As Ukraine mobilizes and Russian provocation intensifies, Mashable speculates about a role for cyber operations in battlespace preparation (and in marshaling irregular forces).
Stanching Heartbleed continues to preoccupy enterprises. Government Security News sees a long road of discovery and recovery ahead. (One minor exploit is worth mentioning as an example of inviting Nemesis into one's life: a commenter on a newspaper site pooh-poohed Heartbleed and put his security where his mouth was by posting his passwords. He was, of course, promptly hacked.) Dell, HP, and IBM have all issued software and firmware patches.
Some analysts wonder whether OpenSSL's Heartbleed problems originate in certain kinds of open source business models (bluntly characterized as "panhandling" by ZDNet's Seltzer) and development styles (which Pro Publica's Angwin likens to a "Wikipedia volunteer project").
Insurers continue to warn the energy sector that it's got a cyber security problem. Responsibility and liability for security are being slowly sorted in retail and mobile markets.
JPMorgan announces a major investment in cyber security, committing $250M to upgrades that will include at least three SOCs.
The US Government and the aviation industry announce a major step in cyber information sharing with the formation of the Air Domain Intelligence Integration Center.
BAE will open a cyber software development hub in Malaysia.
Both the UK and Saudi Arabia are getting new intelligence leaders as Prince Bandar Bin Sultan is out at the Saudi Arabian Intelligence Agency, Robert Hannigan in at GCHQ.
Quartz offers good tips on recognizing recruitment for espionage.