Our favorite VPN service is now integrated into our favorite web browser.

MacworldAbout 45% of respondents in one survey said they put learning a new language on their New Years resolution listdid you do the same this year? If so, were checking to see how those Duolingo lessons have been going. Tired of learningrandom words and phrases? Youll want to check out thislanguage-learning app.Meet Babbel, the app that makes language learning both funand functional. You can grab lifetime access to this App Store favorite for only$124.99 (reg. $599) through March 31 with our codeLEARN. Thats the lowest price online.Unlike the boring, long language lessons you took in high school, Babbel makes the process so much more manageable. How? You only need 10-15 minutes of your day tokeep up with your language learning since Babbels lessons are short, engaging, and practical. Just begin by choosing one of its 14 lessons.Imagine being able to ask for restaurant recommendations in French or ask the locals what the best surfing spots are in Indonesianthat could be in your future after studying your new language with Babbel. You can evenperfect your accent with Babbels speech recognition technology, whether youre learning French, Danish, Indonesian, or Spanish.You only have until March 31 at 11:59 p.m. PT to use codeLEARN at checkout to grab thisBabbel lifetime subscription at the unbeatable price of $124.99.Babbel Language Learning: Lifetime Subscription (All Languages)Only $124.99 at MacworldStackSocial prices subject to change.

MacworldThe Apple Watch does it alluntil the battery taps out before you even get home for the day. Instead of committing to a life of carrying around your charging block and cable, many people are grabbing these Apple Watch keychain chargers now $35 off for a limited time.You charge it up, attach the carabiner to your keyring, and throw your watch on whenever it dies at the most inconvenient time possible. Its strong magnetic attachment holds onto any series of the Apple Watch tightly, so you can go about your business without the stress of it popping off.The portable Apple Watch charger has a 950mAh battery capacity, meaning it can charge your smartwatch about two times, depending on the exact model you have. Check the charging status using the four LED lights. You can also charge your watch while the gadget charges if the need arises.You only have a few days left to get this Apple Watch travel charger on a keychain for $14.97 (reg. $49.95), so dont wait. No coupon is needed to get this price.Apple Watch Wireless Charger Keychain $14.97See DealStackSocial prices subject to change.

If you are planning a PC build and have been waiting patiently to get ahold of one of the new Nvidia Blackwell graphics cards, here's an opportunity that's as good as you're going to get. Right now Amazon has the Gigabyte GeForce RTX 5070 Ti Gaming OC graphics card in stock for $979.99 shipped. Inventory is reserved for Amazon Prime members only.Update: A few more GeForce RTX 5070 Ti graphics cards are available:Gigabyte GeForce RTX 5070 Ti Master GPU for $999.99.MSI Gaming RTX 5070 Ti Vanguard SOC 16GB GPU for $999.99Nvidia GeForce RTX 5070 Ti GPU in Stock on AmazonAmazon Prime Members onlyAmazon Prime Members OnlyGigabyte GeForce RTX 5070 Ti Gaming OC 16GB Graphics Card$979.99 at AmazonGigabyte GeForce RTX 5070 Ti Master 16GB Graphics Card$999.99 at AmazonMSI Gaming RTX 5070 Ti Vanguard SOC 16GB Graphics Card$999.99 at AmazonAlthough the MSRP for this card is $979.99, it's actually about $100-$150 higher than what it should really be priced at. That's because a reference GeForce RTX 5070 Ti card is supposed to sell for $750. Gigabyte's WindForce triple fan cooling sometimes commands a premium (about $50), as well as the fact that this card is overclocked out of the box (maybe another extra $50). That comes to about $850, about $120 less than the current asking price.The reality is that even third party manufacturers like Gigabyte, MSI, Asus (and pretty much everyone else) are also taking advantage of the high demand by marking prices up from the get-go. Unfortunately, you'd be hard pressed to find another RTX 5070 Ti GPU for this price or less. RTX 5070 Ti GPUs are generally selling for over $1,000 on eBay.The RTX 5070 Ti GPU Has Excellent 4K Gaming PerformanceOf all the Blackwell cards released thus far, the RTX 5070 Ti offers the best bang for your buck, especially when pitted against the previous generation GPUs. It performs neck-and-neck with the RTX 4080 Super and already marginalizes the RTX 5080, which is only about 10%-15% faster but costs 33% more. This GPU is capable of high framerates in nearly all games, even at 4K resolution with ray tracing enabled. Heck, even if you plan on using this card for AI, the RTX 5070 Ti might be the better value than the RTX 50870 since both are equipped with the same 16GB of GDDR7 VRAM.Nvidia GeForce RTX 5070 Ti GPU Review by Jacqueline Thomas"At $749, the Nvidia GeForce RTX 5070 Ti is the best 4K graphics card for most people, delivering much better value than either the RTX 5080 or 5090. Across my entire test suite, this GPU soared at 4K, coming within striking distance of much more expensive graphics cards, and thats before taking multi frame generation into account, which will make the RTX 5070 Ti even better at hitting extremely high framerates, albeit with a hit to latency."Eric Song is the IGN commerce manager in charge of finding the best gaming and tech deals every day. When Eric isn't hunting for deals for other people at work, he's hunting for deals for himself during his free time.

Marvel dropped a surprise announcement today in the form of a nearly five-and-a-half-hour livestream that revealed the cast of Avengers: Doomsday. A new chair was added every 10-15 minutes with the name of an actor who will be part of this highly-anticipated film, and there were some big surprises alongside the return of familiar faces.As expected, the internet at large had some very entertaining and insightful reactions to the news, including the return of Channing Tatum's Gambit and other X-Men to this big movie that will see the MCU's Avengers take on Robert Downey Jr.'s Doctor Doom. We've gathered some of our favorites below and would love to hear your thoughts in the comment section as wellPlayAvengers: Doomsday Cast Reveal ReactionsAll in all, there were 27 chairs for 27 actors who will be part of Avengers: Doomsday, and it all started with Chris Hemsworth (Thor). There weren't too many surprising reveals at the start as we learned Vanessa Kirby (Sue Storm), Anthony Mackie (Captain America), Sebastian Stan (Bucky), and Letitia Wright (Black Panther), would be part of the film. The first big moment, however, came when the chair of Paul Rudd (Ant-Man) was shown. Unlike the others, Rudd's chair was a bit smaller as a nod to his ability to shrink in size. As @JuanEdits noted, "the little chair announcing Paul Rudd is back as Ant-Man is genius ngl."The chairs continued to reveal that other actors like Wyatt Russell (U.S. Agent), Tenoch Huerta Meja (Namor), Ebon Moss-Bacharach (The Thing), Simu Liu (Shang-Chi), and Florence Pugh (Yelena Belova) will be part of Avengers: Doomsday, but this was also the point were some people started poking fun at how long this whole process was taking. This was summed up quite nicely by Heavy Spoilers, who shared a clip from Saving Private Ryan of Matt Damon growing old very quickly. Simu Liu also took the time to celebrate this moment of Shang-Chi's return with a funny joke; "*pokes head out of karaoke booth*" The next chair was another one the biggest surprise of the stream as it opened so many possibilities. Yes, it was confirmed that Kelsey Grammer would be returning as Beast after his post-credits appearance in The Marvels. This was the long-awaited official confirmation that the X-Men will be part of Avengers: Doomsday. The fun didn't stop there either as it was also unveiled that Patrick Stewart (Professor X), Ian McKellen (Magneto), James Marsden (Cyclops), Rebecca Romijn (Mystique), and Alan Cumming (Nightcrawler) would be joining the roster as well.While there was a lot of excitement about these additions, it started to have MCU fans like @ResonantJustice question if this was the early signs of Avengers: Doomsday secretly being an Avengers vs. X-Men movie with Downey Jr.'s Doctor Doom pulling the strings. IGN writer Carlos Alonzo Morales also put forth a theory that Doctor Doom will kill "most of the OG X-Men in this movie as his big 'what a bastard!' moment, freeing up budget for the more traditional MCU cast to be in the next one. He likely causes an Incursion of the Fox universe so we know what the stakes are for Secret Wars."While we may have to wait until May 1, 2026, to find out what secrets Avengers: Doomsday holds, there was one major surprise left for today's big reveal - Channing Tatum's Gambit will actually be returning after his appearance in Deadpool & Wolverine. I could share how special this moment was, but I thought I'd let this clip of @BrandonDavisBD, @FitDadCEO, and @KhleoThomas do the heavy lifting.We wrote about how 2024 became the year of Gambit, but now it's looking like 2026 may be his biggest moment yet.The stream ended with Robert Downey Jr. appearing on camera with his chair, and that was it! Well, RDJ did comment on Marvel Studios' Instagram post about this big reveal, saying, "That's what u call a deep bench of talent... actually it's more like a row, but an extra long one... that must be it... right?" To which Marvel Studios responded, "there's always room for more..." The Most Surprising Avengers and Marvel Characters Not Announced for DoomsdayThere were a lot of exciting reveals today, but the characters not announced for Avengers: Doomsday were just as big a talking point. We may have already known that Elizabeth Olsen's Scarlet Witch and Benedict Cumberbatch's Doctor Strange would not be part of this first film, but some of the more shocking omissions were Spider-Man, Hulk, Hawkeye, Nick Fury, Rhodey, Wolverine, Storm, Jean Grey, Rogue, Deadpool, Valkyrie, Korg, the Guardians of the Galaxy, the Young Avengers, Captain Marvel, Ms. Marvel, Spectrum, Binary, Wong, Agatha Harkness, Daredevil, Kate Bishop, Blade, and so many more. Yes, we know Marvel has a ton of characters and also wants to keep some character reveals a big secret, but this didn't stop the Internet from sharing their sadness about their favorite characters not getting a chair.@bereliciiouz summed up the feelings of a lot of Marvel fans with a NSFW clip from The Bear we just had to share.There were some fans, like @blurayangel, who had a cooler head and reminded everyone that Avengers: Doomsday is just the beginning and Avengers: Secret Wars is just behind the corner on May 7, 2027."If you thought the chair announcement of Avengers: Doomsday was insane... just wait for the cast of Avengers: Secret Wars," @blurayangel wrote. "WESLEY SNIPES. HUGH JACKMAN. TOBEY MAGUIRE." We love your wishful thinking! And you never know, dreams can come true! It's also important to note that, as @demetherself points out, only five of the 27 chairs revealed for today's Avengers: Doomsday cast reveal belonged to women. Here's hoping that divide shrinks in the final film. "Out of 27 announced cast members for Avengers: Doomsday, only 5 are women," @demetherself wrote. "Thats not just a small number, its a glaring reminder of how skewed things still are. How does this ratio even happen?"The Internet Had a Lot Of Fun With the Avengers: Doomsday Cast RevealTo end this reaction roundup, we had to share some of the funniest posts from people and brands who casted some of their favorite character from completely unrelated shows and films and much more.And for our last post, we are proud to present that one time we were just ever so close to getting James Marsden to reveal his role in Avengers: Doomsday. Maybe next time!Adam Bankhurst is a writer for IGN. You can follow him on X/Twitter @AdamBankhurst and on TikTok.

Mar 27, 2025Ravie LakshmananVulnerability / Threat IntelligenceThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two six-year-old security flaws impacting Sitecore CMS and Experience Platform (XP) to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation.The vulnerabilities are listed below -CVE-2019-9874 (CVSS score: 9.8) - A deserialization vulnerability in the Sitecore.Security.AntiCSRF module that allows an unauthenticated attacker to execute arbitrary code by sending a serialized .NET object in the HTTP POST parameter __CSRFTOKENCVE-2019-9875 (CVSS score: 8.8) - A deserialization vulnerability in the Sitecore.Security.AntiCSRF module that allows an authenticated attacker to execute arbitrary code by sending a serialized .NET object in the HTTP POST parameter __CSRFTOKENThere are currently no details on how the flaws are being weaponized in the wild and by whom, although SiteCore in an update shared on March 30, 2020, said it became "aware of active exploitation" of CVE-2019-9874. The company makes no mention of CVE-2019-9875 being exploited.In light of active exploitation, federal agencies are required to apply the necessary patches by April 16, 2025, to secure their networks.The development comes as Akamai said it has observed initial exploit attempts probing potential servers for a newly disclosed security flaw impacting the Next.js web framework (CVE202529927, CVSS score: 9.1).An authorization bypass vulnerability, a successful exploitation could permit an attacker to get around middleware-based security checks by spoofing a header called "xmiddlewaresubrequest" that's used to manage internal request flows. This, in turn, could enable unauthorized access to sensitive application resources, Checkmarx's Raphael Silva said."Among the identified payloads, one notable technique involves using the x-middleware-request header with the value src/middleware:src/middleware:src/middleware:src/middleware:src/middleware," the web infrastructure company said."This approach simulates multiple internal subrequests within a single request, triggering Next.js's internal redirect logic closely resembling several publicly available proof-of-concept exploits."The disclosures also follow a warning from GreyNoise about active exploitation attempts recorded against several known vulnerabilities in DrayTek devices.The threat intelligence firm said it has seen observed in-the-wild activity against the below CVE identifiers -CVE-2020-8515 (CVSS score: 9.8) An operating system command injection vulnerability in multiple DrayTek router models that could allow remote code execution as root via shell metacharacters to the cgi-bin/mainfunction.cgi URICVE-2021-20123 (CVSS score: 7.5) A local file inclusion vulnerability in DrayTek VigorConnect that could allow an unauthenticated attacker to download arbitrary files from the underlying operating system with root privileges via the DownloadFileServlet endpointCVE-2021-20124 (CVSS score: 7.5) A local file inclusion vulnerability in DrayTek VigorConnect that could allow an unauthenticated attacker to download arbitrary files from the underlying operating system with root privileges via the WebServlet endpointIndonesia, Hong Kong, and the United States have emerged as the top destination countries of the attack traffic for CVE-2020-8515, while Lithuania, the United States, and Singapore have been singled out as part of attacks exploiting CVE-2021-20123 and CVE-2021-20124.Found this article interesting? Follow us on Twitter and LinkedIn to read more exclusive content we post.SHARE

Mar 27, 2025Ravie LakshmananVulnerability / Enterprise SecurityA critical security flaw has been disclosed in NetApp SnapCenter that, if successfully exploited, could allow privilege escalation.SnapCenter is an enterprise-focused software that's used to manage data protection across applications, databases, virtual machines, and file systems, offering the ability to backup, restore, and clone data resources.The vulnerability, tracked as CVE-2025-26512, carries a CVSS score of 9.9 out of a maximum of 10.0."SnapCenter versions prior to 6.0.1P1 and 6.1P1 are susceptible to a vulnerability which may allow an authenticated SnapCenter Server user to become an admin user on a remote system where a SnapCenter plug-in has been installed," the data infrastructure company said in an advisory published this week.CVE-2025-26512 has been addressed in SnapCenter versions 6.0.1P1 and 6.1P1. There are currently no workarounds that address the issue. While there is no evidence that the shortcoming has been exploited in the wild, it's essential that organizations apply the latest updates to safeguard against potential threats.Found this article interesting? Follow us on Twitter and LinkedIn to read more exclusive content we post.SHARE