CERT-UK:

Working with partners across industry, government and academia to enhance the UK’s cyber resilience

uk map

Latest advisories »

Windows IIS Web Server – ‘Ping of Death’ exploit

Issued at 11.45 on 17/4/15 Description Microsoft released a critical patch (MS15-034) on Tuesday to address a security bug (CVE-2015-1635) which allowed attackers to knock web servers offline by sending a simple but specially crafted HTTP request (a so called ‘ping of death’). Windows 7, Windows Server 2008 R2, Windows 8, Windows Server 2012, Windows...

Read more

News »

CERT-UK Weekly Update 23/04/2015

This week’s edition of the ‘CERT-UK Weekly update’ is now live. This document provides insight into the top incidents being reported and discussions taking place on the CiSP platform. While this document provides some mitigation advice, more thorough information and reporting of other organisation’s experience will only be available on CiSP. You can join CiSP through...

Read more

Best practice »

An introduction to threat intelligence

Threat intelligence is an elusive concept; numerous definitions have been created based on a variety of procedural viewpoints and competitive reasons. As a result this paper is limited to an introduction of the key concepts and principles of threat intelligence, explaining the role it plays within network defence, offering advice and best practice and pointing...

Read more