Researchers describe why they think China's behind the attack on Australia's BoM, and why Chinese criminals appear to be targeting journalists.
More on the drive-by ransomware infections Heimdal reported early this week — Ars Technica notes that the campaign first installs "Pony," then a "cocktail" of malware that harvests credentials before encrypting files.
"Chimera" is another entry into the ransomware field. Observers see it as a disturbing bellwether of the growing market for ransomware-as-a-service.
Ransomware's not the only badness on offer in the black market. InfoArmor reports finding some new point-of-sale malware, "Pro POS," actively being hawked to criminals.
We've seen Conficker return. Fox-IT reports the reemergence of another old standby, the Ponmocup botnet.
Trend Micro warns that many high-profile mobile apps remain susceptible to vulnerabilities actually fixed as far back as 2012.
Researchers associated with SCADA Strange Love find vulnerabilities in widely used 3G and 4G cellular USB modems and routers.
In some good news, another old-timer is sinkholed. CERT-Polska, with big assists from ESET and Microsoft, takes down the Dorkbot botnet. (US and Canadian law enforcement also provided support.)
Toymaker Vtech hires Mandiant to sort out its security issues. Mattel deals with its own problem: Bluebox Security describes IoT security tangles in "Hello Barbie."
OpenSSL and Blackberry issue patches.
ZeroFOX attracts venture capital.
CyberPoint earns a patent for "Similarity Search and Malware Prioritization."
The insurance sector prepares for a bigger role in setting cyber standards of care.
Investigation of San Bernardino shootings suggests online, jihadist, inspiration of the shooters.