Official website of the Department of Homeland Security
US-CERT strives for a safer, stronger Internet for all Americans by responding to major incidents, analyzing threats, and exchanging critical cybersecurity information with trusted partners around the world.
Security alerts, tips, and other updates
Contact Us
(888) 282-0870
Send us email
Download PGP/GPG keysIncidents, Indicators, Phishing, Malware, or Vulnerabilities
Oracle Releases Security Bulletin
Oracle has released its Critical Patch Update for January 2017 to address 270 vulnerabilities across multiple products. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system.
Users and administrators are encouraged to review the Oracle January 2017 Critical Patch Update and apply the necessary updates.
SMB Security Best Practices
In response to public reporting of a potential Server Message Block (SMB) vulnerability, US-CERT is providing known best practices related to SMB. This service is universally available for Windows systems, and legacy versions of SMB protocols could allow a remote attacker to obtain sensitive information from affected systems.
US-CERT recommends that users and administrators consider:
ISC Releases Security Updates for BIND
The Internet Systems Consortium (ISC) has released updates that address multiple vulnerabilities in BIND. A remote attacker could exploit any of these vulnerabilities to cause a denial-of-service condition.
Available updates include:
Alerts
Timely information about current security issues, vulnerabilities, and exploits.
Bulletins
Weekly summaries of new vulnerabilities along with patch information when available.
Tips
Advice and best practices about common security issues for the general public.
Technical Documents
In-depth articles that provide advice and summarize a variety of internet security topics.