Anatsa Trojan's new capabilities. Third-party breach hits airlines. Gas station blues. What’s up with the Internet Research Agency? Infrastructure threats. And DDoS grows more sophisticated.

Anatsa Trojan reveals new capabilities. Airlines report employee data stolen in a third-party breach. Canadian energy company SUNCOR reports a cyberattack. What of the Internet Research Agency? Microsoft warns of a rising threat to infrastructure. Joe Carrigan describes an ill-advised phishing simulation. Mr. Security Answer Person John Pescatore takes on zero days. And DDoS grows more sophisticated.

Selected reading.

Anatsa banking Trojan hits UK, US and DACH with new campaign (TreatFabric) 

Anatsa Android trojan now steals banking info from users in US, UK (BleepingComputer) 

Thousands of American Airlines and Southwest pilots impacted by third-party data breach (Bitdefender)

American Airlines, Southwest Airlines disclose data breaches affecting pilots (BleepingComputer) 

American Airlines, Southwest Airlines Impacted by Data Breach at Third-Party Provider (SecurityWeek)

Recruitment portal exposes data of US pilot candidates (Register) 

Suncor Energy says it experienced a cybersecurity incident (Reuters)

Suncor Energy cyberattack impacts Petro-Canada gas stations (BleepingComputer) 

Canadian oil giant Suncor confirms cyberattack after countrywide outages (Record) 

Wagner and the troll factories (POLITICO)

Cyber risks to critical infrastructure are on the rise (CEE Multi-Country News Center)

The lowly DDoS attack is showing signs of being anything but (Washington Post)