Archive for May 11, 2026

Checkmarx Jenkins Plugin Backdoored in New TeamPCP Supply Chain Attack

Posted in Commentary with tags on May 11, 2026 by itnerd

TeamPCP has been found backdooring Checkmarx Jenkins plugin in a new supply chain attack.

SOCRadar security researchers have been tracking this activity and have included their analysis in a new post Checkmarx Jenkins Plugin Backdoored in New TeamPCP Supply Chain Attack:

  • They’re seeing Checkmarx hit twice in weeks, and the attacker confirmed why in their own defacement note: incomplete secret rotation after March. This isn’t bad luck, it’s an unfinished remediation.
  • The researchers broader concern is CI/CD pipelines as a category. Build environments are routinely underprotected despite holding credentials that unlock everything in production. A backdoored security scanner is the worst-case version of that blind spot.
  • SOCRadar researchers are also reading TeamPCP’s activity across PyPI, npm, GitHub Actions, and now Jenkins as a coordinated sweep, not isolated incidents. And if you’re hunting right now, the Dune-themed repository names across their infrastructure are a concrete detection signal worth chasing.

According to SOCRadar researchers:

“What makes this particularly dangerous for Jenkins users is the trust model at play. The Checkmarx Jenkins plugin is a tool people install specifically to improve the security of their pipelines. A backdoored version doesn’t just compromise one project; it rides trusted infrastructure into every build pipeline it touches, with

The report can be found here: Checkmarx Jenkins Plugin Backdoored in New TeamPCP Supply Chain Attack

Leave a comment »

Other World Computing to Showcase Mac and PC Storage, Connectivity, and Expansion Solutions at COMPUTEX TAIPEI

Posted in Commentary with tags on May 11, 2026 by itnerd

Other World Computing today announced it will showcase its unrivaled roster of storage, memory, software, apps, connectivity, PCIe expansion, memory cards, and readers at next month’s COMPUTEX TAIPEI, a leading exhibition for AI and startups, taking place June 2-5, at the Taipei Nangang Exhibition Center (Halls 1 & 2) and Taipei World Trade Center (Hall 1).

Visitors to OWC Booth R1002, 4F, Nangang Hall 2 will have an opportunity to view live demos of the following OWC solutions: 

OWC Storage Solutions

  • OWC Envoy Ultra First, fastest, and only certified 8TB Thunderbolt™ 5 portable SSD 
  • OWC ThunderBlade X12Fastest and highest capacity production shuttle and editing RAID SSD in the universe.
  • OWC Express 1M2 80G: Ultra-fast, compatible, and reliable portable USB4 NVMe SSD – build your own or choose ready-to-run solutions.
  • OWC Guardian: USB 3.2 (10Gb/s) hardware-encrypted bus-powered portable NVMe SSD. 
  • OWC Express 4M2 Ultra: The fastest compact DIY NVMe RAID. Period. 
  • OWC StudioStack: Up to 32TB of stackable Thunderbolt 5-powered storage.

OWC Shared Storage Solutions

  • OWC Jellyfish NomadNVMe SSD powerhouse designed for DITs, independent 3D and VFX studios, and on-the-go editing teams, featuring the powerfully enhanced OWC Jellyfish Manager.
  • OWC Memory (Server, Datacenter, Midrange, NAS RAM, Notebook, and PC): Upgrade the performance of nearly any laptop or desktop with OWC memory.

OWC Software & Apps

  • OWC Innergize Software: Checks card health and lifespan, updates firmware for optimal performance, fully sanitizes cards to prevent slowdowns or dropped frames, and prepares them for use with a simple pre-flight check before every shoot.
  • OWC SoftRAID 8: Ideal solution to manage your RAID arrays while delivering robust protection coupled with exceptional speed.
  • OWC MacDrive 12: One solution for complete Mac disk access on Windows.

OWC Connectivity Solutions

OWC PCIe Expansion

  • OWC Mercury Helio 5S: Powerful expansion solution that adds an external PCIe slot to your Thunderbolt 3-equipped laptop, space-constrained Mac, or Windows PC desktop.

OWC Memory Cards & Readers

Strada

Strada’s Peer-to-Peer Collaboration Platform: enables video content professionals to access, share, and review large video files stored on local drives anywhere in the world without needing to upload anything to the cloud.

To learn more about COMPUTEX TAIPEI, please visit: https://www.computextaipei.com.tw/en/index.html.

Leave a comment »

European Football Alliance Expands North American Reach Through Distribution Agreement with Fubo

Posted in Commentary with tags on May 11, 2026 by itnerd

The European Football Alliance (EFA) today announced a new content distribution agreement with Fubo Sports Network, the owned-and-operated FAST (free ad-supported streaming TV) channel from FuboTV significantly expanding the league’s visibility and accessibility across the United States and Canada.

Launching its inaugural season in May 2026, the EFA is dedicated to elevating the quality, visibility, and stability of American football across Europe. The league features six elite European American football franchises, including the Frankfurt Galaxy, Munich Ravens, Paris Musketeers, Prague Lions, Raiders Tirol, and Nordic Storm with plans to expand next year.

Under the agreement, EFA will deliver live game broadcasts and original programming to Fubo’s sports-focused FAST channel, including a minimum of 18 live games beginning in May for the 2026 season, alongside highlights, shoulder programming, and video-on-demand content.

The partnership enables EFA to reach millions of North American sports fans through Fubo Sports Network’s distribution via linear streaming platforms, on-demand viewing experiences, and over-the-air (OTA) stations in more than 100 U.S. markets.

European Football Alliance will stream on Fubo Sports Network, available for free on Amazon Prime Video, Hulu + Live TV, LG Channels, Samsung TV Plus, Sling Freestream, The Roku Channel, VIZIO WatchFree+, Tubi, Plex, TCL Channels, TCL Live TV, and Tablo TV. Fubo Sports Network is also available as part of DAZN’s subscription packages and Fubo’s subscription packages that aggregate more than 400 live sports, news, and entertainment networks.

Leave a comment »

Guest Post: Your Privacy Shield Is Paper-Thin. You’ll Need to Save Yourself

Posted in Commentary with tags on May 11, 2026 by itnerd

By Jurgita Lapienytė, Chief Editor at Cybernews

Under the excuse of keeping United States Immigration and Customs Enforcement (ICE) employees safe, the Department of Homeland Security (DHS) invades your privacy.

Maybe it hasn’t happened to you — or you’re unaware it has — but if you’ve been critical of ICE on social media, DHS has likely requested your personal data from platforms like Meta or Google, including your contact details and physical location.

Reportedly, the DHS has issued hundreds of administrative subpoenas to Google, Reddit, Discord, and Meta, all seeking identification of people who have publicly criticized ICE. Wired recently reported on a case involving a Canadian man who got under the spotlight after Google revealed that the DHS had requested his location, activity logs, and other information.

The DHS issued a custom summons request [which they asked Google not to disclose,] which is used to investigate issues related to illegal imports. Notably, the man hasn’t been to the US for over a decade, and has been criticizing the Trump administration after federal agents killed Renee Good and Alex Pretti.

Now, if Google were to be trusted, insisting that their “processes for handling law enforcement requests are designed to protect users’ privacy while meeting our legal obligations,” we might all sleep soundly. But we shouldn’t.

But the scary part is that Google and other platforms HAVE all that information that the government could use against its people: email addresses, phone numbers, home addresses, activity logs, and whereabouts, among other sensitive data. Remember when ProtonMail, the European tech company praised for its privacy focus, shared an IP address of an activist with authorities, claiming it had no legal grounds to resist the request? This disclosure led to the activist’s arrest on criminal charges by French police and tarnished the reputation of the Swiss tech company. Unfortunately, it wasn’t an isolated incident for Proton.

We may choose to trust that companies will do their best to protect our data, since their reputation and profits depend on it. But we cannot always trust governments to protect us. It seems that federal agencies have been issuing custom summons with increasing frequency, raising suspicion about why they need data such as surveillance video from an abortion provider in Illinois or information from a Lutheran organization that provides refugees with humanitarian and housing support.

Don’t rely on corporate promises. The government can make sure they fail to deliver. Instead, take back control of your data and your safety.

How?

  • Switching to privacy-focused tech options. Ditch Google, TikTok, Meta apps, forget data-harvesting and simply malicious browser extensions. May I suggest even exploring some European tech alternatives built with privacy in mind?
  • Go analogue sometimes. Consider going on some adventures without any device. If you have your phone with you, your location is traceable, and you aren’t also mute.
  • Opt out of personalization. Decline cookies, block ads, hide your location. That hyperpersonalization isn’t created for you — it’s designed so advertisers can know you better.
  • Above all, be polite online. Exercising your free speech should not mean hate speech, doxxing and endangering federal agents or any other human beings.

ABOUT THE AUTHOR 

Jurgita Lapienytė is the Editor-in-Chief at Cybernews, where she leads a team of journalists and security experts dedicated to uncovering cyber threats through research, testing, and data-driven reporting. With a career spanning over 15 years, she has reported on major global events, including the 2008 financial crisis and the 2015 Paris terror attacks, and has driven transparency through investigative journalism. A passionate advocate for cybersecurity awareness and women in tech, Jurgita has interviewed leading cybersecurity figures and amplifies underrepresented voices in the industry. Recognized as the Cybersecurity Journalist of the Year and featured in Top Cyber News Magazine’s 40 Under 40 in Cybersecurity, she is a thought leader shaping the conversation around cybersecurity. Jurgita has been quoted internationally – by Metro UK,  The Epoch Times, Extra Bladet, Computer Bild, and more. Her team reports on proprietary research highlighted in such outlets as the BBC, Forbes, TechRadar, Daily Mail, Fox News, Yahoo, and much more.

Leave a comment »