Authorities in the UK investigate yesterday's lethal bombing at a Manchester concert. The motivation is so far unknown, but ISIS has claimed responsibility in its online channels. Police in the UK have made at least one arrest in the case.
ISIS appears to be instructing its members to stay clear of social media activities (transmission, not however reception) that could bring them to the attention of law enforcement or intelligence services.
More circumstantial evidence points to North Korea as the responsible party in the WannaCry ransomware attacks. The apparent motive (prima facie financial) and clues in the attack code itself are consistent with a DPRK operation, but of course the attribution remains provisional and tentative. A number of profiles appear of North Korea's Unit 180, a cyber operations organization thought to be behind the Lazarus Group and such operations as Dark Seoul. Symantec, which has been tracking WannaCry, now assesses a link to North Korea as "highly likely."
The EternalRocks campaign, like WannaCry based on the EternalBlue exploits the ShadowBrokers leaked, continues to appear more troublesome to most observers. It's goal is persistence; the purpose of establishing that persistence remains so far unknown, but it doesn't appear to be a simple ransomware campaign. Its execution is superior to WannaCry's. (It's worth noting that Polaris Alpha has suggested that WannaCry's apparently slipshod execution may have been a matter of design as opposed to ineptitude. The attackers may have been probing to test the response an attack on upatched systems would evoke.)