Internet Security | Smart Thinking Solutions

20 May 202315 May 2023

Passwordless is coming – Google says so

Here is a keynote article from Google looking at the steps it is taking to make the online experience safer. Google I/O 2023: New features to improve online safety (blog.google) It is worth the read as it does illustrate what the threats and risks are when operating online – both …

Continue reading “Passwordless is coming – Google says so”

12 May 202318 May 2023

Another WordPress Vulnerability

WordPress is an extremely popular platform for producing web content – so threat actors are constantly probing it looking for gaps in the security. The popular plug-ins also make great targets because if their security fails the potential victims can number in the many thousands. Or millions. WordPress Elementor plugin …

Continue reading “Another WordPress Vulnerability”

12 May 202312 May 2023

Patch Outlook

Microsoft has released an out-of-band patch for Outlook to protect from an exploit that could bypass a previous security patch. Microsoft patches bypass for recently fixed Outlook zero-click bug (bleepingcomputer.com) You need to check that the automatic updates have done their thing and applied this patch. If not get it …

Continue reading “Patch Outlook”

11 May 202311 May 2023

ONLY get your Windows updates via the Updates app

We write a lot about patches and updates – they are important to keep your organisation secure. But do not be tempted when browsing the web to follow a helpful advert that offers you Windows updates. That is not how it is done! Fake in-browser Windows updates push Aurora info-stealer …

Continue reading “ONLY get your Windows updates via the Updates app”

16 December 202215 December 2022

LEGO hacked

APIs (application programming interface) are a key part of interoperability and functionality online – but they have to secure: LEGO BrickLink bugs let hackers hijack accounts, breach servers (bleepingcomputer.com) How much are you relying on your web designer to protect your reputation?

15 November 202215 November 2022

Deception for profit on a massive scale

Bill Toulas over on Bleeping Computer refers to the organisation Fangxiao as a malicious for-profit group. Fangxiao runs a massive of over 42,000 web domains that impersonate popular brands that redirect users to sites carrying adware apps, dating sites and that favourite of those browsing the web “free” giveaways. This …

Continue reading “Deception for profit on a massive scale”

8 September 202213 September 2022

Linux malware not your problem – but it is.

Technical cyber security defences are getting better – there is no doubt about that – just keep the security software updated and do not let anyone argue with the advice and actions the anti-virus or advanced threat protection gives or makes. However as technical defences improve the threat actors find …

Continue reading “Linux malware not your problem – but it is.”

Cookie	Duration	Description
IDE	1 year 24 days	Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
test_cookie	15 minutes	The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.