The Panama Papers database, released yesterday to much éclat, has attracted the scrutiny of Canadian tax enforcers and New Zealanders interested in transparency policy, but as far as the US is concerned, the results are ho-hum. But search and see for yourself.
Al Qaeda steps up its propaganda game, competing with ISIS for leadership of jihad in the Levant.
ImageMagick flaws are being exploited in the wild. Users should consult available policy-based mitigations if they’re working with an affected version.
Check Point fins a new strain of Android malware infesting the Google Play Store. “Viking Hoard,” seems mainly useful for ad fraud, but can be adapted for spamming and DDoS campaigns as well.
Kaspersky, to its credit, developed a decryption tool for the CryptXXX ransomware. But no good thing lasts forever—Proofpoint, which discovered and has continued to track CryptXXX, says that the malware has been modified to render the decryption tool ineffective.
Palo Alto warns that revenant ransomware Bucbi, not much seen since 2014, is making a comeback. Its approach to infection is different: its controllers brute-force their way into servers.
The security industry shows ambivalence about sharing—zero-day vendors are in bad odor, and start-ups don’t like their exclusion from VirusTotal. Twitter’s Dataminr poke at the US Intelligence Community is called fruit of a bad relationship between Government and industry.
The Bangladesh Bank hack investigation follows two lines: the FBI thinks it sees insiders, and Bangladesh police think SWIFT technicians rendered the bank vulnerable (which SWIFT vigorously disputes).