{
	"id": "1dea5750-c9c3-459e-9d6b-5cc8acb87416",
	"created_at": "2026-04-06T00:11:53.363054Z",
	"updated_at": "2026-04-10T13:13:09.223554Z",
	"deleted_at": null,
	"sha1_hash": "87f85347113bff855264ff268aa13e75321367e7",
	"title": "Threats Looming Over the Horizon",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 89865,
	"plain_text": "Threats Looming Over the Horizon\r\nArchived: 2026-04-05 18:39:08 UTC\r\nWe use cookies to help you navigate efficiently and perform certain functions. You will find detailed information\r\nabout all cookies under each consent category below.\r\nThe cookies that are categorized as \"Necessary\" are stored on your browser as they are essential for enabling the\r\nbasic functionalities of the site. ... \r\nCookie\r\n__cf_bm\r\nDuration\r\n1 hour\r\nDescription\r\nThis cookie, set by Cloudflare, is used to support Cloudflare Bot Management.\r\nCookie\r\ncookieyes-consent\r\nDuration\r\n1 year\r\nDescription\r\nCookieYes sets this cookie to remember users' consent preferences so that their preferences are respected\r\non subsequent visits to this site. It does not collect or store any personal information about the site visitors.\r\nCookie\r\n__hssrc\r\nDuration\r\nsession\r\nDescription\r\nThis cookie is set by Hubspot whenever it changes the session cookie. The __hssrc cookie set to 1 indicates\r\nthat the user has restarted the browser, and if the cookie does not exist, it is assumed to be a new session.\r\nhttps://www.cynet.com/attack-techniques-hands-on/threats-looming-over-the-horizon/\r\nPage 1 of 16\n\nCookie\r\n__hssc\r\nDuration\r\n1 hour\r\nDescription\r\nHubSpot sets this cookie to keep track of sessions and to determine if HubSpot should increment the\r\nsession number and timestamps in the __hstc cookie.\r\nCookie\r\nvisid_incap_*\r\nDuration\r\n1 year\r\nDescription\r\nIncapsula sets this cookie to provide cloud-based website security services.\r\nCookie\r\nincap_ses_*\r\nDuration\r\nsession\r\nDescription\r\nThis is an Incapsula DDoS Protection and Web Application Firewall cookie that is used to relate HTTP\r\nrequests to a certain session.\r\nCookie\r\nnlbi_*\r\nDuration\r\nsession\r\nDescription\r\nThe Hotels Network sets this cookie to improve security and provide load-balancing to ensure that a\r\nclient's requests are sent to the same origin server.\r\nhttps://www.cynet.com/attack-techniques-hands-on/threats-looming-over-the-horizon/\r\nPage 2 of 16\n\nCookie\r\nelementor\r\nDuration\r\nNever Expires\r\nDescription\r\nThe website's WordPress theme uses this cookie. It allows the website owner to implement or change the\r\nwebsite's content in real-time.\r\nCookie\r\ncookietest\r\nDuration\r\nsession\r\nDescription\r\nThe cookietest cookie is typically used to determine whether the user's browser accepts cookies, essential\r\nfor website functionality and user experience.\r\nCookie\r\nlidc\r\nDuration\r\n1 day\r\nDescription\r\nLinkedIn sets the lidc cookie to facilitate data center selection.\r\nCookie\r\nli_gc\r\nDuration\r\n6 months\r\nDescription\r\nLinkedin set this cookie for storing visitor's consent regarding using cookies for non-essential purposes.\r\nCookie\r\nhttps://www.cynet.com/attack-techniques-hands-on/threats-looming-over-the-horizon/\r\nPage 3 of 16\n\nytidb::LAST_RESULT_ENTRY_KEY\r\nDuration\r\nNever Expires\r\nDescription\r\nThe cookie ytidb::LAST_RESULT_ENTRY_KEY is used by YouTube to store the last search result entry\r\nthat was clicked by the user. This information is used to improve the user experience by providing more\r\nrelevant search results in the future.\r\nCookie\r\nlang\r\nDuration\r\nsession\r\nDescription\r\nLinkedIn sets this cookie to remember a user's language setting.\r\nCookie\r\n_clck\r\nDuration\r\n1 year\r\nDescription\r\nMicrosoft Clarity sets this cookie to retain the browser's Clarity User ID and settings exclusive to that\r\nwebsite. This guarantees that actions taken during subsequent visits to the same website will be linked to\r\nthe same user ID.\r\nCookie\r\n_hjSessionUser_*\r\nDuration\r\n1 year\r\nDescription\r\nHotjar sets this cookie to ensure data from subsequent visits to the same site is attributed to the same user\r\nID, which persists in the Hotjar User ID, which is unique to that site.\r\nhttps://www.cynet.com/attack-techniques-hands-on/threats-looming-over-the-horizon/\r\nPage 4 of 16\n\nCookie\r\n_hjSession_*\r\nDuration\r\n1 hour\r\nDescription\r\nHotjar sets this cookie to ensure data from subsequent visits to the same site is attributed to the same user\r\nID, which persists in the Hotjar User ID, which is unique to that site.\r\nCookie\r\n_clsk\r\nDuration\r\n1 day\r\nDescription\r\nMicrosoft Clarity sets this cookie to store and consolidate a user's pageviews into a single session\r\nrecording.\r\nCookie\r\n_fbp\r\nDuration\r\n3 months\r\nDescription\r\nFacebook sets this cookie to display advertisements when either on Facebook or on a digital platform\r\npowered by Facebook advertising after visiting the website.\r\nCookie\r\n__hstc\r\nDuration\r\n6 months\r\nDescription\r\nHubspot set this main cookie for tracking visitors. It contains the domain, initial timestamp (first visit), last\r\ntimestamp (last visit), current timestamp (this visit), and session number (increments for each subsequent\r\nhttps://www.cynet.com/attack-techniques-hands-on/threats-looming-over-the-horizon/\r\nPage 5 of 16\n\nsession).\r\nCookie\r\nhubspotutk\r\nDuration\r\n6 months\r\nDescription\r\nHubSpot sets this cookie to keep track of the visitors to the website. This cookie is passed to HubSpot on\r\nform submission and used when deduplicating contacts.\r\nCookie\r\n_ga\r\nDuration\r\n1 year 1 month 4 days\r\nDescription\r\nGoogle Analytics sets this cookie to calculate visitor, session and campaign data and track site usage for the\r\nsite's analytics report. The cookie stores information anonymously and assigns a randomly generated\r\nnumber to recognise unique visitors.\r\nCookie\r\n_gcl_au\r\nDuration\r\n3 months\r\nDescription\r\nGoogle Tag Manager sets the cookie to experiment advertisement efficiency of websites using their\r\nservices.\r\nCookie\r\n_ga_*\r\nDuration\r\n1 year 1 month 4 days\r\nDescription\r\nhttps://www.cynet.com/attack-techniques-hands-on/threats-looming-over-the-horizon/\r\nPage 6 of 16\n\nGoogle Analytics sets this cookie to store and count page views.\r\nCookie\r\n_hjTLDTest\r\nDuration\r\nsession\r\nDescription\r\nTo determine the most generic cookie path that has to be used instead of the page hostname, Hotjar sets the\r\n_hjTLDTest cookie to store different URL substring alternatives until it fails.\r\nCookie\r\nutm_source\r\nDuration\r\n3 months\r\nDescription\r\nThis cookie is used to record from where the visitor came to the website orginally. This information is used\r\nby the website operator to know the efficiency of their marketing.\r\nCookie\r\nutm_content\r\nDuration\r\n3 months\r\nDescription\r\nThis cookie is used for storing the session content value if present.\r\nCookie\r\nutm_campaign\r\nDuration\r\n3 months\r\nDescription\r\nGoogle Ad Services sets this cookie to store session campaign value if present.\r\nhttps://www.cynet.com/attack-techniques-hands-on/threats-looming-over-the-horizon/\r\nPage 7 of 16\n\nCookie\r\nutm_term\r\nDuration\r\nNever Expires\r\nDescription\r\nThis cookie is used to record from where the visitor came to the website orginally. This information is used\r\nby the website operator to know the efficiency of their marketing.\r\nCookie\r\n_uetsid\r\nDuration\r\n1 day\r\nDescription\r\nBing Ads sets this cookie to engage with a user that has previously visited the website.\r\nCookie\r\n_uetvid\r\nDuration\r\n1 year 24 days\r\nDescription\r\nBing Ads sets this cookie to engage with a user that has previously visited the website.\r\nCookie\r\n__utma\r\nDuration\r\n1 year 1 month 4 days\r\nDescription\r\nGoogle Analytics sets this cookie to distinguish users and sessions. The cookie is created when the\r\nJavaScript library executes and there are no existing __utma cookies. The cookie is updated every time\r\ndata is sent to Google Analytics.\r\nhttps://www.cynet.com/attack-techniques-hands-on/threats-looming-over-the-horizon/\r\nPage 8 of 16\n\nCookie\r\n__utmb\r\nDuration\r\n1 hour\r\nDescription\r\nGoogle Analytics sets this cookie to determine new sessions/visits. __utmb cookie is created when the\r\nJavaScript library executes and there are no existing __utma cookies. It is updated every time data is sent to\r\nGoogle Analytics.\r\nCookie\r\n__utmc\r\nDuration\r\nsession\r\nDescription\r\nGoogle Analytics sets this cookie to enable interoperability with urchin.js, an older version of Google\r\nAnalytics and is used in conjunction with the __utmb cookie to determine new sessions/visits. It is deleted\r\nwhen the user closes the browser.\r\nCookie\r\n__utmz\r\nDuration\r\n6 months\r\nDescription\r\nGoogle Analytics sets this cookie to store the traffic source or campaign by which the visitor reached the\r\nsite.\r\nCookie\r\n__utmt\r\nDuration\r\n10 minutes\r\nDescription\r\nhttps://www.cynet.com/attack-techniques-hands-on/threats-looming-over-the-horizon/\r\nPage 9 of 16\n\nGoogle Analytics sets this cookie to inhibit the request rate.\r\nCookie\r\nMUID\r\nDuration\r\n1 year 24 days\r\nDescription\r\nBing sets this cookie to recognise unique web browsers visiting Microsoft sites. This cookie is used for\r\nadvertising, site analytics, and other operations.\r\nCookie\r\n_rdt_uuid\r\nDuration\r\n3 months\r\nDescription\r\nReddit sets this cookie to build a profile of your interests and show you relevant ads.\r\nCookie\r\nbcookie\r\nDuration\r\n1 year\r\nDescription\r\nLinkedIn sets this cookie from LinkedIn share buttons and ad tags to recognize browser IDs.\r\nCookie\r\nbscookie\r\nDuration\r\n1 year\r\nDescription\r\nLinkedIn sets this cookie to store performed actions on the website.\r\nCookie\r\nhttps://www.cynet.com/attack-techniques-hands-on/threats-looming-over-the-horizon/\r\nPage 10 of 16\n\ntest_cookie\r\nDuration\r\n15 minutes\r\nDescription\r\ndoubleclick.net sets this cookie to determine if the user's browser supports cookies.\r\nCookie\r\nIDE\r\nDuration\r\n1 year 24 days\r\nDescription\r\nGoogle DoubleClick IDE cookies store information about how the user uses the website to present them\r\nwith relevant ads according to the user profile.\r\nCookie\r\nYSC\r\nDuration\r\nsession\r\nDescription\r\nYoutube sets this cookie to track the views of embedded videos on Youtube pages.\r\nCookie\r\nVISITOR_INFO1_LIVE\r\nDuration\r\n6 months\r\nDescription\r\nYouTube sets this cookie to measure bandwidth, determining whether the user gets the new or old player\r\ninterface.\r\nCookie\r\nVISITOR_PRIVACY_METADATA\r\nhttps://www.cynet.com/attack-techniques-hands-on/threats-looming-over-the-horizon/\r\nPage 11 of 16\n\nDuration\r\n6 months\r\nDescription\r\nYouTube sets this cookie to store the user's cookie consent state for the current domain.\r\nCookie\r\nutm_medium\r\nDuration\r\n3 months\r\nDescription\r\nThis cookie is used to record from where the visitor came to the website orginally. This information is used\r\nby the website operator to know the efficiency of their marketing.\r\nCookie\r\n_gcl_aw\r\nDuration\r\n3 months\r\nDescription\r\nDoubleClick sets this cookie to understand user interaction with the site and advertising.\r\nCookie\r\n_cfuvid\r\nDuration\r\nsession\r\nDescription\r\nDescription is currently not available.\r\nCookie\r\nPPLang\r\nDuration\r\nsession\r\nhttps://www.cynet.com/attack-techniques-hands-on/threats-looming-over-the-horizon/\r\nPage 12 of 16\n\nDescription\r\nDescription is currently not available.\r\nCookie\r\nUbdc+j3wh3aRVFBK7V3n4S3QffUH4IdHT-7WtJSYiTOpQgLO\r\nDuration\r\nsession\r\nDescription\r\nDescription is currently not available.\r\nCookie\r\nPPCsrf\r\nDuration\r\nsession\r\nDescription\r\nDescription is currently not available.\r\nCookie\r\nUbdc+j3wh3aRVFBK7V3n4S3QbOAl5olPR9zGhLGHpAA_\r\nDuration\r\nsession\r\nDescription\r\nDescription is currently not available.\r\nCookie\r\nsource\r\nDuration\r\n1 year 1 month 4 days\r\nDescription\r\nDescription is currently not available.\r\nhttps://www.cynet.com/attack-techniques-hands-on/threats-looming-over-the-horizon/\r\nPage 13 of 16\n\nCookie\r\n_zitok\r\nDuration\r\n1 year\r\nDescription\r\nDescription is currently not available.\r\nCookie\r\n__Secure-ROLLOUT_TOKEN\r\nDuration\r\n6 months\r\nDescription\r\nDescription is currently not available.\r\nCookie\r\n_gcl_gs\r\nDuration\r\n3 months\r\nDescription\r\nDescription is currently not available.\r\nCookie\r\nGCL_AW_P\r\nDuration\r\n3 months\r\nDescription\r\nDescription is currently not available.\r\nCookie\r\ngclid\r\nhttps://www.cynet.com/attack-techniques-hands-on/threats-looming-over-the-horizon/\r\nPage 14 of 16\n\nDuration\r\n3 months\r\nDescription\r\nDescription is currently not available.\r\nCookie\r\nreferrer33_00d\r\nDuration\r\n1 month\r\nDescription\r\nDescription is currently not available.\r\nCookie\r\n__Secure-YEC\r\nDuration\r\npast\r\nDescription\r\nDescription is currently not available.\r\nCookie\r\nutm_session_33_00d\r\nDuration\r\n1 month\r\nDescription\r\nDescription is currently not available.\r\nCookie\r\n_gcl_ag\r\nDuration\r\n3 months\r\nhttps://www.cynet.com/attack-techniques-hands-on/threats-looming-over-the-horizon/\r\nPage 15 of 16\n\nDescription\r\nDescription is currently not available.\r\nCookie\r\n__Secure-YNID\r\nDuration\r\n6 months\r\nDescription\r\nDescription is currently not available.\r\nSource: https://www.cynet.com/attack-techniques-hands-on/threats-looming-over-the-horizon/\r\nhttps://www.cynet.com/attack-techniques-hands-on/threats-looming-over-the-horizon/\r\nPage 16 of 16",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"Malpedia",
		"ETDA"
	],
	"origins": [
		"web"
	],
	"references": [
		"https://www.cynet.com/attack-techniques-hands-on/threats-looming-over-the-horizon/"
	],
	"report_names": [
		"threats-looming-over-the-horizon"
	],
	"threat_actors": [],
	"ts_created_at": 1775434313,
	"ts_updated_at": 1775826789,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/87f85347113bff855264ff268aa13e75321367e7.pdf",
		"text": "https://archive.orkl.eu/87f85347113bff855264ff268aa13e75321367e7.txt",
		"img": "https://archive.orkl.eu/87f85347113bff855264ff268aa13e75321367e7.jpg"
	}
}