Home » Posts » Archive by category "Alerts"

HTTPS Interception Weakens TLS Security

Original article: https://www.us-cert.gov/ncas/alerts/TA17-075A Alert (TA17-075A) HTTPS Interception Weakens TLS Security Original release date: March 16, 2017 Systems Affected All systems behind a hypertext transfer protocol secure (HTTPS) interception product are potentially affected. Overview Many organizations use HTTPS interception products for several purposes, including detecting malware...

Read More »

RANSOMWARE VICTIMS URGED TO REPORT INFECTIONS TO FEDERAL LAW ENFORCEMENT

Original article: http://www.ic3.gov/media/2016/160915.aspx Alert Number I-091516-PSA RANSOMWARE VICTIMS URGED TO REPORT INFECTIONS TO FEDERAL LAW ENFORCEMENT Original release date: September 15, 2016 The FBI urges victims to report ransomware incidents to federal law enforcement to help us gain a more comprehensive view of the current...

Read More »

Symantec and Norton Security Products Contain Critical Vulnerabilities

Original article: https://www.us-cert.gov/ncas/alerts/TA16-187A Alert (TA16-187A) Symantec and Norton Security Products Contain Critical Vulnerabilities Original release date: July 5, 2016 Systems Affected All Symantec and Norton branded antivirus products Overview Symantec and Norton branded antivirus products contain multiple vulnerabilities. Some of these products are in widespread...

Read More »

BUSINESS E-MAIL COMPROMISE: THE 3.1 BILLION DOLLAR SCAM

Original article: http://www.ic3.gov/media/2016/160614.aspx Alert Number I-061416-PSA BUSINESS E-MAIL COMPROMISE: THE 3.1 BILLION DOLLAR SCAM Original release date: June 14, 2016 This Public Service Announcement (PSA) is an update to the Business E-mail Compromise (BEC) information provided in Public Service Announcements (PSA) 1-012215-PSA and 1-082715a-PSA. This...

Read More »

TECH SUPPORT SCAM

Original article: http://www.ic3.gov/media/2016/160602.aspx Alert Number I-060216-PSA TECH SUPPORT SCAM Original release date: June 02, 2016 The Internet Crime Complaint Center (IC3) is receiving an increase in complaints related to technical support scams, where the subject claims to be an employee (or an affiliate) of a...

Read More »

EXTORTION E-MAIL SCHEMES TIED TO RECENT HIGH-PROFILE DATA BREACHES

Original article: http://www.ic3.gov/media/2016/160601.aspx Alert Number I-060116-PSA EXTORTION E-MAIL SCHEMES TIED TO RECENT HIGH-PROFILE DATA BREACHES Original release date: June 01, 2016 The Internet Crime Complaint Center (IC3) continues to receive reports from individuals who have received extortion attempts via e-mail related to recent high-profile data...

Read More »

STOLEN IDENTITY REFUND FRAUD

Original article: http://www.ic3.gov/media/2016/160323.aspx Alert Number I-032316-PSA STOLEN IDENTITY REFUND FRAUD Original release date: March 23, 2016 Each year, criminal actors target US persons and visa holders for Stolen Identity Refund Fraud (SIRF). SIRF is defined as the fraudulent acquisition and use of the Personally Identifiable...

Read More »

WPAD Name Collision Vulnerability

Original article: https://www.us-cert.gov/ncas/alerts/TA16-144A Alert (TA16-144A) WPAD Name Collision Vulnerability Original release date: May 23, 2016 | Last revised: June 01, 2016 Systems Affected Windows, OS X, Linux systems, and web browsers with WPAD enabled Networks using unregistered or unreserved TLDs Overview Web Proxy Auto-Discovery (WPAD)...

Read More »

Ransomware and Recent Variants

Original article: https://www.us-cert.gov/ncas/alerts/TA16-091A Alert (TA16-091A) Ransomware and Recent Variants Original release date: March 31, 2016 | Last revised: July 11, 2016 Systems Affected Networked Systems Overview In early 2016, destructive ransomware variants such as Locky and Samas were observed infecting computers belonging to individuals and...

Read More »