There's growing alarm over ongoing exploitation of insecure Internet-of-things devices. They've been deployed for years; experts are concerned that neither policies nor the devices themselves are ready for threats that appear poised to weaponize IoT vulnerabilities and cause kinetic effects. Others warn that industrial control systems present distinctive problems: they may have vulnerabilities that render them susceptible to destruction, and to malfunctions that could compromise safety as well as operations.
As Facebook CEO Mark Zuckerberg appears on Capitol Hill to testify about a range of topics (mostly related to the privacy concerns surrounding his company's platform), another quasi-research organization, Cubeyou, is said to have scooped up users' data by inducing them to take various quizzes.
The vulnerability in Cisco switches used by (apparent) hacktivists to deface Russian and Iranian sites is now being widely exploited against unpatched systems by Russian hackers (mostly criminals).
A High-Tech Bridge study suggests that the notoriety of named threat actors and well-marketed vulnerabilities is being used as misdirection by malicious insiders interested in covering their tracks.
Russian President Putin's advisor Vladislav Surkov ("Putin's Rasputin") sees 2018 as marking the end of Russia's attempts to turn westward, terminating aspirations that go back to Tsar Peter the Great. US Intelligence Community insiders differ over whether the US actually has the political will to punish Russia for misbehavior in cyberspace and elsewhere. Whether economic sanctions announced last week are hurting Moscow or not, they're being felt in London, where the City is nervous about disruption to Russian investment.