The Latest

We may earn a commission from links on this page. Deal pricing and availability subject to change after time of publication.

Amazon's Big Spring Sale is in full swing this week. If you take a look at the "Laptops" section of Amazon's Big Spring Sale page, you'll find seemingly endless options available at a discount. That doesn't mean these are all deals worth considering, however. There are a lot of laptops out there, and not all of them going to be right for you (or most people). As such, I've looked at Amazon's wares, and found some deals that really seem worth considering.

A rule of thumb with deals like these: If you've never heard of the company before, be extremely cautious. There are laptop manufacturers that have been in the game for years, and know how to ship a product that works. If you see a huge discount on a laptop from a no-name company, that should be a red flag. That's not to say all start-ups and new companies should be avoided; just do your research before buying a computer.

M4 15-inch MacBook Air

If you're in the market for a large yet portable laptop, the MacBook Air is a great buy. While Apple's newest model has the M5 chip, the M4 version is more than capable to buy instead—especially when you can save some money.

During Amazon's Big Spring Sale, you can pick up the 15-inch M4 MacBook Air for $1,149. That's $150 cheaper than the M5 version. You still get the same 16GB of RAM and 512GB of storage, and a chip that Apple will likely support for years to come. (The company still supports M1, which came out in 2020.) If you're set on the M5 MacBook Air, consider saving a bit by going through Apple's education store.

Samsung 16-inch Galaxy Book 5 Pro 360

If you need a large, thin and light laptop that runs Windows 11, this Copilot+ PC from Samsung might suit you. The 16-inch Galaxy Book 5 Pro 360 has an Intel Core 7 Ultra processor with 16GB of RAM and 1TB of storage—double that of the MacBook Air above. It also has a touchscreen 3K AMOLED display with a refresh rate of 120Hz. The integrated graphics won't get you far for gaming, but if you need a capable machine for school, work, or personal use, this is a great all-around machine.

HP EliteBook 6 G1i

Let's up the ante a bit. This HP EliteBook comes with a whopping 64GB of RAM. That's potentially overkill for most students and workers, but it does mean that this machine is a multitasker's dream. (You'll likely never run out of Chrome tabs.) It comes with an Intel Core Ultra 7 255U processor with a 1TB PCIe SSD for storage. The 16-inch IPS display is lower-res than the other laptops I've noted so far, as its only a 1200p panel. That's just a bit more pixels than you'd find in a 1080p display: Not bad, but not 3K or 4K. That said, if you can live with the compromises on the screen, this machine will handle most things you throw at it—at 32% off its original list price.

ASUS TUF F16

If you're looking for something to game on that won't break the bank, this ASUS TUF laptop might be a solid choice. This machine comes with 16GB of RAM, a 512GB SSD, a 4.6GHz Intel Core i5 13450HX processor, and a dedicated NVIDIA GeForce RTX 5050 graphics card. It also comes with a 16-inch LED display with a refresh rate of 165 Hz, so you'll be able to boost the frame rates of your games. This isn't the most powerful gaming laptop out there by any means, but at 23% off ($999.99), it's worth considering.

ASUS ROG Strix G18

If you want to push your games a bit further, take a look at the ASUS ROG Strix G18. This 18-inch laptop has an AMD Ryzen 9 8940HX chip, a dedicated GeForce RTX 5050 GPU, 16GB of RAM, and a 1TB SSD. That 18-inch display has a 1080p resolution, and refresh rate of 144Hz—plenty for high refresh rate gaming. This one will cost nearly $400 more than the TUF, but you're getting a bit more for your money—and you're saving 18% off the list price.

Lenovo Legion 5i

Let's take a look at one more gaming laptop—this time, with a more powerful Intel chip. Lenovo's Legion 5i comes with an Intel Core i7 17000HX chip, a dedicated GeForce RTX 5070 GPU, 16GB of RAM, and a 1TB SSD. It comes with a 1600p 15-inch OLED, which is the sharpest and highest contrast of any of the gaming laptops listed here. That's excellent for both games, as well for watching shows and movies. Like the TUF F16, this has a 165 Hz refresh rate. That's why this machine is typically listed at $1,699.99, but is currently $230 off.

Our Best Editor-Vetted Amazon Big Spring Sale Deals Right Now
Deals are selected by our commerce team

from Lifehacker https://ift.tt/kvQg9oy

We may earn a commission from links on this page. Deal pricing and availability subject to change after time of publication.

If you need to build out your DIY toolkit, or if your existing power tools are worn out, rusted, or just plain old, the Amazon Big Spring Sale provides the perfect opportunity to upgrade and replace your sad tool collection with the latest and greatest. Whatever tool you need, there’s a deal out there for you, from drills and driver, to sanders, to saw, to multitools. Here are the best deals on offer right now.

The best Amazon Big Spring Sale deals on cordless drills and drivers

The best Amazon Big Spring Sale power saw deals

  • Dewalt 20V MAX circular saw: On sale for $99 (normally $159), this tool-only deal gets you a solid saw that’s comfortable to use and ideal for any DIY project.

  • Craftsman V20 reciprocating saw: Reciprocating saws make so many projects easier, and this one is 35% off right now.

  • Dewalt 20V Max XR jig saw: Every tool box or shed needs a jig saw, and this compact-but-powerful model from Dewalt is a whopping 45% off right now.

The best Amazon Big Spring Sale deals on sanders, multitools, and grinders

  • Dewalt 20V Max angle grinder: With a brushless motor and a kickback brake, this grinder was a deal before at $249—at its sale price of $159.95, it’s a steal.

  • Flex 24V 5-inch orbital sander: With a half hour of runtime and a comfortable grip, this sander is a joy to use, and it’s more than 30% off for the Spring Sale.

  • Flex 24V cordless multi-tool: Considering this multi-tool comes with a battery and charger, it’s a great deal at $179 (down from $219).

The best Amazon Big Spring Sale deals on combo tool kits

  • Dewalt 5-tool combo kit: Featuring an impact driver, a reciprocating saw, a circular saw, a multi-tool, and batteries, this kit will get you up and running at 30% off.

  • Black & Decker 20V Max combo kit: Sporting a compact circular saw, cordless drill, reciprocating saw, work light, and batteries, this kit lets you get to work instantly while saving 31%.

The best Amazon Big Spring Sale deals on cordless ratchets and screwdrivers

The best Amazon Big Spring Sale deals on power nailers

The best Amazon Big Spring Sale deals on outdoor tools

Deals are selected by our commerce team

from Lifehacker https://ift.tt/QrAwEev

We may earn a commission from links on this page. Deal pricing and availability subject to change after time of publication.

I do not like cleaning; my roommate, however, loves it. A good cleaning gadget has the power to unite us—I need something that makes cleaning bearable, and she needs something that makes it extra innovative and fun. And if there's one gadget that lives up to the hype for both of us, it's the Bissell Little Green carpet and upholstery cleaner. It's currently on sale for $74.99 (a cheeky 25% off its list price of $99.99) as a part of Amazon's Big Spring Sale.

In my small Brooklyn apartment, this small size is a huge deal. A carpet and upholstery cleaner is must-have to protect my home against whatever grime I track in every day from the New York City streets. And over in Pennsylvania, Lifehacker's Managing Editor Meghan Walbert shares that the suction and cleaning power on this machine have never let her down, especially in the face of her Yorkie-Shih Tzu terrier's nervous digestive system.

Our Little Green guy is so lightweight and easy to transport, I forget sometimes that I don't actually own one myself. The truth is I'm able to borrow it from my neighbor so often, it feels like it's communally owned. Luckily, today's sale is just the push I needed to buy one for myself. Hey, I might even spring for the cordless mini version, also on sale right now for $116.99.

Our Best Editor-Vetted Amazon Big Spring Sale Deals Right Now
Deals are selected by our commerce team

from Lifehacker https://ift.tt/DCbWihT

TeamPCP continues is supply chain compromise rampage, with telnyx on PyPI being the latest maliciously modified package.

What happened?

Telnyx is a widely used software development kit (SDK) for the Telnyx AI Voice Agent service.

According to Endor Labs researchers, attackers backdoored the legitimate SDK code and published versions 4.87.1 and 4.87.2 of the package on the Python Package Index (PyPI), one shortly after the other.

The malicious code wasn’t functional in the first version due to a typo, so a second version had to be published.

The malicious releases were published on 27 March 2026, between 03:51 UTC and 04:07 UTC on 27 March 2026, “without corresponding GitHub releases or tags, indicating the PyPI publishing credentials were compromised,” Endor Labs’ Kiran Raj explained.

“We believe the most likely vector is the litellm compromise itself,” he added.

“TeamPCP’s harvester swept environment variables, .env files, and shell histories from every system that imported litellm. If any developer or CI pipeline had both litellm installed and access to the telnyx PyPI token, that token was already in TeamPCP’s hands. The three-day gap fits the time needed to sift through stolen credentials and pick the next target.”

The telnyx PyPI project has since been quarantined.

A new malware delivery mechanism

Between the LiteLLM and the Telnyx compromises, the group changed some things.

For one, the malicious package delivered the encoded malicious payload in the audio frame data of a valid WAV file.

Secondly, the malicious packages were smaller than in previous attacks, as the real payload was fetched at runtime from the C2 (which is a “raw” IP address instead of an impersonated domain such as models.litellm.cloud in the LiteLLM attack).

When a malicious telnyx package is imported, it executes immediately and retrieves and drops a persistent executable on Windows systems or an information stealer on Linux/macOS systems.

The latter is designed to exfiltrate a wide range of sensitive data across systems: SSH keys and configurations; cloud credentials; authentication data from developer tools like Docker, npm, Git, and Vault; database credentials; environment configuration files (to extract embedded secrets like API keys and tokens); shell and database histories; and cryptocurrency wallet data.

“If a Kubernetes service account token exists, the malware goes after the entire cluster,” Endor Labs researchers noted.

“[It] deploys a privileged pod to every node in kube-system, each mounting the host root filesystem at /host with hostPID, hostNetwork, and privileged: True. The pods chroot into the host to install the persistence implant directly on the node.”

Finally, the stolen sensitive data is encrypted and exfiltrated.

TeamPCP signatures

Analyses of the incident have revealed undisputable links to TeamPCP, who compromised Trivy, LiteLLM, and CheckMarx’s IDE extensions and GitHub Actions in the past week or so.

Endor Labs says its attribution is based on multiple overlapping indicators: the use of an RSA-4096 public key previously observed in the LiteLLM PyPI compromise, the use of the same AES-256-CBC + RSA OAEP encryption scheme for data exfiltration, and the presence of specific archive files and headers during data exfiltration that are a TeamPCP signature.

The researcher shared indicators of compromise and advised on how to check systems nad logs for them. “Treat any match as a full-environment compromise — rotate all credentials,” they advised.

SafeDep and Aikido researchers’ write-ups are also a good source of advice.

Subscribe to our breaking news e-mail alert to never miss out on the latest breaches, vulnerabilities and cybersecurity threats. Subscribe here!


from Help Net Security https://ift.tt/PVeiTRH

We may earn a commission from links on this page. Deal pricing and availability subject to change after time of publication.

When you’re shopping around for a massage gun, you want to focus on features that justify the price. Specifically, I focus on features like speed settings (both intensity and versatility), noise and ease of use, battery life, and size. I've learned the hard way that when you're looking for a travel-sized massage gun, you have to be extra shrewd.

I was once gifted a mini massage gun that, according to the holiday gift exchange rules, must have cost less than $30. It ran out of battery within one or two minutes of weak “massaging.” All of that is to say, a cheap massage gun isn’t worth it. Even if you're looking for "mini," you still need to invest in one up to the task of hammering away the pain. And do I have the guy for you: Normally $99.99, this mini massage gun is currently on sale for $78.82 as part of Amazon's Big Spring Sale.

At barely one pound, the Bob and Brad Q2 Mini certainly lives up to its name. Luckily, this massage gun still packs a lot of punch, in terms of both literal vibrations and my overall user experience. For me, the real selling point of this massage gun—which I review in-depth here—is the effectiveness of its heat therapy. Plus, its compact size makes it perfect for travel or bringing to the gym—something I never considered with my full-sized TheraGun Therabody. Even if you already own a larger massage gun, the Q2 Mini's heat therapy and sweet size could make it a worthwhile addition to your recovery toolkit.

Our Best Editor-Vetted Amazon Big Spring Sale Deals Right Now
Deals are selected by our commerce team

from Lifehacker https://ift.tt/RJoC3iG