China-Linked Hackers Have Used the PeckBirdy JavaScript C2 Framework Since 2023
Cybersecurity researchers have discovered a JScript-based command-and-control (C2) framework called PeckBirdy that has been put to use by China-aligned APT…
January 2026
Dormakaba flaws allow to access major organizations’ doors
Researchers found over 20 flaws in Dormakaba access systems that could let attackers remotely unlock doors at major organizations. Researchers…
HoneyMyte updates CoolClient and deploys multiple stealers in recent campaigns
Over the past few years, we’ve been observing and monitoring the espionage activities of HoneyMyte (aka Mustang Panda or Bronze…
Microsoft Office Zero-Day (CVE-2026-21509) – Emergency Patch Issued for Active Exploitation
Microsoft on Monday issued out-of-band security patches for a high-severity Microsoft Office zero-day vulnerability exploited in attacks. The vulnerability, tracked…
Common Google Workspace Security Gaps
And How to Fix Them Let me make an educated guess. You moved to Google Workspace because it was supposed…
Common Google Workspace Security Gaps
Discover the most common Google Workspace security gaps, why they cause breaches, and the practical steps you can take to…
Thanks But No Thanks on the Claudeswarms, Kevin Roose
The New York Times columnist and Hard Fork podcast co-host might be a little too jazzed about vibecoding.
All the ways TikTok is broken: here’s what’s real and what’s not
While social media rumors have suggested the errors are examples of censorship, more than a day after the issues began,…
Wait, So When *Is* ‘Starfleet Academy’ Set, Anyway?
We know the new 'Star Trek' show is set in the 32nd century, but lining it up with 'Discovery' requires…
OpenAI spills technical details about how its AI coding agent works
Unusually detailed post explains how OpenAI handles the Codex agent loop.