Detego Global has announced the launch of Detego Case Manager for DFIR, a purpose-built platform designed to meet the evolving demands of digital forensics and incident response (DFIR) teams.

Developed in close collaboration with investigative professionals, Detego Case Manager for DFIR addresses the real-world challenges of managing high-volume, complex digital investigations across multiple locations and touchpoints, whether on scene or in the laboratory.

Detego Global’s new platform delivers full-spectrum case management from a tailored perspective. It brings together evidence tracking, audit logging, workflow automation, task and performance management, compliance controls, and more, all within one secure and highly auditable system. Team leaders and administrators can access instant metrics on all cases within seconds, providing real-time visibility into efficiency and enabling swift, data-backed decision-making.

“We’ve worked hand in hand with digital forensic investigators, incident responders, law enforcement, military, and corporate professionals to design a platform that truly meets the operational demands they face every day,” said Alex Kirk, Global Sales Director of Detego Global. “Detego Case Manager for DFIR reflects the practical input of experts worldwide, combining streamlined workflows with powerful data insights and compliance features that modern investigations require.”

Key features include:

• FCompliant/audit friendly investigation management with timestamped notes and specifics, full audit trails, and an unbroken chain of custody
• Customisable, pre-built workflows designed by DFIR experts and a visual workflow builder to streamline and accelerate investigations
• Centralised evidence and data collection, unifying physical and digital exhibits, ISO-compliant forms, and seamless integration of evidence from third-party tools
• Smart task management with Kanban-style tracking, automation, role-based permissions, escalation paths, and collaboration tools for full visibility and accountability
• Entity management that maps and traces relationships across people, devices, locations, and cases to uncover hidden links and patterns
• Built-in insights and reporting, including real-time performance metrics, case timelines, dashboards, and logs to support informed decision-making, efficient resource allocation, and early identification and elimination of bottlenecks

from Help Net Security https://ift.tt/n08lKCW

We may earn a commission from links on this page. Deal pricing and availability subject to change after time of publication.

Black Friday sales officially start Friday, November 28, and run through Cyber Monday, December 1, and Lifehacker is sharing the best sales based on product reviews, comparisons, and price-tracking tools before it's over. 

• Follow our live blog to stay up-to-date on the best sales we find.

• Browse our editors’ picks for a curated list of our favorite sales on laptops, fitness tech, appliances, and more.

• Subscribe to our shopping newsletter, Add to Cart, for the best sales sent to your inbox.

• Sales are accurate at the time of publication, but prices and inventory are always subject to change. 

---

One of my favorite affordable running watches just got even more budget-friendly. The Suunto Run is on sale for $199, down from its usual $249 price tag. That's a solid 20% discount (or $50 off) for Black Friday.

Suunto Run

$199.00 at Amazon

$249.00 Save $50.00

$199.00 at Amazon

$249.00 Save $50.00

My colleague Beth Skwarecki reviewed the Suunto Run and really enjoyed it. She found it to be lightweight, with a bright display and excellent GPS and heart rate accuracy.

As a big runner myself, I know the Suunto is something of a cult classic: a niche pick for runners who want simplicity without sacrificing quality. For runners who want reliable tracking and solid performance without breaking the bank, this is an excellent option.

More Suunto deals for Black Friday

If you're looking at other models in the Suunto lineup, several are discounted right now:

• Suunto Race S: $279 (normally $349)

• Suunto Vertical: $339.15 (normally $399)

Each of these watches offers different features depending on your training needs, but the Run remains my top pick for a quality budget option.

If you've been holding off on upgrading your running watch (or finally investing in your first one), this Black Friday discount makes the Suunto Run one to consider. At $199, you're getting a capable, reliable running companion.

---

How long do Black Friday deals really last?

Black Friday sales officially begin Friday, November 28, 2025, and run throughout “Cyber Week,” the five-day period that runs from Thanksgiving through Cyber Monday, December 1, 2025. But Black Friday and Cyber Monday dates have expanded as retailers compete for customers. You can get the same Black Friday sales early, and we expect sales to wind down by December 3, 2025. 

Are Black Friday deals worth it?

In short, yes, Black Friday still offers discounts that can be rare throughout the rest of the year. If there’s something you want to buy, or you’re shopping for gifts, it’s a good time to look for discounts on what you need, especially tech sales, home improvement supplies, and fitness tech. Of course, if you need to save money, the best way to save is to not buy anything. 

Are Cyber Monday deals better than Black Friday?

Black Friday used to be bigger for major retailers and more expensive tech and appliances, while Cyber Monday was for cheaper tech and gave smaller businesses a chance to compete online. Nowadays, though, distinction is almost meaningless. Every major retailer will offer sales on both days, and the smart move is to know what you want, use price trackers or refer to guides like our live blog that use price trackers for you, and don’t stress over finding the perfect timing.

Our Best Editor-Vetted Early Black Friday Deals Right Now

Apple AirPods Pro 3 Noise Cancelling Heart Rate Wireless Earbuds — $219.99 (List Price $249.00)

Apple iPad 11" 128GB A16 WiFi Tablet (Blue, 2025) — $274.00 (List Price $349.00)

Amazon Fire HD 10 (2023) — $69.99 (List Price $139.99)

Sony WH-1000XM5 — $248.00 (List Price $399.99)

Blink Outdoor 4 1080p Wireless Security Camera (5-Pack) — $159.99 (List Price $399.99)

Amazon Fire TV Stick 4K Plus — $24.99 (List Price $49.99)

NEW Bose Quiet Comfort Ultra Wireless Noise Cancelling Headphones — $298.00 (List Price $429.00)

Shark AI Ultra Matrix Clean Mapping Voice Control Robot Vacuum with XL Self-Empty Base — $249.99 (List Price $599.00)

Apple Watch Series 11 (GPS, 42mm, S/M Black Sport Band) — $339.00 (List Price $399.00)

WD 6TB My Passport USB 3.0 Portable External Hard Drive — $138.65 (List Price $179.99)

Deals are selected by our commerce team

from Lifehacker https://ift.tt/eKC23Rb

The number of Salesforce customers affected by the recent compromise of Gainsight-published applications is yet to be publicly confirmed, but Salesforce released indicators of compromise (IoCs) and simultaneously shed some light on when the attack likely started.

The provided list includes IP addresses and User Agents, showing that the first reconnaissance and unauthorized access activity started on November 8.

The rest of the suspicious intrusions happened between November 16 and 23, from IP addresses associated with a variety of commercial VPN services, the Tor network, and AWS.

The malicious user agents strings included in the list are there because they are “not an expected user agent string used by Gainsight connected app”. One of them – Salesforce-Multi-Org-Fetcher/1.0 – has been leveraged by the attackers for unauthorized access and has also observed in the Salesloft Drift attack.

Salesforce warned that additional IoCs may be yet discovered and published, and urged all customers to review logs for any unexpected activity related to the Gainsight connection to Salesforce.

“Salesforce’s revocation of the Gainsight application’s OAuth tokens does NOT delete your historical audit trails or hinder your ability to investigate this incident. All Setup Audit Trail entries, Event Monitoring logs, and API activity records remain intact and accessible,” the company said.

Gainsight has published an even longer list of IoC IP addresses, and confirmed that the right way to investigate a potential intrusion is to focus on the Salesforce logs, as they show authentication attempts and API calls originating from the Gainsight Connected App.

Customer advice from Gainsight

Salesforce has temporarily disabled the connection between all Gainsight-published applications and Salesforce.

The investigation into the compromise is still ongoing, performed by Salesforce, Gainsight and Mandiant analysts.

Gainsight says that, in the meantime, they have taken steps to further harden their environment, and advised customers to:

• Rotate the S3 bucket access keys used for connections with Gainsight.
• Log in to Gainsight NXT directly, rather than through Salesforce until the Salesforce Connected App functionality is fully restored.
• Reset NXT user passwords for any users who do not authenticate via SSO.
• Re-authorize any connected applications or integrations that rely on user credentials or tokens.

“Salesforce initially provided a list of 3 impacted customers which has (as of Nov 21) been expanded to a larger list,” a Gainsight employee confirmed. The company’s CEO Chuck Ganapathi says that they “presently know of only a handful of customers who had their data affected.”

Breach claimed by Shiny Hunters

Shiny Hunters, the cyber extortion collective that claimed this attack and the Salesloft Drift attack before it, claimed to have had access to Gainsight for nearly 3 months. (Gainsight was one of victims of the Salesloft Drift attack.)

“At time of publication, Unit 42 had yet to identify any communications by the threat actors claiming to have leaked information related to their alleged Gainsight data theft campaign,” Palo Alto Networks threat researcher Matt Brady noted.

“However, they did post the following message to their Telegram channel on Nov. 24, 2025: ‘pretty sure the 2025 victim count by us in total is ~1.5k (1000 already publicly reported) and still increasing’.”

Subscribe to our breaking news e-mail alert to never miss out on the latest breaches, vulnerabilities and cybersecurity threats. Subscribe here!

from Help Net Security https://ift.tt/iyFj0PD

We may earn a commission from links on this page. Deal pricing and availability subject to change after time of publication.

Black Friday sales officially start Friday, November 28, and run through Cyber Monday, December 1, and Lifehacker is sharing the best sales based on product reviews, comparisons, and price-tracking tools before it's over. 

• Follow our live blog to stay up-to-date on the best sales we find.

• Browse our editors’ picks for a curated list of our favorite sales on laptops, fitness tech, appliances, and more.

• Subscribe to our shopping newsletter, Add to Cart, for the best sales sent to your inbox.

• Sales are accurate at the time of publication, but prices and inventory are always subject to change.

---

Sony's 1000X series has been around since 2016, improving on the previous iteration to eventually land on the Sony WH-1000XM6 in 2025, which are the best over-ear headphones I tested in 2025 (and ever, really). You can get the WH-1000XM6 headphones for $398 (originally $459.99), their lowest price they've ever been during the Black Friday sale, according to price-tracking tools.

Sony WH-1000XM6 Headphones

$398.00 at Amazon

$459.99 Save $61.99

$398.00 at Amazon

$459.99 Save $61.99

The XM6 headphones improve on what were already excellent headphones (the XM5s are also at their lowest price right now). Sony upped the count of microphones from eight to 12 when compared to the XM5, which improves more than just how well you sound to someone on a phone call. The microphones are used in almost all of its features, like ANC, Adaptive Sound Control, and the headphones' Ambient Sound mode. They hear your surroundings to adapt their features accordingly. If you switch from a noisy room to a quiet one, the XM6 can switch from ANC to aware mode (if you have Adaptive Sound Control on).

These headphones have a lot more features that you can nerd out on in their companion app. The audio quality is second to none, with the fully customizable EQ giving you plenty of options to get the sound how you like it. I really like being able to see what codec you're listening to in the app's main menu. That way, there's no guessing if you're getting the best audio quality or not. They will give you 30 hours of battery life with ANC on and 40 hours of juice with ANC off. There's an AUX (3.5mm) jack for wired listening, which is a nice touch for audiophiles who still rock iPod Classics (or is that just me?).

The XM6s are not just the best headphones of 2025, but are likely to be the best ones for years to come. For $398, you'll be securing the best for a record low price we likely won't see again for a while.

---

What stores have the best sales on Black Friday?

Nowadays, both large retailers and small businesses compete for Black Friday shoppers, so you can expect practically every store to run sales through Monday, December 1, 2025. The “best” sales depend on your needs, but in general, the biggest discounts tend to come from larger retailers who can afford lower prices: think places like Amazon, Walmart, Target, Best Buy, and Home Depot. You can find all the best sales from major retailers on our live blog. 

Are Black Friday deals worth it?

In short, yes, Black Friday still offers discounts that can be rare throughout the rest of the year. If there’s something you want to buy, or you’re shopping for gifts, it’s a good time to look for discounts on what you need, especially tech sales, home improvement supplies, and fitness tech. Of course, if you need to save money, the best way to save is to not buy anything. 

Are Cyber Monday deals better than Black Friday?

Black Friday used to be bigger for major retailers and more expensive tech and appliances, while Cyber Monday was for cheaper tech and gave smaller businesses a chance to compete online. Nowadays, though, distinction is almost meaningless. Every major retailer will offer sales on both days, and the smart move is to know what you want, use price trackers or refer to guides like our live blog that use price trackers for you, and don’t stress over finding the perfect timing.

Our Best Editor-Vetted Early Black Friday Deals Right Now

Apple AirPods Pro 3 Noise Cancelling Heart Rate Wireless Earbuds — $219.99 (List Price $249.00)

Apple iPad 11" 128GB A16 WiFi Tablet (Blue, 2025) — $274.00 (List Price $349.00)

Amazon Fire HD 10 (2023) — $69.99 (List Price $139.99)

Sony WH-1000XM5 — $248.00 (List Price $399.99)

Blink Outdoor 4 1080p Wireless Security Camera (5-Pack) — $159.99 (List Price $399.99)

Amazon Fire TV Stick 4K Plus — $24.99 (List Price $49.99)

NEW Bose Quiet Comfort Ultra Wireless Noise Cancelling Headphones — $298.00 (List Price $429.00)

Shark AI Ultra Matrix Clean Mapping Voice Control Robot Vacuum with XL Self-Empty Base — $249.99 (List Price $599.00)

Apple Watch Series 11 (GPS, 42mm, S/M Black Sport Band) — $339.00 (List Price $399.00)

WD 6TB My Passport USB 3.0 Portable External Hard Drive — $134.99 (List Price $179.99)

Deals are selected by our commerce team

from Lifehacker https://ift.tt/DZi6vjp

People who rely on Tor expect their traffic to move through the network without giving away who they are. That trust depends on the strength of the encryption that protects each hop. Tor developers are preparing a major upgrade called Counter Galois Onion, or CGO, which replaces the long-standing relay encryption method used across the network.

Why Tor is changing how relays handle encryption

The older tor1 relay encryption scheme has been in use for many years and shows its age. One long known problem is the risk of tagging attacks. In this scenario, an attacker who controls a relay can alter encrypted data in small ways. If the same attacker controls another relay later in the circuit, those changes might appear again and reveal a link between a user and their activity. Tor developers describe this as “the most important attack we are solving with CGO.”

There are other weaknesses. Tor1 maintains the same symmetric key for the entire life of a circuit, which weakens forward secrecy. It also includes only a 4 byte authenticator on each relay cell, which limits tamper detection.

What CGO brings to the network

CGO introduces a new structure known as a rigid pseudorandom permutation, built from a component called UIV+. This reshapes how each cell is protected as it passes from relay to relay. The approach is designed to detect tampering more reliably and limit what an attacker can learn from any compromised keys.

Several changes stand out:

• A 16 byte authenticator replaces the old 4 byte digest.
• Keys evolve as each cell is processed. Once a cell moves through a relay, the local key state changes, which makes it harder to study earlier traffic through later compromise.
• Tag chaining links the integrity of each cell to the next one. If a single cell is altered, later cells cannot be recovered.

Together, these updates aim to raise the cost of active attacks along a circuit and strengthen the privacy protections that users depend on.

How deployment is progressing

CGO is still under active development in both Arti, Tor’s Rust based implementation, and the C Tor codebase. It is present in Arti, though marked as experimental. Developers plan to enable it by default once testing is complete.

Work is also underway to support CGO for onion services. This addition is expected to appear first in Arti before it reaches other components. Because relays and clients need to share a common method, rollout will take time and depends on wide adoption across the network.

The Tor Project notes that CGO is a new design and invites scrutiny. The developers write, “It is reasonable to ask whether there could be weaknesses in it,” while also describing the steps taken to evaluate the construction.

CGO represents one of the most significant changes to Tor’s core cryptography in years. As development continues, users and operators should watch for upcoming releases and prepare for the transition once CGO is ready for general use.

from Help Net Security https://ift.tt/vcpQqNK

We may earn a commission from links on this page. Deal pricing and availability subject to change after time of publication.

Black Friday sales officially start Friday, November 28, and run through Cyber Monday, December 1, and Lifehacker is sharing the best sales based on product reviews, comparisons, and price-tracking tools before it's over. 

• Follow our live blog to stay up-to-date on the best sales we find.

• Browse our editors’ picks for a curated list of our favorite sales on laptops, fitness tech, appliances, and more.

• Subscribe to our shopping newsletter, Add to Cart, for the best sales sent to your inbox.

• Sales are accurate at the time of publication, but prices and inventory are always subject to change. 

---

The Nespresso Vertuo Pop+ offers café-style coffee without leaving your kitchen or putting on pants, and it's currently on sale for $74.99 on StackSocial. It’s small enough to fit on even the most crowded countertops (about the size of a toaster), but still delivers that signature Vertuo crema with the push of a button. It's a refurbished model with a Grade A rating, meaning the machine comes in a near-mint condition with only minimal wear, and could be a solid pick for anyone who wants fast, customizable coffee without splurging on a brand-new machine.

The coffeemaker heats up in just 30 seconds, so you can go from half-asleep to sipping something warm without much of a wait. Brewing is handled with a single button, and the Vertuo barcode system automatically adjusts for cup size and strength. Whether you're after a 1.35-ounce espresso or a 12-ounce coffee, it reads the pod and takes care of the rest. There's also a Coffee Creations Mode that activates with a quick double-tap, brewing a more concentrated shot that holds up better over ice, which is useful if you’re into iced coffee or milk drinks. It even has Bluetooth and wifi support, which won’t affect your coffee’s flavor but does help with maintenance alerts through the app, especially if you’re the type to ignore descaling until it's too late.

That said, the Pop+ only works with Vertuo capsules, and none come in the box, so your first cup requires a separate purchase. These capsules also cost more than Nespresso’s Original line, though you get over 40 blends and seasonal editions to choose from. The machine also shuts off after two minutes to save energy, which is efficient but can feel a bit annoying if you step away between brews. Still, it's a compact, dependable, and easy-to-use coffeemaker, and the refurb rating removes most of the usual uncertainty that comes with secondhand appliances. If you want quick, varied cup sizes with little cleanup and don’t mind sticking to the Vertuo capsule system, this deal makes the Pop+ an easy machine to consider.

---

How long do Black Friday deals really last?

Black Friday sales officially begin Friday, November 28, 2025, and run throughout “Cyber Week,” the five-day period that runs from Thanksgiving through Cyber Monday, December 1, 2025. But Black Friday and Cyber Monday dates have expanded as retailers compete for customers. You can get the same Black Friday sales early, and we expect sales to wind down by December 3, 2025. 

What stores have the best sales on Black Friday?

Nowadays, both large retailers and small businesses compete for Black Friday shoppers, so you can expect practically every store to run sales through Monday, December 1, 2025. The “best” sales depend on your needs, but in general, the biggest discounts tend to come from larger retailers who can afford lower prices: think places like Amazon, Walmart, Target, Best Buy, and Home Depot. You can find all the best sales from major retailers on our live blog. 

Are Black Friday deals worth it?

In short, yes, Black Friday still offers discounts that can be rare throughout the rest of the year. If there’s something you want to buy, or you’re shopping for gifts, it’s a good time to look for discounts on what you need, especially tech sales, home improvement supplies, and fitness tech. Of course, if you need to save money, the best way to save is to not buy anything. 

Our Best Editor-Vetted Early Black Friday Deals Right Now

Apple AirPods Pro 3 Noise Cancelling Heart Rate Wireless Earbuds — $219.99 (List Price $249.00)

Apple iPad 11" 128GB A16 WiFi Tablet (Blue, 2025) — $279.00 (List Price $349.00)

Amazon Fire HD 10 (2023) — $69.99 (List Price $139.99)

Sony WH-1000XM5 — $248.00 (List Price $399.99)

Blink Outdoor 4 1080p Wireless Security Camera (5-Pack) — $159.99 (List Price $399.99)

Amazon Fire TV Stick 4K Plus — $24.99 (List Price $49.99)

NEW Bose Quiet Comfort Ultra Wireless Noise Cancelling Headphones — $298.00 (List Price $429.00)

Shark AI Ultra Matrix Clean Mapping Voice Control Robot Vacuum with XL Self-Empty Base — $249.99 (List Price $599.00)

Apple Watch Series 11 (GPS, 42mm, S/M Black Sport Band) — $349.00 (List Price $399.00)

Western Digital 14TB Elements Desktop External Hard Drive — $169.99 (List Price $279.99)

Deals are selected by our commerce team

from Lifehacker https://ift.tt/ex28XWu

Last week, tech headlines were abuzz with a concerning claim: According to some on social media platforms, and even some news outlets, Google had secretly opted Gmail users into sharing their emails with Gemini. The goal? To train Google's AI. While this controversy set off quite a lot of noise, it appears much of the conversation kicked off with this inflammatory post on X, complete with select words in all caps:

This Tweet is currently unavailable. It might be loading or has been removed.

According to the poster, the only remedy for the situation is to disable a setting you've probably never heard of: "smart features." The claims suggest "smart features" was switched on in two locations on your account: One that controls Gmail, Chat, and Meet, and another that enables it in the larger Google Workspace suite—assuming you have a Workspace account. The "smoking gun" is a small part of Google's privacy policy which says that the company does not use your Workspace data to train its AI models, without permission. Taken at face value, the assertion is that Google opted you into these settings, thus taking your "permission" to start using your data for this AI training.

As of this morning, the post has nearly 150,000 likes on X, but the claims spread far and wide across the internet. Even Malwarebytes ran a story explaining the situation, and urging users to disable these settings to keep their messages out of Google's AI training. As it turns out, however, Google doesn't actually appear to be doing this.

What are "smart features?"

I reached out to Google on Friday to see if the company had any comment concerning these claims. In response, I received the following from a Google spokesperson:

"These reports are misleading—we have not changed anyone’s settings, Gmail Smart Features have existed for many years, and we do not use your Gmail content for training our Gemini AI model. Lastly, we are always transparent and clear if we make changes to our terms of service and policies."

Indeed, "smart features" has existed for years. In fact, Lifehacker first covered the setting back in 2020, nearly three years before Google first launched Bard (now Gemini). To the claimants' credit, smart features does use your data to improve Google features, but not to train AI models en masse. Instead, smart features uses your data to customize your specific Google experience. In Gmail, that might mean learning how you write, to generate more relevant smart replies; in Search, that might mean suggesting keywords based on previous searches; in Maps, that might mean showing restaurant reservations; in Wallet, that might mean recommending tickets for shows based on your interests. Smart features also powers core Google features, like spam filters and categorization.

That's not to say that you should necessarily be down for smart features: If you personally don't care for Google collecting your data to customize your personal experience, you can absolutely turn these features off. But it's important to understand what you're choosing to turn on or off: Just because someone claims that these features are doing something doesn't make it true. Turn off smart features if you want, but just know that it has no impact on how Google handles your private messages, or how it trains its AI models for everyone. Plus, it may impact how apps like Gmail function: You may not be able to sort your emails into categories, or stop certain spam from getting into your inbox.

How to disable "smart features"

If you do want to turn off smart features, it's easy to do. You'll find the settings in the Gmail web app: Click the settings gear, then choose "See all settings." Here, scroll down, and disable the toggle next to "Smart features." You'll need to agree to "Turn off and reload" Gmail in order to see the changes take effect.

If you have a Workspace account, you have another settings page to manage. Click "Manage Workspace smart features settings," then disable the toggles next to "Smart features in Google Workspace" and "Smart features in other Google products." Finally, choose "Save."

Just remember: These settings control a number of smart features across your Google products. As such, you might notice certain features missing going forward. To revert your changes, return to these settings pages at any time and flip the toggles back on.

Google isn't in the clear

The dust has settled since controversy's peak last week. Malwarebytes issued a correct to its original article, sharing the same spokesperson statement I received. The site says that Google's vague rewrite of the smart features setting contributed to this confusion, but that it does appear the setting doesn't scrape users' private messages to train Gemini.

However, that's not to say Google is entirely in the clear here. While this specific claim might not be true, a lawsuit claims the company improperly gave Gemini private user data from Gmail, Chat, and Meet without the permission of those users. Google as a whole doesn't have the best reputation when it comes to respecting users' privacy too, so it's not surprising that these claims took off the way they did.

Malwarebytes also makes the point that while Google says these settings are all opt-in, many users don't actually remember opting in themselves, further fueling confusion around smart features. To be candid, I definitely don't remember enabling smart features on either my personal or work Gmail accounts, though it's entirely possible I did. All I know is these settings are on now, and while I'm considering disabling them, I also don't know if I'd be willing to get rid of all smart features.

from Lifehacker https://ift.tt/KMXH38o