Border Cyber Group

22 May 2026

DAILY INTEL FEED

TeamPCP's Shai-Hulud worm broke SLSA provenance trust, cascading into breaches at Grafana and GitHub itself. Fox Tempest's signing-as-a-service dismantled. Four Linux kernel CVEs in three weeks. Cisco drops another CVSS 10.0. Calypso's telco campaign surfaces. INTERPOL arrests 201 across MENA.

An Historical Survey of Anarchist Thought

A survey of anarchist thought from ancient Greece and Daoist China through the radical Reformation, the 19th-century theorists who named the tradition, and the analytic philosophers and anthropologists who gave it new rigor — tracing a question that has never been adequately answered.

21 May 2026 Salt Typhoon Ransomeware Ecosystem Ivanti DPRK IT Workers Spyware PyPI Supply Chain GRU Sandworm SEC Cyber Disclosure

DAILY INTEL FEED

Salt Typhoon unevicted. DragonForce absorbs BlackLock's wreckage. DPRK infiltrations up 220% with deepfakes now standard. ICE's Paragon contract closed out — what replaced it is unclear. PyPI's ML package ecosystem is actively compromised. Sandworm pivots to misconfigured edge devices.

20 May 2026 Wireguard captive-portal digital privacy self-hosted vpn network-security traffic-analysis public-wifi

The Library Knows Your Name (but your traffic is secure )

Public WiFi captive portals are liability tools, not security ones. This piece dissects how they work, why commercial VPNs get blocked, why self-hosted WireGuard slips through, and what level of anonymity that actually produces — candidly, without the marketing.

20 May 2026 GitHub Supply Chain Security CI/CD Vulnerabilities Developer Infrastructure TeamPCP Software Integrity Threat Intelligence Github Supply Chain AI Cybersecurity CI/CD Vulnerabilities Developer Infrastructure teampcp Software Integrity Threat Intelligence

The Trust Layer Is the Target

In six weeks, adversaries executed a systematic campaign against GitHub's core infrastructure — RCE exploits, poisoned VS Code extensions, Actions token theft, and 3,800 internal repos exfiltrated. The real threat is what happens when the layer that vouches for software integrity is compromised.