ISC StormCast for Friday, August 28th 2015

By Johannes Ullrich Obfuscating Malicious Word Macros Inside PDFs
Patch For BitTorrent Traffic Amplification Bug
Adobe Cold Fusion Patch
Iranian Attackers Phish Google 2FA Tokens More Here      

ISC StormCast for Thursday, August 27th 2015

By Johannes Ullrich TeslaCrypt 2.0 Malware Moves Back to Angler from Neutrino EK
Hardcoded Default Admin Password in Serveral DSL Routers
Paypal Introduced “One Click” Payments
Malware in Embeded RTF Documents
GRSecurity Restricting Availability of Stable Patches More Here      

ISC StormCast for Wednesday, August 26th 2015

By Johannes Ullrich Dropbox Phishing
Recordable Activator Exploits Certifigate Vulnerability
Malware uses AutoIT to Run Macros More Here      

ISC StormCast for Tuesday, August 25th 2015

By Johannes Ullrich Samsung Smart Fridge Vulnerabilities
Remote Access Security
Amazon No Longer Allowing flash in Ads
iPhone “Quicksand” Vulnerability
Backdooring Javascript With Minifier More Here      

ISC StormCast for Monday, August 24th 2015

By Johannes Ullrich Decline in Malware From Windigo Group
ZScaler Associates Recent Malware Spike with WordPress Exploits
Predictable Android Lock Patterns
Apple Update for QuickTime
PlentyOfFish Targeted by Malicious Ads
Microsoft Only Published “Significant” Vulnerability details for Windows 10
More Here