Hello, welcome to the Wednesday, January 29th, 2020 edition of the Sands and the Storm Center's

Stormcast. My name is Johannes Ulrich, and then I'm recording from Augusta, Georgia.

EmoTet is still a very prolific botnet being used to install various malware, and yeah,

you probably have seen many samples now Brad is looking at the latest

version of Emudhead sample that he captured on Monday and went through how it is

being used to install Trickbot as usual he does provide peaps of the infection

activity so great way to sharpen your packet analysis skills.

And Apple released updates across its entire product range, including some of the Windows software that Apple publishes, in particular iTunes.

iTunes is no longer used on MacOS Catalina, but on Windows, it's still an active product

and still supported by Apple.

Now, I skimmed through the advisories, and of course, Apple doesn't usually do like CVSS scores or such.

So it's something a little bit hard to tell how important some of these vulnerabilities are.

A lot of purge escalation vulnerabilities that are being addressed with this update.

Kind of interesting remote code execution vulnerability in the Bluetooth stack I saw.

Haven't really seen those exploited per se, but of course that is always kind of a critical

issue if an attacker would be able to wirelessly connect an exploit system.

On iOS, Apple also fixed a bug that would allow a remote user in FaceTime

to change the camera you are using on your mobile device. Of course, that also could have

privacy implications. Apple also fixed a buck that did prevent users from turning off location

services all the way on recent iPhone models.

Now, as usual, Apple also provides a standalone Safari update for older versions of Mac OS,

and this fixes two vulnerabilities.

...