Last Friday the UK's Parliament sustained a brute-force attack on email credentials belonging to Members and staff. Around ninety people's accounts are thought to have been targeted. The principal concern being voiced is the possibility of blackmail. Authorities took down the email service and required password resets. Initial attribution was to an unspecified foreign intelligence service; that service has now by consensus been specified: it's Russia's.
Inquiry into Russian influence operations against last November's US elections turns up records that purport to show that then-President Obama, responding to concerns from Democratic members of Congress, directed cyber retaliation against Russia using "implants" that "would hurt."
Russia's demonstration of a grid-hacking capability against Ukraine continues to stir concerns in the power sector. An op-ed in the Moscow Times suggests that publicly expressed fear of Russian cyber capabilities plays to President Putin's advantage.
Trend Micro outlines the activities of the BlackTech cyber espionage group, which is prospecting East Asia (especially Japan, Taiwan, and Hong Kong) for industrial intellectual property.
Microsoft discloses that Windows 10 source code (some ten terabytes of secure code and internal builds) has leaked.
Check Point and Microsoft dispute how many victims of Fireball Windows malware are out there. Check Point says two-hundred-fifty-million. Microsoft says it wasn't that bad, and anyway Windows 10S were golden. Windows 10S itself may still be susceptible to attack by malicious Word macros.
Pro-ISIS hacktivists deface sites belonging to the State of Ohio with an anti-President-Trump message. Ohio is probably just a target of opportunity.