National pride and traditional resentments manifest themselves around the Aegean as rival teams of Turkish and Greek hacktivsts take whacks at one another's media outlets. The two contending groups are Turkey's Akincilar ("Invaders") and Anonymous Greece. The former accuse the latter of support for (Kurdish) terrorists; the latter accuse the former of conniving at (Kurdish) genocide.
SynAck ransomware (not to be confused with Synack the security company) has been observed using Process Doppelgänging in the wild. Process Doppelgänging executes code by abusing the Windows loader. Thus it needn't write to disk, which makes it more evasive and difficult to spot with technical screens.
Researchers report finding two exploitable flaws in Lantech's IDS 2102 industrial networking systems that could allow remote code execution. The bugs are present in older versions, ones running version 2.0 and earlier of the firmware. Lantech told SecurityWeek the vulnerable product was phased out in January and that it won't be patched.
Unpatched Drupal flaws, the so-called "Drupalgeddon," continue to be exploited for cryptojacking.
Little doubt remains that GDPR will affect data protection standards worldwide. Apple, Facebook, Twitter, and Sonos are among the larger companies who plan to adhere to its standards in North America as well. (The Wall Street Journal calls regulation the "hot import" from the EU.)
Equifax clarifies its data breach to the SEC.
Providing evidence, were any more needed, that idle hands fidget worldwide, someone in Japan hijacks Canon security cameras to display the message "I'm Hacked. bye2," which isn't even good haiku.