Add your product or open-source project on TechLogHub
Listing is free. Sponsored featured placements are paid and priced in USD — open the pricing dialog to see plan details.
Products
Discover amazing products built by our community
Open Source ProjectsNEW
Curating the best open-source projects shaping the future
Latest from the Blog
Analysis, product insight, and practical reads for builders
Google Chrome Adds Session Cookie Theft Protection for All Users
Google Chrome has made Device Bound Session Credentials (DBSC) generally available, binding session cookies to a user’s device using hardware roots like TPM or Secure Enclave to prevent stolen cookies from hijacking accounts or bypassing MFA. Rolled out to all Google Workspace and personal accounts, with DBSC enabled by default for Workspace and not disableable by admins. Debuted in 2024 and in beta since April 2026, DBSC shifts defense from detection to proactive prevention, reducing cookie-exfiltration risk even if the device is infected.
North Carolina Man Sentenced to More Than 10 Years for Selling Personal Data of 7 Million Elderly Americans to Jamaican Scammers
North Carolina man Troy Murray, also known as Steve Dixon, was sentenced to 121 months in federal prison for selling the personal data of more than 7 million elderly Americans to Jamaican scammers, a scheme that ran from 2016 to 2023, earned him over $5.2 million, and caused more than $9.5 million in losses; he sold lead lists with names, addresses, phone numbers and emails for about $500 per 100–300 names and later accepted prepaid gift cards, with his son facing money-laundering charges related to the proceeds as elder fraud continues to rise nationwide per the FBI’s 2025 IC3 report.
US charges Google security engineer with Polymarket insider trading
Google security engineer Michele Spagnuolo has been charged with insider trading after allegedly using confidential Google data to place bets on Polymarket, earning about $1.2 million. Prosecutors say he accessed Google's "Year in Search" data labeled "Google Confidential" and, under the alias "AlphaRaccoon" on Polymarket, placed bets on roughly 25 unlikely outcomes with near-perfect accuracy from October 2025 through December 2025. The FBI traced the proceeds to a payment processor account registered in Spagnuolo's name, while the CFTC filed a parallel civil action seeking restitution, disgorgement, penalties, and trading/registration bans. Spagnuolo faces up to 10 years in prison for commodities fraud and 20 years for each counts of wire fraud and money laundering, in addition to potential penalties. The case underscores that corporate insiders cannot misuse confidential information for personal financial gain.
Hackers exploit FortiClient EMS flaw to push infostealer malware
Hackers exploited FortiClient EMS CVE-2026-35616 to deliver EKZ, an undocumented infostealer, by disguising the payload as a Fortinet endpoint update and executing it through FortiClient VPN scripting workflows. The attack uses an authentication bypass to run commands, download EKZ, and exfiltrate credentials, browser data, and other sensitive information to an attacker-controlled server after tampering with EMS configurations and VPN policies. Fortinet released emergency hotfixes for versions 7.4.5 and 7.4.6; CISA ordered federal agencies to patch, and Arctic Wolf notes ongoing campaigns with many exposed EMS instances, offering detection guidance on certificate-auth anomalies and unusual remote-access changes.