WikiLeaks' weekly dump from Vault7 features documents covering "CouchPotato," said to be a CIA tool that remotely collects video streams.
FireEye reports that Fancy Bear (Russia's GRU) has undertaken an ambitious program of spying on "high-value hotel guests" through hotel Wi-Fi systems. Fancy Bear is apparently using EternalBlue tools (believed to have leaked from NSA, and posted online by the ShadowBrokers) to propagate surveillance code across targeted networks.
The HBO hacker or hackers going by "Mr. Smith" released an email yesterday from HBO that appears to be an attempt to finesse the black hats into white hats by offering them, Variety reports, a "'bounty payment' of $250,000 as part of a program in which 'white hat IT professionals' are rewarded for 'bringing these types of things to our attention.'" Mr. Smith wasn't buying—the hackers want millions.
Skyhigh Networks says that criminals are using difficult-to-track "cloud-on-cloud" attacks.
Two familiar strains of ransomware have resurfaced in the wild. Both Locky and Mamba are out in an enhanced, more virulent form.
In the US, some Defense Department rapid acquisition tools are coming into use. Both DIUx and SCO have received enhanced purchasing authority. US Cyber Command will begin using its rapid acquisition authority by the end of September.
An unsealed FBI affidavit says that a Maryland man arrested last year in connection with alleged ISIS activities was involved in using eBay and PayPal to siphon cash to the terrorist group.
Ukrainian police last week arrested a man in Nikopol for distributing NotPetya.