TASS reports a brief weekend DDoS attack on Russia's health ministry.
Palo Alto Networks sees new activity from the Hamas-associated Gaza Cyber Gang: phishing campaigns to install spyware. Targets are in Israel and various Arab countries. Palo Alto characterizes the campaigns' technical sophistication as relatively high. As so often happens, the attackers inadvertently aroused suspicions with poor proofreading.
ISIS sympathizers are being targeted by Android malware delivered over one of the Caliphate's preferred social media, Telegram. The first stage of infection aims at privilege escalation; subsequent stages vary with the attackers' intentions. There's no attribution, but it's also no secret that ISIS's opponents are actively targeting the group. The US Air Force, for one, reported to Congress last week that it conducted more than 4000 cyber operations in conjunction with combat operations against terrorist targets.
Some observers perceive an increase in the Egyptian government's online surveillance and traffic interception efforts.
Sources "close to" the Italian government tell the Guardian and Reuters that Italy's Foreign Ministry sustained a four-months-long cyber attack in 2016. Non-classified systems were successfully penetrated; classified systems are said to have resisted compromise. The Russian government is suspected of responsibility.
Members of the US Congress urge the Administration to revisit Wassenaar cyber arms control regime.
NBC says a "senior US official" tells them he believes Russia may send Edward Snowden back to the US in a good-will gesture to President Trump. (Snowden tweeted this proves he's not a Russian spy. His ACLU lawyer knows nothing about the matter.)