Security

FireEye Cyber Threat Map

The FireEye Cyber threat map provides a visual overview of the source and destination countries of various internet attacks and attack attempts.  It also provides insight into the top industries which are currently experiencing these attacks and/or attempted attacks.  Click the link below to view the map in real-time.

Cyber Threat Map

US-CERT Current Activity

  1. FBI Releases Article on Defending Against Payroll Phishing Scams

    Original release date: October 16, 2018

    The Federal Bureau of Investigation (FBI) has released an article on building a digital defense against phishing scams targeting electronically deposited paychecks. In these schemes, scammers use...

  2. VMware Releases Security Updates

    Original release date: October 16, 2018

    VMware has released security updates to address a vulnerability in ESXi, Workstation, and Fusion. An attacker could exploit this vulnerability to take control of an affected system.

    NCCIC...

  3. Google Releases Security Update for Chrome

    Original release date: October 16, 2018

    Google has released Chrome version 70.0.3538.67 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system.

    NCCIC...

View All

Krebs on Security

  1. Supply Chain Security 101: An Expert’s View

    Earlier this month I spoke at a cybersecurity conference in Albany, N.Y. alongside Tony Sager, senior vice president and chief evangelist at the Center for Internet Security and a former bug hunter at the U.S. National Security Agency. We  talked at...

  2. Patch Tuesday, October 2018 Edition

    Microsoft this week released software updates to fix roughly 50 security problems with various versions of its Windows operating system and related software, including one flaw that is already being exploited and another for which exploit code is...

  3. Naming & Shaming Web Polluters: Xiongmai

    What do we do with a company that regularly pumps metric tons of virtual toxic sludge onto the Internet and yet refuses to clean up their act? If ever there were a technology giant that deserved to be named and shamed for polluting the Web, it is...

View All

Security Alerts

  1. AA18-284A: Publicly Available Tools Seen in Cyber Incidents Worldwide

    Original release date: October 11, 2018

    Summary

    This report is a collaborative research effort by the cyber security authorities of five nations: Australia, Canada, New Zealand, the United Kingdom, and the United States...

  2. TA18-276B: Advanced Persistent Threat Activity Exploiting Managed Service Providers

    Original release date: October 03, 2018

    Systems Affected

    Network Systems

    Overview

    The National Cybersecurity and Communications Integration Center (NCCIC) is aware of ongoing APT actor...

  3. TA18-276A: Using Rigorous Credential Control to Mitigate Trusted Network Exploitation

    Original release date: October 03, 2018

    Systems Affected

    Network Systems

    Overview

    This technical alert addresses the exploitation of trusted network relationships and the subsequent...

View All