Hello, welcome to the Monday, February 6th, 2017 edition of the Sands and its Storm Center's Stormcast.

My name is Johannes Ulrich, and today I'm recording from Jacksonville, Florida.

Xavier found a number of base 64 encoded malvers samples on pastebin. Typically, these type of posts are

then downloaded to infected systems. Pastebin as

source is usually not considered malicious and the basics the bays64 encoded samples are unlikely

to trigger anti-malrass signatures, making that sort of a very overt, covert channel. This is in particular problematic if the download that initiates the infection and decodes

the malware is not detected by anti-mailware.

If you had this happen before, we're sort of simple JavaScript downloaders and such,

were not detected. So this could then be

made worse by downloading from a well-known and semi-trusted site like a pastebin.

Xavier couldn't identify any specific malware sample associated with the pastebin post that he found, but there are likely

many samples using this technique and not all paste bin posts like these are actively used

at any time.

Cisco's Maraki product line of wireless access points suffer from an interesting problem. A clock component

inside these access points will fail causing the access point to crash and become unbootable

again. This is a hardware problem. This is not something you can fix with a software update.

Cisco initiated a recall and it is important that you get in line to have your device replaced

before it is affected by this bug because in that moment it will just die.

According to Cisco, replacements will be prioritized to replace all the units first, which of course will hit this particular bug first.

And Intel released a hot fix for the McGaffy E Policy Orchestrator.

The hot fix patches a blind sequel injection vulnerability to exploit the vulnerability and attacker would send a crafted

HTTP request to the policy orchestrator and the attacker would then be able to

...