In separate actions Anonymous and associated hacktivists go after the governments of Vietnam and the Philippines, the former targeted in support of repressed dissidents, the latter because Anonymous is angry over slow Internet speeds.
Chinese intelligence services are said to have used data gleaned from the OPM breach to compromise US defense contractors and steal technical secrets. Observers wonder about the "lingering" and "ripple" effect of OPM's loss of 22 million people's records. (To achieve clarity about those ripples, note that an SF-86 questionnaire contains information not only about the applicant, but also about the applicant's family and associates, so 22 million is probably an order of magnitude low.)
Such cyber capers and tensions will be highlighted in the upcoming Sino-American summit. Both sides appear to be pulling in their horns, pre-talks, as security companies see Chinese operations slackening (the ministry for the governance of barbarians having apparently decided on a lighter hand, for now) and a pause in US progress toward sanctions (the sheriff not yet giving the posse the word to ride). Observers see an inflection point: either cyberwar or détente. The smart money's on détente, but it's been wrong before.
Apple purges the iStore, as compromised developers appear to have inadvertently introduced XCodeGhost malware into popular apps.
Private D-Link software keys appear to have been found in D-Link's open-source firmware.
Krebs has an interesting rundown of Verizon's post-mortem on the 2013 Target breach: once in, there seemed to be little to impede hackers' progress through point-of-sale systems.