Hello, welcome to the Wednesdays, January 6, 2021 edition of the Santernut Storm Center's Stormcast. My name is Johannes Ulrich,

and the time recording from Jacksonville, Florida. Ever struggle with analyzing large packet captures?

Of course, that's a quite common problem. And in today's

guest diary by Yisheng Talk, V, do have an introduction to a new tool, at least new to me,

Net Fox Detective. NetFox Detective only runs on Windows, which is probably why I haven't

personally run it, but it does distinguish itself

by being able to analyze multiple gigabytes of packet captures and, well, not quite all the

details that you sort of get from tools like Wireshark, but then again, just being able to get a handle on these

large P-cabs is probably worth just checking out the tool and see if you like it. It's open

source, and yes, the entire source code is accessible at GitHub, so not just free.

And of course, with the recent rise in the value of cryptocurrencies,

they're back in the crosshairs of attackers.

And the latest example is a piece of malware written in Go that apparently comes as an uninvited payload with some

popular poker applications and the like. And while these applications do function as intended,

they even set up some social media accounts and such for the companies that supposedly are

creating these applications. The main goal appears to be to train

users crypto coin accounts and yes this particular malware is again written in go

and is actually attacking multiple operating systems.

So far, versions have been identified on Windows Linux and Mac OS.

So nothing yet apparently on the mobile operating systems unless Linux here also includes Android.

And the way they target crypto coin users is by essentially offering applications that deal with

cryptocurrencies.

...