Wikileaks said it sustained a denial-of-service attack (it’s now recovered) over the weekend after announcing plans to release a tranche of Turkish government documents. It has now released them, and has been duly blocked by Turkish authorities.
Brazilian security services are watching cyber threats to the Rio Olympics closely. Cybercrime and hacktivism have long been concerns, but a recent Telegram pledge of allegiance to ISIS by Ansar al-Khilafah has added a specifically jihadist threat to the mix. (Ansar al-Khilafah is small and, as the Washington Post puts it, “obscure,” but authorities are taking the threat of lone-wolf inspiration seriously.) Brazil is also receiving the DDoS attentions of Anonymous, protesting a lower court’s now-reversed order blocking WhatsApp.
ISIS has also attracted some adherents in China, as some members of that country’s Uighur minority are revealed (via doxed ISIS communications) to have signed on to the Caliphate.
In vulnerability news, enSilo warns of software code hooking issues affecting more than fifteen security products from leading vendors. enSilo promises a report at Black Hat, but they’ve posted an early version of their findings in the company’s blog.
Zscaler describes the now-patched Apple cookie bug the company discovered. Recorded Future continues its exposure of the Cknife web shell.
The SoakSoak botnet is delivering CryptXXX ransomware through compromised business WordPress sites. (The RevSlider plugin is being exploited.)
Ammy Admin remote admin software is being exploited as a vector for the Lurk and Fareit Trojans, Kaspersky reports.
Three jackpotters are collared in the Taiwan ATM heist.