Another speculative execution flaw similar to Spectre and Meltdown has been discovered. The vulnerability is exploitable by "Speculative Store Bypass," which could expose user data across a broad range of devices. This disclosure has been coordinated among Intel, AMD, ARM, IBM, Microsoft and other tech firms. Some vendors have already issued mitigations. Those who face a more challenging patching problem (including Intel) intend to make fixes available within the next few weeks. Analysts tell users to expect some performance decline after applying patches.
Three big dogs aren't barking right now, and there's speculation that they may do so soon. Speculation in the UK holds that Russia's restraint from attacking British infrastructure is temporary. Once the World Cup (hosted this year in Russia) is over, analysts expect the Bears to begin dancing. Iran's widely anticipated reprisals against the US for withdrawing from the nuclear deal are also yet to materialize. And some ask what might have become of the large trove of data stolen in the OPM breach, presumably now in the hands of Chinese intelligence.
What North Korea is up to is clear enough: more theft, totaling $635 million by some estimates. The US is considering putting hacking on the summit agenda.
Vulnerable GPON routers are being herded into botnets.
Comcast is reported to have rendered customers' Wi-Fi passwords relatively easy to compromise. They're expressed in plain text on a readily accessible activation site.
The TeenSafe tracking app is said to have exposed customer data in a misconfigured AWS bucket.