The hacking of the Winter Olympics appears to have been under preparation at least since December. Investigation suggests that the Games' cloud provider, Atos, may have been compromised two months before the Olympics opened. Atos has brought in McAfee to help with its investigation.
The British Foreign Office has directly attributed last year's NotPetya pseudoransomware campaign to Russia, and warned that country's government that the UK will not tolerate another disruptive attack. Russian representatives dismiss the attribution as "Russophobia."
Trend Micro reports that its sensors have detected vulnerabilities in Apache CouchDB are being exploited in the wild by Monero cryptomining malware.
NewSky Security says that its honeypots have detected the formation of a new IoT botnet. This one is being called "DoubleDoor" because it chains two exploits to bypass a firewall and compromise a router. The first backdoor (CVE-2015-7755) affects the firewall, Juniper Networks' NetScreen. The second, CVE-2016-10401, enables privilege escalation to obtain a superuser account on ZyXEL PK5001Z devices.
The Satori botnet is also evolving, according to Netlab 360, and now affects routers made by Dasan Networks.
Another initial coin offering scam has been reported. LoopX, which may have been a cryptocurrency exchange, but which promised a "proprietary algorithm" yielding "great profits continually every month" has vanished, taking some $4.5 million in investors' cash along with it.
Coinherder, being investigated by Cisco and Ukrainian police, uses Google AdWords to poison search results with phishing to gain access to victims' wallets. Losses are said to run to some $50 million.