Hello, welcome to the Wednesday, December 6th, 2018 edition of the Sands and the Storm Center's

Stormcast. My name is Johannes Ulrich. And today I'm recording from Jacksonville, Florida.

In Diaries today, we got a quick walkthrough by Brad through the latest version of Lockheibod.

It, as usual usual uses email to propagate

and then an Excel spreadsheet in this case,

which of course will use macros

in order to load the malicious content.

So nothing terribly exciting here.

But if you came across a sample like this in your environment,

well Brad did the reverse

engineering for you.

And usually I don't talk much about preaches, but there have been two very large ones just

within a week.

So I want to spend a little bit time on that.

First one, of course, the big Starwoods

or Marriott Breach, and then this week we heard about the large breach affecting like

a hundred million users at Quorum. What I find is that a lot of people get very excited about

these breaches, but you really sort of have to take them a little bit into

perspective to see how much they actually affect you. First of all, your password. Your password,

well, you should assume it's going to get lost. So use different passwords for different sites,

and then having your password lost on one side

really shouldn't be an event for you. Secondly, payment card information. Payment card information

...