Another misconfigured Amazon Web Services S3 bucket leaks. This one belongs to the Australian Broadcasting Corporation. Amazon continues its efforts to nudge customers to more mindful use of its cloud services.
Kaspersky has released the results of its own investigation of the alleged NSA leaks that appear retrospectively to have played a role in prompting the US Government to eject Kaspersky products from its systems. Kaspersky says a laptop with a Baltimore-area IP address, and protected with Kaspersky software, was found to have been infected with what appeared to be Equation Group tools, and that those were the files Kaspersky uploaded for inspection. That there turned out to be classified files in the mix Kaspersky says was unknown at the time, and that such files were promptly deleted as soon as recognized. Kaspersky also says the laptop, which is thought to have been used by an NSA worker or contractor, was thoroughly compromised by other sources.
Bitdefender warns that the Terdot banking Trojan is a very capable information-stealer, one that would be easily adaptable into an espionage tool.
Inevitably concerns about fake news are being monetized by cyber criminals, some of whom are now offering fake-news-as-a-service, often in the forms of spoofed legitimate sites.
Criminals get disrupted when their black markets are shuttered. They will move to other dark web souks to do business, but they operated less effectively and with more leaks in their new virtual hangouts.
The new US Vulnerabilities Equities Process continues to draw generally positive reviews.