ISIS continues its information operations campaign with online threats of violence.
The Local reports that TV5Monde was exposed to hacking during a months-long phishing campaign.
Pope Francis calls the Armenian genocide "genocide" and Turkish hacktivists respond by taking down a Vatican Website. (The hacktivists' motivations are probably more Kemalist than Islamist.)
CrowdStrike claims to have deterred Hurricane Panda: the Chinese hackers bugged out of a CrowdStrike-protected network after detecting CrowdStrike's presence. The deterrence in this case involved the simple economic strategy of raising the cost of a successful attack beyond what the attackers were willing to pay.
A forthcoming study of hacking economics appears to offer defenders hope: they may be more favorably positioned to buy (then fix) vulnerabilities in the zero-day market than are cyber criminals.
Cylance's Spear research team reports that new attack vectors are open to an 18-year-old Microsoft Windows Server Message Block (SMB) vulnerability. "Redirect to SMB" attacks can compromise Windows credentials. Microsoft harumphs that, well, the vulnerability's not really as bad as all that, but enterprises should consider the Cylance findings seriously.
Internet-of-Things and industrial control system security issues continue to trouble consumers and plant managers. Schneier sees the IoT as "really bad," and Weiss reminds us of how issues posed by accidents and attacks tend to converge in risk management.
Investors continue to give close attention to the security sector: stock-picks, M&A activity, and VC funding all figure in today's news.
The US blocks sale of Intel Xeon chips to China for supercomputer upgrades.