Skip to main content
United States Flag

Official website of the Department of Homeland Security

US Department of Homeland Security CISA Cyber + Infrastructure
US Department of Homeland Security CISA Cyber + Infrastructure

CertMain Menu

  • About Us
  • Alerts and Tips
  • Resources
  • Industrial Control Systems
  • Report
US Department of Homeland Security CISA Cyber + Infrastructure
TLP:WHITE
TLP:WHITE

Defend Today. Secure Tomorrow.

As part of its mission, CISA leads the effort to enhance the security, resiliency, and reliability of the Nation's cybersecurity and communications infrastructure.

High-Profile Activity

Chinese Malicious Cyber Activity
HIDDEN COBRA - North Korean Malicious Cyber Activity
GRIZZLY STEPPE - Russian Malicious Cyber Activity
Ransomware Guidance

Current Activity

Current Activity Icon
Friday, December 6, 2019

VMware Releases Security Updates for ESXi and Horizon DaaS

Current Activity Icon
Thursday, December 5, 2019

ACSC Releases Fundamentals of Cross Domain Solutions

Current Activity Icon
Thursday, December 5, 2019

Microsoft Releases Security Advisory for Windows Hello for Business

Current Activity Icon
Thursday, December 5, 2019

NCSC-NZ Releases Cyber Governance Resource for Leaders

Report Incidents
Report Incidents
Report Phishing
Report Phishing
Report Malware
Report Malware
Report Vulnerabilities
Report Vulnerabilities
Share Indicators
Share Indicators
Contact US-CERT
Contact US-CERT

Recent Vulnerabilities

11/19

11/19

VU#605641

HTTP/2 implementations do not robustly handle abnormal traffic and resource exhaustion

11/15

11/15

VU#125336

Microsoft Office for Mac cannot properly disable XLM macros

10/25

10/25

VU#763073

iTerm2 with tmux integration is vulnerable to remote command execution

10/25

10/25

VU#766427

Multiple D-Link routers vulnerable to remote command execution

10/22

10/22

VU#927237

Pulse Secure VPN contains multiple vulnerabilities

10/11

10/11

VU#719689

Multiple vulnerabilities found in the Cobham EXPLORER 710 satcom terminal

Other Resources: National Vulnerability Database

National Cyber Awareness System

Current Activity Icon

Current Activity

Provides up-to-date information about high-impact security activity affecting the community at large.

Alerts Icons

Alerts

Timely information about current security issues, vulnerabilities, and exploits.

Bulletins Icon

Bulletins

Weekly summaries of new vulnerabilities along with patch information.

Analysis Reports Icon

Analysis Reports

Provide in-depth analysis on a new or evolving cyber threat.

Announcements

HIDDEN COBRA – North Korean Malicious Cyber Activity

On October 31, 2019, the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Department of Defense (DoD) identified a Trojan malware variant—referred to as HOPLIGHT—used by the North Korean government. The U.S. Government refers to the malicious cyber activity by the North Korean government as HIDDEN COBRA. For more information, visit https://www.us-cert.gov/HiddenCobra. 

HIDDEN COBRA – North Korean Malicious Cyber Activity

On September 9, 2019, the Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) identified two malware variants—referred to as ELECTRICFISH and BADCALL—used by the North Korean government. The U.S. Government refers to the malicious cyber activity by the North Korean government as HIDDEN COBRA. For more information, visit https://www.us-cert.gov/HiddenCobra.

Contact Us

phone icon(888)282-0870

email iconSend us email

lock iconDownload PGP/GPG keys

Subscribe to Alerts

Receive security alerts, tips, and other updates.


twitter icon
rss icon
Home   Site Map   FAQ   Contact Us   Traffic Light Protocol   PCII   Accountability   Disclaimer   Privacy Policy   FOIA   No Fear Act   AccessibilityPlain WritingPlug-ins   Inspector General   The White House   USA.gov
 

CISA is part of the Department of Homeland Security