Israeli officials said yesterday that the country's electrical grid came under cyber attack this week. Energy Minister Steinitz called the attack "severe," but said it was being successfully mitigated. Electrical power seems not to have been disrupted; efforts at defense continue. There's no public attribution.
Nothing new from Anonymous in its war against ISIS (now in its third month). But the hacktivist collective does punish Costa Rico's Foreign Ministry over complicity in objectionable (to Anonymous) free trade agreements. LulzSec adherents join in the action.
Palo Alto Networks describes a new campaign by the Chinese ATP group Codoso. Best known for compromising a portion of Forbes's website, Codoso appears engaged in espionage against targets in the telecommunications, tech, legal services, education, and manufacturing sectors. This time it appears to be going after servers.
China's People's Daily offers some insight into current PLA thinking on cyber deterrence. Much reflects familiar deterrence theory, but there's also considerable sentiment in favor of tactics (aggressive reconnaissance and battlespace preparation) Western intelligence services regard as highly destabilizing.
Symantec reports a different campaign, affecting some 3500 servers worldwide, involving injection code attacks that appears to represent reconnaissance and battlespace preparation for some future, more damaging attack.
Core Security reports vulnerabilities in Lenovo's ShareIT product, which Lenovo's now patched.
Belgian's Crelan bank reports losing €70 million in a business email compromise.
US fast food chain Wendy's investigates a possible paycard breach.
France moves to gain investigative access to data in foreign servers, advises European partners to do likewise.