
Weekly Axis Of Easy #459
Last Week’s Quote was: “What is freedom of expression? Without the freedom to offend, it ceases to exist,” was by Salman Rushdie.
“W” is our winner. Congrats!
This Week’s Quote: “Only two types of people oppose free speech – snowflakes and totalitarians.” By ???
THE RULES: No searching up the answer, must be posted at the bottom of this blog post, in the comments section.
The Prize: First person to post the correct answer gets their next domain or hosting renewal on us.
This is your easyDNS #AxisOfEasy Briefing for the week of July 13, 2026. Our Technology Correspondent Joann L Barnes and easyCEO Mark E. Jeftovic send out a short briefing on the state of the ‘net and how it affects your business, security and privacy.
To Listen/watch this podcast edition with commentary and insight from Joey and Len the Lengend click here.
In this issue:
- UK Protects Teens From Midnight Scrolling, As Long As Teens Consent to Being Protected
- Waymo Robotaxi Snitches on Teens’ Boozy Joyride
- Apple Sues OpenAI Over Alleged Trade Secret Theft by Former Engineer
- Researchers Find Claude-Slack Integration Can Be Hijacked by Fake “@Claude” Mentions
- Ransomware Group’s Bosch Data Claims Appear Unfounded, Synopsys Says
- Spoofed OAuth IDs Let Hackers Quietly Test Millions of Microsoft Entra Logins
Elsewhere Online:
easyHermes is here…
We’re pleased to announce the expansion of our agentic hosting platform with the rollout of easyHermes, the latest agent-enabled VPS appliance on the easyNode.ai platform.

Now you can answer the “openclaw vs Hermes” question for yourself, or run them both.
Check it out today, and get your first month on us when you use promo code AXISOFEASY
UK Protects Teens From Midnight Scrolling, As Long As Teens Consent To Being Protected
So here’s the latest from the nanny-state innovation lab: London wants 16- and 17-year-olds locked out of Instagram, TikTok, and YouTube from midnight to 6am — a bold stroke of policy genius undercut entirely by the fact that any teenager with a thumb can flip it back on in settings. It’s less “curfew” and more performance art, and one social media analyst nailed it, calling the whole thing an annoying settings prompt dressed up with a government press release. Meanwhile ministers are patting themselves on the back for making Britain the “most robust” nation on Earth for tech regulation, apparently a low bar when your flagship enforcement mechanism is an honor system for adolescents.
The best part is watching everyone talk past each other: child-safety campaigners say it doesn’t go nearly far enough, a Conservative shadow minister calls it a “dog’s dinner,” an LSE professor worries it’ll cut off vulnerable kids reaching out for help at 3am, and the government itself admits it’s deliberately leaving VPNs untouched because banning them might inconvenience whistleblowers — and, one suspects, might actually work. Add in vague promises about AI chatbot “breaks” for under-18s and a rollout timeline that conveniently outlives the current PM’s tenure, and you’ve got a tidy little monument to regulation theater: all the optics of protecting children, none of the actual friction.
More via BBC
Waymo Robotaxi Snitches on Teens’ Boozy Joyride
Two 15-year-old boys in San Mateo got busted after their Waymo robotaxi’s remote monitors spotted them drinking alcohol and firing an Orbeez gel blaster out the window. Waymo alerted police, then disabled the car, telling the teens it was “having trouble” to stall for time. Fearing a real weapon, officers made a high-risk stop, guns drawn, but found only a painted toy gun and open alcohol.
The boys were released to their parents, with charges now under DA review. Waymo says the ride violated its rules against alcohol and unaccompanied minors.
More via Zerohedge
Apple Sues OpenAI Over Alleged Trade Secret Theft by Former Engineer
Apple has filed suit against OpenAI in California federal court, alleging former engineer Chang Liu exploited an unknown “zero-day” authentication bug to keep accessing Apple’s network storage after joining OpenAI. Liu allegedly took confidential files on unreleased products and misused a colleague’s Apple laptop to do so.
He never reported the flaw or returned his equipment, per the complaint. Apple has since patched the bug and cut off access. OpenAI says it has no interest in rivals’ trade secrets. Apple is seeking a jury trial, with proceedings possibly starting this year.
More via Techcrunch
Researchers Find Claude-Slack Integration Can Be Hijacked by Fake “@Claude” Mentions
Tel Aviv-based Tego AI has disclosed a flaw in Claude Tag, Anthropic’s Slack integration: it can trigger on literal “@Claude” text without a genuine mention, letting bots or webhooks slip in unauthorized commands. In a demo, a bot-generated message led Claude Tag to leak internal data, post it publicly, then delete the source.
CTO Tal Melamed called for deterministic runtime controls, not just safety classifiers. Tego AI recommends least-privilege access; Anthropic says the issue doesn’t trigger under default settings. (91 words)
More via Hackread
Ransomware Group’s Bosch Data Claims Appear Unfounded, Synopsys Says
Ransomware group D1R posted Synopsys and its customer Bosch on a dark-web leak site, claiming it exploited a Synopsys website flaw to steal a 40,000-entry client database and Bosch intellectual property, threatening to leak it unless paid. Synopsys says its monitoring found no unauthorized access, it hasn’t been contacted by the group, and calls the claims unfounded — the hackers’ “proof” screenshot actually matched an already-public Bosch manual. Bosch declined to address specifics, offering only a general statement on its cybersecurity practices.
More via Securityweek
Spoofed OAuth IDs Let Hackers Quietly Test Millions of Microsoft Entra Logins
Proofpoint has uncovered attackers using spoofed OAuth client IDs to test credentials across millions of Microsoft Entra accounts in thousands of tenants, no app registration needed. By reading Entra error codes (AADSTS50126, AADSTS50034, AADSTS700016), attackers confirm valid usernames and passwords while evading standard detection.
Campaign UNK_pyreq2323 (Jan. 2026) hit over 1 million accounts via AWS, locking 28%. UNK_OutFlareAZ (Dec. 2025) targeted 2 million+ users via Cloudflare using unique UUIDs per request. Proofpoint recommends monitoring for missing app data and unusual error patterns.
More via Hackread
Elsewhere Online:
Threat Actors Abuse GitHub API to Systematically Scan and Clone Repositories
Read: https://www.securityweek.com/ghost-accounts-abuse-github-api-in-mass-recon-campaign/
Threat Actors Use Fake NVIDIA Software to Deploy New LabubaRAT Malware
Read: https://thehackernews.com/2026/07/labubarat-masquerades-as-nvidia.html
Advanced Phishing Toolkit Uncovered After Threat Actors Leave Server Exposed
Read: https://www.infosecurity-magazine.com/news/open-directory-exposes-evilginx/
Sanctions Compliance Mix-Up Temporarily Knocks Telegram Shortlinks Offline
Read: https://techcrunch.com/2026/07/14/telegrams-shortlink-domain-is-back-online-after-day-long-suspension/
Cybercriminal Attempts to Sell Stolen Accenture Source Code and Cloud Credentials
Read: https://www.theregister.com/security/2026/07/14/baddies-caught-exploiting-extensions-bugs-with-perfect-10-scores-on-vulnerable-joomla-websites/5271001
Previously on #AxisOfEasy
If you missed the previous issues, they can be read online here:
-
-
-
-
-
-
-
-
-
-
-
-
- July 10th, 2026: Ottawa Weighed Suing Citizens Over “Misleading” Social Media Posts
- July 3rd, 2026: Canada’s New Cyber Law Lets A Minister Cut Your Phone Off — No Warrant Required
- June 26th, 2026: House Leaders Strike Deal On KIDS Act—Minus Key Safety Provision
- June 19th, 2026:Canada’s New Bill Would Trade Online Anonymity For “Child Safety”
- June 12th, 2026: Anthropic Splits Its Most Capable Model In Two — One For The Public, One For Cyber Defenders
-
-
-
-
-
-
-
-
-
-
-
