WikiLeaks yesterday released its latest tranche of Vault7 material. The latest dump deals with an alleged CIA implant, "Pandemic."
HackerFantastic and x0rz have shuttered their crowdfunded attempt to buy an early look at the ShadowBrokers' next exploit dump. Their hope was to have done and shared some quick remediation, but it's just too risky, from a legal point of view.
OceanLotus, a.k.a. APT32, the threat group associated with the Vietnamese government, is believed to be working to reverse-engineer and weaponize ODDJOB, an earlier ShadowBrokers dump.
Check Point reports the discovery of "Fireball," a malware campaign said to have infected about two-hundred-fifty-million computers worldwide. Fireball lets its masters execute code on victim machines, and to manipulate web traffic to generate ad revenue. The motivation seems to be fraud: Check Point says Beijing marketing agency Rafotech is behind Fireball.
The British-American Information Security Council think tank warns with a degree of alarmism that the Royal Navy's Trident missile submarines are in principle vulnerable to cyberattack. Sure, the boats are air-gapped while submerged, but the study says that's not the point: the subs' supply chains are vulnerable, as are the patches and upgrades they receive in port.
Russia's President says he has no knowledge of anyone hacking US elections, but speculates that, sure, it's possible there could have been some patriotic freelancers (hackerweight unspecified) out there rootin' for good ol' Vlad Putin, as who wouldn't? Hackers are free spirits, Mr. Putin observed, just like artists, and after all, it's a free country, etc...