Several updates on China's infiltration of dissidents' sites and devices — essentially the government is conducting a man-in-the-middle campaign.
US office supply retailer Staples has suffered a data breach, has reported it to law enforcement, and is investigating. Banks noticed a pattern of credit card fraud and determined that the common factor was purchases at Staples stores in the US states of New York, New Jersey, and Pennsylvania.
Tiger Security believes it sees a large distributed denial-of-service campaign (probably criminal in origin and motive) originating from China. The Italian security firm has named it "Distributed Dragon." (Bitdefender thinks DDoS has become an increasingly fashionable criminal tool, "the new black.")
The FBI now believes this summer's attack on JPMorgan Chase was a criminal operation, not direct Russian government retaliation against nations sanctioning it for its incursions into Ukraine. That said, the criminals' motive remains unclear, as the expected markers — patterns of fraud, sale of card data on black markets — have yet to appear.
Apple customers, however much they feel their privacy may be enhanced by recent encryption upgrades, are unsettled by the amount of information OS X Yosemite is reporting back to Cupertino.
US and European officials warn of heightened risks to financial transactions. The recent US Executive Order on financial security represents an attempt to get the Government to "lead by example." SIFMA offers some terse, cogent advice on how policy might help financial sector cyber security.
Thoughts, inter alia, on ISIS vulnerability to information operations, from War on the Rocks.