Anonymous claims to have taken down Interpol's Indonesia site.
The weekend attack on Buffer is now at least partially explained: a major security breach has been found at MongoHQ, the NoSQL database hosting service. An internal support application, open to the Internet and unprotected by a VPN, was compromised via an employee's use of a password shared with a private account. Buffer won't pass all the blame to MongoHQ, acknowledging that had Buffer encrypted its tokens, the damage would have been much less.
In an update on this month's breach, Adobe reports that Photoshop source code was stolen. The breach affected some 38 million users, and a file holding 150 million usernames and hashed passwords has been seen on the Internet.
A new mass injection campaign, "GWload," has infected some 40 thousand Web pages worldwide. Victims visiting the sites are induced to download unwanted software.
About ten thousand items in Apple's AppStore have been shown potentially vulnerable to redirection attacks.
Trend Micro releases an interesting vade mecum for the Chinese cyber criminal underground.
In industry news, Dell is now private. BlackBerry shops its pieces to Facebook.
Trend Micro offers advice on defense against Cryptolocker. Dark Reading mulls the risk of "shelfware."
As the US President and Congress woof about reining in NSA, DNI Clapper and Director NSA Alexander testify that (1) electronic surveillance of allies is internationally normal, and (2) European governments feed the US their own domestic surveillance product. Transatlantic embarrassment suggests Clapper and Alexander are on to something.