The Organisation for Security and Cooperation in Europe disclosed yesterday that it sustained a denial-of-service attack. Neither attribution nor motive yet, but tensions among former Soviet nations seem a likely contributing cause.
Anonymous (self-identified-but-masked) representative "Che Commodore" threatens some particular World Cup sponsors, among them Budweiser, Coca Cola, Emirates Airlines, and Adidas. Che Commodore claims the recent attack on a Brazilian foreign ministry website was a test run. That particular caper involved data theft by Trojan, but observers still anticipate a denial-of-service run against the World Cup's corporate sponsors.
Cryptographic library GnuTLS patches its recently discovered remote code execution and DDoS vulnerabilities.
Cyber criminals show increasing interest in attacking new retail brands and anyone's human resource departments. They're relatively soft targets with lots of attractive information available for theft. The criminal market also sees a rise in multi-purpose attack kits. Many exploits active in the wild, it's worth noting, are familiar ones, often long patched, but if they still work against the poorly defended, black-market forces make them an irresistible bargain to criminals.
US NSA Director Rogers suggests businesses should "own" the cyber security problem—it lies at the root of their ability to operate. He also thinks there should be more information shared between government and the private sector.
Legislation to enable such sharing is advancing in the US Senate. The recent indictment of the GOZeuS boss shows the possibilities of collaboration (see, for example, Damballa's lessons learned from sinkholing CryptoLocker) but many observers fear these are ephemeral successes.