Alleged TeaMp0isoN and Cyber Caliphate ringleader Junaid Hussain (a.k.a. "TriCk"), thought to be a leading ISIS hacker and online recruiter, is reported killed by a US drone strike in Syria.
Concerns about Tor's vulnerability to de-anonymization prompt a leading black market service, Agora, to shut down until such vulnerability is addressed.
Palo Alto, TrendLabs, Kaspersky, and SANS report on some new and some long-standing exploits and vectors: the uWarrior RAT, Gamker, Android mediaserver heap overflow exploitation, and malicious MS Office documents contained within pdfs.
The Ashley Madison hacker (avidly pursued by both the RCMP and the FBI) may be close to revelation. Krebs reports the hacker may be tweeting (a temptation harder to resist than adultery) and John McAfee is telling people to look for a female insider.
Endress+Hauser patches a buffer overflow vulnerability in their industrial control system tools. PayPal closes a cross-site scripting issue in its payment system. Google pulls a mobile app that exploited Certifi-gate.
Bellwether Netflix appears to be dumping traditional signature-based anti-virus products in favor of SentinelOne's "irregularity" sensing solution. Netflix judges this sufficient to meet compliance needs.
The US National Archives and Records Administration (NARA) tells Federal records administrators to get more involved in cyber security. The US Federal CIO calls the Government's pre-OPM-hack cyber preparation lacked "urgency," and says that the Government Accountability Office (GAO) and agency IGs will institutionalize the recent "cybersecurity sprint."
The US Department of Defense institutes mandatory breach reporting requirements for contractors (who complain the Department's moved too fast).