phishing | Smart Thinking Solutions

15 June 202215 June 2022

Ransomware is getting nastier

Threat actors, just like any other software developer, are always looking for ways to improve their software. In the case of threat actors this is often done to avoid the mitigation that software vendors have put in place to defend against the malware or patch a vulnerability the threat actors …

Continue reading “Ransomware is getting nastier”

15 June 202222 June 2022

More on Follina exploits including advice on how to protect your organisation – now executing in File Explorer preview pane… UPDATE 15 June 2022

This post was originally made on 9 June 2022 Update 15 June 2022 Microsoft has included updates in it’s Patch Tuesday bundle to address this issue: Microsoft Patch Tuesday – Follina zero-day fixed – Smart Thinking Solutions Get the updates done as soon as possible. Let’s hope this is really …

Continue reading “More on Follina exploits including advice on how to protect your organisation – now executing in File Explorer preview pane… UPDATE 15 June 2022”

13 June 202213 June 2022

Emotet are back – now stealing credit card data

The Emotet botnet started off as banking trojan then evolved into a spamming and malware delivery system, has now moved onto exfiltrating credit card data: Emotet malware gang shifts to stealing credit cards • The Register If you have your credit card details stored in your Google Chrome browser, the …

Continue reading “Emotet are back – now stealing credit card data”

13 June 202213 June 2022

Facebook phishing campaign

I think the number is more than a quarter of the world’s population has a Facebook account, couple that with Meta’s international reputation for information security and ethics and so it is no surprise that it is a target for scammers and threat actors Facebook phishing campaign nets millions in …

Continue reading “Facebook phishing campaign”

9 June 20229 June 2022

Active exploit for Follina – the still unpatched flaw in Microsoft Word

Here is another excellent breakdown, with screen shots, of phishing emails exploiting the Microsoft Word/Follina/ms-msdt flaw. Being aware of the types of phishing emails the threat actors use is part of the defence in depth you need to have great cyber security. TA570 Qakbot (Qbot) tries CVE-2022-30190 (Follina) exploit (ms-msdt) …

Continue reading “Active exploit for Follina – the still unpatched flaw in Microsoft Word”

8 June 20228 June 2022

New in the wild malware – SVCReady

Researchers at HP Wolf Security have started to see phishing spam email campaigns deploying a previously unknown malware family SVCReady. The HP security blog has a very good description of the malware and how it works – a bit techie – but towards the end it shows some images of …

Continue reading “New in the wild malware – SVCReady”

6 June 20226 June 2022

Ransomware attacks – just in case you have forgotten that any organisation can be compromised – three tips to help you face up to the threat

Bored with ransomware stories? Read this one, it has a very nice Hitchhiker’s Guide to the Galaxy reference. There have been a flurry of ransomware attacks in the news recently – but these are only the ones that make the headlines. Louisiana authorities investigating ransomware attack on city of Alexandria …

Continue reading “Ransomware attacks – just in case you have forgotten that any organisation can be compromised – three tips to help you face up to the threat”

Cookie	Duration	Description
IDE	1 year 24 days	Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
test_cookie	15 minutes	The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.