The G20 summit convenes in Brisbane next week. If you bet on form, you'll take seriously Australian Signals Directorate cautions that the conference will draw much hacktivism and cyber espionage.
US officials sound unusually specific warnings about a Russian cyber threat to critical infrastructure, particularly utility ICS. The Sandworm team's repurposing of BlackEnergy is one aspect of the threat. TrendMicro sees recent developments as a "troubling" escalation of international tension in cyberspace.
Industry experts approach attribution of Operation Huyao phishing — it's from China, but whether it's run by criminals or intelligence organs (or some mix of both) remains unclear.
WireLurker Mac malware's command-and-control servers have been shut down. AlienVault has informed Palo Alto (which led WireLurker analysis) that earlier versions of the malware appear to have targeted Windows systems.
In separate incidents, hacktivists count coup in Mexico and Bangladesh.
Google notes that dangerous and persistent targeted malicious campaigns use skilled human operators rather than bots.
An unfortunate lesson from the JP Morgan hack: corporate social responsibility increases your attack surface, so by all means do good, but do so as securely as you do business.
Accuvant and FishNet Security announce their merger.
UK intelligence services are reported to have a cyber eye on lawyers arguing security cases.
In what Wired describes as "a scorched-earth purge of the Internet underground," Europol and the FBI sweep up hundreds of dark web sites and their operators. The police call the action "Operation Onymous," and it's taken down lots more than SilkRoad v2.