The cyber incident Airbus disclosed on January 30th is now believed, anonymous sources close to the investigation tell Challenges, to have been the work of Chinese operators. Signs seem to point to APT10, also known as Stone Panda or MenuPass. APT10 is generally associated with the Tianjin Bureau of the Ministry State Security. Airbus made its disclosure within GDPR's prescribed seventy-two hours, since the hackers accessed employee data, "mostly professional contact and IT identification details."
APT10 has been busy elsewhere, too. A report by Recorded Future and Rapid7 concludes, in a cautionary account of third-party risk, that the espionage group has been active against managed service provider Visma, a US law firm with a wide-ranging intellectual property practice, and other companies.
Chinese industrial policy and espionage figured in US President Trump's State of the Union address.
The US Departments of Homeland Security and Justice have issued their Congressionally mandated report on whether there was foreign meddling in the 2018 mid-term elections. The Departments found no evidence of any foreign activity that had any "material impact" on the elections or the infrastructure surrounding them.
Vilnius thinks, according to Reuters, that Russia is preparing information operations to interfere with Lithuanian elections. Russia says the fears are nonsense, because they'd never do that.
The US House Committee on Energy and Commerce wants Apple to explain why it took so long to patch FaceTime.
Worried about speculative execution attacks, like Spectre, Meltdown, and Foreshadow? Take it from NSA: keep your patching up to date.