As another attribution of WannaCry to North Korean intelligence services appears—the latest was issued Friday by the UK's GCHQ—researchers speculate that a second wave of worms might be released into the wild. They also point to internal evidence that WannaCry itself got out prematurely, that its developers failed to contain it.
News media in India harrumph and point with concern to what they regard as their government's downplaying of the scope of WannaCry infestations in that country.
Google continues to struggle with adware infestations in the Android PlayStore. Sophos over the past week identified forty-seven adware-infected apps that together have been downloaded more than six-million times. The ads continue to appear—triggered from third-party library App/MarsDae-A—even after users attempt to quit the apps. Trend Micro is tracking another third-party ad library, Xavier, which contains about eight-hundred apps (Google has removed somewhat more than seventy of them). Xavier escapes detection and ejection by Google's bouncer by going quiet if it detects sandboxing or emulation.
Researcher Chris Vickery reports finding one-hundred-ninety-eight million US voter records exposed in an unsecured Amazon S3 account. The data, which have since been secured, were left exposed by Deep Root Analytics, a political big data consulting firm that has worked for the most part on behalf of the US Republican Party.
Britain's National Cyber Security Centre declares the UK's recent elections to have been free of Russian influence—specifically, that there were no signs of fraud. Some observers think the Russians just weren't interested.