Cybersecurity and Infrastructure Security Agency | Smart Thinking Solutions

29 April 202230 April 2022

CISA updates the destructive/wiper malware advisory

CISA has updated it advisory covering the WhisperGate malware and other data wiper malware that has been deployed against Ukraine since January 2022: CISA and FBI Update Advisory on Destructive Malware Targeting Organizations in Ukraine | CISA Destructive malware targeting Ukrainian organizations – Microsoft Security Blog WhisperGate malware detected by Microsoft …

Continue reading “CISA updates the destructive/wiper malware advisory”

28 April 202228 April 2022

Joint advisory on the top exploits

The UK’s National Cyber Security Centre with it’s partners in the Five Eyes, has issued an advisory for the top exploited software vulnerabilities in 2021 – meaning they could continue being the top exploits in 2022. 2021 Top Routinely Exploited Vulnerabilities | CISA Microsoft Exchange server, VMware, SonicWall and Log4j …

Continue reading “Joint advisory on the top exploits”

26 April 202230 April 2022

CISA adds several Windows vulnerabilities to the ” Known Exploited Vulnerabilities Catalogue”

software patches are essential cybersecurity

The US Government, Cybersecurity and Infrastructure Security Agency (CISA) has added several new Microsoft Windows, vulnerabilities to it’s database. These all need patches – so again it is a good time to check that your “auto-updating” is working or time to get an Octagon IT monitoring package and let experts monitor the …

Continue reading “CISA adds several Windows vulnerabilities to the ” Known Exploited Vulnerabilities Catalogue””

23 April 202226 April 2022

Java vulnerabilities to look out for – Spring4Shell – UPDATE 23 April 2022

This story was first published on 31 March 2022 and Updated on 5 April 2022 Update 26 April 2022 There has been a steady increase in the number of active attacks against this and related vulnerabilities: Hackers hammer SpringShell vulnerability in attempt to install cryptominers | Ars Technica This is …

Continue reading “Java vulnerabilities to look out for – Spring4Shell – UPDATE 23 April 2022”

22 April 202222 April 2022

CISA issues advisories on Drupal and Cisco products

If you use these products then the details of the issues and updates are here: Drupal Releases Security Updates | CISA Cisco Releases Security Updates for Multiple Products | CISA

Cookie	Duration	Description
IDE	1 year 24 days	Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
test_cookie	15 minutes	The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.