US CERT Current Activity

Subscribe to US CERT Current Activity feed
A regularly updated summary of the most frequent, high-impact security incidents currently being reported to the US-CERT.

DNSSEC Key Signing Key Rollover Postponed

Sep 29, 2017

Original release date: September 29, 2017 The Internet Corporation for Assigned Names and Numbers (ICANN) has announced that the change to the Root Zone Key Signing Key (KSK) scheduled for October 11, 2017, has been postponed. A new date for the Key Roll has not yet been determined.DNSSEC is a set of DNS protocol extensions used to digitally sign DNS information, which is an important part of preventing domain name hijacking. Updating the DNSSEC KSK is a crucial security step, similar to updating a PKI Root Certificate. Maintaining an up-to-date Root KSK as a trust anchor is essential to ensuring DNSSEC-validating DNS resolvers continue to function after the rollover. While DNSSEC validation is mandatory for federal agencies, it is not required of the private sector. Systems of organizations that do not use DNSSEC validation will be unaffected by the rollover.Users and administrators are encouraged to review ICAAN announcement KSK Rollover Postponed and the US-CERT Current Activity on DNSSEC Key Signing Key Rollover for more information.US-CERT will provide additional information as it becomes available. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Mozilla Releases Security Updates

Sep 28, 2017

Original release date: September 28, 2017 Mozilla has released security updates to address multiple vulnerabilities in Firefox ESR 52.4 and Firefox 56. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.US-CERT encourages users and administrators to review the Mozilla Security Advisories for Firefox ESR 52.4 and Firefox 56 and apply the necessary updates. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Cisco Releases Security Updates

Sep 27, 2017

Original release date: September 27, 2017 Cisco has released updates to address vulnerabilities affecting multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.US-CERT encourages users and administrators to review the following Cisco Security Advisories and apply the necessary updates:IOS and IOS XE Software DHCP Remote Code Execution Vulnerability cisco-sa-20170927-dhcpIOS XE Software Web UI Privilege Escalation Vulnerability cisco-sa-20170927-privescIOS XE Software Web UI REST API Authentication Bypass Vulnerability cisco-sa-20170927-restapiIOS XE Software for Cisco ASR 1000 Series and cBR-8 Routers Line Card Console Access Vulnerability cisco-sa-20170927-ccIOS Software Common Industrial Protocol Request Denial-of-Service Vulnerabilities cisco-sa-20170927-cipIOS and IOS XE Software Internet Key Exchange Denial-of-Service Vulnerability cisco-sa-20170927-ikeIOS XE Wireless Controller Manager Denial-of-Service Vulnerability cisco-sa-20170927-ios-xeIOS XE Software Locator/ID Separation Protocol Authentication Bypass Vulnerability cisco-sa-20170927-lispIOS Software Network Address Translation Denial-of-Service Vulnerability cisco-sa-20170927-natIOS XE Software for Cisco 5760 WLC, Cisco Catalyst 4500E Supervisor Engine 8-E, and Cisco NGWC 3850 GUI Privilege Escalation Vulnerability cisco-sa-20170927-ngwcIOS and IOS XE Software Plug-and-Play PKI API Certificate Validation Vulnerability cisco-sa-20170927-pnpIOS Software for Cisco Industrial Ethernet Switches PROFINET Denial-of-Service Vulnerability cisco-sa-20170927-profinetIOS Software for Cisco Integrated Services Routers Generation 2 Denial-of-Service Vulnerability cisco-sa-20170927-rbip-dosIOS Software for Cisco Catalyst 6800 Series Switches VPLS Denial-of-Service Vulnerability cisco-sa-20170927-vpls This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Apple Releases Security Update for iOS

Sep 26, 2017

Original release date: September 26, 2017 Apple has released iOS 11.0.1 to address vulnerabilities in previous versions of iOS. Exploitation of some of these vulnerabilities could allow a remote attacker to take control of an affected system.US-CERT encourages users and administrators to review the Apple security page for iOS 11.0.1 and apply the necessary update. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Apple Releases Security Updates

Sep 25, 2017

Original release date: September 25, 2017 Apple has released security updates to address vulnerabilities in multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.US-CERT encourages users and administrators to review Apple security pages for the following products and apply the necessary updates:iCloud for Windows 7.0macOS High Sierra 10.13macOS Server 5.4 This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Oracle Patches Apache Vulnerabilities

Sep 25, 2017

Original release date: September 25, 2017 Oracle has released security updates to address Apache Struts 2 vulnerabilities found across multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. US-CERT encourages users and administrators to review the Oracle Security Alert and apply the necessary updates. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Google Releases Security Updates for Chrome

Sep 22, 2017

Original release date: September 22, 2017 Google has released Chrome version 61.0.3163.100 for Windows, Mac, and Linux. This update addresses multiple vulnerabilities that an attacker may exploit to cause a denial-of-service condition.US-CERT encourages users and administrators to review the Chrome Releases page and apply the necessary updates. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Joomla! Releases Security Update

Sep 20, 2017

Original release date: September 21, 2017 Joomla! has released version 3.8.0 of its Content Management System (CMS) software to address a vulnerability. A remote attacker could exploit this vulnerability to obtain access to sensitive information.US-CERT encourages users and administrators to review the Joomla! Security Release and apply the necessary update. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Samba Releases Security Updates

Sep 20, 2017

Original release date: September 20, 2017 The Samba Team has released security updates to address several vulnerabilities in Samba. An attacker could exploit any of these vulnerabilities to obtain access to potentially sensitive information.US-CERT encourages users and administrators to review the following Samba Security Announcements for CVE-2017-12150, CVE-2017-12151, and CVE-2017-12163; and apply the necessary updates, or refer to their Linux or Unix-based OS vendors for appropriate patches. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Cisco Releases Security Updates

Sep 20, 2017

Original release date: September 20, 2017 Cisco has released updates to address vulnerabilities affecting multiple products. A remote attacker could exploit one of these vulnerabilities to take control of an affected system.US-CERT encourages users and administrators to review the following Cisco Security Advisories and apply the necessary updates:Unified Customer Voice Portal Operations Console Privilege Escalation Vulnerability cisco-sa-20170920-cvpEmail Security Appliance Denial-of-Service Vulnerability cisco-sa-20170920-esaSmall Business Managed Switches Denial-of-Service Vulnerability cisco-sa-20170920-sbms This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

IC3 Issues Alert on Disaster-Related Fraud

Sep 20, 2017

Original release date: September 20, 2017 The Internet Crime Complaint Center (IC3) has released an announcement on fraudulent cyber activity related to natural disasters. IC3 reports that scammers have recently used email and social-networking sites to solicit money from disaster victims with scams on false temporary housing and job opportunities. In addition, IC3 warns the public to be cautious of solicitations for charitable donations.US-CERT encourages consumers to review the IC3 Alert and the US-CERT Tip on Avoiding Social Engineering and Phishing Attacks. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

FTC Releases Alerts on Protecting Against Identity Theft

Sep 20, 2017

Original release date: September 20, 2017 The Federal Trade Commission (FTC) has released two alerts to educate consumers on recommended protections against identity theft after the recent after the recent data breach at Equifax. Users should consider placing security freezes with the three major credit reporting agencies: Equifax, Transunion, and Experian. Alternative security recommendations include using fraud alerts and free credit monitoring from Equifax. US-CERT encourages users to refer to the FTC alerts on Equifax credit freezes and fraud alerts vs. credit freezes. See the US-CERT Tip on Preventing and Responding to Identity Theft for more information. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

WordPress Releases Security Update

Sep 20, 2017

Original release date: September 20, 2017 WordPress versions prior to 4.8.2 are affected by multiple vulnerabilities. A remote attacker could exploit some of these vulnerabilities to take control of an affected website.US-CERT encourages users and administrators to review the WordPress Security Release and upgrade to WordPress 4.8.2. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Apple Releases Security Updates

Sep 19, 2017

Original release date: September 19, 2017 Apple has released security updates to address vulnerabilities in multiple products. A remote attacker may exploit some of these vulnerabilities to take control of an affected system.US-CERT encourages users and administrators to review the following Apple security pages and apply the necessary updates:iOS 11Safari 11tvOS 11watchOS 4Xcode 9 This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Avast’s Piriform Releases Security Update for CCleaner

Sep 19, 2017

Original release date: September 19, 2017 Piriform, a subsidiary of Avast, has released CCleaner 5.34 and has pushed v1.07.3214 to CCleaner Cloud users. These versions do not contain the Floxif malware found in the 32-bit versions of CCleaner 5.33.6162 and CCleaner Cloud 1.07.3191. Floxif malware collects information from the victim's system and can download additional malware to the system.US-CERT encourages users and administrators to review the Piriform Security Notification and apply the necessary update. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Apache Releases Security Updates for Apache Tomcat

Sep 19, 2017

Original release date: September 19, 2017 The Apache Foundation has released security updates to address vulnerabilities in Apache Tomcat. Exploitation of one of these vulnerabilities may allow a remote attacker to take control of an affected server. US-CERT encourages users and administrators to review the Apache advisories for CVE-2017-12615 and CVE-2017-12616 for more information and apply the necessary updates. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

VMware Releases Security Updates

Sep 15, 2017

Original release date: September 15, 2017 VMware has released security updates to address vulnerabilities in ESXi, vCenter Server, Fusion, and Workstation. Exploitation of one of these vulnerabilities could allow a remote attacker to take control of an affected system.US-CERT encourages users and administrators to review VMware Security Advisory VMSA-2017-0015 and apply the necessary updates. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Potential Phishing Scams Related to Equifax Data Breach

Sep 14, 2017

Original release date: September 14, 2017 The Federal Trade Commission (FTC) has released an alert on scams related to the Equifax data breach. FTC warns consumers to be wary of calls or emails purporting to be from Equifax agents. Legitimate Equifax representatives will not contact consumers to ask for verification of their information.US-CERT encourages consumers to report fraudulent calls and emails to the FTC Complaint Assistant and to refer to the FTC Alert and US-CERT Tips on Avoiding Social Engineering and Phishing Attacks and Preventing and Responding to Identity Theft for more information.  This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

BlueBorne Bluetooth Vulnerabilities

Sep 12, 2017

Original release date: September 12, 2017 US-CERT is aware of a collection of Bluetooth vulnerabilities, known as BlueBorne, potentially affecting millions of unpatched mobile phones, computers, and Internet of Things (IoT) devices. A remote attacker could exploit several of these vulnerabilities to take control of affected devices.US-CERT recommends that users and administrators read Vulnerability Note VU#240311 for more information. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Microsoft Releases September 2017 Security Updates

Sep 12, 2017

Original release date: September 12, 2017 Microsoft has released updates to address vulnerabilities in Microsoft software. A remote attacker could exploit some of these vulnerabilities to take control of a system.US-CERT encourages users and administrators to review Microsoft's September 2017 Security Update Summary and Deployment Information and apply the necessary updates. This product is provided subject to this Notification and this Privacy & Use policy.

Continue Reading ›

Pages

Related Content

Best Practices

10 Best Pactices

Our 10 Best Pactices

Contact Us

Contact Information Security at 756-7000

Contacts

Did you know?

Stay Safe Online Tips