Hello, welcome to the Wednesday, June 21st, 2017 edition of the Sanchez and Storm Center's Stormcast. My name is Johannes Ulrich and I'm recording from Minneapolis, Minnesota.

Streaming video content to mobile devices and computers is of course a big business these days.

Cisco offers a number of solutions to allow for that to happen to TV providers.

Now, in the UK, Skies Now TV video player that is distributed by Cisco did include not just a

certificate, but also a private key for DRMlocal.Sisco.com.

The certificate now has been revoked, so the risk should be somewhat diminished.

And of course, this particular host name is really only used by this video player platform.

But yet again, if you include things like private keys, passwords and the like in software

that you're shipping to customers, you have to assume that they will leak pretty quickly.

It doesn't look like in this case the key was actually particularly obfuscated or protected.

It may have just been included by mistake.

Now if you're using Windows, you probably know that Windows can send error reports whenever Windows software crashes.

Now usually these error reports are going to Microsoft, but you can also locally collect them.

And Renato Marino today gave us a real nice guest diary that illustrates how these error reports can be used. He actually used it in a

recent incident that he's describing in this diary and he's providing you with some examples,

what these reports look like and what you can learn from them. Now one reason software

crashes is often memory corruption. Memory

corruption errors are also one of the leading causes of vulnerabilities. So

detecting them is certainly important but not always easy. To make things easier, we

now have a new library, at least for those of you on Unix that use GLipC.

The library was written by Daval Kapil and it's called Lib DeHeap.

It is being injected into already compiled binary, so you don't need the source code.

...