MS-ISAC Cyber Alert Level
The Current Cyber Alert Level is: Guarded
On August 23, 2010, the Cyber Alert Level is remaining at Blue (Guarded) due to the recent vulnerability reported by Apple and updates released by Adobe. We issued an advisory on August 17, 2010 for a vulnerability in Apple's QuickTime Player. We also issued updates to previously released advisories on August 20, 2010 regarding multiple Adobe products. Organizations and users are advised to review the details outlined in these advisories and apply the appropriate vendor security patches and/or updates to vulnerable systems and to continue to update antivirus signatures daily. Another line of defense includes user awareness training regarding the threats posed by attachments and hypertext links contained in emails especially from un-trusted sources.
FS-ISAC Cyber Alert Levels
IT-ISAC Cyber Alert Level
The Current Threat Level is: AlertCon 1
AlertCon 1 reflects the malicious, determined, global, 24 x 7 attacks experienced by all networks
DHS Threat Alert Level
SANS Institute Info Con
Most Recent MSISAC Advisories
- Vulnerability in Apple QuickTime Player Could Allow for Remote Code Execution
- Vulnerability in Adobe Reader and Adobe Acrobat Could Allow For Remote Code Execution
- Multiple Vulnerabilities in Adobe Shockwave Player Could Allow Remote Code Execution
- Multiple Adobe Products are Prone to a Remote Code Execution Vulnerability
- Multiple Vulnerabilities Discovered in Adobe Products
TOP ATTACKING IP ADDRESSES (WORLDWIDE)
| IP Address | Reports | Attacks | FirstSeen | LastSeen | ISP(Domain) | Country |
|---|---|---|---|---|---|---|
| 217.076.044.243 |
108,502 | 102,838 | 2010-05-08 | 2010-07-05 | Ratel (Unreachable) | Russian Federation |
| 119.188.007.186 |
154,998 | 88,521 | 2010-05-28 | 2010-06-09 | China Unicom Shandong Province Network (Dyptt.sd.cn) | China |
| 077.095.186.182 |
175,275 | 88,035 | 2010-05-28 | 2010-07-06 | Fibernet Communication (-) | Armenia |
| 213.080.073.045 |
130,850 | 87,741 | 2010-03-07 | 2010-06-25 | First New Media Scandinavia Ab (Firstnewmedia.se) | Sweden |
| 218.030.022.082 |
460,902 | 86,231 | 2009-08-14 | 2010-06-21 | Chinanet Idc Center (Hichina.com) | China |
| 125.141.224.071 |
172,552 | 82,469 | 2010-04-26 | 2010-07-07 | Korea Telecom (Kornet.net) | Korea |
| 125.068.056.184 |
81,716 | 81,711 | 2010-06-21 | 2010-06-22 | Chinanet Sichuan Province Network (163data.com.cn) | China |
| 061.164.148.011 |
435,661 | 81,386 | 2010-06-15 | 2010-07-07 | Wenzhou Telecom Co. Ltd (-) | China |
| 061.164.143.020 |
405,901 | 78,169 | 2010-05-10 | 2010-07-06 | Va Office Branch Of China Telecom Corp (-) | China |
| 061.128.110.096 |
796,906 | 77,829 | 2010-05-13 | 2010-07-07 | Cninfonet Xingjiang Province Network (-) | China |
TOP 10 PORTS UNDER ATTACK (WORLDWIDE)
| Port | Trend |
|---|---|
| 719 |
2062449060.5172 |
| 724 |
2043232936.0627 |
| 915 |
2041465244.5696 |
| 766 |
2037917605.922 |
| 653 |
1987855706.4452 |
| 963 |
1976262532.7436 |
| 921 |
1971959708.3356 |
| 604 |
1971327166.702 |
| 814 |
1965380667.3833 |
| 867 |
1957484261.8104 |
News Feeds
- Microsoft Security Bulletins
- Department of Homeland Security News
- Online Fraud
- Symantec Connect - Security - Discussions
- Security Response Weblog
- Latest Security Advisories
- Symantec Connect - Mobile Security - Discussions
- Sophos latest virus and spyware detection
- Sophos security news
- Critical Infrastructure Protection Infogram Headlines




