Australian official sources confirm what's long been generally believed: malware found in the Bureau of Meteorology was installed in December 2015 by an unnamed foreign intelligence service. Its intent seems to have been to pivot and establish persistence in other government networks.
France's TV5Monde talks about its March 2016 hack—apparently Russian, but flying a Caliphate false flag.
The SWIFT funds-transfer system is again under attack, this time by Carbanak's masters or someone very much like them: the "Odinaff" Trojan has been seen manipulating SWIFT logs.
Yesterday was Patch Tuesday. Microsoft addressed five zero-days in Internet Explorer, Edge, Windows and Office. This was also the first round of patching under Microsoft's new Hobson's choice patching policy. Adobe issued 81 fixes to Acrobat, Reader, and Flash.
Foreign Policy recounts the difficult-to-follow spoor of the possible Russian information operation padding around Clinton consigliere Sidney Blumenthal, WikiLeaks, and Presidential candidate Donald Trump. A Passcode op-ed thinks there's room for doubt concerning Russian responsibility for the Democratic National Committee, and that the US Intelligence Community might consider raising public confidence in its attribution by revealing more of the evidence it has. (The Moscow Times seems convinced, and in a minority view sees the episode as putting Russian President Putin in a bit of a diplomatic pickle.) US President Obama has said there will be retaliation, and he won't tell the Russians in advance what that retaliation will look like. (A raised eyebrow op-ed in Lawfare suggests the President's also not going to tell Congress.)