The Syrian Electronic Army succeeded in redirecting Reuters traffic to one of its own sites. The SEA accomplished this through an indirect approach, compromising Taboola's recommended content widget embedded in Reuters' pages. Taboola confirms the compromise, but offers no comment so far on the SEA's claim to have also accessed Taboola's PayPal account.
The incident highlights, again, the risk of attacks via third-party vendors and partners. Target, one recalls, was compromised via an HVAC contractor, and other reports warn that advertising agencies have become attractive targets of espionage services looking for the agencies' clients' intellectual property.
Not much news on last week's threatened OpPetrol (which suggests an Anonymous hacktivist fizzle). The Scotsman, however, warns of the economic consequences of attacks on offshore oil production. Vietnam's Ministry of Natural Resources and Environment (MONRE) has sustained a targeted cyber espionage campaign. Since Vietnam is one of the countries embroiled with China in territorial disputes over resource rights in the South China Sea, a short list of suspects is relatively easily developed.
The Code Spaces post mortem continues. Remember that it wasn't denial-of-service that killed the business: DDoS was the extortion threat; compromised logins and data destruction were the kill shot.
The US hedge fund that was recently attacked remains unidentified, but the attackers' motives are growing clearer: theft of traders' tools to enable front-running trades.
US tech firms continue to face NSA-related headwinds in international markets. Anonymity-promising services like ProtonMail draw many ready customers.
The Breakthrough Prize Foundation awards five mathematicians $15M.