ISC StormCast for Wednesday, July 29th 2015

By Johannes Ullrich Javascript ZIP archives used for Malspam
Brinks Smart Safe Vulnerability
XEN/Qemu Exploit in ATAPI (CDROM) commands allows for VM escape
Waterplant Honeynet (german only) More Here      

ISC StormCast for Tuesday, July 28th 2015

By Johannes Ullrich Angler’s Best Friends
Android MMS Media Library Exploit
Windows 10 Support for Intel Real Sense
Valve Software Password Reset Vulnerability More Here      

ISC StormCast for Monday, July 27th 2015

By Johannes Ullrich Is Patching in 2 Days Possible?
NHTSA Orders Fiat/Chrysler Recall of Vulnerable Vehicles
New Version of Google Chrome
Malicous Images Can Affect Cars More Here      

ISC StormCast for Friday, July 24th 2015

By Johannes Ullrich Four 0-Days Affecting Internet Explorer Mobile Released
Virtual Machine Side Channel Attacks Leak Crypto Keys
Drupal / WordPress Updates
Userhelper / libuser Allow Privilege Escalation
AV Comperatives Release Mac Anti Virus Test Results More Here      

ISC StormCast for Thursday, July 23rd 2015

By Johannes Ullrich Bartalex malspam pushing Pony/Dyre
Lottery IT Security Director Riggs Lottery
Pump and Dump Spammers Linked to JP Morgan Breach Arrested
DEV522: Defending Web Applications More Here