Russian cyber intelligence crew Pawn Storm's targets are revealed, near-abroad, foreign, and domestic: Ukraine, the United States, and Pussy Riot.
The expanding IRS breach prompts Mashable to survey recent US Government compromises.
Trend Micro finds another vulnerability in Android's media processing service — the Audio Effect feature is the source of the problem.
ICS-CERT identifies SCADA zero-days. The affected systems include ones produced by Moxa, Prisma, KACO, Rockwell Automation, Schneider Electric, and Siemens.
Damballa looks into the identity and operations of Detoxransome, the "hacker" (quotation marks of contempt by Damballa) who claimed responsibility for the Bitdefender attack. They assess him as a long-time, low-grade participant in the criminal market. His skills they reckon at script-kiddie levels.
"Impact Team," scourge of Avid Life Media, apparently makes good on its threat to post Ashley Madison credentials, but does so on the dark web. Early inspection of stolen files suggests they're genuine, and they've prompted much discussion in 8Chan and elsewhere. But caveat lector: Avid Life didn't verify email addresses during registration, so it's entirely possible that people who never visited Ashley Madison will turn up in the data dump.
Adobe patches LiveCycle data services. Analysts review yesterday's out-of-band Windows patch.
After selling its Veritas unit, Symantec buys Blackfin Security and Hacker Academy.
Law firms and government agencies find e-discovery services increasingly enmeshed with cyber security.
Wired takes a look at pending CISA legislation and finds it more mandatory than voluntary.
A Chinese cybercrime sweep strikes many as more censorship than law enforcement.