Austinites turned out in droves to support the San Antonio Spurs in Game 1 of the NBA Finals. Despite the loss to the New York Knicks, the local crowd represented the result of years of work to bring the Spurs and the capital city closer together.

Cybersecurity researchers have uncovered a large-scale macOS malvertising operation known as Operation FlutterBridge, which is responsible for distributing a newly identified backdoor named FlutterShell. The campaign represents the latest evolution of a threat cluster previously associated with JSCoreRunner (also known as FileRipple), a malicious activity first documented in August 2025. The cybercriminal group behind both attack chains is tracked as CL-CRI-1089 and is believed to have been active since at least 2023. Security analysts view FlutterShell as a significant advancement in the group's capabilities and infrastructure. From Adware to Full Backdoor Functionality Developed using Google's Flutter framework, FlutterShell is delivered through malicious desktop applications that initially appear legitimate. While the malware includes adware functionality, its capabilities extend far beyond unwanted advertising. The malware can: Execute arbitrary shell commands on infected systems. Interact with and manipulate files within the file system. Exfiltrate environment variables and system information. Conduct system fingerprinting. Steal browser session data. Researchers observed malicious activity involving FlutterShell as recently as March 2026, indicating that the campaign remains active. A Growing Malware Ecosystem Linked to TamperedChef FlutterShell is not an isolated threat. Operations attributed to CL-CRI-1089 also include Recipe Lister and Calendaromatic, both associated with the broader TamperedChef campaign, also known as EvilAI. TamperedChef campaigns rely on trojanized productivity applications to distribute potentially unwanted programs (PUPs) and adware. These malicious applications are promoted through deceptive advertising campaigns designed to convince users that they are downloading legitimate software tools. Malicious Advertising Powered by Shell Companies A key element of the operation is an extensive malvertising network that leverages Google and YouTube advertisements. The attackers use multiple Google-verified shell companies to publish and promote malicious ads, increasing the credibility of their campaigns and helping them evade advertising platform scrutiny. Among the companies linked to the operation are: AdsParkPro LTD, Advantage Web Marketing LLC, and SOFT WE ART LIMITED (now operating as PACIFIC TRADE SOLUTIONS LTD).Additional records from YouControl and the United Kingdom's Companies House registry indicate connections between these entities and Ukrainian individuals. The advertisements primarily target macOS users located in the United States, Canada, Australia, France, and Germany. Although the associated Google Ads accounts are no longer accessible through the Google Ads Transparency Center, historical records continue to reveal connections between the entities involved. Browser Hijacking Through Trusted Applications Once executed, FlutterShell modifies Google Chrome configuration files to redirect all browser traffic through attacker-controlled intermediary websites filled with advertisements. This browser hijacking technique enables threat actors to generate revenue while maintaining control over user browsing activity. Particularly concerning is the fact that every analyzed sample was signed using valid Apple Developer IDs and successfully passed Apple's notarization process. As a result, Apple's automated security mechanisms did not identify the applications as malicious at the time they were submitted. WebView Architecture Enables Dynamic Malware Evolution One of FlutterShell's most distinctive characteristics is its use of a WebView-based architecture combined with a JavaScript-to-native communication bridge. In this model, the application embeds a browser component that displays web content while allowing JavaScript code to communicate directly with native system functions. Rather than embedding malicious logic directly into the application binary, the threat actors host significant portions of the malware's functionality on remote websites under their control. This approach provides several advantages: Malware behavior can be modified in real time without recompiling the application.New functionality can be introduced without distributing updated malware binaries.Detection becomes more difficult because core malicious logic resides outside the installed application. This architecture gives attackers exceptional flexibility and allows rapid adaptation to defensive measures. Multiple Variants Signal Active Development Researchers have identified three known FlutterShell variants: PodcastsLounge, PDF-Brain, and PDF-Ninja. Analysis of the attackers' infrastructure revealed incomplete JavaScript functions and unfinished code components, suggesting that development is ongoing. Several variants, particularly PDF-Brain and PDF-Ninja, incorporate artificial intelligence-powered document summarization features. However, documents submitted for summarization are first routed through attacker-controlled servers before processing, creating significant privacy and security concerns for affected users. Strong Technical Links to Earlier Campaigns FlutterShell shares notable similarities with earlier malware families linked to CL-CRI-1089, particularly Calendaromatic and Recipe Lister. The most obvious overlap is the shared WebView-based architecture, which enables dynamic modification of malicious payloads after deployment. Investigators also observed that Advantage Web Marketing LLC not only participated in distributing malicious advertisements but also acted as the signing entity for Windows-based adware samples associated with the same threat cluster. These findings further strengthen the connections between the various campaigns. A Persistent and Escalating Threat Landscape The transition from JSCoreRunner to FlutterShell demonstrates a substantial increase in technical sophistication by CL-CRI-1089. The combination of advanced malware development, large-scale malvertising operations, and the use of verified shell companies to bypass advertising platform controls highlights the growing effectiveness of the group's tactics. The coordinated use of multiple front organizations, together with the rapid emergence of new FlutterShell variants, suggests that Operation FlutterBridge remains an active and evolving threat. Security researchers warn that the campaign is far from over and is likely to continue adapting its techniques to target macOS users worldwide.

Free 4-Months Amazon Music Unlimited This article contains Amazon affiliate links. Update: This offer is available again. YMMV. As part of the upcoming Prime Day, Amazon has launched a promotion that can get you free 4-months of Amazon Music Unlimited. Here’s how it works: Free 4-Months Amazon Music Unlimited for Prime Members Renews at $10.99/month afterwards until cancelled Individual customers who subscribe to Amazon Music Unlimited can upgrade to a Family Plan with no extra cost for two months. Free 3-Months Amazon Music Unlimited for non-Prime Members Renews at $11.99/month afterwards until cancelled Important Terms This offer of a monthly Amazon Music Unlimited Individual Plan is a limited time offer, available only to new subscribers to Amazon Music Unlimited. After the promotional trial, your subscription will automatically continue at $11.99/month ($10.99/month for Prime customers) plus applicable tax until you cancel. This offer cannot be combined with any other offer. Offer limited to one per customer and account. Disclaimer: As an Amazon Associate I earn from qualifying purchases made through this article. Using links on the site for Amazon purchases is the best way you can support the site as you normally can't earn cash back for these purchases. But, you should still check shopping portals such as Rakuten, TopCashback, RebatesMe, ShopBack and others for possible cashback. Your support is always greatly appreciated! The post Amazon Prime Members: Get Free 4-Months Amazon Music Unlimited appeared first on Danny the Deal Guru.

American Airlines Suspends Six Domestic Routes As Jet Fuel Prices Remain High International Business Times

ECR extends IndyCar contract with Christian Rasmussen Motorsport Week

StarCraft 2 BALANCE PATCH 2026 Day 2 - The biggest (proposed on PTR) SC2 patch of all time, effecting Terran, Zerg & Protoss. Less starting workers, Warpgate removed*, infestor attack and so much more. We break down the details and implications. Notes: https://news.blizzard.com/en-us/article/24276667/starcraft-ii-5-0-16-ptr-patch-notesWinter's Review Video: https://youtu.be/q08kqd2fK18More Content @WintergamingTV Main Channel @WinterStarcraft Patreon: https://www.patreon.com/wintergamingDiscord: https://www.discord.gg/wintergamingStarcraft 2 is a Science Fiction Real Time Strategy & Tactics game by Blizzard Entertainment. Download and play free at https://www.starcraft2.com --Winterstarcraft, Starcraft 2 2025, SC2 2026#Starcraft2 #SC2 #RTS

Delta Amex Cards Add New Benefits, Launch Elevated Bonuses Today, American Express and Delta Air Lines announced refreshed designs for Delta SkyMiles® American Express Card Members, as well as limited-time welcome offers for new Card Members. There’s also a new rideshare credit for Delta SkyMiles Gold and Gold Business Card Members, in addition to Delta SkyMiles Gold, Platinum, and Reserve Consumer and Business Card Members receiving a complimentary second checked bag on U.S. domestic Delta-operated flights. What’s New 2nd Checked Bag Free: Basic Delta SkyMiles Gold, Platinum, and Reserve Consumer and Business Card Members will receive a complimentary second checked bag on U.S. domestic Delta-operated flights Rideshare Credit for Delta Gold Card Members: Enrolled Delta SkyMiles Gold and Gold Business Card Members will gain access to a new $120 annual rideshare credit only after Card renewal, with up to $10 in monthly statement credits on eligible U.S. rideshare purchases with select providers. 30 Years of Partnership: This update marks 30 years of partnership between Delta and American Express, and is complemented by refreshed Card designs across the portfolio, including a new Slate Grey color for Reserve and Reserve Business Cards. Elevated Welcome Bonuses Beginning today, new Delta SkyMiles American Express Card Members can earn additional miles through limited-time offers when they apply and are approved by July 15, 2026. These same offers are also available through referral links. You can share your referrals in our Facebook Group. Delta SkyMiles Gold New Delta SkyMiles Gold American Express Card Members can earn 70,000 bonus miles after spending $3,000 in purchases on their Card in the first six months of Card Membership. Plus an additional 20,000 bonus miles after spending an additional $2,000 in purchases on their Card in the first six months of Card Membership. $0 intro annual fee for the first year, then $150. OFFER LINK Delta SkyMiles Platinum New Delta SkyMiles Platinum American Express Card Members can earn 80,000 bonus miles after spending $4,000 in purchases on their Card in the first six months of Card Membership. Plus an additional 20,000 bonus miles after spending an additional $2,000 in purchases on their Card in the first six months of Card Membership. Annual Fee: $350 OFFER LINK Delta SkyMiles Reserve New Delta SkyMiles Reserve American Express Card Members can earn 100,000 bonus miles after spending $6,000 in purchases on their Card in the first six months of Card Membership. Plus an additional 25,000 bonus miles after spending an additional $3,000 in purchases on their Card in the first six months of Card Membership. Annual Fee: $650 OFFER LINK Delta SkyMiles Gold Business New Delta SkyMiles Gold Business American Express Card Members can earn 90,000 bonus miles after spending $6,000 in purchases on their Card in the first six months of Card Membership. $0 intro annual fee for the first year, then $150. OFFER LINK Delta SkyMiles Platinum Business New Delta SkyMiles Platinum Business American Express Card Members can earn 100,000 bonus miles after spending $8,000 in purchases on their Card in the first six months of Card Membership. Annual Fee: $350 OFFER LINK Delta SkyMiles Reserve Business New Delta SkyMiles Reserve Business American Express Card Members can earn 125,000 bonus miles after spending $15,000 in purchases on their Card in the first six months of Card Membership. Annual Fee: $650 OFFER LINK The post Delta SkyMiles Cards Get 2nd Free Checked Bag, Updated Design and Up to 125K Bonuses, Plus New Credit for Delta Gold appeared first on Danny the Deal Guru.

East Charlotte residents call for 150-day moratorium on data center construction Yahoo

High fuel prices force American Airlines to cancel August, September flights KSHB 41 Kansas City

The cafeteria staff at Ridgetop Elementary has worked together for more than 15 years, getting to know the teachers and seeing kids pass through their lunch line. Next year, they will be at different campuses because of the district's school closures.

Man charged in fatal DUI crash that killed tollway worker fixing potholes on I-294 Chicago Sun-Times

CHARLESTON COUNTY, S.C. (WCBD) - A former Charleston County Sheriff's Office deputy received several charges Thursday after an incident at the Al Cannon Detention Center on Monday. On Monday, deputies say a surveillance video showed now-former Detention Deputy Karmen Robinson entering a storage unit with a male inmate. Shortly after, two different inmates lost consciousness, [...]

Following a fatal fire at Flourish Stay B&B in Malviya Nagar that killed 21, another property linked to the owner has been discovered, revealing a labyrinthine basement with cramped rooms, extensive wooden panelling, and severe fire safety concerns, including lack of ventilation and unauthorised construction.

The Austin Police Department said Chief Wayne Sneed was transported to a local hospital with non-life-threatening injuries.

Why I Track Award Flights Even After I Book Them Upgraded Points

The St. Paul City Attorney’s Office has declined to bring criminal charges against anti-ICE protesters who disrupted a Sunday service at Cities Church in January during Operation Metro Surge.City Attorney Irene Kao announced Tuesday that her office conducted a thorough review of evidence submitted by law enforcement in the Jan. 18 incident, described by federal officials as an "attack" on a house of worship, and determined that there's not enough probable to support any charges at the state level."Following a careful evaluation of the video footage, investigative reports, and other available materials, prosecutors determined that the current evidence is insufficient to meet that standard for criminal charges under Minnesota state statutes," reads a statement from Kao.Nearly 40 people are facing federal charges for their involvement in the demonstration, whose goal was to call attention to a Cities Church pastor, David Easterwood, who doubles as the director of ICE's field office in St. Paul.Among them are journalists Don Lemon and Georgia Fort, both of whom have maintained they were doing their job of covering the news, and prominent Twin Cities activist Nekima Levy Armstrong. Google Streetview Kao added that her office's decision not to file state charges against the Cities Church protesters "should not be interpreted as an endorsement of unlawful behavior or public disorder.""The right to peacefully protest is protected, as is the right to exercise one’s religious beliefs," she said in her statement. "Balancing these equally important rights is paramount to our decision today. "However, acts of violence, property destruction, or threats to public safety – none of which occurred here – remain serious concerns and will be prosecuted when supported by admissible evidence."Bring Me The News has reached out to Cities Church for its reaction to the recent decision by the St. Paul City Attorney’s Office.The demonstration made national headlines in January, at the height of Operation Metro Surge, in between the killings of Renee Good and Alex Pretti by federal immigration agents.No federal charges have been filed against the agents responsible in either shooting death, but Minnesota prosecutors continue to build cases against them and others, with state charges brought upon two agents in separate incidents so far.

Juan Gonzáles, an education professor who was involved in funding and installing the statue, said it appears the university did not seek input from students or staff before removing the statue.

A 17-year-old JEE aspirant, Aryan Ojha, was found dead by suicide in his Kota hostel room, marking the sixth such incident in the coaching hub this year. Police are investigating the case, and no suicide note was found.

American Airlines temporarily suspends some of its summer routes due to steep jet fuel costs Times West Virginian