The Register | Smart Thinking Solutions

21 December 202121 December 2021

More on the sharing of compromised passwords with “‘;–have i been pwned?”

I wrote about this yesterday: UK National Crime Agency shares compromised passwords – Smart Thinking Solutions Here are two more stories about The National Crime Agency’s (NCA) donation of passwords in the wild. UK donates 225 million stolen passwords to hack-checking site – BBC News UK National Crime Agency finds …

Continue reading “More on the sharing of compromised passwords with “‘;–have i been pwned?””

20 December 202120 December 2021

Just like buses – Log4j flaws come in threes

Bad things come in threes: Apache reveals another Log4J bug • The Register A third bug has been found in the Log4j system. There has been three new versions of the software since the crisis started.

16 December 202118 December 2021

VMware vulnerability

A serious vulnerability in VMware has been discovered: VMSA-2021-0029 (vmware.com) As the article on The Register says “ignore this at your peril”. Over Log4j? VMware has another critical flaw for you to fix • The Register

16 December 202120 December 2021

More about Log4j

This was always going to be an issue when we posted about it last week – here is more information. Log4shell: US demands Christmas Eve deadline for hack fix – BBC News CISA issues emergency directive to fix Log4j vulnerability • The Register CISA issues ’emergency directive,’ orders federal agencies …

Continue reading “More about Log4j”

12 December 202112 December 2021

Website security either some people just don’t get it or they cannot be bothered!

The Register discusses the findings of researcher, Scott Helme, who discovered that just under a third of websites did not have https enabled by default. HTTPS by default now accounts for 70% of websites • The Register Get a TLS/SSL certificate and enable https on any site you are responsible …

Continue reading “Website security either some people just don’t get it or they cannot be bothered!”

Cookie	Duration	Description
IDE	1 year 24 days	Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
test_cookie	15 minutes	The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.