On December 18, the Cyber Threat Alert Level was evaluated and is remaining at Blue (Guarded) due to a vulnerability affecting multiple Cleo products. On December 12, the MS-ISAC released an advisory for a vulnerability in Cleo products that could allow for remote code execution. Organizations and users are advised to update and apply all appropriate vendor security patches to vulnerable systems and to continue to update their antivirus signatures daily. Another line of defense includes user awareness training regarding the threats posed by attachments and hypertext links contained in emails especially from un-trusted sources.

Read more... Cyber Threat Alert