Since ChatGPT launched in late 2022, people have been using AI chatbots to brainstorm, speed up research, draft content, summarize lengthy documents, analyze data, assist with writing and debugging code, and translate text into other languages. Recently, the major chatbots have gained Web search capabilities, allowing them to access live information beyond their training model data.

Using a chatbot effectively requires new approaches to thinking and working, especially when it comes to searching for information. Just as with a human assistant, you need to play to their strengths when figuring out the best ways to get the results you want. Incorporate these tips into your chatbot conversations, and you’ll see significantly better outcomes.

1. Be specific and complete: Decades of search engine use push us toward short, focused search phrases with keywords that will appear in the results. In contrast, chatbots thrive on specificity and detail. For instance, prompting a chatbot with “iCloud photos syncing” won’t generate nearly as useful a response as “Tell me what might prevent iCloud from syncing photos between my Mac and iPhone.” Also, don’t shy away from negative prompting—tell the chatbot what not to include or consider in its response. You can even be specific about formatting the output as a bullet list, table, or graph.

2. Every prompt is a conversation: We are accustomed to standalone searches, where, if the search fails, you must start over. You’ll achieve much better results with chatbots if you consider everything a conversation. Even responses to specific, detailed prompts may not fully address your question or could lead you to think of additional ones. Ask follow-up questions, clarify what you want to find out or accomplish, provide feedback, or redirect the conversation as needed. (For the ultimate chatbot conversational experience, try voice mode in the ChatGPT or Claude apps, where they talk back to you. It’s excellent for capturing ideas, refining your thinking, or just doing a brain dump.)

3. Edit your last prompt: If the most recent response from a chatbot is entirely unsatisfactory, you may have better luck editing and resubmitting it rather than informing the chatbot that it has made a mistake. There’s usually an edit link or pencil button that appears when you hover over it.

4. Context can help: Most chatbots maintain libraries of previous conversations, allowing you to search through them to find old ones easily. Because chatbot responses improve with more context, it can be helpful to return to one of those conversations when you want to explore that topic further. Similarly, if you’re asking a chatbot to create something similar to something you’ve already done, provide the previous work as an example.

5. Ask it to role-play: Another way to increase context is to ask the chatbot to “act as” a particular type of professional, such as an editor, coach, marketer, or software developer. In essence, you’re asking the chatbot to respond in the context of a certain role. Conversely, it can be helpful to ask it to tailor its response as if you were a high school student, someone with a basic understanding of the topic, or an expert in the field.

6. Know when to start over: Although context is key, chatbots have a limited memory, so long conversations can overwhelm what’s called the “context window.” If you notice the chatbot hallucinating, starting to repeat itself, or going off into the weeds, try saying, “Please summarize what we’ve discussed in a prompt I can use to continue working on this topic.” Then, copy that prompt into a new chat before continuing the conversation.

7. Force Web searches as necessary: Most chatbots make it explicit when they are searching the Web, which means you can also tell when they aren’t searching and are thus relying on potentially outdated training data. If you want to ensure that you’re getting the latest information, tweak your prompt to start with something like “Search for…”

8. Test its limits: Since every chatbot response is based on just what you say in the prompt, it won’t necessarily go as deep as you would like. Try asking it to critique its own output, generate multiple options, or present the best argument for different perspectives. You can even request it to be more cautious or more creative. It’s fine to challenge a chatbot in ways that would be socially inappropriate with another person.

9. Save and reuse effective prompts: When you identify prompts that work particularly well for recurring tasks—such as generating meeting summaries, analyzing data, or drafting specific types of content—save them for reuse so you don’t have to start over each time.

10. Don’t believe everything you read on the Internet: While chatbots are incredibly confident and often truly astonishing in what they can produce, it’s your responsibility to verify important facts and details (just as with human-created information, which isn’t necessarily any more trustworthy). The statistical models they use can lead to completely fabricated information. Although this is less true with Web searches, even there, they can combine information in ways that simply aren’t accurate.

11. Try deep research: Bonus tip! Many chatbots offer a so-called deep research mode, which allows the chatbot to go off for 5 or 10 minutes to gather information, analyze it over multiple steps, and produce a much more comprehensive response. Deep research is too slow for a conversation, but it can provide a good foundation when you’re exploring a new topic that requires a lot of detail.

While AI chatbots are powerful tools, they work best when you think of them as collaborative partners rather than magical solutions. The key is experimentation—try different approaches, refine your prompting style, and don’t hesitate to push the limits of what they can do. Start with these fundamentals, but remember that becoming proficient is an ongoing process.

(Featured image by iStock.com/Memorystockphoto)

Apple’s Worldwide Developer Conference keynote was a lightning-fast 92-minute tour of Apple’s vision for how we’ll use its products in the next year. Apple wove two themes through the presentation: the new Liquid Glass design language will provide a consistent look and feel across all its platforms, and Apple Intelligence-powered features will continue to appear throughout the ecosystem. The other overarching news is that Apple is adopting a new annual versioning approach, similar to car model years, so the version number for each operating system will be 26.

Apple previewed numerous features during the keynote and listed even more on its website afterward. Below, we’ll focus on those we think will make the most difference to your Apple experience, but we also encourage you to read Apple’s pages for each platform to learn more about what’s coming. Those are linked here, along with basic hardware requirements, so you can determine if your devices will be eligible to upgrade this fall:

• macOS 26 Tahoe: MacBook Air with Apple silicon (2020 and later), MacBook Pro with Apple silicon (2020 and later), MacBook Pro (16‑inch, 2019), MacBook Pro (13‑inch, 2020, four Thunderbolt 3 ports), iMac (2020 and later), Mac mini (2020 and later), Mac Studio (2022 and later), Mac Pro (2019 and later)

• iOS 26: iPhone SE (2nd generation), iPhone 11, and later

• iPadOS 26: iPad (8th generation and later), iPad mini (5th generation and later), iPad Air (3rd generation and later), iPad Pro 11‑inch (1st generation and later), iPad Pro 12.9‑inch (3rd generation and later), and iPad Pro (M4)

• watchOS 26: Apple Watch SE (2nd generation), Apple Watch Series 6 and later, and Apple Watch Ultra and later

• visionOS 26: All Vision Pro headsets

• tvOS 26: Apple TV 4K

First, let’s look at Liquid Glass, after which we’ll examine a handful of changes we think Apple users will find most interesting.

Liquid Glass Gives Apple’s Platforms a Fresh Look

Apple’s last major interface redesign occurred in 2013 with the release of iOS 7. Since then, the company’s hardware and graphics technologies have advanced significantly, enabling the new Liquid Glass interface design. It brings to life a new glass-like “material” for interface elements that blurs the line between the physical and the virtual. Liquid Glass is both translucent and malleable, allowing background content to refract through the controls, which can morph, flex, and illuminate in response to user interaction.

Liquid Glass encompasses all of Apple’s platforms and extends to every aspect of the interface, including controls, navigation bars, tabs and sidebars, alerts, widgets, icons, the menu bar, and the Dock. Functionally, Apple has taken the opportunity to improve some interactions, so alerts appear from where you tap rather than taking over the entire display, and context menus expand into scannable lists rather than requiring awkward horizontal scrolling. When you interact with toolbars or other controls, they expand and become more prominent, but as soon as you’re done, they minimize themselves to let you focus on the content. Watch Apple’s intro video to get a feel for it.

The main concern with Liquid Glass is that it may lack contrast and be difficult to read for those whose vision isn’t perfect. In the past, Apple has provided a Reduce Transparency option in the Accessibility settings for macOS, iOS, and iPadOS to eliminate any color bleeding through translucent menus and dialogs; we’ll see if such an option proves necessary for some.

iPadOS 26 Takes Lessons from macOS

Ever since the introduction of the iPad, people have been frustrated by the extent to which it was a larger iPhone rather than a smaller, touch-sensitive Mac. Apple took small steps toward enhancing productivity by adding features like Slide Over and Split View, but they were fussy to use and never achieved widespread acceptance. With iPadOS 26, Apple has finally acknowledged that the iPad should just work more like a Mac. To that end, iPadOS 26 will offer Mac-like features in the following areas:

• Window management: Every app can now be transformed into a standalone window that you can move and resize freely. Windows remember their size and position, and you can tile them flexibly, with options to split the screen into two, three, or four sections. The familiar traffic light window controls from the Mac reappear along with the macOS Move & Resize and Fill & Arrange options. Swiping up invokes Exposé, allowing you to view all windows and switch to your desired one easily.

• Menu bar and Dock: iPadOS gains a menu bar that looks and works like the one on the Mac, but it only appears when you swipe down from the top of the screen. You can also put folders in the Dock and access their contents in much the same way docked folders appear as a stack on the Mac.

• Filesystem access: The Files app resembles a Finder window much more now, thanks to the addition of collapsible folders and resizable columns. It allows you to select which apps will open specific document types and even modify the defaults. Additionally, you can customize folders with colors and icons.

• Preview makes the move: One of the core Mac apps, Preview, is coming to the iPad. Just as on the Mac, you can use Preview for viewing and editing images and PDFs, and it offers full support for the Apple Pencil.

• Background processing: Computationally intensive processes and other activities that take a long time, like exporting edited videos and downloading large files, can now run in the background while you engage in other tasks.

Apple Intelligence Expands Across the Ecosystem

Apple Intelligence has been far from a rousing success, with Apple’s failure to deliver last year’s promised update to Siri being the most prominent misstep. But Apple isn’t giving up and will be tapping into Apple Intelligence in many more places across all its operating systems and apps.

Even more important, the company announced that it is opening Apple Intelligence to developers, so we can expect to see features powered by Apple’s on-device large language models appearing in third-party apps this fall. That’s a big deal because Apple’s models provide fast response times, prioritize privacy, and incur no per-prompt costs.

Some of the new and expanded uses of Apple Intelligence include:

• Visual Intelligence: You can now use Visual Intelligence to learn more about and act on information displayed on your iPhone screen. You could research a piece of clothing you see while browsing, or create a calendar event based on a social media banner. You can also ask ChatGPT about anything you see on screen.

• Shortcuts gets Apple Intelligence: New intelligence actions in Shortcuts enable you to leverage Apple Intelligence to summarize text, create images, and more. Interestingly, shortcuts can even access Apple Intelligence’s Private Cloud Compute for more power-intensive tasks.

• Image Playground & ChatGPT: When using Image Playground, you can create images in a wider variety of styles with ChatGPT.

• Combine emoji for Genmoji: Previously, you could use text descriptions to create custom Genmoji; now, you can make them by combining existing emoji.

• Messages backgrounds: Chats in Messages will offer shared backgrounds, and users can create custom backgrounds with Image Playground.

• Messages polls: Group chats in Messages will gain polls—where should we go for dinner tonight?—and Apple Intelligence will automatically detect when a poll might be helpful and suggest one.

• Wallet order details: With Apple Intelligence, the Wallet app can identify and summarize order details, including tracking information.

• Workout Buddy: In the watchOS 26 Workout app, Apple Intelligence powers a virtual workout buddy that talks to you while you exercise, offering motivation, real-time stats, and post-workout feedback.

These new applications of Apple Intelligence may not rock your world, but together, they offer some appreciated enhancements. We also look forward to seeing how developers leverage Apple Intelligence models in innovative ways.

Live Translation Edges Toward the Universal Translator

Perhaps the most significant additional feature driven by Apple Intelligence in the new operating systems is Live Translation. It’s integrated into the Phone, FaceTime, and Messages apps. In the Phone app, you get spoken translations between supported languages. In FaceTime, you see the other person’s translated text as a caption, and Messages translates their text. Live Translations may prove to be a lifesaver on your next international trip.

Spotlight Gains Enhanced Capabilities

Whenever you do a search on the Mac, you’re using Spotlight. It can also search within apps like Contacts and Calendar, access various online sources, open documents, launch apps, and more. Despite that, Spotlight has paled in comparison to launchers like Alfred, LaunchBar, and Raycast. No more.

In Apple’s new operating systems, Spotlight will enable users to perform hundreds of actions across various apps. It will also be capable of understanding what you’re working on and suggesting relevant files, apps, or actions. For instance, you’ll be able to start a timer, create calendar events, generate a new email message with pre-filled fields, play a podcast episode, and more.

Spotlight also introduces the concept of “quick keys,” which are short, custom mnemonics for specific actions. For instance, you might type sm to trigger Spotlight to send a message or ar to add a reminder.

In addition, Spotlight becomes a clipboard manager, providing access to recently copied items, including text, images, and links. You can browse, search, and insert previous clipboard entries directly through Spotlight.

Phone App Introduces Call Screening and Hold Assist

Phone calls may not be the primary use of the iPhone for many people, but they remain a fact of life. With iOS 26, Apple has introduced two features that, if they work as promised, will alleviate two common pain points associated with calls.

Call Screening builds on the Live Voicemail feature by automatically answering calls from unknown numbers, without even alerting you. Once the caller provides their name and the reason for their call, the Phone app rings and presents information to help you decide whether to answer.

The other new feature is Hold Assist, which automatically detects hold music and asks if you want it to wait on hold for you, allowing you to attend to other tasks. When someone on the other end picks up, it informs them that you’ll be there shortly and notifies you that it’s time to return to the call.

Although we think of using the Phone app exclusively on the iPhone, Apple is also bringing it to macOS 26 and iPadOS 26, thanks to Continuity. Once you upgrade, you’ll be able to take advantage of these features—and Live Translation—on those platforms as well.

Dismiss Notifications with the Flick of a Wrist

Finally, watchOS 26 introduces a new gesture that we believe will be popular: the wrist flick. Whenever a notification appears on screen, you can quickly rotate your wrist away from you to dismiss it. This feature is a great little addition to the Apple Watch interaction model.

If none of these changes seem earthshaking to you, we agree. With six operating systems and billions of users, Apple can’t move as quickly as smaller companies. While Liquid Glass will dramatically change the look of our Apple devices, the other new features shouldn't require us to learn completely new methods of interaction.

(Featured image by Apple)

No one likes passwords. Users find managing them annoying, and website managers worry about login credentials being stolen in a data breach. The industry has developed a better solution: passkeys.

Passwords versus Passkeys

Traditional multi-factor authentication involves three methods of authentication, at least two of which are required for protection. They include something you know (a password), something you have (usually a code from an authenticator app or text message), and something you are (biometric authentication). Most systems primarily use the first two, but that leaves room for attack because someone could acquire your password and an authentication code through nefarious means.

Passkeys change the model. Instead of how passwords and codes use words and numbers that can be copied and shared, passkeys are pairs of cryptographic keys: a public key and a private key. Websites keep the public key, and the private key is stored securely within an encrypted vault, such as in iCloud Keychain or a 1Password vault. Authenticating with a website requires providing the private key that matches the account’s public key, something that Apple users with modern devices can usually initiate with Touch ID or Face ID.

Instead of generating security with something you have and something you know, passkeys rely on possession (do you have the device?) and presence (are you physically in front of the device?). This approach is fundamentally more secure than passwords because the private key can’t be phished, copied, or used remotely, and you must be physically present to unlock your device. Nor can you be tricked into providing a passkey to a malicious website. (Neither approach protects against physical coercion.)

Where Can You Use Passkeys?

In practice, since you use passkeys primarily to sign into websites, passkeys are stored alongside account details in your password manager. For Apple users, Safari (in iOS 16 or macOS 13 Ventura and later) with Apple’s Passwords app provides the most integrated passkey experience. However, most independent password managers, such as 1Password, Bitwarden, and Dashlane, also enable you to store, share, and enter passkeys and can take over for or work alongside Apple’s Passwords. They provide consistent passkey functionality across all major Web browsers, although experiences may vary slightly due to differences in how they handle authentication prompts and platform integration.

You’ll also find robust support in the Password Manager built into Google Chrome and other Chromium-based browsers, including Arc, Brave, Edge, Opera, and Vivaldi. Firefox’s native passkey support is more limited, but third-party password managers work well with Firefox.

Although website support for passkeys was initially slow, an increasing number of sites now support them. That includes the big three of Apple, Google, and Microsoft, of course, as well as Amazon, Best Buy, Discord, eBay, GitHub, Intuit, Netflix, Notion, PayPal, Robinhood, Stripe, Target, Walmart, and WhatsApp.

Setting Up Passkeys

The process of setting up passkeys varies a little by website, but is generally remarkably easy. You may be prompted to create a passkey while signing in, or you may need to navigate to the security options associated with your account.

Google offers both approaches. Setting up a passkey for a Google Account can be as simple as agreeing to do so while logging in. If you’re already logged in, Google’s Passkeys and security keys page lets you make one. Once you click Create a Passkey, you’ll be prompted to save it in either Apple’s Passwords or another password manager like 1Password. That’s it.

Note that if you use both Passwords and another password manager, you can save the passkey in only one, and only that one can use it to sign in later. However, most sites that support passkeys let you add multiple passkeys, so you could save separate passkeys in different password managers.

Signing in with Passkeys

Similarly, using a passkey to sign in is trivially simple. You navigate to the website’s login page, enter your username, choose the passkey sign-in option if necessary, and then authenticate.

Exactly how you authenticate depends on the device you’re using and your password manager. On the Mac, Passwords will ask you to use Touch ID if available (above) or a dialog otherwise (below, left). 1Password, once unlocked for the session, presents a dialog with a Sign In button (below right).

On the iPhone and iPad, an authentication dialog appears at the bottom of the screen asking if you want to sign in with your passkey. Tap Continue and authenticate with Face ID or Touch ID (with a fallback to your passcode if necessary).

Unsurprisingly, Apple makes it particularly easy to sign in to Apple websites like iCloud.com using a passkey. As soon as you navigate to such a site in Safari, the device prompts you to sign in using your current Apple Account username and an implicit passkey.

When using other browsers or another Mac that lacks access to your passkey, selecting the passkey sign-in option displays a QR code that you need to scan with an iPhone or iPad that has the passkey stored on it.

Managing and Sharing Passkeys

As noted, passkeys are stored in accounts managed by a password manager. In fact, passkeys are currently stored alongside passwords in each account. There’s nothing to see or edit, although you can delete passkeys like any other data. Although deleting the passkey on your device guarantees that it can’t be used to sign in again, it’s best to also delete the passkey at the website where you created it to avoid confusion.

Passkeys are automatically synced among all your devices by the password manager so you can take advantage of them everywhere, but note that syncing is specific to just one password manager—for instance, iCloud Keychain doesn’t sync with 1Password or other third-party managers. The authentication method varies by device, but the overall experience remains the same.

You can also share passkeys with other people in your family or workgroup, just as you would with password-only accounts. They can log in to your passkey-protected accounts because they can prove possession (they have the passkey) and presence (they’re authenticating). In essence, you’re saying, “This person is authorized to act as the account holder.”

Passkey Concerns

Although passkeys are a big step forward in usability and security compared to passwords, they’re not without limitations or concerns, which have slowed adoption:

• Account recoverability: Because passkeys are tied to devices, if a user loses all their devices and doesn’t have a cloud backup option (such as registering a new iPhone to an existing Apple Account or adding a new device to a 1Password account), it’s impossible to recover an account. This is primarily a concern for those who have only a single device and no one with whom to share.

• Sharing hurdles: If you want to give someone else passkey access to an account—perhaps a shared bank account—you must log in on their device and then create an additional passkey that is stored on their device.

• Lack of portability: Although passkeys can be synced between devices using the same platform (iCloud Keychain, 1Password account, etc.), there’s no way to export a passkey from one platform and import it into another. You have to recreate passkeys from scratch for each platform. Vendors are working on the problem, but as you can imagine, enabling export/import opens up security concerns.

• User confusion: People are, understandably, still unfamiliar with passkeys, leading many to avoid them on principle. It hasn’t helped that using passkeys is slightly different on every website. The industry is working to standardize the user experience, but we’re not there yet.

• Passwords still exist: No major websites allow passkey-only accounts. Since all accounts still have passwords that can be stolen, passkeys aren’t increasing security nearly as much as they could.

• Enterprise support: Large organizations want to know if a passkey was generated on a secure device, if it can be revoked or rotated, and if the user employing the passkey has truly been verified. Support for these requirements is still evolving.

• Digital inheritance: When passkey-only accounts become commonplace in the future, passkeys may be more challenging to manage in situations involving the user’s death. For now, the solution is to share passkey-protected accounts with family members in advance using a password manager. The industry would do well to establish standards around this inevitability.

Nonetheless, the perfect shouldn’t be the enemy of the good. Passkeys improve on passwords in both usability and security, and the best way to get to an easier, more secure future is to start using passkeys wherever possible today.

(Featured image by iStock.com/tanit boonruen)

Are employees at your company surreptitiously using artificial intelligence tools like ChatGPT, Claude, Copilot, and Gemini for everyday business tasks? It’s likely. An October 2024 Software AG study found that half of all employees use “shadow AI” tools to enhance their productivity, and most would continue using them even if explicitly banned by their employer.

Increased productivity is a good thing, but unsanctioned and unregulated AI use poses risks. A February 2025 TELUS Digital survey found that 57% of enterprise employees admit to entering high-risk information into publicly available chatbots. This includes personal data about employees or customers, product or project details, and confidential financial information like revenues, profit margins, budgets, and forecasts.

A clear AI policy will help a business minimize the risks of using AI tools. These risks include leaks of confidential information, compliance failures, accidental copy-right violations, and reputational damage. As AI becomes a routine part of knowledge work, every business—even small firms—must establish an AI policy to maximize the benefits of using AI while safeguarding the company, its employees, and its clients.

Risks Addressed by a Formal AI Policy

Unauthorized AI use can create several types of problems:

• Data security: Employees routinely paste sensitive data—including customer information, financial records, and unreleased products—into public AI tools, thereby losing control over how that data is used. That can make security audits nearly impossible and drive IT staff crazy. Notably, the free versions of ChatGPT (by default, it can be turned off) and Google’s Gemini can incorporate user data into their training models, making it possible that the information could be included in a discussion with someone else.

• Legal and compliance risks: Sharing protected information with noncompliant AI systems could result in penalties during regulatory audits, even if no actual data breach or harm occurs. For instance, using such systems to summarize patient records could violate HIPAA, while using them to analyze customer data could run afoul of the California Consumer Privacy Act (CCPA).

• Unintentional discrimination: Without clear guidelines, the use of AI can lead to unintentional discrimination in hiring, customer service, and decision-making. This may violate ethical standards and expose the company to legal liability.

• Employee confusion: The lack of a coherent AI policy leads to inconsistent practices and uncertainty about acceptable tools and proper procedures, resulting in reduced productivity and increased anxiety about AI use.

Essential Elements of an AI Policy

The specifics of an AI policy vary by the type and size of company, but at minimum, most AI policies should include the following:

• Permitted AI uses and tools: Clear guidelines on the types of tasks employees may undertake with AI assistance and a list of approved AI platforms for business activities

• Data privacy and legal compliance: Rules for safeguarding confidential, personal, and proprietary information when using AI, coupled with rules that ensure adherence to relevant industry-specific regulations and privacy laws

• Human oversight and transparency: Requirements that employees thoroughly review AI-generated content before use and disclose AI involvement when appropriate in client-facing or public materials

• Risk reporting and incident response: Clear instructions for reporting AI-related errors, security incidents, or potential misuses

• Ownership and intellectual property clarifications: Statements affirming that work products created with AI assistance belong to the company. These statements should also address any intellectual property considerations.

Building Your AI Policy

If your company doesn’t already have an established process for generating policies, AI tools can themselves provide a starting point when used thoughtfully. Here’s an approach:

1. Prompt an AI tool like ChatGPT or Claude to generate a basic AI policy template. Be explicit about your company’s size, industry, and other relevant details, and be sure to specify that it must cover the elements listed above—you can paste them in. Iterate as necessary until the template has all the required sections.

2. Review the generated template carefully, removing generic content and noting areas that need company-specific details.

3. Ask for feedback on the draft from key stakeholders, including:

   • Leadership to align with company goals and values

   • IT team to verify technical feasibility and security measures

   • Legal counsel to ensure compliance with relevant regulations

   • Department heads to confirm that it will be practical to implement the policy

4. Incorporate the feedback to create a policy that reflects your company’s specific needs while maintaining necessary protections.

Remember: An AI-generated template is for starting the conversation. The final policy must be tailored to your organization’s specific needs and thoroughly vetted by relevant stakeholders.

The rise of AI tools in the workplace isn’t just a trend—it’s a fundamental shift in how work gets done. Whether your employees are already using AI tools without oversight or are hesitant to use them due to uncertainty, now is the time to establish a formal AI policy. Start with the template approach outlined above, engage your stakeholders, and develop guidelines that work for your organization. A well-crafted AI policy will help your business harness the benefits of AI while minimizing its risks.

(Featured image by iStock.com/girafchik123)

When discussing digital security, we typically focus on preventive measures, such as using strong passwords with a password manager, enabling multi-factor authentication, keeping systems up to date, maintaining regular backups, and training employees to recognize potential security threats. While these practices are essential, they don't guarantee complete protection.

No one is immune to online attacks—the most security-conscious organizations and individuals can still become victims. Even security experts occasionally click something they shouldn’t have or forget to keep a little-used system up to date. A single employee opening a convincing phishing email, a momentary lapse in judgment, or a zero-day vulnerability can lead to devastating consequences.

According to the FBI’s Internet Crime Complaint Center (IC3), cybercrime-related losses from 2020 through 2024 are estimated at $50.5 billion, with IC3 receiving 4.2 million complaints. Most concerning is the rising trend in the frequency and severity of these attacks.

Given these statistics and the reality that perfect security is impossible, many are looking to protect themselves from possible financial losses. Just as fires and accidents make home and auto insurance necessary, these ever-increasing threats from phishing, malware, and other forms of digital attack make cyber insurance an important consideration for both companies and individuals. We’ll focus on businesses here and explore personal cyber insurance in a future article.

What Is Business Cyber Insurance

Cyber insurance for businesses helps companies recover from security breaches and online attacks. Unlike traditional business insurance policies, cyber insurance focuses on the risks of using technology to operate or to store sensitive data online. Businesses of all sizes are vulnerable, but small and medium-sized businesses are often targeted because they lack the robust security infrastructure of larger enterprises.

Industries that are especially at risk include healthcare, financial services, retail, and professional services, but no sector is immune. You may have cause for additional concern if your company collects customer information, processes payments, or maintains a significant online presence, but realistically, every business that uses email or conducts online banking is vulnerable.

What’s Covered

A business cyber policy typically includes two core types of coverage:

• First-party coverage: This coverage responds to direct costs incurred by your company, including legal expenses, data breach response and notification costs, ransomware payments and recovery expenses, business interruption losses, data restoration, system replacement, and crisis management.

• Third-party coverage: Also known as liability insurance, this coverage protects you against claims from others affected by the breach, including legal defense costs, settlements, regulatory fines and penalties, and PCI-related fines associated with credit card processing.

What’s Not Covered

However, it’s essential to be aware of common exclusions to business cyber insurance, the most important of which are:

• Weak security processes: Insurance doesn’t exempt you from maintaining a strong security stance—if you aren’t requiring strong passwords, providing security training, and correcting known vulnerabilities, the policy won’t cover you. Insurers will likely require verification of minimum cybersecurity practices before providing coverage.

• Prior breaches: Just as health insurance may not cover pre-existing conditions, cyber insurance typically does not cover events that occurred before the policy was taken out.

• Insider attacks or misconduct: Deliberate or fraudulent acts by company leadership or employees generally aren’t covered. Employees are a company’s greatest resource, but they can also be its greatest weakness.

Shopping for Business Cyber Insurance

How much will business cyber insurance cost? It varies based on your company size and revenue, industry sector, type and amount of sensitive data stored, security practices, coverage limits and deductibles, and claims history. That said, small businesses with yearly revenues under $1 million typically have annual premiums ranging from $500 to $2,000. Mid-sized firms often pay between $2,000 and $10,000, and large companies can expect premiums in the tens of thousands.

It’s common—and entirely understandable—to hesitate to purchase cyber insurance due to concerns about the cost. However, the potential financial impact of an incident is often significant. IBM’s  2024 Cost of Data Breach Report found that the average cost of a data breach was $4.9 million globally, but $9.4 million in the United States. Although IBM doesn’t break out costs by company size, those costs are likely for larger companies. Nonetheless, a  Financial Times report notes that users at small and medium-sized businesses were twice as likely to encounter threats as those at large companies.

Choosing the right cyber insurance broker is as important as selecting the policy itself, and you’ll want to involve your security team in the search. Look for someone specializing in cyber coverage who has technical expertise in cybersecurity practices, strong relationships with underwriters, and a track record of providing active claims support. A good broker will not only find competitive pricing but also help tailor coverage to your specific risks and ensure you’re prepared to meet underwriting requirements.

When comparing cyber insurance options, pay attention to the details. Confirm that the policy addresses risks specific to your situation and provides sufficient financial protection for your potential exposure. Pay close attention to exclusions—there will be more than those listed above. Research the insurer’s claims process and reputation for responsiveness, as timely support during an incident is crucial. Finally, inquire about additional risk management services offered by the insurer that may provide valuable preventative resources to complement your coverage.

Start Researching Cyber Insurance Now

Unfortunately, the frequency and risk of cyber attacks are on the rise. Proactive security measures are key, but a single mistake or oversight could have dire outcomes. Cyber insurance provides an important safety net in the event of a breach or attack that evades your best efforts.

We won’t pretend that finding and purchasing cyber insurance is simple, but we can help with finding a good cyber insurance broker, evaluating the policy, answering application questions, and ensuring that your company meets the necessary security requirements.

(Featured image by iStock.com/Who_I_am)

Apple’s AirPlay is one of those low-level technologies that’s more capable than many people realize. In addition to allowing you to stream video and audio from an iPhone, iPad, or Mac to an Apple TV connected to a large-screen TV, AirPlay also enables you to use that TV as an external Mac display, either mirroring what’s on your Mac’s screen or extending the desktop. It even allows you to turn one Mac into a display for another.

The big win of connecting to a TV comes when you want to demo something from your Mac to a group—it’s a compelling reason to have an Apple TV-equipped screen in a conference room—or when you want to use one Mac’s display from another without the hassle of rearranging cables. In this article, we focus on these external display features, which are helpful to both individuals and businesses alike. There are three ways to use AirPlay to enable another display: mirroring the entire screen, mirroring selected apps or windows, and extending the desktop.

Set Up AirPlay to Receive Video

First, ensure that all devices have Wi-Fi turned on and are connected to the same network. If you’re using AirPlay to a Mac, note the minimum system requirements (primarily macOS 12 Monterey or later). Additionally, if you’re using your own devices, it’s best to be signed in to the same Apple Account.

Second, make sure the screen to which you want to mirror is accessible:

• On an Apple TV, the settings are likely already enabled; however, if not, navigate to Settings > AirPlay and HomeKit and turn on AirPlay. You can also set who can gain access (everyone, anyone on the same network, or only people sharing this home) and require a password. For an office environment, you can turn the Apple TV into a conference room display that provides connection instructions with the screen saver, requires a PIN, and allows you to set a custom message and background photo. Also, note the AirPlay Display Underscan option, which you can turn on to reduce the chance of the screen being cropped or turn off to eliminate black bars. Auto tries to choose for you—in our testing, cropping was sometimes unavoidable.

• On a Mac, go to System Settings > General > AirDrop & Handoff and turn on AirPlay Receiver. The “Allow AirPlay for” menu lets you specify who can access it, and you can require a password.

Mirror Your Mac’s Screen

Apple’s recommended method for mirroring your screen is to open Control Center by clicking its icon at the right side of the menu bar, click Screen Mirroring, and select the desired Apple TV or Mac from the list. Once you do that, your Mac’s screen will appear on the external display.

However, it may not display at a usable resolution. You control the resolution in System Settings > Displays, and you can jump there by clicking Display Settings in either of the two rightmost windows shown above. In the Displays settings screen, from the Optimize For pop-up menu, choose either your Mac or the external display. If you choose the external display, you can select from all available resolutions.

If you’re mirroring to a Mac with multiple displays, a small, dark lozenge in the upper-left corner of the destination screen provides a menu from which you can choose which display to use.

Mirror Selected Apps or Windows

Mirroring your entire desktop is often overkill when all you want to share with the group is one or two windows. As of macOS 15.2 Sequoia, that’s now possible. An added benefit is that you don’t have to worry about others seeing your messy desktop or potentially sensitive information in other windows.

To mirror one window or all the windows in an app, open Control Center, click Screen Mirroring, select the destination display, and then click Change or Choose Content. In the dialog that appears, select Window or App and click Choose Window or App.

Then select the desired window and click either Mirror This Window or Mirror All Application Windows.

You’re not limited to windows from a single app. You can add additional windows by clicking the purple Screen Mirroring menu in the menu bar, clicking Add Windows, and selecting another window. (If you want to stop mirroring one and start mirroring another, select the current window to see a Stop Mirroring This Window button.)

Extend Your Mac’s Desktop

Mirroring is useful for presentations or working with a group, but if you instead want to boost your productivity with additional screen real estate, you can opt to extend your Mac’s desktop to another Mac or TV.

To do so, open Control Center, click Screen Mirroring, select the destination display, click Change, and in the dialog that appears, select Extended Display and click Extend Display.

This option often requires additional configuration to get everything looking the way you want. Open System Settings > Displays and click the second display. First, you may want to select a different resolution to see more or less content on the second display. Clicking Show All Resolutions expands the list, but many of the additional resolutions won’t be ideal. Unfortunately, some desirable resolutions are marked with a “low resolution” tag—they’ll be fuzzier than ideal.

Once you have your desired resolution, you need to arrange the screens appropriately. It’s usually best to match the real-world positioning, so if your second display sits to the left of your Mac, move its representation there so dragging windows and other items on the extended desktop works as you expect. Click the Arrange button, drag the second display into the desired location, and click Done.

Regular Use and Stopping Mirroring

Although it’s simple to start mirroring or extending your desktop and to switch among the various modes, you’ll probably use one of the modes most of the time. The good news is that macOS remembers your previous choice, so if you mirror your entire screen or extend your desktop, clicking Screen Mirroring in Control Center will default to that option the next time you invoke it. Mirroring windows always requires that you pick the window to share.

Regardless of how you’re mirroring your screen, you can stop by clicking Stop Mirroring in the purple Screen Mirroring menu in the menu bar. Alternatively, open Control Center, click Screen Mirroring, and click Stop Mirroring. Or click the Disconnect button in Displays.

On the remote Mac, that small, dark lozenge also provides an X button that ends screen mirroring when clicked from the remote Mac. Turning off the remote Apple TV also works.

Using AirPlay to mirror or extend your Mac’s display to another Mac or TV may not be something that you use on an everyday basis, but it’s a big win when you need to share content with a group, do a presentation, or ramp up your productivity without rearranging cables.

(Featured image by iStock.com/Ratchapon Supprasert)

Calendar events are usually straightforward. For instance, if you schedule a meeting for 3 PM on Thursday, an alert will remind you to leave 30 minutes beforehand.

However, since we live in an increasingly global world, we occasionally have to consider time zones when scheduling meetings. Business travelers have long needed to keep track of meeting times as they move across time zones, and the number of online meetings spanning the globe has skyrocketed since the pandemic. Whether you’re scheduling appointments on the other side of the country or collaborating with a remote team, it’s essential to be able to work effectively with time zones on your iPhone, iPad, and Mac. Here’s what you need to know.

Fact 1: All Events and Reminders Have Time Zones

The first thing to understand is that every calendar event and reminder has an associated time zone. However, that’s not always obvious—you won’t see any options for adjusting time zones in Calendar on the Mac unless you enable an advanced setting, and reminders never show their time zone.

By default, events use the local time zone of the device on which you create them, which is usually appropriate. However, you can adjust an event’s time zone to make sure you’re notified at the right time after traveling.

Unlike calendar events, timed reminders in the Reminders app are permanently linked to the time zone in which they were created, and this setting cannot be altered. When traveling across time zones, reminders’ local times will adjust accordingly, triggering alerts at unexpected times.

Fact 2: Time Zone Display Can and Will Change

The second point to grasp is that calendar apps display the times of events based on two factors:

• Device time zone: Apple devices typically set their time zone automatically based on location. If you live in Virginia and fly to Oregon, your iPhone will switch from Eastern Time to Pacific Time as soon as you take it out of airplane mode, and your Mac will do the same once it connects to the Internet. You can manually set the device time zone in Settings/System Settings > General > Date & Time, but that’s seldom necessary.

• Calendar time zone overrides: You can make the Calendar app display events as if you were in a different time zone. This feature can help you confirm that events scheduled in another time zone show up at the correct times. On the iPhone or iPad, enable Settings > Apps > Calendar > Time Zone Override. Be careful not to forget about this override, or it may lead to confusion later. On the Mac, go to Calendar > Settings > Advanced, select “Turn on time zone support,” and choose a time zone from the pop-up menu that appears near the upper-right corner of the window.

When an event’s time zone differs from your device’s current time zone or the time zone override setting, Calendar will indicate the discrepancy. For example, an event at 2 PM Eastern Time event viewed on a device set to Pacific Time will display as 11 AM, with the original time zone noted in parentheses.

Working with Event Time Zones

When creating events where the time zone might be significant, you have three options:

• Stick with the local time zone: Since all events are associated with a time zone, if you do nothing when creating an event, it will default to your current time zone. This is appropriate when the event will be shared with someone in another time zone through an invitation or shared calendar. However, it poses issues when creating events related to a trip.

• Change to a remote time zone: When scheduling your future self in another time zone—perhaps for business meetings or conference sessions—you can set those events to the time zone of your destination, ensuring they appear at the correct time once you arrive. On the iPhone and iPad, choose the time zone when setting the start time. On the Mac, with time zone support enabled, select it from the Time Zone menu.

• Switch to the floating time zone: For travelers who frequently cross time zones, Apple supports a special “floating time zone” that ensures events appear at the same local time regardless of location. For example, a noon lunch meeting set with a floating time zone will always appear at noon, whether you’re in Boston or Denver. However, the floating time zone does have its limitations. While all Apple devices synced through iCloud honor the floating time zone, you can create events with it only on the Mac, not on the iPhone, iPad, or iCloud.com. Additionally, syncing events through Google Calendar or Microsoft Exchange should work, but if you edit an event on the Web or with non-Apple apps, it will revert to the local time zone.

Common Time Zone Scenarios

Now that you understand that events are always associated with time zones, how they appear in Calendar, and how to specify particular time zones for events, let’s look at some common time zone scenarios:

• When traveling to another time zone: For events during an upcoming trip, you can either manually set the event’s time zone to match your destination or use the floating time zone. The manual approach ensures that events appear at the correct local time once you arrive, although it may be confusing to visualize before departure. The floating time zone maintains the same “wall clock time” regardless of your location, making it easier to plan your schedule before you leave.

• Creating events while away: Conversely, when scheduling an appointment back home while traveling, set the event time zone to your home time zone. The event will appear on your calendar at the correct adjusted time. The floating time zone works well as an alternative for personal events that should take place at the same local time, no matter where you are.

• Trips with multiple time zones: For complex itineraries involving flights and travel transitions with departure and arrival times in different zones, the Calendar app on the iPhone and iPad allows you to create events that start and end in different time zones. Tap the Time Zone option beneath the Start and End time pickers to set different time zones. Although you cannot create these multi-zone events on the Mac, they will display correctly on all your synced devices.

• Remote scheduling: When inviting people from different time zones to an event or scheduling meetings with team members in various locations, create the event in your local time zone. The invitations and shared events will automatically adjust to each recipient’s time zone. When searching for optimal meeting times across multiple time zones, use a tool like World Time Buddy, which provides visual guidance for overlapping business hours.

• Reminders can be tricky: Since reminders always use the time zone where they were created, their local times will shift as you travel, leading to notifications at unexpected times. The only workaround is to edit their times manually when you arrive at your destination and again when you return home. Alternatively, consider using an app like Due that keeps reminders consistent with “wall clock time.”

• Scheduling global events: When planning a webinar or other online event that people in many different time zones might attend, use a tool like Every Time Zone to identify suitable times across various regions. After creating the event at the selected time, drag it from Calendar to the desktop to generate an ICS file for sharing with participants. This file will reflect your local time zone, and when attendees double-click it to import, their calendar app will display it at the appropriate time for them.

Although we’ve focused on Calendar on the iPhone, iPad, and Mac here, the same concepts—except for the floating time zone—apply to other apps like Microsoft Outlook and Google Calendar. By keeping these time zone concepts in mind, you can avoid calendar confusion and ensure that you don’t miss important meetings, regardless of where in the world you find yourself.

(Featured image by iStock.com/STILLFX)

When we think about digital and device security, we mostly think about the fixed locations where people spend most of their time—home, school, and work. But what about when you’re traveling? Some security concerns remain the same when you’re on the road, but new ones crop up.

We’ll assume that you already keep your devices up to date, use FileVault on Macs, have at least a six-digit iOS passcode, have strong password habits, and use multi-factor authentication wherever possible. Other options are more specific to travel.

As with our more general article about increasing security last month, we’ve divided our list of suggestions into two parts: things that everyone should do and measures that only people who worry about being specifically targeted should employ.

Sensible Travel Security Precautions for Everyone

These suggestions are appropriate for everyone who travels, and they’re aimed primarily at avoiding relatively common problems: loss, theft, data loss, and generalized snooping:

• Focus on physical security: As a tourist, you may be targeted by thieves, so it’s important to keep your iPhone in a secure pocket whenever you’re not using it. Carry an iPad or laptop in a bag that can’t be snatched, or leave them locked or at least concealed in your hotel room.

• Enable Find My for all your devices: You should have already done this, but if not, enable Find My to improve your chances of finding a device you lose or accidentally leave behind. It might help if the device is stolen, but local police cooperation for recovering stolen items can vary widely. Don’t attempt to recover a stolen device yourself.

• Put AirTags in your luggage and laptop bags: AirTags can help you track down lost luggage—you can now share their locations with airlines—and prevent you from accidentally leaving bags behind. An AirTag may also help with locating a stolen item, but always work with local law enforcement.

• Enable biometric authentication and Stolen Device Protection: Using Face ID or Touch ID wherever possible and having Stolen Device Protection enabled on your iPhone in Settings > Face/Touch ID & Passcode is even more important when traveling.

• Use a VPN or iCloud Private Relay: Because you may be using Wi-Fi networks whose security you know nothing about, it’s best to use a VPN like  Mullvad VPN,  NordVPN, or  ProtonVPN to encrypt all your traffic. At a minimum, use  iCloud Private Relay, which requires an iCloud+ subscription and won’t encrypt traffic from most non-Apple apps.

• Use iCloud Photos or another backup option: To ensure you don’t lose precious vacation photos, use iCloud Photos so all your photos are uploaded to the cloud whenever you have access. This will almost certainly require an iCloud+ subscription for sufficient storage space. If Wi-Fi and cellular are too slow or unavailable, consider an external SSD to which you can manually export photos and videos for backup. To speed up the process, you could create a shortcut that automatically copies all photos taken that day.

• Use iCloud Backup: It’s best to use  iCloud Backup to back up your entire iPhone every night. That way, if your iPhone is lost or destroyed, you may be able to buy a replacement and restore from backup in relatively little time. You will probably need an iCloud+ subscription to have enough backup space.

• Practice dealing with a lost or stolen device: If the worst happens and you lose one of your devices while traveling, you need to know what to do. Immediately go to Find My on another device or  iCloud.com and mark the device as lost. If there’s a chance of getting it back, stop there. However, if you believe the device was stolen, your data is at risk, and tracking it is no longer useful, use Erase This Device in Find My to wipe it. Activation Lock will remain enabled to prevent anyone from reusing the device.

Increasing Travel Security for People Who May Be Targeted

Not all travel is fondue and gamelans. If you’re a journalist, activist, government employee, or corporate executive with access to sensitive data, you could be a target while traveling. This is particularly true if you are headed to countries like China, Russia, or others with authoritarian governments and powerful intelligence agencies. Along with the suggestions above, we recommend:

• Be aware of local laws and government practices: It’s important to read up on regional laws regarding data access and potential government capabilities at your destination. Knowing what to expect can help you reduce your risks and take appropriate precautions.

• Use caution with cellular access: Even if your carrier allows roaming, consider using a dedicated eSIM for international travel, separate from your personal one. That way, you can use local cellular networks without revealing your home number. Be aware that your traffic may be monitored.

• Enable Lockdown Mode: If you’re concerned about your iPhone or iPad being targeted by local law enforcement or government intelligence agencies, turn on Lockdown Mode in Settings > Privacy & Security > Lockdown Mode. To increase security, it blocks most attachment types in Messages, complex Web technologies, incoming FaceTime calls from unknown callers, non-secure Wi-Fi network connections, and incoming invitations to Apple services. Plus, it excludes location information from shared photos, requires approval to connect accessories, and more.

• Reduce and protect your use of cloud services: While using a VPN is essential, you should still avoid using cloud services much if government entities might have access to stored files. If you need to upload files, encrypt them first using the free and open-source Cryptomator.

• Know how to disable Face ID and Touch ID: If you find yourself in a situation where you believe you may be compelled to unlock your iPhone or iPad with your face or fingerprint, press and hold the side or top button and either volume button to display the power off slider. This temporarily disables biometric authentication, requiring your passcode for the next unlock.

• Use dedicated travel devices and accounts: If you’re traveling to a potentially hostile part of the world, we strongly recommend carrying only devices—preferably iPhones or iPads, which are more secure than Macs—configured to contain none of your personal data or regular accounts. Keep them with you at all times, assume they could be confiscated, and be aware you might be compelled to share passcodes or other account information. Create a separate Apple Account for such devices.

Best of luck in your travels! With just a little preparation, you can reduce the chances that something bad will happen during a vacation. If you’re traveling on business to somewhere more concerning, putting in additional effort could prevent truly problematic things from happening.

(Featured image by iStock.com/metamorworks)