Guccifer 2.0 resurfaces with an FAQ blog and lots of matey denials that he (she? they?) is a Russian sockpuppet, but few seem to be buying this story. SecureWorks sees the DNC hack as one aspect of a comprehensive espionage campaign against US targets likely to be of close interest to you-know-whom. ThreatConnect concludes Guccifer 2.0 is a denial-and-deception operation. Their evidence is admittedly circumstantial, and they consider just two possibilities (hacktivist vs. Russian organs), but their reasoning is interesting.
Researcher Chris Vickery reports that a 2014 version of Thompson-Reuters’ widely used World-Check data base of terrorist actors has leaked online. Thompson-Reuters says it’s “secured” the third-party source of the leak.
Motherboard thinks the (still unconfirmed, possibly genuine but possibly bogus) healthcare insurance data for sale on the dark web represent an attempt to “game the media” into aiding extortion. The DarkOverlord seems pleased with his promotion: “I have a reputation with this handle now. Another step accomplished. Every time I put a new listing up it gets reported without hesitation now.”
Occulus hasn’t appointed a new CEO. Their Twitter account was hacked to spread the hoax, latest in the ongoing series of tech-company hijackings.
LizardStresser is involved in assembling the large security camera botnet. The DDoS tool is expected to make further inroads into the IoT.
The Hard Rock Hotel and Casino Las Vegas and the fast-dining chain Noodles and Company both confirm they suffered data breaches.
Observers look at China’s control of its Internet and see surprising success.
A note to our readers: The CyberWire won't publish Monday as we celebrate Independence Day. We'll be back as usual on Tuesday, July 5, with both our daily news summary and our podcast.