Vanity Fair: Inside the Discovery of Sandworm, the World’s Most Dangerous Hackers

TechRadar India: Hackers use a photograph of a fingerprint to bypass phone security

TechCrunch: Hackers can steal the contents of Horde webmail inboxes with one click

Ars Technica: Indian nuclear power plant’s network was hacked, officials confirm

Reuters: Exclusive: Government officials around the globe targeted for hacking through WhatsApp - sources

This aggressive IoT malware is forcing Wi-Fi routers to join its botnet army | ZDNet

Insurance Journal: Ransomware Attacks Rise 37% in Q3, Targeting IT Vendors, Their Clients: Beazley

Boing Boing: The penniless hero of the ransomware epidemic has written more decryptors than anyone else

Ars Technica: The count of managed service providers getting hit with ransomware mounts

POLITICO: 4 ways Boeing’s CEO tripped up at Tuesday’s 737 MAX hearing

ZDNet: This old trojan malware is back with a new trick to help it hide in plain sight

Hack votes

ZDNet: New 'unremovable' xHelper malware has infected 45,000 Android devices

The New Yorker: A Cybersecurity Firm’s Sharp Rise and Stunning Collapse

International Business Times, Singapore Edition: Avoid downloading these 42 malicious android apps which infect millions

The New York Times: Boeing Shaped a Law to Its Liking. Weeks Later, a 737 Max Crashed.

WIRED: Why Keybase Doesn't Offer Two Factor Authentication

Forbes: Windows 10 Security: Microsoft Reveals ‘Before Windows Boots’ Protection

cloudflare.com: Public keys are not enough for SSH security

The Next Web: Modern cybersecurity is inaccessible to smaller companies — and that’s bad for you