policies and procedures | Smart Thinking Solutions

3 August 20225 August 2022

Cybersecurity and Infrastructure Security Agency exploited vulnerability advisory. How this type of mistake can impact your cyber security and steps to protect yourself.

The US Cybersecurity and Infrastructure Security Agency has added a new vulnerabilities to it’s Known Exploited Vulnerabilities Catalog. CISA Adds One Known Exploited Vulnerability to Catalog | CISA This is an interesting issue, as credentials had been hard coded into the application: “Atlassian Questions For Confluence App has hard-coded credentials, …

Continue reading “Cybersecurity and Infrastructure Security Agency exploited vulnerability advisory. How this type of mistake can impact your cyber security and steps to protect yourself.”

28 July 202224 May 2023

How secure is open source software? Do you use open source software or have software written for you? If so read on… UPDATED

When we undertake any cyber security survey, and we ask about software, we know the greatest amount of work we will have to do, is when the client says “we had this written for us” or we use this “open source software”. (We will not get into Android apps or …

Continue reading “How secure is open source software? Do you use open source software or have software written for you? If so read on… UPDATED”

27 July 202227 July 2022

A new place to get a different viewpoint on cyber security – CyberAwake

As well as yesterday being the day we published our 1000th post here, on Smart Thinking. It was also the day we launched the blog on the CyberAwake training site. The content of the CyberAwake blog will be different from Octagon and Smart Thinking, with an emphasis on the issues …

Continue reading “A new place to get a different viewpoint on cyber security – CyberAwake”

18 July 202217 July 2022

Industrial systems as targets for threat actors – this why you need a software policy. Do you have one?

Industrial systems, large and small run on computers – so why not attack them? So here is the scenario – which Octagon has had to deal with in the past – someone leaves and forgets to leave the password for a system that is accessed only occasionally. You cannot contact …

Continue reading “Industrial systems as targets for threat actors – this why you need a software policy. Do you have one?”

28 June 202228 June 2022

Why we do not recommend USB memory sticks as data storage for our clients

It has been a long standing thing at Octagon Technology that we advise our clients not to store important data on memory sticks – as they are easily lost: Japanese man loses USB stick with entire city’s personal details – BBC News By not allowing the use of USB sticks, …

Continue reading “Why we do not recommend USB memory sticks as data storage for our clients”

Cookie	Duration	Description
IDE	1 year 24 days	Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
test_cookie	15 minutes	The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.