Some banking Trojan reports surface on this slow news day. Dr. Web warns that "BackDoor.Caphaw" variants are being distributed via Skype. Trend Micro tracks "Ice IV" to servers in Nigeria. HSBC customers are targeted by spam that joins their devices to a botnet.
CSIS (the Danish security firm, not the Washington think tank) reports on a recently discovered exploit kit, "Atrax," that offers both Tor connectivity and Bitcoin extraction.
Cylance finds (and names) a successful, relatively stealthy cyber-espionage platform: "Grand Theft Auto Panda." So far it's targeting mostly Asian automotive companies, but was released against its principal targets only after testing against activist groups. This staging, and its exploitation of CVE-2012-0158, suggests a nation-state operation (probably, to be frank, Chinese).
White hats warn of public Wi-Fi hazards and Healthcare.gov security issues.
Cyber historians will read with interest eSecurity Planet's account of "Rain Forrest Puppy's" discovery of the first SQL injection attack.
Buffer, learning from its experience in the MongoHQ hack, adds two-step login to its social media scheduling service.
The US and Chinese governments remain at loggerheads over cyber-espionage, but their respective stalking horses, Cisco and Huawei, seem to be working toward a modus vivendi.
Two-person control, familiar from Cold War nuclear systems, gains traction as a cyber security method. Chinese activists circumvent the Great Firewall with cloud mirrors.
Brazil and Argentina push regional Internet security plans. While not strictly autarchic, the proposed measures will almost surely depress commerce.
Apparently several countries other than the US pwned Chancellor Merkel's phone.