US CERT Current Activity
Cisco Releases Security Updates
May 17, 2017
Original release date: May 17, 2017 Cisco has released updates to address vulnerabilities affecting multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.US-CERT encourages users and administrators to review the following Cisco Security Advisories and apply the necessary updates:Cisco Prime Collaboration Provisioning Authentication Bypass Vulnerability cisco-sa-20170517-pcp1Cisco TelePresence IX5000 Series Directory Traversal Vulnerability cisco-sa-20170517-telepresence-ix5000Cisco Prime Collaboration Provisioning Information Disclosure Vulnerability cisco-sa-20170517-pcp2Cisco Policy Suite Privilege Escalation Vulnerability cisco-sa-20170517-cps This product is provided subject to this Notification and this Privacy & Use policy.
WordPress Releases Security Update
May 17, 2017
Original release date: May 17, 2017 WordPress versions prior to 4.7.5 are affected by multiple vulnerabilities. A remote attacker could exploit some of these vulnerabilities to take control of an affected website.Users and administrators are encouraged to review the WordPress Security Release and upgrade to WordPress 4.7.5. This product is provided subject to this Notification and this Privacy & Use policy.
FTC Releases Alert on Fraudulent Emails
May 16, 2017
Original release date: May 16, 2017 The Federal Trade Commission (FTC) has released an alert about scammers sending out fake emails that look authentic to trick you into sending money to them. Users should be suspicious of unsolicited phone calls or email messages from individuals asking about your information. If an unknown individual claims to be from a legitimate organization, try to verify his or her identity directly with the company.US-CERT encourages users and administrators to refer to the FTC Scam Alert and the US-CERT Tip on Avoiding Social Engineering and Phishing Attacks for more information. This product is provided subject to this Notification and this Privacy & Use policy.
Apple Releases Security Updates
May 15, 2017
Original release date: May 15, 2017 Apple has released security updates to address vulnerabilities in multiple products. A remote attacker may exploit some of these vulnerabilities to take control of an affected system.US-CERT encourages users and administrators to review Apple security pages for the following products and apply the necessary updates:macOS Sierra, Security UpdatesiOSwatchOStvOSiCloud for WindowsSafariiTunes for Windows This product is provided subject to this Notification and this Privacy & Use policy.
Multiple Ransomware Infections Reported
May 12, 2017
Original release date: May 12, 2017 US-CERT has received multiple reports of WannaCry ransomware infections in several countries around the world. Ransomware is a type of malicious software that infects a computer and restricts users’ access to it until a ransom is paid to unlock it. Individuals and organizations are discouraged from paying the ransom, as this does not guarantee access will be restored.Ransomware spreads easily when it encounters unpatched or outdated software. The WannaCry ransomware may be exploiting a vulnerability in Server Message Block 1.0 (SMBv1). For information on how to mitigate this vulnerability, review the US-CERT article on Microsoft SMBv1 Vulnerability and the Microsoft Security Bulletin MS17-010. Users and administrators are encouraged to review the US-CERT Alert TA16-091A to learn how to best protect against ransomware. Please report any ransomware incidents to the Internet Crime Complaint Center (IC3). This product is provided subject to this Notification and this Privacy & Use policy.
Cisco Releases Security Update
May 10, 2017
Original release date: May 10, 2017 Cisco has released a security update to address a vulnerability in its WebEx Meetings Server which could allow a remote attacker to obtain sensitive information.US-CERT encourages users and administrators to review the Cisco Security Advisory and apply the necessary update. This product is provided subject to this Notification and this Privacy & Use policy.
FTC Announces Resource for Small Business Owners
May 9, 2017
Original release date: May 09, 2017 The Federal Trade Commission (FTC) has released an announcement about its new website devoted to protecting small businesses. This resource aims to help business owners avoid scams, protect their computers and networks, and keep their customers' and employees' data safe.Business owners and other interested parties are encouraged to explore the new FTC website and review US-CERT resources for small and midsize businesses. This product is provided subject to this Notification and this Privacy & Use policy.
Microsoft Releases May 2017 Security Updates
May 9, 2017
Original release date: May 09, 2017 Microsoft has released updates to address vulnerabilities in Microsoft software. A remote attacker could exploit some of these vulnerabilities to take control of a system.US-CERT encourages users and administrators to review Microsoft's May 2017 Security Update Summary and Deployment Information and apply the necessary updates. This product is provided subject to this Notification and this Privacy & Use policy.
Cisco Releases Security Updates
May 9, 2017
Original release date: May 09, 2017 Cisco has released security updates to address vulnerabilities in its IOS and IOS XE Software. A remote attacker could exploit one of these vulnerabilities to take control of an affected system.Users and administrators are encouraged to review the Cisco Security Advisory and apply the necessary updates. This product is provided subject to this Notification and this Privacy & Use policy.
Adobe Releases Security Updates
May 9, 2017
Original release date: May 09, 2017 Adobe has released security updates to address vulnerabilities in Adobe Flash Player and Adobe Experience Manager Forms. Exploitation of one of these vulnerabilities may allow a remote attacker to take control of an affected system.Users and administrators are encouraged to review Adobe Security Bulletins APSB17-15 and APSB17-16 and apply the necessary updates. This product is provided subject to this Notification and this Privacy & Use policy.
FTC Promotes Privacy Awareness Week
May 8, 2017
Original release date: May 08, 2017 The Federal Trade Commission (FTC) has released an announcement on Privacy Awareness Week, celebrated this week in the U.S. The theme of this year’s initiative is “Share with Care,” and the FTC is offering privacy tips, including how to safeguard your information online, improve your computer security, and limit unwanted emails.US-CERT encourages users and administrators to review FTC’s post on Privacy Awareness Week and these related resources from US-CERT:Safeguarding Your DataProtecting Your PrivacyAvoiding Social Engineering and Phishing AttacksPreventing and Responding to Identity Theft This product is provided subject to this Notification and this Privacy & Use policy.
Microsoft Releases Critical Security Update
May 8, 2017
Original release date: May 08, 2017 Microsoft has released a critical out-of-band security update addressing a vulnerability in the Microsoft Malware Protection Engine. A remote attacker could exploit this vulnerability to take control of an affected system.Users and administrators are encouraged to review Microsoft Security Advisory 4022344 for details and apply the necessary update. This product is provided subject to this Notification and this Privacy & Use policy.
Intel Firmware Vulnerability
May 7, 2017
Original release date: May 07, 2017 Intel has released recommendations to address a vulnerability in the firmware of the following Intel products: Active Management Technology, Standard Manageability, and Small Business Technology firmware versions 6.x, 7.x, 8.x, 9.x, 10.x, 11.0, 11.5, and 11.6. This vulnerability does not affect Intel-based consumer PCs. An attacker could exploit this vulnerability to take control of an affected system.Users and administrators are encouraged to review Intel Security Advisory INTEL-SA-00075 and updated mitigations and tools: Mitigation Guide v1.2 (May 5, 2017)Discovery Tool v1.0.1.6 (May 5, 2017)Unprovisioning Tool v1.0 (May 6, 2017)US-CERT recommends users and administrators review Vulnerability Note VU#491375 for additional information and refer to their original equipment manufacturer (OEM) for updated firmware. This product is provided subject to this Notification and this Privacy & Use policy.
Mozilla Releases Security Updates
May 5, 2017
Original release date: May 05, 2017 Mozilla has released security updates to address a vulnerability in Firefox and Firefox ESR. An attacker could exploit this vulnerability to take control of an affected system.US-CERT encourages users and administrators to review the Mozilla Security Advisories for Firefox 53.0.2 and Firefox ESR 52.1.1 and apply the necessary updates. This product is provided subject to this Notification and this Privacy & Use policy.
IC3 Warns of Increase in BEC/EAC Schemes
May 4, 2017
Original release date: May 04, 2017 The Internet Crime Complaint Center (IC3) has issued an alert describing a growing number of scams targeting businesses working with foreign suppliers or businesses that regularly perform wire transfer payments. These sophisticated scams are classified as business email compromise (BEC) or email account compromise (EAC) and use social engineering techniques to defraud businesses.Users and administrators are encouraged to review the IC3 Alert for details and refer to US-CERT Tip ST04-014 for information on social engineering and phishing attacks. This product is provided subject to this Notification and this Privacy & Use policy.
Google Docs Phishing Campaign
May 4, 2017
Original release date: May 04, 2017 US-CERT is aware of a phishing campaign that affected Google Docs users. The campaign used spoofed email addresses to target users with emails purporting to share a document for collaboration. Once the targeted users accepted invitations, they were encouraged to allow the phishing program access to their email accounts. Google has taken action to protect users, including removing the fake Google Docs pages and disabling the offending accounts.US-CERT reminds users that they play a critical role in protecting their organizations and themselves from cyber threats. Users should:Be careful when clicking directly on links in emails, even if the sender appears to be known; attempt to verify web addresses independently (e.g., contact your organization's helpdesk or search the Internet for the main website of the organization or topic mentioned in the email).Exercise caution when opening email attachments. Be particularly wary of compressed or ZIP file attachments.Immediately report any suspicious emails to your information technology (IT) helpdesk, security office, or email provider.Users of Google Docs are encouraged to review Google's statement and US-CERT's Tip on Avoiding Social Engineering and Phishing Attacks for more information. You can report any suspected phishing emails to the anti-phishing group APWG. This product is provided subject to this Notification and this Privacy & Use policy.
Microsoft Ending Security Updates for Windows 10 version 1507
May 3, 2017
Original release date: May 04, 2017 After May 9, 2017, devices running Windows 10 version 1507 will no longer receive security updates.US-CERT encourages users and administrators to review Microsoft's Windows 10 version 1507 post for more information and to apply necessary updates. This product is provided subject to this Notification and this Privacy & Use policy.
Cisco Releases Security Updates
May 3, 2017
Original release date: May 03, 2017 Cisco has released updates to address vulnerabilities affecting multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.Users and administrators are encouraged to review the following Cisco Security Advisories and apply the necessary updates:CVR100W Wireless-N VPN Router Universal Plug-and-Play Buffer Overflow Vulnerability cisco-sa-20170503-cvr100w1Aironet 1800, 2800, and 3800 Series Access Points Plug-and-Play Arbitrary Code Execution Vulnerability cisco-sa-20170503-cmeTelePresence ICMP Denial-of-Service Vulnerability cisco-sa-20170503-ctpIOS XR Software Denial-of-Service Vulnerability cisco-sa-20170503-ios-xr This product is provided subject to this Notification and this Privacy & Use policy.
Google Releases Security Updates for Chrome
May 2, 2017
Original release date: May 02, 2017 Google has released Chrome version 58.0.3029.96 for Windows, Mac, and Linux. This version addresses a vulnerability that an attacker could exploit to cause a denial-of-service condition.US-CERT encourages users and administrators to review the Chrome page and apply the necessary updates. This product is provided subject to this Notification and this Privacy & Use policy.
Intel Firmware Vulnerability
May 1, 2017
Original release date: May 01, 2017 Intel has released recommendations to address a vulnerability in the firmware of the following Intel products: Active Management Technology, Standard Manageability, and Small Business Technology, firmware versions 6.x, 7.x, 8.x 9.x, 10.x, 11.0, 11.5, and 11.6. This vulnerability does not affect Intel-based consumer PCs. An attacker could exploit this vulnerability to take control of an affected system.Users and administrators are encouraged to review Intel Security Advisory INTEL-SA-00075 and refer to their original equipment manufacturer (OEM) vendor for updated firmware. This product is provided subject to this Notification and this Privacy & Use policy.
