ISIS territory continues to shrink, and its opponents turn to information operations against the Caliphate's coming diaspora. Various Anonymous affiliated hackers have been after ISIS for some time; it's unclear, says Motherboard, with what effect.
Analysts have now sifted through the Shadow Brokers' trickortreat data dump and find it mostly old news—the servers listed apparently weren't in Equation Group use after 2010. The Shadow Brokers are still grumping about the wealthy elites, US elections, and people not bidding on the exploits being auctioned.
Microsoft says the Windows zero-day Google publicly disclosed this week is being actively exploited by APT28, the Russian threat actor also known as Fancy Bear, a GRU operation best known for recent incursions into US political organizations. (Britain's MI5 is also raising an alarm about Russian intelligence services' growing activity in cyberspace.) Microsoft is upset with Google over the disclosure, which Redmond says has needlessly exposed Windows users to attack. A patch won't be available until next week at the earliest.
Terbium has a report on the sinister-sounding dark web, which became famous in the popular mind during the Silk Road prosecutions. But while there's certainly bad stuff going on there, most of the activity on the dark web is perfectly innocent, or at the very least legal: it's just the Tor accessibility that makes the dark web dark.
A bogus Android Flash player is a vector for an unusually capable banking Trojan.
NIST has released CyberSeek, an online tool showing where the sector's jobs are.