[ Android ]  Why does an Android keyboard need to see your camera, log files – and phone home to China? 50 million downloads http://m.theregister.co.uk/2016/06/07/android_keyboard_needs_to_see_camera_and_log_files/

[ Browser ]  Mozilla fixes 13 vulnerabilities in #Firefox, including some that could lead to spoofing, clickjacking - http://ow.ly/lhLv3013yF3

[ Hardware ]  Turn Smartphone Vibration Motor into Microphone to Spy on You : http://synrg.csl.illinois.edu/vibraphone/paperdocs/VibraPhone_nirupam.pdf (pdf) https://t.co/SSGl6FXEKF

[ iOS ]  while stuck in Heathrow I uploaded slides of my talk on iOS malware at @ BSidesLondon https://speakerdeck.com/milkmix/ios-malware-myth-or-reality #malware

[ Malware ]  On-Demand Polymorphic Code In Ransomware http://blog.fortinet.com/2016/06/07/real-time-polymorphic-code-in-ransomware

[ Malware ]  Technical analysis and sinkhole data of Vawtrak : https://www.sophos.com/en-us/medialibrary/PDFs/technical%20papers/sophos-vawtrak-v2-sahin-wyke.pdf?la=en (pdf) https://t.co/z4HhHr1CSF

[ OpenSourceProject ]  Nice list on #firmware #reversing projects with walkthroughs: https://github.com/devttys0/binwalk/wiki/Projects-Using-Binwalk

[ Popular Software ]  Adobe Reader CoolType unlimited out-of-bounds stack manipulation via BLEND operator https://bugs.chromium.org/p/project-zero/issues/detail?id=258#c_ts1465322479

[ Tools ]  New blog post: SAMLReQuest Burpsuite Extention https://www.insinuator.net/2016/06/samlrequest-burpsuite-extention/

[ Windows ]  Windows BITS ‘Notification’ Feature Used to Deliver Malware https://threatpost.com/windows-bits-notification-feature-used-to-deliver-malware/118555/

[ Windows ]  15 Ways to Bypass the PowerShell Execution Policy https://blog.netspi.com/15-ways-to-bypass-the-powershell-execution-policy/ #powershell #dfir

[ Windows ]  Win10, Registry, and fun with UCS/UTF16 http://www.hexacorn.com/blog/2016/06/07/win10-registry-and-fun-with-ucsutf16/ #DFIR #malware