Official website of the Department of Homeland Security
US-CERT strives for a safer, stronger Internet for all Americans by responding to major incidents, analyzing threats, and exchanging critical cybersecurity information with trusted partners around the world.
Security alerts, tips, and other updates
Contact Us
(888) 282-0870
Send us email
Download PGP/GPG keysIncidents, Indicators, Phishing, Malware, or Vulnerabilities
SMB Security Best Practices
In response to public reporting of a potential Server Message Block (SMB) vulnerability, US-CERT is providing known best practices related to SMB. This service is universally available for Windows systems, and legacy versions of SMB protocols could allow a remote attacker to obtain sensitive information from affected systems.
US-CERT recommends that users and administrators consider:
ISC Releases Security Updates for BIND
The Internet Systems Consortium (ISC) has released updates that address multiple vulnerabilities in BIND. A remote attacker could exploit any of these vulnerabilities to cause a denial-of-service condition.
Available updates include:
Adobe Releases Security Updates
Adobe has released security updates to address vulnerabilities in Adobe Acrobat, Reader, and Flash Player. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system.
US-CERT encourages users and administrators to review Adobe Security Bulletins APSB17-01 and APSB17-02 and apply the necessary updates.
Alerts
Timely information about current security issues, vulnerabilities, and exploits.
Bulletins
Weekly summaries of new vulnerabilities along with patch information when available.
Tips
Advice and best practices about common security issues for the general public.
Technical Documents
In-depth articles that provide advice and summarize a variety of internet security topics.