A timely reminder that jihadist cyber threats aren't confined to the Levant arrived from India over the weekend, where that country's National Investigation Agency claims to have turned up evidence that the "Indian Mujahideen" (said to be controlling cells in India and Nepal from safe houses in Karachi, Pakistan) are using frequently changed open-source encryption tools in their communications.
Middle Eastern intelligence services continue monitoring ISIS chatter and begin an information counteroffensive.
Shellshock remains a problem, with signs emerging that "Shellshock-like" bugs may affect hitherto immune Windows systems.
Analysts continue to digest JPMorgan's recently disclosed breach details, and they don't like what they see: possible evidence that the financial system is more vulnerable to cyber attack than previously feared. MPs in the UK undertake an inquiry into British financial institutions' cyber exposure. New York State's financial regulators will meet with banks this week to urge better collaborative defense, and to begin a discussion of whether the cyber threat should be considered "as fundamental to institutions as capital levels." (The Illinois Attorney General has opened a less friendly investigation into the JPMorgan incident.)
Recent breaches have given cyber security stocks a strong tailwind, and are also propelling cyber insurance forward. (Lloyd's of London has a new offering, developed in collaboration with US ex-DHS Secretary Ridge.) But observers caution buyers to read the fine print carefully, and note the difficulty of assessing value-at-risk.
HP and Exelis both announce plans to break themselves in two. MasterCard announces a new pay card security tool.