Paid Promotion
Add your product or open-source project on TechLogHub
Listing is free. Sponsored featured placements are paid and priced in USD — open the pricing dialog to see plan details.
Apr 28, 2026
Security & Infrastructure Tools
US reportedly charges Scattered Spider hacker arrested in Finland
A 19-year-old dual U.S.-Estonian citizen, online alias Bouquet, was arrested in Helsinki on April 10 while trying to fly to Japan and now faces U.S. charges as a member of the Scattered Spider hacking group. Prosecutors allege he helped breach multiple high-profile targets and extort millions in ransoms, with incidents dating back to 2023 and 2025. The case comes as another Scattered Spider leader pleaded guilty earlier this month.
By TechLogHub
Apr 28, 2026
Security & Infrastructure Tools
Checkmarx confirms LAPSUS$ hackers leaked its stolen GitHub data
Checkmarx confirms LAPSUS$ leaked data from its private GitHub repository after a March 23 supply-chain attack tied to the Trivy incident; attackers used stolen credentials to publish malicious artifacts, including Docker images and VSCode/Open VSX extensions for Checkmarx’s KICS scanner. A 96 GB data pack was posted on the LAPSUS$ portal and accessible on clearnet, with Checkmarx saying the exposed data originated from its GitHub and does not appear to contain customer information. Access to the affected repository has been blocked and a forensic investigation is ongoing, with more details expected within 24 hours.
By TechLogHub
Apr 28, 2026
Security & Infrastructure Tools
Microsoft to Deprecate Legacy TLS in Exchange Online Starting July 2026
Microsoft will begin blocking legacy TLS for POP and IMAP in Exchange Online starting July 2026. After deprecation, POP3/IMAP4 connections must use TLS 1.2 or newer, and any connections using TLS 1.0 or 1.1 will fail. Most users are unaffected since TLS 1.2+ is already standard, but those using legacy endpoints or custom/embedded applications may face disruption and will need updates. Admins are advised to verify their clients support TLS 1.2+ and update devices or applications accordingly as part of this broader move to secure, modern TLS.
By TechLogHub
Apr 28, 2026
Security & Infrastructure Tools
Inside an OPSEC Playbook: How Threat Actors Evade Detection
Flare researchers examine a cybercrime forum post in which a threat actor outlines a three-tier OPSEC framework for high-volume carding aimed at staying undetected over time. The Public Layer uses clean devices and rotated residential IPs; the Operational Layer is strictly isolated with encrypted containers and hardware-backed keys; the Extraction Layer keeps cashout systems isolated to break the forensic chain. The post highlights recurring mistakes—identity reuse, weak fingerprinting evasion, poor separation of stages, and metadata exposure—and introduces advanced resilience techniques such as time-delayed triggers, behavioral randomization, distributed verification, and dead man’s switches. Defenders are offered actionable takeaways: improve cross-platform identity correlation, evolve behavioral analytics, monitor the full attack chain, leverage metadata, and prepare for resilient adversaries. The material argues that OPSEC is becoming a competitive advantage in cybercrime, prioritizing longevity and stealth over short-term access.
By TechLogHub