More discussion of the apparently on-going Chinese cyber industrial espionage CrowdStrike flagged early this week. CrowdStrike tells Foreign Policy that they're not saying China's already in violation of the recently concluded Sino-American modus vivendi, because "It is not up to us to draw that conclusion." The media aren't so reticent: consensus appears to be that China's indeed in violation.
US Director of Central Intelligence Brennan has apparently had his personal email account hacked (and everyone notes that it's an AOL account). The hackers claim (speaking anonymously with reporters) that they're teenage "stoners" and pro-Palestinian slacktivists who socially engineered Verizon to give up Director Brennan's credentials. Quartz looks at a spreadsheet the stoners released (apparently safe for work, but caveat lector) and invites readers to draw their own conclusions.
ISIS is back with an onine media campaign, this one an incitement to anti-Jewish violence.
Researchers find memory leak and buffer overflow vulnerabilities in LibreSSL.
Chip-and-pin cards, as all know, are no panacea for point-of-sale security, and indeed they've been compromised in a "clever" man-in-the-middle exploit.
A malicious Chrome lookalike is circulating in the wild, as are many evolved CryptoLocker spawn.
Cyber insurance markets, immature as they remain, offer prospects of improving security standards, especially with respect to the IoT. Actuarial gaps remain an impediment to those markets' maturation: a new company, PivotPoint Risk Analytics, launches today with the promise of closing such gaps.
Thales announces its acquisition of Vormetric for some $400M. Many transatlantic hopes are expressed for Safe Harbor's revival.