US-CERT | United States Computer Emergency Readiness Team

The National Cybersecurity and Communications Integration Center (NCCIC) is the Nation’s flagship cyber defense, incident response, and operational integration center. Our mission is to reduce the Nation’s risk of systemic cybersecurity and communications challenges.

Contact Us

(888) 282-0870

Send us email

Download PGP/GPG keys

Incidents, Indicators, Phishing, Malware, or Vulnerabilities

Current Activity

View Current Activity Feed

CISA Emergency Directive on DNS Infrastructure Tampering

Published Tuesday, January 22, 2019

The U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) issued an emergency directive to address ongoing incidents associated with global Domain Name System (DNS) infrastructure tampering.

Read Full Entry »

Apple Releases Multiple Security Updates

Published Tuesday, January 22, 2019

Apple has released security updates to address vulnerabilities in multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

The National Cybersecurity and Communications Integration Center (NCCIC), part of the Cybersecurity and Infrastructure Security Agency (CISA), encourages users and administrators to review the Apple Security Updates page and apply the necessary updates.

Read Full Entry »

Adobe Releases Security Updates

Published Tuesday, January 22, 2019

Adobe has released security updates to address vulnerabilities in Adobe Experience Manager. An attacker could exploit these vulnerabilities to obtain sensitive information.

Read Full Entry »

Announcements

Chinese Malicious Cyber Activity
On December 20, 2018, the U.S. Government announced that a group of Chinese cyber actors associated with the Chinese government have carried out a campaign of cyber-enabled theft targeting global information technology (IT) service providers and their customers. Over the past four years, these actors have gained access to multiple U.S. and global IT service providers and their customers. For more information related to this activity, go to https://www.us-cert.gov/china.
SamSam Ransomware
On December 3, 2018, the Department of Homeland Security and the Federal Bureau of Investigation released a joint Activity Alert on cyber threat actors using SamSam ransomware—also known as MSIL/SAMAS.A—to target industries in the United States and worldwide. For more information, visit https://www.us-cert.gov/ncas/alerts/AA18-337A.
3ve – Fraudulent Online Advertising
On November 27, 2018, the Department of Homeland Security and the Federal Bureau of Investigation identified a major online ad fraud operation—referred to by the U.S. Government as "3ve." For more information on 3ve, visit https://www.us-cert.gov/ncas/alerts/TA18-331A.