Daesh/ISIS issues new instructions to its followers over Telegram, warning of a tougher fight to come and offering nervous advice (sounding almost like a chamber of commerce during October) about how to stay safe online. Daesh online activity is expected to continue to focus on information operations. Spanish police arrest two Daesh recruiters, and US prosecutors proceed against an Ohio man tweeting jihadist death threats.
Citizen Lab reports on "Packrat," a cyber threat actor Citizen Lab says has targeted South American journalists for several years. As its name suggests, the actor makes much use of RATs (remote-access Trojans). Observers speculate that Packrat is state-sponsored.
Trend Micro warns that the Independent's blog has been compromised to serve visitors TeslaCrypt ransomware.
The criminal black market continues growth and maturation.
Yesterday was Patch Tuesday, with security updates from Adobe (for Flash Player), Apple (for iOS, tvOS, OS X, watchOS, Safari, and Xcode), Google (for Android and Chrome), and Microsoft (for Windows, IE, Edge, Silverlight, Skype for Business, Microsoft Lync, .NET Framework, and Office). Microsoft rates eight of its seventy-one (71!) patches "critical." Of Google's nineteen Android fixes (actually pushed out Monday), four address "critical" issues.
As the US encryption debate unfolds, some see Kazakhstan's new law requiring backdoors as an international precedent.
Wired thinks it's found hemi-semi-demi-mythical Bitcoin creator "Satoshi Nakamoto": he is, says Wired, an Australian named Craig Steven Wright. Hours after Wired publishes its profile (much disputed since in Twitter and elsewhere) Australian police raid Wright's home on a tax beef.