Technology
Hoot brings Scheme to WebAssembly (Wasm GC) with a Guile-based toolchain
Feb 15, 2026 10:36Spritely Institute’s Hoot project targets Wasm GC browsers, offering a Scheme→WebAssembly compiler plus a self-contained toolchain built on Guile.
LocalGPT: a local-first Rust AI assistant with persistent memory and a heartbeat
Feb 15, 2026 10:36An open-source Rust project pitches a local-first AI assistant with markdown-based memory, a background “heartbeat,” and multi-provider LLM support — shipped as a single binary.
Leaked bulletin alleges DHS monitored Reddit users calling for lawful protests
Feb 15, 2026 10:36A leaked Border Patrol intelligence bulletin suggests agents monitored a Reddit user promoting a lawful protest, raising fresh questions about social-media surveillance and civil liberties.
CSS-only menu reveal: a neat clip-path trick using vmax × √2
Feb 15, 2026 10:36A small front-end demo shows how to reveal a nav menu with pure CSS using two clip-path shapes — including a clever radius formula based on vmax and √2.
Critical WPvivid WordPress plugin bug (CVE-2026-1357) may allow unauthenticated RCE on some sites
Feb 15, 2026 10:36A severe vulnerability in the WPvivid Backup & Migration plugin could allow remote code execution in certain configurations; users should update promptly.
npm’s shift to short-lived session tokens boosts supply-chain security—but MFA phishing and bypass tokens remain risks
Feb 15, 2026 10:36npm is moving to short-lived session tokens to limit credential replay, but other account-takeover vectors like MFA phishing still need attention.
OpenAI preprint reports nonzero “single-minus” gluon amplitudes, with GPT‑5.2 assisting parts of the derivation
Feb 15, 2026 10:36A new OpenAI preprint claims certain single-minus gluon amplitudes are nonzero, highlighting an AI-assisted derivation workflow.
Malicious Chrome extension targeting Meta Business accounts steals TOTP seeds and exports analytics data
Feb 15, 2026 10:36Researchers report a Chrome extension targeting Meta Business users that can steal TOTP secrets and siphon business contact and analytics information.
GreyNoise: Single threat actor behind 83% of recent Ivanti EPMM RCE exploitation
Feb 15, 2026 10:36GreyNoise telemetry shows that one source IP linked to bulletproof hosting accounted for the majority of exploitation attempts against two critical, unauthenticated RCE flaws in Ivanti Endpoint Manager Mobile (EPMM). Defenders are urged to patch/hotfix quickly and not rely solely on widely-circulated IoC lists.
Malicious Chrome extensions found stealing Meta Business data and 2FA material
Feb 15, 2026 10:36Researchers warn that seemingly legitimate Chrome extensions can exfiltrate high-value business data and even time-based one-time password (TOTP) seeds, enabling account takeovers when paired with stolen credentials. Separate campaigns also abused “AI assistant” branding to siphon emails and browsing data at scale.
npm revokes classic tokens and defaults to session-based auth — supply-chain risk remains
Feb 15, 2026 10:36npm’s December 2025 authentication overhaul replaced long-lived classic tokens with short-lived session tokens and promoted OIDC trusted publishing. Security experts warn that MFA phishing and optional “MFA bypass” tokens can still enable malicious package publication, so maintainers should tighten publishing workflows.
In an AI era, distribution becomes the moat for startups
Feb 15, 2026 10:36As AI features commoditize, startup defensibility shifts from model access to distribution—channels, product loops, and customer acquisition advantages.
GreyNoise: Single source IP drove 83% of recent Ivanti EPMM RCE exploitation
Feb 15, 2026 10:36GreyNoise telemetry suggests one bulletproof-hosted IP address accounted for the vast majority of active exploitation attempts against two critical Ivanti Endpoint Manager Mobile (EPMM) vulnerabilities. The activity shows heavy automation and widespread scanning behavior typical of initial access broker operations.
npm revoked classic tokens, but supply-chain risk remains until MFA and OIDC are defaults
Feb 15, 2026 10:36npm has revoked classic tokens, yet researchers warn meaningful supply-chain risk reduction will require stronger defaults like MFA and OIDC.
Malicious Chrome extensions steal Meta Business data and 2FA secrets, researchers warn
Feb 15, 2026 10:36Researchers found a Chrome Web Store extension marketed as a Meta Business Suite helper that secretly exfiltrates Business Manager exports and time-based one-time password (TOTP) seeds. Separate campaigns have also abused extension ecosystems to hijack social accounts and siphon sensitive data at scale.
North Korean “fake recruiter” campaign hides malware in developer coding challenges
Feb 15, 2026 10:36Researchers say a long-running fake hiring campaign targets JavaScript and Python developers with “take-home” projects designed to install malicious dependencies. The operation abuses npm and PyPI packages as loaders for a remote access trojan and focuses on crypto-adjacent lures.
Fake 7zip.com installer turns Windows PCs into residential proxy nodes
Feb 15, 2026 10:36A spoofed 7zip.com installer is being used to compromise Windows machines and enroll them into residential proxy networks.
Fake 7zip.com downloads are converting home PCs into residential proxy nodes
Feb 15, 2026 10:36Malwarebytes reports a long-running campaign using the lookalike domain 7zip.com to deliver a trojanized 7‑Zip installer. The payload persists as Windows services and turns infected machines into residential proxy endpoints.
Malicious Chrome extensions caught stealing Meta Business data and 2FA material
Feb 15, 2026 10:36Researchers warn that a Chrome Web Store extension marketed as a Meta Business Suite helper can exfiltrate Business Manager exports and time-based one-time password (TOTP) secrets. Separate research also highlights large-scale extension abuse targeting VK accounts and fake AI assistant add-ons.
Critical WPvivid Backup & Migration bug could allow unauthenticated RCE on WordPress sites
Feb 15, 2026 10:36BleepingComputer reports a CVSS 9.8 flaw (CVE-2026-1357) in WPvivid Backup & Migration affecting versions up to 0.9.123. Under specific configuration, attackers could upload arbitrary files and achieve remote code execution, leading to site takeover.
Vim 9.2 released with Vim9 language upgrades, better diffing, and Wayland support
Feb 15, 2026 10:36Vim 9.2 is out with major improvements to completion, diff mode, and the Vim9 scripting language—including new constructs like enums, tuples, and generics. The release also adds experimental Wayland support and updates several long-standing defaults.
GreyNoise: One actor accounts for 83% of observed exploitation of recent Ivanti EPMM RCEs
Feb 15, 2026 10:35Threat intelligence data suggests a single source IP on “bulletproof” hosting is behind the majority of active exploitation attempts for two critical Ivanti Endpoint Manager Mobile vulnerabilities. Researchers observed spikes in automated probing and verification behavior consistent with initial access broker activity.
Google links suspected Russia-aligned actor to CANFAIL malware targeting Ukrainian organizations
Feb 15, 2026 10:35Google Threat Intelligence Group says a previously undocumented actor is running phishing campaigns that deliver an obfuscated JavaScript implant dubbed CANFAIL, with victims concentrated in Ukrainian government and critical sectors. The actor is also reportedly using large language models to speed up reconnaissance and lure writing.
Researchers warn of malicious Chrome extensions stealing Meta Business data and 2FA secrets
Feb 15, 2026 10:35Security researchers identified a Chrome extension marketed as a Meta Business “tool” that allegedly exfiltrates Business Manager exports and time-based one-time password (TOTP) seeds. Separate research also points to broader extension campaigns hijacking social accounts and siphoning data at scale.