us-cert Resources

ZDNet Dictionary Definition

US-CERT: (United States-Computer Emergency Readiness Team) The group charged with protecting the U.S. Internet infrastructure by coordinating defense against and response to cyberattacks. It was established in September 2003...; Full US-CERT Definition >>

ZDNet Resources

Federal budget recommends US-CERT get $242 million: The White House unveiled its fiscal 2009 budget proposal and the $3.1 trillion monstrosity throws the U.S. Computer Emergency Readiness Team $242 million to boost its malware and intrusion detection capabilities. According to the proposed budget released on Monday, "a more robust US-CERT will increase the cyber security posture...; Tags: U.S. Department Of Homeland Security, US-CERT, Data Centers, Intrusion Detection, Social Security, Network Security, Storage, Security, Hardware, Data Management, Government, Networking, Larry Dignan; Blog posts 2008-02-05
US-CERT warns of Microsoft Access Database attacks: On the same day Microsoft issued fixes for at least 11 Windows software flaws, the U.S. Computer Emergency Response Team (US-CERT) warned that hackers were using malicious Microsoft Access databases to launch attacks against unknown targets. According to a US-CERT alert, the attacks are using an unpatched...; Tags: Database, Microsoft Access, Microsoft Corp., Attack, Flaw, US-CERT, Microsoft Office, Databases, E-mail, Security, Office Suites, Software, Enterprise Software, Data Management, Online Communications, Ryan Naraine; Blog posts 2007-12-12
Oak Ridge attacks linked to China: A US-CERT memo obtained by the New York Times strongly suggests that China is behind the phishing attacks on US nuclear weapons research labs. Starting in October hackers launched "coordinated and targeted attacks" on the Oak Ridge National Laboratory, the memo said. The attacks were traced to...; Tags: Lab, Hacker, Attack, US-CERT, Phishing, Cyberthreats, Spam, Hacking, Security, Identity Theft, Viruses And Worms, Spam And Phishing, Richard Koman; Blog posts 2007-12-10
ActiveX flaws haunt QuickBooks Online: ActiveX flaws haunt QuickBooks OnlineActiveXPeople still using ActiveX for development? It's ActiveXploitWhich is why you don't use Microsoft tech. on the WebAnd why you need to run from websites that use it. ESPECIALLY sites that deal with your financial data.Look at Monster.com - huge .ASP shop and broken into....; Tags: ActiveX/COM/COM+/DCOM, Middleware, Development tools, operating system, QuickBooks Online, Intuit QuickBooks, ActiveX, US-CERT, Intuit Inc., security; Discussion threads 2007-09-05
US-CERT heads to Estonia to help, learn about cyberattack: US-CERT Computer Emergency Response Team is headed to Estonia to do a little forensics on the well-reported cyberattack that took out much of the small country's infrastructure, InfoWorld reports.Gregory Garcia, assistant secretary for cyber security and telecommunications with DHS, said: "We are sending someone from our organization ... to help...; Tags: International, Homeland security; Blog posts 2007-07-03

Why CERT should be decertified (1): Last week the CERT Institute developed at Carnegie Mellon University and now part of the "the operational arm of the National Cyber Security Division NCSD at the Department of Homeland Security," issued an annual systems security review and summary that drew They're misleading the public. That's irresponsible at best, dishonest...; Tags: CERT, US-CERT, Unix; Blog posts 2006-01-10
What operating system has the most vulnerabilies?: From US-CERT:Cyber Security Bulletin 2005 Summary2005 Year-End Index Information in the US-CERT Cyber Security Bulletin is a compilation and includes information published by outside sources, so the information should not be considered the result of US-CERT analysis. Software vulnerabilities are categorized in the appropriate section reflecting the operating system on...; Tags: Operating systems, SECURITY, vulnerability, operating system, US-CERT; Blog posts 2005-12-30
US-Cert report on spyware: US-Cert has published a report on spyware, http://www.us-cert.gov/reading_room/spyware.pdf, a 15-page document that includes an overview, definition and examples of different types of threats. Starting on page 10 defensive measures are outlined, emphasizing education and awareness. It notes that social engineering is a major means of distributing spyware by tricking users...; Tags: spyware; Blog posts 2005-08-22
National cybersecurity test set for fall: National cybersecurity test set for fallSkynetIt's becoming a reality folks, the terminator runs California and now the govenrment will start testing Skynet. Lock down yor firewalls, it's gonna be a bumpy ride. Of course, does that mean that California would be spared?Planning vs DoingI keep hearing all this talk about...; Tags: Government, Channel management, SECURITY, Andy Purdy, Cyber Storm, Skynet, US-CERT, Web; Discussion threads 2005-07-22

Additional Resources

How OpenDNS, PowerDNS and MaraDNS remained unaffected by the DNS cache poisoning vulnerability: The short answer is being paranoid about tackling a known vulnerability. It's 2001, and Daniel J. Bernstein DJB, author of the then popular djbdns security-aware DNS implementation, is applying basic math principles to raise awareness on what's to turn into the "sky is falling" critical Internet vulnerability in 2008, in...; Tags: DNS, Vulnerability, Anomaly, Attack, OpenDNS, MaraDNS, NSS, Domain Names, Networking, Internet, Dancho Danchev; Blog posts 2008-07-25
Kaminsky suggests long-term fix will still have to be determined, but patch now, or pay soon: I listened to the Black Hat webcast today to grab as much info as I could on this subject. The biggest thing that I heard from the whole talk is that the patch fixes things to a reasonable point, but that long-term, there will have to be more work...; Tags: CERT, DNS Server, Server, Kaminsky, Dan, Patches, Domain Names, Security, Internet, Nathan McFeters; Blog posts 2008-07-24
|)ruid and HD Moore release part 2 of DNS exploit: |)ruid and HD Moore release part 2 of DNS exploitSo, Linux's BIND the first to be exploited...So, Linux's BIND the first to be exploited...Nice work!CoolNate, nice post and analysis!Wasn't the replacing the ns.victim.com cache entry part of the Halvar Flake speculation? I thought first part of the exploit was to...; Tags: Domain names, NETWORKING, Operating systems, Alecco, DNS, ruid, exploit, HD Moore, Linux; Discussion threads 2008-07-24
75ò0of online banking sites found vulnerable to security design flaws: 75ò0of online banking sites found vulnerable to security design flawsJust 75%?I would think it is much more likely to be 100% is vulnerable to SOME issue, 90% is vulnerable to a High-risk issue.-NateRE: 75ï¿½0of online banking sites found vulnerable to security design flawsThey fail to say which banks are at...; Tags: Banking, E-business/E-commerce, online banking site, online banking, security, flaw, bank; Discussion threads 2008-07-23
Dan Kaminsky breaks DNS, massive multi-vendor patch coming, details at Black Hat Vegas '08: It would seem there's a bigger story to that MS08-037 flaw that came out for Patch Tuesday today. From Dave Lewis over at the Liquid Matrix security blog: Today Dan Kaminsky released a first, as far as I can recall. A coordinated patch was released today...; Tags: Black Hat, DNS, CERT, Flaw, Mogull, Updates, Domain Names, Networking, Security, Internet, Nathan McFeters; Blog posts 2008-07-08
Microsoft warns of "active, targeted" ActiveX control attacks: Microsoft has issued a pre-patch security advisory to warn about "active, targeted attacks" against an ActiveX control for theÂ Snapshot Viewer for Microsoft Access. The skinny: An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page,...; Tags: Vulnerability, ActiveX Control, Microsoft Corp., Attack, ActiveX/COM/COM+/DCOM, Microsoft Office, Security, Software Development, Software/Web Development, Office Suites, Software, Ryan Naraine; Blog posts 2008-07-07
Apple plugs 25 Mac OS X security vulnerabilities: Apple has shipped another Mac OS X monster update to fix a total of 25 documented vulnerabilities that could lead to arbitrary code execution attacks. With Security Update 2008-004, Apple fixes code execution flaws in Launch Services, SMB File Server, System Configuration, VPN and WebKit. ...; Tags: Security, Apple Macintosh, Apple Inc., Arbitrary Code Execution, Small And Medium Business, Apache Tomcat, Application Termination, Apple Mac OS X, Apple Mac OS, Smb/Sme, Operating Systems, Software, Ryan Naraine; Blog posts 2008-06-30
Exploit code released for unpatched IE 7 vulnerability: Another day, another gaping hole affecting fully patched versions of Microsoft's Internet Explorer browser. According to a warning from US-CERT, proof-of-concept exploit code has been published for a new zero-day bug that can be used for a variety of malicious attacks against Windows users running IE 6,...; Tags: Attacker, Vulnerability, Frame, Microsoft Internet Explorer 7, Domain, Exploit Code, Microsoft Internet Explorer, Web Page, Web Browsers, Internet, Ryan Naraine; Blog posts 2008-06-30
Zero-day flaw haunts Internet Explorer: An unpatched cross-domain vulnerability in Microsoft's flagship Internet Explorer browser could expose Windows users to cookie hijacks and credentials theft attacks, according to a warning from security researchers. The zero-day flaw, which has been reported to Microsoft, is a variation of Eduardo Vela's IE Ghost Busters talk:...; Tags: Microsoft Internet Explorer, Zero-day Bug, Web Browsers, Internet, Ryan Naraine; Blog posts 2008-06-26
About-face: Apple patches Safari 'carpet bombing' bug: In what amounts to a major about-face, Apple has patched the Safari "carpet bombing" vulnerability that led to a Safari-to-Internet Explorer remote code execution combo threat. After insisting for weeks that the issue is more of an irritant than a security risk, Apple today released Safari v3.1.2...; Tags: Apple Safari, Apple Inc., Microsoft Windows, Web Browsers, Web Site Development, Operating Systems, Security, Software, Internet, Ryan Naraine; Blog posts 2008-06-19
ActiveX control bug bites Creative Labs AutoUpdate engine: A high-severity security flaw in the Creative Software automatic update engine could put Windows computers at risk of remote code execution attacks, according to a warning from the US-CERT Computer Emergency Readiness Team. The vulnerability affects the software used to provide updates to Creative Labs' audio/video entertainment product line,...; Tags: Webcam, Zen, Automatic Update, Blaster Worm, ActiveX Control, Creative Labs Inc., ActiveX Control Bug, Create Software AutoUpdate Engine ActiveX Control, ActiveX/COM/COM+/DCOM, Patches, Viruses And Worms, Security, Software Development, Software/Web Development, Ryan Naraine; Blog posts 2008-05-30