Palo Alto Networks yesterday released an update on Lazarus Group activity against US defense contractors. The threat actor, by consensus a cat's paw for North Korean intelligence services, is distributing espionage tools using malicious Microsoft Office documents. The latest Lazarus Group operations exhibit a shift in targeting—they're now prospecting English as opposed to Korean speakers. The documents are poorly crafted, badly proofread.
After the weekend's riots and homicide in Charlottesville, various (apparently most, including GoDaddy, Google, Zoho, and Discord) hosting providers have booted the Daily Stormer neo-Nazi publication from their services. The Stormer says Anonymous has attacked its sites, but Anonymous officially (insofar as an anarchist collective can have an official voice) denies doing so, and says the Stormer is just putting a brave face on its inability to find anyone to host its material. The providers who've cut the Stormer off are citing terms-of-service violations.
Police in India have made four arrests in connection with the release of a pirated Game of Thrones episode. This case is unrelated to the recent hacking of HBO by "Mr. Smith." That case remains under investigation. HBO is said, now, to be determined to pay "Mr. Smith" nothing.
Google gets good reviews for cleaning the Play store of SonicSpy infestations, but the Android malware is still out and active, infecting users from other sources.
Drone-maker DJI says it's installing a "local mode" for users sensitive about the company's data collection practices (the US Army, no longer a customer, is one such user).