The US Army has ordered all units to immediately stop using DJI drones. The order derives from unspecified concerns over cybersecurity. DJI, a Chinese firm, had been criticized in the past by consumers for collecting too much about users (including geolocation data). Whether such collection is what worries the Army is unknown, but G3/5/7 (Deputy Chief of Staff, Operations, Plans, and Training) has directed that all DJI products be taken out of service, from drones to controllers to the batteries that power them.
Trend Micro reports that an Android phishing campaign is in progress against Russian-speaking businesses.
Researchers warn social media timelines may betray more user information than users suspect.
Amazon, moved by recent incidents in which customers inadvertently exposed data stored in the AWS cloud, works to steal a march on criminals by scanning for publicly available S3 buckets and warning such buckets' owners.
White hats who looked at voting machine vulnerabilities recommend five steps to more secure elections: retire old machines, secure registration systems and voter databases, require security audits of electronic voting machines, make patching easier, and improve poll workers' training.
An opinion piece in the Diplomat doesn't quite advocate cyber marque-and-reprisal against Russia, but it comes close.
Marcus Hutchins, a.k.a. MalwareTech, the researcher credited with (inadvertently) flipping WannaCry's kill switch, is out on bail after pleading not guilty in a US court. He's facing charges relating to creation and distribution of the Kronos banking Trojan. The case is likely to set important precedents for vulnerability research.