The US Government is said to be winding up an indictment of Iranian hackers, charging them with intrusions into networks controlling that small flood-control dam in Rye, New York. The intent is said to be to send a message to Tehran; the New York Congressional delegation appears to be front-running the attribution and calling for a vigorous response.
North Korean dudgeon aside, speculation about who's behind the OnionDog threat group and its attacks on South Korean targets is largely directed toward...North Korea. Chinese security firm Qihoo 360 is tracking OnionDog's activities.
Palo Alto's Unit 42 is reporting on the "digital quartermaster" phenomenon, which it perceives in an ongoing campaign against Mongolian government sites. (A digital quartermaster is a conjectured support service that maintains attack tools used in a variety of campaigns.) The tools that appear to be maintained by the digital quartermaster include the Cmstar downloader and the BBSRAT Trojan. Unit 42 thinks geolocation of attack traffic suggests the hackers are located in China. (Fun fact we learned at RSA, by the way: "Unit 42" got its name as Palo Alto's homage to the Hitchhiker's Guide to the Galaxy.)
Should there in fact be digital quartermasters, it would seem there are challenges in keeping criminals out of their supply chain. Reuters reports, on the basis of studies by Dell SecureWorks, Attack Research, InGuardians, and G-C Partners, that newly sophisticated ransomware hitting targets in the US and elsewhere is using "tactics and tools previously associated with Chinese government-supported computer network intrusions."