Netcrook
11 June 2026
OpenAI’s China-Linked Influence Claim Exposes a New Front in the AI Buildout Fight
The dispute is not about a breach or a stolen dataset, but about who gets to shape public opinion around the power, cost, and politics of AI data centers.
When a Trading Plugin Becomes the Entry Point
A reported FireAnt MetaKit supply-chain incident shows how a trusted market-data tool can become a risk surface for selective espionage.
When Market Data Becomes Malware: The FireAnt MetaKit Trust-Chain Risk
A reported OceanLotus operation inside a Vietnamese investor tool shows how one compromised updater can turn routine market access into a wider software-trust problem.
Boston Hearing Puts Cloud Espionage Tradecraft Under a Criminal Spotlight
A federal appearance in Boston has turned a cross-border cyberespionage case into a reminder that stolen identities, not flashy malware, are often the real engine of modern intrusions.
OceanLotus and the New Trust Trap: When Investor Software Turns into a Spyware Route
A long-running intrusion and a separate supply-chain path point to the same lesson: in espionage campaigns, the weakest link is often the software people already trust.
Trusted VMware Name, Untrusted Payload: The Loader Chain Hiding Behind Cambodia-Focused Espionage
A signed Windows binary can look harmless on its face, yet still become the delivery vehicle for a stealth loader when attackers place the right DLL beside it.
Trusted Name, Hidden Payload: A VMware-Signed Binary and the Cambodian Espionage Trail
A signed executable, a custom loader, and a memory-resident implant point to an intrusion pattern built for stealth rather than noise.