Belgian media group Rossel (publishers of Le Soir) was hit with a cyber attack at week's end. No attribution, but Deutsche Welle does note this is the second attack on a major francophone media outlet this month. The first attack, of course, was against TV5Monde, and ISIS sympathizers claimed that hack. Other ISIS sympathizers have recently been active against Walloon government sites in Belgium.
The TV5Monde hack seems to have spooked observers out of proportion to its actual effects. Media outlets in both the UK and US, from both ends of the ideological spectrum, speculate that the incident is a leading indicator of Caliphate intent and capability of hitting ("destroying") key infrastructure. Disruption of the Hobart (Tasmania) Airport site over the weekend (service now restored) was also claimed on behalf of ISIS. As usual, such hacktivism seems inspired rather than centrally directed. Twitter takes ISIS connections seriously: last week the social media company took down some 10 thousand ISIS-sympathizing accounts.
FireEye reports another major, long-running Chinese cyber espionage operation: "APT30" has been operating since 2005 without major changes to its tactics or techniques. Its targets have mostly been in South and Southeast Asia.
Another Chinese operation, the "Great Cannon," is scrutinized for its role in the GitHub DDoS attack and its general utility for censorship.
Observers discuss burgeoning international cyber tensions as Russia flexes its (doubtless shirtless) virtual muscles at the United States.
But international cooperation remains possible: governments and corporations sinkholed the Simda pay-per-install criminal botnet over the weekend.