MS-ISAC Cyber Alert Level
The Current Cyber Alert Level is: Guarded
On June 30, 2009, the Cyber Alert Level is remaining at Blue (Guarded) due to a vulnerability discovered in Adobe Shockwave Player. We issued an advisory for this vulnerability on June 25, 2009 and recommended that all versions of Shockwave Player up to version 11.5.0.596 be removed, and that Shockwave Player 11.5.0.600 be installed. Organizations and users are encouraged to update and apply all appropriate vendor security patches to vulnerable systems and to continue to update their antivirus signatures daily. Another line of defense includes user awareness training regarding the threats posed by attachments and hypertext links contained in emails especially from un-trusted sources.
FS-ISAC Cyber Alert Levels
The Current Cyber Threat Advisory is: Guarded
The Current Physical Threat Advisory is: Elevated
IT-ISAC Cyber Alert Level
The Current Threat Level is: AlertCon 1
AlertCon 1 reflects the malicious, determined, global, 24 x 7 attacks experienced by all networks
DHS Threat Alert Level
The Current Threat Level is: Elevated
SANS Institute Info Con
Most Recent MSISAC Advisories
- Vulnerability in Adobe Shockwave Player Could Allow Remote Code Execution
- Multiple Vulnerabilities in Mozilla Firefox, SeaMonkey, and Thunderbird could allow for Remote Code Execution
- Vulnerabilities in Microsoft Office Word Could Allow Remote Code Execution (MS09-027)
- Vulnerability in Microsoft Excel
- Multiple Authentication Bypass Vulnerabilities in Microsoft IIS Web Servers Could Allow for Privilege Escalation
TOP ATTACKING IP ADDRESSES (WORLDWIDE)
| IP Address | Reports | Attacks | FirstSeen | LastSeen | ISP(Domain) | Country |
|---|---|---|---|---|---|---|
| 010.050.050.050 |
4,581,845 | 420,436 | 2009-04-16 | 2009-07-01 | Private Ip Address Lan (-) | - |
| 222.082.249.235 |
673,786 | 146,051 | 2009-02-26 | 2009-07-04 | Wlmq-nongjituiguang (-) | China |
| 061.139.077.082 |
676,308 | 145,246 | 2009-05-20 | 2009-06-05 | Sichuan Public Information Industry Co.ltd Idc (-) | China |
| 061.184.255.175 |
493,218 | 144,247 | 2009-06-03 | 2009-06-24 | Chinanet Hubei Province Network (163data.com.cn) | China |
| 219.159.228.211 |
566,568 | 140,998 | 2009-04-30 | 2009-05-27 | Chinanet Guangxi Province Network (163data.com.cn) | China |
| 202.099.011.099 |
1,811,866 | 140,575 | 2007-11-01 | 2009-07-03 | Cncgroup Beijing Province Network (Bta.net.cn) | China |
| 059.080.095.035 |
830,283 | 140,095 | 2009-06-07 | 2009-06-28 | Beelink Information Science & (-) | China |
| 061.139.054.094 |
999,681 | 140,008 | 2008-09-02 | 2009-07-03 | Chinanet Sichuan Province Network (163data.com.cn) | China |
| 211.099.122.018 |
1,324,570 | 139,436 | 2009-02-22 | 2009-07-04 | Jinan Dadu Hotel (-) | China |
| 060.161.078.144 |
1,212,382 | 138,741 | 2009-04-12 | 2009-07-03 | Chinanet Yunnan Province Network (163data.com.cn) | China |
TOP 10 PORTS UNDER ATTACK (WORLDWIDE)
| Port | Trend |
|---|---|
| 5575 |
5.8054771270762 |
| 11022 |
3.9207019701917 |
| 7212 |
3.8522325647012 |
| 8009 |
3.8488740428931 |
| 11033 |
3.2318027911939 |
| 5357 |
2.5778851966822 |
| 2425 |
2.5241691585037 |
| 6646 |
2.1731622909019 |
| 49157 |
2.141033029566 |
| 49154 |
2.1139875417821 |
News Feeds
- Microsoft Security Bulletins
- Department of Homeland Security News
- Online Fraud
- Security Risks
- Security Response Weblog
- Latest Security Advisories
- Mobile & Wireless
- Sophos latest virus and spyware detection
- Sophos latest virus and spyware detection
- Sophos security news
- U.S. Fire Administration Critical Infrastructure Protection Infograms
-