7 expert tips to ensure your phone doesn't glitch.

People Can Fly cancels two projects and confirms it will once again have to "scale down" its teams "We wish to express our deepest regret and sadness over how these events have unfolded." Image credit: People Can Fly/Square Enix News by Vikki Blake Contributor Published on June 1, 2025 People Can Fly has cancelled two projects and "scaled down" its teams. In a statement posted to LinkedIn this afternoon, CEO Sebastian Wojciechowski said it had been a "difficult decision" but attributed the suspension of Project Gemini and Bifrost to the publisher "not present[ing] us with a draft of the subsequent content rider to the Publishing Agreement", and the Group's cash flow, "which showed a lack of prospects", respectively. "Today we made a very difficult decision to suspend the development of project Gemini and project Bifrost - the relevant current reports have been released to the market," Wojciechowski wrote. "The suspension of the Gemini project is a consequence of the fact that the Publisher has not presented us with a draft of the subsequent content rider to the Publishing Agreement covering the terms and conditions of further milestone on project Gemini and the lack of communication from the Publisher as to its willingness to continue or terminate the Gemini project. "Project Bifrost was suspended due to the above and the analysis of the Group's cash flow, which showed a lack of prospects for securing organisational resources and funds necessary to continue the production and release of this project. "As a result, we have to significantly regroup as a studio and scale down our teams, which hurts the most," Wojciechowski added. "We wish to express our deepest regret and sadness over how these events have unfolded and our sincere gratitude for everyone's contribution up to this point." Wojciechowski did not specify which publisher he thought had failed to "communicate", but the studio has worked with several publishing partners, most recently Square Enix, Krafton, and Sony. It's also working on Gears of War: E-Day. In December, People Can Fly the Outriders developer announced its second round of layoffs in less than a year, this time affecting "more than 120" people. The move accompanies the cancellation or downsizing of several projects, with the studio blaming "external market pressures".

The Netherlands is facing a growing cyber security crisis, with a staggering 66% of Dutch businesses lacking adequate cyber resilience, according to academic research.   As geopolitical tensions rise and digital threats escalate, Rick van der Kleij, a psychologist and professor in Cyber Resilient Organisations at Avans University of Applied Sciences, who also conducts research at TNO, says that traditional approaches have failed and a paradigm shift is urgently needed.  Van der Kleij suggests that cyber security provides the illusion of safety rather than actual protection for many Dutch organisations. His stark assessment is that the Netherlands’ traditional approach to cyber risk is fundamentally broken.  “We need to stop thinking in terms of cyber security. It’s a model that has demonstrably failed,” he says. “Despite years of investment in cyber security measures, the frequency and impact of incidents continue to increase rapidly across Dutch businesses.”  This reflects the central argument of his recent inaugural lecture “Now that security is no more”, where he called for a paradigm shift in how Dutch organisations approach cyber risks.  Van der Kleij describes “the great digital dilemma” of balancing openness and security in a country with one of Europe’s most advanced digital infrastructures. “How can entrepreneurs remain open and connected without having to completely lock down their businesses?” he asks.  The statistics are stark. Van der Kleij’s study found that 66% of Dutch businesses are inadequately prepared for cyber threats. Recent ABN Amro research confirms the crisis: one in five businesses suffered cyber crime damage last year, rising to nearly 30% among large companies. For the first time, SMEs (80%) are more frequently targeted than large corporations (75%), marking a significant shift in cyber criminal strategy.  Despite the numbers, a perception gap persists. Van der Kleij identifies ‘the overconfident’ – Dutch businesses believing their cyber security is adequate when it isn’t. While SME attack rates soar, their risk perception remains static, whereas large organisations show marked awareness increases (from 41% to 64%). This creates a “waterbed effect” – as large companies strengthen defences, cyber criminals shift to less-prepared SMEs which are paradoxically reducing cyber security investments.  Van der Kleij emphasises a crucial distinction: while cyber security focuses on preventing incidents, cyber resilience acknowledges that incidents will happen. “It’s about having the capacity to react appropriately, recover from incidents, and learn from what went wrong to emerge stronger,” he says.  This requires four capabilities – prepare, respond, recover and adapt – yet most Dutch organisations focus only on preparation. The ABN Amro findings confirm this: many SMEs have firewalls but lack intrusion detection or incident response plans. Large companies take a more balanced approach, combining technology with training, response capabilities and insurance.  Uber’s experience illustrates the weakness of purely technical approaches. After a 2016 hack, they implemented two-factor authentication – yet were hacked again in 2022 by an 18-year-old using WhatsApp social engineering. “This shows that investing only in technology without addressing human factors creates fundamental weakness, which is particularly relevant for Dutch businesses that prioritise technological solutions,” van der Kleij adds.  Van der Kleij challenges the persistent myth that humans are cyber security’s weakest link. “People are often blamed when things go wrong, but the actual vulnerabilities typically lie elsewhere in the system, often in the design itself,” he says.  The misdirection is reflected in spending: 85% of cyber security investments go toward technology, 14% toward processes and just 1% toward the human component. Yet the ABN Amro research shows phishing – which succeeds through psychological manipulation rather than sophisticated technology – affects 71% of Dutch businesses.  “We’ve known for decades that people aren’t equipped to remember complex passwords across dozens of accounts, yet we continue demanding this and then express surprise when they create workarounds,” van der Kleij says. “Rather than blaming users, we should design systems that make secure behaviour easier. In the Netherlands, we need more human awareness in security teams, not more security awareness training for end users.”  Why do so many Dutch SMEs fail to invest in cyber resilience despite evident risks? Van der Kleij believes it’s about behaviour, not business size. “It’s not primarily about size or industry – it’s about behaviour and beliefs,” he says.  Common limiting beliefs among Dutch entrepreneurs include “I’m too small to be a target” or “I don’t have confidential information”. Remarkably, even suffering a cyber attack doesn’t change this mindset. “Studies show that when businesses are hacked, it doesn’t automatically lead them to better secure their operations afterward,” van der Kleij says.  The challenge is reaching those who need help most. “We have vouchers, we have arrangements where entrepreneurs can get help at a significantly reduced fee from cyber security professionals, but uptake remains negligible,” van der Kleij says. “It’s always the same parties who come to the government’s door – the large companies who are already mature. The small ones, we just can’t seem to reach them.”  Van der Kleij sees “relational capital” – resources generated through partnerships – as key to enhancing Dutch cyber resilience. “You can become more cyber resilient by establishing partnerships,” he says, pointing to government-encouraged initiatives like Information Sharing and Analysis Centers.   The ABN Amro research reveals why collaboration matters: 39% of large companies experienced cyber incidents originating with suppliers or partners, compared with 25% of smaller firms. This supply chain vulnerability drives major Dutch organisations to demand higher standards from partners through initiatives such as Big Helps Small.  European regulations reinforce this trend. The new NIS2 directive will expand coverage from hundreds to several thousand Dutch companies, yet only 11% have adequately prepared. Among SMEs, approximately half have done little preparation – despite Dutch police warnings about increasingly frequent ransomware attacks where criminals threaten to release stolen data publicly.  Van der Kleij’s current research at Avans University focuses on identifying barriers to cyber resilience investment through focus groups with Dutch entrepreneurs. “When we understand these barriers – which are more likely motivational than knowledge-related – we can design targeted interventions,” he says.  Van der Kleij’s message is stark: “The question isn’t whether your organisation will face a cyber incident, but when – and how effectively you’ll respond. Cyber resilience encompasses cyber security while adding crucial capabilities for response, recovery and adaptation. It’s time for a new paradigm in the Netherlands.”  Read more about Dutch cyber security

Feno, the “smart electric toothbrush,” promised to take a two-minute toothbrushing routine and bring it down to 30 or even 20 seconds by swabbing each of my teeth at once. The Feno Smartbrush makes brushing faster, but in exchange it requires you to shove an entire mouthpiece in your piehole twice a day just to cut down on a total of three minutes of brushing time. If there is one thing to take away from this review, it’s that even if tech works, it doesn’t necessarily mean it’s better than what we already have. The “toothbrush” has been at the side of my bathroom sink for more than three weeks. It has technically saved me time. I would even go as far as to say it may do the job of a regular toothbrush with less time to get there. Still, given the choice, I would rather reach for my non-motorized, dentist-recommended toothbrush—if only because I know it works. After consulting with the companies and non-affiliated dentists, I’m more bemused that the Feno exists at all. This is a device that costs $300 for the “Founder’s Edition” bundle. The company recently said it would increase the price to $400, blaming tariffs for the rising cost. As the time of this publishing, that new price hasn’t yet materialized. The box comes with three canisters of brand-specific Feno Foam toothpaste. After you run out, you’ll need to spend $30 to get an extra three canisters. Feno also recommends replacing the mouthpiece every three months, costing another $30. Feno Smartbrush It may brush all your teeth for quicker cleans, but its too much of an unknown to recommend. Pros Cons My dentist gave me my last manual toothbrush for free. A tube of toothpaste was $5. Despite the price, the company behind the smart toothbrush has one compelling pitch. If people were honest with themselves, most folks do not do the recommended amount of brushing. I fit into that camp for most of my life, until the point I went to my dentist and found I needed to have multiple caps on my molars, requiring I spend a hefty chunk of change for the privilege of having my teeth ground down to nubs. Since then, I’ve become very sensitive to the state of my pearly whites. I try to do the full two minutes of brushing and floss every day, but the Feno is supposed to help by shortening the brushing time and helpfully counting you down with an on-screen timer. My dentist was skeptical about the device’s claims, especially whether it was offering proper back-and-forth brushing technique. The American Dental Association has a Seal of Acceptance tested by the organization for products that are recommended by dentists. Neither Feno’s brush nor special toothpaste are on that list of products with the ADA seal. All I have to go on is Feno’s own claim that it’s doing what it needs to do to clean my teeth and remove plaque. For cleaning, the device makes use of pressure sensors alongside the mouthpiece’s 18,000 bristles, which Feno claims can hit 250 strokes per tooth in 20 seconds. It’s using a sweeping motion along the teeth, which dentists recommend when brushing, but there’s no published science to say the Feno is particularly better than other, similar devices. Feno told me the company has scientific research pertaining to how effective the device is, but it’s pending scientific review and won’t be available until some unknown date. © Adriano Contreras / Gizmodo © Adriano Contreras / Gizmodo © Adriano Contreras / Gizmodo © Adriano Contreras / Gizmodo Feno revels in Silicon Valley startups’ worst habits. Every time you turn it on, the smart toothbrush bombards you with a QR code to download an app for all its controls, rather than including those on-device. The Feno toothbrush can incite the same gag reflex you know if you’ve ever played a contact sport requiring a mouth guard. The device is big enough that you have to open wide to fit the whole thing in at once. Brushing with the Feno is not an entirely passive experience, either. Feno’s founder, Dr. Kenny Brown, told me his company recommends moving the brush side to side while the mouthpiece actuates. On its highest settings, the Feno rattled my jaw and made my entire head shake like a marionette piloted by a mad puppeteer. With those speeds, I could feel the mouthpiece rubbing the inner cheek raw. At normal speeds, the Feno was uncomfortable but still usable without any pain. Feno also advises some gums may bleed if you haven’t been doing proper brushing technique for too long, but I didn’t find the bristles were any more abrasive to my gums than a regular toothbrush. The device running on default settings for 30 seconds seems engineered for most mouths. The company claims its device works with regular toothpaste, but when I plastered some gel to the bristles and stuck it in my mouth, it resulted in a sludgy mess at the bottom of the mouthpiece that took far longer to clean than the typical quick rinse. The foam toothpaste doesn’t leave your mouth full of the typical minty taste of fluoride and baking soda you normally associate with the feel of a clean mouth. As a point in favor of the Feno, that minty-fresh taste in your mouth isn’t actually indicative of clean teeth, according to Dr. Edmond Hewlett, a professor at UCLA’s School of Dentistry and a consumer advisor for the American Dental Association. Brown told me the company plans for updated toothpaste that adds a lingering minty taste in the mouth, as apparently I wasn’t the only one who spoke up on that lack of “clean” feeling. © Adriano Contreras / Gizmodo © Adriano Contreras / Gizmodo Knowing my dentist appointments are near for even more fillings, the Feno would not only need to be good, but even better at cleaning my teeth than the typical electric brush. Even if I felt it may be hitting all my teeth, the device didn’t leave me feeling clean, not least because I had no control over it. Even if the Feno full-mouth toothbrush wasn’t uncomfortable, wasn’t expensive, didn’t require an app, and worked well with regular toothpaste, it would still be hard to make any claim it results in better cleaning than your regular $7 toothbrush you buy from any local pharmacist. Using the smart toothbrush, you can’t tell what’s happening to your teeth. You can’t tell if it’s hitting all the nooks and crannies. That’s going to be a concern when everybody’s set of teeth is different. The Feno is supposedly designed so that all its bristles hit all different kinds of teeth at the correct 45-degree angle to the gums, but what really matters is if it adds anything to your brushing routine. “The critical question of any device like this is if it’s better than a toothbrush,” Hewlett told me. “It’s clear that using a toothbrush properly is one of the most effective things a person can do themselves to preserve their teeth.”

The idea of becoming a real estate investor for as little as $5 may seem too good to be true. And for many users of Landa, a proptech company that promised just that — it has been. Landa emerged from stealth in August 2022, announcing a total of $33 million in funding and a pledge to help everyday Americans access residential real estate investment through fractional shares. CEO Yishai Cohen and former CTO Amit Assaraf founded Landa in 2019 in an effort to make real estate investment more inclusive. The app’s only requirements were that users be over age 18 and U.S. residents. They could start investing with just $5, and buy and sell shares as well as see real-time updates on their properties from the Landa app. (Assaraf left the company in December of 2023, according to his LinkedIn profile. He has not responded to requests for comment.) Today, Landa’s investment portal site is down and its app is inoperable. Users claim they can’t access their funds and haven’t been paid dividends in months. The startup is embroiled in litigation, including a lawsuit from its early venture investor Viola. One early user told TechCrunch that Landa stopped paying dividends to him on his shares in January. When he asked Landa about it, they “punted the question,” he said. “I repeatedly emailed them about it and just got deflecting answers, nothing real,” the user said. “Then a few months after that, the app became unusable. It would not open.” Techcrunch event Join us at TechCrunch Sessions: AI Secure your spot for our leading AI industry event with speakers from OpenAI, Anthropic, and Cohere. For a limited time, tickets are just $292 for an entire day of expert talks, workshops, and potent networking. Exhibit at TechCrunch Sessions: AI Secure your spot at TC Sessions: AI and show 1,200+ decision-makers what you’ve built — without the big spend. Available through May 9 or while tables last. Berkeley, CA | June 5 REGISTER NOW The user then asked if he could delete his account, which he had opened in 2021, and sell the shares. But he found Landa had disabled his ability to sell shares. “They have essentially frozen me out of my funds and just shut down the app,” the user said. “Where is the money? Why won’t they return it to me?” Over 130 complaints have been filed against Landa to the Better Business Bureau, with dozens of people echoing similar allegations. For instance, on May 1, one user who filed such a complaint shared they had invested over $8,000 through Landa and stopped receiving dividends last fall. The user said Landa customer service replied to their emails by saying that the company is “working on it.”  In mid-April, when TechCrunch asked Landa about the issue — including the status of its downed site and whether the company itself had shut down — CEO Cohen said:  “Of course not. The site will be back up.” When asked why the app was not working and why users had not received dividends in months, Cohen’s terse reply still seemed to refer to the website, blaming the servers: “It’s unrelated to dividends. It’s from our servers. We are on it.” Upon further prodding, Cohen on April 18 shared the following statement: “We are aware of the issues currently affecting our platform and product, and want to assure all investors that we are actively working to restore full functionality as soon as possible. We have kept investors informed through all updates, including the server access issue. We appreciate the continued support of our investors and resident community, and remain committed to delivering on our vision of making real estate investing accessible to everyone.” Cohen did not respond to our request for a status update on May 20. Investors NFX and 83North did not respond to our multiple requests for comment.  Embroiled in a lawsuit  It’s not just users who are upset with Landa. The company’s primary lenders are suing.  Viola Credit and L Finance filed a lawsuit in New York State Supreme Court against Landa in November 2024, accusing it of “numerous defaults” on more than $35 million worth of loans they extended to the company. (Viola is also an investor in Landa through its venture division.) The lenders also accused it of missing property tax payments that led to the forced sale of those properties, neglecting properties, and even failing to collect rents. The lawsuit — first reported by real estate industry publication Bisnow — states that after over a year of attempting to get Landa to honor their commitments, the lenders removed Landa as manager of the homes and appointed an independent property manager and a chief restructuring officer.  After further negotiations failed, the creditors later asked the court for, and were granted, an injunction blocking Landa from accessing bank accounts, interfering with their attempts to restructure the business, and reclaiming money they say is owed — including proceeds from property sales. Despite the injunction, the lenders returned to court in January 2025, claiming Landa told tenants to send rent payments to a different bank account not covered by the ruling. They discovered this while making repairs to one property’s septic system. They also accused Landa’s CEO of trying to sell or refinance some properties. The court ordered Landa to explain itself. Instead, in early March, Landa asked the court for a restraining order against Viola Credit and L Finance, claiming the independent manager was “installed unlawfully.”  Judge Jennifer G. Schecter was not pleased. In March, she ordered both sides to find a solution “that’s good for all of your clients.” She denied Landa’s request for an injunction and ordered the company to pay nearly $100,000. A few weeks later, Landa filed a formal countersuit. The case is still pending. Challenging model Landa is just one of several startups that emerged in recent years offering fractional real estate investing. It is also apparently not the only one that has struggled — especially after mortgage interest rates began soaring in 2022.  Fintor raised millions of dollars before seemingly pivoting to offer an “AI Agent to automate finance and real estate operations with human level performance.” Dallas-based Nada, which offered index-like real estate investment products called “Cityfunds,” allowing non-accredited investors to buy into a city’s home equity market with as little as $250, also appears to have pivoted. Its website now promotes a new tagline: “Access home equity to finance anything.”  Arrived was perhaps the highest-profile of the bunch — and the only one that seems to be actively operating under the same model. In May of 2022, TechCrunch reported that Arrived raised $25 million in a Series A funding round including Bezos Expeditions, to allow people to buy shares in single-family rentals with “as little as $100.” According to its website, the startup has to date paid out over $13 million in dividends and interest and has 766,000 registered investors. As for those people who invested with Landa, the future of their money appears uncertain. As of May 23, Landa’s investor portal website still redirects to a “come-back-soon” maintenance message. 

More than a decade ago, researchers at antivirus company Kaspersky identified suspicious internet traffic of what they thought was a known government-backed group, based on similar targeting and its phishing techniques. Soon, the researchers realized they had found a much more advanced hacking operation that was targeting the Cuban government, among others. Eventually the researchers were able to attribute the network activity to a mysterious — and at the time completely unknown — Spanish-speaking hacking group that they called Careto, after the Spanish slang word (“ugly face” or “mask” in English), which they found buried within the malware’s code.  Careto was never publicly linked to a specific government. But TechCrunch has now learned that the researchers who first discovered the group were convinced that Spanish government hackers were behind Careto’s espionage operations. When Kaspersky first revealed the existence of Careto in 2014, its researchers called the group “one of the most advanced threats at the moment,” with its stealthy malware capable of stealing highly sensitive data, including private conversations and keystrokes from the computers it compromised, much akin to powerful government spyware today. Careto’s malware was used to hack into government institutions and private companies around the world. Kaspersky avoided publicly blaming who it thought was behind Careto. But internally, according to several people who worked at Kaspersky at the time and had knowledge of the investigation, its researchers concluded that Careto was a hacking team working for the Spanish government.  “There was no doubt of that, at least no reasonable [doubt],” one of the former employees told TechCrunch, who like other sources in this story agreed to speak on condition of anonymity to discuss sensitive matters. Careto is one of only a handful of Western government hacking groups that has ever been discussed in public, along with U.S. government units such as Equation Group, widely believed to be the U.S. National Security Agency; the Lamberts, believed to be the CIA; and the French government group known as Animal Farm, which was behind the Babar and Dino malware. In a rare admission, Bernard Barbier, former head of the French intelligence service DGSE publicly confirmed the French government was indeed behind Babar.  The Spanish government now joins this small group of Western government hacking groups. A screenshot of Careto’s malware code, which inspired the name of the hacking group. (Image: Kaspersky) Early in its investigation, Kaspersky discovered that the Careto hackers had targeted a particular government network and systems in Cuba, according to a second former Kaspersky employee.  It was this Cuban government victim that sparked Kaspersky’s investigation into Careto, according to the people speaking with TechCrunch. “It all started with a guy who worked for the Cuban government who got infected,” the third former Kaspersky employee, with knowledge of the Careto investigation, told TechCrunch. The person, who referred to the Cuban government victim as “patient zero,” said that it appeared the Careto hackers were interested in Cuba because during that time there were members of the Basque terrorist organization ETA in the country. Kaspersky researchers noted in a technical report published after their discovery that Cuba had by far the most number of victims per country at the time of the investigation into Careto’s activities, specifically one unnamed Cuban government institution, which the report said showed “the current interest of the attackers.”  This Cuban government victim would prove key to link Careto to Spain, according to the former Kaspersky employees. “Internally we knew who did it,” the third former Kaspersky employee said, adding that they had “high confidence” it was the Spanish government. Two other former Kaspersky employees, who also had knowledge of the investigation, said the researchers likewise concluded Spain was behind the attacks.  The company, however, decided not to disclose it. “It wasn’t broadcast because I think they didn’t want to out a government like that,” a fourth former Kaspersky researcher said. “We had a strict ‘no attribution’ policy at Kaspersky. Sometimes that policy was stretched but never broken.” Apart from Cuba, other Careto targets also pointed to Spain. The espionage operation affected hundreds of victims in Brazil, Morocco, Spain itself and — perhaps tellingly — Gibraltar, the disputed British enclave on the Iberian peninsula that Spain has long claimed as its own territory. Kaspersky declined to answer questions about its researchers’ conclusions. “We don’t engage in any formal attribution,” Kaspersky spokesperson Mai Al Akkad told TechCrunch in an email. The Spanish Ministry of Defense declined to comment. The Cuban government did not respond to emails sent to its Ministry of Foreign Affairs. The discovery of Careto After Kaspersky discovered the group’s malware in 2014 and, as a result, learned how to identify other computers compromised by it, the researchers found evidence of Careto infections all over the world, compromising victims in 31 countries spanning several continents.  In Africa, the group’s malware was found in Algeria, Morocco, and Libya; in Europe, it targeted victims in France, Spain, and the United Kingdom. In Latin America, there were victims in Brazil, Colombia, Cuba, and Venezuela.  In its technical report, Kaspersky said that Cuba had the most victims that were being targeted, with “all belonging to the same institution,” which the researchers perceived as of significance to the hackers at that point in time.  Spain had its own particular interest in Cuba in the preceding years. As an exiled Cuban government official told the Spanish daily El Pais at the end of 2013, there were around 15 members of the terror group ETA who lived in Cuba with the approval of the local government. In 2014, a leaked U.S. diplomatic cable noted that Cuba had given refuge to ETA terrorists for years. Earlier in 2010, a Spanish judge ordered the arrest of ETA members living in Cuba. When covering the news of the discovery of Careto, the Spanish online news outlet El Diario noted that targeting countries such as Brazil and Gibraltar would favor the Spanish government’s “geostrategic interests.” The Spanish government had been pushing for a consortium of government-owned and private companies to win a bid to build a high-speed railway in Brazil from Rio de Janeiro to São Paulo.  Aside from targeting government institutions, embassies, and diplomatic organizations, Kaspersky said the Careto group also targeted energy companies, research institutions, and activists.  Kaspersky researchers wrote that they were able to find evidence that the Careto malware existed as far back as 2007, and found subsequent versions of Careto capable of exploiting Windows PCs, Macs, and Linux computers. The researchers said they found possible evidence of code capable of targeting Android devices and iPhones. While Kaspersky didn’t make its internal attribution public, its researchers left clear hints that pointed to Spain.  First, the company researchers noted that they found a string in the malware code that was particularly interesting: “Caguen1aMar.” That string is a contraction for the popular Spanish expletive, “me cago en la mar,” which literally means “I sh–t in the sea,” but roughly translates to “f—k,” a phrase typically used in Spain, and not in other Spanish-speaking countries.   When Kaspersky announced its discovery of Careto in 2014, the company published a map showing all the countries that the hacking group had targeted. Along with the map, Kaspersky included an illustration of a mask with bull’s horns and a nose ring (the bull is a national symbol of Spain), castanets or clackers (an instrument used in Spanish folk music), and the red and yellow colors of the Spanish flag.  A detail in the map revealed how important Cuba was for Careto. For certain countries, Kaspersky added icons specifying what type of targets it was able to identify. The map showed Cuba had a single hacked victim, marked as a government institution. Only Gibraltar, Morocco — whose proximity and territorial disputes make it a strategic espionage target for Spain — and Switzerland were the other territories with a government victim. a map of careto’s victims along with An illustration of a mask (Image: Kaspersky) Kaspersky said in 2014 that the Careto group’s malware was one of the “most advanced threats” of the time for its ability to grab highly sensitive data from a victim’s computer. Kaspersky said the malware could also intercept internet traffic, Skype conversations, encryption (PGP) keys, and VPN configurations, take screenshots, and “fetch all information from Nokia devices.” The Careto group relied in large part on spearphishing emails that contained malicious links impersonating Spanish newspapers like El País, El Mundo, and Público, and videos about political subjects and food recipes. One of the former Kaspersky employees told TechCrunch that the phishing links also included references to ETA and Basque news, which Kaspersky’s report omitted.  When clicking on these malicious links, the victim would get infected using an exploit that hacked the user’s specific device, then redirected to a legitimate web page so as to not raise suspicions, according to Kaspersky’s report.  The Careto operators also took advantage of a since-patched vulnerability in older versions of Kaspersky’s antivirus software, which the company said in its 2014 published report was how it first discovered the malware.  The ubiquity of Kaspersky’s software in Cuba effectively made it possible for Careto to target almost anyone on the island with an internet connection. (By 2018, the Russian antivirus company controlled some 90% of the island’s internet security market, according to Cuba Standard, an independent news website.) The antivirus is so popular across the country that the company’s name has become part of the local slang. But soon after Kaspersky published its research, the Careto hackers shut down all of its operations discovered by the Russian firm, going as far as wiping its logs, which researchers noted was “not very common” and put Careto into the “elite” section of government hacking groups. “You can’t do that if you’re not prepared,” one of the former Kaspersky employees told TechCrunch. “They systematically, and in a quick manner, destroyed the whole thing, the whole infrastructure. Boom. It was just gone.” Careto gets caught again After Careto went dark, neither Kaspersky nor any other cybersecurity company publicly reported detecting Careto again — until last year.  Kaspersky announced in May 2024 that it had found Careto’s malware once again, saying it saw the group target an unnamed organization in Latin America that was “previously compromised” by the hacking group most recently in 2022, again in 2019, and on another occasion more than 10 years ago. Careto also hacked a second unnamed organization, located in Central Africa, said Kaspersky. In a blog post later in December 2024, Kaspersky’s researchers attributed the new hacks to Careto “with medium to high confidence,” based in part on filenames that were “alarmingly similar” to filenames found in Careto’s activities from a decade ago, as well as overlapping tactics, techniques, and procedures, or TTPs, a cybersecurity expression that refers to the unique behaviors of a certain hacking group. Kaspersky researchers Georgy Kucherin and Marc Rivero López, who wrote a paper and presented their research at the Virus Bulletin security conference in October 2024, said Careto “has always conducted cyber attacks with extreme caution,” but still “managed to make small but fatal mistakes during their recent operations” that matched activity from Careto a decade earlier. Despite that, Kucherin told TechCrunch that they don’t know who, or which government, is behind the Careto hacking group.  “It’s likely a nation state,” said Kucherin. “But what entity it was, who developed the malware? From a technical perspective, it’s impossible to tell.” Contact Us Do you have more information about Careto (aka The Mask), or other government hacking groups and operations? From a non-work device and network, you can contact Lorenzo Franceschi-Bicchierai securely on Signal at +1 917 257 1382, or via Telegram and Keybase @lorenzofb, or email. According to Kaspersky’s most recent report, this time the Careto hackers broke into the unnamed Latin American victim’s email server and then planted its malware.  In one of the hacked machines the researchers analyzed, Kaspersky found that Careto’s malware could surreptitiously switch on the computer’s microphone (while hiding the Windows icon that normally alerts the user that the mic is on), steal files, such as personal documents, session cookies that can allow access to accounts without needing a password, web browsing histories from several browsers, and more. In the case of another victim, according to the report, Careto hackers used a set of implants that work as a backdoor, a keylogger, and a screenshot-taker.  Despite the fact that they got caught, and compared to what Kaspersky found more than a decade ago, Kucherin said that the Careto hackers are “still that good.” Compared to the larger and more well-known government-backed hacking groups, like the North Korean Lazarus Group and China’s APT41, Kucherin said Careto is a “very small [advanced persistent threat] that surpasses all those large ones in complexity.” “Their attacks are a masterpiece,” said Kucherin.

After a six year absence, Nike will soon begin selling products directly on Amazon, having previously stopped in 2019 to go it alone. At the same time, the company is reportedly set to increase prices across most of its sneakers and other clothes in the wake of recent US tariffs. Nike stopped selling through Amazon after just two years on the platform, blaming the decision to end sales on Amazon’s inability to crack down on counterfeiters and unlicensed sellers. Just as pivotal was its desire to build its own direct-to-consumer sales platforms in the Nike app and website, which saw it reduce its other retail partners around the same time. Nike goods have continued to appear on Amazon in the years since, but only sold by third-party sellers on the platform. According to The Information those merchants have been told that they have until July 19th to stop selling certain Nike products. “While independent sellers have listed some Nike inventory in our store for many years, Amazon will soon begin sourcing a much wider range of Nike products directly to expand our selection for US customers,” Amazon spokesperson Megan Lagesse told The Verge. “We value independent sellers, and we’re providing an extended period of time for the small number of sellers affected to sell through their inventory of overlapping items.” Nike’s direct-to-consumer strategy seemed to be working well during the covid pandemic, when online shopping spiked, but has wobbled since. In 2023 the company began restoring its relationships with retailers including Foot Locker and Macy’s, and new CEO Elliott Hill, who took up the post in October 2024, has made building back Nike’s wholesale business a key pillar of the company’s plans. CNBC reports that Nike is also set to raise prices across its products from June 1st, likely in response to US tariffs. Adult clothes and shoes priced above $100 will rise by $2 to $10, though cheaper goods and children’s products won’t be affected. Nike will also avoid raising the price of its $115 Air Force 1 shoe and some of its Jordan-branded apparel.

Golf balls are tiny aerodynamic masterpieces. They’re loaded with fancy engineering and material science to help keep your drives out of the woods. However, even all the research and development in the world can’t prevent some of us from losing a couple of balls every round. That gets expensive. Right now, Amazon has Vice Pro Plus Golf Balls for less than $28 per dozen (depending on the color), which is down from their regular $40 price tag. This is the lowest price we have seen this year by far, and that leaves extra space in your golf budget for a custom putter, a high-end launch monitor … or maybe just a hot dog and a soda at the turn. Or, even if you don’t know anything about golf, they make a great Father’s Day or graduation gift. Vice Pro Plus Golf Balls Neon Red — $28 (was $40) You can choose from a variety of colors, including easy-to-find yellow-orange, lime, gold, or neon red (shown). Vice This is not a value ball. It’s a four-piece design with a high-speed core meant to maximize energy transfer and speed off the club face. The mantle layers under the cover encourage extra spin for better ball flight and feel around the green. The outer layer is scuff-resistant, so you can play more holes on a single ball before you need to swap it out for a new one. This is one of the best-reviewed balls on Amazon and even has the green badge to indicate that most people who purchase these balls end up keeping them instead of returning them. That’s a feat since anyone who has ever played a round of golf has thought about blaming poor performance on the balls or the clubs. The neon red colorway linked above is the cheapest option during this sale at $27.89 per dozen. More Vice Pro Plus Golf Ball colors on sale at Amazon Black $28.47 (was $40) Yellow/Orange $28.47 (was $40) Navy/Orange Drip $35 (was $40) Lime/Black Drip $32.42 (was $40) Neon Lime $29 (with coupon, was $40)

The lifespan of a games console has extended a lot since I was a child. In the 1990s, this kind of technology would be out of date after just a couple of years. There would be some tantalising new machine out before you knew it, everybody competing to be on the cutting edge: the Game Boy and Sega Genesis/Mega Drive in 1989 were followed by the Game Gear in 1990 and the Super NES in 1991. Five years was a long life for a gaming machine.Now, it’s more like 10. The Nintendo Switch 2 will be released in a couple of weeks, more than eight years since I first picked an original Switch up off its dock and marvelled at the instant transition to portable play. Games consoles often feel like they mark off particular eras in my life: the Nintendo 64 was the defining console of my childhood, the PlayStation 2 of my adolescence, and the Xbox 360 of the first years of my career, the first console launch I ever covered as a (ridiculously young) journalist. The Nintendo Switch came along just a few months after my first child was born, and for me it has become the games machine of that era of harried early parenthood.When I reflect on my experiences with the Switch, I remember snatching moments in Breath of the Wild’s Hyrule while the baby napped beside me; hiding on the veranda of a French villa to play the odd Splatoon match on our first family holiday; and trying to make a mint on my Animal Crossing turnip trades while walking my second baby around the house in his sling, trying to get him to sleep (he never did). When they got old enough, the first games I played with my children were on the Switch. We all played Pokémon Sword and Shield together, and most recently my youngest made his way through the surprisingly entertaining Princess Peach Showtime with only minimal assistance from me.Hello to the moo … The Nintendo Switch created a unique gaming space all of its own. Photograph: Justin Lane/EPAOver the last eight years, my living room TV became dominated by things like Bluey and Moana and most recently (god help me), Alvin and the Chipmunks, and I no longer have the hours of uninterrupted gaming time in the evenings. The Switch gave me some of that that time back, though, letting me dip into games whenever I had a moment – which gave me vital stress relief, a route back to myself during some of the most challenging years of my life. Eight years is a long time, enough for anyone’s life to change beyond recognition. In that time I’ve lost people, moved cities, gained new friends, too. And, of course, we all went through the pandemic. Animal Crossing: New Horizons became perhaps the defining game of that time, and I am not the only person for whom the Switch was a blessed oasis, a way to connect when we were starved of in-person interaction.Things have changed for me since 2017, as they probably have for you. Consoles feel like companions, especially perhaps the portable ones like the Switch and the Game Boy, which we literally carry with us wherever we go. My kids are older now, enjoying all the Switch games that I enjoyed when they were very small – and it does seem as if the Switch 2 will neatly mark another new stage, for me and for them.I recently gathered together all the Switch consoles, games, controllers and accessories in my house and my office for an audit, from the battered day-one unit that serves as the family console to the untouched OLED Zelda special edition my partner got me and the variably functioning spare JoyCons accumulated over time. It’s not quite time for them to join the other old consoles under my bed, each in a clear plastic box with all of its cables, ready to be dusted off when the time comes; the Switch 2 will take its place in my rucksack and in my office, but I won’t be upgrading the family console for some time yet. I don’t really wantA little sentimentality is forgivable at the end of an era. In a couple of weeks all the talk will be about the new console, how it’s selling, whether it’s worth the money, what the best Mario Kart World strategies are, and how it compares to its record-breaking predecessor. For now, I’m not thinking much about what the Nintendo Switch meant for the gaming industry; instead I’m thinking about what it meant to me.What to playBe who you wanna be … there are many lives to choose from in the latest RPG, Fantasy Life i: The Girl Who Steals Time. Illustration: Level5/Have you ever heard of Fantasy Life? It was a bit of a cult hit on the Nintendo 3DS in 2014, a cosy-feeling role-playing game that let you switch between 12 different professions, so you would be blacksmithing one minute, fighting monsters another and cooking things up the next. The sequel – Fantasy Life i: The Girl Who Steals Time – is out today after years of delays.You can now be an artist or a farmer as well as a magician, carpenter, fisherman, alchemist or whatever else you fancy, and also it adds time travel into the mix. It’s an intriguing amalgamation of the Animal Crossing/Harvest Moon style of Japanese life simulator, and the Dragon Quest/Ni no Kuni flavour of unthreatening role-playing game, and I’m looking forward to exploring it. An especial shout-out to the members of one of my group chats who have been eagerly awaiting this for more than a decade.Available on: Switch/2, PS4/5, Xbox, PC Estimated playtime: skip past newsletter promotionSign up to Pushing ButtonsFree weekly newsletterKeza MacDonald's weekly look at the world of gamingPrivacy Notice: Newsletters may contain info about charities, online ads, and content funded by outside parties. For more information see our Privacy Policy. We use Google reCaptcha to protect our website and the Google Privacy Policy and Terms of Service apply.after newsletter promotionWhat to readBroom broom … the home delivery system in Crescent County. Illustration: Electric Saint A couple of interesting games hitting Kickstarter this week: Crescent County, a colourful witch-delivery game with broom-racing and plenty of small-town drama; and a ghost story set in Paisley just outside Glasgow, named after its Chinese takeaway Crystal Garden. If you have a few minutes, have a go at this satirical simulation text game You Are Generative AI, which casts you as an increasingly self-aware AI large language model answering random questions that people cannot be bothered to research or think through themselves. I got three different endings and one of them made me genuinely quite sad. Developers at Bungie, makers of Destiny and the forthcoming shooter Marathon, have been dealing with an alleged plagiarism scandal after unattributed designs from an artist called Antireal were found in promotional screenshots and art from Marathon. Bungie is blaming the mistake on a former employee. VG247 has a rundown. After half a decade, PlayStation 5 sales are neck and neck with PlayStation 4’s results at this point in its life cycle, at 78m – despite the fact that its price has actually increased, due to the wild times in which we live. Video Game Chronicle gets into the numbers. What to clickQuestion BlockWhat’s in a name? … playing a video game using Nintendo’s Wii U controller. Photograph: Jae C Hong/API’ve had several good suggestions for the name of reader Travis’s book-club style video game club: Select/Start (thanks Alex), Long Play (from Eva), and Doki Doki Videogame Club (niche reference there, Chris). Especial props to Kenny, however, who went hog wild and came up with several, including these three beauts: Go Forth and Multiplay, Concurrent Players and Let’s Console Each Other.Lucas also had a great suggestion for last week’s questioner: “Your bookclubber should look at itch.io for crazy little free games to play and discuss with their friends! The indie folks sharing their games there would probably love the attention/feedback of a games book club.” (You Are Generative AI, which I mentioned earlier, is on Itch, along with just hundreds of other shortform games worthy of discussion.)And we’ve just about got room for another (timely) question, this time from reader Ali:“I’ve always admired Nintendo for coming up with different names for each console, as opposed to Sony going for the sequential naming convention and Microsoft jumping from 360 to One to Series (?). My opinion has somewhat changed now that the successor to the Nintendo Switch is called Switch 2. Do you have any thoughts on console names?”It’s true that Nintendo usually goes for completely new names for each console, except arguably the series of Game Boys, the NES and Super NES, Wii and Wii U, and now Switch and Switch 2. And yes, this is the first time they’ve gone for a number. I’d say this is down to how badly the company did with the Wii U, whose confusing name surely contributed to how badly it flopped. But I think it reflects the more conservative and cautious mood of the games industry as a whole in 2025, as it comes to the end of decades’ worth of unsustainably rapid growth. Or maybe it’s because Nintendo’s president Shuntaro Furukawa used to be an accountant.If you’ve got a question for Question Block – or anything else to say about the newsletter – email us on pushingbuttons@theguardian.com

A cyberattack has caused a week-long outage at a mobile carrier in Wisconsin, preventing users from texting and receiving or making phone calls. Cellcom today officially attributed the outage to a “cyber incident” after originally blaming the problem on a technical issue. "The cyber incident that we’re experiencing is segmented to the voice and texting part of your service," CEO Brighid Riordan said in a video to customers. The hackers are apparently still trying to attack the company’s systems. They "are working to do damage just as hard as we are working to prevent it,” Riordan said. But in some good news, no customer information appears to have been stolen. Cellcom didn’t immediately respond to a request for comment, making it unclear if the attack involves ransomware, which can encrypt entire fleets of computers. But in a letter to customers, Riordan said the company is working with “outside cybersecurity experts, notifying the FBI and Wisconsin officials, and working around the clock to bring systems safely back online.”Recommended by Our EditorsThe outage began late on May 14, sparking numerous complaints from Wisconsin-based customers of Cellcom, which provides affordable cell phone plans for consumers and businesses. “I have 42 lines with them for my company and family. This outage has cost us thousands,” wrote one user on Reddit. On Monday, Cellcom said it had restored texting for customers. Plus, Cellcom customers should be able to make and receive voice calls to each other. "As a gesture of accountability and thanks, we are covering outage service fees for the customers that continue with us," it says.The company’s service page is also publishing updates about Cellcom’s effort to restore its system. The page notes that affected users should try turning on the phone’s airplane mode for 10 seconds or restarting their device if they’re still unable to connect.