Dropbox, KeePass and Chrome all have updates out.
The guys who released BadUSB code also released a “patch” which only fixes one aspect of one vendor’s USB device.  They actually recommended bondo to a thumb drive to prevent physical tampering.  I’ve heard of devices that physically lock out a usb port but don’t ruin them or the case, but considering the condition of work computers I’ve seen us decommission I would just bondo it over myself. I’m sure my users would just love that.
The analytics black hole for detecting internal security threats – a breif summary of a Tech Republic article driving home the same old concepts – we do a piss poor job of user security awareness and education.
Gartner lays out its top 10 tech trends for 2015
The US Government Is Going To Store Top Secret Documents In The Cloud
Insider threat to critical infrastructure ‘underestimated’, says DHS
US Says It Can Hack Foreign Servers Without Warrants – no analysis here – just scary but apparently legal.
Obama Had Security Fears on JPMorgan Data Breach (Courtesy InfoSecNews Mailing List)
An inside look at Russian cybercriminals (Courtesy InfoSecNews Mailing List)
F-Secure’s whitepaper “BLACKENERGY & QUEDAGH: The convergence of crimeware and APT attacks”
George Kao’s “A System For Email Productivity” contains a lot of idea I’ve used in the past, but the presentation here is well worth the read.