Complete static archive of GigaTap articles about VPN, privacy, OPSEC, and security.
- SAP npm packages hit by Bun-based stealer - Snyk reports malicious SAP CAP npm releases with a Bun-based credential stealer and worm-capable npm propagation code. Observed spread was limited, but the
- Teams vishing is back — and it can be a state-backed cover story - Rapid7 described a Teams-driven intrusion attributed to MuddyWater: screen-sharing to harvest credentials, MFA manipulation, and persistence via remote too
- Trane Tracer Flaws: Root Access in the Building Core - CISA warns high-risk Trane Tracer flaws can enable root compromise, auth bypass, and DoS in exposed building controllers.
- Utah’s Digital ID Has a Loyalty Problem - Utah frames digital ID as modernization, but the real issue is who the system is built to serve when access and control collide.
- ValueCell brings AI agents to finance. Verify before trust - ValueCell is a Python-based open-source platform for financial AI agents. The repository has strong GitHub interest, but metadata alone does not prove safe
- VPN Subscription Safety Checklist for Mobile Networks - A safe checklist for evaluating VPN and VLESS subscription feeds before importing them into mobile clients.
- A new Mindstorms app could keep older LEGO kits useful - Mindstorms Robot Creator is a new F-Droid submission for older LEGO robotics kits. It aims to keep Mindstorms hardware usable with local code generation, h
- ABC’s FCC Fight Is a First Amendment Test - ABC’s pushback against FCC pressure could test whether broadcasters resist regulatory jawboning or self-censor to avoid a fight.
- Age Gates Are Becoming Speech Control - California’s social media ban debate shows how age verification can become a privacy and free-speech control layer.
- agenticSeek looks useful. Check the trust model first - A practical checklist for evaluating Fosowl/agenticSeek before giving a local autonomous agent access to files, browsers, code, or credentials.
- ClickFix is back, and Vidar Stealer is the payload - Australia’s ACSC says an ongoing campaign is using ClickFix social engineering to spread Vidar Stealer. The main risk is not novelty. It is user-driven com
- Cloudflare’s Token Controls Expose the Real IAM Problem - Cloudflare’s new API and OAuth controls point to a bigger issue: machine credentials stay dangerous when least privilege is optional.
- Genkit Middleware gives AI agents a control layer - Google’s Genkit Middleware adds hooks around generation, models, and tools so developers can build retries, fallbacks, and human approvals into agentic AI
- Hysteria Proxy: What to Check Before You Deploy - Hysteria is a popular Go proxy project with recent activity and a censorship-circumvention focus. Before adopting it, treat the repository as a starting po
- Microsoft flags a phishing run that stole auth tokens - Microsoft says a large phishing campaign used code-of-conduct themes and legitimate email services to steer users to attacker-controlled domains. The main
- node-ipc compromise puts npm trust back under stress - Socket says malicious `node-ipc` versions show obfuscated stealer/backdoor behavior. Developers should audit recent installs, block affected versions, and
- Node-ipc compromise turns installs into credential theft risk - Three malicious node-ipc versions reportedly targeted cloud secrets, SSH keys, Kubernetes configs, CI variables, and AI API keys. Treat affected installs a
- NVD Enrichment Is Narrowing: What Container Teams Should Recheck - NIST will still publish most CVEs, but fewer will receive the enrichment many scanners and compliance workflows rely on. Container teams should review scor
- Online Tracking Is Becoming a Surveillance Pipeline - EFF’s warning is not just about creepy ads. Commercial trackers and data brokers can turn ordinary browsing and location data into a shortcut for governmen
- Scaling LinkedIn Lead Gen Requires Better Signals, Not More Clicks - Zapier argues that most B2B LinkedIn Ads programs suffer from a growing “signal gap”: downstream outcomes like qualification and pipeline never make it bac
- SpiderFoot maps public attack surface, but verify the output - SpiderFoot is a Python OSINT automation project for threat intelligence and attack-surface mapping. Its value is faster recon, not automatic truth.
- SuperAGI: open source agents need a trust model - SuperAGI is a Python-based open source framework for autonomous AI agents. It is worth evaluating, but teams should verify maintenance, permissions, data f
- Supply-chain attacks become a leaderboard - TeamPCP and BreachForums are reportedly promoting a $1,000 contest for Shai-Hulud package compromises. The prize is small. The copycat incentive is the pro
- Supply Chain Security Starts Before the Build - Sonatype’s playbook points to a practical shift: secure the inputs, pipelines, identities, and trust paths that produce software before release.