Some news on major threat actors breaks today. Cylance reports that "Operation Dust Storm," a multi-year, complex campaign, is systematically pursuing data from "electric utility, oil and gas, finance, transportation and construction companies." The point of entry is Japan, but the companies targeted have operations or connections that extend throughout Europe, Asia, and North America. The actor looks like a nation-state, but Cylance explicitly declines to make any attribution.
The other big threat actor news comes from an industry consortium studying the so-called "Lazarus Group." Led by Novetta with participation from Symantec, Kaspersky, AlienVault, Invincea, ThreatConnect, Volexity, and PunchCyber, "Operation Blockbuster" finds the Lazarus Group, active in cyber espionage since 2009, participated in the Sony hack of November 2014. They trace the Lazarus Group to North Korea.
BAE sees a trend toward the industrialization of cyber crime.
The US FTC offers consumer advice on the secure installation of home routers.
Microsoft updates EMET security software.
The Drupal 6 content management framework reaches the end of its life today.
In industry news, some analysts see a slowdown in venture capital flow toward cyber security startups, with an effect on operating budgets and M&A activity.
BlackBerry buys British cyber security consultancy Encription, and Thycotic acquires Arellia. IBM is rumored to be ready to buy Resilient (security guru Bruce Schneier's corporate home) for $100 million.
The standoff between Apple and the US FBI continues. Apple's lawyers release documents suggesting the All Writs Act is likely to be used in more than one case.