Fortgale Blog

November 29, 2021 ·Emerging Threats

Windows Installer Zero-Day

Zero-day vulnerability in Windows Installer enabling local privilege escalation: exploitation techniques, public PoC analysis and mitigation paths.

Read the analysis

October 11, 2021 ·Emerging Threats

Anatomy of an attack — Conti Ransomware

Conti ransomware operations: initial access patterns, Cobalt Strike pivoting, domain-controller compromise, exfiltration tooling and double-extortion mechanics.

Read the analysis

September 10, 2021 ·Emerging Threats

MSHTML vulnerability — Defence and Threat Hunting

MSHTML vulnerability defensive approach: telemetry sources, hunting queries, indicators of exploitation and detection rules for SOC teams.

Read the analysis

August 18, 2021 ·Emerging Threats

New attack against Microsoft Exchange servers

Fresh wave of attacks against Microsoft Exchange Server: new exploitation patterns, web shell families observed and mitigation guidance for exposed environments.

Read the analysis

Cookie	Duration	Description
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt.innertube::nextId	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.
yt.innertube::requests	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.

Windows Installer Zero-Day

Anatomy of an attack — Conti Ransomware

MSHTML vulnerability — Defence and Threat Hunting

New attack against Microsoft Exchange servers

Cookie & Privacy