Today's Cyber Alert Level Indicator: Elevated [Yellow]

RSS Feed
Web Feed
 

On April 17, 2014, the Threat Based Cyber Alert Level was evaluated and lowered to Yellow (Elevated) from Orange (High). This change is due to the OpenSSL "Heartbleed" vulnerability being patched on most of the critical systems across the county. Although there are credible reports that the vulnerability is currently being exploited, the threat from this activity is now lower because of the mitigation steps that have been taken.

The vulnerability, for which CIS issued an advisory on 4/8/14, could allow an attacker to read sensitive data in memory on server and client machines. CIS also issued recent advisories for vulnerabilities in Adobe Flash, multiple Microsoft products, Word Press, Cisco and Google Chrome that could allow remote code execution.

This level indicates a significant risk due to increased hacking, virus or other malicious activity which compromises systems or diminishes service. At this level, there are known vulnerabilities that are being exploited with a moderate level damage or disruption, or the potential for significant damage or disruption is high.

  • Organizations and users are advised to update and apply all appropriate vendor security patches to vulnerable systems.
  • Organizations are advised to revoke/reissue certificates on their public facing systems that use OpenSSL/TLS certificates.
  • Users are advised to change their passwords for all online accounts, giving first priority to critical accounts. We are also getting reports of phishing campaigns related to this vulnerability to lure victims to credential-stealing sites. If you are changing your password, please type the URL of the organization in a browser and do not click on links in emails that ask you to reset your passwords.

 

Another line of defense includes user awareness training regarding the threats posed by attachments and hypertext links contained in emails especially from un-trusted sources.