Reports of a Chinese supply-chain seeding attack continue to lose credibility. The US Director of National Intelligence says that, while of course the prospect of such attacks is worrisome, the Intelligence Community can't find any evidence that this one actually happened. And Supermicro, the firm whose motherboards Bloomberg reported had been salted with spy chips, has replied to an inquiry from US Senators with a categorical denial that it sustained a supply chain attack.
Twitter has blocked a botnet that was pushing what appeared to be Saudi government talking points concerning journalist Jamal Khashoggi's apparent murder.
Latvian sources say the country sustained, but parried, cyberattacks apparently directed at affected the October 6th elections. Some of the temporarily successful attacks posted pro-Russian messages in social media.
Cylance reports that Vietnam's cyber espionage threat group, OceanLotus (also known as APT32 or Cobalt Kitty) has shown renewed activity and upped its game in several respects, including through its use of obfuscated CobaltStrike Beacon payloads for command-and-control.
The town of West Haven, Connecticut, suffered a ransomware attack. Unable to think of any better option, the town decided to pay the $2000 the hackers demanded. The mayor says the criminals have restored West Haven's access to its data.
The hoods behind the GrandCrab ransomware have released decryption keys to a Syrian man who said they'd deprived him of photos of his sons, killed in that country's civil war. The extortionists also sent some ambiguous signals that they might remove Syrian targets from their hit list.