The US-North Korean summit is back on, but relations between the countries in cyberspace remain frosty. The FBI and the Department of Homeland Security have, through US-CERT, attributed two more families of malware to the DPRK's Hidden Cobra threat group. The Brambul worm and the Joanap Trojan are both said to be the work of Pyongyang.
Bleeping Computer reports that threat intelligence shop Grey Noise has observed someone, presumably a threat actor, scanning for EOS blockchain nodes that have accidentally exposed private keys through inadvertent misconfiguration. The scans began yesterday, shortly after Qihoo 360 reported a remote execution flaw in the EOS blockchain platform. (EOS is currently the subject of an initial coin offering.)
The Canadian banks hit with a hacker-induced data breach over the weekend are indeed the targets of extortionists. The attackers are demanding a million-dollar ransom. If they're not paid, they threaten to release the information online.
Whether or not it's reprieved from US Commerce Department sanctions, analysts think ZTE will find recovery difficult. ZTE and Huawei remain under widespread suspicion of posing security risks.
Karim Baratov, convicted of hitting Yahoo! on behalf of Russia's FSB, has been sentenced to five years. The US Justice Department points out that the verdict should indicate to people that hacking-for-hire is a serious crime.
A US Government look at the cybersecurity of Federal agencies offers a depressing vista: three out of four agencies are said to be at significant risk of cyber attack, and poorly prepared to manage their risk.