MS-ISAC Cyber Alert Level
The Current Cyber Alert Level is: Guarded
On March 15, 2010, the Cyber Alert Level is remaining at Blue (Guarded) due to vulnerabilities found in Apache HTTP server, Windows Movie Maker, Microsoft Excel and Microsoft Internet Explorer. One Informational Bulletin, three Advisories, and one Update to a previous Advisory were issued last week. Organizations and users are advised to update and apply all appropriate vendor security patches as soon as they become available and to continue to update their antivirus signatures daily. Another line of defense includes user awareness training regarding the threats posed by attachments and hypertext links contained in emails especially from un-trusted sources.
FS-ISAC Cyber Alert Levels
The Current Cyber Threat Advisory is: Elevated
The Current Physical Threat Advisory is: Elevated
IT-ISAC Cyber Alert Level
The Current Threat Level is: AlertCon 1
AlertCon 1 reflects the malicious, determined, global, 24 x 7 attacks experienced by all networks
DHS Threat Alert Level
The Current Threat Level is: Elevated
SANS Institute Info Con
Most Recent MSISAC Advisories
- Vulnerability in Internet Explorer Could Allow Remote Code Execution
- Vulnerability in Windows Movie Maker and Microsoft Producer Could Allow Remote Code Execution (MS10-016)
- Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (MS10-017)
- Vulnerability in Internet Explorer Could Allow Remote Code Execution
- Multiple Security Vulnerabilities found in Apache HTTP Server Could Allow Remote Code Execution
TOP ATTACKING IP ADDRESSES (WORLDWIDE)
| IP Address | Reports | Attacks | FirstSeen | LastSeen | ISP(Domain) | Country |
|---|---|---|---|---|---|---|
| 218.244.231.132 |
156,499 | 92,897 | 2009-09-28 | 2010-03-16 | Beijing Yu-tong-chuang-xin Co.ltd (-) | China |
| 060.173.011.114 |
1,134,493 | 90,051 | 2010-02-03 | 2010-03-04 | Chinanet Anhui Province Network (Cndata.com) | China |
| 218.008.251.187 |
112,283 | 88,955 | 2009-10-02 | 2010-03-12 | Cncgroup Heilongjiang Province Network (-) | China |
| 117.020.016.092 |
90,520 | 87,907 | 2009-11-12 | 2010-02-26 | Transworld Associates (pvt.) Ltd (Tw1.com) | Pakistan |
| 072.055.133.091 |
89,762 | 86,945 | 2010-02-17 | 2010-03-05 | Iweb Dedicated Cl (Privatedns.com) | Canada |
| 116.228.179.019 |
191,113 | 86,864 | 2009-10-25 | 2010-03-15 | Chinanet Shanghai Province Network (163data.com.cn) | China |
| 072.055.133.247 |
88,412 | 86,652 | 2009-12-12 | 2010-02-19 | Iweb Dedicated Cl (Privatedns.com) | Canada |
| 202.117.054.134 |
172,329 | 86,183 | 2010-02-09 | 2010-03-14 | Xian Jiaotong University (Xjtu.edu.cn) | China |
| 069.176.047.029 |
86,063 | 84,535 | 2010-02-04 | 2010-02-17 | Mikrotec Internet Services Inc (Foothills.net) | United States |
| 218.056.061.114 |
94,911 | 83,864 | 2010-01-18 | 2010-03-15 | Shandong Province Taihuadianxun Company (-) | China |
TOP 10 PORTS UNDER ATTACK (WORLDWIDE)
| Port | Trend |
|---|---|
| 16000 |
11.227284623585 |
| 33381 |
9.1377217043541 |
| 63541 |
8.6008536420821 |
| 64824 |
7.2274899620218 |
| 3246 |
6.6678739347811 |
| 8086 |
5.3824734537597 |
| 63234 |
5.1992508521904 |
| 60000 |
4.9049142413411 |
| 65001 |
4.5729704933724 |
| 8085 |
4.1302048971924 |
News Feeds
- Microsoft Security Bulletins
- Department of Homeland Security News
- Online Fraud
- Symantec Connect - Security - Discussions
- Security Response Weblog
- Latest Security Advisories
- Symantec Connect - Mobile Security - Discussions
- Sophos latest virus and spyware detection
- Sophos security news
- Critical Infrastructure Protection Infogram Headlines
-