VMware Horizon | Smart Thinking Solutions

10 August 202210 August 2022

CISA security update advisories

The US Cybersecurity and Infrastructure Security Agency has two security advisories: Adobe Releases Security Updates for Multiple Products | CISA VMware Releases Security Updates | CISA

4 August 20224 August 2022

Ransomware, the how and where and what your first step is in defending against it…

Here are a couple of stories showing that ransomware hits large and small organisations: Luxembourg energy companies struggling with alleged ransomware attack, data breach – The Record by Recorded Future At least 34 healthcare orgs affected by alleged ransomware attack on OneTouchPoint – The Record by Recorded Future The Bromford …

Continue reading “Ransomware, the how and where and what your first step is in defending against it…”

4 August 20224 August 2022

A combination attack that exploits the Log4j vulnerability and VMware to deliver ransomware

I have published a lot on the log4j and log4shell exploits and vulnerability. CISA issued a special warning about the long term impact of the issue: CISA advisory for continued exploitation of Log4Shell in VMware Horizon Systems – Smart Thinking Solutions Here is another real world example of the exploitation …

Continue reading “A combination attack that exploits the Log4j vulnerability and VMware to deliver ransomware”

1 August 202230 July 2022

CISA Log4Shell examination

The US Government Cybersecurity and Infrastructure Security Agency has published a report examining the malware that infected an organisation with unpatched Log4Shell vulnerability in a VMware Horizon server. CISA Releases Log4Shell-Related MAR | CISA

19 July 202219 July 2022

CISA advisory for continued exploitation of Log4Shell in VMware Horizon Systems

The Log4j and Log4Shell vulnerability and exploits are being actively used by threat actors. CISA Updates Advisory on Cyber Actors Continued Exploitation of Log4Shell in VMware Horizon Systems | CISA As predicted Log4j is going to be a problem for a long time – Smart Thinking Solutions

24 June 202224 June 2022

Log4Shell is still an exploited vulnerability

It seems a long time ago that the Log4Shell vulnerability was discovered. A vulnerability that had far reaching consequences as many systems used this framework for their logging functionality. The US Cybersecurity and Infrastructure Security Agency(CISA) with the United States Coast Guard Cyber Command (CGCYBER) has issued an advisory of …

Continue reading “Log4Shell is still an exploited vulnerability”

Cookie	Duration	Description
IDE	1 year 24 days	Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
test_cookie	15 minutes	The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.