Anonymous hits Turkish police sites and a Tanzanian telecom provider. Nothing new from them on the ISIS front, but ISIS itself is having cash flow problems that are tripping up its information ops narrative: you can't be a caliphate if you're not capable of ruling, and delivering basic services.
Apple says it will not comply with a court order to help the FBI unlock one of the San Bernardino shooter's iPhone 5C. Apparently Apple would be technically capable of delivering the requested assistance because it's an older phone. This wouldn't be the case if it were a later model.
ENISA reaches essentially the same conclusion on encryption backdoors the recent Harvard study did: they weaken defenses without offering a compensating payoff in improved intelligence.
Symantec warns that Dridex, the credential-stealing Trojan that afflicts bank customers, is now the most dangerous bit of financial malware.
Palo Alto Networks finds a newly virulent form of ransomware, "Locky," that spreads through malicious macros in Microsoft Office documents. (This is also the typical vector for Dridex.)
Glibc, the GNU C library implicated in last year's GHOST bug affecting Linux systems, has another critical flaw. A patch is out, and admins would do well to apply it as soon as possible.
Analysts look for a round of cyber-sector consolidation in 2016.
Dark Reading names "twenty startups to watch:" ZeroFOX, Twistlock, Threat Quotient, Tenable, Synack, Sentinel One, Pindrop Security, Menlo Security, Malwarebytes, LookingGlass, Illumio, HackerOne, Fireglass, Exabeam, Digital Shadows, Cynet, Cymmetria, Cybereason, Argus Cybersecurity, and Appthority.