Two more Java 6 and 7 zero-days were being exploited in the wild late last week. Oracle will fix Java 7 soon, but observers consider a patch for Java 6 unlikely.
Evernote has been attacked, and some 50 million passwords were reset after usernames, email addresses, and encrypted passwords were stolen. Cloudflare succumbed briefly this weekend to a distributed denial-of-service attack on one of its customers.
Cyber riots affect sites in New Zealand and the Philippines. The Australian Tax Office is found to store passwords in plain text.
Dell SecureWorks' sinkholes identify more Chinese espionage. The mix, opportunistic or not, of espionage with traditional organized crime causes US authorities to puzzle over the motivation of particular attacks.
Romania thinks it knows which foreign government is behind MiniDuke, but it's playing its findings close to the chest.
Anonymous is active again in various protests, notably against the Federal prosecutor who pursued Aaron Swartz. ZDNet foresees hacktivism becoming easier, more diffuse, and more pervasive—"Anonymous has become the Hello Kitty of hacktivism"—and says that Anonymous' goals have become so broad that anyone can become a target.
US Federal budget sequestration is expected to slow payments to contractors, but also to hasten migration to the cloud as a cost-cutting measure. Cyber Command is not expected to be immune to short-term budget pain. Raytheon joins Lockheed Martin in the US Department of Homeland Security's Enhanced Cybersecurity Services stable. HP plans to lay off another 15,000 workers.
DARPA pushes advanced speech recognition research.