US CERT Current Activity

Subscribe to US CERT Current Activity feed
A regularly updated summary of the most frequent, high-impact security incidents currently being reported to the US-CERT.

ICS-CERT Releases WannaCry Fact Sheet

May 17, 2017

Original release date: May 17, 2017 The Industrial Control Systems Cybersecurity Emergency Response Team (ICS-CERT) has released a short overview of the WannaCry ransomware infections. This fact sheet provides information on how the WannaCry program spreads, what users should do if they have been infected, and how to protect against similar attacks in the future.US-CERT encourages users and administrators to review the ICS-CERT Fact Sheet on WannaCry and the US-CERT Current Activity on the topic. For more technical details, please consult TA17-132A, Indicators Associated With WannaCry Ransomware. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Joomla! Releases Security Update for CMS

May 17, 2017

Original release date: May 17, 2017 Joomla! has released version 3.7.1 of its Content Management System (CMS) software to address a vulnerability. Exploitation of this vulnerability may allow a remote attacker to take control of an affected website.Users and administrators are encouraged to review the Joomla! Security Release and US-CERT's Alert on Content Management Systems Security and Associated Risks and apply the necessary update. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Cisco Releases Security Updates

May 17, 2017

Original release date: May 17, 2017 Cisco has released updates to address vulnerabilities affecting multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.US-CERT encourages users and administrators to review the following Cisco Security Advisories and apply the necessary updates:Cisco Prime Collaboration Provisioning Authentication Bypass Vulnerability cisco-sa-20170517-pcp1Cisco TelePresence IX5000 Series Directory Traversal Vulnerability cisco-sa-20170517-telepresence-ix5000Cisco Prime Collaboration Provisioning Information Disclosure Vulnerability cisco-sa-20170517-pcp2Cisco Policy Suite Privilege Escalation Vulnerability cisco-sa-20170517-cps This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

WordPress Releases Security Update

May 17, 2017

Original release date: May 17, 2017 WordPress versions prior to 4.7.5 are affected by multiple vulnerabilities. A remote attacker could exploit some of these vulnerabilities to take control of an affected website.Users and administrators are encouraged to review the WordPress Security Release and upgrade to WordPress 4.7.5. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

FTC Releases Alert on Fraudulent Emails

May 16, 2017

Original release date: May 16, 2017 The Federal Trade Commission (FTC) has released an alert about scammers sending out fake emails that look authentic to trick you into sending money to them. Users should be suspicious of unsolicited phone calls or email messages from individuals asking about your information. If an unknown individual claims to be from a legitimate organization, try to verify his or her identity directly with the company.US-CERT encourages users and administrators to refer to the FTC Scam Alert and the US-CERT Tip on Avoiding Social Engineering and Phishing Attacks for more information. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Apple Releases Security Updates

May 15, 2017

Original release date: May 15, 2017 Apple has released security updates to address vulnerabilities in multiple products. A remote attacker may exploit some of these vulnerabilities to take control of an affected system.US-CERT encourages users and administrators to review Apple security pages for the following products and apply the necessary updates:macOS Sierra, Security UpdatesiOSwatchOStvOSiCloud for WindowsSafariiTunes for Windows This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Multiple Ransomware Infections Reported

May 12, 2017

Original release date: May 12, 2017 US-CERT has received multiple reports of WannaCry ransomware infections in several countries around the world. Ransomware is a type of malicious software that infects a computer and restricts users’ access to it until a ransom is paid to unlock it. Individuals and organizations are discouraged from paying the ransom, as this does not guarantee access will be restored.Ransomware spreads easily when it encounters unpatched or outdated software. The WannaCry ransomware may be exploiting a vulnerability in Server Message Block 1.0 (SMBv1). For information on how to mitigate this vulnerability, review the US-CERT article on Microsoft SMBv1 Vulnerability and the Microsoft Security Bulletin MS17-010. Users and administrators are encouraged to review the US-CERT Alert TA16-091A to learn how to best protect against ransomware. Please report any ransomware incidents to the Internet Crime Complaint Center (IC3). This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Cisco Releases Security Update

May 10, 2017

Original release date: May 10, 2017 Cisco has released a security update to address a vulnerability in its WebEx Meetings Server which could allow a remote attacker to obtain sensitive information.US-CERT encourages users and administrators to review the Cisco Security Advisory and apply the necessary update. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

FTC Announces Resource for Small Business Owners

May 9, 2017

Original release date: May 09, 2017 The Federal Trade Commission (FTC) has released an announcement about its new website devoted to protecting small businesses. This resource aims to help business owners avoid scams, protect their computers and networks, and keep their customers' and employees' data safe.Business owners and other interested parties are encouraged to explore the new FTC website and review US-CERT resources for small and midsize businesses. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Microsoft Releases May 2017 Security Updates

May 9, 2017

Original release date: May 09, 2017 Microsoft has released updates to address vulnerabilities in Microsoft software. A remote attacker could exploit some of these vulnerabilities to take control of a system.US-CERT encourages users and administrators to review Microsoft's May 2017 Security Update Summary and Deployment Information and apply the necessary updates. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Cisco Releases Security Updates

May 9, 2017

Original release date: May 09, 2017 Cisco has released security updates to address vulnerabilities in its IOS and IOS XE Software. A remote attacker could exploit one of these vulnerabilities to take control of an affected system.Users and administrators are encouraged to review the Cisco Security Advisory and apply the necessary updates. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Adobe Releases Security Updates

May 9, 2017

Original release date: May 09, 2017 Adobe has released security updates to address vulnerabilities in Adobe Flash Player and Adobe Experience Manager Forms. Exploitation of one of these vulnerabilities may allow a remote attacker to take control of an affected system.Users and administrators are encouraged to review Adobe Security Bulletins APSB17-15 and APSB17-16 and apply the necessary updates. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

FTC Promotes Privacy Awareness Week

May 8, 2017

Original release date: May 08, 2017 The Federal Trade Commission (FTC) has released an announcement on Privacy Awareness Week, celebrated this week in the U.S. The theme of this year’s initiative is “Share with Care,” and the FTC is offering privacy tips, including how to safeguard your information online, improve your computer security, and limit unwanted emails.US-CERT encourages users and administrators to review FTC’s post on Privacy Awareness Week and these related resources from US-CERT:Safeguarding Your DataProtecting Your PrivacyAvoiding Social Engineering and Phishing AttacksPreventing and Responding to Identity Theft This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Microsoft Releases Critical Security Update

May 8, 2017

Original release date: May 08, 2017 Microsoft has released a critical out-of-band security update addressing a vulnerability in the Microsoft Malware Protection Engine. A remote attacker could exploit this vulnerability to take control of an affected system.Users and administrators are encouraged to review Microsoft Security Advisory 4022344 for details and apply the necessary update. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Intel Firmware Vulnerability

May 7, 2017

Original release date: May 07, 2017 Intel has released recommendations to address a vulnerability in the firmware of the following Intel products: Active Management Technology, Standard Manageability, and Small Business Technology firmware versions 6.x, 7.x, 8.x, 9.x, 10.x, 11.0, 11.5, and 11.6. This vulnerability does not affect Intel-based consumer PCs. An attacker could exploit this vulnerability to take control of an affected system.Users and administrators are encouraged to review Intel Security Advisory INTEL-SA-00075 and updated mitigations and tools: Mitigation Guide v1.2 (May 5, 2017)Discovery Tool v1.0.1.6 (May 5, 2017)Unprovisioning Tool v1.0 (May 6, 2017)US-CERT recommends users and administrators review Vulnerability Note VU#491375 for additional information and refer to their original equipment manufacturer (OEM) for updated firmware. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Mozilla Releases Security Updates

May 5, 2017

Original release date: May 05, 2017 Mozilla has released security updates to address a vulnerability in Firefox and Firefox ESR. An attacker could exploit this vulnerability to take control of an affected system.US-CERT encourages users and administrators to review the Mozilla Security Advisories for Firefox 53.0.2 and Firefox ESR 52.1.1 and apply the necessary updates. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

IC3 Warns of Increase in BEC/EAC Schemes

May 4, 2017

Original release date: May 04, 2017 The Internet Crime Complaint Center (IC3) has issued an alert describing a growing number of scams targeting businesses working with foreign suppliers or businesses that regularly perform wire transfer payments. These sophisticated scams are classified as business email compromise (BEC) or email account compromise (EAC) and use social engineering techniques to defraud businesses.Users and administrators are encouraged to review the IC3 Alert for details and refer to US-CERT Tip ST04-014 for information on social engineering and phishing attacks. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Google Docs Phishing Campaign

May 4, 2017

Original release date: May 04, 2017 US-CERT is aware of a phishing campaign that affected Google Docs users. The campaign used spoofed email addresses to target users with emails purporting to share a document for collaboration. Once the targeted users accepted invitations, they were encouraged to allow the phishing program access to their email accounts. Google has taken action to protect users, including removing the fake Google Docs pages and disabling the offending accounts.US-CERT reminds users that they play a critical role in protecting their organizations and themselves from cyber threats. Users should:Be careful when clicking directly on links in emails, even if the sender appears to be known; attempt to verify web addresses independently (e.g., contact your organization's helpdesk or search the Internet for the main website of the organization or topic mentioned in the email).Exercise caution when opening email attachments. Be particularly wary of compressed or ZIP file attachments.Immediately report any suspicious emails to your information technology (IT) helpdesk, security office, or email provider.Users of Google Docs are encouraged to review Google's statement and US-CERT's Tip on Avoiding Social Engineering and Phishing Attacks for more information. You can report any suspected phishing emails to the anti-phishing group APWG. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Microsoft Ending Security Updates for Windows 10 version 1507

May 3, 2017

Original release date: May 04, 2017 After May 9, 2017, devices running Windows 10 version 1507 will no longer receive security updates.US-CERT encourages users and administrators to review Microsoft's Windows 10 version 1507 post for more information and to apply necessary updates. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Cisco Releases Security Updates

May 3, 2017

Original release date: May 03, 2017 Cisco has released updates to address vulnerabilities affecting multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.Users and administrators are encouraged to review the following Cisco Security Advisories and apply the necessary updates:CVR100W Wireless-N VPN Router Universal Plug-and-Play Buffer Overflow Vulnerability cisco-sa-20170503-cvr100w1Aironet 1800, 2800, and 3800 Series Access Points Plug-and-Play Arbitrary Code Execution Vulnerability cisco-sa-20170503-cmeTelePresence ICMP Denial-of-Service Vulnerability cisco-sa-20170503-ctpIOS XR Software Denial-of-Service Vulnerability cisco-sa-20170503-ios-xr This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Pages

Related Content

Best Practices

10 Best Pactices

Our 10 Best Pactices

Contact Us

Contact Information Security at 756-7000

Contacts

Did you know?

Stay Safe Online Tips