The British government warns infrastructure operators, especially those concerned with power plants and airports, to be alert for ICS cyberattacks mounted by ISIS. If the concerns prove real, they would indicate considerable increase in ISIS cyber capabilities, which have hitherto been largely confined to information operations.
Russian authorities investigate jihadist links to yesterday's suicide bombing in St. Petersburg.
Kaspersky offers more evidence connecting the Bangladesh Bank fraudulent funds transfers to the North Korean government. As US pressure on the DPRK over recent missile launches increases (including efforts to work with China on a bilateral response) and as the Chinese coal embargo bites Pyongyang harder, observers expect a corresponding rise in cyber activity targeting North Korea and its adversaries.
More warnings, this time from SecureWorks, of continued espionage from Fancy Bear (which they're calling "Iron Twilight," but it's the same GRU set). A recent victim, the IAAF, apologizes for the loss of athletes' medical records to the Russian espionage service.
Another Russian espionage group (where it would appear in a state-cum-criminal organization chart is unclear) has been connected to 1998's Midnight Maze operation against the US Department of Defense. It's the familiar Turla APT (also known as Snake, Uroburos, Venomous Bear, or Krypton) and it's still using, effectively, versions of the venerable LOKI backdoor.
Researchers report finding forty zero-day vulnerabilities in Samsung's Tizen OS.
Apple issues an emergency iOS patch to close a Wi-Fi drive-by vulnerability.
US Congressional hearings into Russian influence operations continue, with plenty of ugliness to go around.