Anonymous surfaces again in attacks on government websites in Italy's Apulia region. Their cause is opposition to the Trans Adriatic Pipeline project and its putative environmental risks.
TeaMp0is0n may be back. Someone claiming to represent the hacker crew defaced the UN's World Tourism Organization, apparently for the lulz.
The industry group running Operation Blockbuster against the Lazarus Group indicates that their research points fairly conclusively to North Korea as the source of the 2014 Sony hack. This agrees with earlier US Government attribution, and runs counter to other claims that the incident eventually involved North Korea, but began as a post-layoff protest by disgruntled employees.
CTB-Locker (also known as "Critroni") is back as a minor-league ransomware counterpart of TeslaCrypt, CryptoWall, and Locky. CTB-Locker targets websites, whose contents are routinely backed up and easily restored.
Mobile health records—an attractive option to the healthcare sector for many reasons—continue to exhibit disturbing patterns of vulnerability and poorly resourced security. But as just-released study by Independent Security Evaluators suggests that concentration on records invokes the wrong threat model. Patient health, they say, not HIPAA concerns, should drive medical cyber security.
Drupal and Palo Alto Networks have issued security updates.
The US Congress appears ready to pass substantial cyber security appropriations, and is also considering establishing a blue-ribbon panel to study the complex interplay between security and privacy.
The legal dispute between Apple and the FBI takes a surprising turn: Apple will base its case in part on Fifth Amendment protections against self-incrimination.