Microsoft | Smart Thinking Solutions

22 March 202321 March 2023

Why Zero-day attacks are a real issue

The gap between the vendor discovering a vulnerability and the patch getting to you will always be an issue – this is the zero-day threat. It escalates if the threat actors became aware of the vulnerability and exploits it before the vendor becomes aware. Now research by Mandiant shows that, …

Continue reading “Why Zero-day attacks are a real issue”

18 March 202317 March 2023

Microsoft 365 and ChatGPT

I gave a lunchtime online talk this week to a group business professionals, answering ten set questions that ranged from “did I think robots would take over the world” to “what were my top tips for a small business with limited finance when it came to cyber security”. AI and …

Continue reading “Microsoft 365 and ChatGPT”

17 March 202317 March 2023

US government Cybersecurity and Infrastructure Security Agency Advisories

software patches are essential cybersecurity

The US government Cybersecurity and Infrastructure Security Agency (CISA) site in one of my “go to” places for information on vulnerabilities, exploitations and patches. Built for the US Government, and American centric, it is still a great resource. This week it has run an excellent article for security professionals on …

Continue reading “US government Cybersecurity and Infrastructure Security Agency Advisories”

16 March 202316 March 2023

Patching Matters…

…for governments and for you. Hot on the heels of Microsoft’s Patch Tuesday – an important day of the month for patches and updates from many vendors – is appears that various threat actors gained access to an unpatched US Government Agency server, exploiting a three year old vulnerability that …

Continue reading “Patching Matters…”

15 March 202315 March 2023

Patch Tuesday

Yesterday was Patch Tuesday – so get ready for your Windows PC to ask you to rebbot your machine – even though you are in the middle of a job – read about that here. What is fixed this month? The headlines are- as it is every month – this …

Continue reading “Patch Tuesday”

8 March 20238 March 2023

More protection for Microsoft Excel

Following the blocking of VBA macros by default in Microsoft Office apps – read about the ups and downs of that story here – Microsoft has announced that all untrusted XLL add-ins will be blocked by default. Microsoft Excel now blocking untrusted XLL add-ins by default (bleepingcomputer.com) Blocking any avenue …

Continue reading “More protection for Microsoft Excel”

7 March 20237 March 2023

Poisoning AI output

We all know (unless you have had your head under a pillow) that ChatGPT is an artificial intelligence system that among its capabilities it can write a love poem, and academic paper, computer code or even your homework. It can also answer your questions – just ask Bing! ChatGPT AI …

Continue reading “Poisoning AI output”

Cookie	Duration	Description
IDE	1 year 24 days	Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
test_cookie	15 minutes	The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.