Sweden's FRA laconically acknowledges that the country sustained a number of cyber attacks from foreign intelligence services during 2013.
It's difficult to find a good word to say about cyber fraudsters, but here at least one might say the criminal ecosystem is a relatively healthy one, with predators culling the right prey: cyber stalkers are found particularly vulnerable to cyber fraud (at least so says Bitdefender).
The Target point-of-sale breach highlights a common problem: large volumes of data accessible to a single user (or process).
Guccifer (Romanian intelligence still hot on his heels) took an obvious approach to cracking celebrity security questions: names of pets, high schools, etc. are freely available on Wikipedia and elsewhere.
The World-of-Warcraft hack is interesting in defeating two-factor authentication, puzzling in that such skill would be deployed to so little purpose.
Zeus is back in the news, targeting 64-bit systems and smaller banks (lucrative in themselves, more so as gateways to bigger partners) and also using more sophisticated evasion techniques.
Two takedowns remain success stories: ZeroAccess seems gone, and a successor to BlackHole is proving difficult to find. Redkit, on the other hand, may have returned in an enhanced version.
Industry observers continue to publish trend stories. One, in ;login;logout's "This World of Ours," is a sensible (and funny) appreciation of how security professionals communicate.
In industry news, analysts look at FireEye and Palo Alto acquisitions and think they see an opportunity not seized: counter-surveillance. BAE preps a major push into the US cyber market.