[ Attack ]  Finnish defense ministry website targeted by cyber attack | Reuters http://ow.ly/ZTrWS

[ Browser ]  Turns out Google Chrome has just fixed the bugs at #Pwn2Own, where are the others? @ MicrosoftEdge @ AdobeSecurity http://googlechromereleases.blogspot.com/2016/03/stable-channel-update_24.html

[ Defend ]  Protecting targeted individuals and populations at scale is critically important: https://security.googleblog.com/2016/03/more-encryption-more-notifications-more.html

[ Defend ]  Microsoft is hoping to curb malware with a new macro blocking feature in Office - http://ow.ly/ZTXSW

[ Defend ]  Abusing bugs in the Locky ransomware to create a vaccine. https://www.lexsi.com/securityhub/abusing-bugs-in-the-locky-ransomware-to-create-a-vaccine/?lang=en

[ Forensics ]  SDN Forensics Challenge, 2016 - https://www.cmand.org/sdn/sdnf.html

[ Linux ]  An automated script that download potential exploit for linux kernel from exploitdb, and compile them automatically https://github.com/ngalongc/AutoLocalPrivilegeEscalation

[ Mac OS X ]  Check out our new blog on how to use OS X FSEvents to discover deleted malicious artifacts http://ow.ly/ZUfbN #cybersecurity #infosec

[ Mac OS X ]  Slides for "Don't Trust Your Eye: Apple Graphics Is Compromised!" CanSecWest16 by @ chenliang0817 , me, @ flanker_hqd https://speakerdeck.com/marcograss/dont-trust-your-eye-apple-graphics-is-compromised

[ Malware ]  NCC Group @ foxit Blog: Website of security certification provider spreading ransomware - http://blog.fox-it.com/2016/03/24/website-of-security-certification-provider-spreading-ransomware/

[ Malware ]  #Unit42 investigates the evolution of #SamSa Malware & discovers new #ransomware tactics in play http://bit.ly/25nAQNB

[ Malware ]  New TeslaCrypt Ransomware Spikes on Leap Day, Attempting to Catch Users Off-Guard http://blog.checkpoint.com/2016/03/23/new-teslacrypt-ransomware-spikes-on-leap-day-attempting-to-catch-users-off-guard/

[ Others ]  Internet of Medical Devices - security incidents related to hospitals and medical equipment. https://securelist.com/blog/research/74249/hospitals-are-under-attack-in-2016/

[ Others ]  The native Docker apps for Mac & Windows use unikernel tech under the hood. Very excited we can now share this :) https://blog.docker.com/2016/03/docker-for-mac-windows-beta/

[ Pentest ]  Conducting red team assessments without the use of #malware http://bddy.me/1RnaWQn #DFIR #FEYERedTeam https://t.co/0NA4nsWVv2

[ Popular Software ]  Oracle out-of-band release for Java 0-day https://blog.qualys.com/laws-of-vulnerabilities/2016/03/24/oracle-out-of-band-release-for-java-0-day

[ ThirdParty ]  The Six Types of Open-Source Library Vulnerabilities - https://blog.srcclr.com/the-six-types-of-open-source-library-vulnerabilities/

[ Tools ]  New Pin release !!!!!!! https://software.intel.com/en-us/articles/pintool-downloads

[ Tools ]  I've added the slides from my OWASP Cologne Burp Session Handling Workshop to the NastyWebHackme repo https://github.com/thomaspatzke/NastyWebHackme

[ Tools ]  Based on LLVM, but Keystone is way smaller: LLVM compile in 15 min, but Keystone takes only 30 sec. More comparison: http://keystone-engine.org/docs/beyond_llvm.html

[ Web Security ]  Exfiltration at Lightspeed - Faster Blind SQL Injection https://drive.google.com/file/d/0B0tBYiOD2uG7MkpxaFRWTkhOTTA/view

[ Windows ]  BitLocker : What’s New in Windows 10 November Update, And How To Break It : https://articles.forensicfocus.com/2016/03/23/bitlocker-whats-new-in-windows-10-november-update-and-how-to-break-it/

[ Windows ]  Slides for our talk at #CSW16 (#BadWinmail and Email Security on Outlook) available at https://sites.google.com/site/zerodayresearch/BadWinmail_and_Email_Security_Outlook_final.pdf. Pay attention to slides 40+.

[ WirelessSecurity ]  SDR Radio Academy: Reverse engineering a wireless car key fob. http://phasenoise.livejournal.com/3822.html