The Nintendo Switch 2 is finally a thing you can buy in the US — or at least, a thing you can try to buy. The $450 console officially went up for sale at midnight ET on June 5, with numerous retailers offering the device both online and in-store. Predictably, online stock dried up fairly quickly and remains highly limited as of Thursday evening. Broadly speaking, it appears people have had a bit more luck by heading to a physical retail store. There’s still no guarantee that you’ll be able to snag one that way, but a couple of Engadget staffers managed to grab a Switch 2 on Thursday at their local Target and GameStop, even with no pre-order in place.  If you can’t find the device out in the wild, your next best chance to get the Switch 2 online looks to be via Target. The retailer says it’ll resume selling the console online in the “early morning” on Friday, June 6, though it hasn’t confirmed an exact time beyond that. To make things a little easier for those still on the hunt, we’re rounding up all of the information we can find on how to buy the Nintendo Switch 2 at launch and tracking any restocks that pop up. Where to buy the Nintendo Switch 2 Walmart opened up online purchases at midnight on June 5, but both the console alone and Nintendo's Mario Kart World bundle remain out of stock as of our latest update. Naturally, the world's largest retailer is also selling the console at its brick-and-mortar locations. The company has noted that quantities are limited and inventory will vary by location, but it's worth checking if any store near you still has devices available. Target began selling the Switch 2 in stores on June 5. The retailer has warned that supply will be limited, but some stores still appear to have the console in stock as of Thursday evening, so it's worth looking into the locations closest to you. Anecdotally, Engadget's Billy Steele was able to pick up the device at a Target just outside of Greensboro, North Carolina as late as 4:15pm ET on Thursday. The company says it'll restock its online inventory in the "early morning" on Friday, June 6, while supplies last. That may be the next best opportunity to secure the Switch 2 without going to a store. GameStop held launch events on Wednesday and is advertising in-store availability, though again this will vary by location. Engadget's Cherlynn Low was able to buy the console without a pre-order at a GameStop store in the New York City area on Thursday morning. That particular location had a little under 80 units available, but its manager told Low that inventory will differ at other stores based on population. As we write this, the device is unavailable on GameStop's website. A $625 bundle that includes Mario Kart World, a microSD Express card and a few other accessories has been in and out of stock more frequently than the standard SKUs, though it's sold out now (and kind of scummy anyway). We briefly saw it pop back up around 2:30pm ET, so it may be one to bookmark if you can stomach the extra cost. The listings for the base console and Mario Kart bundle, meanwhile, now point to a "Find a Store" page. Best Buy held in-store launch events at midnight and said it'd have limited stock at its retail locations starting June 5. It is not selling the console online during launch week, however. You may also have some luck at certain membership-based retailers. A Mario Kart World bundle at Costco that includes a 12-month Switch Online membership has gone in and out of stock, while Sam's Club has had a bundle without the Switch Online sub available as well. You'll need a membership to check on either of those, though. We've also seen online stock at BJ's, but those listings are unavailable as of our most recent update. Verizon briefly had the Switch 2 available on Thursday morning, but that's dried up, and only those with Verizon service were able to order. As of now, Amazon is the only major retailer that doesn't have some form of Switch 2 listing on its website. The company didn't take any pre-orders for the Switch 2 either, so it's unclear if and when it will sell the device. Newegg has listed the Switch 2 on its site for several weeks, but it hasn't started sales yet.  With all of these stores, we've generally seen the Mario Kart World bundle available in greater quantities online than the base console, which costs $50 less. But considering Mario Kart is the Switch 2's biggest launch game and retails for $80 on its own, that may not be the worst thing. Nintendo, meanwhile, is still only selling the Switch 2 via an invite system. This requires you to have been a Switch Online member for at least 12 months and logged at least 50 hours of Switch 1 playtime as of April 2. It can't hurt to put your name on the list if you meet that criteria, but don't expect it to bear fruit anytime soon — several people who registered in April still haven't received an invite, and shipments haven't gone out yet for many of those who did order (including yours truly). You can find a list of every Switch 2 retail listing we could find below. Just be aware that this is meant to be a reference, not a rundown of everywhere the device is available right this second. Where to buy Switch 2 + Mario Kart World bundle: Walmart GameStop GameStop ($625 bundle with various accessories) Best Buy Target Costco (membership required) Sam's Club (membership required) BJ's (membership required) Verizon (service required) Where to buy Switch 2: Walmart GameStop Best Buy Target BJ's (membership required) Verizon (service required) Where to buy Nintendo Switch 2 games and accessories Nintendo is also selling a bunch of new accessories for the Switch 2, most of which became available on June 5 alongside the console. The same thing goes for games such as Mario Kart World and the Switch 2 edition of The Legend of Zelda: Tears of the Kingdom. Another big Switch 2 title, Donkey Kong Bananza, won't be available until mid-July, though you can still pre-order it today. As of Thursday evening, just about all Switch 2 games remain widely available. Stock for the accessories is a little patchier, but most devices are generally in stock at certain retailers. Note that you'll need to have received an invite to purchase most accessories at Nintendo's online store. Mario Kart World ($80) Nintendo Walmart GameStop Best Buy Target Donkey Kong Bananza ($70) Nintendo Walmart GameStop Best Buy Target Costco (membership required) Additional Switch 2 games Nintendo Amazon Walmart GameStop Best Buy Target Samsung microSD Express Card (256GB) for Nintendo Switch 2 ($60) Nintendo (invite required) Walmart GameStop Best Buy Target Amazon Joy-Con 2 bundle ($95) Nintendo (invite required) Walmart GameStop Best Buy Target Switch 2 Pro Controller ($85) Nintendo (invite required) Walmart GameStop Best Buy Target Costco ($75, membership required) Switch 2 Camera ($55) Nintendo (invite required) Walmart GameStop Best Buy Target Hori Nintendo Switch 2 Piranha Plant Camera ($60) Best Buy Target Amazon Joy-Con 2 Charging Grip ($40) Nintendo (invite required) Walmart GameStop Best Buy Target Joy-Con 2 Wheels (set of 2) ($25) Nintendo (invite required) Walmart GameStop Best Buy Target Switch 2 All-in-One Carrying Case ($85) Nintendo (invite required) Walmart GameStop Best Buy Target Switch 2 Carrying Case and Screen Protector ($40) Nintendo (invite required) Walmart GameStop Best Buy Target Nintendo Switch 2 Dock Set ($120) Nintendo (account required) This article originally appeared on Engadget at https://www.engadget.com/gaming/nintendo/how-to-buy-the-nintendo-switch-2-current-in-stock-availability-on-consoles-and-games-120039522.html?src=rss

Update, 5/29/25: The Nintendo Switch 2 will launch soon on June 5. Pre-order advice currently remains the same, which is to say that you probably won't be able to pre-order the console before launch day anymore, since all retailers still list it as either "unavailable" or "coming soon." Now, it's all about launch-day logistics. A number of retailers, including Best Buy, plan to open some stores early on June 5 and have stock available for customers to purchase on site. If you didn't manage to get a pre-order in already, your best bet may be to go to a local Best Buy, Walmart, Target or GameStop on June 5 to see if you can walk out with a new console that day.  Nintendo Switch 2 pre-orders are officially live at Nintendo's online store — but only if you've received an invite. As advertised, the My Nintendo Store began sending out Switch 2 pre-order invites on Thursday to those who previously registered their interest and meet the company's "priority criteria." If you've been chosen, congratulations! You have 72 hours from the time your email was sent to complete your purchase. If you previously signed up but haven't received a notice, well, we'll have to see when exactly it'll arrive. Nintendo has been accepting registrations since April 2, and it's sending invites to past Switch players and Switch Online subscribers before anyone else.  If you meet the priority requirements and signed up on the earlier side, you should (hopefully) get your invite before most others. If you signed up later, don't be surprised if it takes awhile for Nintendo to grace your inbox. The company warned last month that it may not be able to send all invites — or even deliver all orders that do get placed — before the Switch 2's June 5 release date. Beyond Nintendo, the song sadly remains the same. As of our latest check, the device remains fully sold out at Walmart, GameStop, Best Buy, Target and other retailers. This has mostly been the case in the US since the Switch 2 first went up for sale on April 24, and it remains unclear when it'll change. That said, we're keeping an eye out for any surprise restocks that pop up. If you're still hoping to get your hands on the device early, we've rounded up all the Switch 2 pre-order listings we could find for easy access and broken down what to know about buying the console.   How to pre-order the Nintendo Switch 2 at the My Nintendo Store As noted above, Nintendo is only selling the Switch 2 through an invite system, which began on April 2. While it seems unlikely you'll receive your console before launch day if you sign up with Nintendo now, we still recommend doing so in case stock remains low at other stores. Registration is free, and you'll receive your invite eventually, even if it takes some time. On that point, Nintendo says it is prioritizing invites "on a first-come, first-served basis" to registrants who meet the following criteria: You must have purchased a Switch Online membership as of April 2, 2025. If you've only ever been part of a family plan and weren't the paying account, that's a no-go. You must have been a paid Switch Online subscriber for at least 12 months as of April 2, 2025. You must have logged at least 50 hours of total Switch gameplay time as of April 2, 2025. You must have opted into sharing gameplay data with Nintendo as of April 2, 2025. You can confirm this in your account's privacy settings. You must be a Nintendo account holder who is at least 18 years old. If you fulfill those requirements, you'll be ahead in Nintendo's invite queue. If not, you'll have to wait until after the priority registrants receive their emails. Once they do, the remaining invites will go out on a first-come, first-served basis. Whenever you get your email, you'll have a 72-hour window to buy.  As with other stores, you have two models to pick from: the base Switch 2 console for $450, and a bundle with Mario Kart World for $500. Note that you can only purchase one console per invite. You'll also be able to pick up certain accessories when it's your time to shop.  Pre-order Nintendo Switch 2 Nintendo Pre-order Nintendo Switch 2 + Mario Kart World bundle Nintendo We received our invite late Thursday evening after signing up about an hour after the registration window first opened. We've posted screenshots of what the official invite email and buying process looks like below. (A previous version of this guide linked to screenshots from Reddit and the gaming forum ResetEra, but one ResetEra user appears to have shared a fake invite, so we've removed that.) Broadly speaking, the experience is far less chaotic than it's been at other stores. Our confirmation email says that our console will ship by June 4. How to pre-order the Nintendo Switch 2 at other retailers Unfortunately, the Switch 2 remains sold out everywhere else as of this writing. To recap the situation: After a two-week delay, Nintendo finally kicked off Switch 2 pre-orders at third-party retailers in the US and Canada at midnight ET on April 24. A couple of (headache-inducing) hours later, stock at Walmart, Target and Best Buy had sold out. GameStop began taking pre-orders later that morning but quickly met the same fate. Some eagle-eyed buyers were reportedly able to pre-order through Walmart as late as April 26, but things have dried up since. Other membership-based retailers like Costco and Sam's Club have Switch 2 listings as well, but we haven't seen anything to suggest they will accept pre-orders. Newegg also has a Switch 2 page but hasn't provided an option to buy just yet. As for Amazon, we assume the Switch 2 will eventually be available there, but it's not today, and there's been no indication as to when that might change. (Even before the Switch 2 was unveiled, stock of the original Switch and first-party Switch games had been limited at Amazon US for several months.) If you're desperate to catch a restock, it's a good idea to create a free account with the retailers above and ensure all of your shipping and billing info is up to date with each. Downloading each store's mobile app and signing up for notifications may help too, though that could get annoying fairly quickly.  Pre-order Nintendo Switch 2 Walmart GameStop Best Buy Target Amazon* Pre-order Nintendo Switch 2 + Mario Kart World bundle Walmart GameStop Best Buy Target Amazon* *As of 1:15pm ET on Friday, May 9, Amazon has not listed either Switch 2 console package for sale. We will update this article with direct links if they arrive; until then, we're linking to the site's Nintendo-focused hub. How to pre-order Switch 2 accessories and games Naturally, there are numerous accessories and games up for pre-order alongside the Switch 2 itself. While Nintendo hasn't changed the console's price since delaying its initial pre-order date, it has hiked the cost of several accessories due to "changes in market conditions" (read: tariffs). The new Switch 2 camera, for instance, now costs $55 instead of its original $50, while the Switch 2 Pro Controller leapt from $80 to $85. An extra set of Joy-Con 2 controllers is up to $95 from $90, and the official Joy-Con Charging Grip costs $40 instead of $35. Most (but not all) of Nintendo's official Switch 2 accessories are still up for grabs at one or two retailers at a minimum, but stock has become spottier since they first went up for sale. Upcoming Switch 2 games like Mario Kart World and Donkey Kong Bananza, meanwhile, remain widely available. Mario Kart World for $80 Nintendo Walmart GameStop Best Buy Target Amazon* Donkey Kong Bananza for $70 Nintendo Walmart GameStop Best Buy Target Amazon* Additional Switch 2 games Nintendo Walmart GameStop Best Buy Target Amazon Samsung microSD Express Card (256GB) for Nintendo Switch 2 for $60 Nintendo Walmart GameStop Best Buy Target Amazon Joy-Con 2 bundle for $95 Nintendo Walmart GameStop Best Buy Target Amazon* Switch 2 Pro Controller for $85 Nintendo Walmart GameStop Best Buy Target Amazon* Switch 2 Camera for $55 Nintendo Walmart GameStop Best Buy Target Amazon* Hori Nintendo Switch 2 Piranha Plant Camera for $60 Best Buy Target Amazon Joy-Con 2 Charging Grip for $40 Nintendo Walmart GameStop Best Buy Target Amazon* Joy-Con 2 Wheels (set of 2) for $25 Nintendo Walmart GameStop Best Buy Target Amazon* Switch 2 All-in-One Carrying Case for $85 Nintendo Walmart GameStop Best Buy Target Amazon* Switch 2 Carrying Case and Screen Protector for $40 Nintendo Walmart GameStop Best Buy Target Amazon* *As of 1:15pm ET on Friday, May 9, Amazon has not listed any first-party Switch 2 accessories or games for sale. (Some third-party devices and games are listed, however.) We'll update this article with direct links if they arrive; until then, we're linking to the site's Nintendo-focused hub. More Switch 2 details The Nintendo Switch 2. Sam Rutherford for Engadget We knew from its initial teaser trailer that the Switch 2 would be bigger than its predecessor and take a new approach to its detachable Joy-Cons. The Joy-Con 2s, as they're called, now attach magnetically and include a C button, mouse controls and a built-in gyroscope for tilt control. The console itself is indeed larger, with a 7.9-inch LCD screen that supports a 1080p resolution, a variable refresh rate up to 120Hz and HDR10. The hardware also has a built-in mic to support a new feature called GameChat that'll let you communicate with friends in-game. (This is what that C button is for.) Nintendo says this service will be free to all Switch 2 users until March 31, 2026, at which point it'll require a Switch Online membership. When docked, you'll be able to play up to 4K on your TV. Nintendo says it's improved the consoles internal speakers as well. The updated dock has a built-in fan to keep the console cool and help maintain performance during long play sessions. Though we won't know exactly how much of a power upgrade the Switch 2 is over to the first Switch until it's released, it looks to be fairly significant leap, given that it'll have ports of relatively demanding games like Elden Ring and Cyberpunk 2077. Elsewhere, the Switch 2 has dual USB-C ports for charging, while the internal storage amount has jumped from 32GB to 256GB. That storage is still expandable, but the device will only work with newer (and more expensive) microSD Express cards. As seen in the recent 20.0.0 update for the original Switch, the upcoming console will also utilize Nintendo's new Virtual Game Card system for lending digital games across systems, as well as a GameShare feature that lets you share select titles locally with just one copy of a game. Tariffs and the Nintendo Switch 2 The Nintendo Switch 2's Joy-Con 2 controllers. Sam Rutherford for Engadget During its most recent Direct presentation at the start of April, Nintendo showed off more of the Switch 2 than it ever had before. That included the reveal of its original April 9 pre-order date, in addition to its $450 starting price. Shortly after, President Trump announced sweeping tariffs on China and other countries, prompting Nintendo to delay pre-orders in the US and Canada. In a reversal, President Trump later announced a 90-day pause on steep tariffs affecting 75 countries, but also announced that the tariff imposed on China will go up even further (right now, it sits at 145 percent). We now know that the original $450 price for the Switch 2 will remain the same in the US and Canada, but based on its official statement, it appears Nintendo is leaving the door open for potential future price increases. We also know that Nintendo started moving some of its Switch console manufacturing to Vietnam in 2019. The increased tariff for Vietnam was set to be 46 percent, but that's temporarily on hold in favor of a 10 percent tariff that’s in effect for the 90-day pause period. It has been speculated that Nintendo will boost production of Switch 2 consoles in Vietnam so it can stay on schedule, even if it sells the console at a loss in the short term. It appears the company will have to seriously ramp up production to keep up with Switch 2 demand: According to Nintendo, 2.2 million people entered the pre-order lottery in Japan alone, which is far more devices than it is expected to deliver in that region on launch day. In total, the company projects it will sell 15 million Switch 2 units through March 2026. This article originally appeared on Engadget at https://www.engadget.com/gaming/nintendo/nintendo-switch-2-pre-order-updates-ahead-of-the-june-5-launch-date-140931884.html?src=rss

ExpressVPN is good at its job. It's easy to be skeptical of any service with a knack for self-promotion, but don't let ExpressVPN's hype distract you from the fact that it keeps its front-page promise of "just working." Outside of solid security, the two best things ExpressVPN offers are fast speeds and a simple interface. Our tests showed only a 7% average drop in download speed and a 2% loss of upload speed, worldwide. And while the lack of extra features may frustrate experienced users, it makes for a true set-and-forget VPN on any platform. This isn't to say ExpressVPN is without flaws — it's nearly bereft of customization options and it's notably more expensive than its competition — but it beats most VPNs in a head-to-head matchup. For this review, we followed our rigorous 10-step VPN testing process, exploring ExpressVPN's security, privacy, speed, interfaces and more. Whether you read straight through or skip to the sections that are most important for you, you should come away with all the information you need to decide whether to subscribe. Editors' note: We're in the process of rebooting all of our VPN reviews from scratch. Once we do a fresh pass on the top services, we'll be updating each review with a rating and additional comparative information. Table of contents Findings at a glance Installing, configuring and using ExpressVPN ExpressVPN speed test: Very fast averages ExpressVPN security test: Checking for leaks How much does ExpressVPN cost? ExpressVPN side apps and bundles Close-reading ExpressVPN's privacy policy Can ExpressVPN change your virtual location? Investigating ExpressVPN's server network Extra features of ExpressVPN ExpressVPN customer support options ExpressVPN background check: From founding to Kape Technologies Final verdict Findings at a glance Category Notes Installation and UI All interfaces are clean and minimalist, with no glitches and not enough depth to get lost in Windows and Mac clients are similar in both setup and general user experience Android and iOS are likewise almost identical, but Android has a nice-looking dark mode Speed Retains a worldwide average of 93% of starting download speeds Upload speeds average 98% of starting speeds Latency rises with distance, but global average stayed under 300 ms in tests Security OpenVPN, IKEv2 and Lightway VPN protocols all use secure ciphers Packet-sniffing test showed working encryption We detected no IP leaks Blocks IPv6 and WebRTC by default to prevent leaks Pricing Base price: $12.95 per month or $99.95 per year Lowest prepaid rate: $4.99 per month Can save money by paying for 28 months in advance, but only once per account 30-day money-back guarantee Bundles ExpressVPN Keys password manager and ID alerts included on all plans Dedicated IP addresses come at an extra price ID theft insurance, data removal and credit scanning available to new one-year and two-year subscribers for free 1GB eSIM deal included through holiday.com Privacy policy No storage of connection logs or device logs permitted The only risky exceptions are personal account data (which doesn't leave the ExpressVPN website) and marketing data (which the policy says should be anonymized) An independent audit found that ExpressVPN's RAM-only server infrastructure makes it impossible to keep logs Virtual location change Successfully unblocked five international Netflix libraries, succeeding on 14 out of 15 attempts Server network 164 server locations in 105 countries 38% of servers are virtual, though most virtual locations are accessed through physical servers within 1,000 miles A large number of locations in South America, Africa and central Asia Features Simple but effective kill switch Can block ads, trackers, adult sites and/or malware sites but blocklists can't be customized Split tunneling is convenient but unavailable on iOS and modern Macs Aircove is the best VPN router, albeit expensive Customer support Setup and troubleshooting guides are organized and useful, with lots of screenshots and videos Live chat starts with a bot but you can get to a person within a couple minutes Email tickets are only accessible from the mobile apps or after live chat has failed Background check Founded in 2009; based in the British Virgin Islands Has never been caught selling or mishandling user data Turkish police seized servers in 2017 but couldn't find any logs of user activity Owned by Kape Technologies, which also owns CyberGhost and Private Internet Access A previous CIO formerly worked on surveillance in the United Arab Emirates; no evidence of shady behavior during his time at ExpressVPN Windows Version 12 leaked some DNS requests when Split Tunneling was active Installing, configuring and using ExpressVPN This section focuses on how it feels to use ExpressVPN on each of the major platforms where it's available. The first step for any setup process is to make an account on expressvpn.com and buy a subscription. Windows Once subscribed, download the Windows VPN from either expressvpn.com or the Microsoft Store, then open the .exe file. Click "Yes" to let it make changes, wait for the install, then let your computer reboot. Including the reboot, the whole process takes 5-10 minutes, most of it idle. To finish, you'll need your activation code, which you can find by going to expressvpn.com and clicking "Setup" in the top-right corner. You can install ExpressVPN's Windows app from the Microsoft store, but we found the website more convenient. Sam Chapman for Engadget Extreme simplicity is the watchword for all ExpressVPN's designs. The Windows client's launch panel consists of three buttons and less than ten words. You can change your location or let the app pick a location for you — the "Smart Location" is the server with the best combination of being nearby and unburdened. Everything else is crammed into the hamburger menu at the top left. Here, in seven tabs, you'll find the Network Lock kill switch, the four types of content blockers, the split tunneling menu and the option to change your VPN protocol. You can also add shortcuts to various websites, useful if you regularly use your VPN for the same online destinations. To sum up, there's almost nothing here to get in the way: no delays, no snags, no nested menus to get lost in. It may be the world's most ignorable VPN client. That's not a bad thing at all. Mac ExpressVPN's app for macOS is almost identical in design to its Windows app. The process for downloading and setting it up is nearly the same too. As on Windows, it can be downloaded from the App Store or sideloaded directly from the expressvpn.com download center. Only a few features are missing and a couple others have been added. Split tunneling is gone (unless you're still on a macOS lower than 11), and you won't see the Lightway Turbo setting. ExpressVPN recommends some servers, but it's easy to search the whole list. Sam Chapman for Engadget Mac users do gain access to the IKEv2 protocol, along with the option to turn off automatic IPv6 blocking — Windows users have to leave it blocked at all times. Almost every website is still accessible via IPv4, but it's useful if you do need to access a specific IPv6 address while the VPN is active. Android Android users can download ExpressVPN through the Google Play Store. Open the app, sign in and you're ready to go. The Android app has a very nice dark-colored design, only slightly marred by an unnecessary information box about how long you've used the VPN this week. ExpressVPN's Android app puts a little more information on the screen than it needs to, but still runs well. Sam Chapman for Engadget There's a large button for connecting. Clicking on the server name takes you to a list of locations. On this list, you can either search or scroll and can choose individual locations within a country that has more than one. We connected to as many far-flung server locations as we could, but not a single one took longer than a few seconds. The options menu is organized sensibly, with no option located more than two clicks deep. You will see a couple of options here that aren't available on desktop, the best of which is the ability to automatically connect to your last-used ExpressVPN server whenever your phone connects to a non-trusted wifi network. There are also a few general security tools: an IP address checker, DNS and WebRTC leak testers and a password generator. These are also available on the website, but here, they're built into the app. With the exception of the latter, we'd recommend using third-party testing tools instead — even a VPN with integrity has an incentive to make its own app look like it's working. iPhone and iPad You can only install ExpressVPN's iOS app through the app store. During setup, you may need to enter your password to allow your phone to use VPN configurations. Otherwise, there are no major differences from the Android process. ExpressVPN looks good on iPhone and iPad. Sam Chapman for Engadget The interface is not quite as pleasing as the dark-mode Android app, but it makes up for that by cutting out some of the clutter. The tabs and features are similar, though split tunneling and shortcuts are absent. Also, both mobile apps make customer support a lot more accessible than their desktop counterparts — plus, mobile is the only way to send email support tickets. Browser extension ExpressVPN also includes browser extensions for Firefox and Chrome. These let you connect, disconnect and change server locations without leaving your browser window. It's nice, but not essential unless you have a very specific web browser flow you like. ExpressVPN speed test: Very fast averages Connecting to a VPN almost always decreases your speed, but the best VPNs mitigate the drop as much as possible. We used Ookla's speed testing app to see how much of your internet speed ExpressVPN preserves. For this test, we emphasized the locations ExpressVPN uses for most of its virtual servers, including the Netherlands, Brazil, Germany and Singapore. Some terms before we start: Latency, measured in milliseconds (ms), is the time it takes one data packet to travel between your device and a web server through the VPN. Latency increases with distance. It's most important for real-time tasks like video chatting and online gaming. Download speed, measured in megabits per second (Mbps), is the amount of information that can download onto your device at one time — such as when loading a web page or streaming a video. Upload speed, also measured in Mbps, is the amount of information your device can send to the web at once. It's most important for torrenting, since the amount of data you can seed determines how fast you can download in exchange. The table below shows our results. We conducted this on Windows, using the automatic protocol setting with the Lightway Turbo feature active — a recent ExpressVPN addition that keeps speed more consistent by processing connections in parallel. Server location Latency (ms) Increase factor Download speed (Mbps) Percentage dropoff Upload speed (Mbps) Percentage dropoff Portland, Oregon, USA (unprotected) 18 -- 58.77 -- 5.70 -- Seattle, Washington, USA (best server) 26 1.4x 54.86 6.7% 5.52 3.2% New York, NY, USA 156 8.7x 57.25 2.6% 5.57 2.3% Amsterdam, Netherlands 306 17x 53.83 8.4% 5.58 2.1% São Paulo, Brazil 371 20.6x 53.82 8.4% 5.65 0.9% Frankfurt, Germany 404 22.4x 55.71 5.2% 5.67 0.5% Singapore, Singapore 381 21.2x 52.76 10.2% 5.64 1.0% Average 274 15.2x 54.71 6.9% 5.61 1.6% These are extremely good results. ExpressVPN is a winner on both download and upload speed. No matter where we went in the world, we never lost more than about 7% of our download speeds, and upload lost an astoundingly low average of 2%. This suggests that ExpressVPN deftly distributes its user load between servers to eliminate bottlenecks. This Ookla speedtest shows you can still get fast internet while connected to ExpressVPN -- our unprotected speeds are around 58 Mbps. Sam Chapman for Engadget The latency numbers look worse, but the rise in the table is less sharp than we projected. Ping length depends far more on distance than download speed does, so we expect it to shoot up on servers more than 1,000 miles from our location. Keeping the average below 300 ms, as ExpressVPN does here, is a strong showing. ExpressVPN security test: Checking for leaks A VPN's core mission is to hide your IP address and make you untraceable online. Our task in this section is to figure out if ExpressVPN can carry out this mission every time you connect. While we can't be 100% certain, the tests we'll run through below have led us to believe that ExpressVPN is currently leak-proof. Available VPN protocols A VPN protocol is like a common language that a VPN server can use to mediate between your devices and the web servers you visit. If a VPN uses outdated or insecure protocols, or relies on unique protocols with no visible specs or source code, that's a bad sign. Not all protocols are available on all apps, but Mac has the full range. Sam Chapman for Engadget ExpressVPN gives you a selection of three protocols: IKEv2, OpenVPN and Lightway. The first two are solid choices that support the latest encryption algorithms. OpenVPN has been fully open-source for years and is the best choice if privacy is your goal. While IKEv2 started life as a closed project by Microsoft and Cisco, ExpressVPN uses an open-source reverse-engineering, which is both better for privacy and quite fast. Lightway is the odd one out, a protocol you'll only find on ExpressVPN, though its source code is available on Github. It's similar to WireGuard, in that both reach for faster speeds and lower processing demands by keeping their codebases slim. However, Lightway was recently rewritten in Rust to better protect the keys stored in its memory. Ultimately, you can't go wrong with any of ExpressVPN's protocol options. 99% of the time, your best choice will be to set the controls to Automatic and let the VPN decide which runs best. Testing for leaks ExpressVPN is one of the best services, but it's not leak-proof (as you can read in the Background Check below). Luckily, checking for DNS leaks is a simple matter of checking your IP address before and after connecting to a VPN server. If the new address matches the VPN server, you're good; if not, your VPN is leaking. First, we checked the Windows app with split tunneling active to ensure the flaw really had been patched. We tested several servers and didn't find any leaks, which suggests the patch worked, though leaks were rare even before ExpressVPN fixed the vulnerability. We checked our IP while connected to the virtual India location, which is run from a physical server in Singapore. Don't worry -- it still looks like India to streaming services. Sam Chapman for Engadget In fact, we didn't find any leaks on any ExpressVPN server we tested on any platform. Though questions remain about iOS, as you'll see later in this section, that's a problem on Apple's end that even the best VPNs can do very little about for now. The most common cause of VPN leaks is the use of public DNS servers to connect users to websites, which can mistakenly send browsing activity outside the VPN's encrypted tunnel. ExpressVPN avoids the risks of the public system by installing its own DNS resolvers on every server. This is the key factor behind its clean bill of health in our leak testing. Two other common flaws can lead to VPN leaks: WebRTC traffic and IPv6. The former is a communication protocol used in live streaming and the latter is a new IP standard designed to expand domain availability. Both are nice, but currently optional, so ExpressVPN automatically blocks both to ensure there's no opportunity for leaks to arise. One note about VPN security on iOS: it's a known and continuing problem that iOS VPNs do not prevent many online apps from communicating with Apple directly, outside the VPN tunnel. This risks leaking sensitive data, even with Lockdown Mode active in iOS 16. A blog post by Proton VPN shares a workaround: connect to a VPN server, then turn Airplane Mode on and off again to end all connections that were active before you connected to the VPN. Testing encryption We finished up our battery of security tests by checking out ExpressVPN's encryption directly. Using WireShark, a free packet sniffer, we inspected what it looks like when ExpressVPN transmits data from one of its servers to the internet. The screenshot below shows a data stream encrypted with Lightway UDP. After connecting to ExpressVPN, HTTP packets were rendered unreadable while in transit. Sam Chapman for Engadget That lack of any identifiable information, or even readable information, means encryption is working as intended. We repeated the test several times, always getting the same result. This left us satisfied that ExpressVPN's core features are working as intended. How much does ExpressVPN cost? ExpressVPN subscriptions cost $12.95 per month. Long-term subscriptions can bring the monthly cost down, but the great deals they offer tend to only last for the first billing period. A 12-month subscription costs $99.95 and includes three months for free with your first payment, costing a total of $6.67 per month. The bonus disappears for all subsequent years, raising the monthly cost to $8.33. You can also sign up for 28 months at a cost of $139.72, but this is also once-only — ExpressVPN can only be renewed at the $99.95 per year level. There are two ways to test ExpressVPN for free before making a financial commitment. Users on iOS and Android can download the ExpressVPN app without entering any payment details and use it free for seven days. On any platform, there's a 30-day money-back guarantee, which ExpressVPN has historically honored with no questions asked. You will have to pay before you can use it, though. In our opinion, ExpressVPN's service is solid enough that it's worth paying extra. Perhaps not this much extra, but that depends on what you get out of it. We recommend using the 30-day refund period and seeing how well ExpressVPN works for you. If it's a VPN you can enjoy using, that runs fast and unblocks everything you need, that's worth a server's weight in gold. ExpressVPN side apps and bundles ExpressVPN includes some special features that work mostly or wholly separate from its VPN apps. Some of these come free with a subscription, while others add an extra cost. Every subscription includes the ExpressVPN keys password manager. This is available under its own tab on the Android and iOS apps. On desktop, you'll need to download a separate extension from your browser's store, then sign in using your account activation code. It's available on all Chromium browsers, but not Firefox. Starting in 2025, new subscribers get an eSIM plan through holiday.com, a separate service linked to ExpressVPN. The baseline 1GB holiday eSIM plans last for 5 days and can apply to countries, regions, or the entire world (though it's not clear whether the package deal applies to the regional and global plans). Longer-term plans include larger eSIM plans. You can add a dedicated IP address to your ExpressVPN subscription for an additional cost per month. A dedicated IP lets you use the same IP address every time you connect to ExpressVPN. You can add the address to whitelists on restricted networks, and you're assured to never be blocked because of someone else's bad activity on a shared IP. Unlike many of its competitors, ExpressVPN doesn't currently offer antivirus or online storage services, but there is a comprehensive bundle of ID protection tools called Identity Defender. We haven't reviewed any of these products in detail, but here's a list for reference: ID Alerts will inform you if any of your sensitive information is leaked or misused online. It's free with all plans, but you'll have to enter your personal information on your ExpressVPN account page or a mobile app. ID Theft Insurance grants up to $1 million in identity theft reimbursement and comes free with new ExpressVPN one-year or two-year subscriptions. It's not yet available to those who subscribed before it launched in October 2024. Data Removal scans for your information in data brokerages and automatically requests that it be deleted. It's also free with one-year and two-year plans. Credit Scanner is only available for United States users. It monitors your activity on the three credit bureaus so you can quickly spot any suspicious transactions. The Identity Defender features are currently only available to new ExpressVPN customers in the US. Close-reading ExpressVPN's privacy policy Although we worry that the consolidation of VPN brands under the umbrella of Kape Technologies (ExpressVPN's parent company) will make the industry less competitive, we don't believe it's influencing ExpressVPN to take advantage of its users' privacy. To confirm, and get a full sense of what sort of privacy ExpressVPN promises its users, we set out to read ExpressVPN's privacy policy in detail. It's long, but thankfully aimed at casual users instead of lawyers. You can see it for yourself here. In the introduction, ExpressVPN states that it does not keep either activity logs (such as a user's browsing history while connected to the VPN) or connection logs (such as the duration of a user's session and their IP address, which can be used to extrapolate browsing activity). It then specifies the seven types of data it's legally allowed to collect: Data used to sign up for an account, such as names, emails and payment methods. VPN usage data which is aggregated and can't be traced to any individual. Credentials stored in the ExpressVPN Keys password manager. Diagnostic data such as crash reports, which are only shared upon user request. IP addresses authorized for MediaStreamer, which is only for streaming devices that don't otherwise support VPN apps. Marketing data collected directly from the app — a "limited amount" that's kept anonymous. Data voluntarily submitted for identity theft protection apps. Of those seven exceptions, the only ones that count as red flags are account data and marketing data. Both categories are highly personal and could be damaging if mishandled. Fortunately, complying with subpoenas is not one of the allowed uses listed for either data category, nor does the policy let ExpressVPN sell the data to other private parties. The only really annoying thing here is that if you ask ExpressVPN to delete your personal data, you won't be able to use your account from then on. You aren't even eligible for a refund in this case, unless you're within 30 days of your initial subscription. As for marketing data, ExpressVPN collects device fingerprints and location data when you sign up for an account on its website. The privacy policy also claims this is anonymized, as its "systems are engineered to decouple such data from personally identifiable information." Audits corroborate this, as we'll see in the next section. So, while it would be better if ExpressVPN didn't collect any personal data at all, its practices don't appear to pose a risk to anything you do while using the VPN — just the ExpressVPN website. Privacy audits VPN providers often get third-party accounting firms to audit their privacy policies. The idea is that a well-known firm won't mortgage its reputation to lie on behalf of a VPN, so their results can be trusted. For the last several years, ExpressVPN has had KPMG look over its privacy policy and relevant infrastructure (see "TrustedServer" below). KPMG's most recent report, completed in December 2023 and released in May 2024, found that ExpressVPN had enough internal controls in place that users could trust its privacy policy. The report is freely available to read. This is a very good sign, though we're looking out for a more up-to-date audit soon. TrustedServer "TrustedServer" is a marketing term ExpressVPN uses for its RAM-only server infrastructure. RAM-only servers have no hard drives for long-term storage and return to a standard disk image with every reboot. This makes it theoretically impossible to store user activity logs on them, even if ExpressVPN wanted to do that. The KPMG audit, linked above, reports that TrustedServer works as advertised. Between its many clean privacy audits and the Turkish server incident in 2017, we're prepared to say ExpressVPN is a private VPN, in spite of its aggravating exception for marketing. Can ExpressVPN change your virtual location? Next, we tested whether ExpressVPN can actually convince websites that you're somewhere other than your real location. Our security tests have already proven it can hide your IP address, but it takes more than leak-proofing to fool streaming sites these days — Netflix and the others have gotten very good at combing through metadata to sniff out proxy users. The process for testing this is a lot like how we handled the DNS leak tests: try several different servers and see if we get caught. We checked five sample locations outside the U.S. to see if we a) got into Netflix and b) saw different titles in the library. The results are below. Server Location Unblocked Netflix? Library changed? Canada Y Y United Kingdom Y (second try; Docklands failed) Y Slovakia Y Y India Y Y (different from UK library) Australia Y Y In fifteen tests, ExpressVPN slipped up only once. Docklands, the UK server it chose as the fastest, wasn't able to access Netflix. We switched to a server labeled simply "London" and unblocked it without issue. ExpressVPN can change your virtual location so you can explore the wonderful world of K-drama. Sam Chapman for Engadget All the other locations got us access to an alternate Netflix library on the first try. We even checked whether the India server, which is physically located in the UK, showed us different videos than the UK servers. It did, which makes us even more confident that ExpressVPN's virtual locations are airtight. Investigating ExpressVPN's server network ExpressVPN users can connect to a total of 164 server locations in 105 countries and territories. These locations are reasonably well distributed across the globe, but as with all VPNs, there's a bias toward the northern hemisphere. There are 24 locations in the U.S. alone and a further 66 in Europe. That isn't to say users in the Global South get nothing. ExpressVPN has IP addresses from nine nations in South America (Argentina, Brazil, Bolivia, Chile, Colombia, Ecuador, Peru, Uruguay and Venezuela) and six in Africa (Algeria, Egypt, Ghana, Kenya, Morocco and South Africa). The network even includes Kazakhstan, Uzbekistan and Mongolia, impressive since central Asia may be the region most often shafted by VPNs. However, many of these servers have virtual locations different from their real ones. For those of you choosing a server based on performance instead of a particular IP address, ExpressVPN's website has a helpful list of which servers are virtual. The bad news is that it's a big chunk of the list. A total of 63 ExpressVPN locations are virtual, or 38% of its entire network. To reduce the sting, ExpressVPN takes care to locate virtual servers as close to their real locations as possible. Its virtual locations in Indonesia and India are physically based in Singapore. This isn't always practical, leading to some awkwardness like operating a Ghana IP address out of Germany. But it helps ExpressVPN perform better in the southern hemisphere. Extra features of ExpressVPN Compared to direct competitors like NordVPN and Surfshark, ExpressVPN doesn't have many special features. It's aimed squarely at the casual market and will probably disappoint power users. Having said that, what they do include works well. In this section, we'll run through ExpressVPN's four substantial features outside its VPN servers themselves. Network Lock kill switch "Network Lock" is the name ExpressVPN gives to its kill switch (though it's called "Network Protection" on mobile). A VPN kill switch is a safety feature that keeps you from broadcasting outside the VPN tunnel. If it ever detects that you aren't connected to a legitimate ExpressVPN server, it cuts off your internet access. You won't be able to get back online until you either reconnect to the VPN or disable Network Lock. ExpressVPN's kill switch is called Network Lock on desktop, and Network Protection on mobile (Android pictured) Sam Chapman for Engadget This is important for everyone, not just users who need to hide sensitive traffic. The recently discovered TunnelVision bug theoretically allows hackers to set up fake public wi-fi networks through which they redirect you to equally fake VPN servers, which then harvest your personal information. It's unlikely, but not impossible, and a kill switch is the best way to prevent it — the switch always triggers unless you're connected to a real server in the VPN's network. Like most of ExpressVPN's features, all you can do with Network Lock is turn it on and off. You can also toggle whether you'll still be able to access local devices while the kill switch is blocking your internet — this is allowed by default. Threat manager, ad blocker and parental controls ExpressVPN groups three tools under the heading of "advanced protection" — Threat Manager, an ad blocker and parental controls. Threat Manager consists of two checkboxes: one that blocks your browser from communicating with activity tracking software and one that blocks a list of websites known to be used for malware. Check any of these boxes to use the pre-set blocklists whenever you're connected to ExpressVPN. Sam Chapman for Engadget You can't customize the lists, so you're limited to what ExpressVPN considers worthy of blocking. They share their sources on the website. While the lists are extensive and open-source, they rely on after-the-fact reporting and can't detect and block unknown threats like a proper antivirus. The adblock and parental control options work the same way: check a box to block everything on the list, uncheck it to allow everything through. In tests, the ad blocker was nearly 100% effective against banner ads, but failed to block any video ads on YouTube or Netflix. The parental control option blocks a list of porn sites. It's an easy option for concerned parents, but only works while ExpressVPN is connected. As such, it's meant to be used in conjunction with device-level parental controls that prevent the child from turning off or uninstalling the VPN client. Split tunneling Sometimes, you'll find it helpful to have your device getting online through two different IP addresses at once — one for your home services and one for a location you're trying to spoof. That's where split tunneling is helpful: it runs some apps through the VPN while leaving others unprotected. This can also improve your speeds, since the VPN needs to encrypt less in total. You can configure split tunneling through either a blocklist or an allowlist. Sam Chapman for Engadget ExpressVPN includes split tunneling on Windows, Android and Mac (though only on versions 10 and below). You can only split by app, not by website, but it's still pretty useful. For example, you can have BitTorrent handling a heavy download in the background while you use your browser for innocuous activities that don't need protecting. ExpressVPN Aircove router By now, it should be clear that we find ExpressVPN to be a highly reliable but often unexceptional VPN service. However, there's one area in which it's a clear industry leader: VPN routers. ExpressVPN Aircove is, to our knowledge, the only router with a built-in commercial VPN that comes with its own dashboard interface. Usually, installing a VPN on your router requires tinkering with the router control panel, which turns off all but the most experienced users — not to mention making it a massive pain to switch to a new server location. Aircove's dashboard, by contrast, will be instantly familiar to anyone who already knows how to use an ExpressVPN client. It even allows different devices in your home to connect to different locations through the router VPN. Aircove's biggest drawback is its price. Currently retailing at $189 (not including an ExpressVPN subscription), it's around three times more expensive than an aftermarket router fitted with free VPN firmware. Some of you might still find the convenience worth the one-time payment. ExpressVPN customer support options ExpressVPN's written help pages are some of the best on the market. Its live chat is more of a mixed bag, and complex questions may cause delays. However, it is at least staffed with human agents who aim to reply accurately, rather than resolve your ticket as quickly as possible. You can directly access both live chat and email from ExpressVPN's mobile apps (on desktop, you'll have to go to the website). Sam Chapman for Engadget We approached ExpressVPN's support features with a simple question: "If I requested that ExpressVPN delete all my personal data, would I be able to get a refund for my unused subscription time?" (Remember from the Privacy Policy section that submitting a full deletion request also cancels your ExpressVPN account.) Our first stop was expressvpn.com/support, the written support center and FAQ page. It's divided into setup guides, troubleshooting, account management and information on each of ExpressVPN's products. The setup guides are excellent, including screenshots and clearly written steps; each one includes a video guide for those who learn better that way. Troubleshooting is just as good — no videos, but the same standards of clarity and usefulness prevail. The section starts with general problems, then delves into specific issues you might face on each operating system. Each article clearly derives from a real customer need. The live support experience To get answers on our refund question, we visited the account management FAQs. This section stated that the refund policy only applies within 30 days of purchase. Pretty clear-cut, but we still wanted an answer on our special case, so we contacted live chat by clicking the button at the bottom-right of every FAQ page. Live chat is in the bottom-right corner of every page of expressvpn.com. Sam Chapman for Engadget Live chat starts with an AI assistant, which is not too hard to get past — just ask it a question it can't answer, then click "Transfer to an Agent." We got online with (what claimed to be) a human in less than a minute. Answering the question took longer and involved an uncomfortable 10-minute silence, but we did get a clear verdict from a real person: refunds are within 30 days only, no matter what. If the live chat agent can't answer your question, you'll be redirected to open an email support ticket. Annoyingly, there's no way to go directly to email support through the website or desktop apps, though mobile users have the option to skip directly there. ExpressVPN background check: From founding to Kape Technologies ExpressVPN launched in 2009, which makes it one of the oldest consumer VPNs in continual operation. In more than 15 years of operation, it's never been caught violating its own privacy policy, though its record isn't free of more minor blemishes. Headquarters in the British Virgin Islands Founders Dan Pomerantz and Peter Burchhardt registered the company in the British Virgin Islands from the start to take advantage of that territory's favorable legal environment for online privacy. The BVIs have no law requiring businesses to retain data on their users, and the process for extraditing data is famously difficult, requiring a direct order from the highest court. In 2021, the BVI implemented the Data Protection Act (DPA) [PDF link], which prevents companies based in the territory from accessing data on their users anywhere in the world. It's a great privacy law in theory, modeled on best-in-class legislation in the EU. However, we couldn't find any evidence that its supervising authority — the Office of the Information Commissioner — has a leader or staff. In other words, while ExpressVPN is not legally required to log any data on its users, there's technically nobody stopping them from doing so. Whether you trust the jurisdiction depends on whether you trust the company itself. Let's see what the other evidence says. Security and privacy incidents Two significant incidents stand out from ExpressVPN's 16-year history. In 2017, when Andrei Karlov, Russia's ambassador to Turkey, was shot to death at an art show. Turkish police suspected someone had used ExpressVPN to mask their identity while they deleted information from social media accounts belonging to the alleged assassin. To investigate, they confiscated an ExpressVPN server to comb for evidence. They didn't find anything. A police seizure is the best possible test of a VPN's approach to privacy. The provider can't prepare beforehand, fake anything, or collude with investigators. The Turkey incident is still one of the best reasons to recommend ExpressVPN, though eight years is a long time for policy to change. The second incident began in March 2024, when a researcher at CNET informed ExpressVPN that its version 12 for Windows occasionally leaked DNS requests when users enabled the split tunneling feature. While these users remained connected to an ExpressVPN server, their browsing activity was often going directly to their ISP, unmasked. The bug only impacted a few users, and to their credit, ExpressVPN sprang into action as soon as they learned about it. The team had it patched by April, as confirmed by the researcher who initially discovered the vulnerability. But while their quick and effective response deserves praise, it's still a mark against them that a journalist noticed the bug before they did. Kape Technologies ownership and management questions In 2021, an Israeli-owned, UK-based firm called Kape Technologies purchased a controlling interest in ExpressVPN. In addition to ExpressVPN, privately held Kape owns CyberGhost, Private Internet Access, and Zenmate (before it merged into CyberGhost). As shown on its website, it also owns Webselenese, publisher of VPN review websites WizCase and vpnMentor, which poses an apparent conflict of interest. When reached for comment, a representative for ExpressVPN said that "ExpressVPN does not directly engage with, nor seek to influence, the content on any Webselenese site," and pointed us to disclosure statements on the websites in question — here's one example. Even so, it's a good reminder not to take VPN reviews at face value without knowing who's behind them (Engadget is owned by Yahoo, which does not own any VPNs). Diving deeper into the background of Kape's ownership will lead you to owner Teddy Sagi. Go back far enough, and you'll see he did prison time in Israel and was mentioned in the Pandora Papers, among other things. More recently, headlines about the billionaire have focused more his businesses in the online gambling and fintech arenas, as well as his real estate ventures. An ExpressVPN representative told us that "Kape's brands continue to operate independently," and our investigation bore that out — we couldn't find any proof that Kape or Sagi have directly attempted to influence ExpressVPN's software or daily operations. Closer to the immediate day-to-day operations of ExpressVPN was the company's employment of Daniel Gericke as CTO from 2019 through 2023. During that time, the US Justice Department announced it had fined Gericke and two others for their previous employment on a surveillance operation called Project Raven, which the United Arab Emirates (UAE) used to spy on its own citizens. The revelation prompted a public response from ExpressVPN defending its decision to hire Gericke, arguing that "[t]he best goalkeepers are the ones trained by the best strikers." ExpressVPN's representative confirmed that the company still stands by that linked statement. Gericke parted ways with ExpressVPN in October 2023, per his LinkedIn profile. While we don't know what we don't know, we can say that ExpressVPN has not notably changed its public-facing security and privacy policies during the time it's been connected to Kape, Sagi, or Gericke. In the end, how much ExpressVPN's history matters to you is a personal choice. If you object to any current or past actions by Kape Technologies or Teddy Sagi, there are other premium VPN options you might prefer. If you need more information to make up your mind, we recommend reading through CNET's 2022 deep dive on ExpressVPN's corporate history. Final verdict ExpressVPN is the VPN we most often recommend to beginners. It takes zero training to use, and consistently gets past filters on streaming sites. It also runs in the background with virtually no impact. If anything is worth the high price of admission, it's the excellent speeds distributed evenly across the worldwide server network. However, for certain specific cases, ExpressVPN may not be the best choice. There's no way to set up your own server locations, like NordVPN offers, and no double VPN connections, like you can build for yourself on Surfshark. Its corporate background is more suspect than the entities backing Proton VPN, and unlike Mullvad, ExpressVPN doesn't work in China — it's so well-known that the government targets its servers specifically. We suggest going with ExpressVPN for general online privacy, for spoofing locations in your home country while traveling, or if you regularly need to unblock sites in other countries. That encompasses 19 of every 20 users, which is fine by us, as ExpressVPN is a great service. It's just more of a reliable old screwdriver than a multi-tool. This article originally appeared on Engadget at https://www.engadget.com/cybersecurity/vpn/expressvpn-review-2025-fast-speeds-and-a-low-learning-curve-160052884.html?src=rss

Macworld At a glanceExpert's Rating Pros Supports macOS, iOS, iPadOS, Android, and Windows Intuitive, modern user interface Flexible pricing Cons Mac client doesn’t offer features like cloud sync, AI chatbot, OCR, or file conversion Account deletion requires customer support Overpriced monthly plan is Our Verdict SwifDoo is free to download and use, but Apple’s built-in Preview app performs most of the tasks offered, including proper PDF editing, which SwifDoo doesn’t do. Price When Reviewed This value will show the geolocated pricing text for product undefined Best Pricing Today Best Prices Today: Swifdoo PDF for Mac Retailer Price SwifDoo PDF For Mac Free View Deal Price comparison from over 24,000 stores worldwide Product Price Price comparison from Backmarket PDF editors are essential for Mac users living the paperless lifestyle. While macOS can view, annotate, and sign PDFs natively, the OS provides little control over the files’ core content. So, those wishing to tweak the text or images of a certain PDF document will have to rely on third-party solutions. With so many apps out there, however, finding the right pick may be tricky. SwifDoo PDF for Mac is one of the options you may come across when hunting for an editor. Is it any good, though? Pricing and availability SwifDoo PDF supports macOS, iOS, iPadOS, Windows, and Android. Notably, however, the feature sets differ depending on the platform you’re using. So, for example, the Windows app packs distinct capabilities unavailable on macOS or the mobile clients. Similarly, the price differs based on the OS you’re running it on. In this review, we will be evaluating SwifDoo PDF for macOS specifically. The rating, pros, cons, and overall specifications only apply to this particular client. SwifDoo PDF for macOS is available to install and use as a document viewer for free. However, the paid version is required to unlock its core features, such as editing and annotation. At the time of writing, the monthly plan costs $10, while the annual one goes for $20. Alternatively, you could avoid the recurring subscription by paying a one-time fee of $50 or $70 to own a lifetime license for one or two Macs. Before committing to the purchase, you can create an account to claim a 7-day free trial and evaluate the service. Unfortunately, if you decide not to proceed, you’ll need to contact the company’s customer support to have them delete your account and its data. See our round-ups of of the best PDF editors for Mac and our best free PDF editors for Mac. Features Foundry While SwifDoo PDF was designed for Intel Macs and seemingly hasn’t been optimized for Apple silicon chips, it runs pretty smoothly on my MacBook Air M2. It features a clutter-free main page where you can interact with recently viewed files or open a different PDF via Finder. Once you load a document, you can tweak it using the standard annotation tools if you’re using the paid version. These include highlighting, inserting notes, underlining, striking through, drawing, adding text boxes and shapes, stamping, and more. Other SwifDoo PDF perks include page rotation, printing, and an auto-generated index that lets you quickly jump between document sections based on their headings. Beyond the basics, SwifDoo PDF supports simple document manipulation. The software provides full control over PDF files’ core content, letting you intuitively adjust the existing text’s font, alignment, and spacing. Similarly, you get to resize, crop, move, and rotate original images or insert new ones. If you’re handling sensitive files, SwifDoo PDF also enables you to protect documents with a password to prevent unauthorized viewing, editing, or copying. Notably, unlike the Windows client and other rival Mac apps, SwifDoo PDF for macOS doesn’t include an AI chatbot for assistance, optical character recognition (OCR), batch processing, file format conversion, cloud sync, etc. Foundry Should you use SwifDoo PDF? If you’re planning to use the free version of SwifDoo PDF, then the software is not worth it. Given that even annotation tools are now paywalled (a previous version offered them for free), you may want to rely on the built-in Apple Preview app instead. After all, macOS’ native solution requires no additional app installation and offers both viewing and annotation features for free. If you have short-term PDF editing needs and plan to subscribe to the service for just a few months, then you may want to look into alternative PDF editors for the Mac. At the steep price of $10/month, you can find more feature-rich solutions that support the excluded tools mentioned in the previous section. Otherwise, if your PDF editing workflows are limited to basic image and text manipulation, then the software is reliable and may be worth it when opting for the more reasonably priced annual or lifetime licenses. Update: This review has been revised to reflect the latest features and changes in the SwifDoo PDF app for macOS.

The web is beginning to part ways with third-party cookies, a technology it once heavily relied on. Introduced in 1994 by Netscape to support features like virtual shopping carts, cookies have long been a staple of web functionality. However, concerns over privacy and security have led to a concerted effort to eliminate them. The World Wide Web Consortium Technical Architecture Group (W3C TAG) has been vocal in advocating for the complete removal of third-party cookies from the web platform. Major browsers (Chrome, Safari, Firefox, and Edge) are responding by phasing them out, though the transition is gradual. While this shift enhances user privacy, it also disrupts legitimate functionalities that rely on third-party cookies, such as single sign-on (SSO), fraud prevention, and embedded services. And because there is still no universal ban in place and many essential web features continue to depend on these cookies, developers must detect when third-party cookies are blocked so that applications can respond gracefully. Don’t Let Silent Failures Win: Why Cookie Detection Still Matters Yes, the ideal solution is to move away from third-party cookies altogether and redesign our integrations using privacy-first, purpose-built alternatives as soon as possible. But in reality, that migration can take months or even years, especially for legacy systems or third-party vendors. Meanwhile, users are already browsing with third-party cookies disabled and often have no idea that anything is missing. Imagine a travel booking platform that embeds an iframe from a third-party partner to display live train or flight schedules. This embedded service uses a cookie on its own domain to authenticate the user and personalize content, like showing saved trips or loyalty rewards. But when the browser blocks third-party cookies, the iframe cannot access that data. Instead of a seamless experience, the user sees an error, a blank screen, or a login prompt that doesn’t work. And while your team is still planning a long-term integration overhaul, this is already happening to real users. They don’t see a cookie policy; they just see a broken booking flow. Detecting third-party cookie blocking isn’t just good technical hygiene but a frontline defense for user experience. Why It’s Hard To Tell If Third-Party Cookies Are Blocked Detecting whether third-party cookies are supported isn’t as simple as calling navigator.cookieEnabled. Even a well-intentioned check like this one may look safe, but it still won’t tell you what you actually need to know: // DOES NOT detect third-party cookie blocking function areCookiesEnabled() { if (navigator.cookieEnabled === false) { return false; } try { document.cookie = "test_cookie=1; SameSite=None; Secure"; const hasCookie = document.cookie.includes("test_cookie=1"); document.cookie = "test_cookie=; Max-Age=0; SameSite=None; Secure"; return hasCookie; } catch (e) { return false; } } This function only confirms that cookies work in the current (first-party) context. It says nothing about third-party scenarios, like an iframe on another domain. Worse, it’s misleading: in some browsers, navigator.cookieEnabled may still return true inside a third-party iframe even when cookies are blocked. Others might behave differently, leading to inconsistent and unreliable detection. These cross-browser inconsistencies — combined with the limitations of document.cookie — make it clear that there is no shortcut for detection. To truly detect third-party cookie blocking, we need to understand how different browsers actually behave in embedded third-party contexts. How Modern Browsers Handle Third-Party Cookies The behavior of modern browsers directly affects which detection methods will work and which ones silently fail. Safari: Full Third-Party Cookie Blocking Since version 13.1, Safari blocks all third-party cookies by default, with no exceptions, even if the user previously interacted with the embedded domain. This policy is part of Intelligent Tracking Prevention (ITP). For embedded content (such as an SSO iframe) that requires cookie access, Safari exposes the Storage Access API, which requires a user gesture to grant storage permission. As a result, a test for third-party cookie support will nearly always fail in Safari unless the iframe explicitly requests access via this API. Firefox: Cookie Partitioning By Design Firefox’s Total Cookie Protection isolates cookies on a per-site basis. Third-party cookies can still be set and read, but they are partitioned by the top-level site, meaning a cookie set by the same third-party on siteA.com and siteB.com is stored separately and cannot be shared. As of Firefox 102, this behavior is enabled by default in the Standard (default) mode of Enhanced Tracking Protection. Unlike the Strict mode — which blocks third-party cookies entirely, similar to Safari — the Standard mode does not block them outright. Instead, it neutralizes their tracking capability by isolating them per site. As a result, even if a test shows that a third-party cookie was successfully set, it may be useless for cross-site logins or shared sessions due to this partitioning. Detection logic needs to account for that. Chrome: From Deprecation Plans To Privacy Sandbox (And Industry Pushback) Chromium-based browsers still allow third-party cookies by default — but the story is changing. Starting with Chrome 80, third-party cookies must be explicitly marked with SameSite=None; Secure, or they will be rejected. In January 2020, Google announced their intention to phase out third-party cookies by 2022. However, the timeline was updated multiple times, first in June 2021 when the company pushed the rollout to begin in mid-2023 and conclude by the end of that year. Additional postponements followed in July 2022, December 2023, and April 2024. In July 2024, Google has clarified that there is no plan to unilaterally deprecate third-party cookies or force users into a new model without consent. Instead, Chrome is shifting to a user-choice interface that will allow individuals to decide whether to block or allow third-party cookies globally. This change was influenced in part by substantial pushback from the advertising industry, as well as ongoing regulatory oversight, including scrutiny by the UK Competition and Markets Authority (CMA) into Google’s Privacy Sandbox initiative. The CMA confirmed in a 2025 update that there is no intention to force a deprecation or trigger automatic prompts for cookie blocking. As for now, third-party cookies remain enabled by default in Chrome. The new user-facing controls and the broader Privacy Sandbox ecosystem are still in various stages of experimentation and limited rollout. Edge (Chromium-Based): Tracker-Focused Blocking With User Configurability Edge (which is a Chromium-based browser) shares Chrome’s handling of third-party cookies, including the SameSite=None; Secure requirement. Additionally, Edge introduces Tracking Prevention modes: Basic, Balanced (default), and Strict. In Balanced mode, it blocks known third-party trackers using Microsoft’s maintained list but allows many third-party cookies that are not classified as trackers. Strict mode blocks more resource loads than Balanced, which may result in some websites not behaving as expected. Other Browsers: What About Them? Privacy-focused browsers, like Brave, block third-party cookies by default as part of their strong anti-tracking stance. Internet Explorer (IE) 11 allowed third-party cookies depending on user privacy settings and the presence of Platform for Privacy Preferences (P3P) headers. However, IE usage is now negligible. Notably, the default “Medium” privacy setting in IE could block third-party cookies unless a valid P3P policy was present. Older versions of Safari had partial third-party cookie restrictions (such as “Allow from websites I visit”), but, as mentioned before, this was replaced with full blocking via ITP. As of 2025, all major browsers either block or isolate third-party cookies by default, with the exception of Chrome, which still allows them in standard browsing mode pending the rollout of its new user-choice model. To account for these variations, your detection strategy must be grounded in real-world testing — specifically by reproducing a genuine third-party context such as loading your script within an iframe on a cross-origin domain — rather than relying on browser names or versions. Overview Of Detection Techniques Over the years, many techniques have been used to detect third-party cookie blocking. Most are unreliable or obsolete. Here’s a quick walkthrough of what doesn’t work (and why) and what does. Basic JavaScript API Checks (Misleading) As mentioned earlier, the navigator.cookieEnabled or setting document.cookie on the main page doesn’t reflect cross-site cookie status: In third-party iframes, navigator.cookieEnabled often returns true even when cookies are blocked. Setting document.cookie in the parent doesn’t test the third-party context. These checks are first-party only. Avoid using them for detection. Storage Hacks Via localStorage (Obsolete) Previously, some developers inferred cookie support by checking if window.localStorage worked inside a third-party iframe — which is especially useful against older Safari versions that blocked all third-party storage. Modern browsers often allow localStorage even when cookies are blocked. This leads to false positives and is no longer reliable. Server-Assisted Cookie Probe (Heavyweight) One classic method involves setting a cookie from a third-party domain via HTTP and then checking if it comes back: Load a script/image from a third-party server that sets a cookie. Immediately load another resource, and the server checks whether the cookie was sent. This works, but it: Requires custom server-side logic, Depends on HTTP caching, response headers, and cookie attributes (SameSite=None; Secure), and Adds development and infrastructure complexity. While this is technically valid, it is not suitable for a front-end-only approach, which is our focus here. Storage Access API (Supplemental Signal) The document.hasStorageAccess() method allows embedded third-party content to check if it has access to unpartitioned cookies: ChromeSupports hasStorageAccess() and requestStorageAccess() starting from version 119. Additionally, hasUnpartitionedCookieAccess() is available as an alias for hasStorageAccess() from version 125 onwards. FirefoxSupports both hasStorageAccess() and requestStorageAccess() methods. SafariSupports the Storage Access API. However, access must always be triggered by a user interaction. For example, even calling requestStorageAccess() without a direct user gesture (like a click) is ignored. Chrome and Firefox also support the API, and in those browsers, it may work automatically or based on browser heuristics or site engagement. This API is particularly useful for detecting scenarios where cookies are present but partitioned (e.g., Firefox’s Total Cookie Protection), as it helps determine if the iframe has unrestricted cookie access. But for now, it’s still best used as a supplemental signal, rather than a standalone check. iFrame + postMessage (Best Practice) Despite the existence of the Storage Access API, at the time of writing, this remains the most reliable and browser-compatible method: Embed a hidden iframe from a third-party domain. Inside the iframe, attempt to set a test cookie. Use window.postMessage to report success or failure to the parent. This approach works across all major browsers (when properly configured), requires no server (kind of, more on that next), and simulates a real-world third-party scenario. We’ll implement this step-by-step next. Bonus: Sec-Fetch-Storage-Access Chrome (starting in version 133) is introducing Sec-Fetch-Storage-Access, an HTTP request header sent with cross-site requests to indicate whether the iframe has access to unpartitioned cookies. This header is only visible to servers and cannot be accessed via JavaScript. It’s useful for back-end analytics but not applicable for client-side cookie detection. As of May 2025, this feature is only implemented in Chrome and is not supported by other browsers. However, it’s still good to know that it’s part of the evolving ecosystem. Step-by-Step: Detecting Third-Party Cookies Via iFrame So, what did I mean when I said that the last method we looked at “requires no server”? While this method doesn’t require any back-end logic (like server-set cookies or response inspection), it does require access to a separate domain — or at least a cross-site subdomain — to simulate a third-party environment. This means the following: You must serve the test page from a different domain or public subdomain, e.g., example.com and cookietest.example.com, The domain needs HTTPS (for SameSite=None; Secure cookies to work), and You’ll need to host a simple static file (the test page), even if no server code is involved. Once that’s set up, the rest of the logic is fully client-side. Step 1: Create A Cookie Test Page (On A Third-Party Domain) Minimal version (e.g., https://cookietest.example.com/cookie-check.html): <!DOCTYPE html> <html> <body> <script> document.cookie = "thirdparty_test=1; SameSite=None; Secure; Path=/;"; const cookieFound = document.cookie.includes("thirdparty_test=1"); const sendResult = (status) => window.parent?.postMessage(status, "*"); if (cookieFound && document.hasStorageAccess instanceof Function) { document.hasStorageAccess().then((hasAccess) => { sendResult(hasAccess ? "TP_COOKIE_SUPPORTED" : "TP_COOKIE_BLOCKED"); }).catch(() => sendResult("TP_COOKIE_BLOCKED")); } else { sendResult(cookieFound ? "TP_COOKIE_SUPPORTED" : "TP_COOKIE_BLOCKED"); } </script> </body> </html> Make sure the page is served over HTTPS, and the cookie uses SameSite=None; Secure. Without these attributes, modern browsers will silently reject it. Step 2: Embed The iFrame And Listen For The Result On your main page: function checkThirdPartyCookies() { return new Promise((resolve) => { const iframe = document.createElement('iframe'); iframe.style.display = 'none'; iframe.src = "https://cookietest.example.com/cookie-check.html"; // your subdomain document.body.appendChild(iframe); let resolved = false; const cleanup = (result, timedOut = false) => { if (resolved) return; resolved = true; window.removeEventListener('message', onMessage); iframe.remove(); resolve({ thirdPartyCookiesEnabled: result, timedOut }); }; const onMessage = (event) => { if (["TP_COOKIE_SUPPORTED", "TP_COOKIE_BLOCKED"].includes(event.data)) { cleanup(event.data === "TP_COOKIE_SUPPORTED", false); } }; window.addEventListener('message', onMessage); setTimeout(() => cleanup(false, true), 1000); }); } Example usage: checkThirdPartyCookies().then(({ thirdPartyCookiesEnabled, timedOut }) => { if (!thirdPartyCookiesEnabled) { someCookiesBlockedCallback(); // Third-party cookies are blocked. if (timedOut) { // No response received (iframe possibly blocked). // Optional fallback UX goes here. someCookiesBlockedTimeoutCallback(); }; } }); Step 3: Enhance Detection With The Storage Access API In Safari, even when third-party cookies are blocked, users can manually grant access through the Storage Access API — but only in response to a user gesture. Here’s how you could implement that in your iframe test page: <button id="enable-cookies">This embedded content requires cookie access. Click below to continue.</button> <script> document.getElementById('enable-cookies')?.addEventListener('click', async () => { if (document.requestStorageAccess && typeof document.requestStorageAccess === 'function') { try { const granted = await document.requestStorageAccess(); if (granted !== false) { window.parent.postMessage("TP_STORAGE_ACCESS_GRANTED", "*"); } else { window.parent.postMessage("TP_STORAGE_ACCESS_DENIED", "*"); } } catch (e) { window.parent.postMessage("TP_STORAGE_ACCESS_FAILED", "*"); } } }); </script> Then, on the parent page, you can listen for this message and retry detection if needed: // Inside the same onMessage listener from before: if (event.data === "TP_STORAGE_ACCESS_GRANTED") { // Optionally: retry the cookie test, or reload iframe logic checkThirdPartyCookies().then(handleResultAgain); } (Bonus) A Purely Client-Side Fallback (Not Perfect, But Sometimes Necessary) In some situations, you might not have access to a second domain or can’t host third-party content under your control. That makes the iframe method unfeasible. When that’s the case, your best option is to combine multiple signals — basic cookie checks, hasStorageAccess(), localStorage fallbacks, and maybe even passive indicators like load failures or timeouts — to infer whether third-party cookies are likely blocked. The important caveat: This will never be 100% accurate. But, in constrained environments, “better something than nothing” may still improve the UX. Here’s a basic example: async function inferCookieSupportFallback() { let hasCookieAPI = navigator.cookieEnabled; let canSetCookie = false; let hasStorageAccess = false; try { document.cookie = "testfallback=1; SameSite=None; Secure; Path=/;"; canSetCookie = document.cookie.includes("test_fallback=1"); document.cookie = "test_fallback=; Max-Age=0; Path=/;"; } catch (_) { canSetCookie = false; } if (typeof document.hasStorageAccess === "function") { try { hasStorageAccess = await document.hasStorageAccess(); } catch (_) {} } return { inferredThirdPartyCookies: hasCookieAPI && canSetCookie && hasStorageAccess, raw: { hasCookieAPI, canSetCookie, hasStorageAccess } }; } Example usage: inferCookieSupportFallback().then(({ inferredThirdPartyCookies }) => { if (inferredThirdPartyCookies) { console.log("Cookies likely supported. Likely, yes."); } else { console.warn("Cookies may be blocked or partitioned."); // You could inform the user or adjust behavior accordingly } }); Use this fallback when: You’re building a JavaScript-only widget embedded on unknown sites, You don’t control a second domain (or the team refuses to add one), or You just need some visibility into user-side behavior (e.g., debugging UX issues). Don’t rely on it for security-critical logic (e.g., auth gating)! But it may help tailor the user experience, surface warnings, or decide whether to attempt a fallback SSO flow. Again, it’s better to have something rather than nothing. Fallback Strategies When Third-Party Cookies Are Blocked Detecting blocked cookies is only half the battle. Once you know they’re unavailable, what can you do? Here are some practical options that might be useful for you: Redirect-Based Flows For auth-related flows, switch from embedded iframes to top-level redirects. Let the user authenticate directly on the identity provider's site, then redirect back. It works in all browsers, but the UX might be less seamless. Request Storage Access Prompt the user using requestStorageAccess() after a clear UI gesture (Safari requires this). Use this to re-enable cookies without leaving the page. Token-Based Communication Pass session info directly from parent to iframe via: postMessage (with required origin); Query params (e.g., signed JWT in iframe URL). This avoids reliance on cookies entirely but requires coordination between both sides: // Parent const iframe = document.getElementById('my-iframe'); iframe.onload = () => { const token = getAccessTokenSomehow(); // JWT or anything else iframe.contentWindow.postMessage( { type: 'AUTH_TOKEN', token }, 'https://iframe.example.com' // Set the correct origin! ); }; // iframe window.addEventListener('message', (event) => { if (event.origin !== 'https://parent.example.com') return; const { type, token } = event.data; if (type === 'AUTH_TOKEN') { validateAndUseToken(token); // process JWT, init session, etc } }); Partitioned Cookies (CHIPS) Chrome (since version 114) and other Chromium-based browsers now support cookies with the Partitioned attribute (known as CHIPS), allowing per-top-site cookie isolation. This is useful for widgets like chat or embedded forms where cross-site identity isn’t needed. Note: Firefox and Safari don’t support the Partitioned cookie attribute. Firefox enforces cookie partitioning by default using a different mechanism (Total Cookie Protection), while Safari blocks third-party cookies entirely. But be careful, as they are treated as “blocked” by basic detection. Refine your logic if needed. Final Thought: Transparency, Transition, And The Path Forward Third-party cookies are disappearing, albeit gradually and unevenly. Until the transition is complete, your job as a developer is to bridge the gap between technical limitations and real-world user experience. That means: Keep an eye on the standards.APIs like FedCM and Privacy Sandbox features (Topics, Attribution Reporting, Fenced Frames) are reshaping how we handle identity and analytics without relying on cross-site cookies. Combine detection with graceful fallback.Whether it’s offering a redirect flow, using requestStorageAccess(), or falling back to token-based messaging — every small UX improvement adds up. Inform your users.Users shouldn't be left wondering why something worked in one browser but silently broke in another. Don’t let them feel like they did something wrong — just help them move forward. A clear, friendly message can prevent this confusion. The good news? You don’t need a perfect solution today, just a resilient one. By detecting issues early and handling them thoughtfully, you protect both your users and your future architecture, one cookie-less browser at a time. And as seen with Chrome’s pivot away from automatic deprecation, the transition is not always linear. Industry feedback, regulatory oversight, and evolving technical realities continue to shape the time and the solutions. And don’t forget: having something is better than nothing.

The wait is over, people: WhatsApp is officially, finally, available on iPad. WhatsApp started as an iPhone app way back in 2009. Seventeenyears later, the app is still available on iPhone, as well as Android, Mac, and PC. But one platform the app has never been available for is the iPad. Despite being the most popular mobile messaging app in the world—roughly a quarter of the global population uses it—Meta never cared to bring WhatsApp to the most popular tablet in the world.That changes today. On Tuesday, May 27, Meta included an iPad app with the latest WhatsApp update (version 25.16.81). It comes just one day after the company teased the app on X: The official WhatsApp account reposted an X user who said there should be an iPad version of the app. WhatsApp didn't say anything other than posting the side-eye emoji, heavily implying the app was on its way. This Tweet is currently unavailable. It might be loading or has been removed. From the App Store listing, it appears to be the usual WhatsApp experience you'd expect from, well, WhatsApp—only, optimized for the iPad's larger display. When viewing your chats, you can see all conversations in a column on the left, with the active chat featured prominently in a larger column on the right. Your statuses will take up the full screen, and video calls will let you fit many callers on one screen. (I imagine this will be a big improvement for people who frequently video call groups on the iPhone app.)You can download WhatsApp for iPad here. Instagram may be getting an iPad app tooWhatsApp isn't the only Meta app that needed an iPad version. Instagram infamously has remained iPad free for years, forcing users to download the iPhone version or rely on the web app to access Instagram on their tablets. Rumor has it, however, the company is working on a native iPad app for Instagram, too, though nothing is set in stone. It would be a big improvement for Instagram users who often browse on their iPads, but we'll have to wait and see if the company actually pulls the trigger.

In the lead-up to the United Kingdom's famous Glastonbury festival this summer, well-heeled partiers shelled out for fancy "glamping" yurts — those tent-like dwellings with ancient origins in Central Asia that have been appropriated by hippies in recent decades — and the people who took their money are now telling them they're out of luck.As the Times of London reports, customers who booked Glastonbury tickets and exotic accommodations through Yurtel, a purported pioneer in the yurt rental space, were informed that their expensive reservations would not be honored for the June festival because the firm was going out of business.The company told its buyers, who each spent a minimum of $13,500 for packages that included the rounded tents, chauffers, and tickets, that "any ticket and accommodation bookings" they'd made through Yurtel would not be fulfilled because it shuttered on May 8 due to insolvency and was in the process of liquidation."Tickets to enter the festival," Yurtel said in its customer email, "have not been purchased on your behalf."Unlike a more legitimate business, these yurt hawkers admitted that the company "did not hold customer monies in trust" because all those expensive customer registration "formed part of the company’s operating capital."In other words, Yurtel took these glampers' cash, and until claims are filed and processed, it won't be returning any of it.In an interview with the Times, 32-year-old  Yurtel victim Alice, of Lancashire, said that she and her partner had used the company last year and had a "fabulous" experience. A 10-year Glasto veteran, the woman said her father had paid more than $54,000 for three yurts and six festival tickets — and now, either she or her daddy will have to pay that much again."[We] need to get in touch with Glastonbury and see what alternatives they can offer," the Lancashire woman told the newspaper. "Apparently, Glastonbury has asked other glamping sites to make additional accommodation available for people affected... but we would have to pay again, roughly the same price."In a statement to the Times, a Glastonbury representative expressed their apologies while reiterating that there wasn't much to be done for the people left holding the bag."Anyone who has paid Yurtel for a package including Glastonbury 2025 tickets will need to pursue any potential recompense available from them via the liquidation process as outlined in their communication to you," the statement noted. "We are not able to incur the cost or responsibility of their loss or replacement."As for the company's finances, it's unclear where all the money went — and because it was such a small business, Yurtel hadn't been audited. The mystery behind those missing monies, as the Brits would call them, will surely come out in the wash, but those who spent an arm and a leg for their fancy lodgings are now going to pay double or go without seeing Neil Young, The 1975, Olivia Rodgridgo, or any of the festival's other acts.More on festival fails: Fyre Fest 2 Is Already Crumbling Into Embarrassing ChaosShare This Article

New weekend, new F1 race. If you’re a fan, you’re looking for a free channel that streams the Formula 1 Monaco GP. Rightfully so — overpriced subscriptions aren’t ideal if you want to save money and keep up with F1 races simultaneously. The good news is that you can watch the Monaco Grand Prix online for free with a bit of effort. There’s a handy free channel that broadcasts it in Full HD. This guide will explain how to access it worldwide and stream the event. Date and time Sunday, May 25 at 3:00 PM CET / 9:00 AM ET / 6:00 AM PT Free channel broadcasting SRF (Switzerland) Free Channel to Watch F1 Monaco GP Live We won’t keep you waiting. The channel you’re looking for is called SRF. SRF is a Swiss-based TV channel known for broadcasting a vibrant palette of sports events. It’s also a place where you can watch MotoGP races for free. This weekend, it’ll broadcast the F1 Monaco GP live, as well. Since it’s a Swiss TV channel, it has a few issues. For example, it’s accessible only in Switzerland and doesn’t come with English commentary. On the other hand, it’s accessible without an account, so that’s great. F1 Monaco GP broadcasts on SRF Zwei © SRF As you can see above, the free live stream of the F1 Monaco GP will be on SRF Zwei (link: https://www.srf.ch/play/tv/live/srf-zwei?tvLiveId=c49c1d64-9f60-0001-1c36-43c288c01a10). This is the GP race, however, SRF also displays the qualifying if you’re interested. Stream the Monaco GP for free with NordVPN How to Stream the Monaco Grand Prix for Free Anywhere Okay, so SRF is exclusive to Switzerland — is there a workaround? Yes. Swiss residents abroad often swap their IP addresses for Swiss ones. With a Swiss IP, SRF detects that the user is located in Switzerland. This results in effortless access regardless of the user’s actual location. According to F1 fans worldwide, NordVPN fits the bill. It’s a famous VPN service with thousands of global servers, many of which are in Switzerland. Moreover, the VPN supplies applications for all devices. This eases the process of watching the F1 Monaco GP on a free channel, or any other Grand Prix for that matter. The user can install NordVPN, connect to a server in Switzerland, and use SRF even in Europe, the USA, Asia, etc. NordVPN is a paid VPN, but that’s no issue. It comes with a non-conditional 30-day money-back guarantee to set things straight. This is, in a way, a NordVPN free trial that you can use it for this purpose, cancel it, and obtain a refund if you don’t need it anymore. The same principle applies to unblocking other restricted content. With unlimited bandwidth and market-leading speeds, users have reported nothing but pure enjoyment in streaming, gaming, and other online activities. Can I Watch the Race on F1 TV Pro? Yes, it’ll be on F1 TV Pro as well, but as you likely know, it’s a subscription service. This means it’s a paid channel, too, and unfortunately, it does cost a lot. F1 TV Pro is also unavailable in some countries — keep that in mind. Generally speaking, all subscription services, especially those sports-related, tend to be pricey. While SRF’s lack of English commentary is evident, it’s still the best option to watch the Monaco Grand Prix online for free. 2025 Monaco Grand Prix Schedule Not sure when to tune in? Don’t think we’ve forgotten to include a full schedule for your convenience. The event kicks off on May 23rd and ends on May 25th. As always, the race will be on Sunday. Try NordVPN risk-free now If that’s your only goal, tune in on the 25th of May and feast your eyes. If you’d rather sit through the entire event and live the hype, here’s how this weekend will transpire: Event Date CET EST PST Race 25th May 15:00 09:00 6:00 Qualifying 24th May 16:00-17:00 10:00-11:00 7:00-8:00 Practice 3 24th May 12:30-13:30 6:30-7:30 3:30-4:30 Practice 2 23rd May 17:00-18:00 11:00-12:00 8:00-9:00 Practice 1 23rd May 13:30-14:30 7:30-8:30 4:30-5:30

In this comprehensive tutorial, we guide users through creating a powerful multi-tool AI agent using LangGraph and Claude, optimized for diverse tasks including mathematical computations, web searches, weather inquiries, text analysis, and real-time information retrieval. It begins by simplifying dependency installations to ensure effortless setup, even for beginners. Users are then introduced to structured implementations of specialized tools, such as a safe calculator, an efficient web-search utility leveraging DuckDuckGo, a mock weather information provider, a detailed text analyzer, and a time-fetching function. The tutorial also clearly delineates the integration of these tools within a sophisticated agent architecture built using LangGraph, illustrating practical usage through interactive examples and clear explanations, facilitating both beginners and advanced developers to deploy custom multi-functional AI agents rapidly. import subprocess import sys def install_packages(): packages = [ "langgraph", "langchain", "langchain-anthropic", "langchain-community", "requests", "python-dotenv", "duckduckgo-search" ] for package in packages: try: subprocess.check_call([sys.executable, "-m", "pip", "install", package, "-q"]) print(f"✓ Installed {package}") except subprocess.CalledProcessError: print(f"✗ Failed to install {package}") print("Installing required packages...") install_packages() print("Installation complete!\n") We automate the installation of essential Python packages required for building a LangGraph-based multi-tool AI agent. It leverages a subprocess to run pip commands silently and ensures each package, ranging from long-chain components to web search and environment handling tools, is installed successfully. This setup streamlines the environment preparation process, making the notebook portable and beginner-friendly. import os import json import math import requests from typing import Dict, List, Any, Annotated, TypedDict from datetime import datetime import operator from langchain_core.messages import BaseMessage, HumanMessage, AIMessage, ToolMessage from langchain_core.tools import tool from langchain_anthropic import ChatAnthropic from langgraph.graph import StateGraph, START, END from langgraph.prebuilt import ToolNode from langgraph.checkpoint.memory import MemorySaver from duckduckgo_search import DDGS We import all the necessary libraries and modules for constructing the multi-tool AI agent. It includes Python standard libraries such as os, json, math, and datetime for general-purpose functionality and external libraries like requests for HTTP calls and duckduckgo_search for implementing web search. The LangChain and LangGraph ecosystems bring in message types, tool decorators, state graph components, and checkpointing utilities, while ChatAnthropic enables integration with the Claude model for conversational intelligence. These imports form the foundational building blocks for defining tools, agent workflows, and interactions. os.environ["ANTHROPIC_API_KEY"] = "Use Your API Key Here" ANTHROPIC_API_KEY = os.getenv("ANTHROPIC_API_KEY") We set and retrieve the Anthropic API key required to authenticate and interact with Claude models. The os.environ line assigns your API key (which you should replace with a valid key), while os.getenv securely retrieves it for later use in model initialization. This approach ensures the key is accessible throughout the script without hardcoding it multiple times. from typing import TypedDict class AgentState(TypedDict): messages: Annotated[List[BaseMessage], operator.add] @tool def calculator(expression: str) -> str: """ Perform mathematical calculations. Supports basic arithmetic, trigonometry, and more. Args: expression: Mathematical expression as a string (e.g., "2 + 3 * 4", "sin(3.14159/2)") Returns: Result of the calculation as a string """ try: allowed_names = { 'abs': abs, 'round': round, 'min': min, 'max': max, 'sum': sum, 'pow': pow, 'sqrt': math.sqrt, 'sin': math.sin, 'cos': math.cos, 'tan': math.tan, 'log': math.log, 'log10': math.log10, 'exp': math.exp, 'pi': math.pi, 'e': math.e } expression = expression.replace('^', '**') result = eval(expression, {"__builtins__": {}}, allowed_names) return f"Result: {result}" except Exception as e: return f"Error in calculation: {str(e)}" We define the agent’s internal state and implement a robust calculator tool. The AgentState class uses TypedDict to structure agent memory, specifically tracking messages exchanged during the conversation. The calculator function, decorated with @tool to register it as an AI-usable utility, securely evaluates mathematical expressions. It allows for safe computation by limiting available functions to a predefined set from the math module and replacing common syntax like ^ with Python’s exponentiation operator. This ensures the tool can handle simple arithmetic and advanced functions like trigonometry or logarithms while preventing unsafe code execution. @tool def web_search(query: str, num_results: int = 3) -> str: """ Search the web for information using DuckDuckGo. Args: query: Search query string num_results: Number of results to return (default: 3, max: 10) Returns: Search results as formatted string """ try: num_results = min(max(num_results, 1), 10) with DDGS() as ddgs: results = list(ddgs.text(query, max_results=num_results)) if not results: return f"No search results found for: {query}" formatted_results = f"Search results for '{query}':\n\n" for i, result in enumerate(results, 1): formatted_results += f"{i}. **{result['title']}**\n" formatted_results += f" {result['body']}\n" formatted_results += f" Source: {result['href']}\n\n" return formatted_results except Exception as e: return f"Error performing web search: {str(e)}" We define a web_search tool that enables the agent to fetch real-time information from the internet using the DuckDuckGo Search API via the duckduckgo_search Python package. The tool accepts a search query and an optional num_results parameter, ensuring that the number of results returned is between 1 and 10. It opens a DuckDuckGo search session, retrieves the results, and formats them neatly for user-friendly display. If no results are found or an error occurs, the function handles it gracefully by returning an informative message. This tool equips the agent with real-time search capabilities, enhancing responsiveness and utility. @tool def weather_info(city: str) -> str: """ Get current weather information for a city using OpenWeatherMap API. Note: This is a mock implementation for demo purposes. Args: city: Name of the city Returns: Weather information as a string """ mock_weather = { "new york": {"temp": 22, "condition": "Partly Cloudy", "humidity": 65}, "london": {"temp": 15, "condition": "Rainy", "humidity": 80}, "tokyo": {"temp": 28, "condition": "Sunny", "humidity": 70}, "paris": {"temp": 18, "condition": "Overcast", "humidity": 75} } city_lower = city.lower() if city_lower in mock_weather: weather = mock_weather[city_lower] return f"Weather in {city}:\n" \ f"Temperature: {weather['temp']}°C\n" \ f"Condition: {weather['condition']}\n" \ f"Humidity: {weather['humidity']}%" else: return f"Weather data not available for {city}. (This is a demo with limited cities: New York, London, Tokyo, Paris)" We define a weather_info tool that simulates retrieving current weather data for a given city. While it does not connect to a live weather API, it uses a predefined dictionary of mock data for major cities like New York, London, Tokyo, and Paris. Upon receiving a city name, the function normalizes it to lowercase and checks for its presence in the mock dataset. It returns temperature, weather condition, and humidity in a readable format if found. Otherwise, it notifies the user that weather data is unavailable. This tool serves as a placeholder and can later be upgraded to fetch live data from an actual weather API. @tool def text_analyzer(text: str) -> str: """ Analyze text and provide statistics like word count, character count, etc. Args: text: Text to analyze Returns: Text analysis results """ if not text.strip(): return "Please provide text to analyze." words = text.split() sentences = text.split('.') + text.split('!') + text.split('?') sentences = [s.strip() for s in sentences if s.strip()] analysis = f"Text Analysis Results:\n" analysis += f"• Characters (with spaces): {len(text)}\n" analysis += f"• Characters (without spaces): {len(text.replace(' ', ''))}\n" analysis += f"• Words: {len(words)}\n" analysis += f"• Sentences: {len(sentences)}\n" analysis += f"• Average words per sentence: {len(words) / max(len(sentences), 1):.1f}\n" analysis += f"• Most common word: {max(set(words), key=words.count) if words else 'N/A'}" return analysis The text_analyzer tool provides a detailed statistical analysis of a given text input. It calculates metrics such as character count (with and without spaces), word count, sentence count, and average words per sentence, and it identifies the most frequently occurring word. The tool handles empty input gracefully by prompting the user to provide valid text. It uses simple string operations and Python’s set and max functions to extract meaningful insights. It is a valuable utility for language analysis or content quality checks in the AI agent’s toolkit. @tool def current_time() -> str: """ Get the current date and time. Returns: Current date and time as a formatted string """ now = datetime.now() return f"Current date and time: {now.strftime('%Y-%m-%d %H:%M:%S')}" The current_time tool provides a straightforward way to retrieve the current system date and time in a human-readable format. Using Python’s datetime module, it captures the present moment and formats it as YYYY-MM-DD HH:MM:SS. This utility is particularly useful for time-stamping responses or answering user queries about the current date and time within the AI agent’s interaction flow. tools = [calculator, web_search, weather_info, text_analyzer, current_time] def create_llm(): if ANTHROPIC_API_KEY: return ChatAnthropic( model="claude-3-haiku-20240307", temperature=0.1, max_tokens=1024 ) else: class MockLLM: def invoke(self, messages): last_message = messages[-1].content if messages else "" if any(word in last_message.lower() for word in ['calculate', 'math', '+', '-', '*', '/', 'sqrt', 'sin', 'cos']): import re numbers = re.findall(r'[\d\+\-\*/\.\(\)\s\w]+', last_message) expr = numbers[0] if numbers else "2+2" return AIMessage(content="I'll help you with that calculation.", tool_calls=[{"name": "calculator", "args": {"expression": expr.strip()}, "id": "calc1"}]) elif any(word in last_message.lower() for word in ['search', 'find', 'look up', 'information about']): query = last_message.replace('search for', '').replace('find', '').replace('look up', '').strip() if not query or len(query) < 3: query = "python programming" return AIMessage(content="I'll search for that information.", tool_calls=[{"name": "web_search", "args": {"query": query}, "id": "search1"}]) elif any(word in last_message.lower() for word in ['weather', 'temperature']): city = "New York" words = last_message.lower().split() for i, word in enumerate(words): if word == 'in' and i + 1 < len(words): city = words[i + 1].title() break return AIMessage(content="I'll get the weather information.", tool_calls=[{"name": "weather_info", "args": {"city": city}, "id": "weather1"}]) elif any(word in last_message.lower() for word in ['time', 'date']): return AIMessage(content="I'll get the current time.", tool_calls=[{"name": "current_time", "args": {}, "id": "time1"}]) elif any(word in last_message.lower() for word in ['analyze', 'analysis']): text = last_message.replace('analyze this text:', '').replace('analyze', '').strip() if not text: text = "Sample text for analysis" return AIMessage(content="I'll analyze that text for you.", tool_calls=[{"name": "text_analyzer", "args": {"text": text}, "id": "analyze1"}]) else: return AIMessage(content="Hello! I'm a multi-tool agent powered by Claude. I can help with:\n• Mathematical calculations\n• Web searches\n• Weather information\n• Text analysis\n• Current time/date\n\nWhat would you like me to help you with?") def bind_tools(self, tools): return self print("⚠️ Note: Using mock LLM for demo. Add your ANTHROPIC_API_KEY for full functionality.") return MockLLM() llm = create_llm() llm_with_tools = llm.bind_tools(tools) We initialize the language model that powers the AI agent. If a valid Anthropic API key is available, it uses the Claude 3 Haiku model for high-quality responses. Without an API key, a MockLLM is defined to simulate basic tool-routing behavior based on keyword matching, allowing the agent to function offline with limited capabilities. The bind_tools method links the defined tools to the model, enabling it to invoke them as needed. def agent_node(state: AgentState) -> Dict[str, Any]: """Main agent node that processes messages and decides on tool usage.""" messages = state["messages"] response = llm_with_tools.invoke(messages) return {"messages": [response]} def should_continue(state: AgentState) -> str: """Determine whether to continue with tool calls or end.""" last_message = state["messages"][-1] if hasattr(last_message, 'tool_calls') and last_message.tool_calls: return "tools" return END We define the agent’s core decision-making logic. The agent_node function handles incoming messages, invokes the language model (with tools), and returns the model’s response. The should_continue function then evaluates whether the model’s response includes tool calls. If so, it routes control to the tool execution node; otherwise, it directs the flow to end the interaction. These functions enable dynamic and conditional transitions within the agent’s workflow. def create_agent_graph(): tool_node = ToolNode(tools) workflow = StateGraph(AgentState) workflow.add_node("agent", agent_node) workflow.add_node("tools", tool_node) workflow.add_edge(START, "agent") workflow.add_conditional_edges("agent", should_continue, {"tools": "tools", END: END}) workflow.add_edge("tools", "agent") memory = MemorySaver() app = workflow.compile(checkpointer=memory) return app print("Creating LangGraph Multi-Tool Agent...") agent = create_agent_graph() print("✓ Agent created successfully!\n") We construct the LangGraph-powered workflow that defines the AI agent’s operational structure. It initializes a ToolNode to handle tool executions and uses a StateGraph to organize the flow between agent decisions and tool usage. Nodes and edges are added to manage transitions: starting with the agent, conditionally routing to tools, and looping back as needed. A MemorySaver is integrated for persistent state tracking across turns. The graph is compiled into an executable application (app), enabling a structured, memory-aware multi-tool agent ready for deployment. def test_agent(): """Test the agent with various queries.""" config = {"configurable": {"thread_id": "test-thread"}} test_queries = [ "What's 15 * 7 + 23?", "Search for information about Python programming", "What's the weather like in Tokyo?", "What time is it?", "Analyze this text: 'LangGraph is an amazing framework for building AI agents.'" ] print("🧪 Testing the agent with sample queries...\n") for i, query in enumerate(test_queries, 1): print(f"Query {i}: {query}") print("-" * 50) try: response = agent.invoke( {"messages": [HumanMessage(content=query)]}, config=config ) last_message = response["messages"][-1] print(f"Response: {last_message.content}\n") except Exception as e: print(f"Error: {str(e)}\n") The test_agent function is a validation utility that ensures that the LangGraph agent responds correctly across different use cases. It runs predefined queries, arithmetic, web search, weather, time, and text analysis, and prints the agent’s responses. Using a consistent thread_id for configuration, it invokes the agent with each query. It neatly displays the results, helping developers verify tool integration and conversational logic before moving to interactive or production use. def chat_with_agent(): """Interactive chat function.""" config = {"configurable": {"thread_id": "interactive-thread"}} print("🤖 Multi-Tool Agent Chat") print("Available tools: Calculator, Web Search, Weather Info, Text Analyzer, Current Time") print("Type 'quit' to exit, 'help' for available commands\n") while True: try: user_input = input("You: ").strip() if user_input.lower() in ['quit', 'exit', 'q']: print("Goodbye!") break elif user_input.lower() == 'help': print("\nAvailable commands:") print("• Calculator: 'Calculate 15 * 7 + 23' or 'What's sin(pi/2)?'") print("• Web Search: 'Search for Python tutorials' or 'Find information about AI'") print("• Weather: 'Weather in Tokyo' or 'What's the temperature in London?'") print("• Text Analysis: 'Analyze this text: [your text]'") print("• Current Time: 'What time is it?' or 'Current date'") print("• quit: Exit the chat\n") continue elif not user_input: continue response = agent.invoke( {"messages": [HumanMessage(content=user_input)]}, config=config ) last_message = response["messages"][-1] print(f"Agent: {last_message.content}\n") except KeyboardInterrupt: print("\nGoodbye!") break except Exception as e: print(f"Error: {str(e)}\n") The chat_with_agent function provides an interactive command-line interface for real-time conversations with the LangGraph multi-tool agent. It supports natural language queries and recognizes commands like “help” for usage guidance and “quit” to exit. Each user input is processed through the agent, which dynamically selects and invokes appropriate response tools. The function enhances user engagement by simulating a conversational experience and showcasing the agent’s capabilities in handling various queries, from math and web search to weather, text analysis, and time retrieval. if __name__ == "__main__": test_agent() print("=" * 60) print("🎉 LangGraph Multi-Tool Agent is ready!") print("=" * 60) chat_with_agent() def quick_demo(): """Quick demonstration of agent capabilities.""" config = {"configurable": {"thread_id": "demo"}} demos = [ ("Math", "Calculate the square root of 144 plus 5 times 3"), ("Search", "Find recent news about artificial intelligence"), ("Time", "What's the current date and time?") ] print("🚀 Quick Demo of Agent Capabilities\n") for category, query in demos: print(f"[{category}] Query: {query}") try: response = agent.invoke( {"messages": [HumanMessage(content=query)]}, config=config ) print(f"Response: {response['messages'][-1].content}\n") except Exception as e: print(f"Error: {str(e)}\n") print("\n" + "="*60) print("🔧 Usage Instructions:") print("1. Add your ANTHROPIC_API_KEY to use Claude model") print(" os.environ['ANTHROPIC_API_KEY'] = 'your-anthropic-api-key'") print("2. Run quick_demo() for a quick demonstration") print("3. Run chat_with_agent() for interactive chat") print("4. The agent supports: calculations, web search, weather, text analysis, and time") print("5. Example: 'Calculate 15*7+23' or 'Search for Python tutorials'") print("="*60) Finally, we orchestrate the execution of the LangGraph multi-tool agent. If the script is run directly, it initiates test_agent() to validate functionality with sample queries, followed by launching the interactive chat_with_agent() mode for real-time interaction. The quick_demo() function also briefly showcases the agent’s capabilities in math, search, and time queries. Clear usage instructions are printed at the end, guiding users on configuring the API key, running demonstrations, and interacting with the agent. This provides a smooth onboarding experience for users to explore and extend the agent’s functionality. In conclusion, this step-by-step tutorial gives valuable insights into building an effective multi-tool AI agent leveraging LangGraph and Claude’s generative capabilities. With straightforward explanations and hands-on demonstrations, the guide empowers users to integrate diverse utilities into a cohesive and interactive system. The agent’s flexibility in performing tasks, from complex calculations to dynamic information retrieval, showcases the versatility of modern AI development frameworks. Also, the inclusion of user-friendly functions for both testing and interactive chat enhances practical understanding, enabling immediate application in various contexts. Developers can confidently extend and customize their AI agents with this foundational knowledge. Check out the Notebook on GitHub. All credit for this research goes to the researchers of this project. Also, feel free to follow us on Twitter and don’t forget to join our 95k+ ML SubReddit and Subscribe to our Newsletter. Asif RazzaqWebsite |  + postsBioAsif Razzaq is the CEO of Marktechpost Media Inc.. As a visionary entrepreneur and engineer, Asif is committed to harnessing the potential of Artificial Intelligence for social good. His most recent endeavor is the launch of an Artificial Intelligence Media Platform, Marktechpost, which stands out for its in-depth coverage of machine learning and deep learning news that is both technically sound and easily understandable by a wide audience. The platform boasts of over 2 million monthly views, illustrating its popularity among audiences.Asif Razzaqhttps://www.marktechpost.com/author/6flvq/A Comprehensive Coding Guide to Crafting Advanced Round-Robin Multi-Agent Workflows with Microsoft AutoGenAsif Razzaqhttps://www.marktechpost.com/author/6flvq/Microsoft AI Introduces Magentic-UI: An Open-Source Agent Prototype that Works with People to Complete Complex Tasks that Require Multi-Step Planning and Browser UseAsif Razzaqhttps://www.marktechpost.com/author/6flvq/Anthropic Releases Claude Opus 4 and Claude Sonnet 4: A Technical Leap in Reasoning, Coding, and AI Agent DesignAsif Razzaqhttps://www.marktechpost.com/author/6flvq/Technology Innovation Institute TII Releases Falcon-H1: Hybrid Transformer-SSM Language Models for Scalable, Multilingual, and Long-Context Understanding

I don't mean to be alarmist, but I do think it's time to start assuming everything you see online is fake. The internet is full of content produced by real people, of course (this article included). But AI-generated media is getting so realistic, that it almost puts you at a disadvantage to presume the content you're scrolling past on your feeds is legitimate. Don't skip this article because you know what AI content looks like—the current stuff your algorithm delivers to your social media feeds is easy to spot if you know what you're looking for. But even if you can identify AI slop the second it hits your eyeballs, you need to know you're not ready for the next wave of AI-generated videos. That wave isn't just on its way—it's already here. AI content is already fooling peopleMost of us are acutely aware of the "AI video" look: This "tragic" video of a cat parent saving their kitten by throwing it out of a burning airplane is obvious AI slop to most who watch it. You probably know Trump isn't working this construction site, and you most assuredly can understand this family of cat farmers is, in fact, AI-generated.But there are the videos that aren't so obvious, especially to those of us not quite so in tune with AI, or technology in general. You might know this video of babies dancing in a circle is AI, but plenty of the people in the comments didn't (assuming they aren't bots, either). You might also be able to tell that this family of pets isn't really watching a bird investigate a toy alligator, but, again, plenty can't. And there is no end to the America's Got Talent videos that feature "realistic" yet impossible visuals—that still capture the hearts of hundreds of thousands, if not millions of people. (I weep.)But I'm not writing this piece today because I'm concerned about how many of these "believable" AI videos are tricking way too many people into thinking they're real. I am worried about that, but those worries pale in comparison to my new fears.So far, most of the AI videos taking over social media feeds rely mainly on their visuals and background sounds to sell their alleged authenticity. You'll notice none of the characters in any of these videos actually speak. If they do, it's immediately off-putting, with out of sync lip movements and, typically, robotic voices. It's been easier for AI creators to put the emphasis on the realism of the people and animals in their videos, and hope you're wowed enough by a baby dancing with a lion to not think, "this is bullshit, right?"Even OpenAI's Sora video model, which shocked me with its quality in February of last year, was working off of its realistic visuals. A video of woman "filming" her reflection through a train window too real for comfort, but Sora wasn't spitting out fully-rendered conversations. If you see such a scene on your feeds, you probably assume, of course, it's a real video—or at least one generated by humans.AI video is about to change completelySomething happened this week that only made me more pessimistic about the future of truth on the internet. During this week's Google I/O event, Google unveiled Veo 3, its latest AI video model. Like other competitive models out there, Veo 3 can generate highly realistic sequences, which Google showed off throughout the presentation. Sure, not great, but also, nothing really new there. But Veo 3 isn't just capable of generating video that might trick your eye into thinking its real: Veo 3 can also generate audio to go alongside the video. That includes sound effects, but also dialogue—lip-synced dialogue. In order to demonstrate Veo 3's audio/video capabilities, Google showed off a clip of an old sailor at sea. The video quality is sharp and realistic, and the words the man speaks are synced to his lip movements. Of course, knowing the video is AI, you notice quirks that give away the game (to my eye, this looks like a high quality animation more than a live action shot) but I am quite confident this video would fool a lot of fans of fake AGT videos. But even this clip wasn't what inspired my newfound fears—it was the videos that users started making once they got their hands on Veo 3. PetaPixel has a great roundup of some of the "best" Veo 3 videos people have made so far, but I'll highlight some of the ones that should scare you most. This clip shows a streamer playing Fortnite. Everything, including the game footage, was generated with Google's AI: This Tweet is currently unavailable. It might be loading or has been removed. This clip shows three concerts that never happened, featuring musicians and crowds that do not exist. The music isn't good, but that's not the point. The music, from the vocals to the instrumentals, was generated entirely by the AI, and then synced to lips, drums, guitars, and strings: This Tweet is currently unavailable. It might be loading or has been removed. But this clip is, without a doubt, the one that should sound the alarm for each and every one of us. Someone generated a fake video of a fake car show, featuring fake interviews with fake attendees. It's far from perfect, but any AI quirks are totally overshadowed by the surface-level realism here. Not only would the AI's Got Talent fans buy this, I would buy this, especially if I wasn't looking out for it: This Tweet is currently unavailable. It might be loading or has been removed. It's the visuals; it's the dialogue; it's the crowds; it's the lighting; it's the candid laughter at "mistakes;" it's the sound of the mic being "bumped" into. Congratulations on noticing the dialogue often doesn't make sense, or that the people in the background defy the laws of physics—you won't notice it when it hits mid-scroll on TikTok or Instagram. Even Veo 2, which isn't as powerful as Veo 3, now offers tools for realism, like the ability to dictate how you want the camera to move. And both models are available in Flow, Google's AI video editor of sorts. Creators now have the ability to generate highly realistic AI content that feels like it was filmed in-person, and the tech is only getting better. This Tweet is currently unavailable. It might be loading or has been removed. Google's best AI video generator tools cost $250 a month through its new AI Ultra subscription plan. That's expensive, but not out of reach for plenty of people interested in making AI-generated content. But the $20 per month plan, AI Pro, still comes with Veo 2 and Flow access. The rate limits are lower, but I wouldn't be shocked to see some realistic slop come out of those limitations, too. It's time to be a full-time skepticNone of this tech is perfect. I'm not here to tell you that everything Veo 3 spits out is indistinguishable from real content, or that the videos are absent any of the usual AI tells. In fact, there's clearly something up with Veo 3's training data: As 404 Media reports, the model continuously generates the same weird "dad joke" whenever you ask for a generation of a comedian performing standup. What I'm saying is, it's time to turn on your bullshit detectors and keep them active full time. When engaging with videos on the internet—especially short-form algorithmic clips—you might be safer operating under the assumption the content is fake from the jump, and require proof beyond a reasonable doubt that what you're seeing wasn't generated with a simple prompt and a $250 budget. That feels extreme, but after what I've seen this week, I don't really see another way to engage with this content going forward.We're in scary territory now. Today, it's demos of musicians and streamers. Tomorrow, it's a politician saying something they didn't; a suspect committing the crime they're accused of; a "reporter" feeding you lies through the "news."I hope this is as good as the technology gets. I hope AI companies run out of training data to improve their models, and that governments take some action to regulate this technology. But seeing as the Republicans in the United States passed a bill that included a ban on state-enforced AI regulations for ten years, I'm pretty pessimistic on that latter point. In all likelihood, this tech is going to get better, with zero guardrails to ensure it advances safely. I'm left wondering how many of those politicians who voted yes on that bill watched an AI-generated video on their phone this week and thought nothing of it.