US-CERT | United States Computer Emergency Readiness Team

Published Tuesday, March 3, 2015

The Information Assurance Directorate of the National Security Agency (NSA) has released a report on Defensive Best Practices for Destructive Malware. This report details several steps network defenders can take to detect, contain, and minimize destructive malware infections.

US-CERT encourages users and administrators to review the NSA report and ICS-CERT TIP-15-022-01 for more information on destructive malware.

Read Full Entry »

FTC Details the Top 10 Imposter Scams of 2014

Published Monday, March 2, 2015

The Federal Trade Commission (FTC) has released an advisory describing the top 10 reported imposter scams for 2014. Scam operators often impersonate individuals, companies, and organizations to entice targets to participate in fraudulent financial transactions.

Users are encouraged to review the FTC advisory for details and refer to the US-CERT Tip ST04-014 for information on social engineering and phishing attacks.

Read Full Entry »

Cisco IPv6 Denial of Service Vulnerability

Published Wednesday, February 25, 2015

Cisco has identified a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service condition. The vulnerability is due to improper processing of malformed IPv6 packets carrying extension headers. Cisco Network Convergence System 6000 (NCS 6000) and Cisco Carrier Routing System X (CRS-X) running an affected version of Cisco IOS XR Software are affected by this vulnerability.

Read Full Entry »

Announcements

New OMB Guidance Improves Federal Information Security

The Office of Management and Budget (OMB) established an improved process for DHS to conduct regular and proactive scans of Federal civilian agency networks. Revised Incident Notification Guidelines are included that streamline the way agencies report cybersecurity incident information to US-CERT.
GNU Bourne-Again Shell (Bash) 'Shellshock' Vulnerability

A vulnerability in Bash, also known as 'Shellshock', affects UNIX-based operating systems such as Linux and Mac OS X. See the TA14-268A and VU#252743 for details and recommended actions.
Backoff Point-of-Sale Malware

NCCIC, USSS, and third-party partners have issued an advisory regarding a Point-of-Sale malware dubbed "Backoff" which has been discovered exploiting businesses' administrator accounts remotely and exfiltrating consumer payment data.