Navigation section

mitigation

  1. News

    Enhanced Mitigation Experience Toolkit (EMET) 5.5 User Guide

    User Guide for EMET 5.5 Link Removed
    • News
    • Thread
    • 5.5 cybersecurity emet experience mitigation software toolkit user guide windows security windows tools
    • Replies: 0
    • Forum: Live RSS Feeds
  2. News

    Enhanced Mitigation Experience Toolkit (EMET) 5.5 converter

    Script to convert setting to EMET 5.5 values Link Removed
    • News
    • Thread
    • application compatibility configuration converter emet enhancements mitigation performance script scripting security settings software toolkit tools update version 5.5 windows 10 windows 7 windows 8
    • Replies: 0
    • Forum: Live RSS Feeds
  3. News

    Enhanced Mitigation Experience Toolkit (EMET) 5.5

    A toolkit for deploying and configuring security mitigation technologies Link Removed
    • News
    • Thread
    • 5.5 configuration deployment emet mitigation security sysadmin technologies toolkit windows
    • Replies: 0
    • Forum: Live RSS Feeds
  4. News

    TA15-314A: Web Shells – Threat Awareness and Guidance

    Original release date: November 10, 2015 Systems Affected Web servers that allow web shells Overview This alert describes the frequent use of web shells as an exploitation vector. Web shells can be used to obtain unauthorized access and can lead to wider network compromise. This alert...
    • News
    • Thread
    • application security asp command control cyber security data exfiltration detection exploitation incident response malware mitigation network compromise perl php python remote access security practices threat updates vulnerabilities web shells
    • Replies: 0
    • Forum: Security Alerts
  5. News

    Enhanced Mitigation Experience Toolkit 5.5 Beta

    A toolkit for deploying and configuring security mitigation technologies Link Removed
    • News
    • Thread
    • beta configuration deployment experience mitigation security technologies toolkit
    • Replies: 0
    • Forum: Live RSS Feeds
  6. News

    Mitigating Credential Theft using the Windows 10 Isolated User Mode

    In this video Seth Moore describes another benefit of the Windows 10 Isolated User Mode: credential theft mitigation. He first describes the kinds of credentials that can be stolen and how a hacker gains access to them. He then describes how the Windows 10 Isolated User Mode prevents the typical...
    • News
    • Thread
    • access control compromise computing environment credential theft cybersecurity hacking innovation isolated user mode mitigation protection security seth moore system security tech insights user mode video vigilance windows 10 windows kernel
    • Replies: 0
    • Forum: Live RSS Feeds
  7. News

    TA15-213A: Recent Email Phishing Campaigns – Mitigation and Response Recommendations

    Original release date: August 01, 2015 Systems Affected Microsoft Windows Systems, Adobe Flash Player, and Linux Overview Between June and July 2015, the United States Computer Emergency Readiness Team (US-CERT) received reports of multiple, ongoing and likely evolving, email-based phishing...
    • News
    • Thread
    • adobe flash cve-2015-5119 cyber hygiene cybersecurity emails forensics incident reporting linux malware mitigation multi-factor authentication network segmentation phishing response security tips threat indicators us-cert user education vulnerabilities windows
    • Replies: 0
    • Forum: Security Alerts
  8. News

    TA15-119A: Top 30 Targeted High Risk Vulnerabilities

    Original release date: April 29, 2015 Systems Affected Systems running unpatched software from Adobe, Microsoft, Oracle, or OpenSSL. Overview Cyber threat actors continue to exploit unpatched software to conduct attacks against critical infrastructure organizations. As many as 85 percent of...
    • News
    • Thread
    • administrative privileges adobe attack vectors cybersecurity impact incident response malware microsoft mitigation network security openssl oracle patching prevention restoration sensitive information software threats vulnerabilities whitelisting
    • Replies: 0
    • Forum: Security Alerts
  9. News

    Static/Dynamic IP Restrictions -- DDOS Protection | Azure App Service

    In this video, Nazim Lala demonstrates how to configure IP restriction for Azure Web Apps to help secure your web app and to help mitigate Denial of Service attacks against your application. This video will show what Static and Dynamic IP restrictions are and how simple it is to configure them...
    • News
    • Thread
    • azure configuration custom security ddos denial of service ip restrictions mitigation security tutorial web apps
    • Replies: 0
    • Forum: Live RSS Feeds
  10. News

    Ta15-098A: Aaeh

    Original release date: April 09, 2015 Systems Affected Microsoft Windows 95, 98, Me, 2000, XP, Vista, 7, and 8 Microsoft Server 2003, Server 2008, Server 2008 R2, and Server 2012 Overview AAEH is a family of polymorphic downloaders created with the primary purpose of downloading other...
    • News
    • Thread
    • aaeh anti-virus beebone credential theft cybersecurity dhs downloaders fbi impact malware mitigation network security passwords polymorphic prevention ransomware rar archive removal tools systems affected zip archive
    • Replies: 0
    • Forum: Security Alerts
  11. News

    TA14-353A: Targeted Destructive Malware

    Original release date: December 19, 2014 Systems Affected Microsoft Windows Overview US-CERT was recently notified by a trusted third party of cyber threat actors using a Server Message Block (SMB) Worm Tool to conduct cyber exploitation activities recently targeting a major entertainment...
    • News
    • Thread
    • anti-virus backdoor c2 infrastructure compromise cybersecurity data loss destruction exploit hard drive indicators malware mitigation network propagation proxy tool security smb system security threat worm
    • Replies: 0
    • Forum: Security Alerts
  12. News

    TA14-318B: Microsoft Windows OLE Automation Array Remote Code Execution Vulnerability

    Original release date: November 14, 2014 Systems Affected Microsoft Windows Vista, 7, 8, 8.1, RT, and RT 8.1 Microsoft Server 2003, Server 2008, Server 2008 R2, Server 2012, and Server 2012 R2 Overview A vulnerability in Microsoft Windows Object Linking and Embedding (OLE) could allow...
    • News
    • Thread
    • administrator arbitrary code cve-2014-6332 execution exploit impact internet explorer memory mitigation ole privileged access remote code safearrayredim security server 2003 server 2008 update vbscript vulnerability windows
    • Replies: 0
    • Forum: Security Alerts
  13. News

    TA14-317A: Apple iOS "Masque Attack" Technique

    Original release date: November 13, 2014 Systems Affected iOS devices running iOS 7.1.1, 7.1.2, 8.0, 8.1, and 8.1.1 beta. Overview A technique labeled “Masque Attack” allows an attacker to substitute malware for a legitimate iOS app under a limited set of circumstances. Description...
    • News
    • Thread
    • app store apple attacker technique background monitoring credential theft cybersecurity fireeye installation ios malware masque attack mitigation mobile security phishing root privileges security software update untrusted app user data vulnerability
    • Replies: 0
    • Forum: Security Alerts
  14. News

    TA14-295A: Crypto Ransomware

    Original release date: October 22, 2014 Systems Affected Microsoft Windows Overview Ransomware is a type of malicious software (malware) that infects a computer and restricts access to it until a ransom is paid to unlock it. This Alert is the result of Canadian Cyber Incident Response...
    • News
    • Thread
    • backup botnet crypto cybersecurity data recovery encryption financial loss internet crime malware mitigation network security operating system phishing prevention ransomware software update threat analysis trojan user awareness viruses
    • Replies: 0
    • Forum: Security Alerts
  15. News

    TA14-212A: Backoff Point-of-Sale Malware

    Original release date: July 31, 2014 Systems Affected Point-of-Sale Systems Overview This advisory was prepared in collaboration with the National Cybersecurity and Communications Integration Center (NCCIC), United States Secret Service (USSS), Financial Sector Information Sharing and...
    • News
    • Thread
    • antivirus backoff brute force command control consumer protection cybersecurity data breach exfiltration exploit forensics indicators it security keylogging malware mitigation network security payment data point-of-sale remote desktop risk management
    • Replies: 0
    • Forum: Security Alerts
  16. News

    TA14-017A: UDP-based Amplification Attacks

    Original release date: January 17, 2014 | Last revised: March 07, 2014 Systems Affected Certain UDP protocols have been identified as potential attack vectors: DNS NTP SNMPv2 NetBIOS SSDP CharGEN QOTD BitTorrent Kad Quake Network Protocol Steam Protocol Overview A Distributed Reflective...
    • News
    • Thread
    • amplification attacks bandwidth ddos detection dns drdos filtering impact mitigation network ntp protocol security services solutions spoofing traffic trusted udp
    • Replies: 0
    • Forum: Security Alerts
  17. News

    TA14-212A: Backoff Point-of-Sale Malware

    Original release date: July 31, 2014 Systems Affected Point-of-Sale Systems Overview This advisory was prepared in collaboration with the National Cybersecurity and Communications Integration Center (NCCIC), United States Secret Service (USSS), Financial Sector Information Sharing and...
    • News
    • Thread
    • anti-virus backoff brute force command and control consumer data cybersecurity data breach exfiltration financial sector indicators of compromise keylogging malware mitigation network security payment systems persistence techniques point-of-sale remote desktop security solutions threat detection
    • Replies: 0
    • Forum: Security Alerts
  18. News

    Security Advisory 2982792 released, Certificate Trust List updated

    Today, we are updating the Certificate Trust List (CTL) for all supported releases of Microsoft Windows to remove the trust of mis-issued third-party digital certificates. These certificates could be used to spoof content and perform phishing or man-in-the-middle attacks against web properties...
    • News
    • Thread
    • advisory attacks certificate digital certificates mitigation phishing security ssl certificates trust update windows server
    • Replies: 0
    • Forum: Security Alerts
  19. News

    TA14-098A: OpenSSL 'Heartbleed' vulnerability (CVE-2014-0160)

    Original release date: April 08, 2014 Systems Affected OpenSSL 1.0.1 through 1.0.1f OpenSSL 1.0.2-beta Overview A vulnerability in OpenSSL could allow a remote attacker to expose sensitive data, possibly including user authentication credentials and secret keys, through incorrect memory...
    • News
    • Thread
    • credentials cve-2014-0160 data exposure exploit heartbleed impact key material memory mitigation openssl patch perfect forward secrecy public access public disclosure revision history security security flaw system administrators tls vulnerability
    • Replies: 0
    • Forum: Security Alerts
  20. News

    The March 2014 Security Updates

    This month we release five bulletins to address 23 unique CVEs in Microsoft Windows, Internet Explorer and Silverlight. If you need to prioritize, the update for Internet Explorer addresses the issue first described in Security Advisory 2934088, so it should be at the top of your list. While...
    • News
    • Thread
    • adobe flash aslr bulletins critical updates customer security cve deployment exploit internet explorer malware mitigation ms14-012 ms14-014 remote code execution response communications security silverlight updates vulnerabilities webcast
    • Replies: 0
    • Forum: Security Alerts
Back
Top