Several hacks (in Spain, the US, and Africa) look like hacktivism but appear on closer inspection to be mere cyber vandalism (although the African site defacements have an Islamist style and Anonymous claims the Catalonian hack).
The Mevade botnet continues to roil through its largely European targets, with businesses, organizations and governments hit indiscriminately.
F-Secure finds interesting obfuscated code leading to an exploit kit. FireEye describes Terminator RAT's evasion techniques. The old criminal standby, Blackhole, seems to be disappearing from the black market, largely replaced by Cutwail.
Security analysts think LinkedIn's new features may prove a phisher's playground. Popular IZON security cameras are found vulnerable to hacking.
Insurers take note of the rising threat to US power infrastructure.
Mozilla offers a Firefox plug-in that shows how users' browsing is monitored, by whom, and to whom the monitors are connected.
Financial sector cyber drill Quantum Dawn 2's after action report is out. NIST's draft cyber security framework attracts criticism, but, on balance, good will.
Germany and France protest US electronic surveillance. Germany and Brazil want to elevate the matter to the United Nations, and many see new international norms emerging. Such norms won't be a Stimsonian gentlemen-don't-read-other-gentlemen's-mail, stopping intelligence collection being generally understood as irresponsible, but new restraints will certainly be considered. Inter alia the US warns allies their cooperation with collection may have been compromised.)
In the US, senior voices are raised in support of splitting Cyber Command from NSA. The Department of Defense releases its cyber threat sharing guidelines.