This is your easyDNS #AxisOfEasy Briefing for the week of March 9 th, 2026. Our Technology Correspondent Joann L Barnes and easyCEO Mark E. Jeftovic send out a short briefing on the state of the ‘net and how it affects your business, security and privacy.

To Listen/watch this podcast edition with commentary and insight from Joey and Len the Lengend click here.

In this issue:

• Canada Allows TikTok to Continue Operations with New Safeguards
• Russian government hackers targeting Signal and WhatsApp users, Dutch spies warn
• AI Misstep Wipes Years of Website Data
• Chrome Gemini Panel Vulnerability Exposed
• SSL Certificate Lifetimes Are Shrinking: What the New 47-Day TLS Certificate Rules Mean
  
  

Elsewhere Online:

• KadNap Botnet Hijacks 14,000 Asus Routers for Proxy Traffic
• Over 250 WordPress Sites Impacted by Dangerous New Social Engineering Tactics
• Xygeni Reports Security Incident Involving Malicious GitHub Action Commits
• Recent Cisco SD-WAN Flaws Now Exploited Opportunistically Across the Globe
• Kaspersky Uncovers BeatBanker Trojan Using Audio Loophole to Target Android Users

Still fighting with the OpenClaw install?

Try easyClaw VPS (Beta) — launching Friday the 13th.

Ready-to-go VPS with easyClaw preinstalled so you can deploy and operate faster. Get on the invite list.

Join early access→ https://invite.easyclaw.md

Canada Allows TikTok to Continue Operations with New Safeguards

The Canadian government will let TikTok operate and invest in Canada after completing a national security review, subject to legally binding undertakings, Industry Minister Melanie Joly said. The commitments ensure TikTok maintains a physical presence, protects jobs, and invests in the cultural sector.

Following a November 2024 dissolution order overturned by federal court, TikTok agreed to enhance data and child protections, including privacy technologies and third-party audits. Owned by China’s ByteDance, TikTok remains under scrutiny as Prime Minister Mark Carney seeks closer China ties to offset U.S. tariffs.

More via Reuters

Russian government hackers targeting Signal and WhatsApp users, Dutch spies warn

Dutch intelligence agencies — the Netherlands’ Defence Intelligence and Security Service (MIVD) and General Intelligence and Security Service (AIVD) — said Russia state actors are running a “large-scale global” campaign targeting users of Signal and WhatsApp, especially government officials, military personnel, and journalists.

Hackers rely on phishing and social engineering, posing as Signal support to obtain SMS verification and PIN codes, allowing them to register a new device, impersonate victims, access contacts, and lock users out. They also send malicious QR codes or links. On WhatsApp, attackers exploit the Linked Devices feature to access accounts and potentially read past messages without logging victims out. Techniques resemble methods used by Russian hackers during the war against Ukraine.

More via TechCrunch

AI Misstep Wipes Years of Website Data

Alexey Grigorev revealed that Claude Code accidentally erased 2.5 years of data while migrating AI Shipping Labs to Amazon Web Services alongside DataTalks.Club. Running a Terraform plan without the state file caused duplicates; uploading it triggered a full “destroy” command.

Amazon Business support restored the data within a day. Grigorev now adds restore tests, delete protections, stores the state file on Amazon S3, and manually reviews all destructive plans, admitting he had “over-relied” on the AI agent.

More via TomShardware

Chrome Gemini Panel Vulnerability Exposed

Chrome’s Gemini “Live in Chrome” panel had a high-severity flaw (CVE‑2026‑0628) letting low-privilege extensions access local files, screenshots, and camera/microphone controls. Extensions using the declarativeNetRequest API could manipulate traffic to gemini.google.com/app, bypassing normal isolation, execute JavaScript in high-privilege contexts, and even turn the panel into a phishing interface.

AI assistants like Gemini, Edge’s Copilot, Atlas, and Comet, which access page content and local data, are attractive attack surfaces. Google patched the issue in January 2026. Users should update Chrome, limit extensions, prefer auditable sources, and monitor for unusual activity such as unexpected camera use, screenshots, or file access.

More via Malwarebytes

SSL Certificates Are Getting Shorter Lifetimes

The web PKI rules are changing again. The CA/Browser Forum has approved a phased reduction in SSL/TLS certificate lifetimes that will eventually shrink maximum validity from today’s 398 days to just 47 days.

The goal is to reduce the window of exposure if a certificate or key is compromised and to push the ecosystem toward automated certificate renewal. The rollout happens gradually over the next few years, but the takeaway is simple: manual certificate management is going to get painful fast.

SSL Certificate Lifetime Timeline

Now – March 15, 2026 Maximum certificate lifetime: 398 days

March 15, 2026 Maximum certificate lifetime: 200 days

March 15, 2027 Maximum certificate lifetime: 100 days

March 15, 2029 Maximum certificate lifetime: 47 days

In practical terms, the industry is moving from annual certificate renewals to something closer to continuous renewal. If your infrastructure still relies on calendar reminders and manual installs, it may be time to rethink that workflow. By the end of the decade, certificates will be expiring roughly every six to seven weeks.

More via easyDNS 

Curated Posts

Posts added to axisofeasy.com since the last edition:

• The Hidden Math Behind Every Decision You Make — And Why Most People Get It Wrong  Mar 11, 2026
• Won’t You Think of the Children: The Global War on Online Anonymity, Dressed Up as Parenting Advice — March 1st, 2026

Elsewhere Online:

KadNap Botnet Hijacks 14,000 Asus Routers for Proxy Traffic
Read: https://arstechnica.com/security/2026/03/14000-routers-are-infected-by-malware-thats-highly-resistant-to-takedowns/

Over 250 WordPress Sites Impacted by Dangerous New Social Engineering Tactics
Read: https://www.infosecurity-magazine.com/news/wordpress-clickfix-infostealer/

Xygeni Reports Security Incident Involving Malicious GitHub Action Commits
Read: https://www.darkreading.com/application-security/xygeni-github-action-compromised-via-tag-poison

Recent Cisco SD-WAN Flaws Now Exploited Opportunistically Across the Globe
Read: https://www.securityweek.com/recent-cisco-catalyst-sd-wan-vulnerability-now-widely-exploited/

Kaspersky Uncovers BeatBanker Trojan Using Audio Loophole to Target Android Users
Read: https://hackread.com/beatbanker-android-trojan-silent-audio-loop-crypto/

Previously on #AxisOfEasy

If you missed the previous issues, they can be read online here:

• • • March 6th, 2026: Meta Ray-Ban Glasses Footage Sent To Human Reviewers
    • February 27th, 2026: OpenAI Suppressed Warnings On Mass Shooter Months Before Spree
    • February 20th, 2026: Apple Patches Actively Exploited Zero-Day Across Devices
    • February 13th, 2026: Discord Is Asking For Your ID
    • February 6th, 2026: OpenClaw And Moltbook: Inside The Rise Of Autonomous AI Agents