Hello, welcome to the Monday, March 18th, 2019 edition of the Sansonet Stormsanders Stormcast.

My name is Johannes Ulrich.

And today I am recording from, well, an undisclosed location that you have to guess in order to win this month's Raspberry Pi.

As far as diaries go, we do have one by Remko showing how Jupyter Notebooks can be

integrated with Radari to, in order to help you with your reverse analysis and extracting

indicators of compromise.

The nice thing about these Jupyter notebooks is that they do

allow you to essentially write sort of scripts that combine various other scripting languages

like Python, R and such. So this makes them fairly easy sort of wrappers around the number of

different tools, like in this

case, Radari.

So if you're interested in this, take a look at Ramco's post.

And ProofPoint has an interesting report where they took a look at IMAP prud forcing against

some of the major cloud providers, like Outlook 365 and Google.

The reason that IMAP is such an attractive target is that multifactor authentication usually doesn't work well to protect IMAP accounts.

Your milk line constantly has to log in and check whether there's any new email available

for you.

So having to enter a token or anything like this often doesn't work to make things more

complicated.

In many cases, you have shared accounts with IMAP where a particular email address

is monitored by multiple users in an organization, making again things like difficult to guess,

unique passwords, more difficult to manage. Now, when you look at it initially, actually,

...