US CERT Current Activity

Syndicate content
A regularly updated summary of the most frequent, high-impact security incidents currently being reported to the US-CERT.
Updated: 26 min 17 sec ago

"Misfortune Cookie" Broadband Router Vulnerability

Sat, 12/20/2014 - 15:46
Original release date: December 20, 2014

Broadband routers employing the Allegro RomPager firmware prior to versions 4.34 contain a vulnerability in HTTP cookie processing code. Exploitation of this vulnerability could allow a remote attacker to take control of an affected device.

Users and administrators are encouraged to review Vulnerability Note VU#561444, the Allegro Press Release, and Check Point's Security Advisory for additional information and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: Alertas

Vulnerabilities Identified in Network Time Protocol Daemon

Fri, 12/19/2014 - 22:59
Original release date: December 19, 2014

NTP has released an update that addresses multiple vulnerabilities in the Network Time Protocol daemon. Exploitation of these vulnerabilities may allow a remote attacker to execute malicious code.

US-CERT encourages users and administrators to review Vulnerability Note VU#852879 and update to NTP 4.2.8 if necessary.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: Alertas

FTC Releases "Package Delivery" Themed Scam Alert

Fri, 12/19/2014 - 21:01
Original release date: December 19, 2014

The Federal Trade Commission (FTC) has released a Scam Alert addressing a "Package Delivery" themed phishing campaign regarding package delivery notifications from the U.S. Postal Service.  Scam operators often use false information linked to reputable organizations to imply the email is legitimate.

Users are encouraged to review the FTC Scam Alert for details, and refer to the Recognizing and Avoiding Email Scams Publication for information on email scams.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: Alertas

Docker Releases Security Updates

Sat, 12/13/2014 - 01:25
Original release date: December 12, 2014

Docker versions 1.3.3 and 1.4.0 have been released to address multiple security vulnerabilities, one of which could allow a remote attacker to take control of a vulnerable system.

Users and administrators are encouraged to review the Docker Security Advisory and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: Alertas

VMware Releases Updates for vCAC

Tue, 12/09/2014 - 22:44
Original release date: December 09, 2014

VMware has released security updates to address a critical vulnerability in vCloud Automation Center (vCAC), which could allow a remote attacker to take control of a vulnerable system.

US-CERT encourages users and administrators to review VMware Security Advisory VMSA-2014-0013 and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: Alertas

Certain TLS Implementations Vulnerable to POODLE Attacks

Tue, 12/09/2014 - 18:20
Original release date: December 09, 2014

A new variant of the POODLE attack may affect some TLS implementations on account of an issue similar to one present in SSL 3.0. Successful exploitation may enable actors to derive plaintext from encrypted communications.

US-CERT encourages users and administrators to review TA14-290A for additional information on the POODLE attack and apply any necessary updates to address the vulnerability.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: Alertas

Adobe Releases Security Updates for Flash, Reader, Acrobat, and ColdFusion

Tue, 12/09/2014 - 16:53
Original release date: December 09, 2014

Adobe has released security updates to address multiple vulnerabilities in Flash, Reader, Acrobat, and ColdFusion. Exploitation of these vulnerabilities may allow a remote attacker to take over an affected system.

US-CERT recommends users and administrators review Adobe Security Bulletins APSB14-27, APSB14-28, and APSB14-29 and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: Alertas

Microsoft Releases December 2014 Security Bulletin

Tue, 12/09/2014 - 16:22
Original release date: December 09, 2014

Microsoft has released updates to address vulnerabilities in Exchange, Windows, Internet Explorer, and Office as part of the Microsoft Security Bulletin Summary for December 2014. Some of these vulnerabilities could allow elevation of privilege, remote code execution, or disclosure of information.

US-CERT encourages users and administrators to review Microsoft Security Bulletin MS14-DEC and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: Alertas

ISC Releases Security Updates for BIND

Mon, 12/08/2014 - 22:02
Original release date: December 08, 2014

The Internet Systems Consortium (ISC) has released security updates to address multiple vulnerabilities in BIND, one of which may allow a remote attacker to cause a denial of service.

Updates available include:

  • BIND 9 version 9.9.6-P1
  • BIND 9 version 9.10.1-P1

Users and administrators are encouraged to review ISC Knowledge Base Articles AA-01216 and AA-01217 and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: Alertas

VMware Releases Security Updates for vCenter Server, vCenter Server Appliance, and ESXi

Fri, 12/05/2014 - 19:32
Original release date: December 05, 2014

VMware has released a security advisory to address multiple vulnerabilities in vCenter Server, vCenter Server Appliance, and ESXi. Exploitation of these vulnerabilities may allow a remote attacker to perform man-in-the-middle or cross-site scripting attacks.

US-CERT encourages users and administrators to review VMware Security Advisory VSMA-2014-0012 and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: Alertas

Apple Releases Security Updates for Safari

Fri, 12/05/2014 - 02:03
Original release date: December 04, 2014 | Last revised: December 05, 2014

Apple has released security updates for Safari to address multiple vulnerabilities. Exploitation of these vulnerabilities may allow a remote attacker to cause a denial of service or execute arbitrary code on an affected system.

Updates include:

  • Safari 8.0.1 for OS X Yosemite v10.10.1
  • Safari 7.1.1 for OS X Mavericks v10.9.5
  • Safari 6.2.1 for OS X Mountain Lion v10.8.5

US-CERT encourages users and administrators to review Apple security update HT6596 and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: Alertas

IBM Releases Security Update for MDM

Thu, 12/04/2014 - 19:42
Original release date: December 04, 2014

IBM has released Tivoli Endpoint Manager Mobile Device Management (MDM) version 9.0.60100 to address a vulnerability which may allow a remote attacker to gain control of an affected system.  

Users and administrators are encouraged to review the IBM Security Bulletin and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: Alertas

Mozilla Releases Security Updates for Firefox and Thunderbird

Tue, 12/02/2014 - 23:11
Original release date: December 02, 2014

The Mozilla Foundation has released security updates to address multiple vulnerabilities in Firefox and Thunderbird. Exploitation of these vulnerabilities may allow an attacker to obtain sensitive information, cause a denial of service, or exploit a buffer overflow on an affected browser.

Updates available include:

  • Firefox 34
  • Firefox ESR 31.3
  • Thunderbird 31.3

US-CERT encourages users and administrators to review Mozilla's Security Updates and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: Alertas

Adobe Releases Security Updates for Flash Player

Tue, 11/25/2014 - 20:25
Original release date: November 25, 2014

Adobe has released security updates to address a vulnerability in Flash Player which could potentially allow a remote attacker to take control of an affected system.

Users and administrators are encouraged to review Adobe Security Bulletin APSB14-26 and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: Alertas

Docker Releases Security Advisory

Tue, 11/25/2014 - 00:48
Original release date: November 24, 2014

Docker has released a critical security advisory to address vulnerabilities in Docker versions prior to version 1.3.2, one of which could allow an attacker to escalate privileges and execute remote code on an affected system.  

US-CERT encourages users and administrators to review Docker's Security Advisory and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: Alertas

US-CERT Alerts Users to Holiday Phishing Scams and Malware Campaigns

Mon, 11/24/2014 - 12:19
Original release date: November 24, 2014

US-CERT reminds users to remain vigilant when browsing online this holiday season. E-cards from unknown senders may contain malicious links. Fake advertisements or shipping notifications may deliver infected attachments. Spoofed e-mail messages and fraudulent posts on social networking sites may request support for phony causes.

To avoid seasonal campaigns that could result in security breaches, identity theft, or financial loss, US-CERT encourages users to take the following action:

If you believe you are a victim of a Holiday Phishing scam or Malware campaign, consider the following actions:

  • File a complaint with the FBI’s Internet Crime Complaint Center (IC3).
  • Report the attack to the police, and file a report with the Federal Trade Commission.
  • Contact your financial institution immediately and close any accounts that may have been compromised. Watch for any unexplainable charges to your account.
  • Immediately change any passwords you might have revealed. If you used the same password for multiple resources, make sure to change it for each account, and do not use that password in the future.
     

This product is provided subject to this Notification and this Privacy & Use policy.


Categories: Alertas