Bruce Schneier | Smart Thinking Solutions

28 December 202228 December 2022

Here is a cautionary story if you do not patch and are Albanian

Bruce Schneier has this article about Albanian prosecutors holding IT admins, who failed to patch and update systems, responsible for cyber attacks on Albania: Arresting IT Administrators – Schneier on Security

9 December 20228 December 2022

Because It’s Friday – Bruce Schneier on CAPTCHA

Regular readers know I read and quote a lot of stuff by Bruce Schneier, today he will make you smile: CAPTCHA – Schneier on Security Something extra today One of my support team suggested I post this on my “Because It’s Friday” slot, for all the IT support staff everywhere …

Continue reading “Because It’s Friday – Bruce Schneier on CAPTCHA”

21 November 202221 November 2022

This is on my Christmas list…

…oh no! It’s not out until February 2023. It’s not just computers—hacking is everywhere. Bruce Schneier Diana and I have attended several of Bruce’s speaking events both in the real world and online and I have had him answer my questions as well (he did not think much of the …

Continue reading “This is on my Christmas list…”

17 November 202217 November 2022

Qatari World Cup apps

There is no denying the fact that the compulsory Qatari World Cup apps, Ehteraz, a Covid-19 tracker from the Qatari Ministry of Public Health, and Hayya from the Qatari Supreme Committee for Delivery & Legacy for the World Cup, will be collecting a lot of information on everyone attending. This …

Continue reading “Qatari World Cup apps”

16 November 202216 November 2022

The supply chain is complicated – which is why it is vulnerable to exploitation

Bruse Schneier has an interesting article out today, describing how a Russian company that produces code that is included in thousands of smartphone apps, both iOS and Android, masquerades as an US company. Russian Software Company Pretending to Be American – Schneier on Security There is no suggestion of wrong …

Continue reading “The supply chain is complicated – which is why it is vulnerable to exploitation”

27 October 202227 October 2022

Do you use Cisco AnyConnect? If so make sure you have ALL the clients patched.

Threat actors are carrying out massive attacks, looking for unpatched Cisco AnyConnect Windows clients: Cisco AnyConnect Windows client under active attack • The Register

21 October 202221 October 2022

CISA security advisories

The US Cybersecurity and Infrastructure Security Agency is a good source of cyber security information – which is why I try and pass on those that are relevant to my readers. Here are two of the latest: Their Known Exploited Vulnerabilities Catalog is a resource for tracking flaws and issues …

Continue reading “CISA security advisories”

Cookie	Duration	Description
IDE	1 year 24 days	Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
test_cookie	15 minutes	The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.