they need it most. The current draft legislation would provide a credit for B&O taxes on annual gross receipts less than $250,000, which would benefit thousands of local startups and small businesses every year. Meanwhile, Ferguson has called to go further by zeroing out B&O taxes up to $1 million on revenue.
In responding to the initial proposal, the governor said his ultimate support for the proposal is contingent on a much more aggressive small business tax break — “we need to have the largest tax break for small business owners in state history,” he said this week.
Rather than fear-monger, startup advocates should redirect their efforts toward supporting that effort for targeted savings for early-stage companies.
The Legislative Building in Olympia, Wash. (GeekWire Photo / Lisa Stiffler)
On the pro-millionaire advocates’ counterpoints
There are valid concerns about the proposal’s impact on the business climate and economic growth.
Some argue it “punishes success” by not maximizing exit proceeds. Yet this ignores how the proposal invests in conditions that allow startups to thrive in the first place as well as the urgency of addressing a broken tax system.
A frequent rebuttal to any tax proposal is that the state should cut spending instead. Absolutely, there must be accountability and responsible stewardship of our public resources. But this is not mutually exclusive; as in business, governments can manage their expenses and restructure revenue at the same time.
Critics warn that the income tax minimum threshold will expand in future years. Rep. Jeremie Dufault, R-Selah, calls it “kicking a budget snowball down a hillside. It’s small now, but it will grow as it rolls.” Maybe, but that’s not the proposal under consideration right now. In fact, the current proposal would raise the minimum threshold annually with inflation.
There are also legitimate legal hurdles to implementing the proposed policy. Fortunately, we have multiple branches of government. Jurisprudential ambiguity should not deter legislators from passing policies they deem in the best interest of the electorate.
Large tech companies are downsizing, particularly amongst software engineering teams. Our fizzling “prosperity bomb” is bad news for a local economy supported by so many coders, and those AI-disrupted jobs are not being replaced elsewhere. In this moment of disruption, creating policies that make it easier to be an entrepreneur and live comfortably in a community are more important than ever, regardless of whether a household brings in millions of dollars a year.
Many point to capital flight as the primary concern, though correlation and causation can be muddled on this point. A handful of large tech companies and wealthy individuals have moved operations out of Washington state, and there will likely be a few more (vocal) high net-worth households who will register their primary residence elsewhere to reduce their tax bill — and they may even shift the focus of their investments from local startups to their new neighbors. But the primary cause of capital flight risk is panic; most people do not move to escape tax increases. This tax on outsized annual incomes will not trigger economic ruin, but the outsized investor-class alarm could cause real harm.
Rather than catastrophize, the startup community ought to celebrate the opportunities that would be unlocked by relieving early-stage businesses of B&O taxes, modestly rebalancing our regressive tax structure, and making targeted investments to keep Washington affordable and thriving.
The bill is currently open for debate, and critical details remain to be finalized. The startup community should be in these negotiations, rather than adopting an out-of-touch absolutist approach that reduces their influence and credibility.
Advertisement
Entrepreneurs will build here because we bet on ourselves
Entrepreneurs want to build something from nothing, test ideas, prove their doubters wrong, and ultimately solve problems. And sure, they want to make loads of money. Their ambition to build, ideate, prove, and solve will not be quashed by a tax that only kicks in after annual net income over $1 million.
Most creative, ambitious, and educated people are not primarily motivated by marginal tax rate optimization. They want to live in places with access to world-class universities, vibrant cultural and artistic ecosystems, reproductive health care, diverse neighbors, multimodal transportation, LGBTQ+ rights, respect for the natural environment, libraries that don’t ban books, and a basic sense that society has their back.
The best places in the country to launch a startup include the Bay Area, Boston, New York, and the greater Seattle area. With apologies to the fine folks in Sioux Falls, Houston, and Anchorage (the least taxed large U.S. cities), it turns out startups thrive in communities that invest in themselves and their people. We’ve done that in the Pacific Northwest and are set up for success. Millionaires tax or no tax, the next generation of great companies and scrappy entrepreneurs are primed to emerge from AI House, CoMotion, Foundations, 9Zero, and across our great state.
At the end of day, most of the loudest critics of this proposal — people I respect and work with daily — will almost certainly continue to live and work here in Washington state. So let’s cool it on the millionaires tax hysteria, recognize the criticality of the moment, and bet on ourselves.
Advertisement
Disclaimer: Written in my personal capacity. I’m no startup Lorax — I do not speak for my clients.
Robotics specialist Unitree has been making waves with its humanoid robots, and a new video shows its impressive G1 bipedal bot dealing with incredibly cold conditions.
In a video showing the G1 trudging through deep snow, Unitree describes the feat as “the world‘s first autonomous walking challenge for humanoid robots in a -53.32°F (-47.4°C) extreme weather environment.”
The stunt took place in China’s Altay region, about 1,500 miles (2,400 km) northwest of Beijing, where Unitree’s snowbot trudged through deep snow to mark out the Olympic rings in celebration of Friday’s Winter Olympics opening in Italy.
It’s not clear how long the robot walked for, or how many times its battery needed to be swapped out, but during the course of its sub-zero slog it managed to create an image 100 meters wide and 186 meters long.
Advertisement
Still, the fact that it managed to function at all in such frigid conditions is clearly impressive. Icy temperatures can freeze batteries, stiffen joints, or shut down electronics, but the G1, apparently assisted by its puffer jacket that possibly came with some internal heating, managed to stay alive in the challenging setting. The successful demonstration offers a glimpse at how the G1, or robots like it, could one day be deployed for tasks like search and rescue in polar environments, or even operate in faraway places like Mars where average temperatures reach around -76°F (-60°C).
China-based Unitree has emerged as one of the leading players in the increasingly competitive humanoid robotics sector. The G1 robot, which stands at 4 feet 4 inches (132 cm), also has a remarkable ability to regain control if it takes a tumble, and can apparently perform a number of household chores, too.
While many challenges lie ahead for robotics firms when it comes to readying humanoid robots for specific roles that can be performed consistently, reliably, and truly independently, this year is shaping up to be an exciting one in the sector.
If there’s one thing that Dyson knows, it’s how to make hugely powerful motors for cordless vacuum cleaners. The Dyson Gen5detect is the most powerful cordless vacuum cleaner that it has made yet. Putting this cleaner through our tests, we measured it at a massive 369AW on maximum power – the highest, by far, that we’ve ever seen from a cordless cleaner.
Otherwise, it runs at 30AW on its gentle power mode (good for dusting) and 75AW on medium. Well, kind of. As with previous Dyson vacuums, the Gen5detect has a piezo sensor for detecting dust, adjusting its power automatically based on how much dirt it has encountered. In automatic mode, the vacuum ups and downs its power on the fly, so that you get the best clean without having to worry about which power mode you’re in.
Cleverly, the LCD on the back shows the amount of dust being picked up, as well as the battery life remaining in minutes and seconds.
For hard floors, there’s an additional tool, the Fluffy Optic head, which uses a green laser to highlight dust. It works brilliantly, making it easy to see where you have and haven’t cleaned.
Advertisement
On maximum power, we found that this cleaner could collect grains of rice from more than 3cm away. If you’ve got the hand tools attached, this means you can quickly collect dust or suck it out of hard-to-reach areas.
Moving on to our regular tests, we found that this cleaner picked up 98.25% of dust on carpet, which is the best result that we’ve ever seen from a cordless cleaner. Edge performance was the same: 95.3% of dust collected. Hard floor collection was at 100%.
Moving to the anti-tangle tests with human hair, the Dyson Gen5detect refused to get any hair caught up in its brushes.
The only slight issue we encountered was when using the vacuum cleaner on a rubber-backed mat. Here, the Dyson Gen5detect produces too much power and suctions itself to the ground, stopping the brush bar from moving. We had to manually dial down the power. Still, it demonstrates just how powerful this cordless cleaner is.
Advertisement
Measuring battery life in auto mode, we found that the cleaner lasted 26m 13s. Given that you can clean thoroughly with a single pass, that’s more than enough time to tackle an entire home in one go.
Arguably, most people will find that the cheaper Dyson V15 Detect will suit their needs, but if you have the cash and want the absolute best, there’s no other cordless vacuum cleaner that comes close to this one for power.
[GizmoThrill] shows off a design for an absolutely gorgeous, high-fidelity replica of the main character’s helmet from the video game Satisfactory. But the best part is the technique used to create the visor: just design around a cheap set of full-face “sunglasses” to completely avoid having to mold your own custom faceplate.
One of the most challenging parts of any custom helmet build is how to make a high-quality visor or faceplate. Most folks heat up a sheet of plastic and form it carefully around a mold, but [GizmoThrill] approached the problem from the other direction. After spotting a full-face sun visor online, they decided to design the helmet around the readily-accessible visor instead of the other way around.
The first thing to do with the visor is cover it with painter’s tape and 3D scan it. Once that’s done, the 3D model of the visor allows the rest of the helmet to be designed around it. In the case of the Satisfactory helmet, the design of the visor is a perfect match for the game’s helmet, but one could easily be designing their own custom headgear with this technique.
The hexagon grid pattern? It’s actually a clear vinyl sticker and doesn’t obstruct vision at all. Another clever touch.
With the helmet 3D printed, [GizmoThrill] heads to the bandsaw to cut away any excess from the visor, and secure it in place. That’s all there is to it! Sure, you don’t have full control over the visor’s actual shape, but it sure beats the tons and tons of sanding involved otherwise.
There’s a video tour of the whole process that shows off a number of other design features we really like. For example, metal mesh in the cheek areas and in front of the mouth means a fan can circulate air easily, so the one doesn’t fog up the inside of the visor with one’s very first breath. The mesh itself is concealed with some greebles mounted on top. You can see all those details up close in the video, embedded just below.
Advertisement
The helmet design is thanks to [Punished Props] and we’ve seen their work before. This trick for turning affordable and somewhat gimmicky sunglasses into something truly time-saving is definitely worth keeping in mind.
An Amazon delivery van parked in front of the company’s headquarters campus and The Spheres in Seattle. (GeekWire Photo / Kurt Schlosser)
Amazon posted record quarterly revenue and strong cloud growth in Q4 — but its stock sunk more than 10% in after-hours trading Thursday after the company missed Wall Street’s profit expectations and revealed plans to spend $200 billion on capital expenditures in the upcoming year.
“With such strong demand for our existing offerings and seminal opportunities like AI, chips, robotics, and low earth orbit satellites, we expect to invest about $200 billion in capital expenditures across Amazon in 2026, and anticipate strong long-term return on invested capital,” Amazon CEO Andy Jassy said in a statement.
That’s well ahead of analyst expectations, and up from the $125 billion that Amazon had estimated for capex in 2025.
Investors are closely watching how much tech companies are spending on infrastructure amid the AI boom. Google said this week that its capex could double this year to as high as $185 billion, and Meta said its spend could reach $135 billion in 2026, almost double from last year. Microsoft’s capital spend reached $37.5 billion in its most recent quarter, up 66% from a year ago.
Amazon’s total capital spending also includes the buildout of its e-commerce fulfillment network, which means it’s not directly comparable to Microsoft, Google and others.
Advertisement
However, on the earnings call with analysts, Jassy said the projected capex is “predominately” in AWS. “Some of it is for our core workloads, which are non-AI workloads, because they’re growing at a faster rate than we anticipated,” he said. “But most of it is in AI, and we just have a lot of growth, a lot of demand.”
Jassy said AWS could be growing even faster if capacity were available, noting that Amazon added more data center capacity than any company globally in 2025 and still faces strong demand. “What we’re continuing to see is, as fast as we install this AI capacity, we are monetizing it,” he said. “So it’s just a very unusual opportunity.”
Some key takeaways from the fourth quarter report:
Advertisement
Amazon reported $213.4 billion in Q4 revenue, up 14% year-over-year and topping estimates of $211 billion. It’s first time the company has eclipsed $200 billion in quarterly revenue.
The company just missed expectations with earnings per share of $1.95, up from $1.86 in the year-ago period. Net income was $21.2 billion, up from $20 billion last year.
Amazon Web Services, the company’s closely watched cloud computing unit, reported $35.6 billion in Q4 sales, up 24% year-over-year — the fastest growth rate in three years. That topped analyst estimates of 21%.
Amazon’s online store sales grew 10% to $83 billion during the holiday quarter, topping estimates of $82.1 billion. The company continues to face competition from Walmart, which is growing its e-commerce sales and just hit a $1 trillion market capitalization.
Amazon’s market cap is about $2.4 trillion. Its stock is down slightly in the past 12 months.
The company will host its call with analysts at 2 p.m. PT. We’ll be listening for any comments related to the company’s slashing of 16,000 corporate jobs announced last week. Update: Jassy did not comment on the layoffs.
Here are more details from Amazon’s fourth quarter earnings report:
Advertising: The company’s ad business brought in $21.3 billion in revenue in the quarter, up 23% from the year-ago period. Advertising, along with AWS, is a major profit engine.
Third-party seller services: Revenue from third-party seller services was up 11% to $52.8 billion.
Advertisement
Shipping costs: Amazon spent $31.5 billion on shipping in Q4, up 10%.
Physical stores: The category, which includes Whole Foods and other Amazon grocery stores, posted revenue of $5.8 billion, up 5%. Amazon announced last week that it is closing all Amazon Go and Amazon Fresh locations, a total of 72 stores nationwide, concentrating its efforts instead on its Whole Foods Market locations and grocery delivery from Amazon.com.
Headcount: Amazon employs 1.58 million people, up 1% year-over-year, and down slightly from Q3. That figure does not include seasonal and contract workers, and does not reflect the latest job cuts, which took place after the end of the quarter.
Prime: Subscription services revenue, which includes Prime memberships, came in at $13.1 billion, up 14%.
Advertisement
Guidance: The company forecasts Q1 sales between $173.5 billion and $178.5 billion. Operating income is expected to range between $16.5 billion and $21.5 billion, compared with $18.4 billion in the year-ago quarter.
HP and Redington have just announced the inauguration of a new Centre of Excellence (CoE) in Chennai, India, aimed at accelerating the adoption of digital printing technologies in the country. The facility is intended to support the evolving needs of India’s print and manufacturing ecosystem by offering hands-on access to advanced digital printing solutions.
The Centre of Excellence was inaugurated in the presence of customers, industry partners, and solution vendors, with senior leadership from both HP and Redington in attendance. According to the companies, the initiative reflects a continued focus on skill development, technology adoption, and innovation within the Indian digital printing industry.
Focus on Training, Demonstrations, and Consulting
Spread across 20,000 square feet, the Chennai-based CoE is designed as a comprehensive hub for technology demonstrations, professional training, process optimisation, and industry consulting. The facility will allow customers to experience HP’s digital printing solutions in real-world scenarios, while also running education programs for brands and print buyers to help them better understand and adopt digital printing workflows.
Pawan Chauhan, Country Business Manager for HP Industrial and Inkjet Business Solutions in India, “The launch of the Centre of Excellence reflects our long-term commitment to the Indian digital printing ecosystem and our focus on building skills for the future of work and driving innovation. It is also a moment to celebrate 21 years of trust and collaboration between HP and Redington.”
Advertisement
From Redington’s perspective, the Centre of Excellence is positioned within a broader shift toward flexible, digital-first manufacturing platforms. V.S. Hariharan, Group CEO of Redington Limited, said the initiative will help deepen customer engagement, expand solution-led offerings, and accelerate the adoption of advanced digital printing technologies, including HP Indigo and HP’s industrial 3D printing solutions.
A developer gets a LinkedIn message from a recruiter. The role looks legitimate. The coding assessment requires installing a package. That package exfiltrates all cloud credentials from the developer’s machine — GitHub personal access tokens, AWS API keys, Azure service principals and more — are exfiltrated, and the adversary is inside the cloud environment within minutes.
Your email security never saw it. Your dependency scanner might have flagged the package. Nobody was watching what happened next.
The attack chain is quickly becoming known as the identity and access management (IAM) pivot, and it represents a fundamental gap in how enterprises monitor identity-based attacks. CrowdStrike Intelligence research published on January 29 documents how adversary groups operationalized this attack chain at an industrial scale. Threat actors are cloaking the delivery of trojanized Python and npm packages through recruitment fraud, then pivoting from stolen developer credentials to full cloud IAM compromise.
In one late-2024 case, attackers delivered malicious Python packages to a European FinTech company through recruitment-themed lures, pivoted to cloud IAM configurations and diverted cryptocurrency to adversary-controlled wallets.
Advertisement
Entry to exit never touched the corporate email gateway, and there is no digital evidence to go on.
On a recent episode of CrowdStrike’s Adversary Universe podcast, Adam Meyers, the company’s SVP of intelligence and head of counter adversary operations, described the scale: More than $2 billion associated with cryptocurrency operations run by one adversary unit. Decentralized currency, Meyers explained, is ideal because it allows attackers to avoid sanctions and detection simultaneously. CrowdStrike’s field CTO of the Americas, Cristian Rodriguez, explained that revenue success has driven organizational specialization. What was once a single threat group has split into three distinct units targeting cryptocurrency, fintech and espionage objectives.
That case wasn’t isolated. The Cybersecurity and Infrastructure Security Agency (CISA) and security company JFrog have tracked overlapping campaigns across the npm ecosystem, with JFrog identifying 796 compromised packages in a self-replicating worm that spread through infected dependencies. The research further documents WhatsApp messaging as a primary initial compromise vector, with adversaries delivering malicious ZIP files containing trojanized applications through the platform. Corporate email security never intercepts this channel.
Most security stacks are optimized for an entry point that these attackers abandoned entirely.
Advertisement
When dependency scanning isn’t enough
Adversaries are shifting entry vectors in real-time. Trojanized packages aren’t arriving through typosquatting as in the past — they’re hand-delivered via personal messaging channels and social platforms that corporate email gateways don’t touch. CrowdStrike documented adversaries tailoring employment-themed lures to specific industries and roles, and observed deployments of specialized malware at FinTech firms as recently as June 2025.
CISA documented this at scale in September, issuing an advisory on a widespread npm supply chain compromise targeting GitHub personal access tokens and AWS, GCP and Azure API keys. Malicious code was scanned for credentials during package installation and exfiltrated to external domains.
Dependency scanning catches the package. That’s the first control, and most organizations have it. Almost none have the second, which is runtime behavioral monitoring that detects credential exfiltration during the install process itself.
“When you strip this attack down to its essentials, what stands out isn’t a breakthrough technique,” Shane Barney, CISO at Keeper Security, said in an analysis of a recent cloud attack chain. “It’s how little resistance the environment offered once the attacker obtained legitimate access.”
Advertisement
Adversaries are getting better at creating lethal, unmonitored pivots
Google Cloud’s Threat Horizons Report found that weak or absent credentials accounted for 47.1% of cloud incidents in the first half of 2025, with misconfigurations adding another 29.4%. Those numbers have held steady across consecutive reporting periods. This is a chronic condition, not an emerging threat. Attackers with valid credentials don’t need to exploit anything. They log in.
Research published earlier this month demonstrated exactly how fast this pivot executes. Sysdig documented an attack chain where compromised credentials reached cloud administrator privileges in eight minutes, traversing 19 IAM roles before enumerating Amazon Bedrock AI models and disabling model invocation logging.
Eight minutes. No malware. No exploit. Just a valid credential and the absence of IAM behavioral baselines.
Ram Varadarajan, CEO at Acalvio, put it bluntly: Breach speed has shifted from days to minutes, and defending against this class of attack demands technology that can reason and respond at the same speed as automated attackers.
Advertisement
Identity threat detection and response (ITDR) addresses this gap by monitoring how identities behave inside cloud environments, not just whether they authenticate successfully. KuppingerCole’s 2025 Leadership Compass on ITDR found that the majority of identity breaches now originate from compromised non-human identities, yet enterprise ITDR adoption remains uneven.
Morgan Adamski, PwC’s deputy leader for cyber, data and tech risk, put the stakes in operational terms. Getting identity right, including AI agents, means controlling who can do what at machine speed. Firefighting alerts from everywhere won’t keep up with multicloud sprawl and identity-centric attacks.
Why AI gateways don’t stop this
AI gateways excel at validating authentication. They check whether the identity requesting access to a model endpoint or training pipeline holds the right token and has privileges for the timeframe defined by administrators and governance policies. They don’t check whether that identity is behaving consistently with its historical pattern or is randomly probing across infrastructure.
Consider a developer who normally queries a code-completion model twice a day, suddenly enumerating every Bedrock model in the account, disabling logging first. An AI gateway sees a valid token. ITDR sees an anomaly.
Advertisement
A blog post from CrowdStrike underscores why this matters now. The adversary groups it tracks have evolved from opportunistic credential theft into cloud-conscious intrusion operators. They are pivoting from compromised developer workstations directly into cloud IAM configurations, the same configurations that govern AI infrastructure access. The shared tooling across distinct units and specialized malware for cloud environments indicate this isn’t experimental. It’s industrialized.
Google Cloud’s office of the CISO addressed this directly in their December 2025 cybersecurity forecast, noting that boards now ask about business resilience against machine-speed attacks. Managing both human and non-human identities is essential to mitigating risks from non-deterministic systems.
No air gap separates compute IAM from AI infrastructure. When a developer’s cloud identity is hijacked, the attacker can reach model weights, training data, inference endpoints and whatever tools those models connect to through protocols like model context protocol (MCP).
That MCP connection is no longer theoretical. OpenClaw, an open-source autonomous AI agent that crossed 180,000 GitHub stars in a single week, connects to email, messaging platforms, calendars and code execution environments through MCP and direct integrations. Developers are installing it on corporate machines without a security review.
The IAM implications are direct. In an analysis published February 4, CrowdStrike CTO Elia Zaitsev warned that “a successful prompt injection against an AI agent isn’t just a data leak vector. It’s a potential foothold for automated lateral movement, where the compromised agent continues executing attacker objectives across infrastructure.”
The agent’s legitimate access to APIs, databases and business systems becomes the adversary’s access. This attack chain doesn’t end at the model endpoint. If an agentic tool sits behind it, the blast radius extends to everything the agent can reach.
Where the control gaps are
This attack chain maps to three stages, each with a distinct control gap and a specific action.
Advertisement
Entry: Trojanized packages delivered through WhatsApp, LinkedIn and other non-email channels bypass email security entirely. CrowdStrike documented employment-themed lures tailored to specific industries, with WhatsApp as a primary delivery mechanism. The gap: Dependency scanning catches the package, but not the runtime credential exfiltration. Suggested action: Deploy runtime behavioral monitoring on developer workstations that flags credential access patterns during package installation.
Pivot: Stolen credentials enable IAM role assumption invisible to perimeter-based security. In CrowdStrike’s documented European FinTech case, attackers moved from a compromised developer environment directly to cloud IAM configurations and associated resources. The gap: No behavioral baselines exist for cloud identity usage. Suggested action: Deploy ITDR that monitors identity behavior across cloud environments, flagging lateral movement patterns like the 19-role traversal documented in the Sysdig research.
Objective: AI infrastructure trusts the authenticated identity without evaluating behavioral consistency. The gap: AI gateways validate tokens but not usage patterns. Suggested action: Implement AI-specific access controls that correlate model access requests with identity behavioral profiles, and enforce logging that the accessing identity cannot disable.
Jason Soroko, senior fellow at Sectigo, identified the root cause: Look past the novelty of AI assistance, and the mundane error is what enabled it. Valid credentials are exposed in public S3 buckets. A stubborn refusal to master security fundamentals.
Advertisement
What to validate in the next 30 days
Audit your IAM monitoring stack against this three-stage chain. If you have dependency scanning but no runtime behavioral monitoring, you can catch the malicious package but miss the credential theft. If you authenticate cloud identities but don’t baseline their behavior, you won’t see the lateral movement. If your AI gateway checks tokens but not usage patterns, a hijacked credential walks straight to your models.
The perimeter isn’t where this fight happens anymore. Identity is.
Amazon Web Services has accelerated its growth mode thanks in part to AI demand. (GeekWire File Photo / Todd Bishop)
Amazon Web Services revenue grew at its fastest pace in more than three years, up 24% to $35.6 billion in the fourth quarter, in a sign that demand for artificial intelligence and custom silicon is boosting corporate spending on the cloud.
The company disclosed revenue for its in-house data center chips for the first time, saying its Trainium and Graviton processors have a combined annual run rate of more than $10 billion.
But the revenue milestones are coming at a big cost. In the earnings release, Amazon CEO Andy Jassy signaled plans to spend a record $200 billion in capital expenditures across Amazon in 2026, citing “seminal opportunities like AI, chips, robotics, and low earth orbit satellites.”
Most of the capital spending is on AWS, Jassy said on the earnings conference call, seeking to assure investors that Amazon is “monetizing capacity as fast as we can install it.”
He pushed back on skepticism about the capital spending, saying “this isn’t some sort of quixotic top-line grab,” and compared the AI investment cycle to the early days of the company’s core cloud business. He called the current moment an “extraordinarily unusual opportunity to forever change the size of AWS and Amazon as a whole.”
Advertisement
When asked about the shape of AI demand, Jassy offered a “barbell” analogy. On one end are the AI research labs spending “gobs and gobs of compute.” On the other are enterprises using AI for routine tasks like customer service and business process automation.
But the massive $200 billion bet is targeted at the “middle of the barbell,” core enterprise production workloads, which Jassy argues haven’t really arrived yet.
“The lion’s share of that demand is still yet to come,” Jassy said. He predicted this middle section “may end up being the largest and the most durable” part of the AI market.
Amazon’s plan adds to a wave of record-setting AI infrastructure spending from tech giants.
Google parent Alphabet said Wednesday it expects 2026 capital expenditures of $175 billion to $185 billion, roughly double its 2025 spending.
For the full year, Amazon generated $139.5 billion in cash from its operations in 2025, up 20%. But after accounting for the massive infrastructure buildout, the company was left with $11.2 billion in free cash flow, down from $38.2 billion a year earlier.
That means Amazon is making more money than ever, but plowing nearly all of it back into building out AI capacity, leaving little cash left over for shareholders.
Advertisement
Amazon shares fell 10% after-hours following the earnings report. In addition to the outsized capex projection, the company’s profits of $1.95/share just missed Wall Street’s expectations.
Ransomware operators are hosting and delivering malicious payloads at scale by abusing virtual machines (VMs) provisioned by ISPsystem, a legitimate virtual infrastructure management provider.
Researchers at cybersecurity company Sophos observed the tactic while investigating recent ‘WantToCry’ ransomware incidents. They found the attackers used Windows VMs with identical hostnames, suggesting default templates generated by ISPsystem’s VMmanager.
Diving deeper, the researchers discovered that the same hostnames were present in the infrastructure of multiple ransomware operators, including LockBit, Qilin, Conti, BlackCat/ALPHV, and Ursnif, as well as various malware campaigns involving RedLine and Lummar info-stealers.
Location of devices using the same hostname Source: Sophos
ISPsystem is a legitimate software company that develops control panels for hosting providers, used for the management of virtual servers, OS maintenance, etc. VMmanager is the company’s virtualization management platform used to spin up Windows or Linux VMs for customers.
Sophos found that VMmanager’s default Windows templates reuse the same hostname and system identifiers every time they are deployed.
Advertisement
Bulletproof hosting providers that knowingly support cybercrime operations and ignore takedown requests take advantage of this design weakness. They allow malicious actors to spin up VMs via VMmanager, used for command-and-control (C2) and payload-delivery infrastructure.
This essentially hides malicious systems among thousands of innocuous ones, complicates attribution, and makes quick takedowns unlikely.
The majority of the malicious VMs were hosted by a small cluster of providers with a bad reputation or sanctions, including Stark Industries Solutions Ltd., Zomro B.V., First Server Limited, Partner Hosting LTD, and JSC IOT.
Sophos has also discovered a provider with direct control of physical infrastructure named MasterRDP, which uses VMmanager for evasion and offers VPS and RDP services that do not comply with legal requests.
Advertisement
According to Sophos, four of the most prevalent ISPsystem hotnames “account for over 95% of the total number of internet-facing ISPsystem virtual machines:”
WIN-LIVFRVQFMKO
WIN-LIVFRVQFMKO
WIN-344VU98D3RU
WIN-J9D866ESIJ2
All of them were present either in customer detection or telemetry data linked to cybercriminal activity.
The researchers note that while ISPsystem VMmanager is a legitimate platform for virtualization management, it is also attractive to cybercriminals due to “its low cost, low barrier to entry, and turnkey deployment capabilities.”
BleepingComputer has contacted ISPsystem to ask if they are aware of the large-scale abuse of VM templates and their plans to address the issue, but a statement wasn’t available by publishing time.
Modern IT infrastructure moves faster than manual workflows can handle.
In this new Tines guide, learn how your team can reduce hidden manual delays, improve reliability through automated response, and build and scale intelligent workflows on top of tools you already use.
