Russian online services giant Yandex says it detected and remediated a Regin spyware infestation late in 2018, Reuters reports. Regin has been publicly associated (by Edward Snowden) with the Five Eyes.
KrebsOnSecurity writes that PCM, the California-based cloud solutions provider, was compromised in May by attackers who stole administrative credentials PCM used to manage clients' Office 365 accounts. The hackers' goal appears to be obtaining information useful in gift card fraud.
UpGuard discovered exposed AWS S3 buckets belonging to data management firm Attunity on May 13, confirmed the exposure, and notified Attunity on May 16. It's unknown which of Attunity's clients were affected, but UpGuard says it found data apparently belonging to Netflix, TD Bank and Ford.
Comparitech found and disclosed an exposed MongoDB database belonging to MedicareSupplement.com. The database appeared to be a marketing leads tool, but it's said to have included some personal medical information.
Vanity has a new name, and that name is Instagram. Sucuri researchers say social engineers are using an application for the swanky and evidently highly coveted "Verified Badge" as phishbait while trolling for vain Instagramers' credentials.
Trend Micro is tracking a campaign using a spreader to scan for vulnerable machines it can infect with the Golang coinminer.
The ShadowGate ransomware gang, also being tracked by Trend Micro, is back with what Ars Technica calls "the worst drive-by attacks in recent memory."
Why did French voters shrug off hacked leaks from the Macron campaign? The Atlantic Council says it was preparation, not Gallic world-weariness.