Defend Today. Secure Tomorrow.

As part of its mission, CISA leads the effort to enhance the security, resiliency, and reliability of the Nation's cybersecurity and communications infrastructure.

Current Activity

Monday, June 24, 2019

CISA Statement on Iranian Cybersecurity Threats

Friday, June 21, 2019

Dell Releases Security Advisory for Dell SupportAssist

Thursday, June 20, 2019

Apache Releases Security Advisory for Apache Tomcat

Thursday, June 20, 2019

Apple Releases Security Updates for AirPort 802.11n Wi-Fi Base Stations

Report Incidents

Report Phishing

Report Malware

Report Vulnerabilities

Share Indicators

Contact US-CERT

Recent Vulnerabilities

6/24

VU#905115

Multiple TCP Selective Acknowledgement (SACK) and Maximum Segment Size (MSS) networking vulnerabilities may cause denial-of-service conditions in Linux and FreeBSD kernels

6/21

VU#465632

Microsoft Exchange server 2013 and newer are vulnerable to NTLM relay attacks

6/18

VU#576688

Microsoft Windows RDP can bypass the Windows lock screen

6/12

VU#119704

Microsoft Windows Task Scheduler SetJobFileSecurityByName privilege escalation vulnerability

6/5

VU#871675

WPA3 design issues and implementation vulnerabilities in hostapd and wpa_supplicant

6/3

VU#877837

Multiple vulnerabilities in Quest Kace System Management Appliance

National Cyber Awareness System

Current Activity

Provides up-to-date information about high-impact types of security activity affecting the community at large.

View Current Activity

Alerts

Timely information about current security issues, vulnerabilities, and exploits.

View Alerts

Bulletins

Weekly summaries of new vulnerabilities along with patch information.

View Bulletins

Analysis Reports

Provide in-depth analysis on a new or evolving cyber threat.

View Analysis Reports

Announcements

CISA Relaunch of the Newly Integrated Website

The Cybersecurity and Infrastructure Security Agency (CISA) is excited to announce the relaunch of the newly integrated us-cert.gov website! On June 25, us-cert.gov and ics-cert.us-cert.gov were consolidated into a single us-cert.gov site—a comprehensive, easy-to-navigate website with an updated look and feel.

Best Practices for Securing Election Systems

On May 21, 2019, the Cybersecurity and Infrastructure Security Agency (CISA) released Best Practices for Securing Election Systems to aid election organizations in hardening enterprise networks and strengthening election infrastructure, at little or no cost. Additionally, CISA released an Election Infrastructure Questionnaire to assist with organizational documentation of election infrastructure cybersecurity posture and to identify key interdependencies.