WikiLeaks dumped another round of alleged CIA hacking documents from Vault7 late yesterday. They describe three tools: "Achilles" (which backdoors Mac OS X disk images), "SeaPea" (a stealthy Mac OS rootkit), and "Aeris" (a Linux implant). WikiLeaks says the tools are associated with an Agency project called "Imperial."
The ShadowBrokers resurfaced yesterday as well, saying that they'd sent their exploits-of-the-month to subscribers, and that they were raising their prices. Details, as we write, are not public, being known to the Brokers and whatever subscribers (or hostile hackers) they may have attracted.
Investigators say that Russian intelligence services sought to spy on French elections by posing as Facebook friends of successful Presidential candidate Emmanuel Macron.
North Korea is reported to have undertaken a large-scale Bitcoin mining operation.
Flashpoint warns that Necurs is now delivering the Trickbot banking Trojan.
Sophos warns of two SMS-stealing malicious apps in the Play Store. Both are by New.App; one represents itself as an app store shortcut, the other as "Skin Care Magazine."
NotPetya continues to have a ripple effect on business: small enterprises are said to be particularly affected by service disruptions the campaign inflicted on FedEx subsidiary TNT.
Corero forecasts a spike in financially motivated distributed denial-of-service attacks.
In industry news, PerimeterX raises $23 million in a Series B round, and Raytheon says not to expect a Forcepoint initial public offering.
More calls for special prosecutors are heard in the US, this time from the Republican side of Congress, asking for investigations of security breaches.