Threat indicators are invaluable, if you cultivate an awareness of them. Kaspersky and Alien Vault describe Red October's indicators in what amounts to a timely case study.
Pittsburgh's Citizens Bank is the latest victim of a denial-of-service attack. The attack is so far unattributed, but an unrelated note in the Cyberwarzone points out that the Izz ad-Din al Qassam Cyber Fighters remain up and active on Pastebin. Krebs notes that large financial institutions are being "leveraged" to exploit smaller, more vulnerable regional banks and credit unions. The Motley Fool gives voice to small independent investors' views of banking cyber security: in short, it's the banks' fault if they're successfully attacked.
Anonymous continues its campaign to avenge Aaron Swartz, hitting the US Sentencing Commission Website. (Anonymous may also be commemorating Atari as it heads into bankruptcy: some of its webpage defacements are an homage to "Asteroids.")
Website security is a problem not only for the US Department of Justice, but apparently for serious security firms as well. A researcher shows Kaspersky, Panda, and AVG vulnerable to DOM-based cross-site scripting (XSS), showing how difficult it can be to secure a complex Website.
Facebook's Graph search proves even more invasive than first thought. Workforce culture impedes infrastructure security. New Zealanders are warned to be very afraid of their smartphones.
Government commitment to open source may be more aspirational than real. The US Department of Defense expands its cyber capabilities (especially offensive capabilities). Fujitsu designs a smartphone platform for secure BYOD operations.