Cyber Grand Shellphish
http://phrack.org/papers/cyber_grand_shellphish.html

Saga 2.0 comes with IP Generation Algorithm (IPGA)
https://www.govcert.admin.ch/blog/27/saga-2.0-comes-with-ip-generation-algorithm-ipga

Content Injection Vulnerability in WordPress
https://blog.sucuri.net/2017/02/content-injection-vulnerability-wordpress-rest-api.html

Hacker Dumps iOS Cracking Tools Allegedly Stolen from Cellebrite
https://motherboard.vice.com/en_us/article/hacker-dumps-ios-cracking-tools-allegedly-stolen-from-cellebrite

Watch Your Computer Go Bonkers with Cancer Trollware
https://www.bleepingcomputer.com/news/security/watch-your-computer-go-bonkers-with-cancer-trollware/

Spora Ransomware Sets Itself Apart with Top-Notch PR, Customer Support
https://www.bleepingcomputer.com/news/security/spora-ransomware-sets-itself-apart-with-top-notch-pr-customer-support/

Vizio smart TVs tracked viewers around the clock without consent
https://arstechnica.com/tech-policy/2017/02/vizio-smart-tvs-tracked-viewers-around-the-clock-without-consent/

Maybe it was a good thing that a lightning strike killed the one I owned.

Wow, quite interesting Bob, “heavenly power” used for anti-tracking…

iKittens: Iranian Actor Resurfaces with Malware for Mac (MacDownloader)
https://iranthreats.github.io/resources/macdownloader-macos-malware/

Lifting the (Hyper) Visor: Bypassing Samsung’s Real-Time Kernel Protection
https://googleprojectzero.blogspot.com/2017/02/lifting-hyper-visor-bypassing-samsungs.html

Erebus Ransomware Utilizes a UAC Bypass and Request a $90 Ransom Payment
https://www.bleepingcomputer.com/news/security/erebus-ransomware-utilizes-a-uac-bypass-and-request-a-90-ransom-payment/

Fileless attacks against enterprise networks
https://securelist.com/blog/research/77403/fileless-attacks-against-enterprise-networks/

New Attack, Old Tricks (analyzing a malicious document with a mac-specific payload)
https://objective-see.com/blog/blog_0x17.html

New ASLR-busting JavaScript is about to make drive-by exploits much nastier
https://arstechnica.com/security/2017/02/new-aslr-busting-javascript-is-about-to-make-drive-by-exploits-much-nastier/
https://www.vusec.net/projects/anc/

New Xagent Mac Malware Linked with the APT28
https://labs.bitdefender.com/2017/02/new-xagent-mac-malware-linked-with-the-apt28/

CryptoMix: Avast adds a new free decryption tool to its collection
https://blog.avast.com/cryptomix-avast-adds-a-new-free-decryption-tool-to-its-collection

New crypto-ransomware hits macOS
http://www.welivesecurity.com/2017/02/22/new-crypto-ransomware-hits-macos/

SHAttered - We have broken SHA-1 in practice
https://shattered.it/
https://shattered.it/static/shattered.pdf

This reminds me of the Cancer warnings against using sugar. They fed a rat the equivalent of a bath tub
full of sugar daily and the rat developed cancer. Sugar must therefore be a cancer causing agent.
Sugar is now considered safer than it’s first released replacement.