Published June 5, 2025 10:00am EDT close Don’t be so quick to click that Google calendar invite. It could be a hacker’s trap Cybercriminals are sending fake meeting invitations that seem legitimate. NEWYou can now listen to Fox News articles! Americans’ personal data is now spread across more digital platforms than ever. From online shopping habits to fitness tracking logs, personal information ends up in hundreds of company databases. While most people worry about social media leaks or email hacks, a far less visible threat comes from data brokers.I still find it hard to believe that companies like this are allowed to operate with so little legal scrutiny. These firms trade in personal information without our knowledge or consent. What baffles me even more is that they aren’t serious about protecting the one thing that is central to their business model: data. Just last year, we saw news of a massive data breach at a data broker called National Public Data, which exposed 2.7 billion records. And now another data broker, LexisNexis, a major name in the industry, has reported a significant breach that exposed sensitive information from more than 364,000 people. A hacker at work (Kurt "CyberGuy" Knutsson)LexisNexis breach went undetected for months after holiday hackLexisNexis filed a notice with the Maine attorney general revealing that a hacker accessed consumer data through a third-party software development platform. The breach happened on Dec. 25, 2024, but the company only discovered it months later. LexisNexis was alerted on April 1, 2025, by an unnamed individual who claimed to have found sensitive files. It remains unclear whether this person was responsible for the breach or merely came across the exposed data.MASSIVE DATA BREACH EXPOSES 184 MILLION PASSWORDS AND LOGINSA spokesperson for LexisNexis confirmed that the hacker gained access to the company’s GitHub account. This is a platform commonly used by developers to store and collaborate on code. Security guidelines repeatedly warn against storing sensitive information in such repositories; however, mistakes such as exposed access tokens and personal data files continue to occur.The stolen data varies from person to person but includes full names, birthdates, phone numbers, mailing and email addresses, Social Security numbers and driver's license numbers. LexisNexis has not confirmed whether it received any ransom demand or had further contact with the attacker. An individual working on their laptop (Kurt "CyberGuy" Knutsson)Why the LexisNexis hack is a bigger threat than you realizeLexisNexis isn’t a household name for most people, but it plays a major role in how personal data is harvested and used behind the scenes. The company pulls information from a wide range of sources, compiling detailed profiles that help other businesses assess risk and detect fraud. Its clients include banks, insurance companies and government agencies.In 2023, the New York Times reported that several car manufacturers had been sharing driving data with LexisNexis without notifying vehicle owners. That information was then sold to insurance companies, which used it to adjust premiums based on individual driving behavior. The story made one thing clear. LexisNexis has access to a staggering amount of personal detail, even from people who have never willingly engaged with the company.Law enforcement also uses LexisNexis tools to dig up information on suspects. These systems offer access to phone records, home addresses and other historical data. While such tools might assist in investigations, they also highlight a serious issue. When this much sensitive information is concentrated in one place, it becomes a single point of failure. And as the recent breach shows, that failure is no longer hypothetical. A hacker at work (Kurt "CyberGuy" Knutsson)7 expert tips to protect your personal data after a data broker breachKeeping your personal data safe online can feel overwhelming, but a few practical steps can make a big difference in protecting your privacy and reducing your digital footprint. Here are 7 effective ways to take control of your information and keep it out of the wrong hands:1. Remove your data from the internet: The most effective way to take control of your data and avoid data brokers from selling it is to opt for data removal services. While no service promises to remove all your data from the internet, having a removal service is great if you want to constantly monitor and automate the process of removing your information from hundreds of sites continuously over a longer period of time. Check out my top picks for data removal services here.Get a free scan to find out if your personal information is already out on the web.2. Review privacy settings: Take a few minutes to explore the privacy and security settings on the services you use. For example, limit who can see your social media posts, disable unnecessary location-sharing on your phone and consider turning off ad personalization on accounts like Google and Facebook. Most browsers let you block third-party cookies or clear tracking data. The FTC suggests comparing the privacy notices of different sites and apps and choosing ones that let you opt out of sharing when possible.3. Use privacy-friendly tools: Install browser extensions or plugins that block ads and trackers (such as uBlock Origin or Privacy Badger). You might switch to a more private search engine (like DuckDuckGo or Brave) that doesn’t log your queries. Consider using a browser’s "incognito" or private mode when you don’t want your history saved, and regularly clear your cookies and cache. Even small habits, like logging out of accounts when not in use or using a password manager, make you less trackable.GET FOX BUSINESS ON THE GO BY CLICKING HERE4. Beware of phishing links and use strong antivirus software: Scammers may try to get access to your financial details and other important data using phishing links. The best way to safeguard yourself from malicious links is to have antivirus software installed on all your devices. This protection can also alert you to phishing emails and ransomware scams, keeping your personal information and digital assets safe. Get my picks for the best 2025 antivirus protection winners for your Windows, Mac, Android and iOS devices.5. Be cautious with personal data: Think twice before sharing extra details. Don’t fill out online surveys or quizzes that ask for personal or financial information unless you trust the source. Create separate email addresses for sign-ups (so marketing emails don’t go to your main inbox). Only download apps from official stores and check app permissions.6. Opt out of data broker lists: Many data brokers offer ways to opt out or delete your information, though it can be a tedious process. For example, there are sites like Privacy Rights Clearinghouse or the Whitepages opt-out page that list popular brokers and their opt-out procedures. The FTC’s consumer guide, "Your Guide to Protecting Your Privacy Online," includes tips on opting out of targeted ads and removing yourself from people-search databases. Keep in mind you may have to repeat this every few months.7. Be wary of mailbox communications: Bad actors may also try to scam you through snail mail. The data leak gives them access to your address. They may impersonate people or brands you know and use themes that require urgent attention, such as missed deliveries, account suspensions and security alerts.Kurt’s key takeawayFor many, the LexisNexis breach may be the first time they realize just how much of their data is in circulation. Unlike a social media platform or a bank, there is no clear customer relationship with a data broker, and that makes it harder to demand transparency. This incident should prompt serious discussion around what kind of oversight is necessary in industries that operate in the shadows. A more informed public and stronger regulation may be the only things standing between personal data and permanent exposure.CLICK HERE TO GET THE FOX NEWS APPShould companies be allowed to sell your personal information without your consent? Let us know by writing us atCyberguy.com/Contact.For more of my tech tips and security alerts, subscribe to my free CyberGuy Report Newsletter by heading to Cyberguy.com/Newsletter.Ask Kurt a question or let us know what stories you'd like us to cover.Follow Kurt on his social channels:Answers to the most-asked CyberGuy questions:New from Kurt:Copyright 2025 CyberGuy.com. All rights reserved. Kurt "CyberGuy" Knutsson is an award-winning tech journalist who has a deep love of technology, gear and gadgets that make life better with his contributions for Fox News & FOX Business beginning mornings on "FOX & Friends." Got a tech question? Get Kurt’s free CyberGuy Newsletter, share your voice, a story idea or comment at CyberGuy.com.

Cybersecurity researchers have flagged several popular Google Chrome extensions that have been found to transmit data in HTTP and hard-code secrets in their code, exposing users to privacy and security risks. "Several widely used extensions [...] unintentionally transmit sensitive data over simple HTTP," Yuanjing Guo, a security researcher in the Symantec's Security Technology and Response team, said. "By doing so, they expose browsing domains, machine IDs, operating system details, usage analytics, and even uninstall information, in plaintext." The fact that the network traffic is unencrypted also means that they are susceptible to adversary-in-the-middle (AitM) attacks, allowing malicious actors on the same network such as a public Wi-Fi to intercept and, even worse, modify this data, which could lead to far more serious consequences. The list of identified extensions are below - SEMRush Rank (extension ID: idbhoeaiokcojcgappfigpifhpkjgmab) and PI Rank (ID: ccgdboldgdlngcgfdolahmiilojmfndl), which call the URL "rank.trellian[.]com" over plain HTTP Browsec VPN (ID: omghfjlpggmjjaagoclmmobgdodcjboh), which uses HTTP to call an uninstall URL at "browsec-uninstall.s3-website.eu-central-1.amazonaws[.]com" when a user attempts to uninstall the extension MSN New Tab (ID: lklfbkdigihjaaeamncibechhgalldgl) and MSN Homepage, Bing Search & News (ID: midiombanaceofjhodpdibeppmnamfcj), which transmit a unique machine identifier and other details over HTTP to "g.ceipmsn[.]com" DualSafe Password Manager & Digital Vault (ID: lgbjhdkjmpgjgcbcdlhkokkckpjmedgc), which constructs an HTTP-based URL request to "stats.itopupdate[.]com" along with information about the extension version, user's browser language, and usage "type" "Although credentials or passwords do not appear to be leaked, the fact that a password manager uses unencrypted requests for telemetry erodes trust in its overall security posture," Guo said. Symantec said it also identified another set of extensions with API keys, secrets, and tokens directly embedded in the JavaScript code, which an attacker could weaponize to craft malicious requests and carry out various malicious actions - Online Security & Privacy extension (ID: gomekmidlodglbbmalcneegieacbdmki), AVG Online Security (ID: nbmoafcmbajniiapeidgficgifbfmjfo), Speed Dial [FVD] - New Tab Page, 3D, Sync (ID: llaficoajjainaijghjlofdfmbjpebpa), and SellerSprite - Amazon Research Tool (ID: lnbmbgocenenhhhdojdielgnmeflbnfb), which expose a hard-coded Google Analytics 4 (GA4) API secret that an attacker could use to bombard the GA4 endpoint and corrupt metrics Equatio – Math Made Digital (ID: hjngolefdpdnooamgdldlkjgmdcmcjnc), which embeds a Microsoft Azure API key used for speech recognition that an attacker could use to inflate the developer's costs or exhaust their usage limits Awesome Screen Recorder & Screenshot (ID: nlipoenfbbikpbjkfpfillcgkoblgpmj) and Scrolling Screenshot Tool & Screen Capture (ID: mfpiaehgjbbfednooihadalhehabhcjo), which expose the developer's Amazon Web Services (AWS) access key used to upload screenshots to the developer's S3 bucket Microsoft Editor – Spelling & Grammar Checker (ID: gpaiobkfhnonedkhhfjpmhdalgeoebfa), which exposes a telemetry key named "StatsApiKey" to log user data for analytics Antidote Connector (ID: lmbopdiikkamfphhgcckcjhojnokgfeo), which incorporates a third-party library called InboxSDK that contains hard-coded credentials, including API keys. Watch2Gether (ID: cimpffimgeipdhnhjohpbehjkcdpjolg), which exposes a Tenor GIF search API key Trust Wallet (ID: egjidjbpglichdcondbcbdnbeeppgdph), which exposes an API key associated with the Ramp Network, a Web3 platform that offers wallet developers a way to let users buy or sell crypto directly from the app TravelArrow – Your Virtual Travel Agent (ID: coplmfnphahpcknbchcehdikbdieognn), which exposes a geolocation API key when making queries to "ip-api[.]com" Attackers who end up finding these keys could weaponize them to drive up API costs, host illegal content, send spoofed telemetry data, and mimic cryptocurrency transaction orders, some of which could see the developer's ban getting banned. Adding to the concern, Antidote Connector is just one of over 90 extensions that use InboxSDK, meaning the other extensions are susceptible to the same problem. The names of the other extensions were not disclosed by Symantec. "From GA4 analytics secrets to Azure speech keys, and from AWS S3 credentials to Google-specific tokens, each of these snippets demonstrates how a few lines of code can jeopardize an entire service," Guo said. "The solution: never store sensitive credentials on the client side." Developers are recommended to switch to HTTPS whenever they send or receive data, store credentials securely in a backend server using a credentials management service, and regularly rotate secrets to further minimize risk. The findings show how even popular extensions with hundreds of thousands of installations can suffer from trivial misconfigurations and security blunders like hard-coded credentials, leaving users' data at risk. "Users of these extensions should consider removing them until the developers address the insecure [HTTP] calls," the company said. "The risk is not just theoretical; unencrypted traffic is simple to capture, and the data can be used for profiling, phishing, or other targeted attacks." "The overarching lesson is that a large install base or a well-known brand does not necessarily ensure best practices around encryption. Extensions should be scrutinized for the protocols they use and the data they share, to ensure users' information remains truly safe." Found this article interesting? Follow us on Twitter  and LinkedIn to read more exclusive content we post.

The hole was quickly plugged, but millions of records may have been affected.

35,000 Solar Power Systems Exposed To Internet Are Vulnerable To Cyberattacks  CybersecurityNews

이메일 보안 기업 애브노멀AI(Abnormal AI)는 최근 보고서를 통해 VEC 공격이 기술적 취약점이 아닌 사람의 신뢰를 악용하는 방식으로 기존 방어 체계를 뚫고 있다고 진단했다. 보고서에 따르면 대기업 직원의 72%가 링크나 첨부 파일이 없는 사기성 벤더 이메일에 응답하거나 전달한 경험이 있는 것으로 나타났다. VEC 공격은 지난 1년간 전 세계적으로 3억 달러 이상의 도난 시도를 유발했으며,

Tapjoy studies have shown that mobile gamers prefer rewarded ads to interstitials 4-to-1. It’s a valuable insight for advertisers and developers alike when it comes maximizing ad revenue, but rewarded ads also have the potential to impact other parts of the user experience and your game’s performance overall.To ensure a healthy portfolio, it’s critical that developers understand the additional impact rewarded ads have beyond ad revenue. This includes their effect on metrics like in-app purchase conversion rate, average user spend, 30-day retention, and daily session count. To find out more, we conducted an in-depth analysis of eight different high-DAU apps across iOS and Android for several varying timeframes to find out how users behave when exposed to rewarded ads compared to those who aren’t.Higher IAP conversion ratesWe studied new app users during a one month period and segmented them into two different groups: Those who engaged with at least one rewarded ad and those who never engaged with an ad. We then compared the IAP conversion rates (or percentage of users that made a first time purchase) for each group.On average, users who engage with rewarded ads are 4.5 times more likely to make in-app purchase versus those who do not.7 out of the 8 of apps studied demonstrated higher conversion rates among those who engaged with ads versus those who did not.In the case of two of the apps studies, we found that users who engaged with an ad were over 9 times more likely to make a purchase.Higher average spend per userWe measured the average spend per user in each app for seven days before and seven days after a user’s first rewarded ad engagement.In all 8 apps studied, user spend increased significantly after they engaged with an ad. The average weighted increase in user spend was 326%. Among the apps studied, the boost in average spend per user ranged from just shy of 200% to over 500%.Increased 30-day retentionWe measured the 30-day retention rates of users who engaged with 1-6 rewarded ads during their first week of using an app. Three types of rewarded ad formats were studied (rewarded video, full-screen interstitial, and offerwall placements) and measured against the average 30-day retention benchmark for all apps.Players who complete just one rewarded ad in the first week — whether a video, full-screen interstitial or an offerwall engagement — have a retention rate of at least 50%, compared to the benchmark of 13%.Rewarded video has the most profound effect on retention of any ad type. 30-day retention steadily increases with each video view, ranging from 53% to 68%, which is 3.5-5 times greater than the benchmark.Higher average daily session countWe measured the average number of user sessions per day — both seven days before and seven days after a user’s first rewarded ad engagement — for each high-DAU app.In all cases, users engaged with apps more frequently after completing a rewarded ad.All 8 apps studied demonstrated a lift in the average number of user sessions among those who completed an ad.The average weighted increase in user sessions across all apps was 34%.What does this mean for developers?4 key monetization strategies became abundantly clear following our research:Make rewarded ads easy to find – To increase visibility, consider adding a button to your app’s home screen or storefront, or utilize in-app messaging or push notifications to promote rewarded offers. Tapjoy’s Native-to-Earn, Message-to-Earn, and Push-to-Earn features make it easy for developers to add and manage these additions right from the dashboard.Explore currency sale promotions – Try running limited-time offers in which your players earn more currency than usual for every rewarded ad they complete. These currency sales can drive serious spikes in revenue. With Tapjoy, it’s easy to personalize your currency sale with custom branding and to control the payout ratio.Introduce ads early – Getting users to interact with ads early in their gameplay increases the chance that they will continue to engage with or make a purchase in your app. Rewarded ads introduce players to the mechanics and benefits of your in-app currency, so it’s important to make ads visible and easy to access during the player’s first few sessions.Integrate multiple rewarded formats – Integrating multiple formats — such as rewarded video and offerwall combined — provides developers with the best opportunity to monetize their users and maximize revenue. Diversifying formats not only unlocks higher eCPMs, but it provides players with the freedom to pick and choose the rewarded offer that appeals most to them.

alternative_right shares a report from Phys.Org: Using conventional propulsion and low-energy trajectories, it takes six to nine months for crewed spacecraft to reach Mars. These durations complicate mission design and technology requirements and raise health and safety concerns since crews will be exposed to extended periods in microgravity and heightened exposure to cosmic radiation. Traditionally, mission designers have recommended nuclear-electric or nuclear-thermal propulsion (NEP/NTP), which could shorten trips to just 3 months. In a recent study, a UCSB physics researcher identified two trajectories that could reduce transits to Mars using the Starship to between 90 and 104 days. The study was authored by Jack Kingdon, a graduate student researcher in the Physics Department at the University of California, Santa Barbara (UCSB). He is also a member of the UCSB Weld Lab, an experimental ultracold atomic physics group that uses quantum degenerate gases to explore quantum mechanical phenomena. [...] As outlined on its website, conference presentations, and user manual, the SpaceX mission architecture consists of six Starships traveling to Mars. Four of these spacecraft will haul 400 metric tons (440 U.S. tons) of cargo while two will transport 200 passengers. Based on the Block 2 design, which has a 1,500 metric ton (1,650 U.S. ton) propellant capacity, the crewed Starships will require 15 tankers to fully refuel in low Earth orbit (LEO). The cargo ships would require only four, since they would be sent on longer low-energy trajectories. Once the flotilla arrives at Mars, the Starships will refuel using propellant created in situ using local carbon dioxide and water ice. When the return window approaches, one of the crew ships and 3-4 cargo ships will refuel and then launch into a low Mars orbit (LMO). The cargo ships will then transfer the majority of their propellant to the crew ship and return to the surface of Mars. The crew ship would then depart for Earth, and the process could be repeated for the other crew ship. Kingdon calculated multiple trajectories using a Lambert Solver, which produces the shortest elliptical arc in two-body problem equations (aka Lambert's problem). The first would depart Earth on April 30th, 2033, taking advantage of the 26-month periodic alignment between Earth and Mars. The transit would last 90 days, with the crew returning to Earth after another 90-day transit by July 2nd, 2035. The second would depart Earth on July 15th, 2035, and return to Earth after a 104-day transit on December 5th, 2037. As Kingdon explained, the former trajectory is the most likely to succeed: "The optimal trajectory is the 2033 trajectory -- it has the lowest fuel requirements for the fastest transit time. A note that may not be obvious to the layreader is that Starship can very easily reach Mars in ~3 months -- in fact, it can in any launch window, over a fairly wide range of trajectories. However, Starship may impact the Martian atmosphere too fast (although we do not know, and likely SpaceX don't either actually how fast Starship can hit the Martian atmosphere and survive). The trajectories discussed are ones that I am confident Starship will survive." The paper describing the work has been published in the journal Scientific Reports. Read more of this story at Slashdot.

Stone PC Case, Cooler Master GPU, DIY Case from Scratch, and Metal FansJune 4, 2025Last Updated: 2025-06-04Cooler Master is doing some really interesting stuff with its new casesThe HighlightsCooler Master’s upcoming MF600, MF500, and MF400 reconfigurable frame cases are assembled from columns and cornersThe company also showed off interesting stone facade case front panelsCooler Master is working on a “GPU” with AsusTable of ContentsAutoTOC Grab a GN Tear-Down Toolkit to support our AD-FREE reviews and IN-DEPTH testing while also getting a high-quality, highly portable 10-piece toolkit that was custom designed for use with video cards for repasting and water block installation. Includes a portable roll bag, hook hangers for pegboards, a storage compartment, and instructional GPU disassembly cards.IntroWe visited Cooler Master’s booth at Computex 2025 where the company showed off several new cases. Arguably the most interesting one is a modular case. It comes with, we believe, 8 corners and 12 columns.Editor's note: This was originally published on May 20, 2025 as a video. This content has been adapted to written format for this article and is unchanged from the original publication.CreditsHostSteve BurkeCamera, Video EditingMike GaglioneVitalii MakhnovetsWriting, Web EditingJimmy ThangCooler Master MF CasesThe case comes with a front panel that has a dust filter in it. With it all assembled, it looks like the cases in the image above. The cases are the MF series, with the largest one being the MF600, which we assume translates to “Motherf***ing 600.” There’s also the MF500 and the smaller MF400. Initially, Cooler Master is basically going to be selling pre-configured models. Eventually, the company wants to allow people to customize the case on their site and have it assembled and shipped from around the City of Industry. It’s pretty cool as it’s a fully modular approach.The side panels are secured to the case via magnets, which is actually a nice touch. Internally, the MF600 we saw came with 3x140mm fans on the front and 1x120mm fan on the back. The motherboard tray is pretty standard for the most part. Exceptions include a rail system that provides numerous holes for screws to go in, which allows Cooler Master to reconfigure things. Inside the case towards the back, there’s also a rail system, which forms bits and pieces of the motherboard tray that allow for more customizability. Cooler Master has been kind of on-and-off in the DIY space over the years where they’ve had some really big wins and some really big losses. They were also kind of absent for a while, but these MF cases represent a better showing from what we’ve seen in a while from the company. According to Cooler Master, a pre-configured MF600 is supposed to cost $200. We expect to test and review the case. The MF500 is supposed to go for $165 and includes 2x200mm fans in the front and 1x120mm fan in the back. The smallest MF case, the MF600, which is a very large micro ATX box, is going for $150. In terms of fans, it has 2x120mm ones at the bottom coupled with a 1x120mm fan in the rear.  Cooler Master also showed off different panel types they’re experimenting with. One of them included a facade-style stone. One of the pre-built MF cases we looked at had stuff flipped around in an inverted layout. One of the benefits of its rail system allows the case to have a bar that screws in which can support the GPU. Looking into this system, you can see that the PSU is at the bottom next to a bottom intake fan. Updated Cosmos Visit our Patreon page to contribute a few dollars toward this website's operation (or consider a direct donation or buying something from our GN Store!) Additionally, when you purchase through links to retailers on our site, we may earn a small affiliate commission.Cooler Master’s updated Cosmos has the NVIDIA-like DGX style front. We also saw a variant of the Cosmos with thermal baffles in it. We have some criticisms of its execution, but overall, it’s an interesting idea.  The way the baffles are designed, Cooler Master is trying to bring air straight in through its channels. There’s a channel for the CPU that exposes the fin stack and Cooler Master's V8 CPU cooler. It conveys an idea similar to an engine cover. The GPU has a separate baffle beneath the CPU one. The company is trying to isolate air flow. In theory, this should work well and we would love this idea applied to more affordable cases, like the MF series, especially since they’re already kind of configurable. Looking at the back, fans can be mounted on the rear, which can help pull air out. We also saw another variant of the Cosmos case running liquid cooling with a distro block. It was coupled with 4x180mm fans and a “720” radiator, which pulled air into the case. Unfortunately, the air is blowing straight into the wall of a motherboard tray, but Cooler Master says the plan is to pull the air up and out of the case with additional 180mm fans on the top and to move the PSU towards the bottom of the case. Looking closer at the front of the special edition of the Cosmos cases, we can see the NVIDIA DGX shroud, which Cooler Master manufactures. It’s essentially like a sponge-like mesh. The special edition of the Cosmos doesn’t have a price yet, but the non-special edition variant is supposed to be around $400, which is before any potential tariffs. Cooler Master CoolersCooler Master showed off some CPU air coolers that had some 3D heat pipes, which had more heat pipes protruding from the center. The company also showed off its V8 cooler and a full-metal fan. The fan’s blades and frame are both aluminum.  Cooler Master Elite Series CasesCooler Master does some really cool sh*t but has a branding problem. For instance, the company’s “Elite” series cases, shown in the image above, are actually budget cases. From left to right, we believe they are called the Elite 482 ($50), Elite 600 ($65), Elite 490 Wood ($50), Elite 691 Wood ($60), Elite 693 ($60), Elite 692 ($70), Elite 302 ($40), and Elite 502 ($60). Our advice to Cooler Master here is for them to unf*ck these names.Most of the Elite series cases don’t come with fans with the exception of the Elite 302 and Elite 502, which come with 3 ARGB fans. MF360Next up are Cooler Master’s MF360 cases, which conveys that you can see inside the case from all sides. While it’s going to have some thermal challenges, to give the company credit, it’s actually really good looking. The MF360 is a showcase fish-tank style PC that you can see through from both sides. Inside the case, we saw a distro block and tubes routed through on both sides.Cooling XThe case in the image above, which goes by "Cooling X,” and uses the company’s new MF frame system. If you look at the corner, you can see the individual columns. At Computex, we saw it as a pre-built system.The top of the case has a magnetically attached panel, which just pulls right off. The panel itself provides really good porosity and the material is pretty nice. Removing the top panel exposes 2 offset fans. The back fan tries to pull in air with the front fan trying to exhaust air out of the top, which is why they’re offset. That’s kind of cool to see.  Cooler Master FansCooler Master showed off all-aluminum fans, which include the blades and frame. The MF120 XT is a 120mm model, is supposed to be $35, and the company says it goes up to 4,000 RPM. The fan’s RPM can also be button-controlled via an external remote and it uses a dual-ball-bearing solution. Cooler Master’s mixed fans, which use plastic blades coupled with an aluminum frame, come with fluid dynamic bearings (FDBs). The clearance between the fan blade tip and the frame is important as the smaller that clearance is, the better performance you get. The major downside is that as the fan ages, it can start to clip the interior of the frame. Having it too close can also negatively impact yields. The solution to this is LCP, which is incredibly expensive, or metal, because it doesn’t deform, but that’s also expensive. Right now, Cooler Master says it’s about a .8mm distance, which is pretty good. The company is targeting 0.6mm by the time the fan launches. Cooler Master Video Card Shroud Grab a GN15 Large Anti-Static Modmat to celebrate our 15th Anniversary and for a high-quality PC building work surface. The Modmat features useful PC building diagrams and is anti-static conductive. Purchases directly fund our work! (or consider a direct donation or a Patreon contribution!)Cooler Master also showed off some video cards, which is not something the company is typically involved with. Cooler Master created a GPU shroud with adjustable slats that can accommodate 15-30mm fans. This solution is geared towards pre-built PCs and isn’t planned to be sold separately.Examining one of the fans, we saw a standard 25mm-thick fan, which Cooler Master’s GPU shroud solution can adjust to via different notch options.Cooler Master is also using a vapor chamber, which is supported by 8x8mm heat pipes running through the shroud and a gigantic fin stack. In total, it weighs almost 7 pounds (3.2 kilograms).Cooler Master claims that, in terms of cooling, it performs similar to the 4-fan Astral solution at lower noise levels, but we don’t have those numbers. With 4,000 RPM fans running on a 600-watt heat load, Cooler Master claims a 5090 will run at about 49 degrees C or so for the GPU.

The cloud has changed everything. It’s faster, cheaper, and easier to scale than traditional infrastructure. Initially, most companies chose a single cloud provider. That’s no longer enough. Now, nearly 86% of businesses use more than one cloud. This approach—called multi-cloud—lets teams choose the best features from each provider. But it also opens the door to new security risks. When apps, data, and tools are scattered across platforms, managing security gets harder. And in today's world of constant cyber threats, ignoring cloud security is not an option. Let’s walk through real-world challenges and the best ways to protect business data in a multi-cloud environment. 1. Know What You’re Working With Start with visibility. Make a full inventory of the cloud platforms, apps, and storage your business uses. Ask every department—marketing, finance, HR—what tools they’ve signed up for. Many use services without informing IT. This is shadow IT, and it’s risky. Once you have the list, figure out what data lives where. Some workloads are low-risk. Others involve customer records, credit card data, or legal files. Prioritize those. 2. Build a Unified Security Strategy One of the biggest mistakes companies make is treating each cloud provider as a separate system. Every provider has its own rules, tools, and settings. If your security strategy is broken up, gaps will appear. Instead, aim for a single, connected approach. Use the same access rules, encryption standards, and monitoring tools across all clouds. You don’t want different policies on AWS and Azure—it just invites trouble. Tools like centralized dashboards, SIEM (Security Information and Event Management), and SOAR (Security Orchestration, Automation, and Response) help you keep everything in one place. 3. Enforce Strict Access Controls In a multi-cloud world, identity and access control are one of the hardest things to get right. Every platform has its own login system. Without proper integration, mistakes happen. Someone might get more access than they need, or never lose access when they leave the company. Stick to these practices: Use role-based access control. Limit permissions to the bare minimum. Turn on multi-factor authentication. Link logins across platforms using identity federation. The more consistent your access rules are, the easier it is to control who gets in and what they can do. 4. Use the Zero Trust Model Zero Trust means never assume anything is safe. Every user, device, and app must prove itself—every time. Even if a user is on your network, don’t trust them by default. This model reduces risk. It checks each request. It verifies users. And it looks for signs of abnormal behavior, like someone logging in from a new device or country. Zero Trust works well with automation and real-time monitoring. It also forces teams to rethink how data is shared and accessed. 5. Encrypt Data—Always Encryption is a basic but powerful layer of defense. It protects data whether it’s sitting in storage or moving between systems. If attackers get in, encrypted data is useless without the keys. Most cloud platforms offer built-in encryption. But don’t rely only on that. You can manage your own keys with tools like AWS KMS or Azure Key Vault. That gives you more control. To stay safe: Encrypt both at rest and in transit. Avoid default settings. Rotate encryption keys regularly. 6. Monitor in Real Time Security is not a one-time task. You need to watch your systems around the clock. Set alerts for things like large file downloads, unusual logins, or traffic spikes. Centralized monitoring helps a lot. It pulls logs from all your platforms and tools into one place. That way, your security team isn’t flipping between dashboards when something goes wrong. Also, use automation to filter out noise and surface real threats faster. 7. Set Up Regular Audits and Compliance Checks Multi-cloud setups are great for flexibility, but complex when it comes to compliance. Each platform has its own set of controls and certifications. Managing them all can be overwhelming. That’s why audits matter. Run security checks on a regular schedule—monthly, quarterly, or after every major change. Look for misconfigured permissions, missing patches, or unsecured data. And document everything. Also, make sure your tools help meet regulations like GDPR, HIPAA, or PCI DSS. Automated compliance scans can help stay on top of this. 8. Prevent Data Loss with Smart Policies Sensitive data is always at risk. Employees might share it by mistake. Attackers might try to steal it. That’s where Data Loss Prevention (DLP) comes in. DLP tools block unauthorized sharing of personal data, financial records, or internal files. You can create rules like “Don’t send customer SSNs over email” or “Block uploads of credit card data to personal drives.” DLP also supports compliance and helps avoid lawsuits or fines when accidents happen. 9. Automate Where You Can Manual work slows things down, and mistakes happen. That’s why automation is key in cloud security. Automate things like: Patch management Access reviews Backup schedules Security alerts Automation speeds up your response time. It also frees your security team to focus on serious issues, not routine tasks. 10. Centralized Security Control One major downside of multi-cloud isa lack of visibility. If you’re jumping between different tools for each cloud, you miss things. Instead, use a centralized security management system. It collects data from all clouds, shows risk levels, flags issues, and helps you fix them from one place. This unified view makes a huge difference. It helps you react faster and stay ahead of threats. Final Thought Cloud providers have made data storage and computing easier than ever. But with great power comes risk. Using multiple clouds gives more choice, but also more responsibility. Most businesses today are not ready. Only 15% have a mature multi-cloud security plan, says the 2023 Cisco Cyber Security Readiness Index. That means many are exposed. The good news? You can fix this. Start with simple steps. Know what you use. Lock it down. Watch it closely. Keep improving. And above all, treat cloud security not as a technical box to check, but as something critical to your business. Because in today’s world, a single breach can shut you down. And that’s too big a risk to ignore.

Get the Popular Science daily newsletter💡 Breakthroughs, discoveries, and DIY tips sent every weekday. Probiotics are everywhere, claiming to help us poop, restore gut health, and more. They can also be used to help threatened coral reefs. A bacterial probiotic has helped slow the spread of stony coral tissue loss disease (SCTLD) in wild corals in Florida that were already infected with the disease. The findings are detailed in a study published June 5 in the journal Frontiers in Marine Science and show that applying this new probiotic treatment across coral colines helped prevent further tissue loss. What is stony coral tissue loss disease (SCTLD)? SCTLD first emerged in Florida in 2014. In the 11 years since, it has rapidly spread throughout the Caribbean. This mysterious ailment has been confirmed in at least 20 other countries and territories. Other coral pathogens typically target specific species. SCTLD infects more than 30 different species of stony corals, including pillar corals and brain corals. The disease causes the soft tissue in the corals to slough off, leaving behind white patches of exposed skeleton. The disease can devastate an entire coral colony in only a few weeks to months.  A great star coral (Montastraea cavernosa) colony infected with stony coral tissue lossdisease (SCTLD) on the coral reef in Fort Lauderdale, FL. The lesion, where the white band of tissue occurs, typically moves across the coral, killing coral tissue along the way. CREDIT: KellyPitts, Smithsonian. The exact cause of SCTLD is still unknown, but it appears to be linked to some kind of harmful bacteria. Currently, the most common treatment for SCTLD is using a paste that contains the antibiotic amoxicillin on diseased corals. However, antibiotics are not a silver bullet. This amoxicillin balm can temporarily halt SCTLD’s spread, but it needs to be frequently reapplied to the lesions on the corals. This takes time and resources, while increasing the likelihood that the microbes causing SCTLD might develop resistance to amoxicillin and related antibiotics. “Antibiotics do not stop future outbreaks,” Valerie Paul, a study co-author and the head scientist at the Smithsonian Marine Station at Fort Pierce, Florida, said in a statement. “The disease can quickly come back, even on the same coral colonies that have been treated.” Finding the right probiotic Paul and her colleagues have spent over six years investigating whether beneficial microorganisms (aka probiotics) could be a longer lasting alternative to combat this pathogen. Just like humans, corals are host to communities known as microbiomes that are bustling with all different types of bacteria. Some of these miniscule organisms produce antioxidants and vitamins that can help keep their coral hosts healthy.  First, the team looked at the microbiomes of corals that are impervious to SCTLD to try and harvest probiotics from these disease-resistant species. In theory, these could be used to strengthen the microbiomes of susceptible corals.  They tested over 200 strains of bacteria from disease-resistant corals and published a study in 2023 about the probiotic Pseudoalteromonas sp. McH1-7 (or McH1-7 for short). Taken from the great star coral (Montastraea cavernosa), this probiotic produces several antibacterial compounds. Having such a stacked antibacterial toolbox made McH1-7 an ideal candidate to combat a pathogen like SCTLD. They initially tested McH1-7 on live pieces of M. cavernosa and found that the probiotic reliably prevented the spread of SCTLD in the lab. After these successful lab tests, the wild ocean called next. Testing in the ocean The team conducted several field tests on a shallow reef near Fort Lauderdale, focusing on 40 M. cavernosa colonies that showed signs of SCTLD. Some of the corals in these colonies received a paste containing the probiotic McH1-7 that was applied directly to the disease lesions. They treated the other corals with a solution of seawater containing McH1-7 and covered them using weighted plastic bags. The probiotics were administered inside the bag in order to cover the entire coral colony.   “This created a little mini-aquarium that kept the probiotics around each coral colony,” Paul said. For two and a half years, they monitored the colonies, taking multiple rounds of tissue and mucus samples to see how the corals’ microbiomes were changing over time. They found that  the McH1-7 probiotic successfully slowed the spread of SCTLD when it was delivered to the entire colony using the bag and solution method. According to the samples, the probiotic was effective without dominating the corals’ natural microbes.  Kelly Pitts, a research technician with the Smithsonian Marine Station at Ft. Pierce, Floridaand co-lead author of the study treats great star coral (Montaststraea cavernosa) colonies infected with SCTLD with probiotic strain McH1-7 by covering the coral colony in a plastic bag, injecting a probiotic bacteria solution into the bag and leaving the bag for two hours to allow for the bacteria to colonize on the coral. CREDIT: Hunter Noren. Fighting nature with nature While using this probiotic appears to be an effective treatment for SCTLD among the reefs of northern Florida, additional work is needed to see how it could work in other regions. Similar tests on reefs in the Florida Keys have been conducted, with mixed preliminary results, likely due to regional differences in SCTLD. The team believes that probiotics still could become a crucial tool for combatting SCTLD across the Caribbean, especially as scientists fine tune how to administer them. Importantly, these beneficial bacteria support what corals already do naturally.  “Corals are naturally rich with bacteria and it’s not surprising that the bacterial composition is important for their health,” Paul said. “We’re trying to figure out which bacteria can make these vibrant microbiomes even stronger.”