Palo Alto Networks updates us on Operation Lotus Blossom and its Emissary Trojan. Mostly used in espionage directed against targets in Taiwan and Hong Kong, Emissary is morphing at a faster clip these days, which suggests its controllers are working to stay ahead of tracking by threat intelligence services.
Sucuri detects an uptick in Nuclear infections among WordPress sites. The attack code redirects traffic to domains that seem to host ads, then, after this misdirection, to the Nuclear kit itself.
Comodo is working on a fix for problems in its Chromodo browser, with an update expected next week.
Skybox Security and eSentire both raise significant amounts of new funding. Cisco is buying IoT shop Jasper Technologies for a reported $1.4 billion. Apple hires LegbaCore researchers who found the OS X Thunderstrike vulnerability last year. Recently departed Norse CEO Sam Glines writes to CSO's Salted Hash blog, defending Norse's integrity and disputing recent implications of misconduct.
Crowdstrike's Global Threat Report is out. It sees an increase in nation-state cyber conflict, more criminal resort to extortion in its various forms, and an increase in hacktivism matched by greater censorship.
Russia intends to increase spending on cyber offensive capabilities (and boasts that it's got the best hackers).
Analysts think Chinese cyber espionage will soon turn to agriculture and alternative energy.
Google considers displaying anti-radicalization and counter-terrorism messages beside search results whose terms suggest sympathy for ISIS.
The EU says businesses should realize that full details of Privacy Shield won't be final until April.