Sino-American cyber relations approach overt cold war (Euro News calls it "WWIII on the WWW") as the US Administration demands that China halt theft of trade secrets. Chinese officials reiterate their tu quoque accusations of American cyber espionage. The FBI investigates a whistleblower's charges that NASA data were improperly revealed to Chinese officials.
Hewlett-Packard warns that some printers are vulnerable to remote exploitation. Kaspersky finds that MiniDuke is carried by Java and HTML vectors as well as infected pdfs. A Russian site hosts personal details of political and entertainment celebrities.
Last month's cross-platform malware that infected Twitter, Apple, Facebook, and Microsoft has turned out to be curiously discriminating. Not every machine that should have been infected at the waterhole was, which leads researchers to conclude that the malware was looking for some very specific (and still unknown) targets.
It's Patch Tuesday: expect seven fixes (four critical) from Redmond later today. Metaspoit adds a module for the recently patched Honeywell ICS vulnerability.
Dark Reading discerns a new vulnerability: "non-malicious insiders," people with more privileges than security savvy.
Tripwire announces its acquisition of nCircle. Cyber labor shortages continue to be felt across the sector, and the National Board of Information Security Examiners and the US Pacific Northwest National Laboratory seek to help by mapping skills to responsibilities.
Government and industry leaders will gather in Silicon Valley for SINET's ITSEF conference, March 19-20, to discuss cyber innovation and entrepreneurship. As we did for RSA, the CyberWire will provide special coverage of this event.