Investigation into Fancy Bear's prowling (in the form of emails) into a Norwegian security service continues.
Radware discovers a new ransomware-as-a-service portal on the dark web. Called "Ranion," it cloaks its shame behind a figleaf saying "for educational purposes only," but the portal looks more like a money-making operation. You can subscribe for 0.95 Bitcoin annually (about $960) or if you're not quite as all-in as that, you can get six months for 0.6 Bitcoin (about $605).
Microsoft is expected to patch a Windows SMB zero-day tomorrow. In the meanwhile an exploit is circulating in the wild.
Those who've been in the industry for awhile will recall the Slammer worm, which enjoyed its heyday fourteen years ago. According to Check Point, someone made a concerted attempt to revive Slammer at the end of 2016.
The Missouri Gaming Commission concludes that a Russian national, a fugitive from the law of averages (and unnaturally lucky at slots), finagled gambling machines. How he did so isn't fully understood, but he seems to have required no more physical contact than proximity to his cell phone.
US-CERT warns that flaws in some Honeywell SCADA controllers can be exploited to expose passwords.
Ransomware disables the government of Licking County, Ohio.
The famously outspoken Ian Levy, technical director of the UK's National Cyber Security Centre, has told the security industry to knock off the FUD, accusing them of peddling "witchcraft."
Russia says the FSB officers charged with treason were leaking to "America," and not necessarily the CIA.