Border Cyber Group

29 May 2026 supply-chain UNC6780 CVE-2026-41091 Defender-KEV SS7-surveillance ransomeware-policy trust-layer

BORDER CYBER GROUP

actively-exploited Defender flaws on a 14-day CISA clock, GitHub's 3,800-repo breach in the TeamPCP/TanStack supply-chain campaign, First VPN takedown, SS7 ghost-operator tracking, on-prem Exchange zero-day, plus ransomware-as-terrorism and Lotus Wiper signals.

28 May 2026 Silent Ransom Group Glassworm npm Supply Chain Microsoft Defender Ghost CMS Muddy Water AI Tooling AI Tooling As Attack Surface

BORDER CYBER GROUP // DAILY INTEL FEED

Glassworm botnet dismantled by CrowdStrike/Google/Shadowserver; SRG escalates to physical law firm intrusions; MuddyWater abuses signed EDR binaries across 9 countries; two Defender zero-days patched after six weeks of live exploitation; Ghost CMS flaw hijacks 700+ domains for ClickFix delivery.

27 May 2026 Iran-Nexus Threats Ransomeware Ecosystem Supply Chain Nation-State TTPs Vulnerability Management Law Enforcement Operations Developer Infrastructure Regulatory Developments

BORDER CYBER GROUP // DAILY INTEL FEED

IRGC debuts AI-assisted malware post-Epic Fury; Fox Tempest MSaaS disrupted; MuddyWater hits 9 countries; SharePoint RCE patched; Canvas ransom paid; Verizon DBIR flips the breach vector table; Crimenetwork falls twice; CERT-In mandates 12-hour patching.

27 May 2026 AI Inferastructure Data Centers Artificial Intelligence Energy Grid Water Scarcity Noise Pollution Digital Infrastructure Technology Policy

The Cloud Comes Down to Earth

Artificial intelligence is transforming the “cloud” into visible industrial infrastructure. As data centers expand across the United States, they are reshaping electrical grids, water systems, land use, and local communities in the emerging geography of computation.

26 May 2026 Ghost CMS CVE-2026-26980 Self-Hosting Cybersecurity Incident Reponse Linux Administration Web Security

When a Ghost CMS CVE Hits Your Self-Hosted Infrastructure

A real-world walkthrough of investigating and securing two self-hosted Ghost CMS instances after the CVE-2026-26980 disclosure — including version auditing, service debugging, patching, integrity checks, credential hardening, and backup validation.