Skip to main content
United States Flag

Official website of the Department of Homeland Security

US Department of Homeland Security CISA Cyber + Infrastructure
US Department of Homeland Security CISA Cyber + Infrastructure

CertMain Menu

  • About Us
  • Alerts and Tips
  • Resources
  • Industrial Control Systems
  • Report
US Department of Homeland Security CISA Cyber + Infrastructure
TLP:WHITE
TLP:WHITE

Defend Today. Secure Tomorrow.

As part of its mission, CISA leads the effort to enhance the security, resiliency, and reliability of the Nation's cybersecurity and communications infrastructure.

High-Profile Activity

Chinese Malicious Cyber Activity
HIDDEN COBRA - North Korean Malicious Cyber Activity
GRIZZLY STEPPE - Russian Malicious Cyber Activity

Current Activity

Current Activity Icon
Wednesday, July 17, 2019

Drupal Releases Security Update

Current Activity Icon
Wednesday, July 17, 2019

Cisco Releases Security Updates for Multiple Products

Current Activity Icon
Tuesday, July 16, 2019

NCSC Releases 2019 Active Cyber Defence Report

Current Activity Icon
Tuesday, July 16, 2019

Microsoft Releases Security Updates for PowerShell Core

Report Incidents
Report Incidents
Report Phishing
Report Phishing
Report Malware
Report Malware
Report Vulnerabilities
Report Vulnerabilities
Share Indicators
Share Indicators
Contact US-CERT
Contact US-CERT

Recent Vulnerabilities

7/17

7/17

VU#790507

Oracle Solaris vulnerable to arbitrary code execution via /proc/self

7/15

7/15

VU#129209

LLVMs Arm stack protection feature can be rendered ineffective

7/8

7/8

VU#905115

Multiple TCP Selective Acknowledgement (SACK) and Maximum Segment Size (MSS) networking vulnerabilities may cause denial-of-service conditions in Linux and FreeBSD kernels

6/21

6/21

VU#465632

Microsoft Exchange server 2013 and newer are vulnerable to NTLM relay attacks

6/18

6/18

VU#576688

Microsoft Windows RDP can bypass the Windows lock screen

6/12

6/12

VU#119704

Microsoft Windows Task Scheduler SetJobFileSecurityByName privilege escalation vulnerability

Other Resources: National Vulnerability Database

National Cyber Awareness System

Current Activity Icon

Current Activity

Provides up-to-date information about high-impact security activity affecting the community at large.

View Current Activity arrow
Alerts Icons

Alerts

Timely information about current security issues, vulnerabilities, and exploits.

View Alerts arrow
Bulletins Icon

Bulletins

Weekly summaries of new vulnerabilities along with patch information.

View Bulletins arrow
Analysis Reports Icon

Analysis Reports

Provide in-depth analysis on a new or evolving cyber threat.


View Analysis Reports arrow

Announcements

ICSJWG Call for Abstracts

The Industrial Control Systems Joint Working Group (ICSJWG)—a collaborative and coordinating body for Industrial Control Systems hosted by CISA and driven by the community—is currently accepting abstracts for the 2019 Fall Meeting in Springfield, Massachusetts, August 27–29, 2019. 

CISA Relaunch of the Newly Integrated Website

The Cybersecurity and Infrastructure Security Agency (CISA) is excited to announce the relaunch of the newly integrated us-cert.gov website! On June 25, us-cert.gov and ics-cert.us-cert.gov were consolidated into a single us-cert.gov site—a comprehensive, easy-to-navigate website with an updated look and feel.

Contact Us

phone icon(888)282-0870

email iconSend us email

lock iconDownload PGP/GPG keys

Subscribe to Alerts

Receive security alerts, tips, and other updates.


twitter icon
rss icon
Home   Site Map   FAQ   Contact Us   Traffic Light Protocol   PCII   Accountability   Disclaimer   DHS Privacy Policy   FOIA   No Fear Act   Accessibility   Plain Writing   Plug-ins   Inspector General   The White House   USA.gov
 

CISA is part of the Department of Homeland Security