ISC StormCast for Friday, August 22nd 2014

By Johannes Ullrich #OpenIOC support for ISC API; Side Channels steal keys and screen content; More bad SSL news for Android apps; Fake Anti Virus as dead as real Anti Virus
ISC update: OpenIOC output for our API
https://isc.sans.edu/api
Side Channel Attacks via Shared Memory on Android
http://www.cs.ucr.edu/~zhiyunq/pub/sec14_android_activity_inference.pdf
Reading Encryption Keys from Surface Electric Potential Measurement
http://www.cs.tau.ac.il/~tromer/handsoff/
Mobile Applications use bad SSL Implementations
http://www.fireeye.com/blog/technical/2014/08/ssl-vulnerabilities-who-listens-when-android-applications-talk.html
Current State of Fake Anti Virus
http://blogs.technet.com/b/mmpc/archive/2014/08/19/the-fall-of-rogue-antivirus-software-brings-new-methods-to-light.aspx More Here