Malware exploiting Spectre and Meltdown CPU vulnerabilities is expected to break into the wild in the near future. Researchers in a number of security firms have observed more than one-hundred-thirty distinct samples of malicious code designed to attack these flaws. The exploits aren't proofs-of-concept, at least not for the most part. Instead, researchers believe they're observing criminal experimentation with new attack tools.
AMD has, like Intel, announced that its next generation of chips will not be burdened with either Meltdown or Spectre.
Barracuda warns that it's found criminals impersonating Google Docs, Outlook, and DocuSign. They send emails that purport to be from these trusted services, and that claim to remind you that you have unread messages. The links in these phishing emails are of course malicious.
A very large cryptomining botnet, called "Smominru," has been in circulation since last May. It's believed to have infected more than half-a-million Windows machines and earned its criminal masters millions. The botnet's current daily take is estimated at $8500.
The WannaMine cryptominer continues to circulate. Hackers are also working on other malware to hit those who haven't yet patched EternalBlue and other alleged Equation Group exploits released by the Shadow Brokers last year.
Its Caliphate may have been extirpated from the territory it once held, but ISIS continues to recruit and inspire in its online diaspora. They concentrate on the young, mostly teen and tween boys, feeding them music, slogans, and, alas, beheading videos. Foreign Policy magazine calls it a continuing "war on families."