US-CERT Feed

Google Releases Security Update for Chrome

US-Cert Current Activity - Tue, 04/23/2019 - 9:33pm
Original release date: April 23, 2019

Google has released Chrome version 74.0.3729.108 for Windows, Mac, and Linux. This version addresses multiple vulnerabilities that an attacker could exploit to take control of an affected system.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Chrome Release and apply the necessary update.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Dutch NCSC Releases Updated TLS Guidelines

US-Cert Current Activity - Tue, 04/23/2019 - 3:18pm
Original release date: April 23, 2019

The Dutch National Cyber Security Centre (NCSC) has published an update to their Transport Layer Security (TLS) protocol guidelines, which aim to improve TLS configuration security.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Dutch NCSC IT Security Guidelines for Transport Layer Security.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Drupal Releases Security Updates

US-Cert Current Activity - Wed, 04/17/2019 - 8:50pm
Original release date: April 17, 2019

Drupal has released security updates to address multiple vulnerabilities in Drupal Core. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review Drupal’s security advisories SA-CORE-2019-005 and SA-CORE-2019-006 and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Cisco Releases Security Update for Cisco IOS XR

US-Cert Current Activity - Wed, 04/17/2019 - 2:22pm
Original release date: April 17, 2019

Cisco has released a security update to address a vulnerability in Cisco IOS XR. A remote attacker could exploit this vulnerability to take control of an affected system.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Cisco Security Advisory and apply the necessary update.
 

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

ICSJWG Spring Meeting April 23–25

US-Cert Current Activity - Wed, 04/17/2019 - 2:19pm
Original release date: April 17, 2019

The Industrial Control Systems Joint Working Group (ICSJWG)—a collaborative and coordinating body operating under the Critical Infrastructure Partnership Advisory Council framework—will hold the 2019 ICSJWG Spring Meeting in Kansas City, Mo, April 23–25, 2019. ICSJWG facilitates information sharing to reduce the risk to the Nation’s industrial control systems.

 

The Cybersecurity and Infrastructure Security Agency (CISA) encourages interested participants to visit the ICSJWG website to register for the Spring Meeting by April 17, 2019, and for additional information.

 

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Multiple Vulnerabilities in Broadcom WiFi Chipset Drivers

US-Cert Current Activity - Wed, 04/17/2019 - 11:54am
Original release date: April 17, 2019

The CERT Coordination Center (CERT/CC) has released information on multiple vulnerabilities in Broadcom WiFi chipset drivers. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the CERT/CC Vulnerability Note VU#166939 for more information and refer to vendors for appropriate updates, when available.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Oracle Releases April 2019 Security Bulletin

US-Cert Current Activity - Tue, 04/16/2019 - 5:57pm
Original release date: April 16, 2019

Oracle has released its Critical Patch Update for April 2019 to address 297 vulnerabilities across multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Oracle April 2019 Critical Patch Update and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Apache Releases Security Updates for Apache Tomcat

US-Cert Current Activity - Sun, 04/14/2019 - 3:39pm
Original release date: April 14, 2019

The Apache Software Foundation has released Apache Tomcat versions 7.0.94 and 8.5.40 to address a vulnerability. A remote attacker could exploit this vulnerability to take control of an affected system.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Apache security advisory for CVE-2019-0232 and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Multiple Vulnerabilities in WPA3 Protocol

US-Cert Current Activity - Fri, 04/12/2019 - 4:55pm
Original release date: April 12, 2019

The CERT Coordination Center (CERT/CC) has released information on vulnerabilities—referred to as Dragonblood—in WPA3 protocol. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review CERT/CC’s Vulnerability Note VU#871675 for more information and refer to vendors for appropriate updates, when available.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

VMware Releases Security Updates

US-Cert Current Activity - Fri, 04/12/2019 - 10:38am
Original release date: April 12, 2019

VMware has released security updates to address vulnerabilities in ESXi, Workstation, and Fusion. An attacker could exploit some of these vulnerabilities to obtain sensitive information.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review VMware Security Advisory VMSA-2019-0006 and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Vulnerability in Multiple VPN Applications

US-Cert Current Activity - Fri, 04/12/2019 - 8:44am
Original release date: April 12, 2019

The CERT Coordination Center (CERT/CC) has released information on a vulnerability affecting multiple Virtual Private Network (VPN) applications. An attacker could exploit this vulnerability to take control of an affected system.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review CERT/CC’s Vulnerability Note VU#192371 for more information and refer to vendors for appropriate updates, when available.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Juniper Networks Releases Multiple Security Updates

US-Cert Current Activity - Wed, 04/10/2019 - 3:09pm
Original release date: April 10, 2019

Juniper Networks has released multiple security updates to address vulnerabilities in various Juniper products. An attacker could exploit some of these vulnerabilities to take control of an affected system.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Juniper Security Advisories web page and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

North Korean Malicious Cyber Activity

US-Cert Current Activity - Wed, 04/10/2019 - 9:34am
Original release date: April 10, 2019

The Department of Homeland Security and the Federal Bureau of Investigation have released a Malware Analysis Report (MAR), identifying a Trojan malware variant—referred to as HOPLIGHT—used by the North Korean government. The U.S. Government refers to malicious cyber activity by the North Korean government as HIDDEN COBRA.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review [MAR-10135536 – North Korean Trojan: HOPLIGHT] and the page on HIDDEN COBRA for more information.


Links:
http://www.us-cert.gov/ncas/analysis-reports/AR19-100A
https://www.us-cert.gov/HIDDEN-COBRA-North-Korean-Malicious-Cyber-Activity

The Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI) have identified a Trojan malware variant—referred to as KEYMARBLE—used by the North Korean government. The U.S. Government refers to malicious cyber activity by the North Korean government as HIDDEN COBRA.

NCCIC encourages users and administrators to review Malware Analysis Report (MAR) MAR-10135536-17 and the page on HIDDEN COBRA - North Korean Malicious Cyber Activity for more information.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Microsoft Releases April 2019 Security Updates

US-Cert Current Activity - Tue, 04/09/2019 - 2:44pm
Original release date: April 09, 2019

Microsoft has released updates to address multiple vulnerabilities in Microsoft software. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review Microsoft’s April 2019 Security Update Summary and Deployment Information and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Adobe Releases Security Updates

US-Cert Current Activity - Tue, 04/09/2019 - 2:08pm
Original release date: April 09, 2019

Adobe has released security updates to address vulnerabilities in multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Adobe Security Bulletins and Advisories page and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Intel Releases Security Updates, Mitigations for Multiple Products

US-Cert Current Activity - Tue, 04/09/2019 - 1:59pm
Original release date: April 09, 2019

Intel has released security updates and recommendations to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the following Intel Security Advisories and apply the necessary updates and mitigations:

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Samba Releases Security Updates

US-Cert Current Activity - Mon, 04/08/2019 - 1:47pm
Original release date: April 08, 2019

The Samba Team has released security updates to address vulnerabilities in Samba. An attacker could exploit some of these vulnerabilities to take control of an affected system.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Samba Security Announcements for CVE-2019-3870 and CVE-2019-3880 and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Apache Releases Security Update for Apache HTTP Server

US-Cert Current Activity - Thu, 04/04/2019 - 12:48pm
Original release date: April 04, 2019

The Apache Software Foundation has released Apache HTTP Server version 2.4.39 to address multiple vulnerabilities. An attacker could exploit one of these vulnerabilities to take control of an affected system.
 
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Apache HTTP Server 2.4 vulnerabilities page and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

MS-ISAC Releases Security Primer on LockerGoga Ransomware

US-Cert Current Activity - Mon, 04/01/2019 - 1:45pm
Original release date: April 01, 2019

The Multi-State Information Sharing & Analysis Center (MS-ISAC) has released a Security Primer on LockerGoga Ransomware—a type of malicious software, or malware, designed to deny access to a computer system or data until a ransom is paid.

Ransomware can be devastating to an individual or an organization. The Cybersecurity and Infrastructure Security Agency (CISA) discourages individuals and organizations from paying the ransom, as this does not guarantee access will be restored.

CISA encourages users and administrators to review MS-ISAC’s White Paper: Security Primer – LockerGoga, CISA’s Ransomware page, and the U.S. Government’s Interagency Joint Guidance for further information and to implement the following best practices:

  • Create system back-ups,
  • Be wary of opening emails and attachments from unknown or unverified senders, and
  • Ensure that systems are updated with the latest patches.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Supply Chain Integrity Month

US-Cert Current Activity - Mon, 04/01/2019 - 12:21pm
Original release date: April 01, 2019

April is Supply Chain Integrity Month. The Cybersecurity and Infrastructure Security Agency (CISA), the Office of the Director of National Intelligence (ODNI), and the Department of Defense (DOD) are partnering to promote the importance of supply chain security and risk management. Breaches in the supply chain provide an opportunity for malicious software or hardware to be installed on equipment. Lack of awareness or validation of the legitimacy of hardware and software presents a serious risk to users’ information and the overall integrity of a network environment.

CISA recommends users and administrators review ODNI’s guidance on Supply Chain Risk Management for more information.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: US-CERT Feed

Pages