It's unsurprising but worth noting: FireEye says more nation-states are acquiring effective cyber capabilities and using them for espionage and other disruptive operations. Vietnam in particular is mentioned in dispatches.
North Korea has had its own homegrown anti-virus product, SiliVaccine, for some time. Upon inspection it seems less homegrown than thought. Researchers at Check Point obtained a sample sent to a journalist as apparent phishbait. They concluded that SiliVaccine is built around a decade-old version of Trend Micro's scan engine, modified to ignore certain virus signatures, effectively whitelisting some DPRK attack tools. The sample was also bundled with malware from North Korean threat actor Jaku.
The pirated AV product is associated with two concerns: Pyongyang Gwangmyong Information Technology and STS Tech-Service. Trend Micro points out, correctly, that the pirated code in no way affects their current products' security or reliability. The producers of SiliVaccine are thought to have obtained the old Trend Micro code from some third party.
Widespread concern about credential stuffing attacks has brought the problem of password reuse to the fore. But reuse continues unabated, according to a LastPass study: people reuse passwords because they're afraid they'll forget them.
The GravityRAT Trojan, which has troubled India for months, has become more evasive, using CPU temperature changes to detect virtual machines used for sandboxing. Its origins are unknown, but some think signs point to Pakistan.
Amazon threatens to end Open Whisper Systems' CloudFront services.
Some loser in Arizona hacked a digital highway sign to display "Hail [sic] Hitler."