CERT Announcements

This entry in the Spotlight On series summarizes such cases and insiders and provides recommendations for mitigating these incidents.

This blog post provides information about an effective approach to blocking exploits of CVE-2013-1347, the Internet Explorer 8 CGeneric Element object use-after-free vulnerability.

This blog post explains the importance of protecting your organization from the theft of sensitive information using USB media.

This blog post describes how Oracle's new guidance for Java applets may cause more harm than good.

This blog post describes how finding patterns in bulk registrations can help identify potentially malicious domains.

This blog entry describes how to use geoIP to view data and help your network situational awareness.

This blog post looks at second level domain usage in 2012 for the most common generic Top Level Domains.

This book identifies the root causes of today's most widespread software vulnerabilities, shows how they can be exploited, reviews the potential consequences, and presents secure alternatives.

This blog post presents a method for assessing how popular IPv6 is on the internet.

This blog post describes an alternate way to view advertised IP address space on the internet using publicly available information.

This technical note describes an analysis of the pattern "Increased Review for Intellectual Property (IP) Theft by Departing Insiders," which helps organizations mitigate the risk of insider theft of IP.

This blog post describes how you can calculate the growth rate of advertised IP address space on the internet using publicly available information.

This blog post introduces you to work done on an ontology for malware.

This blog entry describes the results of our three-month study of domains that change their name servers frequently.

This technical note presents the first common vocabulary for malware analysis.

This blog entry provides you with an opportunity to meet members of the CERT Insider Threat Center at the RSA Conference and describes events supported by these members at the conference.

This last of 19 blog posts about the fourth edition of the Common Sense Guide to Mitigating Insider Threats describes Practice 19: Close the doors to unauthorized data exfiltration.

This eighteenth of 19 blog posts about the fourth edition of the Common Sense Guide to Mitigating Insider Threats describes Practice 18: Be especially vigilant regarding social media.

This seventeenth of 19 blog posts about the fourth edition of the Common Sense Guide to Mitigating Insider Threats describes Practice 17: Establish a baseline of normal network device behavior.

This sixteenth of 19 blog posts about the fourth edition of the Common Sense Guide to Mitigating Insider Threats describes Practice 16: Develop a formalized insider threat program.