U.S. Flag Official website of the Department of Homeland Security

US-CERT Alerts Users to Holiday Phishing Scams and Malware Campaigns

US-CERT reminds users to remain vigilant when browsing or shopping online this holiday season. E-cards from unknown senders may contain malicious links. Fake advertisements or shipping notifications may deliver infected attachments. Spoofed e-mail messages and fraudulent posts on social networking sites may request support for phony causes.

To avoid seasonal campaigns that could result in security breaches, identity theft, or financial loss, US-CERT encourages users to take the following actions:

Dell Computers Contain CA Root Certificate Vulnerability

Dell consumer personal computers using the preinstalled certificate authority (CA) root certificate (eDellRoot) contain a critical vulnerability. This preinstalled root certificate resides on newer Dell laptops and desktops. Exploitation of the vulnerability could allow a remote attacker to read all encrypted web browser traffic (HTTPS), successfully impersonate (spoof) any website, or perform other attacks on the affected system.

VMware Releases Security Updates

VMware has released security updates to address a vulnerability in vCenter, vCloud Director, and Horizon View. Exploitation of this vulnerability may allow an attacker to obtain sensitive information.

Users and administrators are encouraged to review VMware Security Advisory VMSA-2015-0008 and apply the necessary updates.

Technical Alerts


Timely information about current security issues, vulnerabilities, and exploits.



Weekly summaries of new vulnerabilities along with patch information when available.



Advice and best practices about common security issues for the general public.

Security Publications

Technical Documents

In-depth articles that provide advice and summarize a variety of internet security topics.

Back to Top