South Korea's CERT warns that an Adobe Flash Player zero-day is being exploited in the wild. Adobe is moving to patch its much exploited, often fixed product. Many security experts say the best patch for Flash Player is to simply disable it. Many observers think the exploitation, apparently in progress for two months, is the work of North Korean hackers.
Radware has located a new Internet-of-things botnet whose functionality they liken to Mirai. They've traced the host to a hacking group, San Calvicie, which operates a server in the Seychelles. San Calvicie hosts the venerable online game Grand Theft Auto: San Andreas in an environment that enables players to create and share mods. They're also in the denial-of-service protection racket, and will keep you operating for just $16 a month. They offer denial-of-service-as-a-service, too. You can direct "Corriente Divina" attacks against any target for $20.
Bitcoin's price has hit a two-month low, but cryptocurrency miners and scamming continue unabated. BeeToken speculators were just winkled out of another $1 million in Ethereum after succumbing to phishing attacks.
Threats to industrial control systems grow with the attack surface. A Mocana survey of operators shows some surprising blind spots with respect to digital hygiene.
The US Ninth Circuit has ruled in favor of Twitter in a lawsuit that sought damages from the social media platform on the theory that it culpably enabled terrorist inspiration.
The House Intelligence Committee's staff memo on surveillance practices (the "Nunes Memo") is expected to be released later today.