US-CERT | United States Computer Emergency Readiness Team

The National Cybersecurity and Communications Integration Center (NCCIC) is the Nation’s flagship cyber defense, incident response, and operational integration center. Our mission is to reduce the Nation’s risk of systemic cybersecurity and communications challenges.

Contact Us

(888) 282-0870

Send us email

Download PGP/GPG keys

Incidents, Indicators, Phishing, Malware, or Vulnerabilities

Current Activity

View Current Activity Feed

Microsoft Releases November 2018 Security Updates

Published Tuesday, November 13, 2018

Microsoft has released updates to address multiple vulnerabilities in Microsoft software. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

Read Full Entry »

Adobe Releases Security Updates

Published Tuesday, November 13, 2018

Adobe has released security updates to address vulnerabilities in Flash Player, Adobe Acrobat and Reader, and Adobe Photoshop CC. An attacker could exploit these vulnerabilities to obtain access to sensitive information.

Read Full Entry »

VMware Releases Security Updates

Published Friday, November 9, 2018

VMware has released security updates to address vulnerabilities in ESXi, Workstation, and Fusion. An attacker could exploit these vulnerabilities to take control of an affected system.

NCCIC encourages users and administrators to review the VMware Security Advisory VMSA-2018-0027 and apply the necessary updates.

Read Full Entry »

Announcements

Publicly Available Tools Seen in Cyber Incidents Worldwide
On October 11, 2018, NCCIC, in collaboration with the Australian Cyber Security Centre, the Canadian Centre for Cyber Security, the New Zealand National Cyber Security Centre, and the United Kingdom National Cyber Security Centre, released a joint Activity Alert that highlights five publicly available tools frequently observed in cyber incidents worldwide. For more information, visit https://www.us-cert.gov/ncas/alerts/AA18-284A.
APTs Targeting IT Service Provider Customers
On October 3, 2018, the National Cybersecurity and Communications Integration Center (NCCIC) released reporting on advanced persistent threat (APT) actors actively exploiting trust relationships in information technology (IT) service provider networks around the world. For more information, visit https://www.us-cert.gov/APTs-Targeting-IT-Service-Provider-Customers.
HIDDEN COBRA - North Korean Malicious Cyber Activity
On October 2, 2018, the Department of Homeland Security, the Department of the Treasury, and the Federal Bureau of Investigation identified malware and other indicators of compromise used by the North Korean government in an ATM cash-out scheme—referred to by the U.S. Government as “FASTCash.” The U.S. Government refers to malicious cyber activity by the North Korean government as HIDDEN COBRA. For more information on HIDDEN COBRA activity, visit https://www.us-cert.gov/hiddencobra.

The National Cybersecurity and Communications Integration Center (NCCIC) is the Nation’s flagship cyber defense, incident response, and operational integration center. Our mission is to reduce the Nation’s risk of systemic cybersecurity and communications challenges.

Contact Us

Current Activity

Microsoft Releases November 2018 Security Updates

Adobe Releases Security Updates

VMware Releases Security Updates

Announcements

Recent Vulnerabilities

National Cyber Awareness System

Alerts

Bulletins

Tips

Analysis Reports

I Want To

Contact Us

The National Cybersecurity and Communications Integration Center (NCCIC) is the Nation’s flagship cyber defense, incident response, and operational integration center. Our mission is to reduce the Nation’s risk of systemic cybersecurity and communications challenges.

Contact Us

Current Activity

Microsoft Releases November 2018 Security Updates

Adobe Releases Security Updates

VMware Releases Security Updates

National Cyber Awareness System

Alerts

Bulletins

Tips

Analysis Reports

I Want To

Subscribe to Alerts

Contact Us