| Jan 24, 2012 |
Denial-of-Service Malware Campaign US-CERT is aware of public reports of ongoing distributed denial-of-service attacks against entities in the government and private sector. According to the reports, these attacks are being attributed to the hacker group Anonymous. US-CERT encourages users and administrators to do the following to reduce the risk associated with this and other malware campaigns:
|
| Jan 24, 2012 |
Google Releases Chrome 16.0.912.77 Google has released Chrome 16.0.912.77 for Linux, Mac, Windows, and Chrome Frame to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code or cause a denial-of-service condition. US-CERT encourages users and administrators to review the Google Chrome Release blog entry and update to Chrome 16.0.912.77 |
| Jan 24, 2012 |
Symantec pcAnywhere Hotfix Symantec has released an update for pcAnywhere to address multiple vulnerabilities for the following software versions running on Windows:
US-CERT encourages users and administrators to review the Symantec pcAnywhere hot fix and apply any necessary updates to help mitigate the risk. |
| Jan 19, 2012 |
Best Practices for Recovery from the Malicious Erasure of Files Cyber criminals can damage their victim's computer systems and data by changing or deleting files, wiping hard drives, or erasing backups to hide some or all of their malicious activity and tradecraft. By wiping, or "zeroing out," the hard disk drives, which overwrites good data with zeroes or other characters, the criminals effectively erase or alter all existing data, greatly impeding restoration. This sort of criminal activity makes it difficult to determine whether criminals merely accessed the network, stole information, or altered network access and configurations files, Completing network restoration efforts and business damage assessments may be also hampered. The FBI and DHS encourage businesses and individuals to employ mitigation strategies and best practices such as.
The US-CERT web page at www.us-cert.gov hosts a wide range of tips, best practices, and threat information for business and home users. |
| Jan 18, 2012 |
Oracle Releases Critical Patch Update for January 2012 Oracle has released its Critical Patch Update for January 2012 to address 78 vulnerabilities across multiple products. This update contains the following security fixes:
US-CERT encourages users and administrators to review the January 2012 Critical Patch Update and apply any necessary updates to help mitigate the risk. Additional information regarding CVE-2012-0110 can be found in US-CERT Vulnerability Note VU#738961. |
| Jan 10, 2012 |
Adobe Releases Security Advisory for Adobe Reader and Acrobat Adobe has released a Security Advisory for Adobe Reader and Acrobat to address multiple vulnerabilities affecting the following software versions:
US-CERT encourages users and administrators to review Adobe security advisory APSB12-01 and apply any necessary updates to help mitigate the risks. |
| Jan 10, 2012 |
Phishing Campaign Using Spoofed US-CERT E-mail Addresses US-CERT has received reports of a phishing email campaign that uses spoofed US-CERT email addresses. This campaign appears to be targeting a large number of private sector organizations as well as federal, state, and local governments. US-CERT began receiving reports of this campaign on January 10, 2012. The subject of the phishing email is: "Phishing incident report call number: PH000000XXXXXXX" containing an attachment titled "US-CERT Operation Center Report XXXXXXX.zip", with the "X" possibly indicting a random value or string. The zip attachment contains an executable file with the name "US-CERT Operation CENTER Reports.eml.exe". Reports indicate that SOC@US-CERT.GOV is the primary email address being spoofed but other invalid email addresses are being used. US-CERT advises that users do not open the email or any of the attachments and promptly delete the email from their inboxes. US-CERT encourages users to do the following to reduce the risks associated with this and other phishing campaigns.
US-CERT will provide additional information as it becomes available. |
| Jan 06, 2012 |
Google Releases Chrome 16.0.912.75 Google has released Chrome 16.0.912.75 for Linux, Mac, Windows, and Chrome Frame to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code. US-CERT encourages users and administrators to review the Google Chrome Releases blog entry and update to Chrome 16.0.912.75. |
| Jan 05, 2012 |
Microsoft Releases Advance Notification for January Security Bulletin Microsoft has issued a Security Bulletin Advance Notification indicating that its January release will contain seven bulletins. These bulletins will have the severity rating of critical and important and will be for Microsoft Windows and Microsoft Developer Tools and Software. Release of these bulletins is scheduled for Tuesday, January 10, 2012. US-CERT will provide additional information as it becomes available. |
| Dec 28, 2011 |
Multiple Programming Language Implementations Vulnerable to Hash Table Collision Attacks US-CERT is aware of reports stating that multiple programming language implementations, including web platforms, are vulnerable to hash table collision attacks. This vulnerability could be used by an attacker to launch a denial-of-service attack against websites using affected products. The Ruby Security Team has updated Ruby 1.8.7. The Ruby 1.9 series is not affected by this attack. Additional information can be found in the ruby 1.8.7 patchlevel 357 release notes. Microsoft has released a security advisory for ASP.NET containing a workaround. Additional information can be found in Microsoft Security Advisory 2659883. More information regarding this vulnerability can be found in US-CERT Vulnerability Note VU#903934 and n.runs Security Advisory n.runs-SA-2011.004. US-CERT will provide additional information as it becomes available. |