Security teams log 54% of successful attacks and alert on just 14%. The rest move through your environment unseen.
The Picus whitepaper shows how breach and attack simulation tests your SIEM and EDR rules so threats stop slipping by detection.
Microsoft has released a security patch to address a Defender zero-day vulnerability known as “RoguePlanet,” disclosed after the June 2026 Patch Tuesday.
The flaw (tracked as CVE-2026-50656) was disclosed by a security researcher using the “Nightmare Eclipse” handle as part of an ongoing dispute with Microsoft over the company’s bug bounty and vulnerability disclosure practices.
They also shared a proof-of-concept exploit in a self-hosted Git repository, claiming that Microsoft had previously removed their repos hosting exploits on GitHub and GitLab.
According to Nightmare Eclipse, RoguePlanet affects fully patched Windows 10 and Windows 11 devices, allowing attackers to spawn a command prompt with SYSTEM privileges via a Microsoft Defender race condition.
“The exploit is a race condition, so it’s a hit or miss. I have managed to get a 100% success rate on some machines while it struggled to work on others,” they explained. “The PoC for RoguePlanet works regardless if real time protection is on or not,” the researcher added in a follow-up update.
Microsoft confirmed it was working on a patch for CVE-2026-50656 on June 16, but has yet to acknowledge that Nightmare Eclipse discovered the vulnerability.
On Wednesday, the company addressed the RoguePlanet vulnerability by releasing Microsoft Malware Protection Engine 1.1.26060.3008, an update to the core scanning engine that powers its security solutions and services.
“Microsoft has released an update to the Microsoft Malware Protection Engine that addresses the vulnerability identified by CVE-2026-50656. Please see the FAQ for more information on how to check if the new version has been installed,” Microsoft noted.
Over the past several months, Nightmare Eclipse has disclosed multiple other Windows zero-day exploits, including for the BlueHammer, RedSun, GreenPlasma, MiniPlasma, YellowKey, and UnDefend flaws.
While some of these security vulnerabilities affect Microsoft Defender, others target BitLocker and Windows components. Microsoft fixed the GreenPlasma, MiniPlasma, and YellowKey flaws one month ago as part of the June 2026 Patch Tuesday updates.
Microsoft has also reacted to Nightmare Eclipse’s disclosures by issuing warnings of legal action against people engaging in what it described as “malicious activity causing real harm to our customers,” leading cybersecurity experts to believe that Microsoft was directly threatening the security researcher.
Security teams log 54% of successful attacks and alert on just 14%. The rest move through your environment unseen.
The Picus whitepaper shows how breach and attack simulation tests your SIEM and EDR rules so threats stop slipping by detection.
Last week, thousands of SamKnows routers were bricked after a government program ran its course.
In 2020, as part of a program conducted by the Australian Competition & Consumer Commission (ACCC), the Australian government’s chief competition regulator, thousands of volunteers received routers to help test and report on the typical speed and performance of broadband plans in Australia. (More specifically, the Measuring Broadband Australia (MBA) program targeted fixed-line broadband services provided over the NBN, Australia’s government-owned wholesale open-access broadband network, as well as services delivered over other access networks.)
According to the final report that the ACCC distributed, the routers are whiteboxes that were “supplied by SamKnows” and that “perform tests to measure internet performance using test servers maintained by SamKnows and hosted in Australia.”
Last month, the program concluded, and the ACCC released its final performance report (PDF). Subsequently, the routers used for the program were bricked after June 30.
Ars Technica reviewed a copy of an email that an MBA volunteer received in mid-June informing them that the program would end on June 30, 2026 and further stating:
Service Termination: Your whitebox will be disabled, and your SamKnows One account will be closed.
The email, signed by “The SamKnows Team (part of Cisco),” noted that after June 30, the devices would stop collecting data and that users’ “measurement and registration data will be deleted in accordance with our retention obligations under our end-user license agreement.”
However, as one MBA volunteer pointed out to Ars via email, the routers are still working, making the decision to disable the devices an avoidable e-waste risk.
When asked by Ars, the ACCC didn’t specify the number of SamKnows routers disabled last month. However, in a report about the MBA program released in December 2020 (PDF), the ACCC said it initially expected to release about 4,000 whiteboxes throughout the program’s duration and had distributed “over 2,600″ by December 2020. The report noted that the ACCC retained an “adequate pool of whiteboxes to allow for the expansion of our reporting to cover, for example, emerging [retail service providers] and new speed tier plans.”
Android 17 is finally here, rolling out to Pixel devices now, with Samsung phones and other devices receiving it in the near future. Over the past few years, it would be fair to say that most upgrades to the Android operating system have been largely cosmetic, under the hood, or a little of both. But this year, Android is gaining some new features and abilities that haven’t been around before — or at least not system-wide.
Indeed, there are a number of features that are new to the operating system. They might not be useful to everyone, to be sure. Some of these updates have been cooking for a while; others are coming out of nowhere. Plus, there are still some under-the-hood and cosmetic updates as well. We’ve already outlined some of the big changes that are coming to Android 17, but we wanted to take a moment to point out some of the more noticeable ones that may affect you on a day-to-day basis that we think are pretty cool.
Bubbles are here, and they’re a new multitasking feature that takes a page from Facebook, of all places. You may recall a concept called “chat heads” that Facebook introduced back in 2013. Chat heads surfaced Facebook messages as a round profile picture that appeared on your screen. Tapping on it opened the message. And you could drag the chat head around and ultimately dismiss it by dragging it to the X at the bottom of the screen.
Bubbles are basically that idea, but with every other app on your phone as well. You can open any app into a bubble. The app itself will open in a screen, slightly smaller than your phone screen along with a “bubble bar” interface at the top of the screen. You can have up to four apps open at once and just tap on each icon to switch between apps. It’s really fast and seamless.
It won’t be for everyone. Many people are accustomed to just using the app that’s on the screen and that’s it, but for those people who want to quickly switch between apps, bubbles might be a great way to do it.
Another feature that isn’t out yet but is coming in the near future pertains to foldables like the Google Pixel 10 Pro Fold or the Motorola Razr Fold. In this case, Android puts on its best Nintendo 3DS suit and morphs itself into a gaming screen and a controller. When you half-fold a book-style foldable, the bottom portion of the screen switches to become a virtual gaming controller while the top of the screen displays the game. Mishaal Rahman, staffer at Google, took to Reddit to show a preview of the feature.
This allows you to play games without having your fingers on the display, obscuring game elements for controls. It can be beneficial especially to heavy gamers. The posture is available for any game that supports external controllers. The controller itself can be switched and customized to your tastes as well. This is not available today, or at least it isn’t on the Pixel 10 Pro Fold that we tested the feature on, but it will be rolled out in the coming weeks.
This next update feels like the most niche of the updates, but the screen recorder can now record you and your voice with tools built in. When you initiate a screen recording, you get four options — record device audio, record microphone, show selfie camera, and show touches. This is probably going to be the most useful for tutorials and things like that.
You’ll be able to do that full-on, “Hey everyone. Today we’re going to be learning how to turn on your selfie camera while screen recording,” thing. It’s pretty similar to the green screen feature that social media apps like TikTok and Instagram. This could also be useful if you want to show people how to do something on their phone complete with your disapproving glare. It’s certainly not a feature everyone will use, so we’ll file it under better to have it and not need it.
Finally, some of the more design-centric touches include smaller details that can help grow and mature the platform. You’ll now be able to turn off app labels on the home screen if you want to, which is something that has been missing for quite a while. The widget picker will not have a bit of translucency to it, just the app launcher and the notification panel.
When you go into settings, you’ll notice the labels for settings are a bit closer together — the photo above shows settings on the Pixel 10 Pro Fold on the left (with Android 17) and the Pixel 10 (Android 16) on the right, both of which have the same size screen. The change is very subtle, but you can definitely see it when placed side-by-side. Speaking of settings, Google combined Wi-Fi and mobile data into a single quick setting called “Internet” a few years back, and it has now re-separated them into their own toggles.
Finally, you can customize the perma-search bar at the bottom of the screen. You can adjust the level of transparency on it and even add a third icon. Previously you could do this, but only for a new Google search widget and not the one that is at the bottom of the home screen, so that’s a welcome addition as well.
Security
If people think you are doing a legitimate job, you can get away with anything
PWNED Welcome, once again, to PWNED, where each week we share the saga of an organization that couldn’t get out of its own way when it comes to security.
This week’s tale comes courtesy of Dahvid Schloss, a professional red teamer who was also involved (as a supervisor) in last week’s story about hackers shoveling snow in order to gain access to restricted areas. This time, it was Schloss himself who broke in, and he used the promise of better connectivity to do it.
On one assignment, Schloss was asked to test the physical and network security of a company that was near the top of the Fortune 500 and had a reputation for sponsoring and providing the trophy for an international sporting competition. According to him, there were three copies made of the trophy: one for the winner, one for the host nation itself, and one for the sponsor.
When Schloss was conducting his audit, the location he visited was undergoing construction, creating problems with the office Wi-Fi that all the employees noticed and hated. So when Schloss and his team invaded the place and started probing the wireless network, no one questioned them.
“So, you got three of us that are kind of walking through this campus with antennas sticking out of our laptops. We were not being secretive at all, but we figured this is California and there’s plenty of tech bros and nerds everywhere so antennas sticking out of a computer is not going to scare people,” Schloss said. “But everyone kept coming up to us – not to ask us if we were supposed to be there, but to ask us if we were going to fix the Wi-Fi.”
After wandering the building, Schloss and his team came to the marketing department where one of the trophies, which he estimates was worth at least $250,000 (or, perhaps, priceless as there are only three), was sitting in a case. Knowing that his job was to test overall security and not just network security, he opened up the case and proceeded to remove the trophy.
Someone from the marketing department saw Schloss pulling the trophy out of the case and talked to him while he was doing it. Their question: “Are you here to fix the Wi-Fi?” When he answered “yes,” the marketing people ignored him as he slipped the trophy into his backpack.
He took the trophy out of the building and held onto it for two and a half weeks, with no one saying anything about it. However, when it came time for him to give a presentation to the company executives, he brought the prize with him.
“We walked to the boardroom and the first thing I do in this boardroom is I pull out the trophy and I put it on the table,” Schloss told us. “And all these executives are sitting around there as we’re about to give this security report on where the maturity is at and that was like enough said, right? You could see the eyes just popping open.”
What we can learn from this story is that employees tend to trust people in the workplace, even outside contractors. If they think that someone belongs in the building, they won’t question that person’s motives, even if they see them doing wrong.
I’m reminded of a situation that took place at a job I was working at many years ago. It was around 6 pm and most people had left the office, but the cleaning lady was there sweeping up when I heard a commotion coming from my coworker’s cubicle. My colleague, who had been at the gym and left her wallet at her desk, returned to find the cleaner taking cash out of her wallet.
At first I didn’t believe it and thought there must be a misunderstanding because the cleaning lady, unlike Schloss’ set of fake Wi-Fi repairmen, was legitimately supposed to be working that night. However, my coworker caught her red-handed and she later admitted stealing the money.
So train your staff to question everyone, especially strangers who look like they belong in the building. ®
A new study proposes using shoebox-sized detector satellites to sniff out nuclear weapons launched by adversary nations. The idea is aimed at addressing fears that a space-based nuclear detonation could destroy satellites across low Earth orbit and make some orbits unusable for years. Space.com shares the findings from a new paper authored by Areg Danagoulian, an associate professor of nuclear science and engineering at the Massachusetts Institute of Technology: No reliable way currently exists to detect and defuse a nuclear bomb in space. Danagoulian proposes a constellation of small “9U” cubesats, each one about the size of a large shoebox and each carrying a special detector capable of sensing radiation emitted by unexploded nuclear bombs. He explores a scenario in which Russia launches a suspected space nuke into an orbit with an altitude of 1,200 miles (2,000 km). That number is not random. In 2022, Russia’s Kosmos 2553 satellite, orbiting at that exact altitude, triggered suspicions it might be testing components for a future orbital nuclear weapon.
Russia claims the satellite just observes Earth. At that altitude, the satellite passes through the Van Allen belt, a region of intense cosmic radiation trapped by Earth’s magnetic field. Most of the belt stretches between altitudes of around 600 miles (1,000 km) to tens of thousands of miles, but in some areas the radiation can reach much closer to Earth’s surface. The interaction between the fissile material inside the nuke and the energetic particles from the radiation belt would create distinct signatures, Danagoulian said, which could help confirm whether a suspicious satellite carries a nuke or not.
“The thermonuclear weapon would contain a significant amount of uranium,” Danagoulian said. “The high-energy protons [in the uranium] would break up when another proton is coming in and shred the nuclei. That would knock out a large number of neutrons. This interaction turns that device into a very intense neutron source that otherwise would not be there.” he process is known as proton-induced neutron spallation, which essentially means the ejection of fragments from material triggered by impacts of protons. The detector satellite Danagoulian proposes would have to be able to get quite close to the suspect spacecraft — a few kilometers.
The inspector spacecraft would carry a sensor combining two types of detectors. At the heart of the device is a neutron scintillator, which detects all incoming neutrons and protons. Around it is a “cage of diamond” detector that detects only neutrons — not protons. Such a set-up helps filter out the particles present in the environment naturally, said Danagoulian. In addition, by using two “planes of neutron detectors,” the sensor can determine the direction from which the neutrons arrived. “If the external diamond detector triggers and gives a signal, you can ignore the particle, because it’s most likely a proton and not a neutron,” said Danagoulian. “Once you identify those neutrons, by having those two detections, you can back project and find out where the neutron came from.”
Danagoulian says such a nuke sniffer would have to be launched into an orbit aligned with that of the suspicious satellite and creep up as close as 2.5 miles (4 km) from it. It would then take about a week to gather enough measurements to confirm whether the object is hiding a nuke or not. A constellation of 10 such satellites could reduce the process to mere hours, Danagoulian said. If a nuke were detected, the military could then try to jam the satellite’s communications link from the ground, making it impossible for the adversary to remotely detonate the bomb. There is currently no technology available to safely defuse a nuclear weapon in space. […] Danagoulian also suggests that high-grade radiation hardening could improve satellites’ chances of surviving a nuclear winter in space. The paper has been published in the journal Nature.
Japanese telecommunications giant KDDI revealed that millions of people had their email addresses and passwords exposed after attackers breached an email platform used by five internet service providers (ISPs) in the country.
KDDI is the second-largest mobile telecommunications provider in Japan, with 45,000 employees and annual revenue of $32.4 billion.
The company disclosed last month that it blocked the attackers’ access and implemented defensive measures after discovering the incident on June 17, and revealed that the breach impacted the STNet, JCOM, Chubu Telecommunications C, NIFTY Corporation, and BIGLOBE ISP operators.
KDDI added that the incident may have exposed the email addresses and passwords of up to 14,22 million current and former customers, as well as those belonging to inactive accounts. It also noted that some passwords were stored in hashed and/or encrypted form (making them harder to use for account hijacking), but did not specify how many accounts had passwords stored in plaintext or what type of encryption was used.
In a July 6 update, KDDI revealed that the attackers breached the platform on May 16 after exploiting a zero-day vulnerability in a third-party software.
“As a result of our investigation, as of June 17, 2026, the date of our confirmation, this vulnerability was not recognized by the software vendor,” KDDI said. “The software vendor has reported this vulnerability to public authorities and is working toward disclosing the information.”
The telecom giant is now working to secure affected email accounts after attackers gained access to the email addresses of 12,233,087 people and the passwords of 7,616,173 others.
“We are currently working to change the passwords of affected customers’ email accounts. To date, many customers, primarily those who regularly use email services, have already changed their passwords,” it said.
“In addition, to ensure the security of customers who do not frequently use email services, we are working to have ISP providers complete mandatory password changes within one or two days.”
Since the attack, KDDI has also deployed Endpoint Detection and Response (EDR) software to help detect future breach attempts and said that, on June 23, a forensic audit confirmed that the exploited vulnerability had been addressed and that the systems aren’t affected by other security issues.
KDDI also notified Japan’s Personal Information Protection Commission and the Ministry of Internal Affairs and Communications after discovering the breach, and is currently working with affected ISPs to implement security measures to mitigate the risks arising from this exposure.
Security teams log 54% of successful attacks and alert on just 14%. The rest move through your environment unseen.
The Picus whitepaper shows how breach and attack simulation tests your SIEM and EDR rules so threats stop slipping by detection.
Sony just gave the world another lesson in how they don’t actually own the content they’ve bought digitally generally, and particularly not through Sony’s digital storefronts. Instead, as readers here will largely know, what is actually being bought is a temporary license to download and play these games, movies, music, whatever. Sony has done this sort of thing before, disappearing bought items from people’s accounts when licensing agreements expire. Many are surprised to find their shit gone.
This doesn’t happen when you buy physical media, typically, unless it relies on backend servers to operate. But for movies on disc, books on pulp, music on physical media, and physical games this generally isn’t a concern.
But what if a major gaming console maker announced it simply isn’t going to support physical media any longer? Well, that’s precisely what Sony’s PlayStation just did.
Some gamers are concerned about the future of game ownership after Sony’s announcement today that it won’t produce physical discs for PlayStation games as of January 2028. On that date, “new games will be available on PlayStation Store and at retailers in digital formats only,” Sony said in a blog post.
Ditching discs is “a natural direction” for Sony “to adapt to consumer trends as the general preference for digital media significantly outpaces physical discs,” the post said.
Now, for some numbers to chew on. The reality is that nearly 80% of PlayStation games are bought digitally these days. This is pretty much a perfect example of companies following the 80/20 rule, where you plan and account for 80% of the reality you face and de-prioritize the 20% of the outliers. If you left it there, this plan might make some sense.
But in this case, that 20% of the market is both a sizable chunk of revenue and almost certainly made up in no small amount of people who will not move to digital purchases instead. There is a very passionate, vocal community who believes in ownership rights that you can’t get currently with digital purchases, or who believes in video game preservation efforts that can’t exist at the pleasure of gaming companies that haven’t shown a ton of interest in the topic.
If you needed proof of that, the backlash online to Sony’s announcement has been ferocious.
For example, the official Sony account on Twitter posted a simple tweet teasing the upcoming release of the next Spider-Man movie with a single spider emoji. Normally, this account gets a few hundred replies at most, but the Spider-Man tweet now has over 3,000 replies, and most of them are from people yelling at Sony for killing PlayStation game discs.
Similarly, over on the official PlayStation Instagram account where most posts get around 200 to 300 replies, the most recent video shared by the company has amassed over 2,000 comments. And once again, most of them are very angry about PlayStation abandoning physical media, begging the company to reconsider, or threatening to boycott future Sony products and games if it doesn’t.
The most recent video on the PlayStation YouTube account, a trailer for a World of Tanks update, has over 300 comments, most of them yelling at Sony over the news. Usually these videos, outside of the biggest trailers, get less than 50 comments.
This has been going on for a week. Somewhat amazingly, Sony has been running with a typical playbook of ignoring the backlash entirely and waiting for it to just go away. The PlayStation ExTwitter account went fully silent for nearly a week after the news broke, which is one more giant middle finger to its own customer base. At the time of this writing, July 7th, the account finally posted again… to pitch a new wireless flight stick. The reaction to that was, well…
In less than an hour, Sony’s fight stick video received over 12,000 negative comments and nearly 4,000 angry quote-tweets. If there is anyone in there defending the company’s move to all-digital, I couldn’t find it. “As was evident, PlayStation has followed the strategy of acting as if nothing had happened,” one fan wrote. “They think we’re going to forget it easily, but we can’t allow that. They’re trying to kill physical games with lies and using us players as an excuse. It’s shameful.”
The level of tone-deaf going on at Sony over all this is fairly astounding. There is no support for ending all physical media on PlayStation consoles. None whatsoever that I can find. There is either silence or hatred.
For ownership rights, for preservation efforts, for collectors, and for many others, this may be a “Give me physical media or fuck all the way off” type scenario. We’ll now have to wait and see if Sony bothers to listen.
Filed Under: downloads, ownership, playstation, video games
Companies: sony
We may receive a commission on purchases made from links.
The suction lifter is a major help on a job site, allowing workers to move large and unwieldy items like tiles, wood planks, and metal plates using vacuum pressure. Naturally, most major tool companies make these tools, including DeWalt, which teamed up with Grabo for the 20V Max Grabo Lifter. Grabo also sells its own lifters, including the Grabo Pro Lifter 20, named after its 20-liters-per-minute of suction. Thus, one has to wonder, where exactly do these two very similar products differ, aside from their appearance and branding?
Grabo and DeWalt’s suction lifters deviate in a few key areas. For one, their respective weight capacities are different, with DeWalt’s claiming a 265-pound maximum and the Grabo Pro rated for 375 pounds maximum. The DeWalt uses a 20-volt battery, while the Grabo uses 14.8 volts; their button and screen layouts are also different. Warranties also differ: The DeWalt Grabo comes with DeWalt’s three-year limited warranty, while the Grabo Pro has a 12-month warranty. The latter can be extended to 18 months should the tool be registered before the warranty claim is filed. Finally, price is also a differentiating factor, as the DeWalt 20-volt Max Grabo Lifter costs $259.00 compared to $299 for the Grabo Pro.
Though they overlap in key areas, including their general design and the presence of useful extras like attachment ports, the Grabo Pro and DeWalt Grabo aren’t exact duplicates. Therefore, one might be a better buy than the other depending on your needs.
The DeWalt Grabo Lifter is ideal for lighter work given its lower lifting capacity. It’s also a cheaper option, assuming you already have DeWalt batteries and chargers. Its $260 MSRP is a tool-only price, so the downside is you’ll have to pay extra for the supporting hardware if you’re not already invested in the DeWalt ecosystem. You could opt for the DeWalt Grabo Lifter Kit, which comes with a battery, charger, and carrying bag, but the set will cost you a steep $369 at Home Depot.
Conversely, the Grabo Pro comes with just about everything you need at $299, including the battery and charger. It is also rated for lifting heavier items. Unfortunately, the Grabo Pro isn’t as readily available as the DeWalt Grabo. It’s primarily sold through online retailers and less common brick-and-mortar stores like Floor & Decor. Grabo also advises against using its lifter with glass thinner than 6 millimeters, as the suction could damage the glass. In that case, the DeWalt Grabo’s reduced suction could be a selling point. Thus, despite their similar appearance, function, and naming, the DeWalt Grabo and Grabo Pro are two separate tools with potentially different use cases.
IBM’s 2025 Cost of a Data Breach Report found that 16% of breaches studied involved attackers using AI tools, most often for phishing or deepfake impersonation attacks. For security teams, that has direct implications for the service desk.
The service desk is a natural target for social engineering, as an attacker that convinces an agent they are a legitimate user may not need to bypass technical controls. They can simply ask for help getting around them. AI makes that easier, helping attackers sound more credible by personalizing their approach.
Onboarding is particularly exposed in a threat landscape where AI enables more convincing social engineering attacks.
New employees need fast access, but the organization may not yet have strong familiarity with who they are. Attackers can exploit that gap, so service desk agents need better ways to prove identity before they hand over credentials, reset MFA or approve sensitive changes.
High-profile attacks against M&S, MGM Resorts, Clorox and others all started with a simple question to the service desk: “Can you help me get access?”. From there, the threat actors gained access to accounts, escalated their attacks and cost the victim organizations millions.
Impersonation has long been a risk at the service desk, and AI makes it even harder for agents to judge whether a request is genuine.
Attackers can now use generative AI to create polished emails, convincing chat messages and realistic call scripts in seconds. In more targeted attacks, they can also use AI-generated voice or video to impersonate an employee.
Onboarding is especially exposed. New employees are not always known to IT teams, and first-day access issues are expected. An attacker posing as a new hire can use AI to sound credible, reference the right department and create just enough urgency to push a request through.
More personal information is available on the internet than ever before, and AI helps threat actors find it.
When defending against onboarding attacks, this is a real concern. Organizations often share more than they realize. A welcome post might name a new employee, or a job advert might mention the systems the company uses. A LinkedIn profile might show the hiring manager, team structure and office location.
Threat actors can pull this information, then use AI to scrape more from LinkedIn, company websites, job posts, press releases and social media. They can then turn those details into a believable story. Names, roles, locations, departments, internal tools and reporting lines can all be worked into a script that sounds credible.
That level of detail can make a malicious request look routine. And when a request feels routine, it is more likely to move quickly.
An attacker no longer needs to create a social engineering campaign from scratch. They can use AI to create dozens of phishing email variations, test different pretexts and adapt their wording to tailor their efforts.
That creates a problem for service desks because they are built to respond quickly. Attackers know this, so use urgency and persistence to make a malicious request feel like another routine task in a busy queue.
AI makes it easier for attackers to adjust their approach, and they can try the same basic request across multiple channels or agents until someone approves the reset, releases the credential or changes the recovery method.
Verizon’s Data Breach Investigation Report found stolen credentials are involved in 44.7% of breaches.
Effortlessly secure Active Directory with compliant password policies, blocking 6+ billion compromised passwords, boosting security, and slashing support hassles!
AI-enabled attacks are designed to look normal, so prevention cannot rely on service desk agents making perfect judgment calls under pressure.
It’s here that specialized solutions can help secure an especially high risk process the service desk deals with: onboarding.
Specops Secure Onboarding helps secure onboarding end-to-end and beyond, ensuring agents have the tools they need to confidently verify identity and protect new credentials from interception.
A new starter needs credentials quickly, but sending a password via SMS or email creates risk if it’s intercepted.
A safer approach is to not send credentials at all. Specops Secure Onboarding instead allows the IT team to send secure enrollment links to new hires, with instructions explaining how to create their own strong passwords. As there’s no credential created or shared from the service desk, this eliminates the risk of interception.
Traditional identity checks are becoming less reliable; for instance, the answers to security questions can often be guessed from information an attacker can source from social media profiles.
Especially in instances where the service desk may not be familiar with the employee, such as a new starter on their first day, agents need confidence that the person requesting access isn’t an attacker impersonating a genuine employee.
Biometric liveness detection, delivered through solutions like Specops Secure Onboarding, can help by confirming that a real person is present during verification, rather than a static image, recording, mask or deepfake. This is especially useful for remote onboarding, where the service desk may never meet the employee face to face.
Sensitive actions need stronger identity verification before they are approved. For instance, a request to reset the password of a privileged account should trigger checks as biometric liveness detection to provide high assurance that the request is genuine and the person making it linked to the correct account.
Specops Secure Onboarding ensures that verification takes place before agents complete actions like password resets. Agents can enforce verification through strong identity checks and make trust decisions with greater confidence.
Specops Secure Onboarding helps organizations secure the service desk during high-risk actions by placing identity verification at the center of processes like onboarding, delivering:
If you’re interested in seeing how Specops Secure Onboarding can help your service desk defend against sophisticated social engineering attacks, contact us today or book a demo.
Sponsored and written by Specops Software.
Through the looking glass: Meta launched a new AI image-generation model called Muse Image this week, letting users create, edit, and blend photos using natural language prompts inside Meta AI, with the tool already live on Instagram and WhatsApp and expected on Facebook and Messenger soon. However, the new feature is already raising privacy concerns, as it allows anyone to generate AI images using other people’s Instagram photos.
All public Instagram profiles are automatically opted into Meta’s new AI image platform by default, letting users generate AI images using someone else’s likeness simply by tagging their account in a prompt. Meta notes that users won’t be notified when someone uses their photos to generate an image, so they have no way of knowing how many images are being generated in their likeness, or by whom.
Thankfully, Meta says users can opt out of the image-generation feature without making their account private. To do so, open Instagram settings by tapping your profile picture, hit the hamburger menu in the top-right corner, then select Sharing and Reuse.

Under “Allow people to reuse your content on Instagram and with AI features on Meta,” toggle off both Posts and Reels.
Switching off those two options will prevent others from creating new AI images using your photos, but images that have already been created won’t be deleted. The only other way to stop random people from generating AI images with your photos is to make your account private, which limits your content to approved followers only.
Muse Image is currently rolling out on Instagram and WhatsApp and is expected to reach Facebook and Messenger soon. Meta will also bring it to advertisers through its Advantage+ Creative suite of AI-powered tools, which automates aspects of ad creation such as background generation, image animation, and music integration.
Meta has often drawn scrutiny from privacy advocates and industry observers over user privacy and data security. Earlier this year, the company’s smart glasses raised privacy alarms after contractors working with Meta in Kenya revealed they were being paid to review graphic and often intimate footage captured through the Meta AI Glasses, including clips of people using bathrooms, getting dressed, and engaging in sexual activity.
From Folarin Balogun’s suspended ban and Cristiano Ronaldo’s shortened suspension to the treatment of Iran and referee Omar Artan, so many aspects of World Cup 2026 have defied belief. But the brazen introduction of full-screen hydration break ads arguably tops the lot.
From the moment the USA was confirmed as a co-host, there were light-hearted rumours that this beautiful game of two halves could be disfigured by the introduction of additional breaks for commercials, a la the NFL and NBA.
Nobody’s laughing now, except for the corporations.
The potential for extreme weather in some of the host cities gave FIFA all the excuse it needed to effectively divide games into quarters under the guise of three-minute hydration breaks, despite three of the World Cup venues being fully climate-controlled and several more having powerful air-conditioning systems in place.
It’s led to farcical scenes in which players have had to take hydration breaks in the pouring rain, while commentators and pundits have complained about the in-stadia air-conditioning being so effective they’ve had to wear extra layers to keep themselves warm.
These break also have the effect of killing passages of play and throwing teams off their rhythm.
Worse yet, viewers in the US and Canada have complained that Fox and TSN on occasions have aired commercials that are so long they’ve cut into the games themselves.
That the ads cover the cacophony of jeers that have met almost every hydration break also plays into the hands of the broadcasters and their commercial partners.
Below, we’ve explained how you can watch World Cup 2026 ad-free, no matter where you are.
The BBC is providing completely ad-free coverage of World Cup 2026 in the UK, with live streaming available via BBC iPlayer.
It’s all killer no filler right from the top of the show to the closing montage – and best of all, BBC channels and BBC iPlayer are free-to-air. What’s more, the BBC iPlayer feed is available in up to 4K quality.
If it’s just the hydration break ads you can’t live with, another good option is ITV. The free-to-air British broadcaster is ad-supported, but has opted against screening in-game commercials after alienating viewers during the 2026 Six Nations.
ITV’s World Cup coverage is available to stream on ITVX.
If you’re not in the UK but still want to watch the 2026 World Cup ad-free, explore the VPN route set out below, which will help you access your preferred coverage from anywhere.
If you’re travelling, you might discover your preferred World Cup stream is suddenly unavailable due to geo-restrictions.
Don’t worry, that’s exactly where a VPN can help. A virtual private network lets you connect to servers around the world so you can securely access your usual World Cup coverage as if you were back home.
We recommend Norton VPN. Here’s why:
We test and review VPN services in the context of legal recreational uses. For example: 1. Accessing a service from another country (subject to the terms and conditions of that service). 2. Protecting your online security and strengthening your online privacy when abroad. We do not support or condone the illegal or malicious use of VPN services. Consuming pirated content that is paid-for is neither endorsed nor approved by Future Publishing.
Weekend Open Thread: High Hopes
Taylor Swift and Travis Kelce wedding staffer hilariously struggles to keep her cool while checking in megastars
Open Thread: What Great Books Have You Read Recently?
Standard Chartered Secures MiCA License as ESMA Adds 37 New Crypto Firms
The House | “Reframing the debate from a binary discussion of winners and losers”: Yuan Yang reviews ‘We Are Not Machines’
Whats Hidden Inside This Cash Register? #treasure #reselling #money
Anthropic’s new “J-lens” reveals a silent workspace inside Claude that mirrors a leading theory of consciousness
AXT Shares Jump Nearly 14% as Semiconductor Materials Maker Rebounds on AI-Linked Indium Phosphide Demand
Joshua Pacio ‘more complete’ ahead of ONE rematch vs Malachiev
ESMA Expands Crypto Register by 37 Firms Following MiCA Transition Period
SK hynix (000660.KS) Stock Dips as $28B Nasdaq ADR Offering Drives AI Memory Expansion
South Africa proposes crypto tax guidance under existing rules
Best Time to Enter Small Caps Right Now? Another Bull Run? | Financially Free
Lenovo laptops are now shipping with YMTC SSDs, a sign of Chinese NAND entering the mainstream
New exhibition reflects five decades of movement between island of Ireland and GB
What a 10 Percent Drop Means for Buyers, Sellers and Renters
We have punished the disrespect
Binance Re-Enters Philippines As EU MiCA Rules Restrict Access
Avoid entering in FOMO #bitcoin #cryptocurrency #trading #scalping
Alibaba bans Claude Code over alleged backdoor security concerns
You must be logged in to post a comment Login