October 19, Securityweek – (International) Adobe patches Flash zero-day exploited by Pawn Storm. Adobe released Flash Player updates addressing a zero-day type confusion vulnerability discovered by security researchers from Trend Micro, which the Pawn Storm threat group was exploiting in attacks targeting Foreign Affairs Ministries worldwide via spear-phishing emails leading to a variant of the Sednit malware. Source
October 16, CNN – (National) ISIS is attacking the U.S. energy grid (and failing). U.S. law enforcement and government officials reported that ISIS is beginning to perform cyberattacks on energy firms in the U.S., and that the attacks have been unsuccessful. Officials stated that hacking software for sale on black markets could contribute to attacks against industrial control systems at energy companies, including pumps and engines. Source