Fix or not to fix? | Smart Thinking Solutions

This is an odd one, Microsoft has no plans to fix this issue even though it appears to be being actively exploited and has been for some time.

New Windows zero-day exploited by 11 state hacking groups since 2017 – BleepingComputer

The attack exploits a weakness in the .lnk file – something we all use to link to resources on our computers – by padding extra malicious code into the file. The code is easily obfuscated from casual inspection by the inclusion of white space with the malicious code. Run the link and the malicious code runs.

The links get to the victims in the usual way – phishing, malicious websites, etc..

To quote the BleepingComputer article “[Microsoft] declined to address this vulnerability with a security patch.”

I am sure Microsoft has its reasons for not patching but it does highlight that you and your organisation needs the best technical defences it can afford – don’t get me started on the organisations I meet with who still use “free” anti-virus packages!

Technology Solutions

Clive Catton MSc (Cyber Security) – by-line and other articles

Cookie	Duration	Description
IDE	1 year 24 days	Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
test_cookie	15 minutes	The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.

Further Reading