A large malvertising campaign has hit nearly 300 popular sites in the Netherlands. Fox-IT saw the attack in its early stages Sunday; it's now affected some of the country's largest media sites.
The Panama Papers' unnamed but widely looked for dogs-in-the-night haven't barked, yet, although Russia Today helpfully (and no doubt disinterestedly) points to hints in the documents suggesting that Western "secret agents" (they're looking at you, CIA) were using Mossack Fonseca to hide various things they were up to. Speculation about how the leak happened continues, with social engineering of email server credentials, "buggy" WordPress plug-ins, and an outdated Drupal instance heading the list.
Carbon Black reiterates warnings about exploitation of PowerShell.
Ransomware continues to rise in criminal favor. G-Data describes a new strain, "Manamecrypt." Other researchers release more decryption tools (in justice, criminal developers seem at least as sloppy as legitimate coders).
Observers of the black market see increasing professionalization on the part cyber criminals, with credit card fraud serving, essentially, as their source of angel funding (especially for Russian gangs).
Yesterday was Patch Tuesday, and Microsoft released what Threatpost calls a "lucky thirteen" baker's dozen of fixes. Among them is a patch for the much-feared Badlock vulnerability, which turns out to be less catastrophic than its logo suggested. Samba also addressed Badlock.
Cyber security stocks are showing mixed results so far this week, with analysts divided over their prospects.
The FBI apparently paid some gray hats to unlock the San Bernardino iPhone, and not Cellebrite after all.