• 300 Servers and €3.5M Seized as Europol Strikes Ransomware Networks Worldwide

    May 23, 2025Ravie LakshmananRansomware / Dark Web

    As part of the latest "season" of Operation Endgame, a coalition of law enforcement agencies have taken down about 300 servers worldwide, neutralized 650 domains, and issued arrest warrants against 20 targets.
    Operation Endgame, first launched in May 2024, is an ongoing law enforcement operation targeting services and infrastructures assisting in or directly providing initial or consolidating access for ransomware. The previous edition focused on dismantling the initial access malware families that have been used to deliver ransomware.
    The latest iteration, per Europol, targeted new malware variants and successor groups that re-emerged after last year's takedowns such as Bumblebee, Lactrodectus, QakBot, HijackLoader, DanaBot, TrickBot, and WARMCOOKIE. The interaction action was carried out between May 19 and 22, 2025.
    "In addition, €3.5 million in cryptocurrency was seized during the action week, bringing the total amount seized during the Operation Endgame to more than €21.2 million," the agency said.

    Europol noted that the malware variants are offered as a service to other threat actors and are used to conduct large-scale ransomware attacks. Furthermore, international arrest warrants have been issued against 20 key actors who are believed to be providing or operating initial access services to ransomware crews.
    "This new phase demonstrates law enforcement's ability to adapt and strike again, even as cybercriminals retool and reorganize," Europol Executive Director Catherine De Bolle said. "By disrupting the services criminals rely on to deploy ransomware, we are breaking the kill chain at its source."

    Germany's Federal Criminal Police Officehas revealed that criminal proceedings have been initiated against 37 identified actors. Some of the individuals who have been added to the E.U. Most Wanted list are listed below -

    Roman Mikhailovich Prokop, 36, a member of the QakBot group
    Danil Raisowitsch Khalitov, 37, a member of the QakBot group
    Iskander Rifkatovich Sharafetdinov, 32, a member of the TrickBot group
    Mikhail Mikhailovich Tsarev, 36, a member of the TrickBot group
    Maksim Sergeevich Galochkin, 43, a member of the TrickBot group
    Vitalii Nikolaevich Kovalev, 36, a member of the TrickBot group

    The disclosure comes as Europol took the wraps off a large-scale law enforcement operation that resulted in 270 arrests of dark web vendors and buyers across 10 countries: the United States, Germany, the United Kingdom, France, South Korea, Austria, the Netherlands, Brazil, Switzerland, and Spain.
    The suspects, Europol noted, were identified based on intelligence gathered from the takedowns of the dark web marketplaces Nemesis, Tor2Door, Bohemia, and Kingdom Markets. Several suspects are alleged to have conducted thousands of sales on illicit marketplaces, often using encryption tools and cryptocurrencies to conceal their digital footprints.

    "Known as Operation RapTor, this international sweep has dismantled networks trafficking in drugs, weapons, and counterfeit goods, sending a clear signal to criminals hiding behind the illusion of anonymity," Europol said.

    Along with the arrests, €184 million in cash and cryptocurrencies, 2 tons of drugs, 180 firearms, 12,500 counterfeit products, and more than 4 tons of illegal tobacco have been seized by authorities. The joint action follows Operation SpecTor in May 2023, which led to the arrest of 288 dark web vendors and buyers and the seizure of €50.8 million in cash and cryptocurrency.
    "With traditional marketplaces under increasing pressure, criminal actors are shifting to smaller, single-vendor shops — sites run by individual sellers to avoid marketplace fees and minimize exposure," Europol said. "Illegal drugs remain the top commodity sold on the dark web, but 2023 also saw a surge in prescription drug trafficking and a rise in fraudulent services, including fake hitmen and bogus listings designed to scam buyers."

    Found this article interesting? Follow us on Twitter  and LinkedIn to read more exclusive content we post.

    SHARE




    #servers #35m #seized #europol #strikes
    300 Servers and €3.5M Seized as Europol Strikes Ransomware Networks Worldwide
    May 23, 2025Ravie LakshmananRansomware / Dark Web As part of the latest "season" of Operation Endgame, a coalition of law enforcement agencies have taken down about 300 servers worldwide, neutralized 650 domains, and issued arrest warrants against 20 targets. Operation Endgame, first launched in May 2024, is an ongoing law enforcement operation targeting services and infrastructures assisting in or directly providing initial or consolidating access for ransomware. The previous edition focused on dismantling the initial access malware families that have been used to deliver ransomware. The latest iteration, per Europol, targeted new malware variants and successor groups that re-emerged after last year's takedowns such as Bumblebee, Lactrodectus, QakBot, HijackLoader, DanaBot, TrickBot, and WARMCOOKIE. The interaction action was carried out between May 19 and 22, 2025. "In addition, €3.5 million in cryptocurrency was seized during the action week, bringing the total amount seized during the Operation Endgame to more than €21.2 million," the agency said. Europol noted that the malware variants are offered as a service to other threat actors and are used to conduct large-scale ransomware attacks. Furthermore, international arrest warrants have been issued against 20 key actors who are believed to be providing or operating initial access services to ransomware crews. "This new phase demonstrates law enforcement's ability to adapt and strike again, even as cybercriminals retool and reorganize," Europol Executive Director Catherine De Bolle said. "By disrupting the services criminals rely on to deploy ransomware, we are breaking the kill chain at its source." Germany's Federal Criminal Police Officehas revealed that criminal proceedings have been initiated against 37 identified actors. Some of the individuals who have been added to the E.U. Most Wanted list are listed below - Roman Mikhailovich Prokop, 36, a member of the QakBot group Danil Raisowitsch Khalitov, 37, a member of the QakBot group Iskander Rifkatovich Sharafetdinov, 32, a member of the TrickBot group Mikhail Mikhailovich Tsarev, 36, a member of the TrickBot group Maksim Sergeevich Galochkin, 43, a member of the TrickBot group Vitalii Nikolaevich Kovalev, 36, a member of the TrickBot group The disclosure comes as Europol took the wraps off a large-scale law enforcement operation that resulted in 270 arrests of dark web vendors and buyers across 10 countries: the United States, Germany, the United Kingdom, France, South Korea, Austria, the Netherlands, Brazil, Switzerland, and Spain. The suspects, Europol noted, were identified based on intelligence gathered from the takedowns of the dark web marketplaces Nemesis, Tor2Door, Bohemia, and Kingdom Markets. Several suspects are alleged to have conducted thousands of sales on illicit marketplaces, often using encryption tools and cryptocurrencies to conceal their digital footprints. "Known as Operation RapTor, this international sweep has dismantled networks trafficking in drugs, weapons, and counterfeit goods, sending a clear signal to criminals hiding behind the illusion of anonymity," Europol said. Along with the arrests, €184 million in cash and cryptocurrencies, 2 tons of drugs, 180 firearms, 12,500 counterfeit products, and more than 4 tons of illegal tobacco have been seized by authorities. The joint action follows Operation SpecTor in May 2023, which led to the arrest of 288 dark web vendors and buyers and the seizure of €50.8 million in cash and cryptocurrency. "With traditional marketplaces under increasing pressure, criminal actors are shifting to smaller, single-vendor shops — sites run by individual sellers to avoid marketplace fees and minimize exposure," Europol said. "Illegal drugs remain the top commodity sold on the dark web, but 2023 also saw a surge in prescription drug trafficking and a rise in fraudulent services, including fake hitmen and bogus listings designed to scam buyers." Found this article interesting? Follow us on Twitter  and LinkedIn to read more exclusive content we post. SHARE     #servers #35m #seized #europol #strikes
    THEHACKERNEWS.COM
    300 Servers and €3.5M Seized as Europol Strikes Ransomware Networks Worldwide
    May 23, 2025Ravie LakshmananRansomware / Dark Web As part of the latest "season" of Operation Endgame, a coalition of law enforcement agencies have taken down about 300 servers worldwide, neutralized 650 domains, and issued arrest warrants against 20 targets. Operation Endgame, first launched in May 2024, is an ongoing law enforcement operation targeting services and infrastructures assisting in or directly providing initial or consolidating access for ransomware. The previous edition focused on dismantling the initial access malware families that have been used to deliver ransomware. The latest iteration, per Europol, targeted new malware variants and successor groups that re-emerged after last year's takedowns such as Bumblebee, Lactrodectus, QakBot, HijackLoader, DanaBot, TrickBot, and WARMCOOKIE. The interaction action was carried out between May 19 and 22, 2025. "In addition, €3.5 million in cryptocurrency was seized during the action week, bringing the total amount seized during the Operation Endgame to more than €21.2 million," the agency said. Europol noted that the malware variants are offered as a service to other threat actors and are used to conduct large-scale ransomware attacks. Furthermore, international arrest warrants have been issued against 20 key actors who are believed to be providing or operating initial access services to ransomware crews. "This new phase demonstrates law enforcement's ability to adapt and strike again, even as cybercriminals retool and reorganize," Europol Executive Director Catherine De Bolle said. "By disrupting the services criminals rely on to deploy ransomware, we are breaking the kill chain at its source." Germany's Federal Criminal Police Office (aka Bundeskriminalamt or BKA) has revealed that criminal proceedings have been initiated against 37 identified actors. Some of the individuals who have been added to the E.U. Most Wanted list are listed below - Roman Mikhailovich Prokop (aka carterj), 36, a member of the QakBot group Danil Raisowitsch Khalitov (aka dancho), 37, a member of the QakBot group Iskander Rifkatovich Sharafetdinov (aka alik, gucci), 32, a member of the TrickBot group Mikhail Mikhailovich Tsarev (aka mango), 36, a member of the TrickBot group Maksim Sergeevich Galochkin (aka bentley, manuel, Max17, volhvb, crypt), 43, a member of the TrickBot group Vitalii Nikolaevich Kovalev (aka stern, ben, Grave, Vincent, Bentley, Bergen, Alex Konor), 36, a member of the TrickBot group The disclosure comes as Europol took the wraps off a large-scale law enforcement operation that resulted in 270 arrests of dark web vendors and buyers across 10 countries: the United States (130), Germany (42), the United Kingdom (37), France (29), South Korea (19), Austria (4), the Netherlands (4), Brazil (3), Switzerland (1), and Spain (1). The suspects, Europol noted, were identified based on intelligence gathered from the takedowns of the dark web marketplaces Nemesis, Tor2Door, Bohemia, and Kingdom Markets. Several suspects are alleged to have conducted thousands of sales on illicit marketplaces, often using encryption tools and cryptocurrencies to conceal their digital footprints. "Known as Operation RapTor, this international sweep has dismantled networks trafficking in drugs, weapons, and counterfeit goods, sending a clear signal to criminals hiding behind the illusion of anonymity," Europol said. Along with the arrests, €184 million in cash and cryptocurrencies, 2 tons of drugs, 180 firearms, 12,500 counterfeit products, and more than 4 tons of illegal tobacco have been seized by authorities. The joint action follows Operation SpecTor in May 2023, which led to the arrest of 288 dark web vendors and buyers and the seizure of €50.8 million in cash and cryptocurrency. "With traditional marketplaces under increasing pressure, criminal actors are shifting to smaller, single-vendor shops — sites run by individual sellers to avoid marketplace fees and minimize exposure," Europol said. "Illegal drugs remain the top commodity sold on the dark web, but 2023 also saw a surge in prescription drug trafficking and a rise in fraudulent services, including fake hitmen and bogus listings designed to scam buyers." Found this article interesting? Follow us on Twitter  and LinkedIn to read more exclusive content we post. SHARE    
    0 Comments 0 Shares
  • Denver Detectives Crack Deadly Arson Case Using Teens' Google Search Histories

    Three teenagers nearly escaped prosecution for a 2020 house fire that killed five people until Denver police discovered a novel investigative technique: requesting Google search histories for specific terms. Kevin Bui, Gavin Seymour, and Dillon Siebert had burned down a house in Green Valley Ranch, mistakenly targeting innocent Senegalese immigrants after Bui used Apple's Find My feature to track his stolen phone to the wrong address.

    The August 2020 arson killed a family of five, including a toddler and infant. For months, detectives Neil Baker and Ernest Sandoval had no viable leads despite security footage showing three masked figures. Traditional methods -- cell tower data, geofence warrants, and hundreds of tips -- yielded nothing concrete. The breakthrough came when another detective suggested Google might have records of anyone searching the address beforehand.

    Police obtained a reverse keyword search warrant requesting all users who had searched variations of "5312 Truckee Street" in the 15 days before the fire. Google provided 61 matching devices. Cross-referencing with earlier cell tower data revealed the three suspects, who had collectively searched the address dozens of times, including floor plans on Zillow.

    of this story at Slashdot.
    #denver #detectives #crack #deadly #arson
    Denver Detectives Crack Deadly Arson Case Using Teens' Google Search Histories
    Three teenagers nearly escaped prosecution for a 2020 house fire that killed five people until Denver police discovered a novel investigative technique: requesting Google search histories for specific terms. Kevin Bui, Gavin Seymour, and Dillon Siebert had burned down a house in Green Valley Ranch, mistakenly targeting innocent Senegalese immigrants after Bui used Apple's Find My feature to track his stolen phone to the wrong address. The August 2020 arson killed a family of five, including a toddler and infant. For months, detectives Neil Baker and Ernest Sandoval had no viable leads despite security footage showing three masked figures. Traditional methods -- cell tower data, geofence warrants, and hundreds of tips -- yielded nothing concrete. The breakthrough came when another detective suggested Google might have records of anyone searching the address beforehand. Police obtained a reverse keyword search warrant requesting all users who had searched variations of "5312 Truckee Street" in the 15 days before the fire. Google provided 61 matching devices. Cross-referencing with earlier cell tower data revealed the three suspects, who had collectively searched the address dozens of times, including floor plans on Zillow. of this story at Slashdot. #denver #detectives #crack #deadly #arson
    TECH.SLASHDOT.ORG
    Denver Detectives Crack Deadly Arson Case Using Teens' Google Search Histories
    Three teenagers nearly escaped prosecution for a 2020 house fire that killed five people until Denver police discovered a novel investigative technique: requesting Google search histories for specific terms. Kevin Bui, Gavin Seymour, and Dillon Siebert had burned down a house in Green Valley Ranch, mistakenly targeting innocent Senegalese immigrants after Bui used Apple's Find My feature to track his stolen phone to the wrong address. The August 2020 arson killed a family of five, including a toddler and infant. For months, detectives Neil Baker and Ernest Sandoval had no viable leads despite security footage showing three masked figures. Traditional methods -- cell tower data, geofence warrants, and hundreds of tips -- yielded nothing concrete. The breakthrough came when another detective suggested Google might have records of anyone searching the address beforehand. Police obtained a reverse keyword search warrant requesting all users who had searched variations of "5312 Truckee Street" in the 15 days before the fire. Google provided 61 matching devices. Cross-referencing with earlier cell tower data revealed the three suspects, who had collectively searched the address dozens of times, including floor plans on Zillow. Read more of this story at Slashdot.
    0 Comments 0 Shares
  • Apple says it won’t yet ‘take action’ on Fortnite return to the App Store

    Last week, Epic Games resubmitted Fortnite to the App Store in the United States. This followed a court ruling that stated Apple wasn’t allowed to charge a 27% commission on payments conducted through external payment services on the U.S. App Store.
    However, when it submitted the new version of Fortnite for app review, Epic Games didn’t hear back for quite some time.

    Tonight, Epic Games shared a letter that it says it received yesterday from Apple. This follows this mornings announcement that Apple had ‘blocked’ the launch of the new Fortnite update globally, which wasn’t necessarily the case. Instead, Apple simply didn’t want to touch the US version of Fortnite.
    Epic Games had bundled the two versions together, and Apple had then suggested that Epic Games submit the US and EU versions separately.
    In the letter shared, Apple stated the following:

    As you are well aware, Apple has previously denied requests to reinstate the Epic Games developer
    account, and we have informed you that Apple will not revisit that decision until after the U.S. litigation between the parties concludes. In our view, the same reasoning extends to returning Fortnite to the U.S. storefront of the App Store regardless of which Epic-related entity submits the app. If Epic believes that there is some factual or legal development that warrants further consideration of this position, please let us know in writing. In the meantime, Apple has determined not to take action on the Fortnite app submission until after the Ninth Circuit rules on our pending request for a partial stay of the new injunction.
    You can read the letter in full here. In short, Apple doesn’t want to take action until everything is fully settled involving the dispute.
    As a result of this, Epic Games has asked the courts to force Apple to allow Fortnite to relaunch on the U.S. App Store under the new rules.

    My favorite Apple accessory recommendations:
    Follow Michael: X/Twitter, Bluesky, Instagram

    Add 9to5Mac to your Google News feed. 

    FTC: We use income earning auto affiliate links. More.You’re reading 9to5Mac — experts who break news about Apple and its surrounding ecosystem, day after day. Be sure to check out our homepage for all the latest news, and follow 9to5Mac on Twitter, Facebook, and LinkedIn to stay in the loop. Don’t know where to start? Check out our exclusive stories, reviews, how-tos, and subscribe to our YouTube channel
    #apple #says #wont #yet #take
    Apple says it won’t yet ‘take action’ on Fortnite return to the App Store
    Last week, Epic Games resubmitted Fortnite to the App Store in the United States. This followed a court ruling that stated Apple wasn’t allowed to charge a 27% commission on payments conducted through external payment services on the U.S. App Store. However, when it submitted the new version of Fortnite for app review, Epic Games didn’t hear back for quite some time. Tonight, Epic Games shared a letter that it says it received yesterday from Apple. This follows this mornings announcement that Apple had ‘blocked’ the launch of the new Fortnite update globally, which wasn’t necessarily the case. Instead, Apple simply didn’t want to touch the US version of Fortnite. Epic Games had bundled the two versions together, and Apple had then suggested that Epic Games submit the US and EU versions separately. In the letter shared, Apple stated the following: As you are well aware, Apple has previously denied requests to reinstate the Epic Games developer account, and we have informed you that Apple will not revisit that decision until after the U.S. litigation between the parties concludes. In our view, the same reasoning extends to returning Fortnite to the U.S. storefront of the App Store regardless of which Epic-related entity submits the app. If Epic believes that there is some factual or legal development that warrants further consideration of this position, please let us know in writing. In the meantime, Apple has determined not to take action on the Fortnite app submission until after the Ninth Circuit rules on our pending request for a partial stay of the new injunction. You can read the letter in full here. In short, Apple doesn’t want to take action until everything is fully settled involving the dispute. As a result of this, Epic Games has asked the courts to force Apple to allow Fortnite to relaunch on the U.S. App Store under the new rules. My favorite Apple accessory recommendations: Follow Michael: X/Twitter, Bluesky, Instagram Add 9to5Mac to your Google News feed.  FTC: We use income earning auto affiliate links. More.You’re reading 9to5Mac — experts who break news about Apple and its surrounding ecosystem, day after day. Be sure to check out our homepage for all the latest news, and follow 9to5Mac on Twitter, Facebook, and LinkedIn to stay in the loop. Don’t know where to start? Check out our exclusive stories, reviews, how-tos, and subscribe to our YouTube channel #apple #says #wont #yet #take
    9TO5MAC.COM
    Apple says it won’t yet ‘take action’ on Fortnite return to the App Store
    Last week, Epic Games resubmitted Fortnite to the App Store in the United States. This followed a court ruling that stated Apple wasn’t allowed to charge a 27% commission on payments conducted through external payment services on the U.S. App Store. However, when it submitted the new version of Fortnite for app review, Epic Games didn’t hear back for quite some time. Tonight, Epic Games shared a letter that it says it received yesterday from Apple. This follows this mornings announcement that Apple had ‘blocked’ the launch of the new Fortnite update globally, which wasn’t necessarily the case. Instead, Apple simply didn’t want to touch the US version of Fortnite. Epic Games had bundled the two versions together, and Apple had then suggested that Epic Games submit the US and EU versions separately. In the letter shared, Apple stated the following: As you are well aware, Apple has previously denied requests to reinstate the Epic Games developer account, and we have informed you that Apple will not revisit that decision until after the U.S. litigation between the parties concludes. In our view, the same reasoning extends to returning Fortnite to the U.S. storefront of the App Store regardless of which Epic-related entity submits the app. If Epic believes that there is some factual or legal development that warrants further consideration of this position, please let us know in writing. In the meantime, Apple has determined not to take action on the Fortnite app submission until after the Ninth Circuit rules on our pending request for a partial stay of the new injunction. You can read the letter in full here. In short, Apple doesn’t want to take action until everything is fully settled involving the dispute. As a result of this, Epic Games has asked the courts to force Apple to allow Fortnite to relaunch on the U.S. App Store under the new rules. My favorite Apple accessory recommendations: Follow Michael: X/Twitter, Bluesky, Instagram Add 9to5Mac to your Google News feed.  FTC: We use income earning auto affiliate links. More.You’re reading 9to5Mac — experts who break news about Apple and its surrounding ecosystem, day after day. Be sure to check out our homepage for all the latest news, and follow 9to5Mac on Twitter, Facebook, and LinkedIn to stay in the loop. Don’t know where to start? Check out our exclusive stories, reviews, how-tos, and subscribe to our YouTube channel
    0 Comments 0 Shares
  • How to upgrade the M4 Mac mini SSD and save hundreds [Video]

    The base model M4 Mac mini is one of the best values in Mac computers, but upgrading the storage to the maximum 2TB significantly reduces that value proposition. That’s because Apple charges an insane for the upgrade, turning the budget computer into a one. In other words, you can purchase two base model Mac minis for less than the price of a single Mac mini with a 2TB upgrade.
    But fret not, because Expand Mac mini offers a 2TB upgrade for the M4 Mac mini for just – less than half of what Apple charges. In this hands-on step-by-step video walkthrough, I show you how to upgrade the M4 Mac mini SSD with 2TB of storage. Watch my full video, and be sure to subscribe to 9to5Mac on YouTube for more Mac guides and tutorials.

    Disclaimer: This only works with the Mac mini with M4 chip. It does not work with the higher-end M4 Pro Mac mini.
    Things you’ll need:

    Base M4 Mac mini
    Expand Mac mini 2TB SSD
    A second Mac running macOS Sonoma 14 or later for restoring macOS
    External SSD for Time Machine backup and restore
    A USB-C to USB-C cable that supports data and charging, not a Thunderbolt cable
    T3, T5, and T8 Torx drivers
    Jimmy tool
    Opening Pick
    TweezerSpudgerExpand Mac mini includes a multi-bit screw driver, the necessary bits, and pryer tool, but I much prefer my iFixit Pro Tech Kit, which includes higher quality parts. It’s not a requirement, but if you plan on doing any sort of DIY stuff, this kit is nice to have.
    Video: Upgrade the M4 Mac mini from 256GB to 2TB
    Subscribe to 9to5Mac on YouTube for more videos
    Backup your Mac
    Before you do anything, be sure to back up your Mac’s current SSD using Time Machine. This will let you easily restore your machine using Migration Assistant once the new SSD is installed and DFU-recovered.
    Step 1: Connect an external SSD with free space. Time Machine backups require their own volume, so you can create a separate volume via Disk Utility, or just use the entire SSD. I recommend any manner of Samsung SSDs; I use the Samsung T9.
    Step 2: Open Settings → General → Time Machine and click Add Backup Disk.
    Step 3: Enter your administrator password.
    Step 4: Select your external SSD and choose Set Up Disk…

    Step 5: Make sure Encrypt Backup is selected, and then enter and verify a new encryption password. Apple also requires you to fill out the “hint” field. Click Done to save the changes and the Time Machine backup will start preparing.
    Step 6: The Time Machine backup will automatically commence after 60 seconds, or you can force it to start by clicking Time Machine in the menu bar and selecting Back Up Now.
    Step 7: Verify that the backup is completed by visiting Settings → General → Time Machine.
    Step 8: Eject the Time Machine SSD from your Mac to save for later use.
    Erase All Content and Settings
    This is an optional step, but since you’ll no longer be using the SSD that you plan to replace, I recommend deleting the drive before removing. Ensure that you have your data backed up first before proceeding.
    Step 1: Go to Settings → General → Transfer or Reset and click Erase All Content and Settings.
    Step 2: Enter your Mac’s administrator password and click Unlock.
    Step 3: Click Continue on the Time Machine prompt, since you should have already backed up your Mac.

    Step 4: Click Continue on the Erase All Contents & Settings page.
    Step 5: If you’re signed in to iCloud, enter your Apple Account password to sign out and disable Activation Lock. Click Continue.
    Step 6: Click Erase All Content & Settings. The SSD will be erased, and the Mac will reboot.
    Install the new SSD
    Step 1: Shut down your M4 Mac mini and remove all cables.
    Step 2: Rest the Mac mini face down on a flat, soft surface to avoid marring the aluminum case.
    Step 3: Carefully insert the Jimmy tool between the gap where the aluminum chassis meets the plastic, black bottom cover, and pry the cover to create a gap between the two.
    Step 4: Insert a plastic opening pick and remove the Jimmy tool.
    Step 5: Slide the opening pick around the cover until it encounters each of the four clips that secure the cover to the chassis. Twist the opening pick slightly to pop out each clip. Take special care when sliding around the power button to avoid severing the power button cable.
    Step 6: Lift the edge of the cover that’s on the opposite corner of the power button, and flip it over to reveal the underside of the back cover. Rest something under the bottom cover so that you can access the inner plate screws without putting strain on the power button cable.

    Step 7: Remove all eight of the inner plate screws using a T5 Torx driver. All of the screws for the inner plate are the same, so don’t worry about remembering where each screw was.
    Step 8: Slide the inner plate down and away from the heat sink to loosen it. Be careful, because there is a ribbon cable that connects to the inner plate. Flip the back cover back on top of the inner plate, and then rest both the inner plate and back cover on the side of the Mac mini without putting stress on the ribbon cable.
    Step 9: Using the T3 Torx driver, remove the four fan screws. There are two short screws on the top, and two longer screws on the bottom.
    Step 11: Lift the fan and flip it over to expose the ribbon cable connection, and rest it on the edge of the Mac mini chassis without putting strain on the ribbon cable.

    Step 12: Remove the screw securing the SSD with the T8 Torx driver, and remove the SSD from its socket.
    Step 13: Insert the 2TB SSD into the socket securely, and secure it using the T8 screw.
    Step 14: Reinstall the fan, and put the inner plate and back cover back on without securing them down. Before securing the inner plate and back cover, it’s a good idea to test the install to make sure it was successful.

    DFU Restore
    Step 1: With the USB-C to USB-C cable, connect to the middle Thunderbolt port on the rear of the M4 Mac mini. This port is designated for DFU restores via macOS.
    Step 2: Plug the other end of the USB-C cable into a Mac running macOS Sonoma or later.
    Step 3: Hold the power button on the upgraded Mac mini, and while continuing to hold the power button, plug in the power cable.
    Step 4: Continue holding the power button until the Mac you’re using to perform the restore recognizes the connected Mac in DFU mode via Finder. You should also notice a flashing orange light on the front of the upgraded Mac mini. If macOS first shows an alert asking you to allow the accessory to connect, release the power button and click Allow.

    Step 5: Click the Restore Mac button on the Mac DFU Mode Finder window.
    Step 6: You’ll see a pop up warning you that your Mac will be reset to factory settings. Click Restore and Update.
    Step 7: macOS will download the necessary software, and then perform the restore. This works similarly to restoring an iPhone via a Mac. Depending on your Internet speed, it could take a while to download the restore file. The restore process is also somewhat lengthy, so be patient.
    Step 8: Once restored, the upgraded Mac mini’s status light should now be white, and you’ll see a message in macOS on the machine you used to perform the restore stating that the Mac has been restored to factory settings. Click OK.
    Migrate the Time Machine backup data
    Step 1: Disconnect your upgraded Mac mini from the other Mac, and connect the upgraded Mac mini to a monitor, keyboard, and mouse.
    Step 2: Power on the Mac mini, and connect the Time Machine backup drive to one of the USB-C ports.
    Step 3: Proceed through the initial macOS Setup process until you reach the Transfer Your Data to This Mac page. Select From a Mac, Time Machine, or startup disk, and click Continue.
    Step 4: Click Not Now on the Accessibility page, and Continue on the Data & Privacy page.
    Step 5: On the Transfer information to this Mac page, select your external drive, and click Continue.
    Step 6: If you set the Time Machine backup with encryption, enter the encryption password, and click Unlock.
    Step 7: Select the Time Machine icon, and click Continue.

    Step 8: Select your specific Time Machine backup and click Continue.
    Step 9: On the Transfer Your Information page, ensure that everything you want restored is checked and click Continue.
    Step 10: Create a new password for the user associated with the Time Machine backup, and click Set Password and then click Continue.
    macOS will now transfer your information from the Time Machine backup to your upgraded Mac mini’s SSD. This may take a while depending on how large the backup is.
    Step 11: On the Migration Complete page, click Restart Now to finish the migration.
    Step 12: Click Done when prompted, and macOS should display the initial Hello screen to finish the remainder of the initial setup. This includes logging back in to iCloud, setting up Disk Encryption, Touch ID, etc. Test out your Mac to make sure everything works, and verify the 2TB SSD upgrade via Finder and/or Disk Utility.
    Finish Mac mini reassembly
    If the install went as planned, you may now reassemble the Mac mini’s inner plate and back cover. Use the eight T5 Torx screws to secure the inner plate, and align the clips on the bottom cover to the holes on the inner plate and press down to lock the bottom plate back into place.
    Congratulations, you just saved hundreds of dollars on a 2TB SSD upgrade!
    9to5Mac’s Take
    The nice thing about this install is that it’s totally non-destructive and can easily be reverted. It also requires no cable removals, or anything else weird. The install requires removing just 13 screws, and can be done in a matter of minutes. I wanted to challenge myself, and I was able to open the Mac mini and perform the install in 5 minutes. It’s the Time Machine backup, DFU restore, and migration that takes up the majority of the time, as the actual hardware install is cake as long as you have the needed tools.

    256 GB SSD Speed Test

    2TB SSD Speed Test

    When comparing the two drives, the performance of the upgraded 2TB SSD is predictably faster when it comes to write speeds. But I’m curious to see how the drive holds up over the long term.
    Are Apple’s drives that much better from a reliability standpoint that it warrants a price difference, or are these drives largely the same, with Apple making insane margins for each upgrade sold? Time will tell, but I’ll be sure to report back with more info once I’ve been able to put the machine through the wringer for a few months.
    Would you consider this upgrade for your M4 Mac mini? Why or why not? Sound off down below with your thoughts.

    Add 9to5Mac to your Google News feed. 

    FTC: We use income earning auto affiliate links. More.You’re reading 9to5Mac — experts who break news about Apple and its surrounding ecosystem, day after day. Be sure to check out our homepage for all the latest news, and follow 9to5Mac on Twitter, Facebook, and LinkedIn to stay in the loop. Don’t know where to start? Check out our exclusive stories, reviews, how-tos, and subscribe to our YouTube channel
    #how #upgrade #mac #mini #ssd
    How to upgrade the M4 Mac mini SSD and save hundreds [Video]
    The base model M4 Mac mini is one of the best values in Mac computers, but upgrading the storage to the maximum 2TB significantly reduces that value proposition. That’s because Apple charges an insane for the upgrade, turning the budget computer into a one. In other words, you can purchase two base model Mac minis for less than the price of a single Mac mini with a 2TB upgrade. But fret not, because Expand Mac mini offers a 2TB upgrade for the M4 Mac mini for just – less than half of what Apple charges. In this hands-on step-by-step video walkthrough, I show you how to upgrade the M4 Mac mini SSD with 2TB of storage. Watch my full video, and be sure to subscribe to 9to5Mac on YouTube for more Mac guides and tutorials. Disclaimer: This only works with the Mac mini with M4 chip. It does not work with the higher-end M4 Pro Mac mini. Things you’ll need: Base M4 Mac mini Expand Mac mini 2TB SSD A second Mac running macOS Sonoma 14 or later for restoring macOS External SSD for Time Machine backup and restore A USB-C to USB-C cable that supports data and charging, not a Thunderbolt cable T3, T5, and T8 Torx drivers Jimmy tool Opening Pick TweezerSpudgerExpand Mac mini includes a multi-bit screw driver, the necessary bits, and pryer tool, but I much prefer my iFixit Pro Tech Kit, which includes higher quality parts. It’s not a requirement, but if you plan on doing any sort of DIY stuff, this kit is nice to have. Video: Upgrade the M4 Mac mini from 256GB to 2TB Subscribe to 9to5Mac on YouTube for more videos Backup your Mac Before you do anything, be sure to back up your Mac’s current SSD using Time Machine. This will let you easily restore your machine using Migration Assistant once the new SSD is installed and DFU-recovered. Step 1: Connect an external SSD with free space. Time Machine backups require their own volume, so you can create a separate volume via Disk Utility, or just use the entire SSD. I recommend any manner of Samsung SSDs; I use the Samsung T9. Step 2: Open Settings → General → Time Machine and click Add Backup Disk. Step 3: Enter your administrator password. Step 4: Select your external SSD and choose Set Up Disk… Step 5: Make sure Encrypt Backup is selected, and then enter and verify a new encryption password. Apple also requires you to fill out the “hint” field. Click Done to save the changes and the Time Machine backup will start preparing. Step 6: The Time Machine backup will automatically commence after 60 seconds, or you can force it to start by clicking Time Machine in the menu bar and selecting Back Up Now. Step 7: Verify that the backup is completed by visiting Settings → General → Time Machine. Step 8: Eject the Time Machine SSD from your Mac to save for later use. Erase All Content and Settings This is an optional step, but since you’ll no longer be using the SSD that you plan to replace, I recommend deleting the drive before removing. Ensure that you have your data backed up first before proceeding. Step 1: Go to Settings → General → Transfer or Reset and click Erase All Content and Settings. Step 2: Enter your Mac’s administrator password and click Unlock. Step 3: Click Continue on the Time Machine prompt, since you should have already backed up your Mac. Step 4: Click Continue on the Erase All Contents & Settings page. Step 5: If you’re signed in to iCloud, enter your Apple Account password to sign out and disable Activation Lock. Click Continue. Step 6: Click Erase All Content & Settings. The SSD will be erased, and the Mac will reboot. Install the new SSD Step 1: Shut down your M4 Mac mini and remove all cables. Step 2: Rest the Mac mini face down on a flat, soft surface to avoid marring the aluminum case. Step 3: Carefully insert the Jimmy tool between the gap where the aluminum chassis meets the plastic, black bottom cover, and pry the cover to create a gap between the two. Step 4: Insert a plastic opening pick and remove the Jimmy tool. Step 5: Slide the opening pick around the cover until it encounters each of the four clips that secure the cover to the chassis. Twist the opening pick slightly to pop out each clip. Take special care when sliding around the power button to avoid severing the power button cable. Step 6: Lift the edge of the cover that’s on the opposite corner of the power button, and flip it over to reveal the underside of the back cover. Rest something under the bottom cover so that you can access the inner plate screws without putting strain on the power button cable. Step 7: Remove all eight of the inner plate screws using a T5 Torx driver. All of the screws for the inner plate are the same, so don’t worry about remembering where each screw was. Step 8: Slide the inner plate down and away from the heat sink to loosen it. Be careful, because there is a ribbon cable that connects to the inner plate. Flip the back cover back on top of the inner plate, and then rest both the inner plate and back cover on the side of the Mac mini without putting stress on the ribbon cable. Step 9: Using the T3 Torx driver, remove the four fan screws. There are two short screws on the top, and two longer screws on the bottom. Step 11: Lift the fan and flip it over to expose the ribbon cable connection, and rest it on the edge of the Mac mini chassis without putting strain on the ribbon cable. Step 12: Remove the screw securing the SSD with the T8 Torx driver, and remove the SSD from its socket. Step 13: Insert the 2TB SSD into the socket securely, and secure it using the T8 screw. Step 14: Reinstall the fan, and put the inner plate and back cover back on without securing them down. Before securing the inner plate and back cover, it’s a good idea to test the install to make sure it was successful. DFU Restore Step 1: With the USB-C to USB-C cable, connect to the middle Thunderbolt port on the rear of the M4 Mac mini. This port is designated for DFU restores via macOS. Step 2: Plug the other end of the USB-C cable into a Mac running macOS Sonoma or later. Step 3: Hold the power button on the upgraded Mac mini, and while continuing to hold the power button, plug in the power cable. Step 4: Continue holding the power button until the Mac you’re using to perform the restore recognizes the connected Mac in DFU mode via Finder. You should also notice a flashing orange light on the front of the upgraded Mac mini. If macOS first shows an alert asking you to allow the accessory to connect, release the power button and click Allow. Step 5: Click the Restore Mac button on the Mac DFU Mode Finder window. Step 6: You’ll see a pop up warning you that your Mac will be reset to factory settings. Click Restore and Update. Step 7: macOS will download the necessary software, and then perform the restore. This works similarly to restoring an iPhone via a Mac. Depending on your Internet speed, it could take a while to download the restore file. The restore process is also somewhat lengthy, so be patient. Step 8: Once restored, the upgraded Mac mini’s status light should now be white, and you’ll see a message in macOS on the machine you used to perform the restore stating that the Mac has been restored to factory settings. Click OK. Migrate the Time Machine backup data Step 1: Disconnect your upgraded Mac mini from the other Mac, and connect the upgraded Mac mini to a monitor, keyboard, and mouse. Step 2: Power on the Mac mini, and connect the Time Machine backup drive to one of the USB-C ports. Step 3: Proceed through the initial macOS Setup process until you reach the Transfer Your Data to This Mac page. Select From a Mac, Time Machine, or startup disk, and click Continue. Step 4: Click Not Now on the Accessibility page, and Continue on the Data & Privacy page. Step 5: On the Transfer information to this Mac page, select your external drive, and click Continue. Step 6: If you set the Time Machine backup with encryption, enter the encryption password, and click Unlock. Step 7: Select the Time Machine icon, and click Continue. Step 8: Select your specific Time Machine backup and click Continue. Step 9: On the Transfer Your Information page, ensure that everything you want restored is checked and click Continue. Step 10: Create a new password for the user associated with the Time Machine backup, and click Set Password and then click Continue. macOS will now transfer your information from the Time Machine backup to your upgraded Mac mini’s SSD. This may take a while depending on how large the backup is. Step 11: On the Migration Complete page, click Restart Now to finish the migration. Step 12: Click Done when prompted, and macOS should display the initial Hello screen to finish the remainder of the initial setup. This includes logging back in to iCloud, setting up Disk Encryption, Touch ID, etc. Test out your Mac to make sure everything works, and verify the 2TB SSD upgrade via Finder and/or Disk Utility. Finish Mac mini reassembly If the install went as planned, you may now reassemble the Mac mini’s inner plate and back cover. Use the eight T5 Torx screws to secure the inner plate, and align the clips on the bottom cover to the holes on the inner plate and press down to lock the bottom plate back into place. Congratulations, you just saved hundreds of dollars on a 2TB SSD upgrade! 9to5Mac’s Take The nice thing about this install is that it’s totally non-destructive and can easily be reverted. It also requires no cable removals, or anything else weird. The install requires removing just 13 screws, and can be done in a matter of minutes. I wanted to challenge myself, and I was able to open the Mac mini and perform the install in 5 minutes. It’s the Time Machine backup, DFU restore, and migration that takes up the majority of the time, as the actual hardware install is cake as long as you have the needed tools. 256 GB SSD Speed Test 2TB SSD Speed Test When comparing the two drives, the performance of the upgraded 2TB SSD is predictably faster when it comes to write speeds. But I’m curious to see how the drive holds up over the long term. Are Apple’s drives that much better from a reliability standpoint that it warrants a price difference, or are these drives largely the same, with Apple making insane margins for each upgrade sold? Time will tell, but I’ll be sure to report back with more info once I’ve been able to put the machine through the wringer for a few months. Would you consider this upgrade for your M4 Mac mini? Why or why not? Sound off down below with your thoughts. Add 9to5Mac to your Google News feed.  FTC: We use income earning auto affiliate links. More.You’re reading 9to5Mac — experts who break news about Apple and its surrounding ecosystem, day after day. Be sure to check out our homepage for all the latest news, and follow 9to5Mac on Twitter, Facebook, and LinkedIn to stay in the loop. Don’t know where to start? Check out our exclusive stories, reviews, how-tos, and subscribe to our YouTube channel #how #upgrade #mac #mini #ssd
    9TO5MAC.COM
    How to upgrade the M4 Mac mini SSD and save hundreds [Video]
    The base model M4 Mac mini is one of the best values in Mac computers, but upgrading the storage to the maximum 2TB significantly reduces that value proposition. That’s because Apple charges an insane $800 for the upgrade, turning the budget $600 computer into a $1400 one. In other words, you can purchase two base model Mac minis for less than the price of a single Mac mini with a 2TB upgrade. But fret not, because Expand Mac mini offers a 2TB upgrade for the M4 Mac mini for just $320 – less than half of what Apple charges. In this hands-on step-by-step video walkthrough, I show you how to upgrade the M4 Mac mini SSD with 2TB of storage. Watch my full video, and be sure to subscribe to 9to5Mac on YouTube for more Mac guides and tutorials. Disclaimer: This only works with the Mac mini with M4 chip. It does not work with the higher-end M4 Pro Mac mini. Things you’ll need: Base M4 Mac mini Expand Mac mini 2TB SSD A second Mac running macOS Sonoma 14 or later for restoring macOS External SSD for Time Machine backup and restore A USB-C to USB-C cable that supports data and charging, not a Thunderbolt cable T3, T5, and T8 Torx drivers Jimmy tool Opening Pick Tweezer (Optional) Spudger (Optional) Expand Mac mini includes a multi-bit screw driver, the necessary bits, and pryer tool, but I much prefer my iFixit Pro Tech Kit, which includes higher quality parts. It’s not a requirement, but if you plan on doing any sort of DIY stuff, this kit is nice to have. Video: Upgrade the M4 Mac mini from 256GB to 2TB Subscribe to 9to5Mac on YouTube for more videos Backup your Mac Before you do anything, be sure to back up your Mac’s current SSD using Time Machine. This will let you easily restore your machine using Migration Assistant once the new SSD is installed and DFU-recovered. Step 1: Connect an external SSD with free space. Time Machine backups require their own volume, so you can create a separate volume via Disk Utility, or just use the entire SSD. I recommend any manner of Samsung SSDs; I use the Samsung T9. Step 2: Open Settings → General → Time Machine and click Add Backup Disk. Step 3: Enter your administrator password. Step 4: Select your external SSD and choose Set Up Disk… Step 5: Make sure Encrypt Backup is selected, and then enter and verify a new encryption password. Apple also requires you to fill out the “hint” field. Click Done to save the changes and the Time Machine backup will start preparing. Step 6: The Time Machine backup will automatically commence after 60 seconds, or you can force it to start by clicking Time Machine in the menu bar and selecting Back Up Now. Step 7: Verify that the backup is completed by visiting Settings → General → Time Machine. Step 8: Eject the Time Machine SSD from your Mac to save for later use. Erase All Content and Settings This is an optional step, but since you’ll no longer be using the SSD that you plan to replace, I recommend deleting the drive before removing. Ensure that you have your data backed up first before proceeding. Step 1: Go to Settings → General → Transfer or Reset and click Erase All Content and Settings. Step 2: Enter your Mac’s administrator password and click Unlock. Step 3: Click Continue on the Time Machine prompt, since you should have already backed up your Mac. Step 4: Click Continue on the Erase All Contents & Settings page. Step 5: If you’re signed in to iCloud, enter your Apple Account password to sign out and disable Activation Lock. Click Continue. Step 6: Click Erase All Content & Settings. The SSD will be erased, and the Mac will reboot. Install the new SSD Step 1: Shut down your M4 Mac mini and remove all cables. Step 2: Rest the Mac mini face down on a flat, soft surface to avoid marring the aluminum case. Step 3: Carefully insert the Jimmy tool between the gap where the aluminum chassis meets the plastic, black bottom cover, and pry the cover to create a gap between the two. Step 4: Insert a plastic opening pick and remove the Jimmy tool. Step 5: Slide the opening pick around the cover until it encounters each of the four clips that secure the cover to the chassis. Twist the opening pick slightly to pop out each clip. Take special care when sliding around the power button to avoid severing the power button cable. Step 6: Lift the edge of the cover that’s on the opposite corner of the power button, and flip it over to reveal the underside of the back cover. Rest something under the bottom cover so that you can access the inner plate screws without putting strain on the power button cable. Step 7: Remove all eight of the inner plate screws using a T5 Torx driver. All of the screws for the inner plate are the same, so don’t worry about remembering where each screw was. Step 8: Slide the inner plate down and away from the heat sink to loosen it. Be careful, because there is a ribbon cable that connects to the inner plate. Flip the back cover back on top of the inner plate, and then rest both the inner plate and back cover on the side of the Mac mini without putting stress on the ribbon cable. Step 9: Using the T3 Torx driver, remove the four fan screws. There are two short screws on the top, and two longer screws on the bottom. Step 11: Lift the fan and flip it over to expose the ribbon cable connection, and rest it on the edge of the Mac mini chassis without putting strain on the ribbon cable. Step 12: Remove the screw securing the SSD with the T8 Torx driver, and remove the SSD from its socket. Step 13: Insert the 2TB SSD into the socket securely, and secure it using the T8 screw. Step 14: Reinstall the fan, and put the inner plate and back cover back on without securing them down. Before securing the inner plate and back cover, it’s a good idea to test the install to make sure it was successful. DFU Restore Step 1: With the USB-C to USB-C cable, connect to the middle Thunderbolt port on the rear of the M4 Mac mini. This port is designated for DFU restores via macOS. Step 2: Plug the other end of the USB-C cable into a Mac running macOS Sonoma or later. Step 3: Hold the power button on the upgraded Mac mini, and while continuing to hold the power button, plug in the power cable. Step 4: Continue holding the power button until the Mac you’re using to perform the restore recognizes the connected Mac in DFU mode via Finder. You should also notice a flashing orange light on the front of the upgraded Mac mini. If macOS first shows an alert asking you to allow the accessory to connect, release the power button and click Allow. Step 5: Click the Restore Mac button on the Mac DFU Mode Finder window. Step 6: You’ll see a pop up warning you that your Mac will be reset to factory settings. Click Restore and Update. Step 7: macOS will download the necessary software, and then perform the restore. This works similarly to restoring an iPhone via a Mac. Depending on your Internet speed, it could take a while to download the restore file. The restore process is also somewhat lengthy, so be patient. Step 8: Once restored, the upgraded Mac mini’s status light should now be white, and you’ll see a message in macOS on the machine you used to perform the restore stating that the Mac has been restored to factory settings. Click OK. Migrate the Time Machine backup data Step 1: Disconnect your upgraded Mac mini from the other Mac, and connect the upgraded Mac mini to a monitor, keyboard, and mouse. Step 2: Power on the Mac mini, and connect the Time Machine backup drive to one of the USB-C ports. Step 3: Proceed through the initial macOS Setup process until you reach the Transfer Your Data to This Mac page. Select From a Mac, Time Machine, or startup disk, and click Continue. Step 4: Click Not Now on the Accessibility page, and Continue on the Data & Privacy page. Step 5: On the Transfer information to this Mac page, select your external drive, and click Continue. Step 6: If you set the Time Machine backup with encryption, enter the encryption password, and click Unlock. Step 7: Select the Time Machine icon, and click Continue. Step 8: Select your specific Time Machine backup and click Continue. Step 9: On the Transfer Your Information page, ensure that everything you want restored is checked and click Continue. Step 10: Create a new password for the user associated with the Time Machine backup, and click Set Password and then click Continue. macOS will now transfer your information from the Time Machine backup to your upgraded Mac mini’s SSD. This may take a while depending on how large the backup is. Step 11: On the Migration Complete page, click Restart Now to finish the migration. Step 12: Click Done when prompted, and macOS should display the initial Hello screen to finish the remainder of the initial setup. This includes logging back in to iCloud, setting up Disk Encryption, Touch ID, etc. Test out your Mac to make sure everything works, and verify the 2TB SSD upgrade via Finder and/or Disk Utility. Finish Mac mini reassembly If the install went as planned, you may now reassemble the Mac mini’s inner plate and back cover. Use the eight T5 Torx screws to secure the inner plate, and align the clips on the bottom cover to the holes on the inner plate and press down to lock the bottom plate back into place. Congratulations, you just saved hundreds of dollars on a 2TB SSD upgrade! 9to5Mac’s Take The nice thing about this install is that it’s totally non-destructive and can easily be reverted. It also requires no cable removals, or anything else weird. The install requires removing just 13 screws, and can be done in a matter of minutes. I wanted to challenge myself, and I was able to open the Mac mini and perform the install in 5 minutes. It’s the Time Machine backup, DFU restore, and migration that takes up the majority of the time, as the actual hardware install is cake as long as you have the needed tools. 256 GB SSD Speed Test 2TB SSD Speed Test When comparing the two drives, the performance of the upgraded 2TB SSD is predictably faster when it comes to write speeds. But I’m curious to see how the drive holds up over the long term. Are Apple’s drives that much better from a reliability standpoint that it warrants a $500 price difference, or are these drives largely the same, with Apple making insane margins for each upgrade sold? Time will tell, but I’ll be sure to report back with more info once I’ve been able to put the machine through the wringer for a few months. Would you consider this upgrade for your M4 Mac mini? Why or why not? Sound off down below with your thoughts. Add 9to5Mac to your Google News feed.  FTC: We use income earning auto affiliate links. More.You’re reading 9to5Mac — experts who break news about Apple and its surrounding ecosystem, day after day. Be sure to check out our homepage for all the latest news, and follow 9to5Mac on Twitter, Facebook, and LinkedIn to stay in the loop. Don’t know where to start? Check out our exclusive stories, reviews, how-tos, and subscribe to our YouTube channel
    0 Comments 0 Shares
  • We Say Goodbye To Andor, One Of The Best TV Shows Of 2025

    Well, we’ve reached the end of the road. Andor’s second and final season brought us 12 episodes ofexceptional Star Wars drama released in three-episode chunks, a format which served the structure of the show brilliantly, with each chunk representing one year in the four years leading up to Rogue One, but also meant that we didn’t get to savor the show for nearly as long.Suggested ReadingFallout Season 2 Teaser Confirms Lucy and Ghoul are Heading to New Vegas

    Share SubtitlesOffEnglishview videoSuggested ReadingFallout Season 2 Teaser Confirms Lucy and Ghoul are Heading to New Vegas

    Share SubtitlesOffEnglishEach week, we’ve gathered to discuss our reactions to the show’s latest episodes, and now, we do so for the last time. Join us as we say goodbye to this extraordinary series. Ethan Gach: I’m in camp Kleya, who called her arrival on Yavin in the final stretch of Andor “a bitter ending,” but perhaps somewhat more consoled than she was by Cassian reassurance that “nothing’s ending.”The final three episodes of season 2 were always going to be somewhat disappointing and bittersweet since we knew the show was ending and in some cases we knew where it would need to funnel people to set up Rogue One, but the final chapter still managed a surprising amount of high-stakes tension and unexpected backstory. How would you both rate the final episodes and what are you feeling now that the journey’s over?Carolyn Petit: I thought episode 10, with its look at how Luthen and Kleya formed their bond and her undertaking the terrible task of doing what needed to be done, was outstanding.Episodes 11 and 12 weren’t peak Andor, but I have to admit that the final slow-motion montage sequence really worked for me, and they had a political dimension I found somewhat surprising that I’ll discuss a bit more later.Zack Zwiezen: I was worried that the final episode would run out of steam as Tony Gilroy and co literally ran out of space for storytelling and had to slam the brakes to set up Rogue One. And while I enjoyed the montage slow-walk, I wonder if that works if you haven’t seen Rogue One. But overall, the final three episodes are really good. And I think the Kleya-Luthen focused episode is one of my favorite Andor episodes ever. I’m so happy she got a big spotlight before the end.CP: Me, too. That episode also helped cement, I think, that the show recognizes how necessary all of Luthen’s efforts were, even if those fussy ineffectual bureaucrats on Yavin don’t. This is an issue I’ve long had with how Star Wars has at times sanded away its own political dimensions in my view, something that Andor not only seeks to undo but takes farther than ever before. In truth, the act of blowing up the Death Star in the first film, that act which people cheered for in theaters in 1977 and that Star Wars fans for decades since have loved and admired, would, in universe, be considered an act of terrorism. That’s what the Empire would call it. That’s what governments do: they present their own violence as “legitimate” or “necessary” and the violence of those rebelling against them as “terrorism.” But there were times in Star Wars history where I felt like the people at the reins of the franchise wanted to send a message that you shouldn’t be “too extreme” in your resistance, don’t be a Saw Gerrera, do it through “proper channels.” And so I loved that Andor gave us that scene with Bail and some other politicians all kind of hemming and hawing over Luthen while the show, I think, was emphatically telling all of us, “Luthen was right. Maybe not every single little decision he made was right, but his ethos was fundamentally right and without someone like him, none of this would have been here.” And I loved it for that.ZZ: I think, and they talk about this in the behind the scenes, it’s very important that Luthen’s fight against the empire was really because Kleya wanted revenge.CP: Right. She’s the humanity that he’s fighting for. She’s what radicalizes him.ZZ: If he hadn’t found her and saved her, Luthen likely doesn’t become the rebel we know in Andor. And it also adds a new layer of complexity to their relationship. He was part of the army that brutalized her people. So she still has some lingering hatred for him. And yet she does care about him. And in that moment when she sneaks into the hospital to finish the job, you can feel that.EG: I think that scene with the Rebel Alliance leaders also helps show the Senate mentality creeping back in as the insurgency professionalizes itself.It’s easy to see why even after defeating the Empire in key battles it might struggle to rebuild or retain power, issues explored in Ahsoka and The Mandalorian. These last few episodes help situate Cassian between the uncompromising logic of Luthen’s spycraft and the “no one left behind” mentality of the Rebellion. Luthen’s final sacrifice is to die, and Cassian’s is to go back and risk everything just to save someone.ZZ: We should rewind a bit and talk about that moment between Luthen and Dedra. Or even further actually, and pour one out for Lonni, who I knew was dead the moment he sat down at that bench.CP: Yeah. When he mentioned his wife and kid, for a moment I thought mayyyyyyyybe Luthen would be like “You know what? I owe this guy.” But alas, no.ZZ: I also loved that line Luthen gave Klaya before the meeting: “I think we used up all the perfect.” CP: So good.LucasfilmZZ: And then we get Dedra Meero walking into Luthen’s shop as he’s destroying evidence. My wife literally gasped “OH SHIT!” at seeing Dedra at the door.EG: Only two artifacts may not be what they seem!CP: In a show that so often demands that characters put on a performance to blend into their surroundings, it was great seeing those two feel each other out and Luthen pretend for a bit that she was maybe not there to arrest him. But then, of course, he tries to kill himself, and you see that he was thinking a few steps ahead when he picked up the knife, though he made it seem like it was just part of their friendly dealings.ZZ: When he picked up the knife I was so distracted by him mentioning it being a Nautolan artifactthat I didn’t realize why he picked a knife.CP: Hahaha, the perils of having a database of Star Wars knowledge in your brain!ZZ: And then after he’s taken to the hospital, we get that wonderful sequence with Klaya sneaking in and taking him off life support. Anybody else want a Hitman-like Star Wars game now?CP: If that alien Kleya pushes around as she’s pretending to be hospital personnel is in it, absolutely! But yes, that was a great infiltration sequence, both thrilling and kind of excruciating because we knew what she was going there to do.EG: It included some of the best Coruscant backdrops we’ve ever gotten, I think.CP: One other moment from that episode that I can’t stop thinking about was the flashback scene in which we see Imperial officers drag some civilians through town, put them up against a wall, and kill them. It was another gut-wrenching reminder of the Empire’s evil and another moment that felt weirdly resonant as more and more people are being arrested by agents who often won’t even show warrants or identification in the streets of our towns.ZZ: On the flipside of that horrible moment that made me feel a pit in my stomach, we have Dedra getting arrested for being reckless and not following orders by chasing after Luthen long after she was supposed to be off the Axis investigation. I have to admit I smiled when I realized it was all over for her.CP: Man, I don’t know. I mean I absolutely hate her, don’t get me wrong, and yet that final shot of her, where we see that she’s in a prison very much like the one Cassian was in last seasonwas complicated for me. Like, I think that kind of incarceration is just wrong in and of itself and so it elicited this weird moment of something like sympathy for her, which in no way means I forgive her for what she’s done. It’s just one of those reminders that it’s ultimately a systemic evil that will sometimes grind up the people operating inside of it and supporting it as much as those being actively persecuted.The leopards ate her face, in other words.ZZ: Space leopards.But I agree, yes, that the Empire is evil and the way it operatesis to crush people up to fuel the fires of growth and war. And I think it was very arrogant of her to believe she would be spared. Or maybe she truly bought into the lies that the Empire was good and doing the right thing? Surely, she won’t end up in some horrible place and left to rot forever.CP: Yep.ZZ: Meanwhile, her boss, after all of these failures and letting the info on the Death Star slip out, realizes what’s coming for him and knows he doesn’t want to be ripped apart by the machine he helped create. And takes an easier way out. CP: That was the first and only indication we ever got that Nemik’s manifesto is actually spreading around, right, that people are listening to it? That was a cool moment, I thought, where at first we think it’s non-diegetic, just the writers and filmmakers reminding us one last time of Nemik’s stirring words, but then we see, oh, no, Partagaz was actually listening to it, the fire is spreading. It’s out there.EG: I loved the scene right outside when the gun shot goes off.CP: Yeah, so clear that the guy knew Partagaz wasn’t just taking a moment to “collect his thoughts,” he knew exactly what was coming.ZZ: The slight “stand down” gesture to the troopers.EG: I appreciate the minor moments of humanity Andor evokes even between the worst people.CP: Yeah, they’re essential IMO.ZZ: It makes them more evil. They are human beings. People with feelings and thoughts. And yet they still do this shit.EG: Something also given to Krennic when he and Partagaz wish each other luck at facing Palpatine’s wrath. Unlike the more buffoonish bad guy energy he gives off in Rogue One.ZZ: Also, very fun to see a character call out the Death Star name. Partagaz thinks its dumb. It’s just one of those reminders thatultimately a systemic evil that will sometimes grind up the people operating inside of it and supporting it as much as those being actively persecuted.ZZ: I’m so happy to see K-2SO back!CP: Yes. Not unlike C-3P0 he can be so exasperating at times, but when he goes full Terminator on Empire goons, man it feels good.For me, the whole tone of the scene with Andor and Melshi in the safehouse with Kleya and the communications jammed changed from “Oh shit, oh shit, get outta there!” to “LMAO y’all are about to get owned” as soon as K-2SO left the ship to go in for them, and it was glorious.ZZ: Yeah. The moment K-2SO shows up, it’s basically over for those imperial assholes and I loved it so much. I also like that the show uses its limited time with K-2SO to really develop a relationship between him and Cassian. They seem like buds!The part where they are playing space poker or whatever was great. Gilroy mentioned that after Bix leaves the place becomes a frat house, with Melshi moving in and them all drinking and partying between missions.CP: Ah, that totally makes sense!ZZ: I wonder if Andor is trying to drink away some pain and fill his life with friends to deal with losing Bix? That’s my read. He needs some buds and suds.CP: Definitely. There’s a part of me that still feels like Andor, the title character, could have maybe used a little bit more character development in this show, that with all of its moving pieces his own journey, both ideologically and as a person, maybe got a smidge sidelined. But I do like that we see him dreaming about his sister, since finding her was the big obsession driving him in the early episodes of season one. Now, I feel like he’s accepted that she’s gone but still the idea of her, his depth of feeling for her and the pain of losing her is part of what drives him to create a better world, not entirely unlike Luthen being driven by his love for Kleya. And speaking of love and the things that drive us, how did y’all feel about that final-final image of the show?ZZ: I loved it! To me it worked perfectly with a theme in Andor: hope.EG: “There is another.” lmao.CP: Right, to me it did in part feel like a nod to Star Wars’ obsession with dynasties and legacies, like we have to believe that, though Andor himself dies, what he stands for will live on not just as an idea but because he literally has a child. And yet, I still kinda liked it. We didn’t get a lightsaber but we did get a continued bloodline!ZZ: I think the show needed some hope at the end.EG: I think it was very thematically appropriate, even if I’m torn on the merits of mixing insurgency and family. It’s a division that feels a bit too tidy.ZZ: I think it did provide more reason for Bix leaving like she did. She was pregnant. She wanted to give her child a peaceful life and knew Andor would follow her if he knew. And in her mind, she’s thinking that they’ll get back together one day after the Empire has fallen. It’s both a very tragic final scene and also this reminder that there is more. This isn’t an ending.Screenshot: Lucasfilm / KotakuCP: Vel even tells him not to wait too long to reconnect, and we already know he never gets the chance! Really loved that those two, Cassian and Vel, got a moment here, too, and got to acknowledge all those they’ve lost along the way. But yes, you’re right, it was a lovely mix of deeply sad and hopeful, that final image. Luthen, Cassian, Saw, and so many others know they’re fighting for a world they themselves will likely not live to see. But that kid might.ZZ: And before we leave, I did like that we got one more tiny moment with Mon’s husbasndHe seems to be with the mother of the boy his daughter married? It was very fast. Couldn’t tell. But him just getting drunk in a limo on Coruscant, presumably throwing his wife under the bus and pledging loyalty to the Empire, seemed like all we needed to know about what happened to him.CP: Exactly. He is who we knew he was and his sad empty privileged life is his reward for it.I’d be curious to know how that final montage plays for folks who haven’t seen Rogue One. It really worked for me, seeing Cassian all dressed up for his fateful mission, the cuts to Dedra and other characters, and all around him, the Rebel base on Yavin, active and buzzing, about to change the galaxy, and now we know it’s all because of the efforts of so many people but among them, one Luthen Rael, an unsung hero of Star Wars. Are either of you planning on rewatching Rogue One any time soon?ZZ: I wanted to hold off until after this VG chat so I came into this without the weight of Rogue One on my mind. I plan on watching it this weekend! EG: I will say, as a parting thought, I don’t know that I needed the show to try and line up so neatly with Rogue One, perhaps the worst part of which is that silly blueprint handoff that directly leads into A New Hope. I do think some of the broader thrust of Andor and the unease and disquiet within its characters ended up being subsumed a little to neatly by the end of episode 12.CP: Oh, I agree. At a certain point in the final episode you really feel the show shift into “Okay, let’s get all the pieces in place for Rogue One” mode.ZZ: Yeah. It reminds me of the ending of Star Wars Episode III, where George Lucas sets up all the pieces for A New Hope and it feels less like an actual ending and more like a checkpoint.CP: And I think heading right from Andor into Rogue One will be quite jarring because—sorry Rogue One!—your dialogue is just not on the same level!ZZ: Nope! And what happened to Bail Organa! Did he get a haircut?CP: Hahaha.ZZ: But really, if that’s my biggest complaint about Andor—that its ending isn’t as strong as it could have been because of Rogue One—I’m still really happy.I’m not sure we’ll ever get a show like this again, or at least not for a long time. Real sets. Lots of actors. Incredible writing. Big budgets. Set in a large franchise. All this freedom. Even Gilroy has stated he’s not sure if this kind of thing will ever happen again.CP: It was glorious, and while I really hope we see more like it, I’ll try to just be grateful for the miracle that we ever got it at all. Now I just need Disney to put it on Blu-ray so I have it on physical media and it’s not trapped on a streaming service forever!ZZ: Rebellions and physical libraries of movies we love are built on hope. .
    #say #goodbye #andor #one #best
    We Say Goodbye To Andor, One Of The Best TV Shows Of 2025
    Well, we’ve reached the end of the road. Andor’s second and final season brought us 12 episodes ofexceptional Star Wars drama released in three-episode chunks, a format which served the structure of the show brilliantly, with each chunk representing one year in the four years leading up to Rogue One, but also meant that we didn’t get to savor the show for nearly as long.Suggested ReadingFallout Season 2 Teaser Confirms Lucy and Ghoul are Heading to New Vegas Share SubtitlesOffEnglishview videoSuggested ReadingFallout Season 2 Teaser Confirms Lucy and Ghoul are Heading to New Vegas Share SubtitlesOffEnglishEach week, we’ve gathered to discuss our reactions to the show’s latest episodes, and now, we do so for the last time. Join us as we say goodbye to this extraordinary series. Ethan Gach: I’m in camp Kleya, who called her arrival on Yavin in the final stretch of Andor “a bitter ending,” but perhaps somewhat more consoled than she was by Cassian reassurance that “nothing’s ending.”The final three episodes of season 2 were always going to be somewhat disappointing and bittersweet since we knew the show was ending and in some cases we knew where it would need to funnel people to set up Rogue One, but the final chapter still managed a surprising amount of high-stakes tension and unexpected backstory. How would you both rate the final episodes and what are you feeling now that the journey’s over?Carolyn Petit: I thought episode 10, with its look at how Luthen and Kleya formed their bond and her undertaking the terrible task of doing what needed to be done, was outstanding.Episodes 11 and 12 weren’t peak Andor, but I have to admit that the final slow-motion montage sequence really worked for me, and they had a political dimension I found somewhat surprising that I’ll discuss a bit more later.Zack Zwiezen: I was worried that the final episode would run out of steam as Tony Gilroy and co literally ran out of space for storytelling and had to slam the brakes to set up Rogue One. And while I enjoyed the montage slow-walk, I wonder if that works if you haven’t seen Rogue One. But overall, the final three episodes are really good. And I think the Kleya-Luthen focused episode is one of my favorite Andor episodes ever. I’m so happy she got a big spotlight before the end.CP: Me, too. That episode also helped cement, I think, that the show recognizes how necessary all of Luthen’s efforts were, even if those fussy ineffectual bureaucrats on Yavin don’t. This is an issue I’ve long had with how Star Wars has at times sanded away its own political dimensions in my view, something that Andor not only seeks to undo but takes farther than ever before. In truth, the act of blowing up the Death Star in the first film, that act which people cheered for in theaters in 1977 and that Star Wars fans for decades since have loved and admired, would, in universe, be considered an act of terrorism. That’s what the Empire would call it. That’s what governments do: they present their own violence as “legitimate” or “necessary” and the violence of those rebelling against them as “terrorism.” But there were times in Star Wars history where I felt like the people at the reins of the franchise wanted to send a message that you shouldn’t be “too extreme” in your resistance, don’t be a Saw Gerrera, do it through “proper channels.” And so I loved that Andor gave us that scene with Bail and some other politicians all kind of hemming and hawing over Luthen while the show, I think, was emphatically telling all of us, “Luthen was right. Maybe not every single little decision he made was right, but his ethos was fundamentally right and without someone like him, none of this would have been here.” And I loved it for that.ZZ: I think, and they talk about this in the behind the scenes, it’s very important that Luthen’s fight against the empire was really because Kleya wanted revenge.CP: Right. She’s the humanity that he’s fighting for. She’s what radicalizes him.ZZ: If he hadn’t found her and saved her, Luthen likely doesn’t become the rebel we know in Andor. And it also adds a new layer of complexity to their relationship. He was part of the army that brutalized her people. So she still has some lingering hatred for him. And yet she does care about him. And in that moment when she sneaks into the hospital to finish the job, you can feel that.EG: I think that scene with the Rebel Alliance leaders also helps show the Senate mentality creeping back in as the insurgency professionalizes itself.It’s easy to see why even after defeating the Empire in key battles it might struggle to rebuild or retain power, issues explored in Ahsoka and The Mandalorian. These last few episodes help situate Cassian between the uncompromising logic of Luthen’s spycraft and the “no one left behind” mentality of the Rebellion. Luthen’s final sacrifice is to die, and Cassian’s is to go back and risk everything just to save someone.ZZ: We should rewind a bit and talk about that moment between Luthen and Dedra. Or even further actually, and pour one out for Lonni, who I knew was dead the moment he sat down at that bench.CP: Yeah. When he mentioned his wife and kid, for a moment I thought mayyyyyyyybe Luthen would be like “You know what? I owe this guy.” But alas, no.ZZ: I also loved that line Luthen gave Klaya before the meeting: “I think we used up all the perfect.” CP: So good.LucasfilmZZ: And then we get Dedra Meero walking into Luthen’s shop as he’s destroying evidence. My wife literally gasped “OH SHIT!” at seeing Dedra at the door.EG: Only two artifacts may not be what they seem!CP: In a show that so often demands that characters put on a performance to blend into their surroundings, it was great seeing those two feel each other out and Luthen pretend for a bit that she was maybe not there to arrest him. But then, of course, he tries to kill himself, and you see that he was thinking a few steps ahead when he picked up the knife, though he made it seem like it was just part of their friendly dealings.ZZ: When he picked up the knife I was so distracted by him mentioning it being a Nautolan artifactthat I didn’t realize why he picked a knife.CP: Hahaha, the perils of having a database of Star Wars knowledge in your brain!ZZ: And then after he’s taken to the hospital, we get that wonderful sequence with Klaya sneaking in and taking him off life support. Anybody else want a Hitman-like Star Wars game now?CP: If that alien Kleya pushes around as she’s pretending to be hospital personnel is in it, absolutely! But yes, that was a great infiltration sequence, both thrilling and kind of excruciating because we knew what she was going there to do.EG: It included some of the best Coruscant backdrops we’ve ever gotten, I think.CP: One other moment from that episode that I can’t stop thinking about was the flashback scene in which we see Imperial officers drag some civilians through town, put them up against a wall, and kill them. It was another gut-wrenching reminder of the Empire’s evil and another moment that felt weirdly resonant as more and more people are being arrested by agents who often won’t even show warrants or identification in the streets of our towns.ZZ: On the flipside of that horrible moment that made me feel a pit in my stomach, we have Dedra getting arrested for being reckless and not following orders by chasing after Luthen long after she was supposed to be off the Axis investigation. I have to admit I smiled when I realized it was all over for her.CP: Man, I don’t know. I mean I absolutely hate her, don’t get me wrong, and yet that final shot of her, where we see that she’s in a prison very much like the one Cassian was in last seasonwas complicated for me. Like, I think that kind of incarceration is just wrong in and of itself and so it elicited this weird moment of something like sympathy for her, which in no way means I forgive her for what she’s done. It’s just one of those reminders that it’s ultimately a systemic evil that will sometimes grind up the people operating inside of it and supporting it as much as those being actively persecuted.The leopards ate her face, in other words.ZZ: Space leopards.But I agree, yes, that the Empire is evil and the way it operatesis to crush people up to fuel the fires of growth and war. And I think it was very arrogant of her to believe she would be spared. Or maybe she truly bought into the lies that the Empire was good and doing the right thing? Surely, she won’t end up in some horrible place and left to rot forever.CP: Yep.ZZ: Meanwhile, her boss, after all of these failures and letting the info on the Death Star slip out, realizes what’s coming for him and knows he doesn’t want to be ripped apart by the machine he helped create. And takes an easier way out. CP: That was the first and only indication we ever got that Nemik’s manifesto is actually spreading around, right, that people are listening to it? That was a cool moment, I thought, where at first we think it’s non-diegetic, just the writers and filmmakers reminding us one last time of Nemik’s stirring words, but then we see, oh, no, Partagaz was actually listening to it, the fire is spreading. It’s out there.EG: I loved the scene right outside when the gun shot goes off.CP: Yeah, so clear that the guy knew Partagaz wasn’t just taking a moment to “collect his thoughts,” he knew exactly what was coming.ZZ: The slight “stand down” gesture to the troopers.EG: I appreciate the minor moments of humanity Andor evokes even between the worst people.CP: Yeah, they’re essential IMO.ZZ: It makes them more evil. They are human beings. People with feelings and thoughts. And yet they still do this shit.EG: Something also given to Krennic when he and Partagaz wish each other luck at facing Palpatine’s wrath. Unlike the more buffoonish bad guy energy he gives off in Rogue One.ZZ: Also, very fun to see a character call out the Death Star name. Partagaz thinks its dumb. It’s just one of those reminders thatultimately a systemic evil that will sometimes grind up the people operating inside of it and supporting it as much as those being actively persecuted.ZZ: I’m so happy to see K-2SO back!CP: Yes. Not unlike C-3P0 he can be so exasperating at times, but when he goes full Terminator on Empire goons, man it feels good.For me, the whole tone of the scene with Andor and Melshi in the safehouse with Kleya and the communications jammed changed from “Oh shit, oh shit, get outta there!” to “LMAO y’all are about to get owned” as soon as K-2SO left the ship to go in for them, and it was glorious.ZZ: Yeah. The moment K-2SO shows up, it’s basically over for those imperial assholes and I loved it so much. I also like that the show uses its limited time with K-2SO to really develop a relationship between him and Cassian. They seem like buds!The part where they are playing space poker or whatever was great. Gilroy mentioned that after Bix leaves the place becomes a frat house, with Melshi moving in and them all drinking and partying between missions.CP: Ah, that totally makes sense!ZZ: I wonder if Andor is trying to drink away some pain and fill his life with friends to deal with losing Bix? That’s my read. He needs some buds and suds.CP: Definitely. There’s a part of me that still feels like Andor, the title character, could have maybe used a little bit more character development in this show, that with all of its moving pieces his own journey, both ideologically and as a person, maybe got a smidge sidelined. But I do like that we see him dreaming about his sister, since finding her was the big obsession driving him in the early episodes of season one. Now, I feel like he’s accepted that she’s gone but still the idea of her, his depth of feeling for her and the pain of losing her is part of what drives him to create a better world, not entirely unlike Luthen being driven by his love for Kleya. And speaking of love and the things that drive us, how did y’all feel about that final-final image of the show?ZZ: I loved it! To me it worked perfectly with a theme in Andor: hope.EG: “There is another.” lmao.CP: Right, to me it did in part feel like a nod to Star Wars’ obsession with dynasties and legacies, like we have to believe that, though Andor himself dies, what he stands for will live on not just as an idea but because he literally has a child. And yet, I still kinda liked it. We didn’t get a lightsaber but we did get a continued bloodline!ZZ: I think the show needed some hope at the end.EG: I think it was very thematically appropriate, even if I’m torn on the merits of mixing insurgency and family. It’s a division that feels a bit too tidy.ZZ: I think it did provide more reason for Bix leaving like she did. She was pregnant. She wanted to give her child a peaceful life and knew Andor would follow her if he knew. And in her mind, she’s thinking that they’ll get back together one day after the Empire has fallen. It’s both a very tragic final scene and also this reminder that there is more. This isn’t an ending.Screenshot: Lucasfilm / KotakuCP: Vel even tells him not to wait too long to reconnect, and we already know he never gets the chance! Really loved that those two, Cassian and Vel, got a moment here, too, and got to acknowledge all those they’ve lost along the way. But yes, you’re right, it was a lovely mix of deeply sad and hopeful, that final image. Luthen, Cassian, Saw, and so many others know they’re fighting for a world they themselves will likely not live to see. But that kid might.ZZ: And before we leave, I did like that we got one more tiny moment with Mon’s husbasndHe seems to be with the mother of the boy his daughter married? It was very fast. Couldn’t tell. But him just getting drunk in a limo on Coruscant, presumably throwing his wife under the bus and pledging loyalty to the Empire, seemed like all we needed to know about what happened to him.CP: Exactly. He is who we knew he was and his sad empty privileged life is his reward for it.I’d be curious to know how that final montage plays for folks who haven’t seen Rogue One. It really worked for me, seeing Cassian all dressed up for his fateful mission, the cuts to Dedra and other characters, and all around him, the Rebel base on Yavin, active and buzzing, about to change the galaxy, and now we know it’s all because of the efforts of so many people but among them, one Luthen Rael, an unsung hero of Star Wars. Are either of you planning on rewatching Rogue One any time soon?ZZ: I wanted to hold off until after this VG chat so I came into this without the weight of Rogue One on my mind. I plan on watching it this weekend! EG: I will say, as a parting thought, I don’t know that I needed the show to try and line up so neatly with Rogue One, perhaps the worst part of which is that silly blueprint handoff that directly leads into A New Hope. I do think some of the broader thrust of Andor and the unease and disquiet within its characters ended up being subsumed a little to neatly by the end of episode 12.CP: Oh, I agree. At a certain point in the final episode you really feel the show shift into “Okay, let’s get all the pieces in place for Rogue One” mode.ZZ: Yeah. It reminds me of the ending of Star Wars Episode III, where George Lucas sets up all the pieces for A New Hope and it feels less like an actual ending and more like a checkpoint.CP: And I think heading right from Andor into Rogue One will be quite jarring because—sorry Rogue One!—your dialogue is just not on the same level!ZZ: Nope! And what happened to Bail Organa! Did he get a haircut?CP: Hahaha.ZZ: But really, if that’s my biggest complaint about Andor—that its ending isn’t as strong as it could have been because of Rogue One—I’m still really happy.I’m not sure we’ll ever get a show like this again, or at least not for a long time. Real sets. Lots of actors. Incredible writing. Big budgets. Set in a large franchise. All this freedom. Even Gilroy has stated he’s not sure if this kind of thing will ever happen again.CP: It was glorious, and while I really hope we see more like it, I’ll try to just be grateful for the miracle that we ever got it at all. Now I just need Disney to put it on Blu-ray so I have it on physical media and it’s not trapped on a streaming service forever!ZZ: Rebellions and physical libraries of movies we love are built on hope. . #say #goodbye #andor #one #best
    KOTAKU.COM
    We Say Goodbye To Andor, One Of The Best TV Shows Of 2025
    Well, we’ve reached the end of the road. Andor’s second and final season brought us 12 episodes of (mostly) exceptional Star Wars drama released in three-episode chunks, a format which served the structure of the show brilliantly, with each chunk representing one year in the four years leading up to Rogue One, but also meant that we didn’t get to savor the show for nearly as long.Suggested ReadingFallout Season 2 Teaser Confirms Lucy and Ghoul are Heading to New Vegas Share SubtitlesOffEnglishview videoSuggested ReadingFallout Season 2 Teaser Confirms Lucy and Ghoul are Heading to New Vegas Share SubtitlesOffEnglishEach week, we’ve gathered to discuss our reactions to the show’s latest episodes (you can find last week’s conversation here), and now, we do so for the last time. Join us as we say goodbye to this extraordinary series. Ethan Gach: I’m in camp Kleya, who called her arrival on Yavin in the final stretch of Andor “a bitter ending,” but perhaps somewhat more consoled than she was by Cassian reassurance that “nothing’s ending.”The final three episodes of season 2 were always going to be somewhat disappointing and bittersweet since we knew the show was ending and in some cases we knew where it would need to funnel people to set up Rogue One, but the final chapter still managed a surprising amount of high-stakes tension and unexpected backstory. How would you both rate the final episodes and what are you feeling now that the journey’s over?Carolyn Petit: I thought episode 10, with its look at how Luthen and Kleya formed their bond and her undertaking the terrible task of doing what needed to be done, was outstanding. (It also gave us an alien who instantly became one of my favorite Star Wars creatures ever!) Episodes 11 and 12 weren’t peak Andor, but I have to admit that the final slow-motion montage sequence really worked for me, and they had a political dimension I found somewhat surprising that I’ll discuss a bit more later.Zack Zwiezen: I was worried that the final episode would run out of steam as Tony Gilroy and co literally ran out of space for storytelling and had to slam the brakes to set up Rogue One. And while I enjoyed the montage slow-walk, I wonder if that works if you haven’t seen Rogue One. But overall, the final three episodes are really good. And I think the Kleya-Luthen focused episode is one of my favorite Andor episodes ever. I’m so happy she got a big spotlight before the end.CP: Me, too. That episode also helped cement, I think, that the show recognizes how necessary all of Luthen’s efforts were, even if those fussy ineffectual bureaucrats on Yavin don’t. This is an issue I’ve long had with how Star Wars has at times sanded away its own political dimensions in my view, something that Andor not only seeks to undo but takes farther than ever before. In truth, the act of blowing up the Death Star in the first film, that act which people cheered for in theaters in 1977 and that Star Wars fans for decades since have loved and admired, would, in universe, be considered an act of terrorism. That’s what the Empire would call it. That’s what governments do: they present their own violence as “legitimate” or “necessary” and the violence of those rebelling against them as “terrorism.” But there were times in Star Wars history where I felt like the people at the reins of the franchise wanted to send a message that you shouldn’t be “too extreme” in your resistance, don’t be a Saw Gerrera, do it through “proper channels.” And so I loved that Andor gave us that scene with Bail and some other politicians all kind of hemming and hawing over Luthen while the show, I think, was emphatically telling all of us, “Luthen was right. Maybe not every single little decision he made was right, but his ethos was fundamentally right and without someone like him, none of this would have been here.” And I loved it for that.ZZ: I think, and they talk about this in the behind the scenes, it’s very important that Luthen’s fight against the empire was really because Kleya wanted revenge.CP: Right. She’s the humanity that he’s fighting for. She’s what radicalizes him.ZZ: If he hadn’t found her and saved her, Luthen likely doesn’t become the rebel we know in Andor. And it also adds a new layer of complexity to their relationship. He was part of the army that brutalized her people. So she still has some lingering hatred for him. And yet she does care about him. And in that moment when she sneaks into the hospital to finish the job, you can feel that.EG: I think that scene with the Rebel Alliance leaders also helps show the Senate mentality creeping back in as the insurgency professionalizes itself.It’s easy to see why even after defeating the Empire in key battles it might struggle to rebuild or retain power, issues explored in Ahsoka and The Mandalorian. These last few episodes help situate Cassian between the uncompromising logic of Luthen’s spycraft and the “no one left behind” mentality of the Rebellion. Luthen’s final sacrifice is to die, and Cassian’s is to go back and risk everything just to save someone.ZZ: We should rewind a bit and talk about that moment between Luthen and Dedra. Or even further actually, and pour one out for Lonni, who I knew was dead the moment he sat down at that bench.CP: Yeah. When he mentioned his wife and kid, for a moment I thought mayyyyyyyybe Luthen would be like “You know what? I owe this guy.” But alas, no.ZZ: I also loved that line Luthen gave Klaya before the meeting: “I think we used up all the perfect.” CP: So good.LucasfilmZZ: And then we get Dedra Meero walking into Luthen’s shop as he’s destroying evidence. My wife literally gasped “OH SHIT!” at seeing Dedra at the door.EG: Only two artifacts may not be what they seem!CP: In a show that so often demands that characters put on a performance to blend into their surroundings, it was great seeing those two feel each other out and Luthen pretend for a bit that she was maybe not there to arrest him. But then, of course, he tries to kill himself, and you see that he was thinking a few steps ahead when he picked up the knife, though he made it seem like it was just part of their friendly dealings.ZZ: When he picked up the knife I was so distracted by him mentioning it being a Nautolan artifact (Kit Fisto’s species) that I didn’t realize why he picked a knife.CP: Hahaha, the perils of having a database of Star Wars knowledge in your brain!ZZ: And then after he’s taken to the hospital, we get that wonderful sequence with Klaya sneaking in and taking him off life support. Anybody else want a Hitman-like Star Wars game now?CP: If that alien Kleya pushes around as she’s pretending to be hospital personnel is in it, absolutely! But yes, that was a great infiltration sequence, both thrilling and kind of excruciating because we knew what she was going there to do.EG: It included some of the best Coruscant backdrops we’ve ever gotten, I think.CP: One other moment from that episode that I can’t stop thinking about was the flashback scene in which we see Imperial officers drag some civilians through town, put them up against a wall, and kill them. It was another gut-wrenching reminder of the Empire’s evil and another moment that felt weirdly resonant as more and more people are being arrested by agents who often won’t even show warrants or identification in the streets of our towns.ZZ: On the flipside of that horrible moment that made me feel a pit in my stomach, we have Dedra getting arrested for being reckless and not following orders by chasing after Luthen long after she was supposed to be off the Axis investigation. I have to admit I smiled when I realized it was all over for her.CP: Man, I don’t know. I mean I absolutely hate her, don’t get me wrong, and yet that final shot of her, where we see that she’s in a prison very much like the one Cassian was in last season (if not the same one) was complicated for me. Like, I think that kind of incarceration is just wrong in and of itself and so it elicited this weird moment of something like sympathy for her, which in no way means I forgive her for what she’s done. It’s just one of those reminders that it’s ultimately a systemic evil that will sometimes grind up the people operating inside of it and supporting it as much as those being actively persecuted.The leopards ate her face, in other words.ZZ: Space leopards.But I agree, yes, that the Empire is evil and the way it operates (like many real-world countries) is to crush people up to fuel the fires of growth and war. And I think it was very arrogant of her to believe she would be spared. Or maybe she truly bought into the lies that the Empire was good and doing the right thing? Surely, she won’t end up in some horrible place and left to rot forever.CP: Yep.ZZ: Meanwhile, her boss, after all of these failures and letting the info on the Death Star slip out, realizes what’s coming for him and knows he doesn’t want to be ripped apart by the machine he helped create. And takes an easier way out. CP: That was the first and only indication we ever got that Nemik’s manifesto is actually spreading around, right, that people are listening to it? That was a cool moment, I thought, where at first we think it’s non-diegetic, just the writers and filmmakers reminding us one last time of Nemik’s stirring words, but then we see, oh, no, Partagaz was actually listening to it, the fire is spreading. It’s out there.EG: I loved the scene right outside when the gun shot goes off.CP: Yeah, so clear that the guy knew Partagaz wasn’t just taking a moment to “collect his thoughts,” he knew exactly what was coming.ZZ: The slight “stand down” gesture to the troopers.EG: I appreciate the minor moments of humanity Andor evokes even between the worst people.CP: Yeah, they’re essential IMO.ZZ: It makes them more evil. They are human beings. People with feelings and thoughts. And yet they still do this shit.EG: Something also given to Krennic when he and Partagaz wish each other luck at facing Palpatine’s wrath. Unlike the more buffoonish bad guy energy he gives off in Rogue One.ZZ: Also, very fun to see a character call out the Death Star name. Partagaz thinks its dumb. It’s just one of those reminders that [the Empire is] ultimately a systemic evil that will sometimes grind up the people operating inside of it and supporting it as much as those being actively persecuted.ZZ: I’m so happy to see K-2SO back!CP: Yes. Not unlike C-3P0 he can be so exasperating at times (in an endearing and funny way), but when he goes full Terminator on Empire goons, man it feels good.For me, the whole tone of the scene with Andor and Melshi in the safehouse with Kleya and the communications jammed changed from “Oh shit, oh shit, get outta there!” to “LMAO y’all are about to get owned” as soon as K-2SO left the ship to go in for them, and it was glorious.ZZ: Yeah. The moment K-2SO shows up, it’s basically over for those imperial assholes and I loved it so much. I also like that the show uses its limited time with K-2SO to really develop a relationship between him and Cassian. They seem like buds!The part where they are playing space poker or whatever was great. Gilroy mentioned that after Bix leaves the place becomes a frat house, with Melshi moving in and them all drinking and partying between missions.CP: Ah, that totally makes sense!ZZ: I wonder if Andor is trying to drink away some pain and fill his life with friends to deal with losing Bix? That’s my read. He needs some buds and suds.CP: Definitely. There’s a part of me that still feels like Andor, the title character, could have maybe used a little bit more character development in this show, that with all of its moving pieces his own journey, both ideologically and as a person, maybe got a smidge sidelined. But I do like that we see him dreaming about his sister, since finding her was the big obsession driving him in the early episodes of season one. Now, I feel like he’s accepted that she’s gone but still the idea of her, his depth of feeling for her and the pain of losing her is part of what drives him to create a better world, not entirely unlike Luthen being driven by his love for Kleya. And speaking of love and the things that drive us, how did y’all feel about that final-final image of the show?ZZ: I loved it! To me it worked perfectly with a theme in Andor: hope.EG: “There is another.” lmao.CP: Right, to me it did in part feel like a nod to Star Wars’ obsession with dynasties and legacies, like we have to believe that, though Andor himself dies, what he stands for will live on not just as an idea but because he literally has a child. And yet, I still kinda liked it. We didn’t get a lightsaber but we did get a continued bloodline!ZZ: I think the show needed some hope at the end.EG: I think it was very thematically appropriate, even if I’m torn on the merits of mixing insurgency and family. It’s a division that feels a bit too tidy.ZZ: I think it did provide more reason for Bix leaving like she did. She was pregnant. She wanted to give her child a peaceful life and knew Andor would follow her if he knew. And in her mind, she’s thinking that they’ll get back together one day after the Empire has fallen. It’s both a very tragic final scene and also this reminder that there is more. This isn’t an ending.Screenshot: Lucasfilm / KotakuCP: Vel even tells him not to wait too long to reconnect, and we already know he never gets the chance! Really loved that those two, Cassian and Vel, got a moment here, too, and got to acknowledge all those they’ve lost along the way. But yes, you’re right, it was a lovely mix of deeply sad and hopeful, that final image. Luthen, Cassian, Saw, and so many others know they’re fighting for a world they themselves will likely not live to see. But that kid might.ZZ: And before we leave, I did like that we got one more tiny moment with Mon’s husbasndHe seems to be with the mother of the boy his daughter married? It was very fast. Couldn’t tell. But him just getting drunk in a limo on Coruscant, presumably throwing his wife under the bus and pledging loyalty to the Empire, seemed like all we needed to know about what happened to him.CP: Exactly. He is who we knew he was and his sad empty privileged life is his reward for it.I’d be curious to know how that final montage plays for folks who haven’t seen Rogue One. It really worked for me, seeing Cassian all dressed up for his fateful mission, the cuts to Dedra and other characters, and all around him, the Rebel base on Yavin, active and buzzing, about to change the galaxy, and now we know it’s all because of the efforts of so many people but among them, one Luthen Rael, an unsung hero of Star Wars. Are either of you planning on rewatching Rogue One any time soon?ZZ: I wanted to hold off until after this VG chat so I came into this without the weight of Rogue One on my mind. I plan on watching it this weekend! EG: I will say, as a parting thought, I don’t know that I needed the show to try and line up so neatly with Rogue One, perhaps the worst part of which is that silly blueprint handoff that directly leads into A New Hope. I do think some of the broader thrust of Andor and the unease and disquiet within its characters ended up being subsumed a little to neatly by the end of episode 12.CP: Oh, I agree. At a certain point in the final episode you really feel the show shift into “Okay, let’s get all the pieces in place for Rogue One” mode.ZZ: Yeah. It reminds me of the ending of Star Wars Episode III, where George Lucas sets up all the pieces for A New Hope and it feels less like an actual ending and more like a checkpoint.CP: And I think heading right from Andor into Rogue One will be quite jarring because—sorry Rogue One!—your dialogue is just not on the same level!ZZ: Nope! And what happened to Bail Organa! Did he get a haircut?CP: Hahaha.ZZ: But really, if that’s my biggest complaint about Andor—that its ending isn’t as strong as it could have been because of Rogue One—I’m still really happy.I’m not sure we’ll ever get a show like this again, or at least not for a long time. Real sets. Lots of actors. Incredible writing. Big budgets. Set in a large franchise. All this freedom. Even Gilroy has stated he’s not sure if this kind of thing will ever happen again.CP: It was glorious, and while I really hope we see more like it, I’ll try to just be grateful for the miracle that we ever got it at all. Now I just need Disney to put it on Blu-ray so I have it on physical media and it’s not trapped on a streaming service forever!ZZ: Rebellions and physical libraries of movies we love are built on hope. .
    0 Comments 0 Shares
  • May Patch Tuesday brings five exploited zero-days to fix

    Microsoft has issued fixes for a total of five new zero-day vulnerabilities out of a grand total of just over 70 addressable common vulnerabilities and exposures (CVEs) on the fifth Patch Tuesday of 2025 – over 80 when third-party issues are accounted for.
    In numerical order, this month’s zero days are as follows:
    CVE-2025-30400, an elevation of privilege (EoP) vulnerability in Microsoft DWM Core Library;
    CVE-2025-30397, a memory corruption leading to remote code execution (RCE) vulnerability in Scripting Engine;
    CVE-2025-32701, an EoP vulnerability in Windows Common Log File System Driver (CLFS);
    CVE-2025-32706, a second EoP flaw in CLFS;
    CVE-2025-32709, an EoP issue in Windows Ancillary Function Driver for WinSock (AFD.sys).
    All five of these CVEs are listed by Microsoft as being exploited in the wild, but have not yet been made public.
    They are all rated as being of Important severity, and all save the Scripting Engine flaw carry CVSS ratings of 7.8.
    Mike Walters, president and co-founder of patch management specialist Action1, said that the two CLFS issues stood out as particularly dangerous given its importance in computing – the CLFS is a critical component that providers logging services to user- and kernel-mode applications, and is widely used by various system services and third-party applications.
    “Attackers exploiting these vulnerabilities can escalate privileges to system level, granting them full control to run arbitrary code, install malware, modify data, or disable security protections,” said Walters.
    “With low complexity and minimal privileges needed, these flaws pose a serious risk, especially given the confirmed in-the-wild exploitation [and] while no public exploit code is currently available, the presence of active attacks suggests that targeted campaigns, potentially involving advanced persistent threats (APTs), are already underway.
    “Organisations should prioritise immediate assessment and remediation of these vulnerabilities to prevent potential compromise. Any organisation running Windows systems – across enterprise, government, education, or consumer sectors – could be exposed.
    Given Windows’ global footprint, millions of devices are likely at risk,” said Walters.
    CVE-2025-30400 in DWM Core Library should also be high on security admins’ patching lists, observed Kev Breen, senior director of threat research at Immersive.
    He explained: “If exploited, it would allow attackers to gain system-level permission on the affected host.
    With this level of privilege, attackers would be able to gain full control over the host, including any security tools and user accounts, potentially allowing for domain-level access to be compromised.
    “This CVE is marked as ‘Exploitation Detected’ by the Microsoft team, meaning patches should be applied immediately as threat groups, including ransomware affiliates, will be quick to leverage this once more details become public.”
    Breen added that once this happens, cyber teams and threat hunters should work quickly to review their systems for indicators of compromise (IoCs) to ensure that they haven’t been hit in the window between the point at which threat actors began at-scale exploitation, and the patch was released.
    Breen’s colleague, cyber threat intelligence researcher Ben Hopkins, ran the rule over the remaining exploited zero-days, CVE-20205-30397 in Scripting Engine and CVE-2025-32709 in AFD.sys
    “A scripting engine memory corruption vulnerability occurs when the Microsoft scripting engine mishandles objects in memory, in this case leading to an elevation of privilege being performed by an attacker,” he explained.
    “This specific vulnerability exists … involves access to a resource using (‘type confusion’) which allows attackers to execute code over a network.
    Type confusion in this context occurs when a program mistakenly treats a piece of data as a different type than it actually is, which leads to undefined and unpredictable behaviour, allowing the attacker to execute arbitrary code and elevate their privileges,” said Hopkins
    For the layperson, this means that having attained system-level privileges, a threat actor could easily access sensitive data and look for opportunities to pivot to other, more valuable parts of the victim’s network.
    Turning to the issue affecting AFD.sys, a core Windows kernel-mode driver that supports network socket operations by bridging from WinSock (Windows Sockets API) in user space, and lower-level network drivers in the kernel, Hopkins explained that an unauthorized attacker could exploit a condition in which memory that has been deallocated can still be accessed to inject controlled data into memory and influence how the program behaves, ultimately granting them the ability to elevate their privileges.
    In both cases, what this means is that having attained system-level privileges, a threat actor could easily access sensitive data and look for opportunities to pivot to other, more valuable parts of the victim’s network.
    Two additional zero-days have been publicly-disclosed today (13 May) but have not yet been reported as coming under attack at the time of writing.
    These are CVE-2025-26685, a spoofing vulnerability in Microsoft Defender for Identity, and CVE-2025-32702, an RCE vulnerability in Visual Studio.
    Both of these are rated of Important severity, carrying CVSS scores of 6.5 and 7.8 respectively.
    Finally, the May update brings a total of 11 critical flaws affecting Azure Automation, Azure DevOps, Azure Storage Resource, Microsoft Dataverse, Microsoft msagsfeedback.zurewebsites.net, Microsoft Office, Microsoft Power Apps, Microsoft Virtual Machine Bus and Remote Desktop Client (RDP).
    In their impact, these issues run the gamut from EoP to spoofing to information disclosure, and six of them lead to RCE, said Microsoft.
    Of the critical issues, Walters’ co-CEO and co-founder at Action1, Alex Vovk, told Computer Weekly that the two RDP flaws stood out in particular.
    These are tracked as CVE-2025-29966 and CVE-2025-29967.
    “Both vulnerabilities pose critical risks, including remote code execution, full system compromise, and data breaches,” remarked Vovk.
    “Given the broad adoption of remote desktop services, many organizations are potentially exposed.
    CVE-2025-29966 and CVE-2025-29967 underscore the urgent need to secure both client and server components in remote access environments.”
    Read more about Patch Tuesday
    April 2025: Microsoft is correcting 124 vulnerabilities in its March Patch Tuesday, one of which is being actively exploited in the wild, and 11 of which are ‘critical’.
    March 2025: The third Patch Tuesday of 2025 brought fixes for 57 flaws and a hefty number of zero-days.
    February 2025: Microsoft corrected 57 vulnerabilities, two of which are being actively exploited in the wild, and three of which are ‘critical’.
    January 2025: The largest Patch Tuesday of the 2020s so far brings fixes for more than 150 CVEs ranging widely in their scope and severity – including eight zero-day flaws.
    December 2024: Microsoft has fixed over 70 CVEs in its final Patch Tuesday update of the year, and defenders should prioritise a zero-day in the Common Log File System Driver, and another impactful flaw in the Lightweight Directory Access Protocol.
    November 2024: High-profile vulns in NTLM, Windows Task Scheduler, Active Directory Certificate Services and Microsoft Exchange Server should be prioritised from November’s Patch Tuesday update.
    October 2024: Stand-out vulnerabilities in Microsoft’s latest Patch Tuesday drop include problems in Microsoft Management Console and the Windows MSHTML Platform.
    September 2024: Four critical remote code execution bugs in Windows and three critical elevated privileges vulnerabilities will keep admins busy.
    August 2024: Microsoft patches six actively exploited zero-days among over 100 issues during its regular monthly update.
    July 2024: Microsoft has fixed almost 140 vulnerabilities in its latest monthly update, with a Hyper-V zero-day singled out for urgent attention.
    June 2024: An RCE vulnerability in a Microsoft messaging feature and a third-party flaw in a DNS authentication protocol are the most pressing issues to address in Microsoft’s latest Patch Tuesday update.
    May 2024: A critical SharePoint vulnerability warrants attention this month, but it is another flaw that seems to be linked to the infamous Qakbot malware that is drawing attention.

    Source: https://www.computerweekly.com/news/366623992/May-Patch-Tuesday-brings-five-exploited-zero-days-to-fix" style="color: #0066cc;">https://www.computerweekly.com/news/366623992/May-Patch-Tuesday-brings-five-exploited-zero-days-to-fix
    #may #patch #tuesday #brings #five #exploited #zerodays #fix
    May Patch Tuesday brings five exploited zero-days to fix
    Microsoft has issued fixes for a total of five new zero-day vulnerabilities out of a grand total of just over 70 addressable common vulnerabilities and exposures (CVEs) on the fifth Patch Tuesday of 2025 – over 80 when third-party issues are accounted for. In numerical order, this month’s zero days are as follows: CVE-2025-30400, an elevation of privilege (EoP) vulnerability in Microsoft DWM Core Library; CVE-2025-30397, a memory corruption leading to remote code execution (RCE) vulnerability in Scripting Engine; CVE-2025-32701, an EoP vulnerability in Windows Common Log File System Driver (CLFS); CVE-2025-32706, a second EoP flaw in CLFS; CVE-2025-32709, an EoP issue in Windows Ancillary Function Driver for WinSock (AFD.sys). All five of these CVEs are listed by Microsoft as being exploited in the wild, but have not yet been made public. They are all rated as being of Important severity, and all save the Scripting Engine flaw carry CVSS ratings of 7.8. Mike Walters, president and co-founder of patch management specialist Action1, said that the two CLFS issues stood out as particularly dangerous given its importance in computing – the CLFS is a critical component that providers logging services to user- and kernel-mode applications, and is widely used by various system services and third-party applications. “Attackers exploiting these vulnerabilities can escalate privileges to system level, granting them full control to run arbitrary code, install malware, modify data, or disable security protections,” said Walters. “With low complexity and minimal privileges needed, these flaws pose a serious risk, especially given the confirmed in-the-wild exploitation [and] while no public exploit code is currently available, the presence of active attacks suggests that targeted campaigns, potentially involving advanced persistent threats (APTs), are already underway. “Organisations should prioritise immediate assessment and remediation of these vulnerabilities to prevent potential compromise. Any organisation running Windows systems – across enterprise, government, education, or consumer sectors – could be exposed. Given Windows’ global footprint, millions of devices are likely at risk,” said Walters. CVE-2025-30400 in DWM Core Library should also be high on security admins’ patching lists, observed Kev Breen, senior director of threat research at Immersive. He explained: “If exploited, it would allow attackers to gain system-level permission on the affected host. With this level of privilege, attackers would be able to gain full control over the host, including any security tools and user accounts, potentially allowing for domain-level access to be compromised. “This CVE is marked as ‘Exploitation Detected’ by the Microsoft team, meaning patches should be applied immediately as threat groups, including ransomware affiliates, will be quick to leverage this once more details become public.” Breen added that once this happens, cyber teams and threat hunters should work quickly to review their systems for indicators of compromise (IoCs) to ensure that they haven’t been hit in the window between the point at which threat actors began at-scale exploitation, and the patch was released. Breen’s colleague, cyber threat intelligence researcher Ben Hopkins, ran the rule over the remaining exploited zero-days, CVE-20205-30397 in Scripting Engine and CVE-2025-32709 in AFD.sys “A scripting engine memory corruption vulnerability occurs when the Microsoft scripting engine mishandles objects in memory, in this case leading to an elevation of privilege being performed by an attacker,” he explained. “This specific vulnerability exists … involves access to a resource using (‘type confusion’) which allows attackers to execute code over a network. Type confusion in this context occurs when a program mistakenly treats a piece of data as a different type than it actually is, which leads to undefined and unpredictable behaviour, allowing the attacker to execute arbitrary code and elevate their privileges,” said Hopkins For the layperson, this means that having attained system-level privileges, a threat actor could easily access sensitive data and look for opportunities to pivot to other, more valuable parts of the victim’s network. Turning to the issue affecting AFD.sys, a core Windows kernel-mode driver that supports network socket operations by bridging from WinSock (Windows Sockets API) in user space, and lower-level network drivers in the kernel, Hopkins explained that an unauthorized attacker could exploit a condition in which memory that has been deallocated can still be accessed to inject controlled data into memory and influence how the program behaves, ultimately granting them the ability to elevate their privileges. In both cases, what this means is that having attained system-level privileges, a threat actor could easily access sensitive data and look for opportunities to pivot to other, more valuable parts of the victim’s network. Two additional zero-days have been publicly-disclosed today (13 May) but have not yet been reported as coming under attack at the time of writing. These are CVE-2025-26685, a spoofing vulnerability in Microsoft Defender for Identity, and CVE-2025-32702, an RCE vulnerability in Visual Studio. Both of these are rated of Important severity, carrying CVSS scores of 6.5 and 7.8 respectively. Finally, the May update brings a total of 11 critical flaws affecting Azure Automation, Azure DevOps, Azure Storage Resource, Microsoft Dataverse, Microsoft msagsfeedback.zurewebsites.net, Microsoft Office, Microsoft Power Apps, Microsoft Virtual Machine Bus and Remote Desktop Client (RDP). In their impact, these issues run the gamut from EoP to spoofing to information disclosure, and six of them lead to RCE, said Microsoft. Of the critical issues, Walters’ co-CEO and co-founder at Action1, Alex Vovk, told Computer Weekly that the two RDP flaws stood out in particular. These are tracked as CVE-2025-29966 and CVE-2025-29967. “Both vulnerabilities pose critical risks, including remote code execution, full system compromise, and data breaches,” remarked Vovk. “Given the broad adoption of remote desktop services, many organizations are potentially exposed. CVE-2025-29966 and CVE-2025-29967 underscore the urgent need to secure both client and server components in remote access environments.” Read more about Patch Tuesday April 2025: Microsoft is correcting 124 vulnerabilities in its March Patch Tuesday, one of which is being actively exploited in the wild, and 11 of which are ‘critical’. March 2025: The third Patch Tuesday of 2025 brought fixes for 57 flaws and a hefty number of zero-days. February 2025: Microsoft corrected 57 vulnerabilities, two of which are being actively exploited in the wild, and three of which are ‘critical’. January 2025: The largest Patch Tuesday of the 2020s so far brings fixes for more than 150 CVEs ranging widely in their scope and severity – including eight zero-day flaws. December 2024: Microsoft has fixed over 70 CVEs in its final Patch Tuesday update of the year, and defenders should prioritise a zero-day in the Common Log File System Driver, and another impactful flaw in the Lightweight Directory Access Protocol. November 2024: High-profile vulns in NTLM, Windows Task Scheduler, Active Directory Certificate Services and Microsoft Exchange Server should be prioritised from November’s Patch Tuesday update. October 2024: Stand-out vulnerabilities in Microsoft’s latest Patch Tuesday drop include problems in Microsoft Management Console and the Windows MSHTML Platform. September 2024: Four critical remote code execution bugs in Windows and three critical elevated privileges vulnerabilities will keep admins busy. August 2024: Microsoft patches six actively exploited zero-days among over 100 issues during its regular monthly update. July 2024: Microsoft has fixed almost 140 vulnerabilities in its latest monthly update, with a Hyper-V zero-day singled out for urgent attention. June 2024: An RCE vulnerability in a Microsoft messaging feature and a third-party flaw in a DNS authentication protocol are the most pressing issues to address in Microsoft’s latest Patch Tuesday update. May 2024: A critical SharePoint vulnerability warrants attention this month, but it is another flaw that seems to be linked to the infamous Qakbot malware that is drawing attention. Source: https://www.computerweekly.com/news/366623992/May-Patch-Tuesday-brings-five-exploited-zero-days-to-fix #may #patch #tuesday #brings #five #exploited #zerodays #fix
    WWW.COMPUTERWEEKLY.COM
    May Patch Tuesday brings five exploited zero-days to fix
    Microsoft has issued fixes for a total of five new zero-day vulnerabilities out of a grand total of just over 70 addressable common vulnerabilities and exposures (CVEs) on the fifth Patch Tuesday of 2025 – over 80 when third-party issues are accounted for. In numerical order, this month’s zero days are as follows: CVE-2025-30400, an elevation of privilege (EoP) vulnerability in Microsoft DWM Core Library; CVE-2025-30397, a memory corruption leading to remote code execution (RCE) vulnerability in Scripting Engine; CVE-2025-32701, an EoP vulnerability in Windows Common Log File System Driver (CLFS); CVE-2025-32706, a second EoP flaw in CLFS; CVE-2025-32709, an EoP issue in Windows Ancillary Function Driver for WinSock (AFD.sys). All five of these CVEs are listed by Microsoft as being exploited in the wild, but have not yet been made public. They are all rated as being of Important severity, and all save the Scripting Engine flaw carry CVSS ratings of 7.8. Mike Walters, president and co-founder of patch management specialist Action1, said that the two CLFS issues stood out as particularly dangerous given its importance in computing – the CLFS is a critical component that providers logging services to user- and kernel-mode applications, and is widely used by various system services and third-party applications. “Attackers exploiting these vulnerabilities can escalate privileges to system level, granting them full control to run arbitrary code, install malware, modify data, or disable security protections,” said Walters. “With low complexity and minimal privileges needed, these flaws pose a serious risk, especially given the confirmed in-the-wild exploitation [and] while no public exploit code is currently available, the presence of active attacks suggests that targeted campaigns, potentially involving advanced persistent threats (APTs), are already underway. “Organisations should prioritise immediate assessment and remediation of these vulnerabilities to prevent potential compromise. Any organisation running Windows systems – across enterprise, government, education, or consumer sectors – could be exposed. Given Windows’ global footprint, millions of devices are likely at risk,” said Walters. CVE-2025-30400 in DWM Core Library should also be high on security admins’ patching lists, observed Kev Breen, senior director of threat research at Immersive. He explained: “If exploited, it would allow attackers to gain system-level permission on the affected host. With this level of privilege, attackers would be able to gain full control over the host, including any security tools and user accounts, potentially allowing for domain-level access to be compromised. “This CVE is marked as ‘Exploitation Detected’ by the Microsoft team, meaning patches should be applied immediately as threat groups, including ransomware affiliates, will be quick to leverage this once more details become public.” Breen added that once this happens, cyber teams and threat hunters should work quickly to review their systems for indicators of compromise (IoCs) to ensure that they haven’t been hit in the window between the point at which threat actors began at-scale exploitation, and the patch was released. Breen’s colleague, cyber threat intelligence researcher Ben Hopkins, ran the rule over the remaining exploited zero-days, CVE-20205-30397 in Scripting Engine and CVE-2025-32709 in AFD.sys “A scripting engine memory corruption vulnerability occurs when the Microsoft scripting engine mishandles objects in memory, in this case leading to an elevation of privilege being performed by an attacker,” he explained. “This specific vulnerability exists … involves access to a resource using (‘type confusion’) which allows attackers to execute code over a network. Type confusion in this context occurs when a program mistakenly treats a piece of data as a different type than it actually is, which leads to undefined and unpredictable behaviour, allowing the attacker to execute arbitrary code and elevate their privileges,” said Hopkins For the layperson, this means that having attained system-level privileges, a threat actor could easily access sensitive data and look for opportunities to pivot to other, more valuable parts of the victim’s network. Turning to the issue affecting AFD.sys, a core Windows kernel-mode driver that supports network socket operations by bridging from WinSock (Windows Sockets API) in user space, and lower-level network drivers in the kernel, Hopkins explained that an unauthorized attacker could exploit a condition in which memory that has been deallocated can still be accessed to inject controlled data into memory and influence how the program behaves, ultimately granting them the ability to elevate their privileges. In both cases, what this means is that having attained system-level privileges, a threat actor could easily access sensitive data and look for opportunities to pivot to other, more valuable parts of the victim’s network. Two additional zero-days have been publicly-disclosed today (13 May) but have not yet been reported as coming under attack at the time of writing. These are CVE-2025-26685, a spoofing vulnerability in Microsoft Defender for Identity, and CVE-2025-32702, an RCE vulnerability in Visual Studio. Both of these are rated of Important severity, carrying CVSS scores of 6.5 and 7.8 respectively. Finally, the May update brings a total of 11 critical flaws affecting Azure Automation, Azure DevOps, Azure Storage Resource, Microsoft Dataverse, Microsoft msagsfeedback.zurewebsites.net, Microsoft Office, Microsoft Power Apps, Microsoft Virtual Machine Bus and Remote Desktop Client (RDP). In their impact, these issues run the gamut from EoP to spoofing to information disclosure, and six of them lead to RCE, said Microsoft. Of the critical issues, Walters’ co-CEO and co-founder at Action1, Alex Vovk, told Computer Weekly that the two RDP flaws stood out in particular. These are tracked as CVE-2025-29966 and CVE-2025-29967. “Both vulnerabilities pose critical risks, including remote code execution, full system compromise, and data breaches,” remarked Vovk. “Given the broad adoption of remote desktop services, many organizations are potentially exposed. CVE-2025-29966 and CVE-2025-29967 underscore the urgent need to secure both client and server components in remote access environments.” Read more about Patch Tuesday April 2025: Microsoft is correcting 124 vulnerabilities in its March Patch Tuesday, one of which is being actively exploited in the wild, and 11 of which are ‘critical’. March 2025: The third Patch Tuesday of 2025 brought fixes for 57 flaws and a hefty number of zero-days. February 2025: Microsoft corrected 57 vulnerabilities, two of which are being actively exploited in the wild, and three of which are ‘critical’. January 2025: The largest Patch Tuesday of the 2020s so far brings fixes for more than 150 CVEs ranging widely in their scope and severity – including eight zero-day flaws. December 2024: Microsoft has fixed over 70 CVEs in its final Patch Tuesday update of the year, and defenders should prioritise a zero-day in the Common Log File System Driver, and another impactful flaw in the Lightweight Directory Access Protocol. November 2024: High-profile vulns in NTLM, Windows Task Scheduler, Active Directory Certificate Services and Microsoft Exchange Server should be prioritised from November’s Patch Tuesday update. October 2024: Stand-out vulnerabilities in Microsoft’s latest Patch Tuesday drop include problems in Microsoft Management Console and the Windows MSHTML Platform. September 2024: Four critical remote code execution bugs in Windows and three critical elevated privileges vulnerabilities will keep admins busy. August 2024: Microsoft patches six actively exploited zero-days among over 100 issues during its regular monthly update. July 2024: Microsoft has fixed almost 140 vulnerabilities in its latest monthly update, with a Hyper-V zero-day singled out for urgent attention. June 2024: An RCE vulnerability in a Microsoft messaging feature and a third-party flaw in a DNS authentication protocol are the most pressing issues to address in Microsoft’s latest Patch Tuesday update. May 2024: A critical SharePoint vulnerability warrants attention this month, but it is another flaw that seems to be linked to the infamous Qakbot malware that is drawing attention.
    0 Comments 0 Shares
  • #333;">Government Furiously Trying to Undo Elon Musk's Damage
    Federal agencies scrambled to bring back over $220 million worth of contracts after Elon Musk's so-called Department of Government Efficiency cancelled them, .However, of those 44 contracts that were cancelled and eventually reinstated, DOGE is still citing all but one of them as examples of the government spending the group supposedly saved on its website's error-plagued "Wall of Receipts." The White House told the NYT that this is "paperwork lag" that will be fixed.Clerical errors or not, the "zombie contracts" are a damning sign of the chaos sowed by the billionaire's hasty and sweeping cost-cutting that would seem antithetical to its stated goals of efficiency."They should have used a scalpel," Rachel Dinkes of the Knowledge Alliance, an association of education companies that includes one that lost a contract, told the NYT.
    "But instead they went in with an axe and chopped it all down." Musk brought the Silicon Valley ethos of "move fast and break things" he uses at his business ventures, like SpaceX, to his cleaning house of the federal government.
    And this, it seems, resulted in a lot of wasted time and effort.Some of the contracts DOGE cancelled were required by law, according to the NYT, and some were for skills that the government needed but didn't have.
    The whiplash was most felt at the Department of Veterans Affairs, which reversed 16 cancelled contracts — the highest of any agency in the NYT's analysis.Many of the contracts that DOGE cancelled were reinstated almost immediately.
    The Environmental Protection Agency, for example, revived a contract just two and a half hours after Musk's team cancelled it, the paper found.
    Others were brought back within days.After losing a contract with the US Department of Agriculture in February, Raquel Romero and her husband gained it back four days later.
    The USDA told the NYT that it reinstated the contract after discovering that it was "required by statute," but declined to specify which one.
    Romero believes that a senior lawyer at the agency, who was a supporter of the couple's work, intervened on their behalf."All I know is, she retired two weeks later," Romero told the NYT.The waste doesn't end there.
    Since the contracts are necessary, it puts the fired contractors in a stronger bargaining position when the government comes crawling back.
    In the case of the EPA contract, the agency agreed to pay $171,000 more than before the cancellation.
    In other words, these cuts are costing, not saving, the government money.A White House spokesperson, however, tried to spin the flurry of reversals as a positive sign that the agencies are complying with Musk's chaotic directions, while also playing down the misleading savings claims on DOGE's website."The DOGE Wall of Receipts provides the latest and most accurate information following a thorough assessment, which takes time," White House spokesman Harrison Fields told the NYT.
    "Updates to the DOGE savings page will continue to be made promptly, and departments and agencies will keep highlighting the massive savings DOGE is achieving."Harrison also called the over $220 million of zombie contracts "very, very small potatoes" compared to the supposed $165 billion Musk has saved American taxpayers.If this latest analysis is any indication, however, that multibillion-dollar sum warrants significant skepticism.
    We're only beginning to see a glimmer of the true fallout from Musk tornadoing through the federal government.Share This Article
    #666;">المصدر: https://futurism.com/government-undo-elon-musk-doge-damage" style="color: #0066cc; text-decoration: none;">futurism.com
    #0066cc;">#government #furiously #trying #undo #elon #musk039s #damage #federal #agencies #scrambled #bring #back #over #million #worth #contracts #after #socalled #department #efficiency #cancelled #them #however #those #that #were #and #eventually #reinstated #doge #still #citing #all #but #one #examples #the #spending #group #supposedly #saved #its #website039s #errorplagued #quotwall #receiptsquot #white #house #told #nyt #this #quotpaperwork #lagquot #will #fixedclerical #errors #not #quotzombie #contractsquot #are #damning #sign #chaos #sowed #billionaire039s #hasty #sweeping #costcutting #would #seem #antithetical #stated #goals #efficiencyquotthey #should #have #used #scalpelquot #rachel #dinkes #knowledge #alliance #association #education #companies #includes #lost #contract #nytquotbut #instead #they #went #with #axe #chopped #downquotmusk #brought #silicon #valley #ethos #quotmove #fast #break #thingsquot #uses #his #business #ventures #like #spacex #cleaning #governmentand #seems #resulted #lot #wasted #time #effortsome #required #law #according #some #for #skills #needed #didn039t #havethe #whiplash #was #most #felt #veterans #affairs #which #reversed #highest #any #agency #nyt039s #analysismany #almost #immediatelythe #environmental #protection #example #revived #just #two #half #hours #team #paper #foundothers #within #daysafter #losing #agriculture #february #raquel #romero #her #husband #gained #four #days #laterthe #usda #nytthat #discovering #quotrequired #statutequot #declined #specify #oneromero #believes #senior #lawyer #who #supporter #couple039s #work #intervened #their #behalfquotall #know #she #retired #weeks #laterquot #nytthe #waste #doesn039t #end #theresince #necessary #puts #fired #contractors #stronger #bargaining #position #when #comes #crawling #backin #case #epa #agreed #pay #more #than #before #cancellationin #other #words #these #cuts #costing #saving #moneya #spokesperson #tried #spin #flurry #reversals #positive #complying #chaotic #directions #while #also #playing #down #misleading #savings #claims #doge039s #websitequotthe #wall #receipts #provides #latest #accurate #information #following #thorough #assessment #takes #timequot #spokesman #harrison #fields #nytquotupdates #page #continue #made #promptly #departments #keep #highlighting #massive #achievingquotharrison #called #zombie #quotvery #very #small #potatoesquot #compared #supposed #billion #musk #has #american #taxpayersif #analysis #indication #multibilliondollar #sum #warrants #significant #skepticismwe039re #only #beginning #see #glimmer #true #fallout #from #tornadoing #through #governmentshare #article
    Government Furiously Trying to Undo Elon Musk's Damage
    Federal agencies scrambled to bring back over $220 million worth of contracts after Elon Musk's so-called Department of Government Efficiency cancelled them, .However, of those 44 contracts that were cancelled and eventually reinstated, DOGE is still citing all but one of them as examples of the government spending the group supposedly saved on its website's error-plagued "Wall of Receipts." The White House told the NYT that this is "paperwork lag" that will be fixed.Clerical errors or not, the "zombie contracts" are a damning sign of the chaos sowed by the billionaire's hasty and sweeping cost-cutting that would seem antithetical to its stated goals of efficiency."They should have used a scalpel," Rachel Dinkes of the Knowledge Alliance, an association of education companies that includes one that lost a contract, told the NYT. "But instead they went in with an axe and chopped it all down." Musk brought the Silicon Valley ethos of "move fast and break things" he uses at his business ventures, like SpaceX, to his cleaning house of the federal government. And this, it seems, resulted in a lot of wasted time and effort.Some of the contracts DOGE cancelled were required by law, according to the NYT, and some were for skills that the government needed but didn't have. The whiplash was most felt at the Department of Veterans Affairs, which reversed 16 cancelled contracts — the highest of any agency in the NYT's analysis.Many of the contracts that DOGE cancelled were reinstated almost immediately. The Environmental Protection Agency, for example, revived a contract just two and a half hours after Musk's team cancelled it, the paper found. Others were brought back within days.After losing a contract with the US Department of Agriculture in February, Raquel Romero and her husband gained it back four days later. The USDA told the NYT that it reinstated the contract after discovering that it was "required by statute," but declined to specify which one. Romero believes that a senior lawyer at the agency, who was a supporter of the couple's work, intervened on their behalf."All I know is, she retired two weeks later," Romero told the NYT.The waste doesn't end there. Since the contracts are necessary, it puts the fired contractors in a stronger bargaining position when the government comes crawling back. In the case of the EPA contract, the agency agreed to pay $171,000 more than before the cancellation. In other words, these cuts are costing, not saving, the government money.A White House spokesperson, however, tried to spin the flurry of reversals as a positive sign that the agencies are complying with Musk's chaotic directions, while also playing down the misleading savings claims on DOGE's website."The DOGE Wall of Receipts provides the latest and most accurate information following a thorough assessment, which takes time," White House spokesman Harrison Fields told the NYT. "Updates to the DOGE savings page will continue to be made promptly, and departments and agencies will keep highlighting the massive savings DOGE is achieving."Harrison also called the over $220 million of zombie contracts "very, very small potatoes" compared to the supposed $165 billion Musk has saved American taxpayers.If this latest analysis is any indication, however, that multibillion-dollar sum warrants significant skepticism. We're only beginning to see a glimmer of the true fallout from Musk tornadoing through the federal government.Share This Article
    المصدر: futurism.com
    #government #furiously #trying #undo #elon #musk039s #damage #federal #agencies #scrambled #bring #back #over #million #worth #contracts #after #socalled #department #efficiency #cancelled #them #however #those #that #were #and #eventually #reinstated #doge #still #citing #all #but #one #examples #the #spending #group #supposedly #saved #its #website039s #errorplagued #quotwall #receiptsquot #white #house #told #nyt #this #quotpaperwork #lagquot #will #fixedclerical #errors #not #quotzombie #contractsquot #are #damning #sign #chaos #sowed #billionaire039s #hasty #sweeping #costcutting #would #seem #antithetical #stated #goals #efficiencyquotthey #should #have #used #scalpelquot #rachel #dinkes #knowledge #alliance #association #education #companies #includes #lost #contract #nytquotbut #instead #they #went #with #axe #chopped #downquotmusk #brought #silicon #valley #ethos #quotmove #fast #break #thingsquot #uses #his #business #ventures #like #spacex #cleaning #governmentand #seems #resulted #lot #wasted #time #effortsome #required #law #according #some #for #skills #needed #didn039t #havethe #whiplash #was #most #felt #veterans #affairs #which #reversed #highest #any #agency #nyt039s #analysismany #almost #immediatelythe #environmental #protection #example #revived #just #two #half #hours #team #paper #foundothers #within #daysafter #losing #agriculture #february #raquel #romero #her #husband #gained #four #days #laterthe #usda #nytthat #discovering #quotrequired #statutequot #declined #specify #oneromero #believes #senior #lawyer #who #supporter #couple039s #work #intervened #their #behalfquotall #know #she #retired #weeks #laterquot #nytthe #waste #doesn039t #end #theresince #necessary #puts #fired #contractors #stronger #bargaining #position #when #comes #crawling #backin #case #epa #agreed #pay #more #than #before #cancellationin #other #words #these #cuts #costing #saving #moneya #spokesperson #tried #spin #flurry #reversals #positive #complying #chaotic #directions #while #also #playing #down #misleading #savings #claims #doge039s #websitequotthe #wall #receipts #provides #latest #accurate #information #following #thorough #assessment #takes #timequot #spokesman #harrison #fields #nytquotupdates #page #continue #made #promptly #departments #keep #highlighting #massive #achievingquotharrison #called #zombie #quotvery #very #small #potatoesquot #compared #supposed #billion #musk #has #american #taxpayersif #analysis #indication #multibilliondollar #sum #warrants #significant #skepticismwe039re #only #beginning #see #glimmer #true #fallout #from #tornadoing #through #governmentshare #article
    FUTURISM.COM
    Government Furiously Trying to Undo Elon Musk's Damage
    Federal agencies scrambled to bring back over $220 million worth of contracts after Elon Musk's so-called Department of Government Efficiency cancelled them, .However, of those 44 contracts that were cancelled and eventually reinstated, DOGE is still citing all but one of them as examples of the government spending the group supposedly saved on its website's error-plagued "Wall of Receipts." The White House told the NYT that this is "paperwork lag" that will be fixed.Clerical errors or not, the "zombie contracts" are a damning sign of the chaos sowed by the billionaire's hasty and sweeping cost-cutting that would seem antithetical to its stated goals of efficiency."They should have used a scalpel," Rachel Dinkes of the Knowledge Alliance, an association of education companies that includes one that lost a contract, told the NYT. "But instead they went in with an axe and chopped it all down." Musk brought the Silicon Valley ethos of "move fast and break things" he uses at his business ventures, like SpaceX, to his cleaning house of the federal government. And this, it seems, resulted in a lot of wasted time and effort.Some of the contracts DOGE cancelled were required by law, according to the NYT, and some were for skills that the government needed but didn't have. The whiplash was most felt at the Department of Veterans Affairs, which reversed 16 cancelled contracts — the highest of any agency in the NYT's analysis.Many of the contracts that DOGE cancelled were reinstated almost immediately. The Environmental Protection Agency, for example, revived a contract just two and a half hours after Musk's team cancelled it, the paper found. Others were brought back within days.After losing a contract with the US Department of Agriculture in February, Raquel Romero and her husband gained it back four days later. The USDA told the NYT that it reinstated the contract after discovering that it was "required by statute," but declined to specify which one. Romero believes that a senior lawyer at the agency, who was a supporter of the couple's work, intervened on their behalf."All I know is, she retired two weeks later," Romero told the NYT.The waste doesn't end there. Since the contracts are necessary, it puts the fired contractors in a stronger bargaining position when the government comes crawling back. In the case of the EPA contract, the agency agreed to pay $171,000 more than before the cancellation. In other words, these cuts are costing, not saving, the government money.A White House spokesperson, however, tried to spin the flurry of reversals as a positive sign that the agencies are complying with Musk's chaotic directions, while also playing down the misleading savings claims on DOGE's website."The DOGE Wall of Receipts provides the latest and most accurate information following a thorough assessment, which takes time," White House spokesman Harrison Fields told the NYT. "Updates to the DOGE savings page will continue to be made promptly, and departments and agencies will keep highlighting the massive savings DOGE is achieving."Harrison also called the over $220 million of zombie contracts "very, very small potatoes" compared to the supposed $165 billion Musk has saved American taxpayers.If this latest analysis is any indication, however, that multibillion-dollar sum warrants significant skepticism. We're only beginning to see a glimmer of the true fallout from Musk tornadoing through the federal government.Share This Article
    0 Comments 0 Shares