Germany's Interior Ministry has said that relatively early detection of intrusion into a sensitive network averted what could have been considerably more extensive damage than the government sustained. The spokesman declined to offer attribution, but unofficial consensus is that the hack was a Russian operation. Russia's Foreign Ministry denies any involvement, and cites the incident as another case of Western governments reflexively (and in bad faith) blaming Moscow for anything that goes wrong in cyberspace.
Russia's President Putin offered a similar response to US concerns about election hacking-he wants to see the evidence. Investigation of Russian influence operations, which aren't seriously in doubt, have become, observers lament, increasingly partisan. Meanwhile leaked documents are thought to provide some insight into the operations of Russian troll farms and their objectives. Those objectives appear as always to include the overarching goal of fomenting mistrust; some think they see more specific economic objectives as well.
McAfee researchers report a new campaign that targets international humanitarian aid organizations. The actor behind the operation is not specified, although McAfee believes it to be a Korean speaker. The malicious documents are baited with news about North Korean relief organizations. McAfee ties one persona, "snoopykiller," to the operation.
Memcrash distributed denial-of-service attacks have apparently been criminalized. DDoS attackers seek to extort cryptocurrency from victims.
Researchers at LGTM have discovered a vulnerability in the widely use Pivotal Spring web development framework. The issue (which they're calling "Spring Break") is said to be an easily exploitable arbitrary command execution bug.