Hello, welcome to the Monday, February 3, 2020 edition of the Sandtonet Storm Center's Stormcast.

My name is Johannes Ulrich.

And I'm recording from Jacksonville, Florida.

First of all, thanks to everybody who submitted corrections during January when I was offering a free raspberry pie to anybody

doing so. Well, I raffled now off this raspberry pie. Just sent out the email to the lucky

winner before starting to record this podcast. Now, for February, I'm trying a little bit something different, and I'm again giving away

a Raspberry Pi, but this time it's not for sending in errors or things like this.

I just want a very brief email or a note via our contact form, why you think you could help

us really improve our honeypot if you own one of these Raspberry Pi's.

So what I'm looking for is any kind of Python programming background maybe, or maybe

you have an interesting network to connect to or you're just really good in

sort of writing GitHub bug reports.

So let me know I'm not looking for essays here.

Please keep it very brief, sort of two, maybe three sentences is really all I'm looking

for.

In Tirees this weekend, we again had a gem by DDA.

You may have heard, and I think I mentioned in the podcast too, a few months ago, sort of late last year.

There was some interesting crypto coin miner malware.

And the way it downloaded the actual malware was by hiding it inside a wave file.

This will sometimes make it past things like network inclusion detection systems or other sort of network-based controls.

And then on the receiving end of course, once WAE file is received by the initial downloader,

the executable is extracted and then run.

...