Tech Republic

In the world of AI, small is becoming very big. Many software companies, particularly those looking to ramp up their AI solutions quickly, are increasingly turning to small language models (SLMs), which require less computational power and memory — meaning smaller datasets. Designed for specific enterprise tasks, these models are not only faster to train and deploy, but they are already outperforming or matching similarly sized models, which is good for any company that wants to implement AI, and especially those with limited resources, budget, or time constraints. The market for SLMs is expected to grow a steady 15% over the next five years. On the flip side, the more well-known large language models (LLMs) used in many AI applications are trained with massive datasets. This data can take months to train, and it’s just the beginning — it is often followed by human fine-tuning. LLMs involve significant development expenses that may run into several million dollars, according to some estimates, which can be a major financial burden for most software companies and startups. SURVEY: Our sister site DZone is looking for your views on generative AI. Since SLMs are growing in popularity, what’s next? SLMs can be useful to companies looking for targeted quick wins and are the preferable choice for many, as they use far fewer parameters and can be built from scratch or adapted from LLMs. The smaller size of these models allow them to be hosted in an enterprise’s data center instead of the cloud. SLMs are even more powerful when open-source, and by training on carefully curated enterprise datasets, they can be filtered for objectionable content with critical concerns like governance, risk, privacy, and bias mitigation, as this becomes increasingly important in 2025 and beyond. When it comes to AI, timing is everything Among the many use cases, SLMs find a sweet spot when predicting outcomes in time series data. Timing is critical in business, where every organization has a forecast of sales, demand, revenue, and capacity requirements; this is called time series forecasting, and it involves predicting future values based on past observations collected in constant time intervals, whether that is daily, monthly, quarterly, or yearly. AI is expected to accelerate and tighten business planning with a faster foundation model for this kind of multivariable forecasting. For instance, an SLM called Tiny Time Mixers (TTMs) can swiftly generate time-dependent outputs, predicting future trends in diverse domains such as electricity consumption, traffic congestion, retail, and finance. This type of model is being used by a global leader in the field of AI-powered investment solutions, QuantumStreet AI, to help pull ESG data and sentiment signals from news and other data sources to help its platform forecast stock price movement across industries. As innovation continues, models will be trained on even more data and deliver stronger performances while providing greater flexibility with support for external variables and rolling forecasts. Getting AI into your workflow today AI is beginning to change business in ways we are just starting to imagine. However, the breathless hype about AI of the past two years must be leavened with cost, trust, and resource considerations. In fact, companies may soon prefer a blend of LLMs and SLMs, using bigger models first to address some of the most challenging business problems, and once they get the answer, switch to smaller models that replicate the findings at a lower cost and with decreased latency. Looking forward, SLMs will also play a prominent role in the advancement of AI agents that are capable of greater autonomy, sophisticated reasoning, and multi-step problem solving. SLMs feature support for key agentic capabilities, such as advanced reasoning and specific function calling, which are critical to ensure an agent can connect with external APIs, reassess its plan of action, and self-correct. Enterprises implementing AI must strike the right balance between powerful and practical. Think of an SLM as a race car and a LLM as a motorhome — both will get you where you want to go but serve different needs. It is the models that deliver high performance relative to model size while maximizing safety, speed, and cost-efficiency that can more easily be integrated across diverse business environments and workflows. Whether your company is piloting AI projects today or exploring the use of AI agents tomorrow, SLMs will significantly impact the ability to implement AI quickly across your business. IBM VP Raj Datta. Image: IBM Raj Datta is Vice President, Software and AI Partnerships at IBM, where he spearheads strategy, sales, and strategic alliances. Before, he co-founded and was CEO at software company oak9, and was President of Software AG, North America. Prior, he spent 19 years at IBM in global and national leadership. Datta holds an MBA in Marketing and Finance from Northwestern University Kellogg School of Management, and a BA in Economics from the University of Illinois, Urbana. source

If you’ve ever wondered how websites appear on the internet, the answer lies in web hosting. Web hosting is a service that stores website files on a server and makes them accessible to visitors worldwide. Every website—whether a simple blog or a large e-commerce store—needs hosting to function. Think of web hosting like renting space online. Just as a physical store needs a location to operate, a website needs a server to store its data and serve it to users when they type in a web address. The type of hosting you choose affects website performance, security, and scalability, making it a crucial decision for anyone building an online presence. Read more: Need a Website Fast? Here’s How to Go Live in Hours, Not Weeks How does web hosting work? Web hosting works by storing website files—such as text, images, and code—on a specialized computer called a web server. When someone enters your website’s domain name (e.g., www.example.com) in their browser, the browser sends a request to the server, which then delivers the necessary files to display the website on the visitor’s device. Web servers are always connected to the internet, ensuring your website is accessible 24/7. Hosting providers manage these servers, handling maintenance, security, and performance optimization, so websites load quickly and reliably. There are different types of web hosting, each offering varying levels of performance, security, and control. Shared hosting is like renting an apartment in a building, where multiple websites share the same server resources. VPS (Virtual Private Server) hosting provides a more isolated environment, while dedicated hosting gives a website full control over an entire server. Cloud hosting uses multiple servers to balance traffic and improve uptime. Without web hosting, a website has nowhere to “live” on the internet, making hosting a fundamental requirement for any online presence. Read more: How to Use the Apache Web Server to Install and Configure a Website Why web hosting is important Web hosting is essential because it ensures that websites are accessible, perform well, and remain secure. Without hosting, a website’s files wouldn’t have a place to be stored and served to visitors. Enabling website accessibility A website is only useful if people can access it. Web hosting providers keep websites online by storing data on servers connected to the internet 24/7. Without hosting, a website would exist only on a personal computer and wouldn’t be reachable by users worldwide. Storage and performance considerations The type of hosting you choose affects website speed and reliability. A slow website can frustrate visitors and hurt search rankings. Hosting plans determine how much storage, bandwidth, and processing power a website has, which impacts loading speed and the ability to handle traffic spikes. Security and reliability factors Good hosting providers offer security features like SSL certificates, firewalls, and regular backups to protect websites from cyber threats. They also provide uptime guarantees, ensuring that websites remain accessible without frequent outages. Choosing a reliable web host prevents data loss, improves trust with visitors, and helps businesses maintain a strong online presence. Must-read developer coverage Types of web hosting Choosing the right web hosting depends on your website’s needs, traffic, and budget. Below are the most common hosting types, along with their pros, cons, and ideal use cases. Shared hosting Definition: Multiple websites share the same server and resources, making it the most affordable hosting option. Pros Cons Low cost and beginner-friendly Easy setup with minimal technical knowledge required Hosting provider handles server maintenance Slower performance due to shared resources Limited customization and scalability Higher security risks if other websites on the server are compromised Best for: Small blogs, personal websites, and startups with low traffic.Bad for: E-commerce stores, high-traffic sites, and businesses needing strong security. VPS (Virtual Private Server) hosting Definition: A virtualized server environment where resources are allocated to individual websites, offering more control than shared hosting. Pros Cons Dedicated resources improve performance Greater control over server settings More scalable than shared hosting More expensive than shared hosting Requires some technical knowledge for management Not as powerful as a dedicated server Best for: Growing websites, mid-sized businesses, and developers needing flexibility.Bad for: Beginners or businesses needing hands-off server management. Dedicated hosting Definition: A website has an entire physical server to itself, providing maximum performance and customization. Pros Cons Full control over server settings and resources Best performance and highest security Can handle large traffic volumes Expensive, with costs starting at $80+/month Requires advanced technical expertise Maintenance and security are the website owner’s responsibility (unless managed) Best for: Large businesses, enterprise websites, and high-traffic platforms.Bad for: Small businesses, personal websites, and those on a tight budget. Cloud hosting Definition: Websites are hosted across multiple connected servers, improving uptime and scalability. Pros Cons Highly scalable—can handle traffic surges Better uptime and reliability than traditional hosting Pay-as-you-go pricing structure Can be more expensive than shared or VPS hosting Pricing may be unpredictable due to variable usage costs Less direct control over physical server management Best for: Businesses expecting fluctuating traffic, e-commerce, and SaaS platforms.Bad for: Small websites with minimal traffic and tight budgets. Managed hosting Definition: The hosting provider handles server management, updates, security, and backups, allowing website owners to focus on content and business. Pros Cons Hands-off maintenance with expert support Enhanced security and automatic updates Optimized performance for specific platforms (e.g., WordPress, WooCommerce) More expensive than standard hosting Less control over server configurations May have limitations on software installations Best for: WordPress sites, enterprise businesses, and those wanting a hassle-free hosting experience.Bad for: Developers or businesses needing full control over their hosting environment. Key features to look for in a web hosting provider With dozens of players in the website hosting space, choosing the right web hosting provider is crucial. It can impact your website performance, security, and your reliability. Here are some key features to consider when selecting a hosting service. Performance and uptime Website speed and availability directly impact user experience and SEO rankings. Look for a provider that guarantees at least

Key takeaways: AI and automation are transforming e-commerce by delivering personalized experiences and streamlining operations like inventory management. Mobile-first strategies and social media platforms are becoming key sales channels, driving purchases and engagement. Ethical practices, sustainability, and enhanced customer support are shaping brand loyalty, as consumers increasingly seek transparency and responsible business practices. E-commerce isn’t just about selling products online anymore — it’s about keeping up with your customers’ ever-evolving expectations. With technology advancing rapidly and shopping habits shifting constantly, businesses that adapt to these changes will thrive, while those that don’t risk falling behind. As an online business owner, staying on top of the latest trends in e-commerce is your competitive edge. I’ve identified 10 key e-commerce trends you need to know to keep your business ahead of the curve in 2025: AI and automation 1. AI-driven personalization Artificial intelligence is transforming e-commerce by enabling hyper-personalized shopping experiences. AI analyzes customer data — like browsing habits and purchase behavior — to deliver tailored product recommendations and marketing. A 2024 ACA study1 reports that 75% of customers prefer businesses offering personalized experiences, making this technology crucial for staying competitive. 💡Tip: Use AI tools to personalize product recommendations and email campaigns based on customer browsing and purchase history. ⚙️Tech tools to explore: Platforms Optimizely or Dynamic Yield both offer robust AI solutions that allow you to personalize product recommendations, on-site content, and even email marketing based on customer behaviors, such as browsing and purchasing history. 2. Inventory and fulfillment automation Automation is transforming how businesses handle inventory and fulfillment, making processes faster and more accurate. Imagine using AI tools to predict demand trends — this helps you stock just the right amount, avoiding the headaches of overstocking or running out of popular items. Companies like Amazon are taking it a step further with robots in their warehouses, sorting, packing, and shipping orders in record time. As online shopping grows, automated solutions will be essential for processing higher order volumes efficiently. By 2027, the global warehouse automation market is expected to grow from $23.44 billion to $41 billion2, making automation a key driver of e-commerce scalability and customer satisfaction. 💡Tip: Invest in inventory management software that integrates automation tools for demand forecasting and real-time tracking. This ensures optimal stock levels, reduces manual errors, and supports scalability during peak shopping seasons. For fulfillment, explore automated solutions, such as robotic picking systems or partnering with advanced fulfillment centers, to enhance delivery speed and accuracy. ⚙️Tech tools to explore: Peak Inventory AI provides AI-powered advanced inventory forecasting, while Shopify e-commerce sites can benefit from Monocle AI for data-driven sales & inventory forecasts. Finally Robotic is a robotic grocery fulfillment solution that can help increase productivity and fulfillment accuracy. 3. Price optimization Dynamic pricing, fueled by AI, is becoming a game-changer for e-commerce. AI tools analyze market trends, competitor pricing, and customer behavior in real time to set optimal prices for maximum profitability. For example, Amazon uses dynamic pricing to adjust millions of prices daily, ensuring competitiveness and driving sales. This strategy helps businesses stay agile in fluctuating markets while maximizing revenue. 💡Tip: To leverage price optimization effectively, start by adopting AI-powered pricing tools that monitor competitor prices, market demand, and customer behavior. Additionally, make sure to analyze your own data to identify patterns — such as price sensitivity based on customer segments — and adjust accordingly. For example, if you notice that customers are more likely to purchase during off-peak times, your AI tool could automatically lower prices during those hours, increasing conversions without sacrificing profit margins. ⚙️Tech tools to explore: Peak Inventory AI provides AI-powered advanced inventory forecasting, while Shopify e-commerce sites can benefit from Monocle AI for data-driven sales & inventory forecasts. Finally Robotic Tools like Prisync or Dynamic Pricing AI can provide real-time insights into when and how to adjust your prices, ensuring you remain competitive and maximize revenue. 4. Personalized pricing Tailoring prices based on customer segments or behavior is gaining traction. Personalized pricing uses data such as browsing history or loyalty status to offer exclusive discounts or dynamic offers. For instance, returning customers might see lower prices on repeat purchases, which increases the likelihood of conversion. This strategy not only boosts customer loyalty but also enhances the shopping experience, making pricing feel more customer-centric. 💡Tip: To Use customer data like purchase history, browsing behavior, or loyalty program status to offer tailored discounts or personalized promotions. ⚙️Tech tools to explore: Reactev is a dynamic pricing platform that uses AI to adjust pricing based on real-time market demand and consumer behavior. For Shopify merchants, the Pricing.AI app personalizes prices for different customer segments. Mobile commerce 5. Mobile shopping takes the lead As the use of smartphones continues to increase, mobile commerce is expected to rise. By 2025, mobile commerce is expected to have a 59% share of total retail e-commerce sales worldwide3. Optimized mobile apps and responsive websites help businesses tap into this growing audience, ensuring a seamless shopping experience. 💡Tip: To Ensure your website is mobile-optimized by using responsive design and fast-loading pages. Consider developing a user-friendly mobile app with features like one-click checkout and personalized recommendations to make the mobile shopping experience seamless and engaging. ⚙️Tech tools to explore: Consider tools like Shopify’s Mobile App Builder to create seamless, customized mobile shopping experiences, or Omnisend or a comprehensive marketing automation solution that includes SMS, email, and push notifications. Google’s Mobile-Friendly Test can help you ensure your website is optimized for mobile users, while Appy Pie can assist in developing an app with features like one-click checkout. 6. Mobile wallet adoption Digital wallets, such as Apple Pay and Google Pay, are transforming payments with the convenience and security they offer to consumers. Digital wallet transactions are expected to grow 73%, from $10 trillion in 2024 to $17 trillion in 20294, driven by their widespread adoption for online and in-store purchases. This surge reflects shifting consumer preferences for seamless and contactless payment methods that prioritize speed and data protection. Businesses that

Key takeaways: Biometric payments make use of a customer’s unique physical attributes to authenticate a transaction. Touch ID on smartphones — using fingerprints to confirm digital wallet payments — is the most widely used form of biometric payment. Other forms of biometric payments include palm vein scanning, facial mapping, iris scanning, and voice recognition. Businesses looking to set up in-store biometric payment methods will need a biometric scanner to register, store, capture, and match customers’ biometric data. What are biometric payments? Biometric payments are transactions that use human physical attributes, such as fingerprint, palm, facial features, iris, and voice, to authenticate and confirm a customer’s intent to purchase. Like a person’s signature, these biometric characteristics are unique for each individual and are hard to replicate. This makes biometric payment one of the most secure contactless payment methods today. Modern biometric payment began in the early 2000s when John Rogers founded the Pay By Touch service, which allows customers to pay by scanning their fingerprints. Apple followed soon after, launching Touch ID technology in 2013 as a key feature of the iPhone 5S. Today, fingerprint scanners are in almost every smartphone, tablet, and laptop, used to secure personal information and confirm mobile payments. Who should use biometric payments? Customers can set up fingerprint authentication on their smartphones and use it to authenticate their payments. So any ecommerce or brick-and-mortar store regardless of business type can accept biometric payments if it already supports digital wallet payments such as Apple Pay, Google Pay, PayPal, and the like. A merchant-based biometric payment setup, such as those often used in government, private offices, and even schools, requires considerable hardware and software investment. In general, you should invest in a biometric scanner if your business: Serves customers in person: Customers will have to be physically present to register and scan their fingerprint or palm to confirm their payment. A great example would be retailers with self-service kiosks like grocery stores or fast food restaurants. Caters to a younger demographic: Younger costumes are more open to setting and signing up for new payment methods Enables better customer experience: Adding biometric payments to a POS system that’s already integrated with CRM and loyalty management systems can significantly boost customer experience, from the first purchase to repeat transactions. Offers subscriptions: Biometric registration integrated within the sign-up process gives customers an increased sense of security, which can build loyalty and attract new customers. Healthcare services are a good example. How do biometric payments work? Image: Biometric payments process flow The customer registers their biometrics information with a store. This is then added to the customer’s profile and encrypted. When the customer next shops in the store, the merchant’s system will prompt for biometric authentication to complete the purchase via the biometric scanner. The system searches its stored biometric data based on the customer name and matches it against the features captured by the biometric scanner. If the biometric data matches, the transaction is confirmed and a receipt is generated. Otherwise, the system alerts the cashier and prompts for a rescan. The customer’s chosen payment method is debited with the purchase amount while the merchant receives the proceeds of the transaction less the processing fees. The customer’s source of funds and the merchant’s POS and payment processor records the transaction. For online businesses, biometric payment authentication is connected to mobile wallet apps. The transaction process follows any other NFC payment method used on online payment gateways with the added biometric security prompted by the customer’s smartphone. SEE: 5 Online Payment Methods for Small Businesses To Try What is a biometric scanner? The biometric scanner is the technology at the core of biometric payments. It is a combination of: Hardware that captures the biometric attribute via a near-infrared (NIR) sensor, smart camera, or microphone, and Software that stores the biometric data. The scanner also replaces the role of a password or PIN so that only individuals whose biometrics are stored in the system can gain access to the asset the security is protecting. This includes allowing a person to use a source of funds to complete a transaction. Types of biometric authentication There are several means of processing biometric authentication: Fingerprint scanning: The scanner records multiple point-to-point measurements of an individual’s fingerprint (usually the index or thumb). Palm vein scanning: The scanner captures the vein patterns from the individual’s palm. ‘ Facial mapping: The scanner captures “facial landmarks” and measures features such as the distance between points, slopes, ridges, and angles of the face. Iris scanning: The scanner identifies and records the unique characteristics of an individual’s iris. Voice recognition: Records an individual’s voice sample and identifies accents, inflection points, and tone. In principle, biometric authentication is applied to provide security and monitor events by confirming identity. You will likely be more familiar with it being used to access a secure location, register identity with a bank, school, or government body, unlock phones or laptops, and confirm attendance than as a means to protect your source of funds during payments. That said, consumers are becoming more open to biometrics payments thanks to smartphones. What are the different biometric payment methods available today? The most widely adopted biometric payment methods available today are fingerprint and palm scanning. And, though still rare, there are also recent developments in the use of iris scans, voice recognition, and facial mapping to authenticate payments. Biometric payments examples The primary example of biometric payments are fingerprint-scanning-enabled smartphones, such as iPhones, that prompt a customer to scan their finger via the screen to proceed with a payment. (Image: Apple) Mastercard launched its global Biometric Checkout Program in 2022, which used facial recognition technology to authenticate transactions. The customer just needs to hold out their hand and smile at the smart camera to complete their purchase. (Image: Mastercard) Just last year, Mastercard partnered with Poland retail store Empike and fintech PayEye to launch its pilot biometric Checkout Program in Europe. Empik customers can pay for their purchases with a

Apple’s macOS and iOS include a built-in password management system called Keychain Access, which is supplemented by iCloud and allows for syncing the Keychain between multiple devices. This is a great and simple security solution for many users, but some users require more features in their password manager than iCloud and Keychain can provide, especially those in the enterprise space who need the ability to share passwords and other confidential information between multiple users. Here is a look at the top products available to iOS and macOS customers to provide more features like password sharing, secure document storage, and more features that modern users demand from their security software. NordPass Employees per Company Size Micro (0-49), Small (50-249), Medium (250-999), Large (1,000-4,999), Enterprise (5,000+) Micro (0-49 Employees), Small (50-249 Employees), Medium (250-999 Employees), Large (1,000-4,999 Employees), Enterprise (5,000+ Employees) Micro, Small, Medium, Large, Enterprise Features Activity Log, Business Admin Panel for user management, Company-wide settings, and more Dashlane Employees per Company Size Micro (0-49), Small (50-249), Medium (250-999), Large (1,000-4,999), Enterprise (5,000+) Micro (0-49 Employees), Small (50-249 Employees), Medium (250-999 Employees), Large (1,000-4,999 Employees), Enterprise (5,000+ Employees) Micro, Small, Medium, Large, Enterprise Features Automated Provisioning ManageEngine ADSelfService Plus Employees per Company Size Micro (0-49), Small (50-249), Medium (250-999), Large (1,000-4,999), Enterprise (5,000+) Any Company Size Any Company Size Features Access Management, Compliance Management, Credential Management, and more Best password managers for macOS and iOS: comparison table Product Star rating (out of 5) Supported platforms Supported web browsers Active password monitoring End-to-end encryption Pricing 1Password 4.3 macOS, iOS, Windows, Android, Linux, Chrome OS, command line Safari, Firefox, Chrome, Brave, Microsoft Edge Yes Yes From $2.99/month for Individual accounts and $7.99/month for Business accounts. Dashlane 4.6 macOS, iOS, Windows, Android Safari, Firefox, Chrome, Internet Explorer Yes Yes From $4.99/month for Personal plans, $8/month for Business and $20/month for Starter Bitwarden 4.6 macOS, iOS, Windows, Linux, Android Safari, Firefox, Chrome, Opera, Microsoft Edge, Brave, Tor, Vivaldi Yes Yes Starts from a Free plan, then $0.83/month for Personal plans and $4/month for Business plans Keeper 4.4 macOS, iOS, Windows, and Linux, Android Safari, Chrome, Firefox, Edge, Opera, IE Yes Yes From $2.92/month for Personal and Family plans and $2 per user/month for Organizations Enpass 4.0 macOS, iOS, Windows, Linux, Android Safari, Firefox, Chrome, Microsoft Edge, Opera, Vivaldi Yes Yes From $1.99/month for Personal and Family plans and $2.99/user per month for Business plans Best password managers for macOS and iOS We’ve found the best password managers to safely secure your macOS and iOS devices. 1Password: Best overall Image: 1Password For my best overall, I recommend 1Password. 1Password has long been a password manager companion on macOS, upgraded with features over the years to make it one of the ultimate password companions. 1Password has end-to-end encryption that allows for full protection when syncing. Data synced through 1Password is secured by one password that you need to remember to unlock all of your passwords. In addition to clients for macOS, there’s also a client for iOS and a client available online to access your passwords and data remotely on a guest machine. It can synchronize notes, credit cards, software licenses, important documents, server logins, and SSH keys that can be accessed via the command line. One of the standout features of 1Password is the ability to automatically check passwords securely against leaked password databases to alert you to any potentially compromised accounts. When I tested out 1Password’s browser extension, it allowed me to autofill passwords, 2FA codes, and other details, as well as create accounts and store them right from the web browser. 1Password also allows for content sharing inside any vault with other users of 1Password or via links a user can click to view the securely shared item. 1Password Watchtower. Image: 1Password Why I chose 1Password I picked 1Password as my best overall for its balance between security and user-friendliness. Amidst its sophisticated security features, the interface remains intuitive. In my view, adding a security breach alert feature through Watchtower and seamless integration with Mac and iOS devices makes it a great choice for those who demand the best of both worlds. Features On macOS: Secure password storage. Watchtower for web monitoring. Two-Factor Authentication (2FA). Browser extension for easy auto-fill. On iOS: Face ID and Touch ID support for quick and secure access to passwords. Password auto-fill that works on iOS apps and Safari. Secure Notes for storing sensitive information like credit cards. 1Password pros and cons Pros Cons 1Password app integrates with Apple’s password auto-filling. Offers no free plan. It supports TouchID on the Mac for authentication and unlocking. There is no phone or chat support for lower-level subscribers. Integrates with the command line to allow SSH key filling. Supports security breach alerts through Watchtower. Supports Single Sign-On for easy login across all platforms. Pricing 1Password offers multiple pricing plans covering individual, business, and enterprise use cases, with options for both annual and monthly subscriptions. Below is a breakdown of its annual plans. All plans, except the Enterprise tier, come with a 14-day free trial. Individual: Starts at $2.99/month. Families: From $4.99/month for 5 users. Teams Starter Pack: From $19.95/month for 10 users. Business: $7.99/month. Enterprise: Based on quotes. Dashlane: Best for security Image: Dashlane If top-tier security is your priority, I suggest looking into Dashlane. Dashlane is a password manager that encrypts content on a device before leaving it (like the others above), but also offers other features not found in comparable password manager apps. Notably, for enterprise users, Dashlane can be unlocked with MFA apps like Duo, making Dashlane more secure because users will not need to type in their vault password each time to unlock the app, allowing for a more secure vault password without the need to remember it. Dashlane supports a limited number of data types and can store passwords, secure notes, and payment information with ease. Dashlane doesn’t offer more tailored vault types, like software licenses or encrypted documents and files. The app and service supports

A new macOS malware called FrigidStealer is spreading through fake browser update alerts, allowing attackers to steal sensitive data, according to research from Proofpoint. This sophisticated campaign, embedded in legitimate sites, tricks users into bypassing macOS security measures. Once installed, the malware extracts browser cookies, stored passwords, cryptocurrency-related files, and Apple Notes – potentially exposing both personal and enterprise data. Two newly identified threat actors operate parts of these web-inject campaigns: TA2726, which may act as a traffic distribution service for other threat actors. TA2727, a group that distributes FrigidStealer and malware for Windows and Android. They may use fake update alerts to enable malware and are identifiable by their use of legitimate websites to send scam update alerts. Both threat actors sell traffic and distribute malware. Fake updates trick Mac users into bypassing security The update scam includes deceptive instructions designed to help attackers evade macOS security measures. At the end of January 2025, Proofpoint found that TA2727 used scam update alerts to place information-stealing malware on macOS devices outside of the United States. The campaign embeds fake “Update” buttons on otherwise secure websites, making it appear as though a routine browser update is required. These fake updates can be delivered through Safari or Chrome. If a user clicks the infected update alert, a DMG file automatically downloads. The malware detects the victim’s browser and displays customized, official-looking instructions and icons that make the download appear legitimate. The instructions guide the user through a process that bypasses macOS Gatekeeper, which would normally warn the user about installing an untrusted application. Once executed, a Mach-O executable installs FrigidStealer. Right-clicking bypasses MacOS Gatekeeper. Image: Proofpoint If users enter their password during the process, the attacker gains access to “browser cookies, files with extensions relevant to password material or cryptocurrency from the victim’s Desktop and Documents folders, and any Apple Notes the user has created,” ProofPoint said. SEE: This checklist contains everything employers need to vet employees for security-sensitive tasks. Must-read security coverage How to defend against web inject campaigns like FrigidStealer Because attackers may distribute this malware through legitimate websites, security teams may struggle to detect and mitigate the threat. However, Proofpoint recommends the following best practices to strengthen defenses: Implement endpoint protection and network detection tools, such as Proofpoint’s Emerging Threats ruleset. Train users to identify how the attack works and report suspicious activity to their security teams. Integrate knowledge about these scams into existing security awareness training.  Restrict Windows users from downloading script files and opening them in anything other than a text file. This can be configured via Group Policy settings. macOS threats are escalating In January 2025, SentinelOne observed a rise in attacks targeting macOS devices in enterprises. Additionally, more threat actors are adopting cross-platform development frameworks to create malware that works across multiple operating systems. “These trends suggest a deliberate effort by attackers to scale their operations while exploiting gaps in macOS defenses that are often overlooked in enterprise environments,” wrote Phil Stokes, a threat researcher at SentinelOne. source

When managing your money, you often hear about two accounts: checking and savings. Each serves a different purpose — checking accounts are great for everyday transactions with easy access to funds, while savings accounts are ideal for setting aside money for short-term goals and earning interest. Generally, it offers more interest than checking accounts. Understanding the difference between checking vs savings accounts makes choosing the right account for your financial needs easier. infographic What is a checking account? A checking account allows you to deposit, withdraw, pay bills, accept payments, transfer funds, or make purchases with no set limits. This is useful if you need an account for daily transactions. However, unlike savings accounts, most checking accounts don’t provide interest. Benefits of a checking account One of the primary benefits of a checking account is convenient access to funds since you can withdraw from ATMs, use a debit card for in-store and online purchases, and write checks for payments. Setting up automated bill payments can also help you avoid missed payments. In addition, checking accounts offer protection from accidental overdrafts and are covered by FDIC insurance. See our article on overdraft protection to learn how it works. Checking account features Debit card Check writing Bill pay Direct deposit Overdraft protection option ATM access Waivable monthly service fees (depending on balance) FDIC-insured for security Online and mobile banking What is a savings account? A savings account is a basic bank account where customers deposit their funds and earn interest over time. These accounts are low-risk, FDIC-insured (or NCUA-insured for credit unions), and typically offer higher yields than checking accounts. Plus, they’re a good way to stash money for emergency funds or an upcoming trip since debit cards are not typically provided. Benefits of a savings account Savings accounts offer security since these are covered by FDIC insurance or NCUA insurance for up to $250,000 per depositor, institution, and account ownership. You can earn interest from a savings account, which is rarely offered by checking accounts in traditional banks. In addition, you can control your spending since limits Up to six monthly withdrawals or transfers per Federal Reserve regulation but this depends on the provider. are imposed on withdrawals and transfers. Savings account features Interest on your balance Six withdrawals or transfers monthly Minimal or waivable monthly service fees FDIC insurance protection Online and mobile banking What’s the difference between checking and savings accounts? Checking and savings accounts differ in purpose, fees, interest rates, withdrawal limits, and accessibility. See the table below highlighting the difference between checking and savings accounts. Checking account Savings account Purpose Everyday spending, including bill payments Saving for short-term goals and earning interest Access to funds Unlimited and flexible Limited Interest earnings Low or none Higher Fees Monthly service, overdraft, and ATM fees Excess withdrawal fees and monthly service fees can apply Withdrawal limits None Typically six per month Monthly service fees Yes; waivable Applies to some Minimum balance requirement Low or none Low Overdraft fees Yes Not applicable Excess withdrawal fees Not applicable Yes ATM fees Yes; nonnetwork transactions can apply Mostly not applicable Debit card availability Yes No Check-writing Yes No Federally insured Yes Yes Access to funds of checking account vs savings account Checking account: You can make unlimited withdrawals and deposits through checks, a debit card, ATMs, and online banking. It’s super flexible and convenient for handling everyday transactions. Savings account: You’re usually limited to six withdrawals or transfers per month (thanks to Federal Reserve regulations), though some banks may be a little more lenient. This helps you save by limiting access to your money. Interest in checking account vs savings account Checking account: Most checking accounts don’t offer interest, but it’s usually pretty low ( around 0.01% to 0.5%) if they do. You might also need to maintain a higher balance to avoid monthly fees. Savings account: Interest rates on savings tend to be higher than on checking accounts. Depending on the provider, they can range from 0.1% to 0.5% for traditional savings accounts and up to 4.0% for higher-yield savings accounts. Before choosing a business bank, it is essential to review the interest rates offered by different providers for checking and savings accounts. Check out our list of the best online business bank accounts, where some providers offer great interest rates. Fees of checking account vs savings account Checking account: You can expect monthly service fees, usually ranging from $5 to $30. These may be waived if you meet certain criteria, like maintaining a minimum balance. You may also encounter fees on overdrafts or ATM withdrawals at out-of-network machines. Consider opening an account from our list of best free business checking accounts to save on fees. Savings account: Plenty of savings accounts, especially with online banks, don’t charge monthly service fees. However, if you exceed the six-transaction limit, you could face an excess withdrawal fee. More Banking Coverage Insurance of checking account vs savings account Both checking and savings accounts are FDIC-insured (or NCUA-insured for credit unions) up to $250,000 per depositor, institution, and account ownership. This keeps your money safe in case of a bank failure. Check out our guide on how FDIC insurance for business accounts works. If you have significant funds and need more FDIC protection, consider opening a sweep account. Pros and cons of checking accounts Pros Unlimited transactions Low or no minimum balance requirements Easy access to funds Safety net for accidental overdrafts Cons Low or no interest Potential fees on nonnetwork ATM withdrawals High fraud exposure With a checking account, you won’t need to worry about tracking your number of transactions since many offer unrestricted withdrawals and deposits. It also has low or no minimum balance requirements. Additionally, your funds are easily accessible, and you can enroll in overdraft protection in case you accidentally overdraw your account. However, the drawbacks are low or no returns, possible ATM fees for withdrawing out-of-network, and increased exposure to fraud. Pros and cons of savings accounts Pros Fee-free most of the time Lower account balance requirements Earns interest more than checking accounts Cons

Since MS Office is so ubiquitous throughout the business world, it’s almost impossible to get along without some version of it. The problem is that many of the versions can be quite pricey. Fortunately, you can now get an affordable package of the seven most iconic MS Office programs, while Microsoft Office Professional Plus 2019 for Windows is available for the low one-time purchase price of $34.97 through Feb. 23, 2025. What’s included MS Office 2019 offers a multitude of features for greater functionality. Users will have the ability to create, edit and organize spreadsheets, documents, presentations, databases, email and more. This bundle includes lifetime access to the 2019 versions of Excel, Word, Outlook, PowerPoint, Access, Publisher, and One Note. Some of the newer additions to Office 2019 include new capabilities for analysis in Excel and new tools for presentations in PowerPoint, plus updated features for managing contacts and emails in Outlook. You also get free customer service. As soon as you’ve completed your purchase, your license keys and download links will be emailed to you instantly. So you will be able to install the programs and begin using them immediately. This is a one-time purchase that allows you to install the programs on one Windows computer to use at home, work or on the road. That means you must be sure to save the license key because you will have to uninstall it before you can install it on a different computer. Get Microsoft Office Professional Plus 2019 for Windows for the low one-time purchase price of $34.97 (reg. $229) during this limited time price drop. Prices and availability are subject to change. source

Threat actors are increasingly targeting trusted business platforms such as Dropbox, SharePoint, and QuickBooks in their phishing email campaigns and leveraging legitimate domains to bypass security measures, a new report released today has found. By embedding sender addresses or payload links within legitimate domains, attackers evade traditional detection methods and deceive unsuspecting users. According to Darktrace’s Annual Threat Report 2024, the authors detected more than 30.4 million phishing emails, reinforcing phishing as the preferred attack technique. Legitimate enterprise services hijacked for most phishing campaigns in 2024 Darktrace noted cybercriminals are exploiting third-party enterprise services, including Zoom Docs, HelloSign, Adobe, and Microsoft SharePoint. In 2024, 96% of phishing emails utilised existing domains rather than registering new ones, making them hard to detect. Attackers were observed using redirects via legitimate services, such as Google, to deliver malicious payloads. In the case of the Dropbox attack, the email contained a link leading to a Dropbox-hosted PDF with an embedded malicious URL. SEE: How business email compromise attacks emulate legitimate web services to lure clicks Alternatively, threat actors abused hijacked email accounts, including those from Amazon Simple Email Service, belonging to business partners, vendors, and other trusted third-parties. The report’s authors say this “highlight(s) that identity continues to be an expensive problem across the estate and a persistent source of pain across enterprise and business networks.” Phishing attacks surge with AI-generated tactics Among the phishing emails that Darktrace found: 2.7 million contained multistage malicious payloads. More than 940,000 contained malicious QR codes. The sophistication of phishing attempts continues to rise, with spear phishing — highly-targeted email attacks — making up 38% of cases. Meanwhile, 32% use novel social engineering techniques such as AI-generated text with linguistic complexity. This complexity might manifest as increased text volume, punctuation, or sentence length. Darktrace collated insights from its more than 10,000 global customers for its Annual Threat Report 2024, leveraging self-learning AI, anomaly-based detection, and thorough analysis from its threat research team. Must-read security coverage Living-off-the-land techniques: A growing security threat Another attack method involves initial network breaches via vulnerabilities in edge, perimeter or internet-facing devices, followed by living-off-the-land techniques or LOTL.This strategy exploits pre-installed, legitimate enterprise tools to execute malicious activities while avoiding detection. Darktrace found that 40% of identified campaign activity in early 2024 involved the exploitation of internet-facing devices, including from Ivanti Connect Secure, Ivanti Policy Secure, Palo Alto Network, and Fortinet. Attackers favor LOTL techniques because they eliminate the need for custom malware and reduce the risk of triggering traditional security alerts. On top of exploiting vulnerabilities in these edge devices, threat actors are increasingly using stolen credentials to log into remote network access solutions like VPNs for initial network access, before leveraging LOTL techniques. Ransomware groups exploit enterprise tools for stealth attacks Ransomware groups — including Akira, RansomHub, Black Basta, Fog, and Qilin, along with emerging actors Lynx — have increasingly been using legitimate enterprise software. Darktrace has observed these groups using: AnyDesk and Atera to mask command-and-control communications. Data exfiltration to cloud storage services. File-transfer technology for rapid exploitation and double extortion. SEE: Most Ransomware Attacks Occur When Security Staff Are Asleep, Study Finds These groups are also frequently recruited for Ransomware-as-a-Service or Malware-as-a-Service, with the use of MaaS tools increasing by 17% from the first to the second half of 2024. Use of Remote Access Trojans, malware which allows an attacker to remotely control an infected device, also increased by 34% over the same period. source

Apple has removed thousands of apps from its European Union App Store for failing to comply with the Digital Services Act, which requires developers to provide a verified address, email, and phone number. This move is part of Apple’s broader efforts to adhere to new regulations aimed at increasing transparency and accountability in digital marketplaces. Developers who have not submitted the required information will see their apps delisted until they provide and verify their trader status. Why Apple is removing apps from the EU App Store The Digital Services Act, a landmark European legislation, mandates all traders distributing apps in the EU display their contact details — ensuring consumers can identify and reach businesses more easily. Apple introduced a “trader status” requirement for developers who disclose their contact details. This information is published on the App Store product page whenever an app is available in an EU member state. Since October 16, 2024, Apple has required trader status for developers submitting new apps or updates for the App Store in the EU. It also started warning that existing apps from developers without trader status will be removed from EU storefronts on Feb. 17, 2025. Apps will not be restored without verified trader status Now that the compliance deadline has passed, affected apps will not be reinstated on the EU App Store “until trader status is provided and verified by Apple.” Developers can submit their details and apply for trader status through App Store Connect. Organisations will already have provided their address by submitting their DUNS number, but individuals will need to submit theirs along with their number and email, whether they want it on the public record or not. Digital Services Act: What developers need to know The Digital Services Act has been in effect since 2022; however it only became fully enforceable for all regulated entities on Feb. 17,  2024. Prior to that, only “very large” online services — those with over 45 million monthly active users in the EU,  including the App Store — had to comply with most provisions. The specific requirement for developers to declare their trader status also became mandatory for all platforms, including the very large services, on the February 2024 deadline, but they were given a 12-month transition period. Must-read Apple coverage Who qualifies as a trader under the DSA? Articles 30 and 31 of the Act require online platforms to collect and verify trader contact details and ensure they are clearly accessible to consumers. Traders are defined as any person or entity offering goods or services in the EU, regardless of their location, for commercial purposes. An app developer may be considered a trader if they: Earn revenue from paid apps,in-app purchases, or advertising. Are registered for VAT in the EU. Develop their app professionally rather than as a hobby. Apple’s broader compliance efforts Beyond app removals, Apple has taken other actions over the past few months to ensure DSA compliance, including publishing its DSA Transparency Report, detailing content moderation and compliance measures. It also established a redress mechanism so developers can appeal content moderation decisions. Apple’s approach highlights how platforms are being forced to adapt to stricter rules on digital accountability and consumer protection. source