Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

America's Cyber Defense Agency

Cybersecurity Alerts & Advisories

View Cybersecurity Advisories Only
View Advisory Definitions

Dec 02, 2021

Cybersecurity Advisory | AA21-336A

APT Actors Exploiting CVE-2021-44077 in Zoho ManageEngine ServiceDesk Plus

Nov 17, 2021

Cybersecurity Advisory | AA21-321A

Iranian Government-Sponsored APT Cyber Actors Exploiting Microsoft Exchange and Fortinet Vulnerabilities in Furtherance of Malicious Activities

Oct 18, 2021

Cybersecurity Advisory | AA21-291A

BlackMatter Ransomware

Oct 14, 2021

Cybersecurity Advisory | AA21-287A

Ongoing Cyber Threats to U.S. Water and Wastewater Systems

Sep 16, 2021

Cybersecurity Advisory | AA21-259A

APT Actors Exploiting Newly Identified Vulnerability in ManageEngine ADSelfService Plus

Aug 31, 2021

Cybersecurity Advisory | AA21-243A

Ransomware Awareness for Holidays and Weekends

Aug 17, 2021

Cybersecurity Advisory | AA21-229A

BadAlloc Vulnerability Affecting BlackBerry QNX RTOS

Jul 28, 2021

Cybersecurity Advisory | AA21-209A

Top Routinely Exploited Vulnerabilities

Jul 20, 2021

Cybersecurity Advisory | AA21-201A

Chinese Gas Pipeline Intrusion Campaign, 2011 to 2013

Jul 19, 2021

Cybersecurity Advisory | AA21-200A

Tactics, Techniques, and Procedures of Indicted APT40 Actors Associated with China’s MSS Hainan State Security Department

Advisory Definitions

Cybersecurity Advisory: In-depth reports covering a specific cybersecurity issue, often including threat actor tactics, techniques, and procedures; indicators of compromise; and mitigations.
Alert: Concise summaries covering cybersecurity topics, such as mitigations that vendors have published for vulnerabilities in their products.
ICS Advisory: Concise summaries covering industrial control system (ICS) cybersecurity topics, primarily focused on mitigations that ICS vendors have published for vulnerabilities in their products.
ICS Medical Advisory: Concise summaries covering ICS medical cybersecurity topics, primarily focused on mitigations that ICS medical vendors have published for vulnerabilities in their products.
Analysis Report: In-depth analysis of a new or evolving cyber threat, including technical details and remediations.