Session Cookie Does Not Contain the “Secure” Attribute

Recently we scanned one of our web applications by two famous source code analysis tools: Qualy’s Web Application Scanning tool and HPE’s Fortify Static Code Analyzer, but the results are different. Qualy’s WAS picked up one XSS security vulnerability and two information disclosure warnings, but HPE’s Fortify didn’t find anything vulnerable. It would be interesting to find out why, but I am not gonna cover that today. Today I would like to talk about one of the information disclosure warning titled Session Cookie Does Not Contain the “Secure” Attribute and how to fix it. If your web application uses cookies, then […]


CCleaner not clean, distributed with malware

CCleaner is a popular and powerful PC tool that helps users to clean up their PCs by deleting temporary files, emptying recycle bins, deleting registry leftovers after program uninstall, etc. The free version is at the top of the popular software list on FileHippo.com. On September 13, 2017, Cisco’s Talos cybersecurity reported that CCleaner has been distributed with malware for almost one month, and the infected version is the 32-bit version of CCleaner 5.33 which was released on August 15 and the 32-bit version of CCleaner Cloud 1.07.3191 released on August 24. Piriform, the company developed CCleaner, announced the security […]


How to add days, months, and years to a date in JavaScript

Several years ago I wrote a post about how to add days, months, and years in JavaScript, and it was a quick-and-dirty workaround for a project and I didn’t pay much attention to value checking when writing the JavaScript function. For example, if the old date is 07/19/2017 and you need to know what date it is after adding 25 days, the JavaScript function will throw an error because 07/44/2017 is not a valid date string. Similarly, if you add 6 months on the old date (07/19/2017) you will get an error too, instead of getting the correct date 01/19/2018. […]


Lock screen images for Samsung Galaxy S6 and Note5

Would you like to read an inspirational message from the Bible when you turn on the screen of your phone? I just made two lock screen images for Samsung Galaxy S6 and Note5 with the Bible verses: Philippians 4:13 and Proverbs 16:3. Here is what it looks like on my phone: If you want to download the images and use them for your lock screen, you can click here or the “Free Stuff” link from the top menu. I hope you like them.


Digitizing your photo prints with Google PhotoScan in one tap

Over the years I have taken many pictures to capture various precious moments in my life, such as the birth of my children, their first steps, and the first day of school etc., and the memories captured in the pictures bring me great joy every time I look at them. I didn’t have a digital camera 15 years ago (let alone a smartphone with good camera feature), so all my pictures taken back then were developed on photo prints. Some of the photo are securely stored in various albums but the rest are randomly scattered in different boxes and it […]


HP Envy laptop black screen after BIOS update

I have a habit of keeping my computer system as up-to-date as possible, including Windows updates and hardware drivers, so when I noticed there is a new version of BIOS for my HP Envy laptop the other day, I started the update process right away without giving much thought about the potential danger of updating the BIOS. The download of the BIOS update utility was smooth and the update process completed without interruption. Supposedly, the computer should reboot to finalize the BIOS update, but unfortunately my computer stuck with a black screen. The power button was lit but the computer did not respond […]


Selected boot image did not authenticate error after rolling back Windows Insider update

If you are in the Windows Insider Program and later on decided to opt out, you can choose to roll back to the last stable release you installed. However, the rollback may cause a very annoying error as show in the screenshot above: Selected boot image did not Authenticate. Press <Enter> to Continue. When you press <Enter>, you computer will shut down and the error repeats when you restart your computer. Based on my investigation, this seems to happen especially to HP computers, since my laptop is HP Envy, I got the exact error message after I tried to opt out […]


[Fixed] Computer slows down after Windows 10 Creators Update

[Note]: I have fixed my computer and now it is running fast. See the end of the post for the update and the possible fix(es) of the issue. I have a habit of keeping my computer up-to-date as much as I can, so whenever there is an update of either OS or software I will get on it and install it. This habit, however, is a double-edge sword, while most of the time it will protect me from getting hacked, it can cause trouble sometimes, which just happened to me recently: my computer became sluggish after I installed Windows 10 […]


GPS Spoofing is a big issue in Pokémon GO

GPS spoofing refers to changing a mobile device’s GPS location by using special GPS app without having to physically go to the new location. It has been widely used by Pokémon GO players yet Niantic has not done enough to prevent GPS spoofing. Besides the ability to fake device’s GPS location, some GPS spoofing apps also provide a “joystick” feature that enables Pokémon GO players to “walk” to virtually any location on earth without having to move their lazy butt, so they can “go” to any PokéStop to collect items, or “go” to a PokéGym to battle while sitting in a […]


Linux Mint running in software rendering mode on VirtualBox 2

In my previous posts, I introduced two Linux distros for new users: Zorin OS and elementary OS. Zorin OS provides a Windows-like interface and elementary OS provides a macOS-like interface, with the hope of making both Windows users and macOS users feel less intimidated when switching to Linux. According to the Linux distro watch, both Zorin OS and elementary OS are getting popular. In 2016, Zorin was ranked No. 7 while elementary was ranked No. 8, and in last 3 months (at the time of writing this post) both them are still in the top 10 ranking. However, if you […]