[ Android ]  Source Code For #GMBot Android Banking Malware Leaked: https://threatpost.com/source-code-for-android-banking-malware-leaked/116380/ via @ threatpost

[ Android ]  How does Dalvik handle 'this' registers? - http://buff.ly/20Qpw7m

[ Attack ]  Admedia attacks now rely also on Joomla to serve ransomware http://securityaffairs.co/wordpress/44693/cyber-crime/admedia-attacks-joomla.html

[ Attack ]  Japan targeted with regionalized malicious spam campaigns http://www.symantec.com/connect/ko/blogs/japan-targeted-regionalized-malicious-spam-campaigns

[ Attack ]  Angler EK is now exploiting Silverlight up to 5.1.41105.0 (CVE-2016-0034 ? ) http://malware.dontneedcoffee.com/2016/02/cve-2016-0034.html https://t.co/zAaNRaAPeX

[ Detect ]  Cool powershell script to automatically scan your system and report VirusTotal positives: http://blogs.technet.com/b/pfesweplat/archive/2016/02/20/powershell-malware-detection-and-tracking-of-new-autoruns.aspx

[ Detect ]  [/dev/random] Incident Handling with Docker Containers https://blog.rootshell.be/?p=30083

[ iOS ]  IOActive researcher says invasive hardware attack or power analysis could unlock iPhone 5c. https://threatpost.com/delicate-hardware-hacks-could-unlock-shooters-iphone/116388/

[ Linux ]  CVE-2016-2384 arbitrary code execution due to a double-free in the usb-midi linux kernel driver - https://xairy.github.io/blog/2016/cve-2016-2384 bonus: SMEP bypass

[ Malware ]  Necurs.P2P - A New Hybrid Peer-to-Peer Botnet http://www.malwaretech.com/2016/02/necursp2p-hybrid-peer-to-peer-necurs.html

[ Network ]  PoC for getting remote HTTP Server date using gzip compressed HTTP Response : https://github.com/jcarlosn/gzip-http-time , Details : http://jcarlosnorte.com/security/2016/02/21/date-leak-gzip-tor.html

[ NetworkDevice ]  Synology NAS DSM 5.2 Remote Code Execution (RCE) http://rileykidd.com/2016/01/12/synology-nas-dsm-5-2-remote-code-execution-rce/

[ Others ]  Reverse engineering the ARM1 processor's microinstructions : http://www.righto.com/2016/02/reverse-engineering-arm1-processors.html cc: @ kenshirriff https://t.co/mhnDHSRCji

[ Others ]  OpenLibra : The largest Internet platform for downloading free scientific ,technical ,Programming & security books: https://openlibra.com/en/collection/search/category/security_books

[ Others ]  #Unit42 finds pirated #iOS app store’s client successfully evaded Apple iOS code review http://bit.ly/1RgXxLI @ Unit42_Intel

[ Pentest ]  Abusing Exchange Web Service - Part 1 http://www.shellntel.com/blog/2016/2/13/abusing-exchange-web-service

[ Tools ]  IDA v6.9 service pack released! Multiple bug fixes include decompiler. Let's patch your IDA ;) https://www.hex-rays.com/products/ida/6.9/index.shtml#160222 #REhints

[ Tools ]  Using an optimizing decompiler to reverse engineer an obfuscated program http://zneak.github.io/fcd/2016/02/21/csaw-wyvern.html

[ Tools ]  Free Online Tools for Looking up Potentially Malicious Websites https://zeltser.com/lookup-malicious-websites/

[ Web Security ]  BlackBerry Enterprise Service 12 Self-Service - SQLi and Reflected XSS http://goo.gl/fb/OgdoK1 #FullDisclosure

[ Web Security ]  Added #145 "XSS without User Interaction from passive Elements" to #H5SC. More variations welcome, it's a WIP. https://html5sec.org/#145