A prominent ISIS web forum administrator (he runs the Shumukh al Islam, or “Glory of Islam” site) has had his online correspondence hacked and two years of it dumped on Pastebin, Motherboard reports. The content includes recruitment information and communication with forum members. A Forcepoint researcher observes that “the myth of a highly secure jihadi underground, is exactly that: It's a myth.”
This is consistent with ISIS operations in cyberspace serving inspiration as opposed to either hacking or command-and-control of terror operations. ISIS claims it inspired the Afghan teenager who attacked train passengers in Germany with an axe, and French authorities say the Nice murderer was inspired by the Orlando massacre (information about which he collected online).
The post mortem on whatever happened last weekend in Turkey concludes the coup plotters’ central error was failure to take down the Internet. How they might actually have done so analysts leave as an exercise for their readers—it’s easier said than done.
Distributed denial-of-service attacks might be one approach to Internet jamming. The Philippine government is sustaining such a campaign this week, probably, observers think, at the hands of Chinese services striking against a rival for South China Sea territory.
Other threat actors undertake DDoS attacks against a variety of targets, Pokémon GO prominent among them.
Symantec finds banking malware in Excel macros.
A researcher demonstrates how thieves could subvert the account-recovery and 2FA options various services make available to their customers. The theft would occur by diverting calls to premium numbers.