Akamai is tracking a fast-flux botnet distributing malware through 14,000 IP addresses.
Germany's Bundesamt für Sicherheit in der Informationstechnik (BSI) says it can't confirm US and Israeli claims that Kaspersky security software has been exploited for espionage by Russian intelligence services. (But German security companies continue to point out that their software is "made in Germany," and above all that they're not Kaspersky.) RT says that Kaspersky's new agreement to work with Interpol against cybercrime shows that the company is just a victim of US anti-Russian animus, but most observers think the American ban on using Kaspersky software in Federal networks has some serious foundation.
ISIS is swiftly vanishing from the territory it sought to govern as a caliphate, but experts caution that ISIS is unlikely to disappear, or acknowledge any setback. The group's inspirational narrative is likely to shift to an emphasis on hegira, likening its current phase to the Prophet's strategic withdrawal in 622 from Mecca to Medina.
Equifax and its competing credit bureau TransUnion both acknowledged that third-party code embedded in some of their websites for the purpose of tracking performance was malicious, directing visitors to a bogus Flash update site. Both companies say their core systems were unaffected, and that they've fixed the website problem.
New York State's Attorney General Eric Schneiderman, already investigating the Equifax breach, has announced an investigation into Deloitte's security incident.
Hyatt disclosed a credit card breach affecting forty-one hotels in eleven countries between March 18th and July 2nd of this year.