Hello, welcome to the Friday, September 17th, 2021 edition of the Sandcent Storm Center's Stormcast. My name is Johannes Ulrich, and I'm quoting from Jacksonville, Florida.

Quick diary from Jan today about fishing and some of the fishing emails that we are getting at the handler's email address.

Now, fishing, of course, is essentially a numbers game.

And what Jan is going into here in this quick note is that, well,

attackers are going to just send the same phishing email with various subject lines,

various messages, trying to somehow convince you to either click on the link or, of course,

also trying to bypass various filter techniques.

This particular fish as so often these days was hosted on Firebase storage, the Google Cloud Service,

that has become sort of one of the favorite spots for hosting Fishing HTML.

And just as I'm recording this, I checked it out, and sure enough, the fishing page is still available showing how resilient

host fire base storage is.

Let me have an update to Microsoft's patch Tuesday, one of the war on abilities being patched

here.

CVE 2021-3695-8 was one of the last remaining Brent Nightmare WarnerBillies.

And if you remember, the nature of this warnability was that normal users were able to install

drivers.

And now this final patch does prevent all driver installs from users, which apparently

is now causing problems with some network printers.

Bleeping Computer has a good summary of this and the option you have is essentially

uninstall the patch or set a specific registry key.

There's a copy files policy key that you may set to one end.

This will enable copy files again, so users will be able to install their print drivers.

...