Two significant cyber campaigns are disclosed. IBM Trusteer has detected a large, highly targeted campaign using Citadel malware against Middle Eastern petrochemical companies. Citadel, designed originally as an evasive form of financial malware, has evolved into a tool capable of use against targets in other sectors.
Bromium has announced its own discovery of a different campaign, this one a waterhole attack designed to infect viewers of a technology startup in the oil and gas sector. The waterhole was established immediately after the startup announced significant new funding; the attackers seem to have believed the news would draw high-value targets.
"Tinybanker" malware, whose source code was leaked in July, is now active against US financial institutions.
The German government is under Wikileaks-driven criticism for its alleged role in fostering or at least tolerating Gamma's development and sale of FinFisher.
Post mortems on the JPMorgan, Home Depot, and Goodwill hacks continue.
An Amazon cross-site-scripting issue is reported and quickly addressed. A Twitter vulnerability to credit card theft is similarly reported and fixed.
A new exploit kit, "Archie," is targeting Adobe and Silverlight vulnerabilities.
Android malware is found using SSL-based evasion techniques.
SANS deplores, in a more-in-sorrow, we-told-you-so mood, cyber criminals' avid purchases of space in new top-level domains (".support," ".club," etc.).
Three stories give reason to think thrice about selling old hardware: children's tablets, smartphones, even servers. They're harder to sanitize than one might think.
Apple has added two-step verification to iCloud. Adobe patches Reader.
US cyber legislation looks unlikely this year.