The Director of the US NSA describes recent intrusions into unclassified Pentagon networks as "sophisticated" and "persistent," but also as successfully contained. Russian intelligence services are the usual suspects; observers fret that the incident represents a mild opening gambit in a soon-to-become more serious cyber conflict.
Speaking of Russia, Turla is back, and found exploiting satellite Internet connections for an affordable command-and-control network.
South Korean media outlets are afflicted with variants of the Shadow Force backdoor.
The financial sector receives the unwelcome ministrations of cyber criminal groups with quite different approaches. "DD4BC" continues its Bitcoin extortion of financial institutions, threatening denial-of-service against those who fail to pay up. The familiar Anunak/Carbanak threat group revisits banks and casinos with an evolved set of tools.
Android ransomware, resident within a malicious "adult" app, takes a user's picture and displays it in the ransom demand. The Android.Trojan.MKero.A makes a comeback, subscribing victims to unwanted premium SMS services. Bitdefender notes that the malware puts human criminals into the loop, thereby bypassing security features like CAPTCHA designed to weed out bots.
WhatsApp quickly patches vulnerabilities outside researchers found in WhatsApp Web.
Yesterday, of course, was also Microsoft's Patch Tuesday, with five "critical" and seven "important" vulnerabilities addressed.
Not-for-profits recognize fundraisers' vulnerability to cyber attack.
FireEye looks increasingly to the US Federal market as a font of profitability.
As sanctions remain under consideration, the US Justice Department is rumored to be preparing indictments of Chinese cyber operators.
John McAfee announces his candidacy for the US Presidency.