Hello, welcome to the Monday, August 19th, 2019 edition of the Sandsenet Stormsendors Stormcast.

My name is Johannes Ulrich.

I'm recording from Jacksonville, Florida.

Got a little bit of public service announcement to start out with and nothing really new,

but it keeps coming up that users are uploading confidential

documents to various antivirus sandboxes. These tools like most prominently Virus Total will

scan your document for malware and then of course well they will keep a copy of that document and make it

available to researchers not always is the public allowed to search the database

of all of these documents but it usually requires very little authentication

sometimes you just have to pay some money to get full access

to all documents being submitted to these sandboxes. And that's not really bad on part of the

sandbox here. That's sort of part of what they're doing, they're sharing potential malware.

That's being submitted by users.

Just be very careful what you share.

Quite often you have the option to just submit a hash of a particular file.

Now, that's not always as telling of course and can still tip off, for example, an attacker that you intercepted a document and

analyzed it, but still it's much less likely going to cause any problems than uploading

the full document. If you are fairly sure that this malware, you're just not sure what

kind of malware it is,

then by all means use the systems and of course share any samples that you have gotten that

way.

And wasn't it just Friday where I talked about the ongoing problem with in and of things devices. Just to confirm this,

...