Hello, welcome to the Monday, September 26, 2016 edition of the Sansonet Storm Center's Stormcast.

My name is Johannes Ulrich, and the I'm recording from Jacksonville, Florida.

Last week, Xavier reported about seeing some malicious Microsoft publisher files.

They typically have the dot-pub extensions and of course they

may include the same malicious macros and such that you find in any other kind of Microsoft

Office document. Well, the DA now has a little video and little hands-on guide in how to analyze these files and extracting

these macros he's using his good old Oli dump tool which of course will do a fine job

with a publisher files just as it does with Microsoft Word documents or Excel files.

Elcomsoft, the Russian company that specializes in mobile forensic software,

in particular the decryption of archives and like,

found an interesting vulnerability in iOS 10.

The problem here is that if you save an iOS 10 backup to a PC and

encrypt that backup, it is now much faster to brute force the password for this backup than it was

before in iOS 9. According to ElcomSoft on iOS 9, they were able to prove for us about 2,400 passwords

per second on an Intel I-5.

So that's actually relatively slow, but on iOS 10, they are able to test up to 6 million passwords per second on the same Intel

I-5 CPU, and potentially of course many, many more once they start implementing this

on graphics cards.

Apparently the problem here is that Apple implemented a new password verification scheme on iOS

10 that's simpler and as a result easier to prude force.

That new scheme exists in addition to the old password verification scheme.

So not have to ensure why the new scheme was actually even implemented. So if someone

...