Israeli officials cite leaks as they say British and American agencies monitored Israeli air force communications. Other sources claim Iran targeted Israeli generals in extensive spearphishing campaigns.
Investigation of the Ukrainian power grid incidents continues to focus on BlackEnergy and its distribution through compromised Word files. As utilities in the US and elsewhere look to their defenses, control system security experts warn against over-reliance on incident response.
FinFisher spyware is discovered in some Australian data centers. Some observers think Indonesian security services may be behind the campaign.
ISIS has begun recruiting hackers in India, offering up to $10,000 for information stolen from government networks. This seems to be hacking-for-hire as opposed to an attempt to build a stable of coders and a credible cyber offensive capability.
HSBC's online customer banking sites in the UK have been disrupted by a significant distribute denial-of-service attack.
LG patches a bug (disclosed by BugSec and Cynet) in its Android phones' preloaded Smart Notice widget. The bug could be exploited for data theft.
A Cisco firmware update closes a hole in RV220W Wireless Network Security Firewall devices. OpenSSL fixes an encryption weakness involving re-use of prime numbers.
The RSA Conference announces finalists in the Innovation Sandbox competition: Bastille Networks, illusive Networks, Menlo Security, Phantom, Prevoty, ProtectWise, Skyport Systems, Vera, and Versa Networks.
In the US, NIST solicits comments on a draft random number generation standard. The FDA issues draft medical device cyber guidelines. An audit finds issues with DHS's Einstein system.
Safe Harbor renewal recedes.