Cylance has found a threat group operating against business and government targets in Japan. They're tracking the campaign as "Snake Wine," but the operation looks a great deal like APT 28, also known as "Sofacy," which, of course, became famous over the past year for its involvement in apparent attempts to either influence or discredit the US elections. Snake Wine has a lot in common (particularly its registration style) with attacks attributed to Russian intelligence services, but in this instance there's a degree of ambiguity, since some aspects of the campaign seem to be marked with China's spoor. The threat actors have adopted a variety of measures to baffle attribution. Their goal is a matter of speculation, but Cylance thinks there's a good chance Snake Wine is ultimately aimed at disinformation.
Personal data belonging to about 850 members of Singapore's military services have been stolen in an apparent attempt to penetrate that country's Defense Ministry. The theft was successful but the penetration wasn't. Authorities in Singapore believe the culprit is some state actor, with most signs pointing to China.
Google has disclosed another set of unpatched vulnerabilities in Microsoft's Internet Explorer and Edge browsers. While Google's Project Zero has been reticent about the details, lest they render exploitation easy, it's believed the flaws could render users vulnerable to remote code execution.
There are reports that stuffed animals from CloudPets, said to be Internet-connected, contain privacy flaws that record and report conversations in the toys' vicinity.
ESET patches its Mac antivirus.