Security Intelligence Operations

Security Intelligence Operations
Inform, Protect, Respond
Early-warning intelligence, threat and vulnerability analysis, and proven Cisco mitigation solutions to help protect networks

Latest News

Network Time Protocol Amplification Distributed Denial of Service Attacks - 2014 Feb 25

Latest Threat Information

Resources

Cisco Products and Services

Cisco Emergency Response

Cisco Emergency Response Overview

Report a potential vulnerability in Cisco products: psirt@cisco.com

Urgent technical assistance for nonsecurity issues that involve Cisco products: Cisco Technical Support 800 553 2447 (U.S.) Worldwide Contacts

Emergency response to active security incidents that involve Cisco products: PSIRT 877 228 7302 (U.S.) +1 408 525 6532 (outside U.S.)

Report an incident involving the Cisco corporate network: csirt-notify@cisco.com

Notification Registration

Security Highlights

Security Alerts

Upcoming Security Events

Security Blog

Title

Last Updated

OpenSSL TLS/DTLS Heartbeat Information Disclosure Vulnerability

Related Resources:

OpenSSL Heartbeat Extension Vulnerability in Multiple Cisco Products

OpenSSL Information Disclosure

Heartbleed: Transparency for Our Customers

Cisco Event Response: OpenSSL Heartbleed Vulnerability

2014 Apr 17

Cisco Live 2014 San Francisco: Security Technology Track

2014 Apr 16

Multiple Vulnerabilities in Cisco ASA Software

Related Resources:

Cisco Adaptive Security Appliance SSL VPN Privilege Escalation Vulnerability

2014 Apr 09

Cisco Event Response: Microsoft Security Bulletin Release for April 2014

Related Resources:

Microsoft Office Word RTF Document Processing Arbitrary Code Execution Vulnerability

Cisco Applied Mitigation Bulletin: Microsoft Security Bulletin Release for April 2014

Microsoft Office Word RTF File Processing Remote Code Execution Vulnerability

2014 Apr 08

CUPS Remote Code Injection Vulnerability

2014 Apr 02

Apple Safari Updates for April 2014

2014 Apr 02

Cisco Firewall Best Practices Guide

2014 Apr 04

Cisco Event Response: Semiannual Cisco IOS Software Security Advisory Bundled Publication

Related Resources:

A Bundle is Born

2014 Mar 26

Microsoft Internet Explorer HTMLLayout Object Processing Memory Corruption Vulnerability

Related Resources:

Cisco Applied Mitigation Bulletin: Microsoft Security Bulletin Release for March 2014

Cisco Event Response: Microsoft Security Bulletin Release for March 2014

2014 Apr 07

Coordinated Website Compromise Campaigns Continue to Plague Internet

2014 Mar 20

Cisco Security Advisory
Cisco IPS Signature
Cisco Applied Mitigation Bulletin
Blog
Event Response
Alerts

Cisco Security Notice
Cisco Security Response
Cyber Risk Report
White Paper

View Alerts:

CVSS Score

Title

Last Updated

N/A

Threat Outbreak Alert: Fake Money Transfer Notification Email Messages on April 16, 2014

2014 Apr 17

N/A

Threat Outbreak Alert: Fake Personal Photo Sharing Email Messages on April 16, 2014

2014 Apr 17

N/A

Threat Outbreak Alert: Fake Bank Account Deposit Notification Email Messages on April 17, 2014

2014 Apr 17

N/A

Threat Outbreak Alert: Fake Online Account Information Request Email Messages on April 17, 2014

2014 Apr 17

N/A

Threat Outbreak Alert: Fake Financial Report Email Messages on April 17, 2014

2014 Apr 17

N/A

Threat Outbreak Alert: Email Messages with Malicious Link on April 17, 2014

2014 Apr 17

N/A

Threat Outbreak Alert: Fake Bank Account Transaction Confirmation Email Messages on April 16, 2014

2014 Apr 17

5.0/4.1

OpenSSL TLS/DTLS Heartbeat Information Disclosure Vulnerability

2014 Apr 17

N/A

Threat Outbreak Alert: Fake Product Purchase Request Email Messages on April 16, 2014

2014 Apr 17

N/A

Threat Outbreak Alert: Fake Product Order Email Messages Notification Email Messages on April 16, 2014

2014 Apr 17

Cisco Security Advisory
Cisco IPS Signature
Cisco Applied Mitigation Bulletin
Blog
Event Response
» View More

Cisco Security Notice
Cisco Security Response
Cyber Risk Report
White Paper

2014 May 18 Cisco Live 2014

2014 Aug 02 Black Hat, Las Vegas, NV, USA

2014 Aug 07 DEF CON 22, Las Vegas, NV, USA

2014 Sep 29 (ISC)^2 Security Congress

Cisco IOS Software Bundled Publication for March 2014

Viewing this video requires the latest version of Adobe Flash Player with JavaScript enabled.

Get the Flash Player

This is a summary video of the Cisco IOS Software Bundled Publication for March 2014.

Cyber Risk Report: April 7-13, 2014

Cyber Risk Reports provide strategic intelligence that highlights current security activity.

Cisco Event Response: Microsoft Security Bulletins April 2014

Intelligence to help identify and mitigate vulnerabilities in the Microsoft Security bulletin release.

Applied Mitigation Bulletins

Learn about the capabilities of Cisco devices in your network infrastructure to detect and mitigate current threats and recently disclosed Cisco and third-party vulnerabilities.

Threat Outbreak Alert: Fake Online Account Information Request Email Messages on April 17, 2014
Threat Type:	IntelliShield: Threat Outbreak Alert
IntelliShield ID:	33838
Version:	1
First Published:	2014-Apr-17 18:44 GMT
Last Updated:	2014-Apr-17 18:44 GMT
Urgency:	3
Credibility:	5
Severity:	3

Threat Outbreak Alert: Fake Money Transfer Notification Email Messages on April 16, 2014
Threat Type:	IntelliShield: Threat Outbreak Alert
IntelliShield ID:	33837
Version:	1
First Published:	2014-Apr-17 18:59 GMT
Last Updated:	2014-Apr-17 18:59 GMT
Urgency:	3
Credibility:	5
Severity:	3

Threat Outbreak Alert: Fake Financial Report Email Messages on April 17, 2014
Threat Type:	IntelliShield: Threat Outbreak Alert
IntelliShield ID:	33839
Version:	1
First Published:	2014-Apr-17 18:36 GMT
Last Updated:	2014-Apr-17 18:36 GMT
Urgency:	3
Credibility:	5
Severity:	3

Threat Outbreak Alert: Fake Product Order Email Messages Notification Email Messages on April 16, 2014
Threat Type:	IntelliShield: Threat Outbreak Alert
IntelliShield ID:	33833
Version:	1
First Published:	2014-Apr-17 14:18 GMT
Last Updated:	2014-Apr-17 14:18 GMT
Urgency:	3
Credibility:	5
Severity:	3

Threat Outbreak Alert: Fake Personal Photo Sharing Email Messages on April 16, 2014
Threat Type:	IntelliShield: Threat Outbreak Alert
IntelliShield ID:	33836
Version:	1
First Published:	2014-Apr-17 18:59 GMT
Last Updated:	2014-Apr-17 18:59 GMT
Urgency:	3
Credibility:	5
Severity:	3

Latest News

Cisco IOS Software Bundled Publication for March 2014

Cyber Risk Report: April 7-13, 2014

Cisco Event Response: Microsoft Security Bulletins April 2014

Applied Mitigation Bulletins

Solutions For

Industries

Contacts

News & Alerts

Support

Communities

About Cisco

Offers

Threat Outbreak Alert: Fake Bank Account Transaction Confirmation Email Messages on April 16, 2014
Threat Type:	IntelliShield: Threat Outbreak Alert
IntelliShield ID:	33835
Version:	1
First Published:	2014-Apr-17 16:47 GMT
Last Updated:	2014-Apr-17 16:47 GMT
Urgency:	3
Credibility:	5
Severity:	3

OpenSSL TLS/DTLS Heartbeat Information Disclosure Vulnerability
Threat Type:	CWE-200: Information Leak / Disclosure
IntelliShield ID:	33695
Version:	8
First Published:	2014-Apr-08 14:39 GMT
Last Updated:	2014-Apr-17 16:40 GMT
Vector:	Network
Authentication:	None
Exploit:	High
CVE:	CVE-2014-0160
Urgency:	3
Credibility:	5
Severity:	3
CVSS Base:	5.0
CVSS Temporal:	5.0

Threat Outbreak Alert: Fake Product Purchase Request Email Messages on April 16, 2014
Threat Type:	IntelliShield: Threat Outbreak Alert
IntelliShield ID:	33675
Version:	3
First Published:	2014-Apr-07 13:43 GMT
Last Updated:	2014-Apr-17 14:21 GMT
Urgency:	3
Credibility:	5
Severity:	3

Threat Outbreak Alert: Email Messages with Malicious Link on April 17, 2014
Threat Type:	IntelliShield: Threat Outbreak Alert
IntelliShield ID:	33840
Version:	1
First Published:	2014-Apr-17 18:27 GMT
Last Updated:	2014-Apr-17 18:27 GMT
Urgency:	3
Credibility:	5
Severity:	3