Cybersecurity Threats

Alert Level: GUARDED

Low

Guarded

Elevated

High

Severe

Learn More

Explanation of the Current Alert Level of GUARDED

The alert level is the overall current threat level.

On June 25, the Cyber Threat Alert Level was evaluated and is remaining at Blue (Guarded). The MS-ISAC is currently assessing reports of the potential for cyber activity related to ongoing tensions between the United States and Iran including Iranian-aligned hacktivist groups targeting the United States. Claimed attacks have included distributed denial of service (DDoS) attacks, network compromises, web defacements, and hacking/leaking operations. Organizations and users are advised to update and apply all appropriate vendor security patches to vulnerable systems and to continue to update their antivirus signatures daily. Another line of defense includes user awareness training regarding the threats posed by attachments and hypertext links contained in emails especially from un-trusted sources.

Multidimensional Threats of the Week

MS-ISAC

Exclusive membership and resources available to U.S. SLTTs.

Join

ThreatWA™

Multidimensional threat warning and analysis

The CIS SOC

24x7x365 expert monitoring, analysis, and escalation of cybersecurity threats

Download

Latest Advisory

Multiple Vulnerabilities in HPE StoreOnce Software Could Allow for Remote Code Execution

4 Jun 2025

Multiple Vulnerabilities have been discovered in HPE StoreOnce Software, which when chained together could allow for remote code execution, poten...

Read the details

View All Advisories

Keep track of new vulnerabilities in a centralized location to prioritize your remediation tasks and advance your efforts to achieve essential cyber hygiene through CIS Critical Security Controls (CIS Controls): Implementation Group 1 (IG1).

Top Malware

In Q3 2024, the Top 10 Malware observed via the MS-ISAC’s monitoring services changed moderately from the previous quarter. The downloader, SocGholish, continued to lead as the top malware, making up 42% of the list. Following SocGholish were the downloaders LandUpdate808 and ClearFake. This quarter marked the first time the MS-ISAC observed either of these downloaders in its quarterly Top 10 Malware list.

A New Orleans Restaurant Owner’s Facebook was Hacked, Putting Her Business in Jeopardy

Possible Security Concerns for Arizonans Amidst Middle East Conflict

What Makes CIS Hardened Images Secure Enough for the U.S. IC

Persistent Disruptive Cyber Activity Impacting U.S. Public Safety Mission-Critical Services