French authorities urge media vigilance as the investigation into the TV5Monde hack continues. This is more a francophone story than a narrowly French one: TV5Monde serves French-speaking Europe and Canada, too. The scare-quotes Deutsche Welle puts around "IS" suggest the difficulty of attributing hacktivism: sympathizers often act without direction, and the Islamic State's claim to statehood is in itself shaky. Ars Technica observes a password-bearing sticky note in the background during a TV5Monde interview, which suggests a low-tech entry into the network's network was possible.
Recorded Future is seeing an uptick in anti-ISIS cyber vigilantism. It's clustered around #OpAntiISIS.
Krebs warns against China's "Great Cannon" — a program that diverts unencrypted web traffic for diversion into denial-of-service campaigns like the one that clogged GitHub a week ago.
Banking Trojans circulate around the Dyre Wolf gang.
Cyphort finds online fora compromised to serve up the Fiesta exploit kit.
White Lodging warns of a point-of-sale infection at Sheraton and Marriott hotels. Cylance offers more bad news for travellers: hotel Wi-Fi is even worse than you probably suspected.
Level 3 Communication and Cisco cooperate to slow down SSHPsychos (a.k.a. Group 93) responsible for SSH brute-force attacks.
Securities market regulators in both India and New York State tell financial institutions to up their cyber security game or face regulatory help. The New Yorkers are particularly concerned about third-party risks.
An international operation led by Dutch police with the cooperation of Europol and the FBI sinkhole the Beebone polymorphic botnet (the AAEH of US-CERT's recent warning).