The man arrested in Tuesday's truck-ramming killings in Manhattan has been charged. He appears to have been radicalized and inspired online.
Several criminal campaigns receive researchers' scrutiny.
A gang Kaspersky calls "Silence" is distributing an eponymous banking Trojan. The group isn't Carbanak, but researchers note that they're using some of the same techniques Carbanak pioneered in its rise to underworld leadership. Prominent among those tactics is the use of screen grabs to record and profile ordinary daily activity on a targeted enterprise's networks.
Chinese speakers are afflicted with a new variant of iXintpwn/YJSNPI iOS malware being distributed through two third-party app stores. According to Trend Micro, the malware appears to try to induce its victims to download "repackaged apps."
Proofpoint is following the resurgence of KovCoreG, a criminal gang distributing Kovter ad fraud malware. The threat group has been active since 2011.
The sixth annual Mobile Pwn2Own is on in Tokyo. Apple's iPhone 7 (iOS 11.1), Samsung's Galaxy S8 and Huawei's Mate 9 Pro fell to hackers on the first day.
Apple has patched the KRACK vulnerability in iOS 11.1, addressing key-reinstallation issues implicit in the WPA2 protocol.
WordPress has also patched, issuing a fix for an SQL injection flaw. The issue was exploitable in WordPress 4.8.2 and earlier versions.
In the crypto wars, US Deputy Attorney General Rosenstein advocates "secure, responsible encryption," that is, encryption accessible to authorized investigators.
US Senate hearings into Russian influence operations find that foreign trolls can post the kind of stuff everybody else does.