Hello, welcome to the Wednesday, October 18th, 2017 edition of the Sansonet Storms and a Stormcast. My name's

Johannes Ulrich and I'm recording from Singapore. Yesterday, of course, was all about the new WPA-2 crack attack,

but looking at some of these more sophisticated and technically complex attacks,

it's easy to forget that most people probably still get infected using fairly simple techniques.

And Pratt is writing about how the DDE, the dynamic data exchange technique, is being used in

recent mal-spam in order to infect users. I've talked about DDE before. It's nothing new at

all and actually kind of odd that people fall for it at all because they do have to

click through multiple warnings in order to execute the malicious code. Now Brad did include a number

of screenshots from these warning dialogues. The only thing I can think of is that some of them

are a little bit

cryptic and that may be why users click okay and execute the malicious code if you were

hit by this latest way if you may have seen the docu sign themed emails that were

used and if a user clicked and executed the malicious

code they're likely infected now with banking malware well it's just a quick update on the

WPA to crack attack well vendors have been pushing out updates for it and Microsoft and Apple already had updates included in their most recent operating system updates.

So for those systems, you should be fine if you're up to date.

Cisco, Obiquity and a lot of other vendors have also published

patches. So like I said yesterday, make sure that you check for your access points, for your

clients, that you're updating them. Probably this weekend is a great day to do that for your

home devices. And RSA keys created by chips made by Infineon apparently are not as secure as originally believed.

Infinion's chips are often used in smart cards, they're also used in some TPM modules and UBiki used them in some of their products.

The problem here is that if you are creating the keys on the device itself, they may be

...