Allied strikes on ISIS (and other Islamist targets, particularly the Khorasan Group) have begun. Security analysts still look for signs of an incipient cyber threat from the targeted groups.
eBay continues to work to stanch its cross-site scripting issues, attracting much odium in the process. Observers ask whether the online auction giant tilted too far toward "seller happiness" at the expense of security.
Travel service Viator disclosed a payment card breach Friday that could affect up to 1.4M customers' data. No word on how the breach occurred.
The Home Depot breach post mortem proceeds. The chain's former security architect, journalists note, is now doing time for sabotaging his former employer. It's unclear that his alleged dodgy character had anything to do with Home Depot's point-of-sale problems, but it does pile bad news on the past week's I-told-them-so insider commentary. Forbes concludes it's only a matter of time before card issuers start squeezing retailers into better (and more expensive) security.
Google begins blocking malvertising from the compromised Zedo advertising platform — the ads had been redirecting visitors to sites pushing the "Zermot" downloader.
Regulators and policy mavens romp freely in overheated metaphors this week: we're headed for an "Armageddon-style" cyber attack (Gog and Magog left unidentified) and apparently only "re-education camps" can preserve social justice from big data (history teaches us this, sez they).
The Information Security Forum (ISF) maps the NIST Framework to ISF's best practices.
Lawyers ask if iOS8's apparent design to thwart warrants is really such a good idea.