Alerts

Aviation Phishing Scams

Original release date: March 23, 2017 US-CERT has received reports of email-based phishing campaigns targeting airline consumers. Systems infected through phishing campaigns act as an entry point for attackers to gain access to sensitive business or personal information. US-CERT encourages users and administrators to review an airline Security Advisory and US-CERT’s Security Tip ST04-014 for more information on phishing attacks. This product is provided subject to this Notification and this Privacy & Use policy.


Vulnerabilities Identified in Network Time Protocol Daemon (ntpd)

Original release date: March 22, 2017 The Network Time Foundation’s NTP Project has has released version ntp-4.2.8p10 to address multiple vulnerabilities in ntpd. Exploitation of some of these vulnerabilities may allow a remote attacker to cause a denial-of-service condition. US-CERT encourages users and administrators to review the NTP Security Notice Page for vulnerability and mitigation details. This product is provided subject to this Notification and this Privacy & Use policy.


Title: Cisco Releases Security Updates

Original release date: March 21, 2017 Cisco has released security updates to address vulnerabilities in its IOS and IOS XE Software. Exploitation of one of these vulnerabilities could allow a remote attacker to cause a denial of service condition. Users and administrators are encouraged to review the following Cisco Security Advisories and apply the necessary updates: IPv6 Denial of Service Vulnerability Autonomic Networking Infrastructure Registrar Denial of Service Vulnerability This product is provided subject to this Notification and this Privacy …
Read More »


SB17-079: Vulnerability Summary for the Week of March 13, 2017

Original release date: March 20, 2017 The US-CERT Cyber Security Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week. The NVD is sponsored by the Department of Homeland Security (DHS) National Cybersecurity and Communications Integration Center (NCCIC) / United States Computer Emergency Readiness Team (US-CERT). For modified or updated entries, please visit the NVD, which contains historical vulnerability information. The vulnerabilities …
Read More »


IRS Warns of Last-Minute Tax Scams

Original release date: March 17, 2017 The Internal Revenue Service (IRS) has released an alert warning of phishing email scams targeting last-minute tax filers. The alert describes common features of these cyber crimes and includes recommendations to protect against them: strengthen passwords, recognize phishing attempts, and forward suspicious emails to phishing@irs.gov. Tax payers and tax professionals are encouraged to review the IRS alert and US-CERT’s advice on Avoiding Social Engineering and Phishing Attacks. This product is provided subject to this …
Read More »


Mozilla Releases Security Updates

Original release date: March 17, 2017 Mozilla has released security updates to address a vulnerability in Firefox and Firefox ESR. Exploitation of this vulnerability may allow an attacker to take control of an affected system. US-CERT encourages users and administrators to review the Mozilla Security Advisory for Firefox and Firefox ESR and apply the necessary updates. This product is provided subject to this Notification and this Privacy & Use policy.


Microsoft Ending Support for Windows Vista

Original release date: March 17, 2017 All software products have a lifecycle. After April 11, 2017, Microsoft is ending support for the Windows Vista operating system. After this date, this product will no longer receive: Security updates, Non-security hotfixes, Free or paid assisted support options, or Online technical content updates from Microsoft. Computers running the Windows Vista operating system will continue to work even after support ends. However, using unsupported software may increase the risks of viruses and other security …
Read More »


Microsoft SMBv1 Vulnerability

Original release date: March 16, 2017 Microsoft has released a security update to address a vulnerability in implementations of Server Message Block 1.0 (SMBv1). Exploitation of this vulnerability could allow a remote attacker to take control of an affected system. US-CERT encourages users and administrators to review Microsoft Security Bulletin MS17-010 and apply the update. For more information, see the Information Assurance Advisory and US-CERT’s SMB Security Best Practices guidance. This product is provided subject to this Notification and this …
Read More »


TA17-075A: HTTPS Interception Weakens TLS Security

Original release date: March 16, 2017 Systems Affected All systems behind a hypertext transfer protocol secure (HTTPS) interception product are potentially affected. Overview Many organizations use HTTPS interception products for several purposes, including detecting malware that uses HTTPS connections to malicious servers. The CERT Coordination Center (CERT/CC) explored the tradeoffs of using HTTPS interception in a blog post called The Risks of SSL Inspection [1]. Organizations that have performed a risk assessment and determined that HTTPS inspection is a requirement …
Read More »


Drupal Releases Security Update

Original release date: March 15, 2017 Drupal has released an advisory to address vulnerabilities in Drupal core 8.x versions prior to 8.2.7. Exploitation of some of these vulnerabilities could allow a remote attacker to take control of an affected system. US-CERT encourages users and administrators to review Drupal’s Security Advisory and apply the necessary update. This product is provided subject to this Notification and this Privacy & Use policy.