Anonymous threatens to attack corporate sponsors of the World Cup, aiming, those who purport to speak for it, to protest the disparity between corporate largesse showered on the games and shortfalls in Brazilian social services. (Coincidentally and predictably, there's also a rising wave of fùtbol-related scam traffic. It's unfair to attribute all or even most scams to hacktivism, but crime tends to track activist concerns.) Brazil's Ministry of External Relations was also hit last week by phishing of unclear source and intent.
Recorded Future discerns the spoor of a familiar Iranian crew—Parastoo—in the intelligence campaign recently uncovered by iSight.
Security researchers continue to discuss the state of TrueCrypt—down, for whatever reason. Cyveillance warns of suspicious binaries on the new TrueCrypt site. The crowd-funded TrueCrypt audit continues, and ComputerWorld offers a useful beginner's guide to TrueCrypt alternative BitLocker.
MITRE researchers demonstrate that the Unified Extensible Firmware Interface's Secure Boot security mechanism could be bypassed to brick about half the machines using Secure Boot.
Adobe patches disclosure and denial-of-service bugs in tomcat. The All in One SEO Pack for WordPress is vulnerable and being exploited in the wild: users are advised to update the plugin.
Reports on the state of cyber security suggest again that attackers continue to operate inside defenders' decision loops, in part because of the black market's role as de facto crowdsourced R&D establishment.
NIST wants comments on its SHA-3 Standard.
US indictments of PLA officers spur calls for a cyberwar convention.
Snowden's recent interview earns him poor reviews.