Engadget Feed

Mullvad, a virtual private network (VPN) named after the Swedish word for "mole," is often recognized as one of the best VPNs for privacy. I put it on my best VPN list for exactly that reason. I've got huge respect for the extra lengths Mullvad goes to in order to ensure its user's privacy.

To give you a preview, Mullvad is one of the few VPNs — other than my normal privacy recommendation, Proton VPN — that lets users pay entirely in cash. But even Proton VPN asks for an email address to make an account and uses a few marketing cookies on its own website. Mullvad represents every account as a randomly generated 16-digit code and uses no marketing cookies whatsoever.

That's just one example of how Mullvad goes beyond the call of duty to keep users private. But while privacy is the most important aspect of a VPN alongside security, it's not the only thing that matters. For this review, I set out to investigate whether Mullvad pairs its rights-protecting bonafides with versatile, convenient and enjoyable VPN apps. Using our rigorous VPN testing procedure, I'll rate Mullvad in 11 areas. You can find a summary of my results in the table below, skip to the sections that matter most to you or just read my final advice in the conclusion.

Editor's note (2/11/26): We've overhauled our VPN coverage to provide more detailed, actionable buying advice. Going forward, we'll continue to update both our best VPN list and individual reviews (like this one) as circumstances change. Most recently, we added official scores to all of our VPN reviews. Check out how we test VPNs to learn more about the new standards we're using.

Findings at a glance

Category

Notes

Installation and UI

All apps share roughly the same user interface

Apps are responsive and easy to navigate, with no design choices that would threaten beginners

Lack of "fastest server" button is an issue

Browser extension is only available on Firefox and still in beta

Speed

Reasonably good average latency

Reduces download speeds by 26 percent and upload speeds by 17 percent

Speed declines are consistent and chartable

All speed metrics are quite good on nearby servers

Security

Only uses WireGuard protocol

No IP address leaks, even when switching servers

Packet test showed successful encryption

Pricing

Always costs 5 Euro per month, though prices outside Europe depend on exchange rates

No auto-renewal — membership lasts until money runs out

Can pay using cash or by purchasing scratch-off vouchers on Amazon

14 day money-back guarantee, except on cash payments

Bundles

Only app besides the VPN is the free Mullvad Browser, which removes the tracking habits of typical web browsers

Allows several smaller VPNs to use its servers in their networks

Privacy policy

No vague lines or loopholes in privacy policy

Only saves account numbers and expiration dates for each user

Uses an extremely limited range of cookies with no marketing trackers

Has undergone a total of 17 audits of different aspects of its service

Swedish police demanded customer information in 2023; Mullvad couldn't comply because the data wasn't logged

Virtual location change

Unblocked Netflix 13 out of 15 times

When it failed, virtual location was still changed

Server network

90 locations in 50 countries, majority in North America and Europe

No virtual servers whatsoever

Features

DAITA conceals traffic patterns that might let an AI identify what sites you visit

Uses quantum-resistant encryption on WireGuard

Can choose your own multihop entry and exit points

Several options for getting around nation-level firewalls

Can block ads, trackers, malware and other unwanted content using predetermined DNS block lists

Supports IPv6 traffic

Kill switch and stronger lockdown mode

Split tunneling by app

Customer support

Help center includes useful filters to find the topic

Well-written articles with good internal linking

No live chat support, but staff answers emails quickly

Can view app logs at any time

Background check

Founded in 2009 in Sweden; still owned and operated by initial founders

User account numbers were exposed in a 2023 incident, but Mullvad quickly closed the leak

Installing, configuring and using Mullvad

Let's start by examining how Mullvad feels as a piece of software. In this section, I'll be testing its desktop apps for Windows and Mac, its mobile apps for Android and iOS and its browser extension for Firefox. To start with the installation process, Mullvad downloads and installs in a snap on mobile. On desktop, installation requires a few more steps than is typical, but the app guides you quickly through everything.

Across the board, my only serious complaint is that there's no option for automatically choosing the fastest server. You can usually assume that the nearest one to you will be the fastest, but there's always the chance of an unusual server overload. It's a bizarre oversight for an app that otherwise goes out of its way to be usable.

Windows

Mullvad's Windows app has a slim UI that uses space efficiently without being too cramped. It doesn't give you a lot of information, such as live speed tests or data in transit, but I've mostly found that to be needless filler on VPN apps.

Mullvad on Windows. Sam Chapman for Engadget

Speaking of needless filler, the map may be a little bigger than it needs to be, but maps on VPN clients aren't just about teaching you geography — they do a lot to make the apps more welcoming to casual users who might not otherwise fire up security software. In fact, Mullvad's UI is admirably beginner-friendly, befitting its focus on privacy for everybody rather than just the tech-savvy.

All the settings are accessed by clicking the gear in the top-right. Here, you can turn on DAITA (Mullvad's defense against AI traffic scanning), activate multihop and control Mullvad's other features. There are also some quality-of-life features for the UI itself, such as whether it remains pinned to the taskbar or operates as a standalone window. Some options, especially under the VPN settings tab, are a bit technical, but don't need to be touched for a good experience.

Mac

Mullvad's macOS app is quite similar to its Windows app, both in terms of the interface and the features offered. The big difference used to be that macOS lacked split tunneling, but that's been added in a recent update. The only serious distinction now is that the Mac client can't be unpinned from the taskbar, which is just a little bothersome.

Mullvad on Mac. Sam Chapman for Engadget

Other than that, you'll find every setting you need under the gear, just like on Windows. Similarly, connections to VPN servers happen quickly, and selecting locations from the menu is very straightforward. While connected on either app, you can click the circular arrow by your location to swap to another server in the same location — highly convenient if you're trying to unblock Netflix.

Android

Mullvad's Android app has the same nearly-perfect design approach as all its other apps. The main page has nothing on it but the connect/disconnect button, the choice of server locations, a map and the buttons for your account information and preferences. Those preferences are a manageable set of options that are almost all managed with simple on-off switches. It's all highly responsive and annoyance-free.

Mullvad on Android. Sam Chapman for Engadget iOS

Mullvad's iOS app looks very similar to its apps on every other platform. The front page is kept simple, with large controls in the foreground and a map taking up most of the space. Everything else is located in the menu accessed through the gear icon at top right. Neither mobile app has the options for toggling the UI itself that the desktop apps have, but it's mostly free of quality-of-life problems to start with.

Mullvad on iPhone. Sam Chapman for Engadget Browser extensions

Mullvad's browser extension is only compatible with Firefox. You can't actually connect to the VPN through this extension. Its main functions are to tell you whether you're connected to a Mullvad server and to connect to a SOCKS5 proxy in a Mullvad location. If you do this while connected to Mullvad through the desktop app, you'll get a second layer of protection, similar to the multi-hop feature.

The Firefox extension is a rare misfire for Mullvad — perhaps fair, since it's still in beta. Its only real feature is something that the desktop app already does perfectly well, and it looks like a software malfunction to boot. However, given Mullvad's track record, I'm confident they'll figure out what to do with it in time.

Mullvad speed test

A VPN almost always slows browsing speeds and increases latencies. It's unavoidable, given the extra steps a VPN protocol adds to the process of getting online. The trick is to find VPNs that keep the slowdown to a minimum, using a combination of regular maintenance, good planning and smart load balancing.

For this test, I used speedtest.net to check how six of Mullvad's server locations influenced three key speed metrics. Ping measures latency, the time in milliseconds (ms) that one data packet needs to travel between a client device and an ISP. Download speed measures the amount of data in Megabits that a web browser can download in one second. Upload speed tracks how much data can be uploaded in a second. We're looking for low latencies and high download and upload speeds.

Server location

Ping (ms)

Increase factor

Download speed (Mbps)

Percentage drop

Upload speed (Mbps)

Percentage drop

Portland, USA (unprotected)

15

—

58.96

—

5.85

—

Seattle, USA (fastest location)

23

1.5x

55.07

6.6

5.51

5.8

Montreal, Canada

165

11.0x

44.28

24.9

4.62

21.0

Fortaleza, Brazil

307

20.5x

40.96

30.5

4.65

20.5

Prague, Czechia

368

24.5x

43.17

26.8

5.47

6.5

Lagos, Nigeria

528

35.2x

37.41

36.6

4.61

21.2

Bangkok, Thailand

473

31.5x

39.76

32.6

4.13

29.4

Average

311

20.7x

43.44

26.3

4.83

17.4

I'll start with the bad news: the tests didn't exactly make Mullvad look like a speed demon. Its speeds have gone up and down in the years I've been using it, and right now they appear to be on the downswing. If you use locations all around Mullvad's server network, you can expect your download speeds to decrease by about 26 percent and your upload speeds to decline by 17 percent.

However, it's important to put those numbers in perspective. First, Mullvad's numbers aren't markedly worse than the ones I got when testing CyberGhost. Its speeds are average, but by definition, most things are average. Its average worldwide latency is actually better than Surfshark, the current champion of download and upload speeds.

Speed-testing a Mullvad server in Los Angeles. Sam Chapman for Engadget

It's also nice that Mullvad's speed drops follow a predictable curve. Lots of VPNs have unexpectedly sharp declines in certain locations, frequently in Africa. By contrast, Mullvad's speed decreases pretty much as a direct function of how far from the server you are. This not only makes speed drops easier to plan around, but also means you can expect very good speeds on nearby servers.

This property of being fastest on servers near the user is another sign of Mullvad's focus on its core privacy mission. If anonymity is your main reason for using a VPN, it doesn't matter what your IP address is, so long as it's not your real one. Using a nearby Mullvad server should guarantee you an internet connection that's both fast and private.

Mullvad security test

To be secure, a VPN has to check two critical boxes. It must provide you with a secondary IP address without leaking your real one, and it must encrypt your communications with its servers so your activity can't be traced. In the sections below, I'll see whether Mullvad meets those requirements.

VPN protocols

VPNs use protocols to mediate between end devices, ISPs and their own servers. The first step is to ensure that the service you're considering uses protocols that have expert confidence. Mullvad has kindly made this step easy for me by using only WireGuard on all its apps, with no OpenVPN, IKEv2 or in-house unique protocols.

There's no question that WireGuard is a solid protocol. It uses the ChaCha20 stream cipher for symmetric encryption and Poly1305 for authentication, both uncrackable with current technology. Mullvad has even added its own fix for WireGuard's one flaw, its need to save static IP addresses — the Mullvad implementation is set up to delete the IP address if it goes 10 minutes without being used.

Even so, it's unfortunate to lose the ability to change protocols, which is one of the most common steps for troubleshooting a VPN connection. I understand Mullvad's reasoning for cutting out OpenVPN (it claims the cryptography isn't strong enough) but don't agree. It's one of this provider's few unforced errors.

Leak test

There's a straightforward test to determine if your VPN is leaking. Load up any website that shows your IP address — I personally use ipleak.net — and see what IP and location it reveals without your VPN active. Then activate the VPN and refresh the page. If you see your real IP address anywhere, your VPN is leaking.

Testing Mullvad for IP leaks. Sam Chapman for Engadget

I ran that test on five Mullvad servers. Each time, the website showed me the IP address of the VPN server, concealing my real one. To keep things simple, I ran the initial tests with IPv6 blocked via the Mullvad client. When I turned it on and tried again, the IPv6 traffic didn't leak any more than the IPv4 did. I also saw no signs of WebRTC leaks. Unless you set up a custom DNS server, Mullvad also uses its own DNS, which remains entirely within the VPN tunnel.

I had one more leak test to try. Frequently, VPNs are leak-proof when maintaining a connection to one server but drop encryption when switching between servers. That problem is why I ultimately couldn't recommend Norton VPN. Luckily for me, Mullvad has a button that lets you shuffle to another server in the same location, so I used that to see if it stayed leak-proof.

Mullvad doesn't leak your IP even while changing servers. Sam Chapman for Engadget

As you can see in the screenshot, Mullvad jumped seamlessly from one server to another without showing my real location in-between. On a practical level, that's enough for me to declare Mullvad leak-proof.

Encryption test

For one final experiment, I used the WireShark packet sniffer to see whether the data Mullvad sent from my computer to my ISP was encrypted. After capturing a few packets, I was gratified to see that they were totally unreadable to interlopers. Most established VPNs pass this test, but it's still important for due diligence.

How much does Mullvad cost?

Mullvad's pricing structure is one of the most unusual things about it. This is normally the section where I untangle 47 different Pro+ and Business- accounts that are all sold at three different durations. Mullvad couldn't be further from that. It costs 5 Euro a month — that’s it. Each 5-Euro subscription can be used on five devices at once.

It manages payments through a system inspired by parking meters. When you sign up for Mullvad, you'll buy as much time as you want. That time will count down until it expires, unless you top it up with more 5-Euro payments. If you run out of money, Mullvad won't charge you a new subscription fee because you didn't tell it not to. It'll just stop working until you pay again. Every payment also comes with a 14-day money-back guarantee, except for payments made in cash.

The Mullvad account dashboard. Sam Chapman for Engadget

The only real complexity in the process is that Mullvad always figures out its prices in Euro, so outside the EU, the cost per month is affected by exchange rates. If you happen to live in a country where the government's economic policy shuttles between capricious and arbitrary, you might want to grab a few months in advance.

The other most interesting thing about Mullvad's pricing is the options you can use to pay. For maximum privacy, you can pay with cash using the payment token you'll find on your account page. Note that this is not the same as your account number. To find it, log into your dashboard on Mullvad.net, click Add time to your account in the left-hand bar, then click the button labeled Cash and scroll down. Make your cash payment by writing the token on an envelope and mailing it to Sweden (full instructions here).

Unredacted, in case any hackers out there want to buy me some more time. Sam Chapman for Engadget

You can also get untraceable Mullvad vouchers by paying cash at participating retail locations. Most of them are in Europe, but you can order them from Amazon. While your payment to Amazon won't be private, the voucher can't be linked directly to your VPN account, since the actual number is hidden behind a scratch-off panel. It's actually pretty ingenious.

Of course, you can also pay using any of the normal methods, including credit cards, cryptocurrency and bank wires (though not PayPal). But the more private methods are always there for people who need them.

Mullvad side apps and bundles

Mullvad is that rare VPN that's still content to be a VPN and not an all-inclusive security suite. No shade to NordVPN or Surfshark, whose extra features are generally quite good, but it's nice to see at least one of the top providers staying focused.

Although Mullvad doesn't have any partners that sell their products alongside its VPN, it does have several partnerships with other VPNs who use its network as the basis for their own products. MalwareBytes Privacy VPN, Mozilla VPN, Tailscale and Obscura can all be considered Mullvad side apps if you squint.

Mullvad Browser

Mullvad's only product other than the VPN is Mullvad Browser, which is free to download and works on Windows, macOS and Linux. Mullvad Browser works in the background, blocking common methods of browser fingerprinting that can be used to deduce your identity even when you have a VPN running.

For example, it automatically reports your time zone as UTC, disguises personal preferences like font and window size, scrambles information sent by APIs and conceals your browser version and computer operating system. It's also in private mode by default, which doesn't hide what your ISP sees but is useful for concealing your activity from other people that might use your computer.

Close-reading Mullvad's privacy policy

Since privacy is Mullvad's main selling point, this section is even more important than usual. Loopholes in the privacy policy of the privacy VPN would be deeply ironic. Fortunately, Mullvad's privacy policy backs up its high-flying rhetoric. It's a short, pointed and readable document with no problems I could discern. Mullvad has no parent company or subsidiary it might use as a loophole, and no clauses in its policy are left open to interpretation. It's a masterpiece of the privacy-policy genre.

The document is actually three policies: a privacy policy, a no-logging policy and a cookie policy. The privacy policy lists all the times Mullvad might collect data about a user. That's exactly two situations — using financial information to process payments (which will be entirely anonymous if you use cash or a voucher) and using your email address to track support tickets you open. That's it.

The no-logging policy is a bit longer, but mostly because it's explaining exactly how Mullvad manages to run a VPN service with so little information on individual users. For each account, it stores a number and an expiration date, plus public keys and tunnel addresses if you're using WireGuard (deleted at most 10 minutes after your session ends). Everything else is completely anonymized. Mullvad even claims that its 500,000 or so user accounts could have been created by the same user 500,000 times, which I suppose is one way to spend 2.5 million Euro.

The cookie policy is the shortest because Mullvad uses exactly five cookies. One saves your login status in your browser, one saves your language preferences, one protects its site from being used in a specific kind of forgery hack and the other two are for handling Stripe payments.

Independent privacy audits

Mullvad corroborates its privacy policy with regular audits of various aspects of its service. Currently, there are 17 audits listed on its website, including four infrastructure audits by Cure53. All of its apps have been separately audited and found to be solid. It has been a couple of years since the last full infrastructure audit in 2024, but given how many other targeted reviews Mullvad has gone through since then, it's hard to be too upset about the pause.

In 2023, Mullvad achieved the holy grail of VPN privacy: being ordered by subpoena to turn over customer information and not being able to comply because that information didn't exist. Nothing compares to a VPN's privacy being tested in the wild like this.

Can Mullvad change your virtual location?

Sometimes, a VPN appears to be working, but still reveals your real location to websites. Netflix is a useful proxy for this. To unblock a streaming site like Netflix, a VPN needs to change your virtual location while not appearing to do so — if Netflix sees any hint of VPN traffic, you'll get blocked with the hated proxy error. I used five different locations to check whether Mullvad is up to the streaming task.

Server location

Unblocked Netflix?

Changed content?

Vancouver, Canada

3/3

3/3

Gothenberg, Sweden

2/3

2/3

Istanbul, Turkey

3/3

3/3

Johannesburg, South Africa

3/3

3/3

Singapore, Singapore

2/3

2/3

Mullvad did well for streaming, but it didn't manage a perfect score like its fellow anti-establishment VPN Windscribe did. Two of the 15 servers I tested failed to unblock Netflix, one in Singapore and one in Mullvad's hometown of Gothenburg. I also had trouble logging into Netflix while connected to a Vancouver server, though that server did unblock the site consistently once I got inside.

Mullvad's servers all tricked Netflix into believing my new location. Sam Chapman for Engadget

In Mullvad's defense, no location failed more than once. It's completely possible to get good streaming performance out of this VPN; you just have to be willing to click the server refresh button a few times. Privacy is still the main use case for Mullvad, but it's fine for streaming too.

Investigating Mullvad's server network

Mullvad has 90 server locations in 50 countries and territories. Unusually for a VPN, users can choose between all 590 of its total servers, including several in each location. There's even a list on its website that shows you the status of every server.

Mullvad does not use virtual server locations, so every server is physically located in the place where it claims to be. Here's how they're distributed.

Region

Countries with servers

Total server locations

North America

3

25

South America

5

6

Europe

29

41

Africa

2

2

Middle East

2

2

Asia

7

8

Oceania

2

6

Total

50

90

Over half the countries with servers are in Europe and over two-thirds of the cities with servers are in either Europe or North America. That lopsided network is a limitation of Mullvad's refusal to use virtual server locations, since its real servers have to be concentrated in nations developed enough to host data centers. With an all-real network, it's easier to tell which servers will give you the fastest performance, but you can't simulate as much of the world as you can with larger services like ExpressVPN.

The good news is that there's at least two real server locations on every continent. Mullvad has a surprisingly robust presence in South America and two bare-metal servers in Africa, which is more than some other VPNs have. In the end, though, the best application of Mullvad is to protect the online privacy of users in North America, Europe and eastern Asia.

Extra features of Mullvad

Most of Mullvad's features are augmentations to the VPN itself, rather than side options that do other things. Some of them are bread-and-butter, like the kill switch and split tunneling, but a few you won't find anywhere else. Note beforehand that Mullvad does not support port forwarding, so if you depend on that for your torrenting, try another VPN.

DAITA AI defenses

Mullvad's most novel feature is a recent one. DAITA, which stands for Defense against AI-guided Traffic Analysis, can be toggled on and off in the Mullvad app. According to Mullvad, certain patterns in how browsers communicate with websites can be analyzed by AI to reveal the truth behind encrypted internet history. DAITA hides those packets by filling communications with background noise so the AI won't know what's real.

Mullvad's anti-AI settings. Sam Chapman for Engadget

DAITA is a laudably forward-looking feature, but as Mullvad itself admits, it will make your browsing speeds slower and drain your battery. I recommend only using it for activities you really want to hide.

Quantum resistance

Mullvad's desktop apps establish quantum-proof WireGuard tunnels by default. Quantum computing isn't yet a threat to WireGuard, but it may become dangerous in the future, so Mullvad is getting ahead of the problem (along with a few other services like NordVPN). When quantum resistance is active, Mullvad encapsulates its keys using the current standard mechanism, ML-KEM.

Anti-censorship

If you find yourself in a country where government censorship makes it hard to access the internet, Mullvad has options that might help. These anti-censorship features can be used to get around firewalls that block visible VPN traffic. You have several options, including changing your WireGuard port, randomizing your port number, disguising your VPN traffic as an ordinary HTTPS connection or using an obfuscated Shadowsocks proxy.

Mullvad's anti-censorship involves more features than most VPNs have in this area. This makes it a bit less user-friendly, but a lot more likely to work. If you're new to getting around censorship, Mullvad's help center has a helpful page about using its anti-censor settings.

Multihop

Many VPNs offer a double-hop connection that routes your traffic through two servers instead of one, adding a redundant layer of encryption in case one server malfunctions. Mullvad pulls ahead of the competition (except Surfshark, which also does this) by allowing you to choose your entry and exit servers. When you activate the multihop option and open the server list, you'll be prompted to pick two locations instead of one.

Mullvad's server list with multihop enabled. Sam Chapman for Engadget

This means you can select an entry server that's close to you and an exit server in any country whose location you want to spoof, letting you fine-tune your own performance. It's way nicer than being railroaded into certain paths.

DNS content blockers

Mullvad includes six blocklists that can keep you or your family members from looking at unwanted content: ads, trackers, malware, gambling, adult content and social media. These lists can't be customized like Windscribe's R.O.B.E.R.T. blocks can, so you're limited to just turning them on and off.

IPv6 support

The internet is gradually transitioning from the old IPv4 standard over to IPv6, which will allow many more addresses to be shared out. Mullvad is one of a few VPNs looking ahead to the IPv6 era. You can leave it to block all IPv6 traffic, but if you do need IPv6 for any reason, you can enable it while still being connected to a Mullvad server.

Kill switch and lockdown mode

Mullvad comes with two features that protect against unexpectedly losing your VPN defenses. The first is a kill switch, a common VPN option that cuts off internet access if the VPN tunnel ever fails. This simple measure helps guard against accidental leaks.

Lockdown mode is the stronger option. While it's active, you will be unable to get on the internet unless you connect to a Mullvad server first. This will remain true if you turn the connection off yourself and even if you quit the app.

Split tunneling

Split tunneling is available on Mullvad's apps for every system except iOS. It lets you send some apps outside the VPN tunnel so they get online with your normal IP address. It's helpful if you have some apps that don't work with the VPN active — this is common with online banking, as an example. Another common application is to protect a torrenting client in the background while using your browser unprotected for better speeds.

Mullvad customer support options

Mullvad makes two forms of support available in the app. You can report a problem by going to Settings -> Support -> Report a problem, typing your question (requested to be in either English or Swedish, though they'd probably be able to read a question run through Google Translate) and optionally providing your email. You can also view the app's logs at any time, which can be useful to help a technician diagnose your problem.

If you'd rather search for a solution at your own pace, you can go to that same page and click FAQs and Guides instead. This opens the help center in a browser.

Mullvad's help center, including the dropdown filter menus. Sam Chapman for Engadget

I love Mullvad's approach to laying out its FAQs. Instead of crowding topics into five or six categories and making you guess whether your problem falls under setup, usage or troubleshooting, Mullvad gives you a set of dropdown filters to narrow down the articles which might relate to your problem.

By the time you've named which device, OS and protocol you're dealing with, you won’t have many articles left to sift through. There is an annoying tendency for certain sets of filters to reduce the number of surfaced links to zero, but for those cases, there's a search bar that also works well.

The articles themselves are good enough that I referred to them several times while writing this review. Some of them are a bit overlong, but they're diligent about including both internal and external links to get you where you're going fast.

Live support experience

This is normally where I cover how it feels to get live chat support from the VPN I'm reviewing. However, Mullvad doesn't have live chat support. That's unfortunate, although it's still better than Windscribe's approach of forcing you to banter with a sarcastic robot. Instead, I sent a question via email to Mullvad's support team, and got a response within 24 hours.

Mullvad background check

Mullvad was founded in 2009 in Sweden. It's still owned and operated by its original founders. According to a detailed timeline on its website, its 16-year history has been as uneventful as any user could ask for, with not much changing except updates to stay on the technological leading edge. The only controversy mentioned in Mullvad's own materials is the 2023 police raid of its headquarters, which (as I covered in the privacy section) only makes them look better.

So as not to take Mullvad at its word, I scoured the last 16 years of news items and user reports to search for any other blemishes on its record. Based on that research, I found no reason to doubt Mullvad's honesty about its location, owners or team.

I found just one leak that wasn't noted on Mullvad's own site. In 2023, a security research group called ZATAZ alleged that it found anonymized information on Mullvad users saved on an Internet Archive page, including account numbers (linked article is in French). According to ZATAZ, Mullvad contacted the Archive and got the page deleted.

To my mind, the only mistake Mullvad made in response to the ZATAZ allegations was not making a public statement about the incident. I can see why they didn't think it was a big deal, since even logging into someone else's Mullvad account wouldn't show you their browsing history, but it's always better to communicate about these things.

Final verdict

Mullvad is a VPN that knows what it wants to be and achieves that goal with flying colors. It's not trying to be an everything app — it does privacy and does it well. That's not to say it has nothing going on outside the VPN itself, as its DNS blockers, AI defenses and split tunneling all work smoothly. But if you want a VPN that's not ashamed to be a VPN, Mullvad is the right choice.

Of course, it has its own compromises. It's solidly in the middle of the speed pack and occasionally trips up when unblocking streaming sites. The lack of any protocols other than WireGuard grates on me a bit, since it reduces the user's options for troubleshooting. With all that said, those are minor hiccups on a VPN that does such a thorough job keeping you anonymous online.

This article originally appeared on Engadget at https://www.engadget.com/cybersecurity/vpn/mullvad-vpn-review-near-total-privacy-with-a-few-sacrifices-130000056.html?src=rss

Toyota has unveiled the 2027 Highlander, the first fully electric version of the vehicle and the automaker’s fourth EV in the US. It’s also the company’s first EV assembled in the country and the first electric model with three rows of seats. The automaker already sells the electric C-HR crossover and the electric bZ SUV in the US. While the 2027 Highlander resembles its predecessors, its lines look sharper and it has broader fenders. In addition, it features flush door handles similar to Tesla’s, which were designed for aerodynamics but which China recently banned out of safety concerns.

The new Highlander will be available in several varieties, specifically in Limited and XLE (Executive Luxury Edition) grades with either front-wheel or all-wheel drive configuration. If you get the Limited edition all-wheel drive with a 95.8 kWh battery, you can get a range of 320 miles on a single charge, based on Toyota’s estimates. Take note that range estimates by manufacturers and the EPA could be different from each other. It would be more accurate to compare EPA ranges between vehicles across brands, because they were determined using the agency’s testing methodologies.

The 2027 Highlander in XLE front wheel drive configuration with a 77 kWh battery has a manufacturer-estimated range of 287 miles. Meanwhile, the all-wheel drive XLE variant comes with either a 77 kWh battery that can power it for 270 miles or a 95.8 kWh battery that has an estimated range of 320 miles, similar to the Limited edition vehicle. The all-wheel drive variants have a total maximum power output of 338 horsepower, whereas the front-wheel models have a power output of 221 hp.

All the EV’s versions can seat seven, with the third row being able to fold flat if you need it for cargo. They come with heated front seats, but you can also get ventilated and heated second row seats for an additional fee. Toyota will start selling the 2027 Highlander in late 2026, with some regions getting it early next year. The automaker says it will announce pricing for the EV model closer to its release date.

This article originally appeared on Engadget at https://www.engadget.com/transportation/evs/the-2027-toyota-highlander-is-fully-electric-and-has-a-320-mile-range-115828463.html?src=rss

With his newfound focus on the Moon, Elon musk is making some wild new plans. In an xAI meeting with employees, Musk said the company needed to build an AI satellite factory on the moon with a gigantic catapult to launch them into space, according to audio heard by The New York Times. 

All of that would be part of the billionaire's plans to create a massive orbiting AI "data center" that uses satellites powered by the sun and kept cool by the vacuum of space (a bad plan, some experts say). Any satellites launched from the Moon would presumably orbit the Moon as well, though Musk didn't provide any additional details. 

"You have to go to the moon" in order to build the required AI capabilities, Musk told employees. "It’s difficult to imagine what an intelligence of that scale would think about, but it’s going to be incredibly exciting to see it happen." 

Such a catapult would certainly need to be powerful — though the Moon has only one-sixth the gravity of Earth, the minimum escape velocity required for orbit is still around 3,800 MPH or five times the speed of sound. That's currently possible with electromagnetic railguns that launch projectiles at speeds up to Mach 8.8, though any satellite launched by such a device would need to withstand acceleration forces around 10,000 g or more. 

It's fun to think about it, but there are a few tiny steps required first. That starts with orbiting the Moon and eventually landing on the surface. Then you'd need to build a colony, followed by a factory, all of which would require a large number of manned and unmanned expeditions. As a reminder, we haven't been to the moon for over 50 years and none of the colony or factory stuff has ever been done.  

Early last year Musk said in a post on X that SpaceX would be going "straight to Mars" and that "the Moon is a distraction." However, the CEO apparently shifted his near-term priorities to building a "self-growing city on the Moon" because it's a more achievable target. In a post on X, Musk said the company could complete this in less than 10 years, while doing the same on Mars would take over 20 years.

Any estimates from Musk himself certainly need to be treated skeptically, though. Elon once said in 2017 that SpaceX would send cargo missions to Mars by 2022 aboard a rocket that's still being tested in 2026.

This article originally appeared on Engadget at https://www.engadget.com/science/space/elon-musks-latest-scheme-is-a-satellite-catapult-on-the-moon-113403143.html?src=rss

Apple’s MacBooks don’t need much help out of the box, but the right accessories can make a noticeable difference in how you use them day to day. Whether that means adding more ports, creating a cleaner desk setup or making your laptop easier to travel with, there’s a growing ecosystem of gear designed to fill in the gaps Apple leaves behind. A good accessory should feel like an extension of your MacBook, not a workaround.

The picks below are meant to work smoothly with macOS and today’s USB-C-only reality, whether you’re using a lightweight MacBook Air or a higher-end MacBook Pro. From practical essentials to quality-of-life upgrades, these accessories are meant to help you get more done without adding unnecessary bulk or friction.

Best MacBook accessories for 2026 Best MacBook webcam accessories

Best MacBook docking stations and hubs

Best MacBook charging gear

Best MacBook keyboards and mice

Best MacBook stands

This article originally appeared on Engadget at https://www.engadget.com/computing/accessories/best-macbook-accessories-150014737.html?src=rss

Smart plugs aren’t the most complicated smart home device — they really just turn stuff off and on — but they do make life a little easier. Since using smart plugs, I’ve grown accustomed to having the living room lamps click on just before sunset and go off when I say goodnight to Alexa or the Google Assistant/Gemini (Siri can turn off a few of my lights, but isn’t compatible with all of them). Most smart home device makers have a plug or two in their lineups, but finding one that’s compatible with your chosen ecosystem, that’s easy to set up and reliably connects can involve a little trial and error. That’s why we tried more than a dozen models to find the best smart plugs you can buy right now..

Best smart plugs for 2026

The best outdoor smart plugs for 2026

Most people will likely use outdoor plugs for two things: patio lighting and holiday string lights. The devices are designed for the outdoors with a weatherproof protection rating of IP64 or higher, which means they’re impervious to dust and can handle splashing water from rain and sprinklers. They have a longer Wi-Fi range than indoor plugs, for obvious reasons, and many have dual outlets, with individual control over each one.

Setup is the same as for indoor plugs: you’ll use your phone to help the plug find your Wi-Fi using its companion app. The only tricky part is getting your phone within Bluetooth range of the plug (which it uses to initialize setup) and in Wi-Fi range at the same time. I had to awkwardly stand at a triangulated point in the middle of my driveway to get things communicating properly. Once set up, the plugs will communicate using your router for voice and app control and your phone needn’t be anywhere near the plug.

Best uses for a smart plug

Before you buy one, it helps to know how a smart plug works best. They are designed for things that have an on/off switch, making them great for doing things like turning regular ol’ lamps into smart lights. If you want a fan to move some air around before you get home, a smart plug can help. You can load a basic coffee maker with grounds and water the night before and wake up to a fresh pot in the morning. And instead of an air purifier running all day, you could set it to just run when you’re away.

But gadgets that need to be programmed further, or require a stand-by mode, aren't ideal. If you want to control built-in lights, you’ll need a smart light switch, which are more involved than smart plugs as they can involve in-wall installation. Smart bulbs are also an option for automation, and we have an entire guide devoted to those.

Some smart plugs can even monitor how much energy they use and display those figures within their companion app. That might not be much use on its own, as lamps with LED light bulbs consume very little energy, but it could help you keep tabs on your overall energy consumption.

What to consider when buying a smart plug Setup and use

Adding a smart plug to your home is relatively simple. You’ll use the manufacturer’s app to initially connect, after which you can add the plug to a compatible smart home ecosystem so you can use voice control and other features. Both the brand’s app and your smart home app will let you name the plug, set schedules and program “routines” which provide automation for multiple smart devices at once. But as you can guess, a manufacturer’s app only lets you control products from that brand. If you want whole-home automation, operating, say, a plug from TP-Link’s Kasa, a smart bulb from Philips Hue, a smart thermostat from Honeywell and a camera from Arlo without switching apps, you’ll need to use a smart home platform, which means you’ll need to consider compatibility.

Compatibility

Smart home devices connect through wireless protocols, often using more than one to communicate with your phone, smart speaker, router and in some cases, one another. The majority of smart plugs use Wi-Fi, but some have recently incorporated Matter, a relatively new wireless standard intended to solve integration issues between different brands and manufacturers, while also improving security and reliability.

More of these smart plugs are coming to market and, for now, most Matter devices work via Wi-Fi, Bluetooth and a low-power mesh network called Thread. Matter requires a controller that stays at home, like a hub or smart speaker, to manage things when you’re out and about.

As for Bluetooth, most plugs, including all Matter plugs, use the short-range protocol to get the device set up for the first time. Some can continue to run on Bluetooth in the absence of another option, but the connection isn’t as reliable and you won’t be able to control the plug when you’re away from home, or perhaps even just on the other side of the apartment.

Because Matter is relatively new, it may be easier to consider the manufacturer’s system you’d use the most. There are four major “branded” smart home platforms: Amazon’s Alexa, Google Home, Apple’s HomeKit and Samsung’s SmartThings. The first two work with the widest range of brands and are compatible with both iOS and Android devices. HomeKit not only limits app access to Apple devices, but it’s also compatible with fewer plugs. You can also turn to open-source software like Home Assistant or go with the larger functionality of IFTTT if you want to, say, have your lights turn off when your Uber arrives. For the purposes of our testing, we stuck with the four big players. Nearly every plug we looked at clearly stated which platforms it works with, both on the packaging and retail product pages.

Of course, there’s no rule that says you have to stick with one home assistant. You might have an Echo Dot in the basement, a HomePod in the living room and a Google Nest Mini in the kitchen, each controlling any compatible devices. My kid has a great time telling Alexa to turn on a light then asking Google's Gemini to turn it back off.

Photo by Amy Skorheim / Engadget Hubs and smart plugs

All of our top picks recommended here don’t require a hub and connect directly to your home’s Wi-Fi router. That means if you already have wireless internet and a smartphone or tablet, you can quite literally plug and play. The exception is Apple’s HomeKit. If you want to pair up a compatible plug with that platform, you’ll need a HomePod speaker, Apple TV or an iPad that stays in your home to enable remote control when you’re away.

Some smart plugs require a hub regardless of which platform you use. For our guide, we focused on the simplicity (and lower cost) of options that work on their own, but hub-dependent devices may make sense in certain situations. Some companies, like Aqara and Lutron for example, make a vast range of smart home products, adding automatic shades, window sensors, smart locks and air quality monitors to the more traditional cameras and plugs. If you’re going all-in on one brand and plan to get a plethora of connected devices, a hub can keep your Wi-Fi network from getting too crowded and provide a more seamless setup with reliable connectivity. Zigbee devices use their own protocol (different from Wi-Fi or Bluetooth) and also requires a hub. 

Sharing

Once a plug is set up with your platform and voice assistant of choice, anyone can control the plug just by talking. If someone else wants to control things with their phone, things get more complicated. Google makes it easiest, allowing you to invite another person just by tapping the + button within the Home app. Whomever you invite will have full access to your connected devices – including cameras – so this is only for people you trust the most.

HomeKit makes it similarly easy to grant app access to someone else, but as with most things Apple, it only works for other iOS users. Amazon only allows you to share access to your Echo, not your connected home devices.

Many smart plug manufacturers allow you to share control through their app by inviting another person via email. But this only grants access to devices of that brand. Hopefully as Matter expands, multi-admin features will become more widespread.

If you get a new Wi-Fi network

Most people will wirelessly connect their smart plugs to their home’s Wi-Fi router. Matter, Z-Wave, Thread and other smart home protocols can work over local networks, but for most setups, the signals telling your plugs what to do will be dispatched through your router. If you happen to get a new one (like I did when it became clear my very basic gateway could not handle the number of smart home devices being tested) you’ll need to take a few steps to get everything reconnected.

Depending on the brand, the steps may simply involve using the plug’s companion app to update your credentials (network name and password). Or it will require deleting the device in the companion app, doing a factory reset (typically by pressing the onboard button for 10 seconds) and setting up the plug like it's brand new. GE Sync and Emporia plugs allow for a credentials update via their apps, others, like TP-Link Kasa and Meross plugs require deletion and a factory reset to get along with your new network. Amazon’s smart plug updates automatically after updating the associated Echo device.

How we tested the best smart plugs

Before I decided which smart plugs to test, we considered brands Engadget staffers have had the best experiences with, both in review capacity and personally. We also checked out other online reviews. I then looked at factors like price, compatibility and relative popularity. Then, I tested about a dozen plugs using their companion apps and the four major smart home ecosystems. With lamps, lights, heaters, fans and more plugged into them, I set schedules, create routines, use voice control and generally live with the devices to evaluate them. I and continue to test good candidates as new models hit the market. 

Other smart plugs we tested Eve Energy Strip

The Eve Energy Strip only works with HomeKit and it’s a bit more expensive than our pick for a smart strip. But it’s an exceedingly attractive device complete with an aluminum frame and easy-to-read LED buttons. Those act as both indicators and manual switches for each of the three, individually controlled and nicely spaced plugs. Setup happens through the HomeKit app but after that, you can control the plug (and curiously, many other smart home devices active in your HomeKit profile) through the Eve Energy app. Here, you’ll be able to create schedules and automations as well as monitor the plug’s energy usage.

Meross Matter plug (MSS115)

I wasn’t able to test the Meross Matter plug fully. It requires Wi-Fi splitting, a process that’s certainly possible for the average consumer, but more involved than it should be, considering the more than dozen other plugs I’ve tested don’t require such a step. The plug itself also blocked the other outlet. Meross has an updated version of the Matter device on the way, one that looks to solve both issues and we’ll update this guide accordingly once we’ve had a chance to test it.

Roku Smart Plug

Roku’s smart home gear is basically Wyze equipment with an app and packaging that are more purple. The Roku smart plug performed just fine with both compatible voice assistants (Alexa and Gemini). The companion app doesn’t offer scheduling that revolves around the timing of the sunset in your area, but the plugs go for less than $10 each and if you’ve got a Roku TV or streaming device set up and want to keep everything on-brand, it could be a fit.

Aquara Smart Plug

The Aqara plug requires an Aqara hub. In tests, the connectivity was solid and the companion app allowed for useful if/then automations that can rope in other Aqara devices like locks, window shades, cameras and more. The plug also worked well with voice assistants from Amazon, Google and Apple. As a stand-alone plug, however, it’s tough to recommend the nearly $100 combo to anyone who isn’t planning to get a complete Aqara smart home setup.

Smart plug FAQs What are the disadvantages of a smart plug?

While they’re great when everything is working properly, smart plugs can be frustrating, adding a layer of complication to the simple act of turning on a light, if something goes wrong. For example: If your Wi-Fi goes out, your smart plug won’t work. If the smart plug loses its connection to your router, it won’t work. If you change your Wi-Fi password or provider, you’ll have to re-program your smart plugs. If you forget what you named a particular plug during setup, you may be faced with an irritating conversation with your voice assistant. The best way to avoid some of those problems is to get a plug that works reliably, which is one of the features we considered for this guide.

How much power does a smart plug draw?

Smart plugs don’t draw much more power than whatever you’re plugging into them. True, they remain on standby to await instructions from your smart assistant or other controller, so they’re always using a small amount of power. But if, for example, you set a light to automatically turn off at night, and that light would otherwise stay on unnecessarily, the smart plug will save far more energy than the watt or two extra that it draws.

Do smart plugs use Bluetooth?

Some smart plugs use Bluetooth to connect to your phone during setup. After that, most connect to your home’s Wi-Fi network.

What appliances should not be plugged into a smart plug?

Common sense will help you determine what not to plug in. Obviously anything dangerous like power tools should not be plugged into a smart plug. Appliances that require supervision, such as space heaters and curling irons, shouldn’t be set to turn on automatically if no one will be around. You also shouldn’t bother with anything that needs further programming. Simple on/off appliances like lamps and fans work best.

This article originally appeared on Engadget at https://www.engadget.com/home/smart-home/best-smart-plug-131542429.html?src=rss

After kicking off CES 2026 with its "First Look" event, Samsung is ready to announce the first of what should be several new Galaxy smartphones this year. The company is officially hosting a Galaxy Unpacked event on February 25 at 1PM ET, where it'll introduce the Galaxy S26 series and updates to Galaxy AI.

Leaks that have trickled out ahead of the event suggest that the Galaxy S26, S26+ and S26 Ultra will feature a new Snapdragon 8 Elite Gen 5 chip, and could come with more RAM and storage. Only the Galaxy S26 Ultra is expected to include major hardware changes, though, with an updated camera system, and possibly proper support for Qi2 charging. Alongside new smartphones, Samsung is also expected to introduce the Galaxy Buds 4 and 4 Pro, which will reportedly feature a new design, support for head gestures and an Ultra Wideband chip so they're easier to find using Google Find Hub.

As in previous years, Samsung has an optional deal for anyone who wants to lock in a discount before the company's new smartphones and accessories are announced. If you reserve Samsung's new devices now, you can receive a $30 credit and be entered to win a $5,000 Samsung.com gift card. When you do pre-order, the company also claims that it'll offer up to an additional $900 in savings if you trade-in a device or $150 off even without a trade-in if you pre-order through Samsung.com.

Engadget will have coverage of everything Samsung announces at Galaxy Unpacked right here, but if you want to watch along, you can catch the company's livestream of the event on Samsung's YouTube channel, the Samsung Newsroom page or at Samsung.com.

This article originally appeared on Engadget at https://www.engadget.com/mobile/smartphones/samsungs-galaxy-s26-unpacked-event-is-on-february-25-230000375.html?src=rss

Discord is the latest company looking to bolster its child safety (again). Starting in March, all users will have a "teen-appropriate experience" by default. Unlocking adult content and age-gated spaces will require a (usually one-time) verification process. However, following blowback, the company appears to have pivoted. It now says its age prediction AI will verify the identities of “the majority of adult users” without requiring a manual age check.

The platform's big safety update encompasses communication settings, restricted access to age-gated spaces and content filtering. Users who aren't verified as adults will see blurred sensitive content. In addition, age-restricted channels, servers and app commands will be blocked. DMs and friend requests from unknown users will be routed to a separate inbox.

If you're an adult who didn’t pass the automatic age check, removing these restrictions will require one of two verification methods at launch. You can take a selfie video for age estimation or submit a government ID to Discord's vendor partners. (Let's just hope the age estimations work better than Roblox's.) The company stresses that the video selfies you submit for age estimation never leave your device. And it claims ID documents sent to its vendor partners are deleted quickly, "in most cases, immediately after age confirmation."

Although Discord says the process will be one-and-done for most people required to submit manual verification, some may be required to submit multiple forms. Its original announcement stated that additional verification options would be introduced, including an age inference model that runs in the background. However, following backlash to its initial announcement, the company now suggests that the inference model will be the norm for most adults.

“For most adults, age verification won’t be required, as Discord’s age inference model uses account information such as account tenure, device and activity data and aggregated, high-level patterns across Discord communities,” the company wrote in a statement sent to Engadget on Tuesday. “Discord does not use private messages or any message content in this process.”

This isn’t the company’s first attempt at beefing up its child safety measures. In 2023, it banned teen dating channels and AI-generated CSAM. Later that year, it added content filters and automated warnings. Those changes followed an NBC News report that 35 adults had been prosecuted on charges of "kidnapping, grooming or sexual assault" that involved Discord communication.

Alongside today’s changes, Discord is recruiting for a new Teen Council. The group will include 10 to 12 teens aged 13 to 17. The company says this "will help ensure Discord understands — not assumes — what teens need, how they build meaningful connections, and what makes them feel safe and supported online." This sounds like the corporate equivalent of the parenting advice: “Don’t just talk to your children; listen to them, too.”

The child safety changes will start rolling out globally in early March. Both new and existing users may be required to submit verification for adult content.

Update, February 10, 2026, 5:57 PM ET: This story has been updated to add Discord’s clarification and statement that claims most adults won’t need to conduct a manual age check.

This article originally appeared on Engadget at https://www.engadget.com/social-media/discord-will-soon-require-age-verification-to-access-adult-content-140000218.html?src=rss

The National Labor Review Board (NLRB) has dropped a case accusing SpaceX of illegally firing eight employees who criticized the company's CEO Elon Musk, The New York Times. The employees were originally fired in 2022 after circulating a letter that referenced reports of Musk's sexual misconduct and called the executive "a frequent source of distraction and embarrassment." The NLRB filed a complaint claiming the firing was illegal in 2024.

Originally, SpaceX's opposition to the NLRB's case was that the agency is unconstitutional, The New York Times writes. Complaints about the NLRB's independence and power are not uncommon. Amazon has previously claimed that the board's structure "violates the separation of powers," a critique the company has made even more recently about the Consumer Product Safety Commission. The NLRB dismissed its SpaceX case following an even more unusual line of argument, though: that regulating SpaceX actually fell under the jurisdiction of the National Mediation Board, the government agency that handles mediation in the airline and railway industries.

Because the company will technically let anyone book a space flight with it, and it operates under a license from the Federal Aviation Administration, SpaceX's lawyers argue it should be treated like an airline. According to The New York Times, the National Mediation Board issued a decision affirming that logic in January, and not long after, the NLRB dismissed its SpaceX case using the same line of thinking.

Elon Musk and his companies maintain a close relationship with the Trump administration. Musk spent over $250 million to help re-elect President Donald Trump, and he briefly served as a special government employee overseeing budget cuts and layoffs across various government bodies as part of the Department of Government Efficiency. The NLRB gave up its own authority to regulate, rather than it being stripped of funding or employees, but the decision still fits a larger pattern of independent agencies being disempowered during the second Trump administration.

This article originally appeared on Engadget at https://www.engadget.com/big-tech/the-nlrb-just-gave-up-on-spacex-workers-who-claim-they-were-illegally-fired-215332847.html?src=rss

Meta has been going all in on AI, whether people want it or not, and now it's bringing more features in that vein to Facebook. The network's latest move is to let people use Meta AI to animate their profile photos. Because what better way to express your individuality than to use a pre-canned AI-generated animation on your own face?

Meta AI is also coming for your Facebook Stories and Memories. The network's Restyle lets you use gen-AI to change up the aesthetic of your posts. You can once again use pre-canned stylings or give the AI assistant your own prompt.

In the company's own words, the new tools that will create "share-worthy moments that spark meaningful interactions and conversations with friends." I guess meaning is in the eye of the beholder. If you're desperate to behold even more AI slop, Meta recently said its Vibes feed of exactly that content will be getting a standalone app.

This article originally appeared on Engadget at https://www.engadget.com/social-media/facebook-is-offering-meta-ai-powered-animations-for-profile-photos-201022506.html?src=rss

You have likely heard about the masked agents of ICE mucking around in Minnesota for the past few months, resulting in numerous violent incidents and deaths. Itch.io is hosting a bundle to help raise money for the Immigrant Law Center of Minnesota, which was organized by charity creator Jes Wade.

The No ICE in Minnesota bundle includes nearly 1,300 video games and tabletop games and costs just $10, though those with deep pockets can certainly donate more than that. It has a goal of $100,000, which it certainly is on pace to meet.

There are some nifty titles here, particularly for those interested in indie puzzle games and life sims. The standout is likely the stellar puzzler Baba Is You, which won the Game Designers Award at the Tokyo Games Show in 2020. This is a game that has to be played to be understood, as players are given the opportunity to change the rules to find novel solutions to complex puzzles. It's very good.

The bundle includes the life simulation game Calico, which involves players running a cat cafe on a magical island. The art style is gorgeous and the gameplay is relaxing. Also, calico cats are awesome.

Other titles include the bee-collecting sim Apico, the musical sci-fi adventure Periphery Synthetic and the space-based roguelike Hyperspace Dogfights. Scroll through the list to see if anything else strikes your interest, but mark out some time on the calendar first. Scrolling through nearly 1,300 games can take a while.

The Immigrant Law Center of Minnesota is a nonprofit that provides free representation to low-income immigrants and refugees. The organization also provides support for those who have witnessed violent attacks and advocates for public policies which "respect the universal human rights of immigrants."

I live in Minneapolis. ICE is still here in full force, despite the media moving on to shinier objects. We really do need all the help we can get. The long-term presence of these masked, armed agents is really starting to destroy the local economy and many people are quite literally trapped indoors. To say morale is low would be an understatement. Schools are still being raided and people are still being brutally beaten. American citizens are still being arrested for dubious reasons. This is all happening after the killings of Renee Good and Alex Pretti.

That's why these fundraising bundles on Itch have become so important. They really do shine a light on important topics. This is organizer Jes Wade's second ICE-related bundle, with a former focusing on California relief efforts. There have also been bundles to help raise money for the NAACP Legal Defense and Educational Fund and Community Bail Fund and to raise cash for charities working in Ukraine.

This article originally appeared on Engadget at https://www.engadget.com/gaming/this-itchio-bundle-to-help-minnesota-includes-over-1200-games-and-costs-just-10-190643987.html?src=rss

Former cryptocurrency poster boy Sam Bankman-Fried is trying to get another chance in court. He has filed a request that for a new trial on claims that new witness testimony could alter the case made against him by prosecutors, according to Bloomberg. His odds for getting the re-trial, where he'd be representing himself, seem pretty slim. This is a separate motion from a formal appeal of his previous conviction.

Bankman-Fried is one of many cryptocurrency leaders who have since been prosecuted for fraud. After being jailed for witness tampering, he was found guilty of seven charges of fraud and conspiracy in 2023. Bankman-Fried was sentenced to 25 years in prison for his actions as CEO and co-founder of crypto exchange FTX.

This article originally appeared on Engadget at https://www.engadget.com/big-tech/sam-bankman-fried-wants-a-re-trial-for-fraud-charges-185910093.html?src=rss

Hubble may no longer be the gold standard, but it can still capture some impressive images. The telescope's latest snapshot is our clearest view yet of the Egg Nebula. Roughly 3,000 light-years away from Earth, the nebula's name is derived from its dense layer of gas and dust cloaking a central star.

The new image shows the nebula's four beams of starlight (from that central star) escaping from its gas-and-dust "shell." On either side of the disc-like cloud are fast-moving outflows of hot molecular hydrogen. The orange highlights in this image indicate the glow of infrared light.

As the beams of starlight stretch out from the center, they illuminate concentric rings of gas. The gas’s ripple-like pattern suggests it was created by successive bursts from the star, with a little more ejecting every few hundred years.

Hubble image of the Egg Nebula. A disc of gas and dust surrounded by beams of light and concentric rings of dust.SA / Hubble & NASA, B. Balick (University of Washington)

The Egg Nebula, found in the constellation Cygnus, was first discovered in 1975. Nebulae in this preplanetary phase are rare finds. Since the stage only lasts a few thousand years (and because they're often faint), they're relatively difficult for astronomers to spot. By comparing this new image with previous Hubble snapshots of the Egg Nebula, astronomers can learn more about it and shed more light on its processes. But for the rest of us, it makes for some pretty sweet eye candy, right?

This article originally appeared on Engadget at https://www.engadget.com/science/space/hubble-showcases-the-egg-nebula-in-all-its-dying-star-glory-174239769.html?src=rss

Get ye to Windows Update, because there's a good chance you've got new Secure Boot certificates to install. Microsoft just announced that it will be refreshing those certificates, which were originally introduced when Secure Boot debuted in 2011, as a security precaution. Secure Boot was a way for Microsoft to protect systems from running unsigned and potentially malicious code before Windows launched. It went on to be an installation requirement for Windows 11, as well as anti-cheat software used in Valorant, Call of Duty: Black Ops 6/7 and Battlefield 6.

Without the new Secure Boot certificates, Microsoft says your system will still function normally, but it will enter "a degraded security state that limits its ability to receive future boot-level protections." Basically, you won't be protected from malware and viruses targeting vulnerabilities in older versions of Windows. As expected, Microsoft also notes that unsupported versions of Windows won't be receiving the new Secure Boot certificates. They're only coming to Windows 11 systems, as well as Windows 10 PCs subscribed to Microsoft's Extended Security Updates.

Microsoft says many users will be able to pick up the updated Secure Boot certificates by visiting Windows Update, but a few may need additional firmware updates from their system (or motherboard’s) OEM. You’ll also be able to track the status of your security certificates in the Windows Security app in the “coming months.”

"As cryptographic security evolves, certificates and keys must be periodically refreshed to maintain strong protection," Nuno Costa, Partner Director of Windows Servicing and Delivery, wrote in a blog post today. "Retiring old certificates and introducing new ones is a standard industry practice that helps prevent aging credentials from becoming a weak point and keeps platforms aligned with modern security expectations."

Costa says Microsoft has been working with OEMs like Dell and HP to ensure a smooth transition to the new Secure Boot certificates. Many new systems built in 2024 already have the updated certs, while "almost all" devices shipped last year have them as well. Microsoft has also been alerting IT customers to this transition since last year.

This article originally appeared on Engadget at https://www.engadget.com/computing/microsoft-will-start-refreshing-secure-boot-certificates-in-march-for-windows-11-and-windows-10-esu-users-170000777.html?src=rss

There appears to be no limit to how chonky and eye-wateringly expensive PC gaming handhelds can get, with the latest behemoth being the Ayaneo Next 2. First announced back in November, the latest Windows handheld in Ayaneo’s Next lineup is now up for pre-order, with a spec sheet that makes some of its rivals look modest.

If you missed the announcement at the end of last year, the Next 2 is packing a 9-inch OLED display with a 2,400 x 1,504 resolution and a maximum refresh rate of 165Hz (adjustable down to 60Hz). The Next 2 is powered by an AMD Ryzen AI Max+ 395 chip and has a massive 115Mh battery under the hood.

To put all of that into perspective, the Next 2’s display is more than 1.5 inches larger than the Steam Deck OLED’s, and goes bigger than even the Lenovo Legion Go 2’s 8.8-inch panel. Its battery is the largest of the three by some margin too, and according to Ars Technica it weighs in at around 3.14 pounds (around 1424g), making it more than twice as heavy as the very heavy Xbox ROG Ally X. Get those wrists to the gym if you’re considering picking one of these up.

Ayaneo is ticking all the boxes where inputs are concerned too. Its latest handheld has dual touchpads (a feature ASUS left out on the ROG Xbox Ally X), Hall Effect sticks, an 8-way D-Pad and four customizable rear buttons.

All of this tech inevitably comes at a high price, with the entry-level model that ships with 32GB of RAM and 1TB of storage coming in at $1,999, or $1,799 if you take advantage of early bird pricing. This model is equipped with the slightly less capable Ryzen AI Max 385 CPU.

If you want the more powerful AI+ 395 chip you have a few options. A variant of the Next II with 64GB of RAM and 1TB of storage costs $2,699, but you can order now at the early bird price of $2,299. For 128GB of RAM and 2TB of storage you’ll be handing over a slightly hilarious $4,299 at full price. Early birds can order now for $3,499.

This article originally appeared on Engadget at https://www.engadget.com/gaming/pc/the-ayaneo-next-2-is-a-massive-pc-handheld-with-a-price-tag-to-match-165326534.html?src=rss

A US judicial body has revised an internal document to remove climate research. The Reference Manual on Scientific Evidence is a document used by judges when they have to oversee cases involving complex scientific matters. The climate science chapter has now been deleted, so they'll be on their own with climate-related cases.

This move came after a group of Republican state attorneys wrote a letter to complain about the chapter on climate change. The language in the document, which was authored by researchers from Columbia University, suggests that climate change is driven by the actions of humans. This was a no-go to those state attorneys, despite being an established fact.

"Nothing is 'independent' or 'impartial' in issuing a document on behalf of America’s judges declaring that only one preferred view is 'within the boundaries of scientifically sound knowledge,'" the letter states. It's worth noting that the document is nearly 2,000 pages long and declares preferred views on numerous subjects, though the state attorneys only have an issue with the one.

The Republicans also complained that the report called the Intergovernmental Panel on Climate Change an "authoritative science body." The grounds for this complaint seem to derive from a short paper from a Canadian conservative think tank.

US court agency pulls climate change from science advisory document https://t.co/2ornJlJN1X

— Ars Technica (@arstechnica) February 10, 2026

The letter's authors would not settle for any revisions, according to a report by Ars Technica. Rather, they demanded the entire chapter be removed. So it was removed and now judges can rule on climate cases using the tried and true method known as "vibes."

Interestingly, the introduction of the document by Supreme Court Justice Elena Kagan still mentions the climate chapter. They had better break out some correction tape. The full text of the now-deleted chapter has been posted by RealClimate, if you want to give it a gander.

More than 99.9 percent of peer-reviewed scientific papers agree that climate change is real and caused by humans. It looks like some segments of society want a judicial system ruled by that remaining 0.01 percent.

This article originally appeared on Engadget at https://www.engadget.com/big-tech/us-judicial-body-removes-climate-research-paper-after-complaints-from-republicans-164829295.html?src=rss

Supermassive Games has announced a new release date for the next entry in the Dark Pictures Anthology series. Directive 8020 is coming to PS5, Xbox Series X/S and Steam on May 12. The studio behind Until Dawn and The Quarry revealed the news with the help of a fresh trailer for the sci-fi survival horror game.

The story focuses on the crew of a spaceship that has crash landed onto another world. The survivors have to contend with an alien lifeform that's hunting them and can mimic its prey (no prizes for guessing that Supermassive took inspiration from The Thing here). If these astronauts want to stay alive, though, they'll put the lives of everyone on a dying Earth at risk.

As with Supermassive's previous games, Directive 8020 is largely driven by the narrative choices players make at key moments, such as whether to save a crewmate and put the character you're currently controlling at risk, or to abandon them. You might also have to pick between two seemingly identical versions of the same person and let one of them back into the crew. The game has segments in which you'll have to fight or stealthily avoid enemies as well.

This time around, Supermassive is introducing a feature called Turning Points, through which you can go back to previous decisions and opt for another path (perhaps to see different endings more easily, keep certain characters alive or make sure you get all the achievements or trophies). A permadeath mode does away with that option for a more traditional survival horror experience. 

You can go it alone or get some friends to join you for five-player local co-op action — the studio's games have long been good fodder for pass-the-controller couch co-op. Supermassive will add online multiplayer support down the line.

The developer originally planned to release Directive 8020 in October 2025. However, Supermassive announced last July that it was delaying the game amid its latest round of layoffs.

This article originally appeared on Engadget at https://www.engadget.com/gaming/directive-8020-brings-sci-fi-survival-horror-to-ps5-xbox-series-xs-and-pc-on-may-12-163358560.html?src=rss

Numerous major social platforms including Meta, YouTube, TikTok and Snap say they will submit to a new external grading process that scores social platforms on how well they protect adolescent mental health. The program comes from the Mental Health Coalition’s Safe Online Standards (SOS) initiative, which comprises about two dozen standards covering areas like platform policy, functionality, governance and transparency, content oversight and more. The SOS initiative is led by Dr. Dan Reidenberg, Managing Director of the National Council for Suicide Prevention.

In announcing these companies' participation, the Mental Health Coalition writes "SOS establishes clear, user-informed data for how social media, gaming, and digital platforms design products, protect users ages 13–19, and address exposure to suicide and self-harm content. Participating companies will voluntarily submit documentation on their policies, tools, and product features, which will be evaluated by an independent panel of global experts."

After evaluation, the platforms will be given one of three ratings. The highest achievable safety rating is "use carefully," which comes with a blue badge that compliant platforms can display. Despite being the highest rating, the requirements seem fairly run-of-the-mill. The description includes things like "reporting tools are accessible and easy to use," and "privacy, default and safety functions are clear and easy to set for parents." As for what actions the standards ask of the companies being rated, the "use carefully" rating says "platforms and filters help reduce exposure to harmful or inappropriate content."

The other ratings include "partial protection" which is described in part as "some safety tools exist on the platforms, but can be hard to find or use," and "does not meet standards" which would be given if "filters and content moderation do not reliably block harmful or unsafe content."

The Mental Health Coalition, founded in 2020, has mentioned Facebook and Meta as partners since the early days of the organization. In 2021 the organization said it would bring together "leading mental health experts partner with Facebook and Instagram to destigmatize mental health and connect people to resources" during the COVID-19 pandemic.

In 2022 the nonprofit published a case study with "support from Meta" that found "mental health content on social media can reduce stigma while increasing individuals’ likelihood to seek resources, therefore positively impacting mental health."

In 2024, the MHC "in partnership with Meta" launched a campaign called the Time Well Spent Challenge. In it, the group urged parents to have “meaningful conversations” with teens about “healthy” social media use, focusing less on whether teens should be on these apps at all and more on keeping them on-platform in a “time well spent” way, from reduced screen time to “using social media for good” and reviewing their feeds together.

That same year it partnered with Meta again to establish "Thrive," a program that allows tech companies to share data regarding materials that violate self-harm or suicide content guidelines. The Mental Health Coalition lists Meta as a "creative partner" on its website.

Last year it was alleged that Meta buried internal data showing the ill effects of its products on users' mental health. The internal research, dubbed "Project Mercury," began in 2020. Since then the company has introduced some bare-minimum attempts at addressing mental health concerns, such as Instagram teen accounts. Meta is now on trial in California facing allegations over child harm from addictive products, the first in a series of upcoming lawsuits against the social media giant.

Other companies participating in the rating program include Roblox, which has recently faced stiff accusations over the wellbeing of children on the platform, and Discord which has beefed up its age-verification processes in response to its own serious child endangerment concerns.

This article originally appeared on Engadget at https://www.engadget.com/social-media/meta-tiktok-and-snap-are-participating-in-an-online-safety-ratings-system-162921333.html?src=rss

The internet is ripe with horrible violations of people's privacy, including non-consensual explicit images. A new tool from Google won't do much in the way of prevention, but can help you remove this media from Search. 

Now, you can choose an image and quickly request its deletion. Just click on the three dots that appear on the image. From there, choose "remove result" and then "It shows a sexual image of me." Other choices include the picture shows a person under 18 and that it has your personal information. If you choose the initial option then you will also be asked whether it contains a real image or deepfake. There's also an option to submit multiple photos at once. 

Google claims that, upon submitting your request, you will "immediately" see links to emotional and legal support organizations. Plus, you can opt-in to safeguards that filter out similar results in Search — though it seems these unreported images will still be available for other users to see. This feature should be available in most countries over the coming days. 

You can go on Google's "Results about you" hub to track your request. To use the tool, you will have to add in your personal contact information and government ID numbers. Google already had the hub to track if any of that information appears on Search, but now it will also look for your social security number, drivers license and passport information. The company should notify you if any of that information comes up in Search results and allow you to take removal steps. 

Results about you's updates should roll out to US users in the coming days. Notably, it arrives as Google shutters its dark web reports. They would alert you if your name, number, or email address appeared on the internet — typically because of a data breach. However, Google found it didn't help users take next steps to fix the problem, something these new features will hopefully do. 

This article originally appeared on Engadget at https://www.engadget.com/cybersecurity/googles-new-tool-helps-you-remove-non-consensual-explicit-images-from-search-155352248.html?src=rss

It takes time for novel designs to catch on. But even so, I am still wondering why the Zenbook Duo hasn't had a bigger impact on the market after ASUS released its first true dual-screen laptop two years ago. Notebooks like these provide the kind of screen space you'd typically only get from a dual monitor setup, but in a much more compact form factor that you can easily take on the road. It could be that people were wary of an unfamiliar design, shorter battery life or buying a first-gen product — all of which are understandable concerns. However, now that ASUS has given the ZenBook Duo a total redesign for 2026, the company has addressed practically all of those barriers to entry while making it an even more convincing machine for anyone who could use more display space. Which, in my experience, is pretty much everyone.

Editor’s note: The 2026 ASUS Zenbook Duo is expected to be available for pre-order sometime in late February, with general availability slated for March.

Design

For the new model, ASUS didn't mess with the laptop's basic layout too much. Instead, the company polished and tightened everything up, resulting in a system that weighs about the same (3.6 pounds) while reducing its overall size (12.1 x 8.2 x 0.77 to 0.92 inches) by five percent. Critically, you still get a built-in kickstand on the bottom and a detachable keyboard that you move wherever you want. There’s also a decent number of ports, including two USB-C with Thunderbolt 4, one USB-A 3.2 jack, HDMI 2.1 and a combo audio port. That said, I do wish ASUS had found room for an SD card reader of some kind, though given the Zenbook Duo's unique design, I get why that didn't make it. 

The Zenbook Duo's detachable keyboard gives users a ton of flexibility when it comes to utilizing both of the laptop's displays. Sam Rutherford for Engadget

One of the Zenbook Duo's most important design upgrades is a new "hideaway" hinge that reduces the gap between the laptop's two screens. Not only does this make the laptop easier and more pleasant to use in dual-screen mode, it also allows the entire system to lay flat on a table, which is nice for drawing or sharing your screen with someone sitting opposite you. Unfortunately, while my review unit didn’t come with one, ASUS says its forthcoming Pen 3.0 will come bundled with the Zenbook Duo in the US, so you won’t need to pay extra for it.

Another small but appreciated improvement is the new pogo pins below the lower display, which provides a more secure and reliable way of keeping the laptop's detachable keyboard topped up. In my experience, even after running multiple rundown tests that completely drained the Duo's battery, I never had to charge up the keyboard on its own. It was always smart enough to sip electricity from the main system in the background, though it also has a built-in USB-C port for power just in case. On the flipside, if you're not scared of typing on glass, you can still use the lower screen as a keyboard and touchpad, or as a place to display widgets for news, the weather, performance and more. 

Displays As someone who loves a desktop with dual monitors, I can't overstate how nice it is to have similar built-in functionality on a laptop. Sam Rutherford for Engadget

The standout feature on the Zenbook Duo continues to be its dual displays, and now for 2026, they look better than ever. Both OLED panels have a 144Hz refresh rate with a 2,880 x 1,800 resolution while also covering 100 percent of the DCI-P3 spectrum. And while its nominal brightness of 500 nits for SDR content is just OK, ASUS makes up for that with peaks of up to 1,000 nits in HDR. And to make both screens even more enjoyable, ASUS managed to shrink the size of their bezels down to just 8.28mm. That's a reduction of 70 percent compared to the previous model, so now there's even less getting in the way of you utilizing these screens to their fullest.

Performance

The Zenbook Duo can be configured with a range of new Intel Core Ultra 7 and Core Ultra 9 processors, including the X9 388H chip used on our review unit. For general use and productivity, the laptop is super smooth and responsive, though that shouldn't be a surprise coming from Intel's latest top-of-the-line mobile CPU. However, for those seeking max performance, some of the benchmark numbers aren't quite as impressive as you might expect. That’s because ASUS has limited the Duo's TDP (thermal design power) to 45 watts — which is shy of the chip's 80-watt turbo power limit.

The kickstand in back adds a bit a bulk, but it's better than not having one at all like with Lenovo's Yoga Book. Sam Rutherford for Engadget

In PCMark 10, the Zenbook Duo only managed a score of 7,153 compared to 9,651 from a Dell XPS 14, despite the latter having a lower-tier Intel Core Ultra X7 358H processor. That said, in other tests like Geekbench 6, the Duo had no trouble staying on top with a multicore score of 17,095 versus 9,651 for the Dell. 

Another pleasant surprise is that because the Duo's chip comes with Intel's upgraded Arc B390 integrated GPU, this thing has plenty of oomph to game on, let alone edit videos or other similar tasks. In Elden Ring at 1,920 x 1,200, the Zenbook maintained a relatively stable framerate between 55 and 60 fps on high settings, which is great considering this thing doesn't have discrete graphics. This means as long as you don't mind fiddling with game options a bit, you should be able to play newer AAA games without too much trouble. 

Battery life The left side of the Zenbook Duo features a full-size HDMI connector along with a USB-C port, plus a backup USB-C jack for charging the detachable keyboard. Sam Rutherford for Engadget

You'd think a laptop with two displays would be super power hungry. However, by increasing the capacity of its cell from 75WHrs to 99WHrs, ASUS has made the Zenbook Duo's endurance (or lack thereof) a complete non-issue. On PCMark 10's Modern Office rundown test, the laptop lasted 18 hours and 33 minutes in single-screen mode. Granted, that's nearly four hours less than what we got from MSI's Prestige 14 Flip AI+, but considering that's the longest-lasting notebook we've ever tested, I'm not bothered. When compared to ASUS' own Zenbook A14 (18:16), things are basically a wash, which I think is a win for the Duo, as the A14 is meant to be an ultralight system with an emphasis on portability and longevity. 

Obviously, battery life takes a hit when you're using both displays. However, when I re-ran our battery test with its two displays turned on, the Duo still impressed with a time of 14:23. This is more than enough to give you the confidence to set this thing up in dual-screen mode even when an outlet isn't close at hand. Thankfully, for times when you do need a power adapter, the charging brick on ASUS' cable is rather compact, so it's not a chore to lug it around. 

Wrap-up The Zenbook Duo's battery life is good enough you won't always need its power brick. Thankfully, when you do, ASUS' 100-watt adapter is relatively compact. Sam Rutherford for Engadget

I'm a believer that one day people will eventually embrace typing on screens with laptops just like they have for smartphones. However, even if you're not willing to make that jump just yet, the Zenbook Duo still has all of its bases covered. Its detachable keyboard gives you a pleasant experience while freeing up the bottom of the notebook to be a second display. This allows you to have something similar to a traditional dual-monitor desktop but in a chassis that you can easily take on the road without any major compromises. 

The 2026 Zenbook Duo combines a compact design with strong performance, plenty of ports and surprisingly good battery life. Sure, it's a touch heavier than a typical 14-inch laptop, but its two screens more than make up for a little added weight and thickness. That leaves price as the Duo's remaining drawback, and starting at $2,100 (or $2,300 as reviewed), it certainly isn't cheap. 

However, when you consider that a similarly equipped rival like a Dell XPS 14 costs just $50 less for a single screen, that price difference is rather negligible. Alternatively, if you opt for a more affordable ultraportable and then tack on a decent third-party portable monitor, you're still likely looking at a package that costs between $1,500 and $1,800. Plus, that setup is significantly bulkier and more annoying to carry around. So while the Zenbook Duo might be an unconventional pick right now, it has all the tools to deliver unmatched portable productivity and I don’t think it will be too much longer until the masses catch on.

This article originally appeared on Engadget at https://www.engadget.com/computing/laptops/asus-zenbook-duo-2026-review-two-screens-really-are-better-than-one-140000982.html?src=rss

Last year the UK declared that Apple and Google were a duopoly with "strategic market status" in the mobile platforms market, making them subject to special regulations. However, the UK's Competition and Markets Authority (CMA) will not regulate Google and Apple's app stores like the EU has done. Rather, government plans to enforce its own digital markets rules in a "pragmatic" way by accepting "commitments" from Apple and Google in areas like app rankings, the CMA announced. 

Google and Apple agreed to work with the CMA to address concerns on the following matters: app review, app ranking, use of data and interoperability process. Effectively, regulators require the tech giants to treat developers fairly, particularly when they compete against Google and Apple's own apps. However, the UK's rules are more like suggestions and "not legally binding in any case," former CMA director Tom Smith told the Financial Times.

This is in stark contrast to Europe's Digital Markets Act, which forced Apple to make changes to open up iOS features and data to rivals, allow app installations from outside its Store and reduce fees collected on purchases. 

That could change if the companies fail to comply with its measures, though. The CMA plans to check metrics like the number of apps approved or rejected, app review times and developer complaints received. New requirements could then be brought forward if deemed necessary. "For example, if we find Apple is routinely declining interoperability requests without good reason... we could bring forward specific interoperability requirements. Non-compliance would also mean we would be unlikely to consider commitments as a similar approach in [the] future."

Google said in a blog today that it "welcomed the opportunity to resolve the CMA's concerns collaboratively." Apple, meanwhile, seemed similarly pleased with the deal. "The commitments announced today allow Apple to continue advancing important privacy and security innovations for users and great opportunities for developers,” an Apple spokesperson told Bloomberg.

The UK is possibly taking a light touch on app store rules to avoid antagonizing the Trump administration. Earlier today, French President Emmanuel Macron predicted that the US could go after the EU on areas like data privacy, digital taxation and the plan of multiple EU countries to ban children from social media. "The US will, in the coming months — that’s certain — attack us over digital regulation," Macron said at a special summit yesterday. 

This article originally appeared on Engadget at https://www.engadget.com/big-tech/uk-takes-light-touch-approach-to-regulating-apple-and-googles-app-stores-131119575.html?src=rss