Border Cyber Group

06 Jun 2026 surveillance-pricing algorithmic-pricing consumer-rights data-privacy retail-technology price-discrimination antitrust platform accountability

The Price of Knowing You: Surveillance Pricing and the Architecture of Extraction

AI-powered surveillance pricing doesn't just charge you more — it charges you the maximum you can bear. From Instacart's grocery experiments to Walmart's digital shelf rollout, the infrastructure of perfect price extraction is being built faster than the law can follow.

05 Jun 2026 supply-chain npm infostealer OIDC credential-theft worm detection-engineering

Miasma: A Full Kill-Chain Analysis of the Red Hat npm Supply Chain Compromise

A 48-day-old stolen session cookie seeded a GitHub Actions OIDC exploit that published a self-propagating credential worm into 32 official Red Hat npm packages, defeating MFA, provenance verification, and hash-based detection in a single chain.

05 Jun 2026 Active Exploitation Supply Chain Nation State DFIR AI agent security Mobile Zero Day

Friday Digest

Four actively exploited CVEs (Netlogon, NetScaler, Android, SharePoint), a self-propagating npm supply-chain worm tracing back to an infostealer-compromised CI/CD pipeline, Iran-MOIS destructive ops dressed as hacktivism, and AI agent prompt injection via push notifications.

04 Jun 2026 nation-state threats proprietary platforms zero-day economics vulnerability governance Eternal Blue UERO security Critical Infrastructure platform accountability

The Attacker Knows the Binary

The opacity that prevents defenders from auditing proprietary platforms is the same opacity that makes those platforms extraordinarily valuable to nation-state actors. This piece traces the adversarial record — from EternalBlue to UEFI bootkits — of what that structural asymmetry produces.

04 Jun 2026 proprietary platforms open-source security vendor accountability platform governance vulnerability remediation Critical Infrastructure cyber-resilience security architecture

The Architecture of Helplessness

When a proprietary vendor declines to patch, customers have no recourse that touches the code. Open source breaks this structural dependency — not perfectly, but fundamentally. The agency difference is a material security risk factor that belongs in every platform procurement decision.