Alerts

IBM Cisco Security Update

Original release date: July 21, 2017 IBM has released a security update to address some vulnerabilities in its IBM Cisco MDS Series Switches Data Center Network Manager (DCNM) software. Exploitation of these vulnerabilities may allow a remote attacker to take control of an affected system. US-CERT encourages users and administrators to review the IBM Security Advisory for vulnerability and mitigation details. This product is provided subject to this Notification and this Privacy & Use policy.


Oracle Releases Security Bulletin

Original release date: July 18, 2017 Oracle has released its Critical Patch Update for July 2017 to address 308 vulnerabilities across multiple products. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system. Users and administrators are encouraged to review the Oracle July 2017 Critical Patch Update and apply the necessary updates. This product is provided subject to this Notification and this Privacy & Use policy.


FBI Releases Article on Privacy Risks Associated with Internet-Connected Children’s Toys

Original release date: July 17, 2017 The Federal Bureau of Investigation (FBI) has released an article on the privacy risks associated with Internet-connected children’s toys. FBI warns that Internet-connected toys may contain “sensors, microphones, cameras, data storage components, and other multimedia capabilities – including speech recognition and GPS options” that may put the privacy and safety of children at risk due to the disclosure of personal information. FBI recommends that consumers read user agreement disclosures and privacy practices for information …
Read More »


SB17-198: Vulnerability Summary for the Week of July 10, 2017

Original release date: July 17, 2017 The US-CERT Cyber Security Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week. The NVD is sponsored by the Department of Homeland Security (DHS) National Cybersecurity and Communications Integration Center (NCCIC) / United States Computer Emergency Readiness Team (US-CERT). For modified or updated entries, please visit the NVD, which contains historical vulnerability information. The vulnerabilities …
Read More »


FTC Releases Alert on Digital Security While Traveling

Original release date: July 14, 2017 The Federal Trade Commission (FTC) has released an alert on ensuring good digital security while traveling. Security recommendations include using caution while accessing free Wi-Fi hotspots, keeping all software updated, and using Virtual Private Networks (VPNs).     US-CERT encourages users to refer to the FTC Alert and the US-CERT Tip on Cybersecurity for Electronic Devices for more information. This product is provided subject to this Notification and this Privacy & Use policy.


Juniper Releases ScreenOS Security Update

Original release date: July 13, 2017 Juniper has released ScreenOS 6.3.0r24 to address multiple cross-site scripting vulnerabilities found in prior versions. An attacker could exploit one of these vulnerabilities to take control of an affected system. US-CERT encourages users and administrators to review Juniper’s Security Bulletin and update all affected ScreenOS versions. This product is provided subject to this Notification and this Privacy & Use policy.


Microsoft Releases July 2017 Security Updates

Original release date: July 11, 2017 Microsoft has released updates to address vulnerabilities in Microsoft software. A remote attacker could exploit some of these vulnerabilities to take control of a system. US-CERT encourages users and administrators to review Microsoft’s July 2017 Security Update Summary and Deployment Information and apply the necessary updates. This product is provided subject to this Notification and this Privacy & Use policy.


SB17-191: Vulnerability Summary for the Week of July 3, 2017

Original release date: July 10, 2017 The US-CERT Cyber Security Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week. The NVD is sponsored by the Department of Homeland Security (DHS) National Cybersecurity and Communications Integration Center (NCCIC) / United States Computer Emergency Readiness Team (US-CERT). For modified or updated entries, please visit the NVD, which contains historical vulnerability information. The vulnerabilities …
Read More »


FTC Releases Alert on Charity Scams

Original release date: July 06, 2017 The Federal Trade Commission (FTC) has released an alert on charity scams. Recent acts of fraud include solicitations from scammers requesting payment to claim a sweepstakes prize. Anytime someone asks you to pay to obtain a prize, it is a scam. US-CERT encourages consumers to refer to the FTC Alert and the US-CERT Tip on Real-World Warnings Keep You Safe Online for more information. This product is provided subject to this Notification and this …
Read More »


IRS Launches ‘Don’t Take the Bait’ Series

Original release date: July 06, 2017 As part of its Security Summit effort, the Internal Revenue Service (IRS) will be launching a new educational series called “Don’t Take the Bait” on July 11, 2017. As part of the Protect Your Clients, Protect Yourself campaign, this series provides information about phishing scams targeting tax professionals and their clients. US-CERT encourages tax payers and tax professionals to review the IRS alert and US-CERT’s advice on Avoiding Social Engineering and Phishing Attacks. This …
Read More »