The US Treasury Department announced sanctions against five Russian organizations and three individuals. Treasury designated them as violating Executive Order 13694 (which authorizes measures against entities engaging in "significant malicious cyber-enabled activities"). The Department links them to Russia's FSB, and sees them implicated in threats to the US power grid, undersea cables, and other infrastructure. Those sanctioned include Digital Security, ERPScan (Treasury says Digital Security controls the company, a claim ERPScan denies), Embedi (also said to be under Digital Security's control), Kvant Scientific Research Institute (supervised by FSB, Treasury says), and Divetechnoservices (suspected of undersea cable tapping). The three individuals singled out are associated with Divetechnoservices.
Okta reports a long-standing third-party code-signing issue in macOS signature checks. The fault isn't in Apple code itself. It lies, rather, in unclear documentation that led developers to use the API incorrectly. The documentation has since been clarified.
A wave of spearphishing is hitting Russian IT device service centers, according to Fortinet researchers. The emails, which have the clumsy look of machine-translation as opposed to native (or even non-native) speakers of Russian, purport to be from Samsung. The exploit uses an old (and patched) vulnerability in Microsoft Office documents, CVE-2017-11882.
The Kim-Trump summit went off in Singapore yesterday as planned. It focused, as expected, on nuclear issues. Cyber conflict between the US and the DPRK is expected to resume (or continue) its now familiar course.
A multinational sweep picked up a large ring of business email scammers: the US Justice Department counts seventy-four collars.