Security teams log 54% of successful attacks and alert on just 14%. The rest move through your environment unseen.
The Picus whitepaper shows how breach and attack simulation tests your SIEM and EDR rules so threats stop slipping by detection.
Tech
Cisco warns of unpatched SD-WAN zero-day exploited in attacks
On Thursday, Cisco warned of a high-severity, unpatched zero-day in the Cisco Catalyst SD-WAN Manager (tracked as CVE-2026-20245) actively exploited in attacks enabling root privilege escalation.
The zero-day flaw impacts all deployment types, including On-Prem Deployment, Cisco SD-WAN Cloud-Pro, Cisco SD-WAN Cloud (Cisco Managed), and Cisco SD-WAN for Government (FedRAMP).
In a Thursday advisory, Cisco said the issue stems from insufficient validation of user-supplied input, and it can allow local attackers with low privileges to execute arbitrary commands as root.
“An attacker could exploit this vulnerability by uploading a crafted file to the affected system. A successful exploit could allow the attacker to perform command injection attacks on an affected system and elevate their privileges as the root user,” the company explained.
“To exploit this vulnerability, the attacker must have netadmin privileges on the affected system. This would require valid credentials or exploitation of CVE-2026-20182 or CVE-2026-20127. Cisco is not aware of successful exploitation by other methods,” it added. “Cisco is not aware of successful exploitation by other methods. Cisco has observed limited cases where the exploitation of this bug resulted in a configuration change pushed to edge devices.”
Formerly known as SD-WAN vManage, this network management software helps admins monitor and manage up to 6,000 Catalyst SD-WAN devices from a single dashboard.
Cisco’s Product Security Incident Response Team (PSIRT) became aware of CVE-2026-20245 exploitation in June after Google Cloud cybersecurity subsidiary Mandiant reported the flaw but did not share any details.
However, it shared indicators of compromise (IOCs) warning admins to check their SD-WAN /var/log/scripts.log file for attempts to upload tenant configuration data to vSmart controllers to escalate privileges through legitimate commands, as in the following example:
Apr 15 09:44:57 vmanage vScript: Tenant list upload per vsmart serial number: /usr/bin/vconfd_script_upload_tenant_list.sh -cli path /home/admin/malicious.csv vpn 0
“For help determining if a Cisco Catalyst SD-WAN Manager has been compromised, customers may open a case with the Cisco TAC,” the company added, advising admins first to generate an admin-tech file to help with the review.
Security patches not yet available
Last month, Cisco also tagged a maximum severity Catalyst SD-WAN Controller authentication bypass flaw (CVE-2026-20182) as actively exploited as a zero-day to gain administrative privileges on unpatched devices.
While Cisco has not yet released patches for CVE-2026-20245, it advised customers to upgrade to the software fixed for CVE-2026-20182 on May 14.
In February, Cisco patched another Catalyst SD-WAN Manager information disclosure security flaw (CVE-2026-20133), which CISA flagged as actively exploited in late April, and, two weeks later, warned that two more flaws (CVE-2026-20128 and CVE-2026-20122) were being abused in the wild.
In March, it also addressed and flagged a critical authentication-bypass vulnerability (CVE-2026-20127) that has been exploited in zero-day attacks since at least 2023.
Over the last several years, CISA has tagged 90 Cisco vulnerabilities as abused in the wild, four of them in Cisco Catalyst SD-WAN Manager and six others exploited by ransomware operations.
Continue Reading
Apple is all set to host its yearly Worldwide Developer Conference next week, where it is expected to announce the long-awaited Siri update. As excited as I am for the smart assistant to finally work like it was supposed to all these years, the iOS 27 sneak peek could potentially confirm Apple’s next big launch: the foldable iPhone Ultra.
I say this because iPhones have trailed behind their Android counterparts in true multitasking capabilities. Sure, they have a Dynamic Island that pops up crucial information with a press-and-hold without leaving the current app. But it isn’t the same as running multiple apps side-by-side simultaneously or one app on top of another. Such use cases are crucial for big-screen foldable phones – or even big slab phones for that matter. This iOS limitation is one of the reasons I believe the 6.9-inch screen estate on Pro Max models isn’t utilized to its full potential. But this might change at next week’s WWDC.
According to a Bloomberg report, Apple’s foldable iPhone will feature an “iPad-like interface when opened.” It could support running two apps side-by-side and add sidebars to many apps. We’ve never had an iPhone running multiple apps on the screen simultaneously, and if Apple demos such an instance at WWDC 26, it’ll likely point towards the launch of an iPhone with a larger screen – hopefully, one that folds.
However, iOS 27 needs more than just an iPad-like multitasking UI to take advantage of its bigger canvas. After using most of the foldable phones launched in the last five years, I have a few notes for Apple to maximize the big screen potential.
Multitasking with intuitive window management
The Oppo Find N6 can run three apps simultaneously and multiple more as pop-up windows.
The Oppo Find N6 is my favorite foldable phone. It has an anti-reflective screen for better outdoor legibility, big battery all-day endurance and above all, a software experience that makes it a multitasking powerhouse. It is much more than having a simple split-screen at your disposal. That’s not to say I don’t use split-screen multitasking but running two apps side-by-side isn’t ideal when you have to type in one app (like Google Docs). Once the keyboard pops up, you get less space to type.
Oppo (and OnePlus) solved this issue in 2023, when you could run two apps side-by-side and a third one in full-screen at the bottom. It lets me reference search material from a webpage on the left half of the screen and have a PDF running on the other half, while also running Google Docs at the bottom to type my story on the go.
The latest Oppo Find N6 takes it to the next level with its Free-Flow Window feature, which lets you run up to four apps simultaneously in resizeable windows. Is four apps too much? Yes. But is it logical? Also yes. I thought it was overkill till I was at the airport and had to urgently submit my invoices. I opened Google Sheets (to create the invoice), Calculator (to calculate my month’s income for taxes), Keep (to take tax notes), and Chrome (to cross-check my published work.
I could do all of this on a slab phone by constantly flipping between each app. However, having the ability to run all of these apps without exiting another and resize them to your liking truly helps save time and effort. I’ve also used this feature to take notes while attending meetings and referencing shared PDFs simultaneously.
I’d love to have this feature on the iPhone Fold with an iPad-like taskbar at the bottom. It could make the iPhone Ultra like an iPad Mini when unfolded but one that fits inside my pocket.
More iOS tweaks for intuitive use
A sidebar might not be great on slab phones but it can help you be more productive on foldable phones.
The iOS 27 redesign could touch Siri, Search, Camera, Safari, Weather, Image Playground and more. For the sake of iPhone Fold’s big screen, I hope it also adds two things to the system user interface.
First, I’d love to get a Samsung Galaxy Z Fold 7-like sidebar. It might not sound very useful in theory but every foldable phone has this feature now, and it is for a good reason. When AI Select was first rolled out on a Samsung phone, it was only possible to access it through the sidebar. This Galaxy AI feature allowed me to highlight a portion of my current screen and suggest contextual actions.
For instance, I used it to add Calendar events from my emails. I could open an email invite, swipe the sidebar to access AI Select and highlight the event information to automatically have the date, time and address on my Calendar app. Unless you have Gemini enabled on your Gmail account, you’d need to manually add these details to create a Calendar event.
I also use the sidebar to access the Files app and other apps for pop-up (like Calculator), which I don’t have on my taskbar. While the Bloomberg report said a sidebar could make its way to certain apps, I’d love to have system-wide accessibility so I can use it on top of my on-screen content, no matter what app I’m currently using.
Honor’s extended folders allow me to have one-tap access for up to five apps while having them grouped together.
Second, I want more smartphone manufacturers to borrow Honor’s extended folders. It helps keep apps within one-tap access, while also letting me group them. It is the best of both worlds – having a folder as well as a single app icon on the screen.
This feature was adopted by more Android skins last year but most of them are limited to three apps. Honor allows me to add up to five apps in a vertical or horizontal extended folder, which groups my favorite apps without needing me to tap on a folder to access them. It is a neat feature that I’ve missed immensely since I shifted back to my iPhone 17 Pro Max. The best I can do on an iPhone right now is move apps closer to each other, or use Smart Stack to group a few widgets together.
These iOS 27 additions would make the upcoming Apple foldable easier to use and help maximize its big screen utility. I hope we can get our first look at some of them next week at WWDC 26, alongside the other more exciting iOS 27 features. Either way, it is going to be a packed week for Apple software!
Airbnb CEO Brian Chesky has had enough of merely being an artificial intelligence kingmaker. He now plans to back a new AI lab of his own. The news, broken by Bloomberg and confirmed to TechCrunch by a person familiar with the situation, marks Chesky as one of many Silicon Valley machers who are unsatisfied with the models coming out of the frontier labs.
While Airbnb has adopted AI coding tools, Chesky said last year it hasn’t struck an LLM partnership because existing products weren’t quite ready.
Still, Chesky has plenty of insight. He met Sam Altman in 2006 through Y Combinator, which incubated Airbnb, and stayed in touch. When OpenAI took off, he began meeting regularly with Altman to offer advice about managing a hypergrowth tech company.
Chesky, who was reportedly considered a potential OpenAI board member, helped broker Altman’s return to power after its board of directors fired the CEO for lack of candor. Chesky advised Altman on public relations and rallied support for him among Silicon Valley bigwigs.
Now, however, he appears to be entering competition with his mentee’s company.
It’s not clear what the focus of Chesky’s new AI lab will be, although the Bloomberg article mentions user interaction and design, areas that he has emphasized at Airbnb.
That’s not unlike what Brett Adcock is doing at Hark, the AI lab he launched late last year to develop a novel user interface for an AI assistant, although the startup is also emphasizing hardware products.
Chesky also won’t be going into “founder mode” at this operation; a person familiar with the situation says he will remain as Airbnb’s CEO and not lead the new lab himself. Whoever gets the job will have to contend not only with the other AI labs, but also with a founding chair (we presume) known as a micromanager.
A representative for Airbnb and Chesky declined to comment.
A Texas company has formally signaled plans to build a data center in downtown Seattle, even as the city moves toward a moratorium that could impact the construction of such facilities.
Digital Realty of Austin, a real estate investment trust with more than 300 data centers worldwide, wants to demolish the building at 301 Virginia St. and replace it with a six-story structure: a data center on four floors plus a lab, office and retail space, permit filings show.
The proposal comes as the City Council weighs a one-year ban on new data centers, prompted by a wave of public concern over the AI industry’s demands on power, water and utility rates. On Wednesday, the council’s land use committee voted to send the measure to the full council.
The Puget Sound Business Journal, which first reported on the proposal, quoted a Digital Realty spokesperson describing it as “a highly connected, network-dense facility, not an AI data center.” The company told the publication it is still assessing the project’s power needs.
Whether the moratorium would apply to the project is unclear. Digital Realty submitted its filings May 29. As the council’s proposed resolution describes it, the ban would prohibit the city from filing, processing or approving applications for new data centers for a year.
The resolution language cites the growth in the use of AI and notes that new data centers “require great amounts of electricity for operation, resulting in significant increases in demand for electricity and requiring investment in new infrastructure to meet demand.”
@media (max-width: 600px) {
aside.callout { float:none !important; max-width:100% !important; margin-left:0 !important; margin-right:0 !important; }
aside.callout .callout-img { display:none !important; }
}
It’s part of a national backlash against the data center boom, as communities push to slow projects over concerns about power and water use.
Digital Realty is not new to the neighborhood. The company already operates a colocation data center in the 34-story Westin Building at 2001 Sixth Ave. Heat from the building’s data centers is piped across the street to help warm Amazon’s offices. That project is part of a district-energy system set up with Clise Properties, which also owns the 301 Virginia St. site.
Formerly a Bed Bath & Beyond store, the building is currently home to Cannonball Arts, a contemporary art and music venue from the producers of the Bumbershoot festival.
Soccer fans who aren’t there in person or not glued to their phones or TVs during FIFA World Cup matches in Seattle will be able to look to the sky for results.
Visit Seattle is planning to launch what it calls a first-ever drone scoreboard, lighting up the city’s skyline with scores from each of the six matches that will be played in Seattle.
The activation will take place at the Space Needle to add another visual flair to an event expected to draw huge crowds to the city.
The drones will be flown by Sky Elements, the Fort Worth, Texas-based company that has put on shows at T-Mobile Park for a Mariners game, Lumen Field for the Seahawks, and at the Needle for New Year’s Eve.
Seattle advertising agency Copacino Fujikado and Seattle-based PR agency C+C are also part of the production.
Visit Seattle is a nonprofit marketing organization that champions Seattle and King County as destinations for travel and tourism.
Here is the schedule for FIFA World Cup matches in Seattle:
- June 15 (noon): Belgium vs. Egypt (Group G)
- June 19 (noon): United States vs. Australia (Group D)
- June 24 (noon): Qatar vs. TBD (Winner of Playoff A: Italy/NI/Wales/BIH) (Group B)
- June 26 (8 p.m.): Egypt vs. Iran (Group G)
- July 1 (1 p.m): Round of 32 Match 82
- July 6 (5 p.m.): Round of 16 Match 94
A couple of years ago, someone searching for our company found a website that looked like ours, used a version of our name, and sold proxies we had nothing to do with.
The impersonators were already operating before we rebranded from Smartproxy to Decodo in April 2025.
They registered smartproxy.org and smartproxy.cn to catch the traffic searching for the original domain name, and the rebrand gave them an even larger pool of people who had not heard about the change.
Latest Videos From
In 2025, the World Intellectual Property Organization handled 6,282 domain name disputes, a record for the organization. Cybersquatting cases have risen 68% since 2020.
Digital squatting now moves money, steals login credentials, and pulls customers toward infrastructure tied to cybercrime. Here are five things we did, and five things any business can do, when someone copies your brand.
What digital squatting is, and why cases keep climbing
Digital squatting means registering or using a domain name in bad faith to profit from someone else’s trademark. A bad actor registers a domain close to an established brand, then uses it to intercept traffic, collect payments for services they never deliver, harvest login credentials, or push malware. Most victims find out only after their money disappears.
Squatting comes in a few common forms:
1. Typosquatting registers misspellings of popular domains, such as gooogle.com instead of google.com;
2. Combosquatting adds a keyword to a real brand name, producing domains like brand-login.com or brand-deals.com;
3. TLD squatting takes the same brand name across .org, .net, .io, and .ai;
4. Homograph attacks swap in visually identical characters from other alphabets, like a Cyrillic “а” for a Latin “a”.
When it happened to us
We met digital squatting as the target, not the observer. We operated as Smartproxy for seven years, and over that time, the name picked up enough recognition for impersonators to want it. They registered .org and .cn, domains with no connection to our company, our infrastructure, or our team. The site copies a version of our former name and sells proxies we have nothing to do with, catching traffic from people who searched for Smartproxy.
The squatting also shaped how we could operate in China. The obvious domains were already taken, so before the rebrand, we had to run our China presence under a separate name, smartdaili.cn. A customer in that market searching for the brand could land on an impostor site first.
The rebrand to Decodo did not end the problem. It added a fresh group of people who knew the old name and never heard about the change, which is exactly who the lookalike domains target. The harm reached real customers, and we saw it in their complaints to us.
Trustpilot reviews describe people who paid the lookalike sites, sent irreversible cryptocurrency payments, received poor support, and got low-quality service under a name they trusted.
What the Proxyway research found
The case changed shape when researchers tested the impersonator’s product directly. The independent researchers have purchased a standard weekly unlimited residential plan on smartproxy.org, the same product any retail buyer can get, and measured where its traffic actually exited. The method is one any paying customer could repeat, which is part of why the result carries weight.
Proxyway sent roughly 6.96 million HTTP requests through the plan across one week, with each request landing on an endpoint that logged the exit IP address. After removing duplicates, the pool showed 2,023,029 unique IPs, of which 2,019,488 were IPv4, and 3,541 were IPv6. The success rate sat at 90.25%, in line with what the service advertised.
To find where those IPs came from, Proxyway compared the pool against a reference dataset of 16,192,293 verified IPIDEA exit nodes, observed over the 30 days ending January 29, 2026. Antoine Vastel, VP of Research at DataDome, built that dataset by routing traffic through IPIDEA endpoints himself and confirming each address as a working exit node, rather than relying on marketing claims. IPIDEA is the residential proxy network that Google’s Threat Intelligence Group disrupted back in January.
The comparison surfaced 773,087 IPs present in both pools. That figure equals 38.21% of the smartproxy.org pool and 4.77% of the IPIDEA dataset. The numbers sit in the table below:
Swipe to scroll horizontally
|
Metric |
Value |
Row 0 – Cell 2 |
|
Smartproxy.org unique IPs (test pool) |
2,023,029 |
Row 1 – Cell 2 |
|
IPIDEA dataset unique IPs (Vastel) |
16,192,293 |
Row 2 – Cell 2 |
|
IPs present in both pools |
773,087 |
Row 3 – Cell 2 |
|
Overlap as a share of smartproxy.org |
38.21% |
Row 4 – Cell 2 |
|
Overlap as a share of IPIDEA |
4.77% |
Row 5 – Cell 2 |
Why a 38% overlap points to shared sourcing
Residential pools rotate, so some overlap between any two services is normal. IPinfo estimates monthly IPv4 retention in residential pools at around 40%, meaning roughly four in ten addresses visible this month remain next month, while the rest cycle out. Two pools drawing from genuinely separate apps, SDKs, and device populations should not share anything close to 38% of their IPs across a few-week window.
The IPv4 address space spans more than 4 billion addresses, so an overlap at this scale would be a statistical anomaly if the sources were independent. The pool sizes point the same way. The smartproxy.org pool of about 2 million IPs is roughly an eighth of the 16.2 million IPIDEA dataset, the proportion you would expect when one provider draws from part of a larger upstream pool. Shared sourcing explains the data cleanly.
5 things you can do to combat digital squatting
Each step below works on its own. Together, they cover monitoring, prevention, legal action, search, and customer communication.
1. Monitor for lookalike domains before they reach your customers
Catching a fake domain after a customer reports it means the damage has already happened. Monitoring closes that gap.
Set up these alerts:
i) Domain registration alerts for your brand name across common TLDs and misspellings;
ii) Brand-mention monitoring across search results and social platforms;
iii) Certificate transparency logs, which flag new SSL certificates issued for domains containing your brand name.
We learned the full extent of our case through third-party research and customer complaints, later than we wanted. Monitoring would have surfaced the registrations sooner. A weekly check across the main extensions and the three or four most likely misspellings of your name catches most attempts while they’re still new.
2. Register your own domain variations first
A squatter can’t register a domain you own. Defensive registration removes the easiest targets before anyone reaches for them.
Claim the obvious variations:
i) Major TLDs such as .org, .net, .io, and .ai
ii) Common misspellings of your brand name country-code domains for markets you operate in, such as .co.uk, .de, and .cn.
Turn on registrar lock, use a reputable domain registrar, and keep your registration details current. We hit this wall directly when the obvious domains in China were already taken. Claim your namespace early, because the cost of registering domains is far lower than reclaiming them later.
3. Use your legal routes, and know their limits
Trademark law gives you specific tools against squatters. The tools work, though they move slowly, so start them early. The following is general information, not legal advice.
Your main options:
i) Register your trademark, which is the foundation for every other action;
ii) Send a cease-and-desist letter to the registrant
iii) Report abuse directly to the registrar hosting the domain.
4. Own your brand in search results
When someone searches your brand, the page they click decides whether they reach you or a copy. Ranking above the impersonator removes most of their traffic.
Make the real you easy to find:
i) Publish content that states your official domains in plain language;
ii) Keep rebranding and company information current across your site and profiles;
iii) Use structured data and verified social media profiles so search engines confirm your identity.
We published direct, on-record clarifications so anyone searching the old brand finds the truth quickly. We say it plainly: we operate at decodo.com globally and decodo.cn in China. Everything else using the old name isn’t us
5. Tell your customers, and keep telling them
Customers can’t avoid a fake site that they don’t know exists. Telling them turns your audience into a filter against the impersonator.
Reach them through every channel you have:
i) Email warnings to your existing customer list;
ii) A banner or notice on your website;
iii) A help-center article that customers find when they search for the problem;
iv) Posts on the social accounts your customers already follow.
Treat impersonation as a security problem
Brand impersonation now sits next to the infrastructure-trust problem the IPIDEA takedown exposed. A fake domain can route customers into compromised device pools, which makes this a question for security and legal teams, not just marketing. Give it a cross-functional owner who watches domains, files complaints, and updates customers on a schedule.
Google’s action against IPIDEA reduced the available device pool for proxy operators by millions and, in Google’s words, may carry downstream impact across affiliated resellers. Squatting that depends on that kind of infrastructure carries the same exposure. Demand transparency from any provider you buy from, and apply the same standard to your own supply chain.
We feature the best proxy sites.
This article was produced as part of TechRadar Pro Perspectives, our channel to feature the best and brightest minds in the technology industry today.
The views expressed here are those of the author and are not necessarily those of TechRadarPro or Future plc. If you are interested in contributing find out more here: https://www.techradar.com/pro/perspectives-how-to-submit
In a regulatory filing on Wednesday, SpaceX said it will offer 555.6 million shares at $135 each, valuing the company at $1.76 trillion. If the IPO is successful, SpaceX would raise $75 billion, potentially shattering the current fundraising record held by Saudi Aramco – the Saudi Arabian state-owned oil company…
Read Entire Article
Source link
Believe it or not, this is not the first robotaxi-assisted theft.
A burglar used a Waymo to steal a bunch of yoga clothes and seemed to have gotten away with it, according to a report by SF Chronicle. The incident occurred all the way back in January and the suspect remains at large.
The burglar took a Waymo to a San Francisco yoga studio, robbed the place blind and then exited via that same robotaxi, according to security footage described by TechCrunch. Waymo turned over the suspect’s account information to authorities but it didn’t lead police anywhere useful.
Interestingly, authorities weren’t able to get interior footage of the ride itself. Waymo vehicles record everything, but don’t hold onto that footage forever. Reports have indicated that when cops filed a search warrant in April, it was already gone. Police weren’t able to identify the suspect using the vehicle’s exterior camera footage because it had been “blurred for privacy reasons.”
This is potentially good news for people worried about the long-term surveillance capabilities of Waymo vehicles, though we still have some questions as to when the company deletes old footage. Engadget has reached out to Waymo to ask for clarification on that and the blurred exterior camera footage.
Oddly, this isn’t the first time a ne’er-do-well has opted for a Waymo to help commit a crime. Someone used one of the company’s vehicles a getaway car after robbing a grocery store. That person, however, was almost immediately caught.
OpenAI is rolling out some significant enhancements to ChatGPT’s memory feature, particularly if you’ve been using the chatbot through a free account. Before getting to those improvements, a quick recap will help set the stage for what to expect: OpenAI shipped its first memory feature in April 2024. By the company’s own admission, this early implementation, then known as saved memories, was basic. It depended on strong cues from user, such as a direct prompt telling ChatGPT to remember a fact. People also found the chatbot’s memories became less relevant over time. So over the next year, OpenAI began working on the first version of a feature it would end up calling dreaming.
Dreaming runs in the background, allowing ChatGPT to synthesize information from many different conversations without it relying on explicit instructions to remember something. “Over the last year, dreaming supplemented saved memories to create a step-function improvement in ChatGPT’s ability to personalize responses and offset the staleness of saved memories,” OpenAI explains. “However, it historically was never sufficient as a standalone memory system.”
That brings us to today’s release, which sees OpenAI rolling out what it describes as a new memory architecture that builds on the dreaming process to offer something that is “significantly” more capable and compute-efficient. Now, as ChatGPT synthesizes information about you, it will write a “memory summary” you can read at any time. From there, you can add and update information about yourself, as well as tell ChatGPT when it should reference what it knows about you and your preferences. “If you want to drill down into a particular area to learn more, just chat with the model,” says OpenAI. The new summary is designed to complement the memory sources feature OpenAI released alongside GPT-5.5 Instant. Sources allow you to see the information ChatGPT used to personalize an answer, and edit or delete that context as desired. You can see both features pictured above.
Besides offering greater visibility to the user, OpenAI says the new dreaming architecture is better at carrying forward context. For example, if you’ve talked to ChatGPT about photography in the past and mentioned the camera you currently use, the chatbot will know to generate tailored results the next time you ask for product recommendations that are compatible with your photography setup.
Similarly, OpenAI says the new architecture is better at following preferences. Say you’re planning a trip, ChatGPT will use things it has learned from past travel conversations to inform its responses. Using photography as example again, it might suggest a Singapore itinerary that includes suggestions on spots where you can do street photography. To bring everything together, ChatGPT will automatically revise its memories as time passes, so that it doesn’t do something like reference a trip you took in the past as if it were coming up.
OpenAI is beginning to roll out the new memory architecture to Plus and Pro users in the US starting today. Thanks to behind-the-scenes efficiency improvements, ChatGPT will, for the first time, soon start recording memories through the dreaming process for free accounts. As a Plus or Pro user, those enhancements will translate to ChatGPT offering greater memory capacity. The new architecture will roll out to users in other countries in the coming weeks.
Whether it’s working on woodworking projects, maintaining our vehicles, or even just storing emergency food supplies, our garages can be the space where our imagination goes wild. If you do need to equip it properly, Harbor Freight is always a good place to start. Known for its wide range of exclusive in-house brands, you can snag a ton of highly-rated finds for under $50, like hand tool sets, power tools, and specialized cleaning materials.
Or, you can swing the other way and invest in high-end professional equipment that can last you years of use. Either way, there are plenty of tips and tricks you can use to get more bang for your buck at Harbor Freight, especially if you’re patient enough to wait for markdowns and parking lot sales. With generous warranties that guarantee hassle-free replacement for hand tools and limited 90-day for workmanship defects, it’s an ideal place to start building up your dream garage set up.
If budget isn’t a problem, and you just want to be ahead of the curve, the retailer is constantly churning out new products. In 2026, Harbor Freight has released fresh products across the board that span ladders, lighting, power tools, and even add-ons to its growing organization portfolio. Here are some of the new Harbor Freight offers that you can add to your garage today.
Franklin 3-Step Steel Folding Step Stool
With a working load of up to 225 lbs, the Franklin 3-Step Steel Folding Step Stool boasts an extra-wide platform with slip-resistant feet, so you don’t have to worry about ruining your garage floors while you’re at work. Weighing a little under 15 lbs, or about the weight of an average bowling ball, it’s light enough for the average adult to carry.
It’s about 2.83 inches x 48.75 inches when folded, which means you only need 3 inches to be able to store it. It’s worth noting that it’s only listed for indoor use, which makes it perfect for places like your kitchen, closet, or garage, but not necessarily for your outdoor projects. That said, the steel ladder is OSHA/ANSI compliant, so it’s still suitable even for professional work environments.
Retailing for $49.99, the Franklin 3-Step Steel Folding Step Stool is listed as available exclusively in-store, as of June 2026. If you’re still on the fence or want to purchase online, the good news is that it isn’t the first of its kind from the Franklin line up. Harbor Freight also sells an older model, the $29.99 Franklin 2-Step Steel Stool, which can give you an idea of what to expect. If you don’t need so much height, and have limited storage space, there’s also the 1-Step Folding Stool that retails for just $6.49.
U.S. GENERAL 5-Tier Boltless Steel Garage Shelving
For people with overflowing garages, the $139.99 U.S. General 5-Tier Steel Garage Shelving can help bring more order. Compared to other storage racks in the market, it’s unique for how you can also set it up in two ways. You can opt for a single vertical track that measures 48 inches by 24 inches by 78 inches, or split it and have a pair of 39-inch racks instead.
You can also adjust the shelf placement with 1.5-inch increments if you need more vertical space. Each of its five wire mesh shelves can hold up to 1,000 lbs each (or 5,000 lbs in total). It’s also NFS certified, so it’s safe for holding dry food for long-term emergency storage needs.
You will need to consider something else if you’re based in Alaska or Hawaii — those are the only two states to where it can’t be shipped, due to its weight. It weighs a little under 68 lbs, so it’s built to be sturdy. It’s also boltless, so you can expect faster assembly and less maintenance around periodically tightening bolts. While it’s not the cheapest shelf brand on the market, U.S. General cabinets are made in the United States, so it’s a good option for people who want to support local manufacturing, but if you want to maximize your garage space, another option is to build a custom tote rack with wood instead.
Central Machinery 24 in. Wall-Mount Fan
Among the many ways to improve the air quality in your garage, ventilation can make one of the biggest differences, especially when it comes to regulating the temperature. You can do this with the Central Machinery 24-inch Wall-Mount Fan. Designed with a 360-degree tilting head, it has two speeds: 7,150 CFM (low) and 7,600 CFM (high).
You can attach it to corners, ceilings, and regular walls with its mounting bracket. Meant for use with standard 120V plugs, Central Machinery notes that the powder-coated finish is made for daily use and with garages and basements in mind. The wall-mounted fan comes with a 7.5 ft power cord, plus a UL certification and thermal overload protection for added peace of mind.
At $149.99, the Central Machinery 24-inch Wall Mount Fan can feel like a big investment. However, its commercial-grade fan mount features can make it worth it during the hot, summer months. However, if you’re already using your garage walls for slat wall storage, Central Machinery also sells a similarly-sized 2-Speed High-Velocity Shop Fan that retails for the same price.
While it’s also 24 inches and have features like overload protection, it has handles and is designed to be rolled around on the garage floor. This makes it better for drying carpets or airing out paint fumes. For just under $60, the 20-inch 3-Speed High Velocity Fan is also another highly rated fan in its portfolio and may be enough for small garage spaces.
Black Widow by Spectrum Professional HVLP Touch-Up Air Spray Gun
Depending on your budget, Harbor Freight sells several highly-rated air spray brands, such as Avanti, Central Pneumatic, and Spectrum. At the top of the list is Black Widow by Spectrum, which recently released a new model, the Professional HVLP Touch-Up Air Spray Gun with Rear Fan Control.
With a maximum pressure of 25 psi, it has a 3.9 oz per minute flow rate with listed applications that include usage on auto, wood, and metal. Black Widow by Spectrum notes that it’s made for spot repairs and finishing. It has a 1.0 mm nozzle and ¼-inch air inlet, which works for fine finish, base, and top coats. The spray pattern can also be changed between rounds to fan with a maximum of 9 inches. For owners of the Spectrum cup system, it comes with an adapter that works with this too.
Priced at $129.99, the Black Widow by Spectrum professional touch-up gun is often compared to significantly more expensive DeVILBISS spray guns. As of June 2026, this HVLP touch-up gun model is listed as being an in-store exclusive, but you do have other options from Black Widow by Spectrum that you can order from the Harbor Freight website. For example, the slightly more expensive $179.99 Professional HVLP Gravity-Feed Air Spray Gun with Rear Fan Control, which ships with a 1.7 mm nozzle, can be a viable alternative.
Braun 10,000 Lumen Multidirectional Corded LED Tripod Work Light
When it comes to working in our garages, making sure it’s lit properly can help us do our jobs more effectively and avoid all kinds of accidents. Retailing for just under $100, the Braun 10,000 Lumen Multidirectional Corded LED Tripod Work Light has a lot of neat features that make it worth the price tag. To create its 360-degree illumination, it has ultrabright 10,000 lumen LEDs, which make it ideal for wide coverages. If you need more precision, it has both a rotating head and rotating panels (vertical and horizontal) for more focused lighting needs.
Standing at 47 inches tall with a collapsible tripod, along with an adjustable base that can be extended up to 75 inches. For added portability, it also has easy grip handles. Made with durable polycarbonate lenses, it has a built-in storage for its 8ft power cord made for 120V plugs with TUV certification.
According to the listing, it’s primarily for indoor use, like garages and workshops, but its manual does indicate that it can be used outdoors with the right extension cords. Apart from this work light, Braun has also released a lot of new lighting solutions worth considering, like its $29.99 1,000 Lumen Rechargeable Slim Headlamp. There’s also a UV Lead Detector Flashlight, which isn’t just useful for hotel stays, but also good for finding water leaks in your garage.
Mira Murati isn’t a natural creature of the conference stage. As the CTO of OpenAI, she was present but rarely the public face of the company. As CEO of her own company, Thinking Machines Lab, she has been even harder to find. So when she sat down with Bloomberg in San Francisco on Thursday — her first major media appearance in roughly 18 months — it was worth paying attention, even if she was careful not to say too much.
The timing makes sense. Thinking Machines has spent the better part of a year and a half operating largely in the background: raising capital, hiring researchers, and shipping one product, Tinker, an API for fine-tuning open-source AI models.
In the meantime, the companies competing for the same talent, customers, and headlines have only grown more omnipresent. OpenAI, where Murati spent six years as CTO, is constantly in the news cycle. Anthropic’s momentum is all that anyone can talk about right now. And xAI, Elon Musk’s AI venture, has been folded into SpaceX ahead of what is expected to be its massive public offering, generating its own gravitational pull on attention and investment. In that environment, staying heads down has diminishing returns; at some point, you have to make some noise just to remind the market you exist.
Murati used the Bloomberg appearance to do exactly that and not much more. She previewed what Thinking Machines is calling “interaction models,” which she described as a fundamentally different kind of AI interface. Rather than the turn-based, prompt-and-response dynamic that defines most AI products today, she told interviewer Emily Chang, the company’s models are designed to process continuous streams of audio, text, and video in 200-millisecond intervals. The idea is that they can pick up on the texture of human communication — the interruptions, the mid-thought corrections, even pauses to think — in something closer to real time. But Murati was careful to frame it as a first step, not a finished product, and she declined to put a specific release date on anything.
She also answered questions about the episode that first put her more squarely in the public eye: the chaotic week in November 2023 when OpenAI’s board fired Sam Altman and she became interim CEO. Inside OpenAI it came to be called “the blip.” Murati said she felt clear about her decisions in each moment — that protecting the mission and the team was the through-line that made the choices feel obvious even as the situation appeared to be falling apart from the outside. She said the company would have “imploded” if not for her involvement through that strange five-day stretch and its immediate aftermath. But she acknowledged that clarity of intent is not the same thing as clarity about consequences. In retrospect, she said, she would have pushed harder for more information, a better transition plan, and more transparency. What she did not say, at least not directly, is whether she thinks things turned out well.
Asked whether she still trusts her former boss, she sidestepped the question, steering the conversation toward a larger concern that she returned to several times: the concentration of consequential decisions in too few hands — not just at OpenAI but across the industry. Her worry, she said, is less about the character of any individual leader (though she acknowledged that matters) and more about the absence of structural checks. Good people make bad calls. Well-intentioned organizations drift. Too much attention has been paid to virtue and too little to governance, she suggested.
Chang also politely pressed her on the departures of several high-profile researchers from Thinking Machines in recent months , a subject Murati has largely avoided in public and that she downplayed on Thursday. First, she said, building a frontier AI lab from scratch compresses years of normal organizational volatility into months. She also acknowledged that compensation — the nine-figure packages that have become standard currency in the war for AI talent — captures people’s imaginations, but she suggested it isn’t usually the whole story. To some audience laughter, she said of her own competitive instincts, “When I wake up in the morning, I am not thinking about how to kill the competitor.”
Naturally, Chang asked about what comes next for AI broadly, including for the humans who AI companies once said would be empowered by AI but who’ve more recently grown scared by talk of mass job displacement, not to mention a future where AI is used to create chemical weapons.
Murati, who was born in Albania and speaks with a slight Eastern European accent, was measured in her response. She pushed back on the framing of inevitable dystopia or inevitable utopia, arguing that neither outcome is predetermined and that the period we’re in right now is the one that will determine which way things go. Still, she said — and not for the first time during the interview — that if humans take their hands off the wheel too soon, the future will look very different, and not better.
When you purchase through links in our articles, we may earn a small commission. This doesn’t affect our editorial independence.
Business1 minute ago
Julian Wright’s litigation funders liable for legal costs, court finds
Crypto World2 minutes ago
Bitcoin selloff meets $1.89B options expiry as bears gain control
Entertainment3 minutes ago
Diane Kruger’s Just Wore These Exact Vans Sneakers on Amazon
Crypto World4 weeks ago
HarrisX Poll Found 52% of Registered Voters Support the CLARITY Act
Crypto World3 weeks ago
BloFin War of Whales 2026 Grand Prix opens registration for $5M trading championship
Crypto World2 weeks ago
Blockchain.com files with SEC for U.S. IPO
News Videos19 minutes ago
Cryptocurrency Halal or Haram? #muftitariqmasood #tariqmasood #crypto #cryptocurrency
News Videos40 minutes ago
Once Your Money Moves to Crypto, Tracking Becomes Almost Impossible | Rajkumar IFS | Gobinath
News Videos46 minutes ago
Skill Financial Planning yang Harus Kamu Kuasai Biar Gaji Gak Cuma Numpang Lewat
-
News Videos7 days agoThis is BROKEN! INSANE 5x MONEY CAR WASH WEEK! The NEW GTA Online UPDATE Today! (GTA5 New Update)
-
Business4 days agoJade Biosciences, Inc. (JBIO) Discusses Positive Interim Results From JADE101 Phase I Healthy Volunteer Study and Development Plans Transcript
-
Tech6 days agoSpaceX just won a second Golden Dome contract. This one is $4.16 billion.
-
News Videos7 days agoSHE IS KILLING XRP!!! WATCH URGENT AND ACT FAST
-
Sports2 days agoFrench Open 2026 results: Alexander Zverev beats Rafael Jodar and will play Jakub Mensik in semi-finals
-
NewsBeat6 days agoFIRST NIGHT REVIEW: Take That bring the Circus back to life in spectacular sun-soaked style
-
Business6 days agoIs the Spurs Phenom Already Better Than Prime Diesel?
-
Tech3 days agoCryZENx Releases Fresh Playable Content Deep Inside Jabu-Jabu for His Ocarina of Time Remake
-
NewsBeat7 days agoNovak Djokovic v Joao Fonseca LIVE: French Open latest scores and results after Jannik Sinner’s shocking collapse
-
Politics6 days agoThe House | Inside Andy Burnham’s Makerfield Campaign: “Nobody Thinks This Is In The Bag”
-
Crypto World7 days agoCFTC Has Approved the First Regulated Bitcoin Perpetual Contract in the U.S.
-
Entertainment7 days agoMaddox Jolie-Pitt Legally Requests to Drop Brad’s Surname
-
Entertainment6 days agoWeak ‘Supergirl’ Box Office Tracking Amid Milly Alcock Backlash
-
Entertainment6 days agoBruce Willis’ Generosity Resurfaces Amid His Dementia
-
Crypto World7 days agoSnowflake (SNOW) Stock Rallies on Strong Q1 Results and AI Product Growth
-
Entertainment6 days agoOne of the Greatest Sitcoms of All Time Shoots Up Apple TV’s Charts 11 Years Later
-
Business6 days agoDemand Conditions Improve In Chemicals Sector In April 2026
-
Tech7 days agoThis Week In Security: Ubiquiti Fixes, And FreeBSD Joins The Club You Don’t Want To Join
-
Crypto World7 days agoMicroStrategy Moves $30 Million in BTC to Coinbase Prime: Is the Bitcoin Sell-Off Already Here?
-
Crypto World3 days agoSeagate (STX) Stock Surges to Record High on AI Boom and Legal Settlement
You must be logged in to post a comment Login