[ Android ]  Fake Security App for AliPay customers - Android SMS Stealer http://research.zscaler.com/2016/02/fake-security-app-for-alipay-customers.html

[ Android ]  ARTDroid: Simple and easy to use library to intercept virtual-method calls under the Android ART runtime - https://github.com/vaioco/art-hooking-vtable

[ Android ]  git version of NoDeviceCheck Xposed module recently updated to effectively log and bypass SafetyNet checks - https://github.com/pylerSM/NoDeviceCheck

[ Browser ]  Cross-Origin CSS Attacks Revisited (feat. UTF-16) http://blog.innerht.ml/cross-origin-css-attacks-revisited-feat-utf-16/

[ Defend ]  Monitoring Control Flow History To Detect Code Reuse Attacks http://www.wseas.us/e-library/conferences/2015/Seoul/ACE/ACE-14.pdf

[ MalwareAnalysis ]  Dridex Experimenting with New Attack Vectors - A Deep Dive into 2012-0158 : http://phishme.com/dridex-experimenting-with-new-attack-vectors/

[ Others ]  BDA MPEG2 Transport Information Filter DLL side loading vulnerability http://goo.gl/fb/HtyRjq #FullDisclosure

[ Popular Software ]  HTTP Response Splitting in Node.js – Root Cause Analysis http://blog.safebreach.com/2016/02/09/http-response-splitting-in-node-js-root-cause-analysis/

[ Popular Software ]  Looking inside the (Drop) box : http://0b4af6cdc2f0c5998459-c0245c5c937c5dedcca3f1764ecc9b2f.r43.cf2.rackcdn.com/12058-woot13-kholia.pdf (pdf)

[ Windows ]  http://files.brucon.org/2013/advanced-excel-hacking-workshop.pdf Excellent Reference for the cmd execution in Excel.

[ Windows ]  New post: February 2016 Patch Tuesday Includes Critical Fixes for IE Vulnerabilities; Adobe Releases http://bit.ly/20UgtnZ @ TrendMicro