1) In an effort to halt insider trading based off knowledge of undisclosed breaches, the U.S. Securities and Exchange Commission issued updated guidance for public companies related to cybersecurity risks. Meanwhile, another U.S. government agency, the Department of Energy, announced a new cybersecurity office.
2) The developer of the popular and damaging NanoCore remote access trojan was sentenced to 33 years in prison.
3) Google publicly dropped a Windows 10 vulnerability after Microsoft missed the web giant's 90-day deadline, while an Adobe Flash vulnerability that was recently emergency patched is showing up in a new phishing campaign.
4) A remote access Trojan that targets Mac machines (which Apple has addressed) went undetected by anti-virus products.
5) Trickbot malware is now targeting cryptocurrency exchange accounts instead of bank accounts.